| Table of Contents |
|---|
Skolfederation Trial is a free test environment open for both members of Skolfederation and non-members. In Skolfederation Trial user organizations and service providers can test their solutions with test services provided by the federation, or with other participating entities in Skolfederation Trial as well as test services provided by Skolverket for DNP. Technical personnel can also get acquainted with metadata management in Federationsadmin.
...
All members of Skolfederation gain automatic access to Skolfederation Trial. On finalization of membership, all Technical Contacts have received an email with credentials for accessing Skolfederation Trial in Federationsadmin. Technical Contacts also have the ability to create Technical Agents to delegate access to the members metadata management. More on creating and managing Technical Agents is found in the user guide.
If you are a member of Skolfederation but forgot your password you can reset your password by clicking "Forgot Password?" at the logon screen for Federationsadmin.
...
Uploading metadata to Skolfederation Trial
Uploading metadata in Federationsadmin
To upload metadata to Skolfederation Trial, log on to Federationsadmin with your Trial credentials.
...
| Info | ||
|---|---|---|
| ||
| Trial metadata is managed the same way as production metadata. For instructions, please read the user guides for metadata management found here. |
Sending metadata manually to federation operator
An alternative to managing the metadata in Federationsadmin is to use the form linked below to send metadata to the federation operator for validation and verification. If there are errors, the federation operator will request corrections.
Technical information
Metadata
...
Public key for verifying signature of federation metadata is found below.
Certificate file: https://ny.skolfederation.se/app/uploads/2016/05/skolfederation-trial-3_1.crt
| Code Block | ||
|---|---|---|
| ||
-----BEGIN CERTIFICATE----- MIIFnTCCA4WgAwIBAgIJAJIjkgQRcgiiMA0GCSqGSIb3DQEBCwUAMGQxCzAJBgNV BAYTAlNFMRIwEAYDVQQIDAlTdG9ja2hvbG0xEjAQBgNVBAcMCVN0b2NraG9sbTEt MCsGA1UECgwkU3RpZnRlbHNlbiBmb3IgSW50ZXJuZXRpbmZyYXN0cnVrdHVyMCAX DTE2MDUyMzEzMjc0N1oYDzIxMTYwNTIzMTMyNzQ3WjBkMQswCQYDVQQGEwJTRTES MBAGA1UECAwJU3RvY2tob2xtMRIwEAYDVQQHDAlTdG9ja2hvbG0xLTArBgNVBAoM JFN0aWZ0ZWxzZW4gZm9yIEludGVybmV0aW5mcmFzdHJ1a3R1cjCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALv2W31Glj8DzofLuvrRsLiT03R0sb0QP4Oi MCMp4YJOvPuJeMxnoLj0+I5VVx5XpREftZq53CUFLWMjIuu2dzuGdg91MYHFY4zz MSe3xckD4XsjlrU4+ovaMEcYCJjNLrBVJlDVs6tfTXbwPAIbBq+SAAeLUzF4CJhL MNm4hwCvuYRXcFaapZKpZnTtwQ+Py/J10b5Bc9aF6766LNFreG39foKDrF+4vFW8 39wLn+lyvBjMbUfbr5jk1kww8gN2Kq08wGJBlQaQyKCEoETH9hv48LvQ1Fi2IJd6 kISjwdhQbF24WFHGyXl4Qr7Sk/HunEOZMQrum8JyDZUeGExBmzZcCgkNarG8u1AY JrNar+6g/0vLqj71E7coSJ0ywXxJH2WsQ/2FR9pkd5Inikp+ss9oto7UjStbZYLL Guyg3zOde5uxDqRbd+lfKQyKrsf43mPSs3vdvKpIQYfu6bueMa/oIMtal4g5upii 4j0LENYGROZZad/IOQPxT3wG+BThYE/0EjD7BImm66sr5W+VAQRT0nroRTvm7kJJ tW8R/I9VK5nDAmdIdaqHCAr/lmJfXXIi0JMttYwtbTmaGkRPkPp7JMVQ5NFmjL+F hSlqFRJbDvkE0rlQ2Hobspb4AouVkg1mt5VG4A24ptdPUCvmg0v6J1R1FL1VH6Oy /lMWt1TnAgMBAAGjUDBOMB0GA1UdDgQWBBTeV6UGmGF0di0Rr43/BZpAeX9geTAf BgNVHSMEGDAWgBTeV6UGmGF0di0Rr43/BZpAeX9geTAMBgNVHRMEBTADAQH/MA0G CSqGSIb3DQEBCwUAA4ICAQAEE3sMWLF3mZHPzPZ+RxAn8NHpkwYz2Sz8B+NVlCsP 81f64CxxknB+RwQWBmyottK2lNayvjEsydGvV/Fe5g6hwEJYBWaKGom/1vUqUhuD /zKTgt1sD3Z3NtLYZepFNNeO8DNQJNFzsLMY9EG0ufc7GbFGaVIJa1ZEzcVb9zc1 +lpAKGcODTjQv+gn9FmqUI4IZj/UcCMCkNrVXes6Lzyt2oWPgVFUC0zTPChXE+6V K7bdKch8enXKOpUVn4zg7BpoXLpKpk2RXFBXf6KM+GnWpfYsAkZGJmkwJ52Ovd8f oE3K+QnyxGsyGhN1PX0Dh+0896seCS8VC2Dgs+7JPPXoz7jLYGxiTG9fKMTUZMpm dSBt+jsitsjV4/41U7wveFLSM9kms3bEoXf9kCJfEqysw3qU4Txyn9zv4uOmBzn8 fdZLa+Vpp6DqpyukSQdPsIcUc38tJomqMgrx1vdoIkWJE8sabj1MSEQmI4hdOoub kespEI3hPrbNTlWQApIaXWFE/WZftM+48bG9nNDzrNT+oZHFkR0xAnLnHT7WiB+p zfAgxd8HSURLgfQNUDc9glOwpVyev7MZMUq32VYXdwcMMfeSCWXFQcmbGp/hvpLr x2DA4dplOP9iMnLxcFeR8zf6IKsUPrAMC1zGe5nwJ3kcZppKydY388CDOMlMrztR lw== -----END CERTIFICATE----- |
