shibkit-meta_meta 0.2.2

data/lib/shibkit/meta_meta/contact.rb

@@ -0,0 +1,85 @@
+## @author    Pete Birkinshaw (<pete@digitalidentitylabs.com>)
+## Copyright: Copyright (c) 2011 Digital Identity Ltd.
+## License:   Apache License, Version 2.0
+
+## Licensed under the Apache License, Version 2.0 (the "License");
+## you may not use this file except in compliance with the License.
+## You may obtain a copy of the License at
+## 
+##     http://www.apache.org/licenses/LICENSE-2.0
+## 
+## Unless required by applicable law or agreed to in writing, software
+## distributed under the License is distributed on an "AS IS" BASIS,
+## WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+## See the License for the specific language governing permissions and
+## limitations under the License.
+##
+
+
+module Shibkit
+  class MetaMeta
+
+    ## Class to represent technical or suppor contact details for an entity
+    class Contact < MetadataItem
+      
+      require 'shibkit/meta_meta/metadata_item'
+      
+      ## Element and attribute used to select XML for new objects
+      ROOT_ELEMENT = 'ContactPerson'
+      TARGET_ATTR  = 'contactType'
+      REQUIRED_QUACKS = [:email_url, :category]
+      
+      ## The given name of the contact (often the entire name is here)
+      attr_accessor :givenname
+      
+      ## The surname of the contact
+      attr_accessor :surname
+      
+      ## The email address of the contact formatted as a mailto: URL
+      attr_accessor :email_url
+      
+      ## The category of the contact (support or technical)
+      attr_accessor :category   
+      
+      ## Usually both the surname and givenname of the contact
+      def display_name
+      
+        return [givenname, surname].join(' ')
+      
+      end
+      
+      def email_address
+        
+        return email_url.gsub('mailto:','')
+        
+      end
+      
+      ## Nicer presentation as a string
+      def to_s
+        
+        return "#{display_name} <#{email_address}>"
+       
+      end
+      
+      private
+      
+      def parse_xml
+        
+        if @noko and @noko.content
+             
+          self.givenname = @noko.xpath('xmlns:GivenName[1]')[0].content    if @noko.xpath('xmlns:GivenName[1]')[0]
+          self.surname   = @noko.xpath('xmlns:SurName[1]')[0].content      if @noko.xpath('xmlns:SurName[1]')[0]
+          self.email_url = @noko.xpath('xmlns:EmailAddress[1]')[0].content if @noko.xpath('xmlns:EmailAddress[1]')[0]
+          self.category  = @noko['contactType'].to_sym
+        
+          log.debug "  Derived contact #{email_url} from XML"
+        
+        end
+        
+        
+        
+      end
+
+    end
+  end
+end

data/lib/shibkit/meta_meta/data/default_metadata/example_federation_metadata.xml

@@ -0,0 +1,168 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<EntitiesDescriptor
+  xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
+  xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
+  xmlns:elab="http://eduserv.org.uk/labels"
+  xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+  xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
+  xmlns:shibmeta="urn:mace:shibboleth:metadata:1.0"
+  xmlns:ukfedlabel="http://ukfederation.org.uk/2006/11/label"
+  xmlns:wayf="http://sdss.ac.uk/2006/06/WAYF"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xsi:schemaLocation="urn:oasis:names:tc:SAML:2.0:metadata sstc-saml-schema-metadata-2.0.xsd   urn:mace:shibboleth:metadata:1.0 shibboleth-metadata-1.0.xsd   http://www.w3.org/2001/04/xmlenc# xenc-schema.xsd   http://www.w3.org/2000/09/xmldsig# xmldsig-core-schema.xsd"
+	ID="ef20101029T160501Z"
+  Name="http://examplefederation.org"
+  validUntil="2010-11-12T16:05:01Z">
+
+	<EntityDescriptor ID="ef00001" entityID="https://shib.example.ac.uk/shibboleth">
+		
+		<Extensions>
+			<shibmd:Scope regexp="false">example.ac.uk</shibmd:Scope>
+			<ukfedlabel:UKFederationMember/>
+			<ukfedlabel:AccountableUsers/>
+		</Extensions>
+		
+		<IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+			<Extensions>
+				<shibmd:Scope regexp="false">example.ac.uk</shibmd:Scope>
