Indicated by type="MDQ"
, this MetadataProvider loads metadata on-demand from an HTTP server using the conventions defined by the Metadata Query Protocol draft specification (see base protocol, SAML profile). This is essentially the same as the Dynamic MetadataProvider with a slightly simpler configuration syntax to automatically generate the appropriate URL substitutions.
The type="MDQ"
attribute mustbe present, and the following attribute must also be present:
Name | Type | Req? | Description |
---|
baseUrl | string | Y | Specifies the MDQ "base" URL of the metadata query service |
Include Page |
---|
| MetadataProviderCommonAttributes |
---|
| MetadataProviderCommonAttributes |
---|
|
Include Page |
---|
| MetadataProviderDynamicCommonAttributes |
---|
| MetadataProviderDynamicCommonAttributes |
---|
|
Include Page |
---|
| MetadataProviderRemoteDynamicCommonAttributes |
---|
| MetadataProviderRemoteDynamicCommonAttributes |
---|
|
Include Page |
---|
| MetadataProviderChildElements |
---|
| MetadataProviderChildElements |
---|
|
Include Page |
---|
| MetadataProviderNetworkChildElements |
---|
| MetadataProviderNetworkChildElements |
---|
|
Code Block |
---|
|
<MetadataProvider type="MDQ" id="mdq.example.org" ignoreTransport="true" cacheDirectory="mdq-example-org"
baseUrl="http://mdq.example.org/global/">
<MetadataFilter type="Signature" certificate="metadata-signing-key.pem"/>
<MetadataFilter type="RequireValidUntil" maxValidityInterval="8640000"/>
</MetadataProvider> |