forked from ISTI-ansible-roles/ansible-roles
38 lines
1.0 KiB
PHP
38 lines
1.0 KiB
PHP
<?php
|
|
/**
|
|
* SAML 2.0 IdP configuration for SimpleSAMLphp.
|
|
*
|
|
* See: https://simplesamlphp.org/docs/stable/simplesamlphp-reference-idp-hosted
|
|
*/
|
|
|
|
$metadata['__DYNAMIC:1__'] = [
|
|
/*
|
|
* The hostname of the server (VHOST) that will use this SAML entity.
|
|
*
|
|
* Can be '__DEFAULT__', to use this entry by default.
|
|
*/
|
|
'host' => '__DEFAULT__',
|
|
|
|
// X.509 key and certificate. Relative to the cert directory.
|
|
'privatekey' => 'key.pem',
|
|
'certificate' => 'server.crt',
|
|
|
|
/*
|
|
* Authentication source to use. Must be one that is configured in
|
|
* 'config/authsources.php'.
|
|
*/
|
|
'auth' => '{{ simplesaml_auth_name }}',
|
|
|
|
{% if simplesaml_use_ldap %}
|
|
{% if simplesaml_ldap_use_uri_nameformat %}
|
|
/* Uncomment the following to use the uri NameFormat on attributes. */
|
|
'attributes.NameFormat' => 'urn:oasis:names:tc:SAML:2.0:attrname-format:uri',
|
|
'authproc' => [
|
|
// Convert LDAP names to oids.
|
|
100 => ['class' => 'core:AttributeMap', 'name2oid'],
|
|
],
|
|
{% endif %}
|
|
{% endif %}
|
|
|
|
];
|