More docs.

2024-04-30 13:59:03 +02:00 · 2024-04-30 13:59:03 +02:00 · 798be320f2
parent 87b8bec00b
commit 798be320f2
2 changed files with 4 additions and 2 deletions
--- a/README.md
+++ b/README.md
@ -63,5 +63,6 @@ internal-sto4-test-k8sc-1.rut.sunet.se   Ready      <none>   16d   v1.28.7
 # Setting up auth (satosa) and monitoring with thruk+naemon+loki+influxdb
-* Get metadata with `curl https://monitor-test.rut.sunet.se/Shibboleth.sso/Metadata > internal-sto4-test-satosa-1.rut.sunet.se/overlay/etc/satosa/metadata/monitor.xml`
+* Get shib-sp metadata with `curl https://monitor-test.rut.sunet.se/Shibboleth.sso/Metadata > internal-sto4-test-satosa-1.rut.sunet.se/overlay/etc/satosa/metadata/monitor.xml`
-* Get https://idp-proxy-test.rut.sunet.se/Saml2IDP/proxy.xml and publish to swamid.
+* Get satosa metadata with `curl https://idp-proxy-test.rut.sunet.se/Saml2IDP/proxy.xml > internal-sto4-test-monitor-1.rut.sunet.se/overlay/opt/naemon_monitor/satosa.xml`
 * Publish backend metadata to swamid. `ssh internal-sto4-test-satosa-1.rut.sunet.se cat /etc/satosa/metadata/backend.xml |xmllint --format - > rut.xml`
--- a/internal-sto4-test-monitor-1.rut.sunet.se/overlay/opt/naemon_monitor/satosa.xml
+++ b/internal-sto4-test-monitor-1.rut.sunet.se/overlay/opt/naemon_monitor/satosa.xml
@ -0,0 +1 @@
 <ns0:EntityDescriptor xmlns:ns0="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ns1="http://www.w3.org/2000/09/xmldsig#" entityID="https://idp-proxy-test.rut.sunet.se/Saml2IDP/proxy.xml"><ns0:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" WantAuthnRequestsSigned="false"><ns0:KeyDescriptor use="signing"><ns1:KeyInfo><ns1:X509Data><ns1:X509Certificate>MIIFFTCCAv2gAwIBAgIUJTV3thwiT0uH3r8y2cq55OKbpiEwDQYJKoZIhvcNAQELBQAwGjEYMBYGA1UEAwwPc2F0b3NhX2Zyb250ZW5kMB4XDTI0MDQzMDEwMzExOFoXDTM0MDQyODEwMzExOFowGjEYMBYGA1UEAwwPc2F0b3NhX2Zyb250ZW5kMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtfvm/TX+3d1xckOGCdbWJhSfSPBiJcclQJ8zDqsEp77VkL6QqlGMj6NLjq1yoq34LCWGEVVnQQP9E5bNIOHsv2hwuR6QCiWhNm1cF4KBYOsHckIA8oqN6jWwye8zN/2Cmqs2YQsJlok2TdQ2Y2Q63iAi2vo8mqgda6WnEEIftJp7NZQFVsSm9ugy9pHP38GiP5g3+DcNOiJwncDsj3kfUcbjYDS/HKG9y1DDx+Hbl0xnJjtR8ADAcviRTm/zRDJbUllXTtIWVWQSuggmCFLwx8UUr5NcdZ5XNkWtZaxbnQ3zg/As4YtKHSr+iQiLmO+ZE9Woi4jfIzAh8qOzMNIdtnKBZkPA5l3LJbpy5PSNO57k5gKdNW1FDZfEZSEbnfuXs5y6uyRZfQTYUQeKOnWdbb0t6fw1cPE17peFoW4zkKDx8JPoT0Afvy1/i5aIWtEfDFodSa4/edlKKwGQXD5VpVCXJNpOzyCSh8LXKVO3qKl+iLRSQ3IEvoigeFuzmmDtMU/rYAHBL9TKs5MR/Sg/njiODDi+RrRjblwrF9gKQ3bYyacQl+W7WMx7Z6Q1YuqSoKidyeIhy93M2MG4SUI9f10ZKdz7Fp630kDWdiVWROXLyx199odfbGJmldY7UGIU1KA+aIKMUz6GIlqKQHTwhFX+cf4qqHe2Ou7MBWB3Gq0CAwEAAaNTMFEwHQYDVR0OBBYEFO7FJ5h9ads2i7zqb1KvzbufyvZMMB8GA1UdIwQYMBaAFO7FJ5h9ads2i7zqb1KvzbufyvZMMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggIBALBVPHcImrXZxOCo+v2GhdeZxI1dUq3eiPs/tFsS/2n9n1WF7UoJevwDradhAGohk+djdRm8do3kwT9wVzmbCPtZ45SxvuI79S+mTgy3nOEtHEjIl3ksCmd12GpU8tQID/iABXpt5NcjMsgu/Uif3GqGyoR7RHbHf/xqtPZxKQ5ithvVQKyFr7gt5ikffKPCsV4lX0s9mo8Nz+WoYJGl/pZonNJUEzrTe0KfpWtqvin6+db1254CGD5GDbskd4QUmS4wqVr4D80kCEKSZVRGrZIib3KCt+lhwtQ+4fISXClqHL5ottjaucDHk5rGNzAP/LjCoT8SG9gn+mg55csINKEc8iUWqD35tcCqg0ms26Lx8hSVyi3HsctVIJ+Fj9Ljp57K1jFBmyEEasZoHT39o9+MVzKgKFu183HPFqZZR+UmQ75NcJzps8EgZFC/zcuZZ3ZqVZGeKml7JjBh5SmnIRU15IGE5yjJf+z9mjzJBqg+dyzKBQyx6xok9qHl6dbEOhX8EdlUDUfOsCxn4IZMQvshxZR9GD2y8GO/ikW++iSvF8YBLdMuXEAKeauz2yBdZDH47xpPUlGkeRtdjy7SyK1B0UypCaOZaPznoZcGlzNtPSIxd4rI5YEN1Ol1jHRcpis1yzlQ0xIG5vHU0bJ6SxdqHlks20XAF97Mikpa3N6k</ns1:X509Certificate></ns1:X509Data></ns1:KeyInfo></ns0:KeyDescriptor><ns0:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</ns0:NameIDFormat><ns0:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</ns0:NameIDFormat><ns0:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp-proxy-test.rut.sunet.se/Saml2SP/sso/post" /><ns0:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-proxy-test.rut.sunet.se/Saml2SP/sso/redirect" /></ns0:IDPSSODescriptor></ns0:EntityDescriptor>
		`@ -0,0 +1 @@`
							<ns0:EntityDescriptor xmlns:ns0="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ns1="http://www.w3.org/2000/09/xmldsig#" entityID="https://idp-proxy-test.rut.sunet.se/Saml2IDP/proxy.xml"><ns0:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" WantAuthnRequestsSigned="false"><ns0:KeyDescriptor use="signing"><ns1:KeyInfo><ns1:X509Data><ns1:X509Certificate>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</ns1:X509Certificate></ns1:X509Data></ns1:KeyInfo></ns0:KeyDescriptor><ns0:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</ns0:NameIDFormat><ns0:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</ns0:NameIDFormat><ns0:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp-proxy-test.rut.sunet.se/Saml2SP/sso/post" /><ns0:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-proxy-test.rut.sunet.se/Saml2SP/sso/redirect" /></ns0:IDPSSODescriptor></ns0:EntityDescriptor>