...
| Tip | ||
|---|---|---|
| ||
| InCommon recommends that site administrators publish IdP metadata with as few endpoints as possible. It is sufficient for IdP metadata to advertise support for SAML2 Web Browser SSO on the front channel only. Advertised support for other protocols, especially back-channel protocols, should be avoided in published metadata unless you have a specific need. |
A separate topic discusses the importance of owning the domains in IdP Endpoint Locations.
Endpoint Requirements
The requirements and recommendations outlined in this section apply to both new and existing IdP metadata.
...