diff options
| -rwxr-xr-x | scripts/cert-retrieve.sh | 8 | ||||
| -rw-r--r-- | xslt/filter-idp.xslt | 32 |
2 files changed, 40 insertions, 0 deletions
diff --git a/scripts/cert-retrieve.sh b/scripts/cert-retrieve.sh new file mode 100755 index 00000000..5440b0f8 --- /dev/null +++ b/scripts/cert-retrieve.sh @@ -0,0 +1,8 @@ +#!/bin/sh +# +# usage: retrieve-cert.sh remote.host.name [port] +# +REMHOST=$1 +REMPORT=${2:-443} + +echo | openssl s_client -connect ${REMHOST}:${REMPORT} 2>&1 | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' diff --git a/xslt/filter-idp.xslt b/xslt/filter-idp.xslt new file mode 100644 index 00000000..868bc1a2 --- /dev/null +++ b/xslt/filter-idp.xslt @@ -0,0 +1,32 @@ +<?xml version="1.0"?> +<xsl:stylesheet version="1.0" + xmlns:xsl="http://www.w3.org/1999/XSL/Transform" + xmlns:shibmeta="urn:mace:shibboleth:metadata:1.0" + xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" + xmlns:ds="http://www.w3.org/2000/09/xmldsig#" + xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" + xmlns:exsl="http://exslt.org/common" + extension-element-prefixes="exsl" + xmlns:xi="http://www.w3.org/2001/XInclude" + xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"> + + <xsl:output method="xml" indent="yes" encoding="UTF-8"/> + + <xsl:template match="/md:EntitiesDescriptor"> + <md:EntitiesDescriptor> + <xsl:apply-templates select="md:EntityDescriptor[md:IDPSSODescriptor]"/> + </md:EntitiesDescriptor> + </xsl:template> + + <xsl:template match="text()|comment()|@*"> + <xsl:copy/> + </xsl:template> + + <xsl:template match="*"> + <xsl:copy> + <xsl:apply-templates select="node()|@*"/> + </xsl:copy> + </xsl:template> + + +</xsl:stylesheet> |