Discovery Service Configuration
The eduTEAMS Discovery Service URL serves to discovery requests of the SPs.
Code Block |
---|
title | eduTEAMS Discovery Service URL |
---|
|
https://discovery.eduteams.org/wayf.php |
The protocol is described in Identity Provider Discovery Service Protocol and Profile. On how to apply the Discovery Service URL in your product you should consult the documentation of the product itself, in most cases Shibboleth SP documentation or SimpleSAMLphp documentation.
Embedded discovery.
Discovery may be used also in embedded fashion. For that to work authentication needs to be triggered from a page that includes javascript that provides the functionality. Here we provide examples for Shibboleth SP and SimpleSAMLphp.
Shibboleth SP
This example relies on having eduTEAMS discovery set as default login handler discovery service.
Code Block |
---|
title | file:/etc/shibboleth/shibboleth2.xml |
---|
|
<SSO
discoveryProtocol="SAMLDS"
discoveryURL="https://discovery.eduteams.org/wayf.php">
SAML2 SAML1
</SSO> |
If you use the discovery in embedded fashion you need to include javascript in head
element on the page triggering the authentication,
Code Block |
---|
title | Including javascript |
---|
|
<head>
<!-- HTML elements -->
<script type="text/javascript" src="https://discovery.eduteams.org/ds.js"></script>
<!-- HTML elements -->
</head> |
and then display the element itself that triggers the authentication as defined in default handler.
Code Block |
---|
|
<a href="/Shibboleth.sso/Login" onclick="startOverlay(event)">Log in</a> |
As a result the discovery is shown in embedded fashion.
SimpleSAMLphp
This example relies on having eduTEAMS discovery set as default sp discovery service.
Code Block |
---|
|
'default-sp' => array(
'saml:SP',
'entityID' => 'https://sp.example.com/simplesaml/',
'idp' => NULL,
'discoURL' => 'https://ds.eduid.cz/wayf.php',
'privatekey' => 'example.key'
), |
If you use the discovery in embedded fashion you need to include javascript in head
element on the page triggering the authentication,
Code Block |
---|
title | Including javascript |
---|
|
<head>
<!-- HTML elements -->
<script type="text/javascript" src="https://discovery.eduteams.org/ds.js"></script>
<!-- HTML elements -->
</head> |
and then display a element triggering the authentication.
Code Block |
---|
|
<a href="/simplesaml/module.php/core/authenticate.php" onclick="startOverlay(event)">Log in</a> |