You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 10 Next »

Get started in 1 minute

  1. Download saml-md-aggregator-standalone.jar
  2. Move to a directory where you have a bunch of metadata each EntityDescriptor in a separate file. The names of the files doesn't matter. The filename except the extension (.xml) will become the "ID" attribute on each EntityDescriptor as it is signed and returned to requestors. 
    # cd /path/to/metadata
# ls
idp.example.org.xml sp.example.org.xml
  3. Use keytool to generate a keystore with a signing key in it - eg 
    keytool -genkeypair -alias mdx -keypass secret123 -keystore mdx.jks
... answer a bunch of questions ...
  4. Run the aggregator 
    java -Dmdx.store.url=/path/to/metadata \
     -Dmdx.signer.alias=mdx \
     -Dmdx.signer.pin=secret123 \
     -Dmdx.signer.validity=3600 -jar saml-md-aggregator-standalone.jar &
    This will setup an aggregator that signs each request with the generated key pair and sets the validUntil element on the EntityDescriptor elemets to 1 hour from the time of signing.
  5. Point your browser at http://localhost:8080/md/all and look a your stuff
  6. Get all of your idp:s as an EntitiesDescriptor document 
    # wget -qO- http://localhost:8080/entity/all+idp
  7. Get all of your sp:s as an EntitiesDescriptor document 
    # wget -qO- http://localhost:8080/entity/all+sp
  • No labels