AAR / Dancer2-Plugin-SPID-0.11 / example / idp_metadata / spid-testenv-identityserver.xml 
<?xml version="1.0" encoding="UTF-8"?> 
<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_2487e8a5-3a05-488c-8fa6-fe32b8ae96c8" entityID="spid-testenv-identityserver">  
  <!-- Per test non viene richiesta la firma del metadata come avverrebbe in produzione --> 
  <IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> 
    <KeyDescriptor use="signing"> 
      <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"> 
        <X509Data> 
          <!-- certificato di default dell'identity server, se modificato รจ necessario cambiarlo --> 
          <X509Certificate> 
            MIICNTCCAZ6gAwIBAgIES343gjANBgkqhkiG9w0BAQUFADBVMQswCQYDVQQGEwJVUzELMAkGA1UE 
            CAwCQ0ExFjAUBgNVBAcMDU1vdW50YWluIFZpZXcxDTALBgNVBAoMBFdTTzIxEjAQBgNVBAMMCWxv 
            Y2FsaG9zdDAeFw0xMDAyMTkwNzAyMjZaFw0zNTAyMTMwNzAyMjZaMFUxCzAJBgNVBAYTAlVTMQsw 
            CQYDVQQIDAJDQTEWMBQGA1UEBwwNTW91bnRhaW4gVmlldzENMAsGA1UECgwEV1NPMjESMBAGA1UE 
            AwwJbG9jYWxob3N0MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCUp/oV1vWc8/TkQSiAvTou 
            sMzOM4asB2iltr2QKozni5aVFu818MpOLZIr8LMnTzWllJvvaA5RAAdpbECb+48FjbBe0hseUdN5 
            HpwvnH/DW8ZccGvk53I6Orq7hLCv1ZHtuOCokghz/ATrhyPq+QktMfXnRS4HrKGJTzxaCcU7OQID 
            AQABoxIwEDAOBgNVHQ8BAf8EBAMCBPAwDQYJKoZIhvcNAQEFBQADgYEAW5wPR7cr1LAdq+IrR44i 
            QlRG5ITCZXY9hI0PygLP2rHANh+PYfTmxbuOnykNGyhM6FjFLbW2uZHQTY1jMrPprjOrmyK5sjJR 
            O4d1DeGHT/YnIjs9JogRKv4XHECwLtIVdAbIdWHEtVZJyMSktcyysFcvuhPQK8Qc/E/Wq8uHSCo= 
            </X509Certificate> 
        </X509Data> 
      </KeyInfo> 
    </KeyDescriptor> 
    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid-testenv-identityserver:9443/samlsso" ResponseLocation="https://spid-testenv-identityserver:9443/samlsso"/> 
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat> 
    <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid-testenv-identityserver:9443/samlsso"/> 
    <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid-testenv-identityserver:9443/samlsso"/> 
    <saml2:Attribute Name="spidCode" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="name" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="familyName" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="placeOfBirth" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="countyOfBirth" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="dateOfBirth" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="gender" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="companyName" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="registeredOffice" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="fiscalNumber" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="ivaCode" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="idCard" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="mobilePhone" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="email" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="address" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="expirationDate" NameFormat="xsi:string"/> 
    <saml2:Attribute Name="digitalAddress" NameFormat="xsi:string"/> 
  </IDPSSODescriptor> 
  <Organization>
    <OrganizationName xml:lang="it">SPID Test Environment</OrganizationName> 
    <OrganizationDisplayName xml:lang="it">SPID TestEnvironment</OrganizationDisplayName> 
    <OrganizationURL xml:lang="it">https://www.spid.gov.it</OrganizationURL> 
  </Organization> 
</EntityDescriptor>