95 lines
3.7 KiB
JSON
95 lines
3.7 KiB
JSON
|
{
|
||
|
"id" : "a92d5417-92b6-4678-9cb9-51bc0edcee8c",
|
||
|
"clientId" : "https://moodle.[[DOMAIN]]/auth/saml2/sp/metadata.php",
|
||
|
"surrogateAuthRequired" : false,
|
||
|
"enabled" : true,
|
||
|
"alwaysDisplayInConsole" : false,
|
||
|
"clientAuthenticatorType" : "client-secret",
|
||
|
"redirectUris" : [ "https://moodle.[[DOMAIN]]/auth/saml2/sp/saml2-acs.php/moodle.[[DOMAIN]]" ],
|
||
|
"webOrigins" : [ "https://moodle.[[DOMAIN]]" ],
|
||
|
"notBefore" : 0,
|
||
|
"bearerOnly" : false,
|
||
|
"consentRequired" : false,
|
||
|
"standardFlowEnabled" : true,
|
||
|
"implicitFlowEnabled" : false,
|
||
|
"directAccessGrantsEnabled" : false,
|
||
|
"serviceAccountsEnabled" : false,
|
||
|
"publicClient" : false,
|
||
|
"frontchannelLogout" : true,
|
||
|
"protocol" : "saml",
|
||
|
"attributes" : {
|
||
|
"saml.force.post.binding" : "true",
|
||
|
"saml.encrypt" : "true",
|
||
|
"saml_assertion_consumer_url_post" : "https://moodle.[[DOMAIN]]/auth/saml2/sp/saml2-acs.php/moodle.[[DOMAIN]]",
|
||
|
"saml.server.signature" : "true",
|
||
|
"saml.server.signature.keyinfo.ext" : "false",
|
||
|
"saml.signing.certificate" : "[[SIGNING_CERTIFICATE]]",
|
||
|
"saml_single_logout_service_url_redirect" : "https://moodle.[[DOMAIN]]/auth/saml2/sp/saml2-logout.php/moodle.[[DOMAIN]]",
|
||
|
"saml.signature.algorithm" : "RSA_SHA256",
|
||
|
"saml_force_name_id_format" : "false",
|
||
|
"saml.client.signature" : "true",
|
||
|
"saml.encryption.certificate" : "[[ENCRYPTION_CERTIFICATE]]",
|
||
|
"saml.authnstatement" : "true",
|
||
|
"saml_name_id_format" : "username",
|
||
|
"saml_signature_canonicalization_method" : "http://www.w3.org/2001/10/xml-exc-c14n#"
|
||
|
},
|
||
|
"authenticationFlowBindingOverrides" : { },
|
||
|
"fullScopeAllowed" : true,
|
||
|
"nodeReRegistrationTimeout" : -1,
|
||
|
"protocolMappers" : [ {
|
||
|
"id" : "9296daa3-4fc4-4b80-b007-5070f546ae13",
|
||
|
"name" : "X500 surname",
|
||
|
"protocol" : "saml",
|
||
|
"protocolMapper" : "saml-user-property-mapper",
|
||
|
"consentRequired" : false,
|
||
|
"config" : {
|
||
|
"attribute.nameformat" : "urn:oasis:names:tc:SAML:2.0:attrname-format:uri",
|
||
|
"user.attribute" : "lastName",
|
||
|
"friendly.name" : "surname",
|
||
|
"attribute.name" : "urn:oid:2.5.4.4"
|
||
|
}
|
||
|
}, {
|
||
|
"id" : "ccecf6e4-d20a-4211-b67c-40200a6b2c5d",
|
||
|
"name" : "username",
|
||
|
"protocol" : "saml",
|
||
|
"protocolMapper" : "saml-user-property-mapper",
|
||
|
"consentRequired" : false,
|
||
|
"config" : {
|
||
|
"attribute.nameformat" : "Basic",
|
||
|
"user.attribute" : "username",
|
||
|
"friendly.name" : "username",
|
||
|
"attribute.name" : "username"
|
||
|
}
|
||
|
}, {
|
||
|
"id" : "53858403-eba2-4f6d-81d0-cced700b5719",
|
||
|
"name" : "X500 givenName",
|
||
|
"protocol" : "saml",
|
||
|
"protocolMapper" : "saml-user-property-mapper",
|
||
|
"consentRequired" : false,
|
||
|
"config" : {
|
||
|
"attribute.nameformat" : "urn:oasis:names:tc:SAML:2.0:attrname-format:uri",
|
||
|
"user.attribute" : "firstName",
|
||
|
"friendly.name" : "givenName",
|
||
|
"attribute.name" : "urn:oid:2.5.4.42"
|
||
|
}
|
||
|
}, {
|
||
|
"id" : "20034db5-1d0e-4e66-b815-fb0440c6d1e2",
|
||
|
"name" : "X500 email",
|
||
|
"protocol" : "saml",
|
||
|
"protocolMapper" : "saml-user-property-mapper",
|
||
|
"consentRequired" : false,
|
||
|
"config" : {
|
||
|
"attribute.nameformat" : "urn:oasis:names:tc:SAML:2.0:attrname-format:uri",
|
||
|
"user.attribute" : "email",
|
||
|
"friendly.name" : "email",
|
||
|
"attribute.name" : "urn:oid:1.2.840.113549.1.9.1"
|
||
|
}
|
||
|
} ],
|
||
|
"defaultClientScopes" : [ "web-origins", "role_list", "roles", "profile", "email" ],
|
||
|
"optionalClientScopes" : [ "address", "phone", "offline_access", "microprofile-jwt" ],
|
||
|
"access" : {
|
||
|
"view" : true,
|
||
|
"configure" : true,
|
||
|
"manage" : true
|
||
|
}
|
||
|
}
|