+			</Extensions>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shib.example.ac.uk:8443/shibboleth-idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shib.example.ac.uk:8443/shibboleth-idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+			<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://shib.example.ac.uk/shibboleth-idp/profile/Shibboleth/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shib.example.ac.uk/shibboleth-idp/profile/SAML2/POST/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://shib.example.ac.uk/shibboleth-idp/profile/SAML2/POST-SimpleSign/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shib.example.ac.uk/shibboleth-idp/profile/SAML2/Redirect/SSO"/>
+		</IDPSSODescriptor>
+		
+		<AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+	  	<Extensions>
+				<shibmd:Scope regexp="false">example.ac.uk</shibmd:Scope>
+			</Extensions>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shib.example.ac.uk:8443/shibboleth-idp/profile/SAML1/SOAP/AttributeQuery"/>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shib.example.ac.uk:8443/shibboleth-idp/profile/SAML2/SOAP/AttributeQuery"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+		</AttributeAuthorityDescriptor>
+		
+		<Organization>
+	  	<OrganizationName xml:lang="en">The University of Example</OrganizationName>
+			<OrganizationDisplayName xml:lang="en">University of Example</OrganizationDisplayName>
+			<OrganizationURL xml:lang="en">http://www.example.ac.uk/</OrganizationURL>
+		</Organization>
+		
+		<ContactPerson contactType="support">
+		  <GivenName>IT Service Desk</GivenName>
+			<EmailAddress>mailto:IT-Servicedesk@example.ac.uk</EmailAddress>
+		</ContactPerson>
+		<ContactPerson contactType="technical">
+		  <GivenName>A</GivenName>
+			<SurName>Person</SurName>
+			<EmailAddress>mailto:a.person@example.ac.uk</EmailAddress>
+		</ContactPerson>
+
+  </EntityDescriptor>
+		
+	<EntityDescriptor ID="ef00002" entityID="https://idp.example.exampleshire.sch.uk/shibboleth">
+		
+		<Extensions>
+			<shibmd:Scope regexp="false">example.ac.uk</shibmd:Scope>
+			<ukfedlabel:UKFederationMember/>
+			<ukfedlabel:AccountableUsers/>
+		</Extensions>
+		
+		<IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+			<Extensions>
+				<shibmd:Scope regexp="false">example.exampleshire.sch.uk</shibmd:Scope>
+			</Extensions>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.example.exampleshire.sch.uk:8443/shibboleth-idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.example.exampleshire.sch.uk:8443/shibboleth-idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+			<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.example.exampleshire.sch.uk/shibboleth-idp/profile/Shibboleth/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.example.exampleshire.sch.uk/shibboleth-idp/profile/SAML2/POST/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.example.exampleshire.sch.uk/shibboleth-idp/profile/SAML2/POST-SimpleSign/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.example.exampleshire.sch.uk/shibboleth-idp/profile/SAML2/Redirect/SSO"/>
+		</IDPSSODescriptor>
+		
+		<AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+	  	<Extensions>
+				<shibmd:Scope regexp="false">example.exampleshire.sch.uk</shibmd:Scope>
+			</Extensions>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.example.exampleshire.sch.uk:8443/shibboleth-idp/profile/SAML1/SOAP/AttributeQuery"/>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.example.exampleshire.sch.uk:8443/shibboleth-idp/profile/SAML2/SOAP/AttributeQuery"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+		</AttributeAuthorityDescriptor>
+		
+		<Organization>
+	  	<OrganizationName xml:lang="en">Example Secondary School</OrganizationName>
+			<OrganizationDisplayName xml:lang="en">Example Secondary School</OrganizationDisplayName>
+			<OrganizationURL xml:lang="en">http://www.example.exampleshire.sch.uk/</OrganizationURL>
+		</Organization>
+		
+		<ContactPerson contactType="support">
+		  <GivenName>IT Service Desk</GivenName>
+			<EmailAddress>mailto:support@example.exampleshire.sch.uk</EmailAddress>
+		</ContactPerson>
+		<ContactPerson contactType="technical">
+		  <GivenName>A</GivenName>
+			<SurName>Person</SurName>
