git clone --recursive git@github.com:ubuntunet/eduID_ServiceProvider.git sp
cd sp
cp inventories/template inventories/<sp_name>
Provide the domain name/IP address of the server you want provision and replace 'production' with your <sp_name> in inventories/<sp_name>
cp group_vars/template group_vars/<sp_name>
cp roles/shibboleth/vars/main.yml.example roles/shibboleth/vars/main.yml
Adapt the values therein accordingly.
If you want to install Apache at the same time, uncomment its role in service_provider.yml.
ansible-playbook -i inventories/<sp_name> service_provider.yml
If you are using a Resource Registry for your Federation (e.g. https://registry.eduid.africa), you'll need to register your new SP there. You can download the metadata file for your SP to faciliate the registration process:
curl -k https://{{ fqdn }}/Shibboleth.sso/Metadata
Once you have successfully downloaded the metadata file, it is time to register it. These instructions are written for operators using the eduID Resource Registry of the UbuntuNet Alliance.
- Log into the Resource Registry eg. https://registry.eduid.africa
- I'd like to replace the logo with my own.
- You can add your own logo in roles/shibboleth/files/logo.png and rerun the playbook.
- I don't know where to register my SP?
- If you are not part of a federation or don't know which federation to use, please drop us an email at eduid@ubuntunet.net and we'll see that we find a solution for you.
- How does the Travis Continous Integration get access to the secret.yml file?
- https://docs.travis-ci.com/user/encrypting-files/