SAML metadata about SPF SPs: distribution to identity federations by ERIC

This page provides a status overview of the SP metadata distribution across the various CLARIN SPF identity federations. It is still under construction (October 2017) so some information might be missing or incomplete. If you are looking for the old matrix page you can find it here. Although, keep in mind that the whole metadata workflow changed once the SPF infrastructure was dockerized and the SP metadata file moved from the CLARIN SVN to ​github. A detailed description of the new workflow can be found in the service provider federation page.

Service Providers in the production SPF

This means the SP entityID is whitelisted. Only the SPs that are whitelisted, will be filtered and passed on to the ​production SAML metadata. In order to be whitelisted an SP needs to have signed the SPF agreement.

All Service Providers in the production SPF will be registered directly in DFN-AAI (DE), Belnet (BE), Haka (FI), eduID.cz, SURFconext (NL) and via eduGAIN in the various other national federations.

Accepted

See the ​centre registry SPF page, all the SPs with a checked "Prod?" column.

Current distribution to national federations

Service Provider	Latest metadata version	DFN (DE) version	eduGAIN version	BE version	CZ version	FI version	NL version
​https://clarin.phonetik.uni-muenchen.de	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://shibboleth.bbaw.de/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://clarin.oeaw.ac.at/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://ekrksso.keeleressursid.ee/simplesaml/module.php/saml/sp/metadata.php/ekrk-sp	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://infra.clarin.dk/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://sp.clarin.vdu.lt	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​http://www.clarin-pl.eu/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://clarino.uib.no/	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://repo.clarino.uib.no/shibboleth/sp	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://sp.clarin.si/	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://childes.talkbank.org/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://talkbank.talkbank.org/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://webanno.sfs.uni-tuebingen.de	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://weblicht.sfs.uni-tuebingen.de	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​http://sp.lat.csc.fi	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://lbr.csc.fi/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://sp.korp.csc.fi/	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://engine.proxy.clariah.nl/authentication/sp/metadata	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://secure.huygens.knaw.nl	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​http://sp.vs1.corpora.uni-hamburg.de	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://clarin.ids-mannheim.de/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://repos.ids-mannheim.de/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://portal.clarin.inl.nl/	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://ufal-point.mff.cuni.cz/shibboleth/eduid/sp	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://openskos.meertens.knaw.nl/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://www.meertens.knaw.nl/Shibboleth.sso/Metadata	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://www.nederlab.nl/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://sp.catalog.clarin.eu	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://sp.corpus1.mpi.nl	|​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://lap.clarino.uio.no/simplesaml/module.php/saml/sp/metadata.php/default-sp	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://tekstlab.uio.no/glossa2/saml/metadata	​cee4eb9	lastest	lastest	lastest	lastest		lastest
​https://dev.clarin.nl/shibboleth	​cee4eb9	lastest	lastest	lastest	lastest		lastest

Please note: for the other countries we use the eduGAIN metadata distribution. Therefore they are not listed in the distribution matrix.

For an explanation about why this dual distribution mechanism is in use, please see the ​opt-in page.

Procedure for changing/adding and distributing new SAML metadata about SPF SPs

Adding a new SP or changing SAML metadata about an existing one and distributing it is a complicated procedure.

Issues with production SPs

Please avoid expiring SAML signing certificates by doing a ​certificate roll-over on time.

Current SPs with expired certificates:

• ​http://www.clarin-pl.eu/shibboleth
• ​https://clarino.uib.no/
• ​http://sp.lat.csc.fi
• ​https://portal.clarin.inl.nl/
• ​https://clarin.fz-juelich.de/shibboleth
• ​https://asvsp.informatik.uni-leipzig.de/
• ​https://beta-catalog.clarin.eu/sp/shibboleth

Remedy: create new SAML metadata, sign with a valid certificate (could be self-signed)