Differences

This shows you the differences between two versions of the page.

--- en:production [2017/11/23 10:11] – Wolfgang Pempe
+++ en:production [2019/05/16 12:55] – Wolfgang Pempe
@@ Line 73: / Line 73: @@
 ==== SP Example ====
+For metadata download URLs and the certificate for signature validation please refer to [[en:metadata|the Metadata documentation]].
 Communication with all productive IdPs in DFN-AAI (Degree of Reliance "Adavanced" and "Basic") as well as all IdPs from eduGAIN - except "Self-Signup" IdPs (cf. also [[de:entity_attributes|Entity Attributes]]):
@@ Line 78: / Line 79: @@
 <file xml /etc/shibboleth/shibboleth2.xml>
 <MetadataProvider type="XML"
-      uri="https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml"
+      uri="http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-basic-metadata.xml"
       backingFilePath="dfn-aai-basic-metadata.xml" reloadInterval="3600">
    <MetadataFilter type="Signature" certificate="/etc/ssl/aai/dfn-aai.g2.pem" />
@@ Line 87: / Line 88: @@
 <MetadataProvider type="XML"
-      uri="https://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml"
+      uri="http://www.aai.dfn.de/fileadmin/metadata/dfn-aai-edugain+idp-metadata.xml"
       backingFilePath="dfn-aai-edugain+idp-metadata.xml" reloadInterval="3600">
    <MetadataFilter type="Signature" certificate="/etc/ssl/aai/dfn-aai.g2.pem" />
@@ Line 106: / Line 107: @@
 ==== Embedded Discovery Service ====
-In case an SP is only available for a couple of Home Organizations, we recommend to implement an [[de:shibeds|Embedded Discovery Service]] because it lists only those IdPs that are relevant for the service/SP.
+In case an SP is only available for a couple of Home Organizations, we recommend to implement an [[de:shibeds|Embedded Discovery Service]] that filters and lists only those IdPs that are relevant for the service/SP.
 ==== Central Discovery Service ====

idp4 tutorial discovery production metadata wayf