To setup perform the following steps:

  1. create a directory, e.g. named "secure" in your webroot
  2. copy the script to this directory
  3. add the following snippet to your apache configuration:
    # NOTE: the location needs to match the directory name!
    <Location /secure>
      AuthType shibboleth
      ShibRequestSetting requireSession 1
      ShibRequestSetting exportAssertion 1
      require shibboleth

      Options +ExecCGI
      AddHandler cgi-script .pl
      DirectoryIndex shib_test.pl

      # Examples for customizing script
      # SetEnv SHIBTEST_ATTRIBUTES_REQUIRED "eduPersonPrincipalName:eppn eduPersonTargetedID:persistent_id"
      # SetEnv SHIBTEST_ATTRIBUTES_OPTIONAL "eduPersonScopedAffiliation:affiliation:eduPersonAffiliation cn displayName"

      # Uncomment the following, if you want to enable support for lazy session
      # instantiation
      # SetENV SHIBTEST_LAZY true

      # These are usually guessed correctly by the script, but you may need to
      # adjust them to match your local URIs for lazy session instantiation
      # SetEnv SHIBTEST_LOGIN_URI  "https://sp.example.org/Shibboleth.sso/Login"
      # SetEnv SHIBTEST_LOGOUT_URI "https://sp.example.org/Shibboleth.sso/Logout"
    </Location>

You can use SetEnv directives to customize the behavior of script. E.g., you
can define aliases for an attribute by seperating them with a colon.

If you want a dump of the raw SAML assertions, you need to install XML::Twig
and configure the SP to export the assertions (see
https://wiki.shibboleth.net/confluence/display/SHIB2/NativeSPAssertionExport)