2
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="{{ entity_id }}">
3
<md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
4
<md:KeyDescriptor use="signing">
5
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
7
<ds:X509Certificate>{{ cert_public_key }}</ds:X509Certificate>
11
<md:KeyDescriptor use="encryption">
12
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
14
<ds:X509Certificate>{{ cert_public_key }}</ds:X509Certificate>
18
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="{{ slo_url }}"/>
19
<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:email</md:NameIDFormat>
20
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="{{ sso_url }}"/>
21
</md:IDPSSODescriptor>
23
<!-- #TODO: Add support for optional Organization section -->
26
<md:OrganizationName xml:lang="en">{{ org.name }}</md:OrganizationName>
27
<md:OrganizationDisplayName xml:lang="en">{{ org.display_name }}</md:OrganizationDisplayName>
28
<md:OrganizationURL xml:lang="en">{{ org.url }}</md:OrganizationURL>
31
<!-- #TODO: Add support for optional ContactPerson section(s) -->
32
{# for contact in contacts #}
33
<md:ContactPerson contactType="{{ contact.type }}">
34
<md:GivenName>{{ contact.given_name }}</md:GivenName>
35
<md:SurName>{{ contact.sur_name }}</md:SurName>
36
<md:EmailAddress>{{ contact.email }}</md:EmailAddress>
40
</md:EntityDescriptor>