The eduTEAMS Discovery Service URL serves to discovery requests of the SPs.
https://discovery.eduteams.org/wayf.php |
The protocol is described in Identity Provider Discovery Service Protocol and Profile.
Discovery Service configuration is part of session initiator configuration. Shibboleth SP documentation on the subject is what you should rely on for more thorough information. The examples presented here might not directly apply to your existing configuration.
This example instructs Shibboleth SP default login handler to use eduTEAMS discovery as a discovery service.
<SSO discoveryProtocol="SAMLDS" discoveryURL="https://discovery.eduteams.org/wayf.php"> SAML2 SAML1 </SSO> |
You may use the discovery in embedded fashion. In that case the page that triggers the authentication needs to include javascript in head
element,
<head> <!-- HTML elements --> <script type="text/javascript" src="https://discovery.eduteams.org/ds.js"></script> <!-- HTML elements --> </head> |
and then display a element triggering the authentication.
<a href="/Shibboleth.sso/Login" onclick="startOverlay(event)">Log in</a> |
Please read SimpleSAMLphp documentation for more thorough information if needed.
For SimpleSAMLphp, WAYF configuration is set in authsources.php
configuration file.
'default-sp' => array( 'saml:SP', 'entityID' => 'https://sp.example.com/simplesaml/', 'idp' => NULL, 'discoURL' => 'https://ds.eduid.cz/wayf.php', 'privatekey' => 'example.key' ), |
You may use the discovery in embedded fashion. In that case the page that triggers the authentication needs to include javascript in head
element,
<head> <!-- HTML elements --> <script type="text/javascript" src="https://discovery.eduteams.org/ds.js"></script> <!-- HTML elements --> </head> |
and then display a element triggering the authentication.
<a href="/simplesaml/module.php/core/authenticate.php" onclick="startOverlay(event)">Log in</a> |