+			<EmailAddress>mailto:sysadmin@example.exampleshire.sch.uk</EmailAddress>
+		</ContactPerson>
+
+  </EntityDescriptor>
+
+	<EntityDescriptor ID="ef00003" entityID="https://login.example.com/shibboleth">
+		
+		<Extensions>
+			<shibmd:Scope regexp="false">example.com</shibmd:Scope>
+			<ukfedlabel:UKFederationMember/>
+			<ukfedlabel:AccountableUsers/>
+			<wayf:HideFromWAYF/>
+		</Extensions>
+		
+		<IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+			<Extensions>
+				<shibmd:Scope regexp="false">example.com</shibmd:Scope>
+			</Extensions>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login.example.com:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login.example.com:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+			<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://login.example.com/idp/profile/Shibboleth/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.example.com/idp/profile/SAML2/POST/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://login.example.com/idp/profile/SAML2/POST-SimpleSign/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.example.com/idp/profile/SAML2/Redirect/SSO"/>
+		</IDPSSODescriptor>
+		
+		<AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+	  	<Extensions>
+				<shibmd:Scope regexp="false">example.com</shibmd:Scope>
+			</Extensions>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login.example.com:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login.example.com:8443/idp/profile/SAML2/SOAP/AttributeQuery"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+		</AttributeAuthorityDescriptor>
+		
+		<Organization>
+	  	<OrganizationName xml:lang="en">Example Online</OrganizationName>
+			<OrganizationDisplayName xml:lang="en">Example Online</OrganizationDisplayName>
+			<OrganizationURL xml:lang="en">http://example.com</OrganizationURL>
+		</Organization>
+		
+		<ContactPerson contactType="support">
+		  <GivenName>IT Service Desk</GivenName>
+			<EmailAddress>mailto:help@example.com</EmailAddress>
+		</ContactPerson>
+		<ContactPerson contactType="technical">
+		  <GivenName>A</GivenName>
+			<SurName>Person</SurName>
+			<EmailAddress>mailto:guru@example.com</EmailAddress>
+		</ContactPerson>
+
+  </EntityDescriptor>
+
+</EntitiesDescriptor>		

data/lib/shibkit/meta_meta/data/default_metadata/local_metadata.xml

@@ -0,0 +1,66 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<EntitiesDescriptor
+  xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
+  xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
+  xmlns:elab="http://eduserv.org.uk/labels"
+  xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+  xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
+  xmlns:shibmeta="urn:mace:shibboleth:metadata:1.0"
+  xmlns:ukfedlabel="http://ukfederation.org.uk/2006/11/label"
+  xmlns:wayf="http://sdss.ac.uk/2006/06/WAYF"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xsi:schemaLocation="urn:oasis:names:tc:SAML:2.0:metadata sstc-saml-schema-metadata-2.0.xsd   urn:mace:shibboleth:metadata:1.0 shibboleth-metadata-1.0.xsd   http://www.w3.org/2001/04/xmlenc# xenc-schema.xsd   http://www.w3.org/2000/09/xmldsig# xmldsig-core-schema.xsd"
+	ID="ef20101029T160501Z"
+  Name="http://example.org"
+  validUntil="2010-11-12T16:05:01Z">
+	<EntityDescriptor ID="miskatonic.edu" entityID="https://yogsothoth.miskatonic.edu/shibboleth">
+		
+		<Extensions>
+			<shibmd:Scope regexp="false">miskatonic.edu</shibmd:Scope>
+			<ukfedlabel:UKFederationMember/>
+			<ukfedlabel:AccountableUsers/>
+		</Extensions>
+		
+		<IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+			<Extensions>
+				<shibmd:Scope regexp="false">miskatonic.edu</shibmd:Scope>
+			</Extensions>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://yogsothoth.miskatonic.edu:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://yogsothoth.miskatonic.edu:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+			<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://yogsothoth.miskatonic.edu/idp/profile/Shibboleth/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://yogsothoth.miskatonic.edu/idp/profile/SAML2/POST/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://yogsothoth.miskatonic.edu/idp/profile/SAML2/POST-SimpleSign/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://yogsothoth.miskatonic.edu/idp/profile/SAML2/Redirect/SSO"/>
