Overview

Indicated by type="MDQ", this MetadataProvider loads metadata on-demand from an HTTP server using the conventions defined by the Metadata Query Protocol draft specification (see base protocolSAML profile). This is essentially the same as the Dynamic MetadataProvider with a slightly simpler configuration syntax to automatically generate the appropriate URL substitutions.

The baseUrl XML attribute is also required, to point to the root of the MDQ server.

Reference

The type="MDQ" attribute must be present.

The following attribute MUST be present:

Name

Type

Req?

Description

baseUrl

string

Y

Specifies the MDQ "base" URL of the metadata query service

Example

MDQ Metadata Source
<MetadataProvider type="MDQ" id="mdq.example.org" ignoreTransport="true" cacheDirectory="mdq-example-org"
		baseUrl="http://mdq.example.org/global/">
    <MetadataFilter type="Signature" certificate="metadata-signing-key.pem"/>
    <MetadataFilter type="RequireValidUntil" maxValidityInterval="8640000"/>
</MetadataProvider>