diff options
author | Paul Scott <paul.scott@kau.se> | 2016-06-17 14:08:40 +0200 |
---|---|---|
committer | Paul Scott <paul.scott@kau.se> | 2016-06-17 14:08:40 +0200 |
commit | 2e52ae121d5a572fe5def85105b6bc4307f61a0e (patch) | |
tree | 29cc078b9b81cbd4600c28dd385d76c4560477f9 | |
parent | 82aee2610eae4f2434e36ba57e1d09776f56900f (diff) |
Resolves SWAMIDOPS-8254
-rw-r--r-- | swamid-2.0/idp3.it.gu.se-idp-shibboleth.xml | 216 | ||||
-rw-r--r-- | swamid-idp-2.0.mxml | 1 |
2 files changed, 217 insertions, 0 deletions
diff --git a/swamid-2.0/idp3.it.gu.se-idp-shibboleth.xml b/swamid-2.0/idp3.it.gu.se-idp-shibboleth.xml new file mode 100644 index 00000000..626deb4f --- /dev/null +++ b/swamid-2.0/idp3.it.gu.se-idp-shibboleth.xml @@ -0,0 +1,216 @@ +<?xml version="1.0" encoding="UTF-8"?> +<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" entityID="https://idp3.it.gu.se/idp/shibboleth"> + <Extensions> + <attr:EntityAttributes xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:attr="urn:oasis:names:tc:SAML:metadata:attribute"> + <saml:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <saml:AttributeValue>http://www.swamid.se/policy/assurance/al1</saml:AttributeValue> + </saml:Attribute> + <saml:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <saml:AttributeValue>http://refeds.org/category/hide-from-discovery</saml:AttributeValue> + </saml:Attribute> + </attr:EntityAttributes> + </Extensions> + <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0"> + <Extensions> + <shibmd:Scope regexp="false">gu.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Göteborgs Universitet (ny)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">University of Gothenburg (new)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Identity Provider för anställda och studenter vid Göteborgs universitet.</mdui:Description> + <mdui:Description xml:lang="en">The University of Gothenburg Identity Provider is used by employees and students at the university.</mdui:Description> + <mdui:Logo height="80" width="80">https://idp3.it.gu.se/idp/images/1510601_logo_sv_126.png</mdui:Logo> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>gu.se</mdui:DomainHint> + <mdui:IPHint>130.241.0.0/18</mdui:IPHint> + <mdui:IPHint>2001:6b0:d::/48</mdui:IPHint> + <mdui:GeolocationHint>geo:57.6981,11.9716</mdui:GeolocationHint> + </mdui:DiscoHints> + </Extensions> + <KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHzCCAgegAwIBAgIUF1A5OQ50ULddi80RkyMVt2S5dnYwDQYJKoZIhvcNAQEL +BQAwGDEWMBQGA1UEAwwNaWRwMy5pdC5ndS5zZTAeFw0xNjA2MTUwODMyMzZaFw0z +NjA2MTUwODMyMzZaMBgxFjAUBgNVBAMMDWlkcDMuaXQuZ3Uuc2UwggEiMA0GCSqG +SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCascqNAImvwkXYD1oLzUmCzpuMElSPHhzX +b2sDbGcD7nbIZbBGRrd0EnU44G7buwLbjT+KV2XZNH9dY0zlJuNp5Hger6BRGKtG +cY3f4gQ9G67Km1Uog5enbozO/voscqNOKTzBs/Af/Nri5X0Yo5dRGCqbs8/HmtHF +yUyHrT0UA0DjcMMDiqMhUOuipWqtiSHmqBfuT8JKvd5lZuQkrNU6zWV8fnNBZWJe +if6IaqgDyrwNBfAtkmUwXhODp4oABlY/oI8qxa+Ed2jcMh89oY7+bhABMCtGGFLA +W3b/r6WlshpHsaPGx/Kt7oFH0eOXQp2lhVMhe0lHaFh1FqpN5FhtAgMBAAGjYTBf +MB0GA1UdDgQWBBThJ3g+kJ+cZwLb42V3sVkC/7VpXzA+BgNVHREENzA1gg1pZHAz +Lml0Lmd1LnNlhiRodHRwczovL2lkcDMuaXQuZ3Uuc2UvaWRwL3NoaWJib2xldGgw +DQYJKoZIhvcNAQELBQADggEBAA/sfO1zipZ47Kgvb2PGymYLsIsuWgufLVVA3axe +BmOVZZQivU1SXs7zEGrLuDWf1MKPajj5+MPQOMUQojyvrrJataDmwokCKbxzKIlK +xiXkFwgCAYQ8BdZ+3sajzECVnC56XKdyrmTcsAFiZCu+TKA+QQFCf0RuFs84VXQn +VLLhEPVx0oyiDl+kVsGJBffJJuT2euYQXY/aWukZQApI4SAVSD9+kMLLR7aylp5G +PbBhz2wYpM9y3w9Ou1xFKFwIhLUm9vCAaFbKIISIMwz/AGfD0RlWNLK1XLqE/9iU +pW7MUEqHahaaNf594Rb2HSPJiGdjq42oIgjV5O/iZQhhajM= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </KeyDescriptor> + <KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHzCCAgegAwIBAgIUBk9rqsAITZHji4oNlQkTn8tKeYIwDQYJKoZIhvcNAQEL +BQAwGDEWMBQGA1UEAwwNaWRwMy5pdC5ndS5zZTAeFw0xNjA2MTUwODMyMzVaFw0z +NjA2MTUwODMyMzVaMBgxFjAUBgNVBAMMDWlkcDMuaXQuZ3Uuc2UwggEiMA0GCSqG +SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeHYglrDVaR8MZ5xbJY3F67/8BAVQeKkFo +fX5wjnpYhDqliWtbkEtXxe1KMTWrGYX6iGHYY/OSL+OlIQa4HS5ddDGgOFrL9CJq +K+10ksjhYGCqc7sFxrpNWkhqBAC1ZDU/IFBkpUYPvqUybWK0HNi8+vOGEbjDLGjB +EbnRbyCOzSie2imkJ2hXdkXWtYaFQUgh2zJN3sGjbh0XyoCc3r3Kp/vEYI1oeWeq +L8VLWCTyd0UbnvwHobOJacNCQwoGDRr0xoVDBATQ5LEmPjqd1Bhfsm2h25qoPlLy +Fpsgo1P/r3Dx7K4i8s59jlbMwgrlSHBSZ/ARsczZaE68ulYmFpRJAgMBAAGjYTBf +MB0GA1UdDgQWBBQKO3oNLb6llqHEj77Btda7DskwfTA+BgNVHREENzA1gg1pZHAz +Lml0Lmd1LnNlhiRodHRwczovL2lkcDMuaXQuZ3Uuc2UvaWRwL3NoaWJib2xldGgw +DQYJKoZIhvcNAQELBQADggEBAEZsh2pLePXmGHMsuCAiVmEtGnZdXKZFwFz8ZQx3 +6MlsiPAIa1YJYP6w8W9IfDRl6OA5lZj9RMBgYkjMAsceMg+OXgFVxU3Pa/sEB4Hn +97QnOCTXOJTpZEGu8bljxYShhi8QNJwd5TnYa8iHtHxyv2r1wArCJlEcToX3qoY+ +BtpSJ1lK8n4Ij3Pr0b+8f11FoNHmH0x/EWL5DGWRsgKFZYvqK4ZB51UNwhIO1nDR +gpxgwMi4sgXwJh/SVhZUu5cm7ZIwW73BO5EfQ4O40gDOECF8+KgfyJpnXBtDShrh +oIVPmjhtjo5JX9haWnr6ff/1870FFrYliFq35HAVN1pmrhk= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </KeyDescriptor> + <KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDIDCCAgigAwIBAgIVAM+/+9aCFZpXtTFRmp0xShPwTGplMA0GCSqGSIb3DQEB +CwUAMBgxFjAUBgNVBAMMDWlkcDMuaXQuZ3Uuc2UwHhcNMTYwNjE1MDgzMjM2WhcN +MzYwNjE1MDgzMjM2WjAYMRYwFAYDVQQDDA1pZHAzLml0Lmd1LnNlMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHeHwSYiDlrT9fVCz57EFr0hHNR/dSB1 +9GzruYV43k9S+9YDcpGr52OdREf5JehQPHJ4/804arJbZKhMHq1bILK3iSWrzbmm +teWUp9roLroioS9N2PRsIoU0/oxslxgS/nwxa9VWB5X04w7Jw2STuneMAK6yJLuK +b75YHBAuvQub7plrLQ3HckYXNK/cr3BVxBHsVLN3pm1uLxfnoi4vjz40EcFYhwXg +DrodSchSPRSNDzBh90Gkuyo7XmSk5SLjYz3iIj67Nb2DoZnEd3mmMVyhOEfesl8K +qD618iO9tx2uOy/egr8sMW+yF5Wzx3cZtW7VRMlFvLDXkp1zMHlE9QIDAQABo2Ew +XzAdBgNVHQ4EFgQUACHdgdZSJ/6L++v0I+LMcu6s2UQwPgYDVR0RBDcwNYINaWRw +My5pdC5ndS5zZYYkaHR0cHM6Ly9pZHAzLml0Lmd1LnNlL2lkcC9zaGliYm9sZXRo +MA0GCSqGSIb3DQEBCwUAA4IBAQAO7p786KdN2fnxXrR4aawZ/WIWQo52SVRx2pav +0U13e0h/ZXJNo7x0ZXr1wif2RrGI0n10oW8n93pUUmJZ07srggiTOHVbeBI0JjDE +QoVlEjThh43zDN9nILz7qbN79XuhOEh/U7/nesokb7oYkty1JfyLpMY/aZsBf2XM +XhVNSeI3xTN09qpS+e5O/I513/Ca8hEZCzymiDem1qvf5qz+CgDe3wKWVAS599nj +wJ3oumaClu6wAVkixxcmL+Z+JxnQ28v+vf22yCNQp4j3X6cOKdRylAC5NlobQYZ8 +mbmfzT51FSO1LI3Xw2lAtTgYi5oMWqxMao2yJl8MZKP4OY3Y + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </KeyDescriptor> + <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp3.it.gu.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp3.it.gu.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat> + <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat> + <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp3.it.gu.se/idp/profile/Shibboleth/SSO"/> + <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp3.it.gu.se/idp/profile/SAML2/POST/SSO"/> + <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp3.it.gu.se/idp/profile/SAML2/Redirect/SSO"/> + </IDPSSODescriptor> + <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <Extensions> + <shibmd:Scope regexp="false">gu.se</shibmd:Scope> + </Extensions> + <KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHzCCAgegAwIBAgIUF1A5OQ50ULddi80RkyMVt2S5dnYwDQYJKoZIhvcNAQEL +BQAwGDEWMBQGA1UEAwwNaWRwMy5pdC5ndS5zZTAeFw0xNjA2MTUwODMyMzZaFw0z +NjA2MTUwODMyMzZaMBgxFjAUBgNVBAMMDWlkcDMuaXQuZ3Uuc2UwggEiMA0GCSqG +SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCascqNAImvwkXYD1oLzUmCzpuMElSPHhzX +b2sDbGcD7nbIZbBGRrd0EnU44G7buwLbjT+KV2XZNH9dY0zlJuNp5Hger6BRGKtG +cY3f4gQ9G67Km1Uog5enbozO/voscqNOKTzBs/Af/Nri5X0Yo5dRGCqbs8/HmtHF +yUyHrT0UA0DjcMMDiqMhUOuipWqtiSHmqBfuT8JKvd5lZuQkrNU6zWV8fnNBZWJe +if6IaqgDyrwNBfAtkmUwXhODp4oABlY/oI8qxa+Ed2jcMh89oY7+bhABMCtGGFLA +W3b/r6WlshpHsaPGx/Kt7oFH0eOXQp2lhVMhe0lHaFh1FqpN5FhtAgMBAAGjYTBf +MB0GA1UdDgQWBBThJ3g+kJ+cZwLb42V3sVkC/7VpXzA+BgNVHREENzA1gg1pZHAz +Lml0Lmd1LnNlhiRodHRwczovL2lkcDMuaXQuZ3Uuc2UvaWRwL3NoaWJib2xldGgw +DQYJKoZIhvcNAQELBQADggEBAA/sfO1zipZ47Kgvb2PGymYLsIsuWgufLVVA3axe +BmOVZZQivU1SXs7zEGrLuDWf1MKPajj5+MPQOMUQojyvrrJataDmwokCKbxzKIlK +xiXkFwgCAYQ8BdZ+3sajzECVnC56XKdyrmTcsAFiZCu+TKA+QQFCf0RuFs84VXQn +VLLhEPVx0oyiDl+kVsGJBffJJuT2euYQXY/aWukZQApI4SAVSD9+kMLLR7aylp5G +PbBhz2wYpM9y3w9Ou1xFKFwIhLUm9vCAaFbKIISIMwz/AGfD0RlWNLK1XLqE/9iU +pW7MUEqHahaaNf594Rb2HSPJiGdjq42oIgjV5O/iZQhhajM= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </KeyDescriptor> + <KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHzCCAgegAwIBAgIUBk9rqsAITZHji4oNlQkTn8tKeYIwDQYJKoZIhvcNAQEL +BQAwGDEWMBQGA1UEAwwNaWRwMy5pdC5ndS5zZTAeFw0xNjA2MTUwODMyMzVaFw0z +NjA2MTUwODMyMzVaMBgxFjAUBgNVBAMMDWlkcDMuaXQuZ3Uuc2UwggEiMA0GCSqG +SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeHYglrDVaR8MZ5xbJY3F67/8BAVQeKkFo +fX5wjnpYhDqliWtbkEtXxe1KMTWrGYX6iGHYY/OSL+OlIQa4HS5ddDGgOFrL9CJq +K+10ksjhYGCqc7sFxrpNWkhqBAC1ZDU/IFBkpUYPvqUybWK0HNi8+vOGEbjDLGjB +EbnRbyCOzSie2imkJ2hXdkXWtYaFQUgh2zJN3sGjbh0XyoCc3r3Kp/vEYI1oeWeq +L8VLWCTyd0UbnvwHobOJacNCQwoGDRr0xoVDBATQ5LEmPjqd1Bhfsm2h25qoPlLy +Fpsgo1P/r3Dx7K4i8s59jlbMwgrlSHBSZ/ARsczZaE68ulYmFpRJAgMBAAGjYTBf +MB0GA1UdDgQWBBQKO3oNLb6llqHEj77Btda7DskwfTA+BgNVHREENzA1gg1pZHAz +Lml0Lmd1LnNlhiRodHRwczovL2lkcDMuaXQuZ3Uuc2UvaWRwL3NoaWJib2xldGgw +DQYJKoZIhvcNAQELBQADggEBAEZsh2pLePXmGHMsuCAiVmEtGnZdXKZFwFz8ZQx3 +6MlsiPAIa1YJYP6w8W9IfDRl6OA5lZj9RMBgYkjMAsceMg+OXgFVxU3Pa/sEB4Hn +97QnOCTXOJTpZEGu8bljxYShhi8QNJwd5TnYa8iHtHxyv2r1wArCJlEcToX3qoY+ +BtpSJ1lK8n4Ij3Pr0b+8f11FoNHmH0x/EWL5DGWRsgKFZYvqK4ZB51UNwhIO1nDR +gpxgwMi4sgXwJh/SVhZUu5cm7ZIwW73BO5EfQ4O40gDOECF8+KgfyJpnXBtDShrh +oIVPmjhtjo5JX9haWnr6ff/1870FFrYliFq35HAVN1pmrhk= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </KeyDescriptor> + <KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDIDCCAgigAwIBAgIVAM+/+9aCFZpXtTFRmp0xShPwTGplMA0GCSqGSIb3DQEB +CwUAMBgxFjAUBgNVBAMMDWlkcDMuaXQuZ3Uuc2UwHhcNMTYwNjE1MDgzMjM2WhcN +MzYwNjE1MDgzMjM2WjAYMRYwFAYDVQQDDA1pZHAzLml0Lmd1LnNlMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHeHwSYiDlrT9fVCz57EFr0hHNR/dSB1 +9GzruYV43k9S+9YDcpGr52OdREf5JehQPHJ4/804arJbZKhMHq1bILK3iSWrzbmm +teWUp9roLroioS9N2PRsIoU0/oxslxgS/nwxa9VWB5X04w7Jw2STuneMAK6yJLuK +b75YHBAuvQub7plrLQ3HckYXNK/cr3BVxBHsVLN3pm1uLxfnoi4vjz40EcFYhwXg +DrodSchSPRSNDzBh90Gkuyo7XmSk5SLjYz3iIj67Nb2DoZnEd3mmMVyhOEfesl8K +qD618iO9tx2uOy/egr8sMW+yF5Wzx3cZtW7VRMlFvLDXkp1zMHlE9QIDAQABo2Ew +XzAdBgNVHQ4EFgQUACHdgdZSJ/6L++v0I+LMcu6s2UQwPgYDVR0RBDcwNYINaWRw +My5pdC5ndS5zZYYkaHR0cHM6Ly9pZHAzLml0Lmd1LnNlL2lkcC9zaGliYm9sZXRo +MA0GCSqGSIb3DQEBCwUAA4IBAQAO7p786KdN2fnxXrR4aawZ/WIWQo52SVRx2pav +0U13e0h/ZXJNo7x0ZXr1wif2RrGI0n10oW8n93pUUmJZ07srggiTOHVbeBI0JjDE +QoVlEjThh43zDN9nILz7qbN79XuhOEh/U7/nesokb7oYkty1JfyLpMY/aZsBf2XM +XhVNSeI3xTN09qpS+e5O/I513/Ca8hEZCzymiDem1qvf5qz+CgDe3wKWVAS599nj +wJ3oumaClu6wAVkixxcmL+Z+JxnQ28v+vf22yCNQp4j3X6cOKdRylAC5NlobQYZ8 +mbmfzT51FSO1LI3Xw2lAtTgYi5oMWqxMao2yJl8MZKP4OY3Y + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </KeyDescriptor> + <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp3.it.gu.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </AttributeAuthorityDescriptor> + <Organization> + <OrganizationName xml:lang="en">GU</OrganizationName> + <OrganizationDisplayName xml:lang="sv">Göteborgs Universitet (ny)</OrganizationDisplayName> + <OrganizationDisplayName xml:lang="en">University of Gothenburg (new)</OrganizationDisplayName> + <OrganizationURL xml:lang="en">http://www.gu.se</OrganizationURL> + </Organization> + <ContactPerson contactType="administrative"> + <Company>University of Gothenburg</Company> + <SurName>Lena Ström</SurName> + <EmailAddress>mailto:lena.strom@gu.se</EmailAddress> + </ContactPerson> + <ContactPerson contactType="technical"> + <Company>University of Gothenburg</Company> + <SurName>Tobias Galéus</SurName> + <EmailAddress>mailto:tobias.galeus@gu.se</EmailAddress> + </ContactPerson> + <ContactPerson contactType="support"> + <Company>University of Gothenburg</Company> + <SurName>GU-Support</SurName> + <EmailAddress>mailto:support@gu.se</EmailAddress> + <TelephoneNumber>+46317862020</TelephoneNumber> + </ContactPerson> +</EntityDescriptor> diff --git a/swamid-idp-2.0.mxml b/swamid-idp-2.0.mxml index 2099b349..46ed3f85 100644 --- a/swamid-idp-2.0.mxml +++ b/swamid-idp-2.0.mxml @@ -17,4 +17,5 @@ <xi:include href="swamid-2.0/idp.mdh.se-idp-shibboleth.xml"/> <xi:include href="swamid-2.0/idp2.kau.se-idp-shibboleth.xml"/> <xi:include href="swamid-2.0/adfs01.fhs.se-adfs-services-trust.xml"/> + <xi:include href="swamid-2.0/idp3.it.gu.se-idp-shibboleth.xml"/> </md:EntitiesDescriptor> |