+		</IDPSSODescriptor>
+		
+		<AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+	  	<Extensions>
+				<shibmd:Scope regexp="false">miskatonic.edu</shibmd:Scope>
+			</Extensions>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://yogsothoth.miskatonic.edu:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://yogsothoth.miskatonic.edu:8443/idp/profile/SAML2/SOAP/AttributeQuery"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+		</AttributeAuthorityDescriptor>
+		
+		<Organization>
+	  	<OrganizationName xml:lang="en">Miskatonic University</OrganizationName>
+			<OrganizationDisplayName xml:lang="en">Miskatonic University</OrganizationDisplayName>
+			<OrganizationURL xml:lang="en">http://www.miskatonic.edu/</OrganizationURL>
+		</Organization>
+		
+		<ContactPerson contactType="support">
+		  <GivenName>IT Service Desk</GivenName>
+			<EmailAddress>mailto:library@miskatonic.edu</EmailAddress>
+		</ContactPerson>
+		<ContactPerson contactType="technical">
+		  <GivenName>A</GivenName>
+			<SurName>Person</SurName>
+			<EmailAddress>mailto:w.whately@miskatonic.edu</EmailAddress>
+		</ContactPerson>
+
+  </EntityDescriptor>
+
+</EntitiesDescriptor>

data/lib/shibkit/meta_meta/data/default_metadata/uncommon_federation_metadata.xml

@@ -0,0 +1,115 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<EntitiesDescriptor
+  xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
+  xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
+  xmlns:elab="http://eduserv.org.uk/labels"
+  xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+  xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
+  xmlns:shibmeta="urn:mace:shibboleth:metadata:1.0"
+  xmlns:ukfedlabel="http://ukfederation.org.uk/2006/11/label"
+  xmlns:wayf="http://sdss.ac.uk/2006/06/WAYF"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xsi:schemaLocation="urn:oasis:names:tc:SAML:2.0:metadata sstc-saml-schema-metadata-2.0.xsd   urn:mace:shibboleth:metadata:1.0 shibboleth-metadata-1.0.xsd   http://www.w3.org/2001/04/xmlenc# xenc-schema.xsd   http://www.w3.org/2000/09/xmldsig# xmldsig-core-schema.xsd"
+	ID="ef20101029T160501Z"
+  Name="http://uncommonfed.org"
+  validUntil="2010-11-12T16:05:01Z">
+
+	<EntityDescriptor ID="uf00001" entityID="https://shibboleth.example.edu/shibboleth">
+		
+		<Extensions>
+			<shibmd:Scope regexp="false">example.edu</shibmd:Scope>
+			<ukfedlabel:UKFederationMember/>
+			<ukfedlabel:AccountableUsers/>
+		</Extensions>
+		
+		<IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+			<Extensions>
+				<shibmd:Scope regexp="false">example.edu</shibmd:Scope>
+			</Extensions>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibboleth.example.edu:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibboleth.example.edu:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+			<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://shibboleth.example.edu/idp/profile/Shibboleth/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibboleth.example.edu/idp/profile/SAML2/POST/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://shibboleth.example.edu/idp/profile/SAML2/POST-SimpleSign/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shibboleth.example.edu/idp/profile/SAML2/Redirect/SSO"/>
+		</IDPSSODescriptor>
+		
+		<AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+	  	<Extensions>
+				<shibmd:Scope regexp="false">example.edu</shibmd:Scope>
+			</Extensions>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibboleth.example.edu:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibboleth.example.edu:8443/idp/profile/SAML2/SOAP/AttributeQuery"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+		</AttributeAuthorityDescriptor>
+		
+		<Organization>
+	  	<OrganizationName xml:lang="en">Example Institute of Technology</OrganizationName>
+			<OrganizationDisplayName xml:lang="en">Example Institute of Technology</OrganizationDisplayName>
+			<OrganizationURL xml:lang="en">http://www.example.edu/</OrganizationURL>
+		</Organization>
+		
