SWAMID-537, CoCo for konto.bth.se

1 files changed, 49 insertions, 25 deletions

diff --git a/swamid-2.0/konto.bth.se-sp.xml b/swamid-2.0/konto.bth.se-sp.xml
index 42fc446a..37f404a5 100644
--- a/swamid-2.0/konto.bth.se-sp.xml
+++ b/swamid-2.0/konto.bth.se-sp.xml
@@ -9,38 +9,62 @@
         <samla:AttributeValue>http://www.swamid.se/category/hei-service</samla:AttributeValue>
         <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue>
         <samla:AttributeValue>http://www.swamid.se/category/sfs-1993-1153</samla:AttributeValue>
+        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
+      </samla:Attribute>
+      <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+        <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue>
       </samla:Attribute>
     </mdattr:EntityAttributes>
   </md:Extensions>
-  <SPSSODescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-    <Extensions>
+  <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+    <md:Extensions>
       <mdui:UIInfo>
         <mdui:DisplayName xml:lang="sv">Kontoaktivering BTH</mdui:DisplayName>
         <mdui:DisplayName xml:lang="en">Account activation BTH</mdui:DisplayName>
         <mdui:Description xml:lang="sv">Kontoaktiveringstjänst hos Blekinge Tekniska Högskola</mdui:Description>
         <mdui:Description xml:lang="en">Account activation service at Blekinge Institute of Technology</mdui:Description>
+        <mdui:PrivacyStatementURL xml:lang="sv">https://konto.bth.se/app/scripts/services/about/about.personaldata.html</mdui:PrivacyStatementURL>
+        <mdui:PrivacyStatementURL xml:lang="en">https://konto.bth.se/app/scripts/services/about/about.personaldata.html</mdui:PrivacyStatementURL>
       </mdui:UIInfo>
-    </Extensions>
-    <KeyDescriptor>
-      <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
-        <X509Data>
-          <X509Certificate>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</X509Certificate>
-        </X509Data>
-      </KeyInfo>
-    </KeyDescriptor>
-    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://konto.bth.se/AuthServices/Logout"/>
-    <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto.bth.se/AuthServices/Logout"/>
-    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto.bth.se/AuthServices/Acs" index="0" isDefault="true"/>
-    <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://konto.bth.se/AuthServices/Acs" index="1" isDefault="false"/>
-  </SPSSODescriptor>
-  <Organization xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
-    <OrganizationName xml:lang="sv">BTH</OrganizationName>
-    <OrganizationDisplayName xml:lang="sv">BTH</OrganizationDisplayName>
-    <OrganizationURL xml:lang="sv">http://bth.se/</OrganizationURL>
-  </Organization>
-  <ContactPerson xmlns="urn:oasis:names:tc:SAML:2.0:metadata" contactType="administrative">
-    <GivenName>Björn</GivenName>
-    <SurName>Mattsson</SurName>
-    <EmailAddress>mailto:bjorn.mattsson@bth.se</EmailAddress>
-  </ContactPerson>
+    </md:Extensions>
+    <md:KeyDescriptor>
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://konto.bth.se/AuthServices/Logout"/>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto.bth.se/AuthServices/Logout"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto.bth.se/AuthServices/Acs" index="0" isDefault="true"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://konto.bth.se/AuthServices/Acs" index="1" isDefault="false"/>
+    <md:AttributeConsumingService index="1">
+      <md:ServiceName xml:lang="en">Account activation BTH</md:ServiceName>
+      <md:ServiceName xml:lang="sv">Kontoaktivering BTH</md:ServiceName>
+      <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+      <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+      <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+      <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+    </md:AttributeConsumingService>
+  </md:SPSSODescriptor>
+  <md:Organization>
+    <md:OrganizationName xml:lang="sv">BTH</md:OrganizationName>
+    <md:OrganizationName xml:lang="en">BTH</md:OrganizationName>
+    <md:OrganizationDisplayName xml:lang="sv">Blekinge Tekniska Högskola</md:OrganizationDisplayName>
+    <md:OrganizationDisplayName xml:lang="en">Blekinge Institute of Technology</md:OrganizationDisplayName>
+    <md:OrganizationURL xml:lang="sv">http://bth.se/</md:OrganizationURL>
+    <md:OrganizationURL xml:lang="en">http://bth.se/</md:OrganizationURL>
+  </md:Organization>
+  <md:ContactPerson contactType="administrative">
+    <md:GivenName>IThelpdesk</md:GivenName>
+    <md:EmailAddress>mailto:ithelpdesk@bth.se</md:EmailAddress>
+  </md:ContactPerson>
+  <md:ContactPerson contactType="technical">
+    <md:GivenName>IThelpdesk</md:GivenName>
+    <md:EmailAddress>mailto:ithelpdesk@bth.se</md:EmailAddress>
+  </md:ContactPerson>
+  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
+    <md:GivenName>Security Response Team</md:GivenName>
+    <md:EmailAddress>mailto:abuse@bth.se</md:EmailAddress>
+  </md:ContactPerson>
 </md:EntityDescriptor>