SWAMID-5503: Added passporttestiprod.lu.semd-2025-03-21-v04

author: Johan Wassberg <jocar@sunet.se> 2025-03-21 15:22:31 +0100
committer: Johan Wassberg <jocar@sunet.se> 2025-03-21 15:22:31 +0100
commit: 4f47483ea6a78f12997359e4e144138899b0473b (patch)
tree: 09c67f41626b2f95c2fec19cedff8407bc3df882
parent: e853030f0a4ad8fb149df0b8c402f7d003668961 (diff)
1 files changed, 165 insertions, 0 deletions
diff --git a/metadata/swamid-2.0/passporttestiprod.lu.se-SAML2-shibboleth.xml b/metadata/swamid-2.0/passporttestiprod.lu.se-SAML2-shibboleth.xml
new file mode 100644
index 00000000..d6b42972
--- /dev/null
+++ b/metadata/swamid-2.0/passporttestiprod.lu.se-SAML2-shibboleth.xml
@@ -0,0 +1,165 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://passporttestiprod.lu.se/SAML2/shibboleth">
+  <md:Extensions>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
+    <mdattr:EntityAttributes>
+      <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+        <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
+      </samla:Attribute>
+    </mdattr:EntityAttributes>
+    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2025-03-21T09:56:15Z">
+      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
+    </mdrpi:RegistrationInfo>
+  </md:Extensions>
+  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+    <md:Extensions>
+      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://passporttestiprod.lu.se/Shibboleth.sso/Login"/>
+      <mdui:UIInfo>
+        <mdui:DisplayName xml:lang="sv">Lund universitets kontoaktivering och lösenordsåterställning</mdui:DisplayName>
+        <mdui:DisplayName xml:lang="en">Lund University user account activation and password reset</mdui:DisplayName>
+        <mdui:Description xml:lang="sv">Denna tjänst används för att du som ny vid universitetet ska kunna aktivera ditt användarkonto vid universitetet.</mdui:Description>
+        <mdui:Description xml:lang="en">As a new user you use this service to activate your university user account.</mdui:Description>
+        <mdui:InformationURL xml:lang="sv">https://passport.lu.se/privacy/</mdui:InformationURL>
+        <mdui:InformationURL xml:lang="en">https://passport.lu.se/privacy/</mdui:InformationURL>
+        <mdui:PrivacyStatementURL xml:lang="sv">https://passport.lu.se/privacy/</mdui:PrivacyStatementURL>
+        <mdui:PrivacyStatementURL xml:lang="en">https://passport.lu.se/privacy/</mdui:PrivacyStatementURL>
+      </mdui:UIInfo>
+    </md:Extensions>
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo>
+        <ds:KeyName>https://passporttestiprod.lu.se/SAML2/shibboleth</ds:KeyName>
+        <ds:KeyName>passporttestiprod.lu.se</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=passporttestiprod.lu.se</ds:X509SubjectName>
+          <ds:X509Certificate>MIIFSTCCAzGgAwIBAgIUHzMFCN64rjGhX4nnVxIBPs+Ec+gwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:KeyDescriptor use="encryption">
+      <ds:KeyInfo>
+        <ds:KeyName>https://passporttestiprod.lu.se/SAML2/shibboleth</ds:KeyName>
+        <ds:KeyName>passporttestiprod.lu.se</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=passporttestiprod.lu.se</ds:X509SubjectName>
+          <ds:X509Certificate>MIIFSTCCAzGgAwIBAgIUehOO9woLq5NRelkdmEMjZEqSySAwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
+    </md:KeyDescriptor>
+    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://passporttestiprod.lu.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://passporttestiprod.lu.se/Shibboleth.sso/SLO/SOAP"/>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://passporttestiprod.lu.se/Shibboleth.sso/SLO/Redirect"/>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://passporttestiprod.lu.se/Shibboleth.sso/SLO/POST"/>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://passporttestiprod.lu.se/Shibboleth.sso/SLO/Artifact"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://passporttestiprod.lu.se/Shibboleth.sso/SAML2/POST" index="1"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://passporttestiprod.lu.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://passporttestiprod.lu.se/Shibboleth.sso/SAML2/Artifact" index="3"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://passporttestiprod.lu.se/Shibboleth.sso/SAML2/ECP" index="4"/>
+    <md:AttributeConsumingService index="1">
+      <md:ServiceName xml:lang="en">Lund University user account management portal</md:ServiceName>
+      <md:ServiceName xml:lang="sv">Lunds universitets kontohanteringsportal</md:ServiceName>
+      <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+      <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+      <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+      <md:RequestedAttribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+    </md:AttributeConsumingService>
+  </md:SPSSODescriptor>
+  <md:Organization>
+    <md:OrganizationName xml:lang="sv">Lunds universitet</md:OrganizationName>
+    <md:OrganizationName xml:lang="en">Lund University</md:OrganizationName>
+    <md:OrganizationDisplayName xml:lang="sv">Lunds universitet</md:OrganizationDisplayName>
+    <md:OrganizationDisplayName xml:lang="en">Lund University</md:OrganizationDisplayName>
+    <md:OrganizationURL xml:lang="sv">https://www.lu.se</md:OrganizationURL>
+    <md:OrganizationURL xml:lang="en">https://www.lunduniversity.lu.se</md:OrganizationURL>
+  </md:Organization>
+  <md:ContactPerson contactType="technical">
+    <md:EmailAddress>mailto:passportadmin@epic.lu.se</md:EmailAddress>
+  </md:ContactPerson>
+  <md:ContactPerson contactType="administrative">
+    <md:EmailAddress>mailto:passportadmin@epic.lu.se</md:EmailAddress>
+  </md:ContactPerson>
+  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
+    <md:GivenName>LU IRT</md:GivenName>
+    <md:EmailAddress>mailto:abuse@lu.se</md:EmailAddress>
+  </md:ContactPerson>
+  <md:ContactPerson contactType="support">
+    <md:EmailAddress>mailto:servicedesk@lu.se</md:EmailAddress>
+  </md:ContactPerson>
+</md:EntityDescriptor>
author	Johan Wassberg <jocar@sunet.se>	2025-03-21 15:22:31 +0100
committer	Johan Wassberg <jocar@sunet.se>	2025-03-21 15:22:31 +0100
commit	4f47483ea6a78f12997359e4e144138899b0473b (patch)
tree	09c67f41626b2f95c2fec19cedff8407bc3df882
parent	e853030f0a4ad8fb149df0b8c402f7d003668961 (diff)