+		<ContactPerson contactType="support">
+		  <GivenName>IT Service Desk</GivenName>
+			<EmailAddress>mailto:IT-Servicedesk@example.edu</EmailAddress>
+		</ContactPerson>
+		<ContactPerson contactType="technical">
+		  <GivenName>A</GivenName>
+			<SurName>Person</SurName>
+			<EmailAddress>mailto:a.person@example.edu</EmailAddress>
+		</ContactPerson>
+
+  </EntityDescriptor>
+
+	<EntityDescriptor ID="uf00002" entityID="https://login.example.com/shibboleth">
+		
+		<Extensions>
+			<shibmd:Scope regexp="false">example.com</shibmd:Scope>
+		</Extensions>
+		
+		<IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+			<Extensions>
+				<shibmd:Scope regexp="false">example.com</shibmd:Scope>
+			</Extensions>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login.example.com:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
+			<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login.example.com:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+			<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://login.example.com/idp/profile/Shibboleth/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.example.com/idp/profile/SAML2/POST/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://login.example.com/idp/profile/SAML2/POST-SimpleSign/SSO"/>
+			<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.example.com/idp/profile/SAML2/Redirect/SSO"/>
+		</IDPSSODescriptor>
+		
+		<AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+	  	<Extensions>
+				<shibmd:Scope regexp="false">example.com</shibmd:Scope>
+			</Extensions>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login.example.com:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
+			<AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login.example.com:8443/idp/profile/SAML2/SOAP/AttributeQuery"/>
+			<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
+			<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+		</AttributeAuthorityDescriptor>
+		
+		<Organization>
+	  	<OrganizationName xml:lang="en">Example Online</OrganizationName>
+			<OrganizationDisplayName xml:lang="en">Example Online</OrganizationDisplayName>
+			<OrganizationURL xml:lang="en">http://example.com</OrganizationURL>
+		</Organization>
+		
+		<ContactPerson contactType="support">
+		  <GivenName>IT Service Desk</GivenName>
+			<EmailAddress>mailto:help@example.com</EmailAddress>
+		</ContactPerson>
+		<ContactPerson contactType="technical">
+		  <GivenName>A</GivenName>
+			<SurName>Person</SurName>
+			<EmailAddress>mailto:guru@example.com</EmailAddress>
+		</ContactPerson>
+
+  </EntityDescriptor>
+
+</EntitiesDescriptor>

data/lib/shibkit/meta_meta/data/default_metadata_cache.yml

@@ -0,0 +1,166 @@
+--- 
+- !ruby/object:Shibkit::MetaMeta::Federation 
+  display_name: Other Organisations
+  entities: 
+  - !ruby/object:Shibkit::MetaMeta::Entity 
+    accountable: true
+    athens: false
+    entity_uri: https://yogsothoth.miskatonic.edu/shibboleth
+    federation_uri: http://otherorganisations.org
+    idp: true
+    metadata_id: miskatonic.edu
+    organisation: !ruby/object:Shibkit::MetaMeta::Organisation 
+      display_name: Miskatonic University
+      name: Miskatonic University
+      url: http://www.miskatonic.edu/
+    scopes: 
+    - miskatonic.edu
+    sp: true
+    support_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: support
+      email_url: mailto:library@miskatonic.edu
+      givenname: IT Service Desk
+    technical_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: technical
+      email_url: mailto:w.whately@miskatonic.edu
+      givenname: A
+      surname: Person
+    ukfm: true
+  federation_uri: http://otherorgs.org
+  metadata_id: ef20101029T160501Z
+  read_at: 2010-11-03 21:35:56.840712 +00:00
+  valid_until: "2010-11-12T16:05:01Z"
+- !ruby/object:Shibkit::MetaMeta::Federation 
+  display_name: Example Federation
+  entities: 
+  - !ruby/object:Shibkit::MetaMeta::Entity 
+    accountable: true
+    athens: false
+    entity_uri: https://shib.example.ac.uk/shibboleth
+    federation_uri: http://examplefederation.org
+    idp: true
+    metadata_id: ef00001
+    organisation: !ruby/object:Shibkit::MetaMeta::Organisation 
