RT3439: sri-test.sunet.se added

author: Fredrik Domeij <fredrik.domeij@umu.se> 2020-10-27 12:37:43 +0100
committer: Fredrik Domeij <fredrik.domeij@umu.se> 2020-10-27 12:45:20 +0100
commit: ab740845f82a6dee6c5bd66c75633088992e072a (patch)
tree: a83f675cbad5939e2406de353b4d18c25e70aa9b
parent: 0845630639ad1d46813368cc56ef1c9a6347ea2f (diff)
2 files changed, 121 insertions, 0 deletions
diff --git a/swamid-2.0/sri-test.sunet.se-api-saml2-metadata.xml b/swamid-2.0/sri-test.sunet.se-api-saml2-metadata.xml
new file mode 100644
index 00000000..2a2e45c4
--- /dev/null
+++ b/swamid-2.0/sri-test.sunet.se-api-saml2-metadata.xml
@@ -0,0 +1,120 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://sri-test.sunet.se/api/saml2/metadata/">
+  <md:Extensions>
+    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/">
+      <mdrpi:RegistrationPolicy xml:lang="en">https://www.sunet.se/wp-content/uploads/2016/08/SWAMID-Metadata-Registration-Practice-Statement-v2.pdf</mdrpi:RegistrationPolicy>
+    </mdrpi:RegistrationInfo>
+    <ns1:DigestMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#md5"/>
+    <ns1:DigestMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmlenc#ripemd160"/>
+    <ns1:DigestMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+    <ns1:DigestMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
+    <ns1:DigestMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+    <ns1:DigestMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
+    <ns1:DigestMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-md5"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha224"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
+    <ns1:SigningMethod xmlns:ns1="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
+  </md:Extensions>
+  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="false" WantAssertionsSigned="true">
+    <md:Extensions>
+      <ns2:UIInfo xmlns:ns2="urn:oasis:names:tc:SAML:metadata:ui">
+        <ns2:DisplayName xml:lang="en">SUNET Relationship Inventory</ns2:DisplayName>
+        <ns2:DisplayName xml:lang="sv">SUNET Relationship Inventory</ns2:DisplayName>
+        <ns2:Description xml:lang="en">Service used for documenting the SUNET relationship</ns2:Description>
+        <ns2:Description xml:lang="sv">T&amp;auml;nst f&amp;ouml;r att dokumentera SUNET relationship</ns2:Description>
+      </ns2:UIInfo>
+    </md:Extensions>
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>MIIFBTCCAu2gAwIBAgIUQ37cS8NLmguFmpvCoPGh9H7qHncwDQYJKoZIhvcNAQEL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+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:KeyDescriptor use="encryption">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>MIIFBTCCAu2gAwIBAgIUQ37cS8NLmguFmpvCoPGh9H7qHncwDQYJKoZIhvcNAQEL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+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sri-test-1.sunet.se/saml2/ls/"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sri-test-1.sunet.se/saml2/acs/" index="1"/>
+    <md:AttributeConsumingService index="1">
+      <md:ServiceName xml:lang="en">SUNET Relationship Inventory</md:ServiceName>
+      <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName" isRequired="true"/>
+      <md:RequestedAttribute Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName" isRequired="true"/>
+    </md:AttributeConsumingService>
+  </md:SPSSODescriptor>
+  <md:ContactPerson contactType="technical">
+    <md:Company>SUNET</md:Company>
+    <md:GivenName>Maria</md:GivenName>
+    <md:SurName>Haider</md:SurName>
+    <md:EmailAddress>mailto:mariah@sunet.se</md:EmailAddress>
+  </md:ContactPerson>
+</md:EntityDescriptor>
diff --git a/swamid-testing-sp-1.0.mxml b/swamid-testing-sp-1.0.mxml
index 42c362f4..7349290c 100644
--- a/swamid-testing-sp-1.0.mxml
+++ b/swamid-testing-sp-1.0.mxml
@@ -60,4 +60,5 @@
   <xi:include href="swamid-2.0/test.ortrac.com-saml-sp.xml"/>
   <xi:include href="swamid-2.0/permitwinstaging1.caleaccess.com.xml"/>
   <xi:include href="swamid-2.0/test.lu.ortrac.com-saml-sp.xml"/>
+  <xi:include href="swamid-2.0/sri-test.sunet.se-api-saml2-metadata.xml"/>
 </EntitiesDescriptor>
author	Fredrik Domeij <fredrik.domeij@umu.se>	2020-10-27 12:37:43 +0100
committer	Fredrik Domeij <fredrik.domeij@umu.se>	2020-10-27 12:45:20 +0100
commit	ab740845f82a6dee6c5bd66c75633088992e072a (patch)
tree	a83f675cbad5939e2406de353b4d18c25e70aa9b
parent	0845630639ad1d46813368cc56ef1c9a6347ea2f (diff)