SWAMID-3181: New spmd-2023-09-26-v02

author: Mikael Frykholm <mifr@sunet.se> 2023-09-26 15:41:59 +0200
committer: Mikael Frykholm <mifr@sunet.se> 2023-09-26 15:41:59 +0200
commit: 526ccbb611f227a086a3c2ee3b0a516c1b33bcdf (patch)
tree: ff5c2ee9933ac246d67753ca13a621a2fe924bff
parent: f724a04f219faf9db3c45c40fba3fee4157030ee (diff)
2 files changed, 78 insertions, 0 deletions
diff --git a/metadata/swamid-2.0/idportal.slu.se-sp.xml b/metadata/swamid-2.0/idportal.slu.se-sp.xml
new file mode 100644
index 00000000..767cf7c3
--- /dev/null
+++ b/metadata/swamid-2.0/idportal.slu.se-sp.xml
@@ -0,0 +1,77 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idportal.slu.se/sp">
+  <md:Extensions>
+    <mdattr:EntityAttributes>
+      <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+        <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
+      </samla:Attribute>
+    </mdattr:EntityAttributes>
+    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2023-09-26T06:04:20Z">
+      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
+    </mdrpi:RegistrationInfo>
+  </md:Extensions>
+  <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+    <md:Extensions>
+      <mdui:UIInfo>
+        <mdui:Description xml:lang="en">Service allowing slu users to activate their account and confirm identity</mdui:Description>
+        <mdui:Description xml:lang="sv">Tjänst för att låta slus användare hämta ut konto och bekräfta sin identitet</mdui:Description>
+        <mdui:DisplayName xml:lang="en">SLU Idportal</mdui:DisplayName>
+        <mdui:DisplayName xml:lang="sv">SLU Idportal</mdui:DisplayName>
+        <mdui:InformationURL xml:lang="en">https://idportal.slu.se/policy/infoen</mdui:InformationURL>
+        <mdui:InformationURL xml:lang="sv">https://idportal.slu.se/policy/infosv</mdui:InformationURL>
+        <mdui:PrivacyStatementURL xml:lang="en">https://idportal.slu.se/policy/eduidpolicyEn</mdui:PrivacyStatementURL>
+        <mdui:PrivacyStatementURL xml:lang="sv">https://idportal.slu.se/policy/eduidpolicysv</mdui:PrivacyStatementURL>
+      </mdui:UIInfo>
+    </md:Extensions>
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:KeyDescriptor use="encryption">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idportal.slu.se/sp/Logout"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idportal.slu.se/sp/Acs" isDefault="true" index="0"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://idportal.slu.se/sp/Acs" isDefault="false" index="1"/>
+    <md:AttributeConsumingService index="0">
+      <md:ServiceName xml:lang="en">idportal slu</md:ServiceName>
+      <md:ServiceName xml:lang="sv">idportal slu</md:ServiceName>
+      <md:RequestedAttribute isRequired="true" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="norEduPersonNIN"/>
+      <md:RequestedAttribute isRequired="true" Name="urn:oid:1.3.6.1.4.1.25178.1.2.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="schacDateOfBirth"/>
+      <md:RequestedAttribute isRequired="true" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName"/>
+      <md:RequestedAttribute isRequired="true" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn"/>
+      <md:RequestedAttribute isRequired="true" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonAssurance"/>
+      <md:RequestedAttribute isRequired="true" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName"/>
+      <md:RequestedAttribute isRequired="true" Name="urn:oid:2.16.840.1.113730.3.1.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mailLocalAddress"/>
+      <md:RequestedAttribute isRequired="true" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail"/>
+    </md:AttributeConsumingService>
+  </md:SPSSODescriptor>
+  <md:Organization>
+    <md:OrganizationName xml:lang="sv">SLU</md:OrganizationName>
+    <md:OrganizationName xml:lang="en">SLU</md:OrganizationName>
+    <md:OrganizationDisplayName xml:lang="sv">Sveriges lantbruksuniversitet</md:OrganizationDisplayName>
+    <md:OrganizationDisplayName xml:lang="en">Swedish University of Agricultural Sciences</md:OrganizationDisplayName>
+    <md:OrganizationURL xml:lang="sv">https://www.slu.se/</md:OrganizationURL>
+    <md:OrganizationURL xml:lang="en">https://www.slu.se/en/</md:OrganizationURL>
+  </md:Organization>
+  <md:ContactPerson contactType="technical">
+    <md:EmailAddress>mailto:support@slu.se</md:EmailAddress>
+  </md:ContactPerson>
+  <md:ContactPerson contactType="support">
+    <md:EmailAddress>mailto:support@slu.se</md:EmailAddress>
+  </md:ContactPerson>
+  <md:ContactPerson contactType="administrative">
+    <md:EmailAddress>mailto:support@slu.se</md:EmailAddress>
+  </md:ContactPerson>
+  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
+    <md:GivenName>SLU säkerhet</md:GivenName>
+    <md:EmailAddress>mailto:sakerhet@slu.se</md:EmailAddress>
+  </md:ContactPerson>
+</md:EntityDescriptor>
diff --git a/metadata/swamid-sp-2.0.mxml b/metadata/swamid-sp-2.0.mxml
index 92d9bdb6..e1aa9ebc 100644
--- a/metadata/swamid-sp-2.0.mxml
+++ b/metadata/swamid-sp-2.0.mxml
@@ -151,6 +151,7 @@
   <xi:include href="swamid-2.0/idp-proxy-social-test.sunet.se-sp.xml"/>
   <xi:include href="swamid-2.0/idp-proxy-social.sunet.se-sp.xml"/>
   <xi:include href="swamid-2.0/idportal-test.slu.se-sp.xml"/>
+  <xi:include href="swamid-2.0/idportal.slu.se-sp.xml"/>
   <xi:include href="swamid-2.0/idpproxy.dev.eduid.se-eduidsp.xml"/>
   <xi:include href="swamid-2.0/idpproxy.dev.eduid.se-sp.xml"/>
   <xi:include href="swamid-2.0/ids-test.mau.se-.xml"/>
author	Mikael Frykholm <mifr@sunet.se>	2023-09-26 15:41:59 +0200
committer	Mikael Frykholm <mifr@sunet.se>	2023-09-26 15:41:59 +0200
commit	526ccbb611f227a086a3c2ee3b0a516c1b33bcdf (patch)
tree	ff5c2ee9933ac246d67753ca13a621a2fe924bff
parent	f724a04f219faf9db3c45c40fba3fee4157030ee (diff)