+      display_name: University of Example
+      name: The University of Example
+      url: http://www.example.ac.uk/
+    scopes: 
+    - example.ac.uk
+    sp: true
+    support_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: support
+      email_url: mailto:IT-Servicedesk@example.ac.uk
+      givenname: IT Service Desk
+    technical_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: technical
+      email_url: mailto:a.person@example.ac.uk
+      givenname: A
+      surname: Person
+    ukfm: true
+  - !ruby/object:Shibkit::MetaMeta::Entity 
+    accountable: true
+    athens: false
+    entity_uri: https://idp.exampleacademy.exampleshire.sch.uk/shibboleth
+    federation_uri: http://examplefederation.org
+    idp: true
+    metadata_id: ef00002
+    organisation: !ruby/object:Shibkit::MetaMeta::Organisation 
+      display_name: Example Secondary School
+      name: Example Secondary School
+      url: http://www.exampleacademy.exampleshire.sch.uk/
+    scopes: 
+    - exampleacademy.exampleshire.sch.uk
+    sp: true
+    support_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: support
+      email_url: mailto:support@exampleacademy.exampleshire.sch.uk
+      givenname: IT Service Desk
+    technical_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: technical
+      email_url: mailto:sysadmin@exampleacademy.exampleshire.sch.uk
+      givenname: A
+      surname: Person
+    ukfm: true
+  - !ruby/object:Shibkit::MetaMeta::Entity 
+    accountable: true
+    athens: false
+    entity_uri: https://login.example.com/shibboleth
+    federation_uri: http://examplefederation.org
+    idp: true
+    metadata_id: ef00003
+    organisation: !ruby/object:Shibkit::MetaMeta::Organisation 
+      display_name: Example Online
+      name: Example Online
+      url: http://example.com
+    scopes: 
+    - example.com
+    sp: true
+    support_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: support
+      email_url: mailto:help@example.com
+      givenname: IT Service Desk
+    technical_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: technical
+      email_url: mailto:guru@example.com
+      givenname: A
+      surname: Person
+    ukfm: true
+  federation_uri: http://examplefederation.org
+  metadata_id: ef20101029T160501Z
+  read_at: 2010-11-03 21:35:56.872815 +00:00
+  valid_until: "2010-11-12T16:05:01Z"
+- !ruby/object:Shibkit::MetaMeta::Federation 
+  display_name: UnCommon
+  entities: 
+  - !ruby/object:Shibkit::MetaMeta::Entity 
+    accountable: true
+    athens: false
+    entity_uri: https://shibboleth.example.edu/shibboleth
+    federation_uri: http://uncommonfed.org
+    idp: true
+    metadata_id: uf00001
+    organisation: !ruby/object:Shibkit::MetaMeta::Organisation 
+      display_name: University of Example
+      name: The University of Example
+      url: http://www.example.edu/
+    scopes: 
+    - example.edu
+    sp: true
+    support_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: support
+      email_url: mailto:IT-Servicedesk@example.edu
+      givenname: IT Service Desk
+    technical_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: technical
+      email_url: mailto:a.person@example.edu
+      givenname: A
+      surname: Person
+    ukfm: true
+  - !ruby/object:Shibkit::MetaMeta::Entity 
+    accountable: false
+    athens: false
+    entity_uri: https://login.example.com/shibboleth
+    federation_uri: http://uncommonfed.org
+    idp: true
+    metadata_id: uf00002
+    organisation: !ruby/object:Shibkit::MetaMeta::Organisation 
+      display_name: Example Online
+      name: Example Online
+      url: http://example.com
+    scopes: 
+    - example.com
+    sp: true
+    support_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: support
+      email_url: mailto:help@example.com
+      givenname: IT Service Desk
+    technical_contact: !ruby/object:Shibkit::MetaMeta::Contact 
+      category: technical
+      email_url: mailto:guru@example.com
+      givenname: A
+      surname: Person
+    ukfm: false
+  federation_uri: http://uncommonfed.org
+  metadata_id: ef20101029T160501Z
+  read_at: 2010-11-03 21:35:56.879264 +00:00
+  valid_until: "2010-11-12T16:05:01Z"