| Code Block |
|---|
FingerprintSHA-256 fingerprint: DD:42:FE:DA:AB:E9:F0:99:D3:BE:EC:CA:94:95:3F:E8:33:95:68:50:1D:D1:3A:8A:D2:FD:A5:A7:8F:16:DC:ED |
...
| Info | ||
|---|---|---|
| ||
We recommend verifying the fingerprint of the signing certificate with the federation operator before adding the certificate to your IdP/SP trust. After trusting the certificate, always verify federation metadata signature with signing certificate to guarantee metadata integrity. |
...
| Info | ||
|---|---|---|
| ||
Note that the federation operator does not recommend the usage of the centralized DS for discovery of IdP's in production environments, due to limitations in user experience. However, in the case of Skolfederation Trial feel free to use this tool to test your services. |
Trial - en miljö för förberedande tester och demo
Innan metadata laddas upp till produktionsmiljön för första gången är det rekommenderat att genomföra tester i "trial".
Det krävs inget medlemskap för att använda Skolfederation Trial, men om man inte redan är medlem måste man anmäla sig till den: anmälan Trial
För att ladda upp metadata i Trial används samma förfarande som i produktionsmiljön.
Metadata för Trial hittar du här: https://fed.skolfederation.se/trial/md/skolfederation-trial-3_1.xml
Anvisningstjänst för Trial hittar du här: https://fed.skolfederation.se/trial/ds/
IdP för test
I Trial tillhandahåller vi en IDP som kan användas för att kontrollera att en SP fungerar korrekt med Skolfederation.
...
Test services in Skolfederation Trial
Skolfederation Trial provides test IdP and test SP services for participants to test logon flows, attribute release and attribute consumption.
Test IdP
The test IdP can be used for testing logon and attribute release to your SP uploaded in Skolfederation Trial. As the IdP service is only a form where you can select what attributes and values to release (in accordance with Skolfederation Attribute Profile), the test IdP does not require any user authentication. The test IdP automatically trusts and allows logons to all SP's in the federation metadata for Skolfederation Trial.
| SAML 2.0 entityID | Name in Skolfederation Trial discovery service |
|---|---|
| https://idp.trial.skolfederation.swefed.se/simplesaml/saml2/idp/metadata.php | Skolfederation Trial-IDP |
namn i anvisningstjänsten: Skolfederation Trial IdP attribute release form
Test SP
...
I Trial tillhandahåller vi en SP som kan användas för att kontrollera att en IdP fungerar korrekt med Skolfederation.
URL för inloggning: https://sp.trial.skolfederation.swefed.se/
...
The test SP can be used for testing logon and attribute release from your IdP uploaded in Skolfederation Trial. The SP service presents all sent attributes in a table. If the attribute is presented this means the SP could consume the attribute correctly and that the attribute syntax is correct. The test SP automatically trusts and allows logons from all IdP's in the federation metadata for Skolfederation Trial.
| SAML 2.0 entityID | Logon URL |
|---|---|
| https://sp.trial.skolfederation.swefed.se/simplesaml/module.php/saml/sp/metadata.php/default-sp |
xxx - ska vi ha följande fortfarande? Vid vissa typer av uppdateringar publiceras en betaversion av framtida produktionsmiljö två till tre månader innan skarp produktionssättning.
Detta gäller när förändringen innebär att befintliga implementationer behöver anpassas, eller då vi bedömer att det finns risk att befintliga implementationer kan påverkas.
Trial SP attribute consumption viewFörändringen meddelas minst tre månader innan produktionssättning med anvisning om var betaversionen finns att testa. Meddelandet mejlas till tekniska kontaktpersoner i federationens medlemsregister och publiceras under "Tekniska nyhetsbrev" på webbplatsen.