1 .de Vb \" Begin verbatim text
6 .de Ve \" End verbatim text
10 .TH SAMLSIGN 1 "2008 Jun 16" Internet2 "OpenSAML manual"
11 .\" For nroff, turn off justification. Always turn off hyphenation; it makes
12 .\" way too many mistakes in technical documents.
16 samlsign \- sign and verify XML documents
22 signs or verifies signed XML documents.
23 To sign a document, use
25 To verify a document, omit
32 options are required when verifying.
37 is required when signing.
41 signs or verifies standard input. Pass
45 to retrieve the document from a URL or file path.
46 Signed documents are always printed to standard output.
50 The URL of the document to sign or verify.
53 The full path of the document to sign or verify.
56 Rather than acting on the entire document, only act on the object with the
59 Only that object (with its new signature) will be printed to standard
63 Sign, rather than the default action of verify.
66 Specifies the full path to the key to use for signing.
69 Specifies the full path to the certificate to use for verification.
72 Specifies a credential resolver to use for either signing or verification.
75 Specifies the trust engine for TrustEngine-based verification.
78 Specifies the metadata for TrustEngine-based verification.
81 Specifies the issuer for verification.
84 Specifies the protocol for TrustEngine-based verification.
85 This option allows specification of an arbitrary protocol by name, but
86 more commonly one would use one of the options listed below for standard
90 Specifies the resource name for TrustEngine-based verification.
91 This option allows specification of an arbitrary resource name by name,
92 but more commonly one would use one of the options listed below for
93 standard resource names.
96 Specifies the namespace for TrustEngine-based verification. If not given,
97 the default is SAML20MD_NS.
100 Use the SAML1.0 protocol for TrustEngine-based verification.
103 use the SAML1.1 protocol for TrustEngine-based verification.
106 use the SAML2.0 P NS protocol for TrustEngine-based verification.
109 Set the resouce name to IDPSSODescriptor for TrustEngine-based
113 Set the resource name to AttributeAuthorityDescriptor for
114 TrustEngine-based verification.
117 Set the resource name to PDPDescriptor for TrustEngine-based
121 Set the resource name to SPSSODescriptor for TrustEngine-based
131 was called (incorrect arguments, for example).
134 An error occurred when initializing the configuration.
137 An exception was caught.
139 To sign SAML 2.0 metadata, use:
142 \& samlsign \-k /path/to/key \-c /path/to/cert \-f /path/to/metadata
145 This manpage were written by Ferenc Wágner and Russ Allbery for Debian
148 Copyleft (C) 2008 Ferenc Wágner
150 This is free software in the public domain.