summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorEinar Lönn <el@sunet.se>2017-12-01 16:03:09 +0100
committerEinar Lönn <el@sunet.se>2017-12-01 16:03:09 +0100
commitea09c47551964741d7e300af20116a1f465d9300 (patch)
treeb93cdfea38b4ea042690374e30b62e08ac77c0c8
parentc10535f83dd05a79e687c1759a5a563ce5e2dec1 (diff)
Add ze GRR per ticket 348
Diffstat
-rw-r--r--swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml90
-rw-r--r--swamid-sp-2.0.mxml1
2 files changed, 91 insertions, 0 deletions
diff --git a/swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml b/swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml
new file mode 100644
index 00000000..dd4bd32e
--- /dev/null
+++ b/swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml
@@ -0,0 +1,90 @@
+<!--
+This is example metadata only. Do *NOT* supply it as is without review,
+and do *NOT* provide it in real time to your partners.
+ -->
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_3c5a8ac47c9940dd6c0e247d1f6e72fcae406495" entityID="https://grr.cert.sunet.se:8443/shibboleth">
+
+ <md:Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport">
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
+ <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
+ <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
+ <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
+ <samla:AttributeValue>http://www.swamid.se/category/nren-service</samla:AttributeValue>
+ <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue>
+ </samla:Attribute>
+ </mdattr:EntityAttributes>
+ </md:Extensions>
+
+ <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
+ <md:Extensions>
+ <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/Login"/>
+ <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/Login" index="1"/>
+ <mdui:UIInfo xmlns:mdui=“urn:oasis:names:tc:SAML:metadata:ui”>
+ <mdui:DisplayName xml:lang=“sv”>SUNET GRR</mdui:DisplayName>
+ <mdui:DisplayName xml:lang=“en”>SUNET GRR</mdui:DisplayName>
+ <mdui:Description xml:lang=“sv”>GRR tjänst hos SUNET</mdui:Description>
+ <mdui:Description xml:lang=“en”>GRR service run by SUNET</mdui:Description>
+ </mdui:UIInfo>
+ </md:Extensions>
+ <md:KeyDescriptor>
+ <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+ <ds:KeyName>grr.cert.sunet.se</ds:KeyName>
+ <ds:X509Data>
+ <ds:X509SubjectName>CN=grr.cert.sunet.se</ds:X509SubjectName>
+ <ds:X509Certificate>MIIC+jCCAeKgAwIBAgIJAL/AhZwDvMkMMA0GCSqGSIb3DQEBBQUAMBwxGjAYBgNV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==
+</ds:X509Certificate>
+ </ds:X509Data>
+ </ds:KeyInfo>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
+ </md:KeyDescriptor>
+ <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/Artifact/SOAP" index="1"/>
+ <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SLO/SOAP"/>
+ <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SLO/Redirect"/>
+ <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SLO/POST"/>
+ <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SLO/Artifact"/>
+ <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML2/POST" index="1"/>
+ <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
+ <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML2/Artifact" index="3"/>
+ <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML2/ECP" index="4"/>
+ <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML/POST" index="5"/>
+ <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML/Artifact" index="6"/>
+ </md:SPSSODescriptor>
+
+</md:EntityDescriptor>
diff --git a/swamid-sp-2.0.mxml b/swamid-sp-2.0.mxml
index ae3d61c3..8d66979f 100644
--- a/swamid-sp-2.0.mxml
+++ b/swamid-sp-2.0.mxml
@@ -461,6 +461,7 @@
<xi:include href="swamid-2.0/moodlebeta.omv.lu.se-shibboleth.xml"/>
<xi:include href="swamid-2.0/rt.sunet.se-shibboleth.xml"/>
<xi:include href="swamid-2.0/rt-test.sunet.se-shibboleth.xml"/>
+ <xi:include href="swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml"/>
<xi:include href="swamid-2.0/comanage.sunet.se-shibboleth.xml"/>
<xi:include href="swamid-2.0/registry-test.swamid.se-saml2-metadata.xml"/>
<xi:include href="swamid-2.0/test.play.rkh.se.xml"/>
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-20 17:26:00 +0000