diff options
author | Fredrik Aslund <fredrik.aslund@umu.se> | 2014-12-19 11:20:14 +0100 |
---|---|---|
committer | Fredrik Aslund <fredrik.aslund@umu.se> | 2014-12-19 11:20:14 +0100 |
commit | dcb10f6cfe3b1909dd2b3e93ba7fc76078f2f087 (patch) | |
tree | 49a7550f95e7a8a9abda33b54f610af5b4f90428 | |
parent | 7c7ea75374fe5cac710266617903b1c18f4477e8 (diff) |
swamid-2.0/www.mediafora.net-simplesaml-module.php-saml-sp-metadata.php-media-network-sp.xml added
IPHint check added
SWAMIDOPS-7480
-rw-r--r-- | Makefile | 2 | ||||
-rw-r--r-- | swamid-2.0/www.mediafora.net-simplesaml-module.php-saml-sp-metadata.php-media-network-sp.xml | 54 | ||||
-rw-r--r-- | swamid-sp-2.0.mxml | 1 |
3 files changed, 57 insertions, 0 deletions
@@ -138,6 +138,8 @@ committest: test @for x in `find $(SRCDIRS) -name \*.xml`; do if cat $$x | sed 's;\(</*\)[a-z0-9]*:;\1;g' | sed 's/xmlns="[^"]*"//' | xmllint --xpath /EntityDescriptor/Extensions/UIInfo - 2>/dev/null | grep -q . ; then echo " $$x" ; fi ; done | grep . && exit 1 || true @echo "Checking for entitycategories for IdPs that should be entity-category-support" @for x in `find $(SRCDIRS) -name \*.xml | xargs grep -l IDPSSODescriptor` ; do if cat $$x | sed 's;\(</*\)[a-z0-9]*:;\1;g' | sed 's/xmlns="[^"]*"//' | xmllint --xpath '/EntityDescriptor/Extensions/EntityAttributes/Attribute[attribute::Name="http://macedir.org/entity-category"]/AttributeValue/text()' - 2>/dev/null | grep -q http://refeds.org/category/research-and-scholarship ; then echo " $$x" ; fi ; done | grep . && exit 1 || true + @echo "Checking for invalid IPHint" + @for x in `find $(SRCDIRS) -name \*.xml`; do if cat $$x | sed -n 's;.*<[a-z0-9:]*IPHint>\(.*\)</[a-z0-9:]*IPHint>;\1;p' | grep -q -vE '^$$|^[0-9./a-fA-F:]*$$' ; then echo " $$x" ; fi ; done | grep . && exit 1 || true @echo "Checking for invalid geodata (syntax is geo:xx.yy,zz.vv)" @for x in `find $(SRCDIRS) -name \*.xml`; do if cat $$x | sed -n 's;.*<[a-z0-9:]*GeolocationHint>\(.*\)</[a-z0-9:]*GeolocationHint>;\1;p' | grep -q -vE '^$$|^geo:[0-9][0-9][0-9.]*,[0-9][0-9][0-9.]*$$' ; then echo " $$x" ; fi ; done | grep . && exit 1 || true @echo "Check for new SP:s with SimpleSign (breaks ADFS IdP:s with Shib SP 2.5+)" diff --git a/swamid-2.0/www.mediafora.net-simplesaml-module.php-saml-sp-metadata.php-media-network-sp.xml b/swamid-2.0/www.mediafora.net-simplesaml-module.php-saml-sp-metadata.php-media-network-sp.xml new file mode 100644 index 00000000..f969162f --- /dev/null +++ b/swamid-2.0/www.mediafora.net-simplesaml-module.php-saml-sp-metadata.php-media-network-sp.xml @@ -0,0 +1,54 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://www.mediafora.net/simplesaml/module.php/saml/sp/metadata.php/media-network-sp"> + <md:Extensions> + <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"> + <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">MediaFora</mdui:DisplayName> + <mdui:DisplayName xml:lang="da">MediaFora</mdui:DisplayName> + <mdui:Description xml:lang="en">MediaFora aims to provide a platform for exchange of knowledge on media services at higher education</mdui:Description> + <mdui:Description xml:lang="da">MediaFora har til hensigt at skabe en platform for udveksling af viden om medietjenester ved de videregående uddannels</mdui:Description> + <mdui:PrivacyStatementURL xml:lang="en">https://www.mediafora.net/simplesaml/privacy-statement/</mdui:PrivacyStatementURL> + <mdui:Logo width="120" height="120">https://www.mediafora.net/mediafora-logo.png</mdui:Logo> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDdzCCAl+gAwIBAgIJAIqDherg0eZhMA0GCSqGSIb3DQEBCwUAMFIxCzAJBgNVBAYTAkRLMRMwEQYDVQQIDApTb21lLVN0YXRlMQ0wCwYDVQQKDAREZUlDMR8wHQYJKoZIhvcNAQkBFhBuZXRkcmlmdEBkZWljLmRrMB4XDTE0MTAwNzA4MjI1OVoXDTI0MTAwNjA4MjI1OVowUjELMAkGA1UEBhMCREsxEzARBgNVBAgMClNvbWUtU3RhdGUxDTALBgNVBAoMBERlSUMxHzAdBgkqhkiG9w0BCQEWEG5ldGRyaWZ0QGRlaWMuZGswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrgS058VIfp1wm87kpbxgAEWGhtTTgd/tIQ7Yyh6jn6CPERxMiQMXyPUadbr3BZeEFucI9OcMXnoLldLUm5l0Pap6FiJ2Gw8Q/Hh4OfvcqyqmZy+0BZFqQhrTLDaFGq9XiJ+/4in/NvY1Eg0f2QwviW7V3vAQWficsV1W0U9wLyfFQPjFJ579psQCD7PETZao2emXEqeMFiasYNeh2h1ccGd1TQDKl6hOKe4gSuo2JC7pzWL5lVPqhEUOdStSTmn+fdxv5FVAZRhM21qebd7KnT4NQc9S3GRuXVml1iRdQ6UX1ZpHt3FgerbW76Px8/dKHtsp2ZnVYN1JyktRBdvvfAgMBAAGjUDBOMB0GA1UdDgQWBBQdTIO6FWQSbpLNwflng1jb8VO9GTAfBgNVHSMEGDAWgBQdTIO6FWQSbpLNwflng1jb8VO9GTAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQCalmSUGLAWb0s6BbJ6n+F2skZxUrNZNHDjUqXtKfncUb94N5E20pvYhUhET+W5Mk49+6smmUTRc5OUQ14xhoJRElJprOgWYXjGEd8iK3XRwmjmGPQ7Ic9y4gLuuL6zFhJQK3pGd4Kmr8Ny7s7UtBf97IFsXLzBPuv2JprXJ7o3dZLYOfdUvaOrbSFomYFCAH1ImOdHsZZ27hpirEEYIsmh1NeXYOgw/XPfCayIprUeXb4zhUBTzbGvjmMdX742+h4l4sww7kU14KHXNR8m5iqrJFlIHwhUbDCu56JbIbnjhaijHAlBDW4UhJQb/chO1NPKqBNpwxsxUdhhIJ1QxDYb</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://www.mediafora.net/simplesaml/module.php/saml/sp/saml2-logout.php/media-network-sp"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.mediafora.net/simplesaml/module.php/saml/sp/saml2-acs.php/media-network-sp" index="0"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://www.mediafora.net/simplesaml/module.php/saml/sp/saml1-acs.php/media-network-sp" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://www.mediafora.net/simplesaml/module.php/saml/sp/saml2-acs.php/media-network-sp" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://www.mediafora.net/simplesaml/module.php/saml/sp/saml1-acs.php/media-network-sp/artifact" index="3"/> + <md:AttributeConsumingService index="0"> + <md:ServiceName xml:lang="en">Media network forum</md:ServiceName> + <md:ServiceName xml:lang="da">Media netv&aelig;rks forum</md:ServiceName> + <md:ServiceDescription xml:lang="en">MediaFora aims to provide a platform for exchange of knowledge on media services at higher education</md:ServiceDescription> + <md:ServiceDescription xml:lang="da">MediaFora har til hensigt at skabe en platform for udveksling af viden om medietjenester ved de videregående uddannels</md:ServiceDescription> + <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" isRequired="true"/> + <md:RequestedAttribute Name="urn:oid:2.5.4.3"/> + <md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:ContactPerson contactType="technical"> + <md:GivenName>Administrator</md:GivenName> + <md:EmailAddress>netdrift@deic.dk</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-sp-2.0.mxml b/swamid-sp-2.0.mxml index bbcf6691..356fdcc4 100644 --- a/swamid-sp-2.0.mxml +++ b/swamid-sp-2.0.mxml @@ -338,4 +338,5 @@ <xi:include href="swamid-2.0/auth.asiaportal.info.xml"/> <xi:include href="swamid-2.0/test.lararlyftet-validering.se-shibboleth.xml"/> <xi:include href="swamid-2.0/sp-utv.ldc.lu.se-shibboleth.xml"/> + <xi:include href="swamid-2.0/www.mediafora.net-simplesaml-module.php-saml-sp-metadata.php-media-network-sp.xml"/> </md:EntitiesDescriptor> |