summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorBjörn Mattsson <bjorn@sunet.se>2022-06-08 11:52:19 +0200
committerBjörn Mattsson <bjorn@sunet.se>2022-06-08 11:52:19 +0200
commit660c0e93bd6936748393bde86359d6d50c427ea0 (patch)
treeec9b1d701189309f8e938e5d79fa02956d75ad3f
parenta202f19c424d6ab6f63dfb26e5e4444acf6903f3 (diff)
SWAMID-1024 New cert for pubtestnew.kib.ki.se
-rw-r--r--swamid-2.0/pubtestnew.kib.ki.se-shibboleth.xml92
1 files changed, 75 insertions, 17 deletions
diff --git a/swamid-2.0/pubtestnew.kib.ki.se-shibboleth.xml b/swamid-2.0/pubtestnew.kib.ki.se-shibboleth.xml
index 43e47ce1..6abdc92f 100644
--- a/swamid-2.0/pubtestnew.kib.ki.se-shibboleth.xml
+++ b/swamid-2.0/pubtestnew.kib.ki.se-shibboleth.xml
@@ -1,14 +1,10 @@
<?xml version="1.0" encoding="UTF-8"?>
+<!--
+This is example metadata only. Do *NOT* supply it as is without review,
+and do *NOT* provide it in real time to your partners.
+ -->
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://pubtestnew.kib.ki.se/shibboleth">
<md:Extensions>
- <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2019-03-26T09:31:06Z">
- <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
- </mdrpi:RegistrationInfo>
- <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
- <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
- <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue>
- </samla:Attribute>
- </mdattr:EntityAttributes>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
@@ -25,24 +21,34 @@
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
+ <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2019-03-26T09:31:06Z">
+ <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
+ </mdrpi:RegistrationInfo>
+ <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
+ <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+ <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue>
+ </samla:Attribute>
+ </mdattr:EntityAttributes>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
<md:Extensions>
<init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://pubtestnew.kib.ki.se/Shibboleth.sso/Login"/>
<mdui:UIInfo>
- <mdui:DisplayName xml:lang="sv">Karolinska Institutet Universitetsbiblioteket</mdui:DisplayName>
- <mdui:DisplayName xml:lang="en">Karolinska Institutet University Library</mdui:DisplayName>
- <mdui:Description xml:lang="sv">SWAMID Identitetsleverantör för Karolinska Institutet Universitetsbiblioteket.</mdui:Description>
<mdui:Description xml:lang="en">SWAMID Identity Provider for Karolinska Institutet University Library.</mdui:Description>
- <mdui:PrivacyStatementURL xml:lang="sv">https://kib.ki.se/om-webbplatsen</mdui:PrivacyStatementURL>
+ <mdui:Description xml:lang="sv">SWAMID Identitetsleverantör för Karolinska Institutet Universitetsbiblioteket.</mdui:Description>
+ <mdui:DisplayName xml:lang="en">Karolinska Institutet University Library</mdui:DisplayName>
+ <mdui:DisplayName xml:lang="sv">Karolinska Institutet Universitetsbiblioteket</mdui:DisplayName>
<mdui:PrivacyStatementURL xml:lang="en">https://kib.ki.se/en/about-website</mdui:PrivacyStatementURL>
+ <mdui:PrivacyStatementURL xml:lang="sv">https://kib.ki.se/om-webbplatsen</mdui:PrivacyStatementURL>
+ <mdui:InformationURL xml:lang="en">https://kib.ki.se/en/about-website</mdui:InformationURL>
+ <mdui:InformationURL xml:lang="sv">https://kib.ki.se/om-webbplatsen</mdui:InformationURL>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor>
<ds:KeyInfo>
<ds:KeyName>publications.ki.se</ds:KeyName>
<ds:X509Data>
- <ds:X509SubjectName>emailAddress=ubitdos@kib.ki.se,,OU=UNIVERSITY LIBRARY,O=Karolinska Institutet,L=Solna,ST=Some-State,C=SE</ds:X509SubjectName>
+ <ds:X509SubjectName>emailAddress=ubitdos@kib.ki.se,CN=publications.ki.se,OU=UNIVERSITY LIBRARY,O=Karolinska Institutet,L=Solna,ST=Some-State,C=SE</ds:X509SubjectName>
<ds:X509Certificate>MIIE+jCCA+KgAwIBAgIJAOQykWZUCZpqMA0GCSqGSIb3DQEBBQUAMIGuMQswCQYD
VQQGEwJTRTETMBEGA1UECBMKU29tZS1TdGF0ZTEOMAwGA1UEBxMFU29sbmExHjAc
BgNVBAoTFUthcm9saW5za2EgSW5zdGl0dXRldDEbMBkGA1UECxMSVU5JVkVSU0lU
@@ -82,6 +88,48 @@ ryntMn54coBlF2Vqrm4Fa2XUyUIkurCv3FZtdN5W
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/>
+ </md:KeyDescriptor>
+ <md:KeyDescriptor>
+ <ds:KeyInfo>
+ <ds:KeyName>pubtestnew.kib.ki.se</ds:KeyName>
+ <ds:X509Data>
+ <ds:X509SubjectName>CN=pubtestnew.kib.ki.se</ds:X509SubjectName>
+ <ds:X509Certificate>MIIEDjCCAnagAwIBAgIULG9wuWzxH6v1VmixEicAvVOEtMIwDQYJKoZIhvcNAQEL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+</ds:X509Certificate>
+ </ds:X509Data>
+ </ds:KeyInfo>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://pubtestnew.kib.ki.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://pubtestnew.kib.ki.se/Shibboleth.sso/SLO/SOAP"/>
@@ -98,15 +146,25 @@ ryntMn54coBlF2Vqrm4Fa2XUyUIkurCv3FZtdN5W
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://pubtestnew.kib.ki.se/Shibboleth.sso/SAML/POST" index="5"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://pubtestnew.kib.ki.se/Shibboleth.sso/SAML/Artifact" index="6"/>
</md:SPSSODescriptor>
- <md:Organization xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
- <md:OrganizationName xml:lang="en">KI</md:OrganizationName>
- <md:OrganizationDisplayName xml:lang="sv">Karolinska Institutet</md:OrganizationDisplayName>
+ <md:Organization>
+ <md:OrganizationName xml:lang="en">Karolinska University Library</md:OrganizationName>
+ <md:OrganizationName xml:lang="sv">Karolinska universitetsbiblioteket</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">Karolinska Institutet</md:OrganizationDisplayName>
- <md:OrganizationURL xml:lang="en">http://www.ki.se</md:OrganizationURL>
+ <md:OrganizationDisplayName xml:lang="sv">Karolinska Institutet</md:OrganizationDisplayName>
+ <md:OrganizationURL xml:lang="en">https://kib.ki.se/en</md:OrganizationURL>
+ <md:OrganizationURL xml:lang="sv">https://kib.ki.se</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="administrative">
<md:GivenName>KIB-IT</md:GivenName>
<md:SurName>IT Helpdesk</md:SurName>
<md:EmailAddress>mailto:itsupport@kib.ki.se</md:EmailAddress>
</md:ContactPerson>
+ <md:ContactPerson contactType="technical">
+ <md:GivenName>studentit</md:GivenName>
+ <md:EmailAddress>mailto:itsupport@kib.ki.se</md:EmailAddress>
+ </md:ContactPerson>
+ <md:ContactPerson contactType="support">
+ <md:GivenName>studentit</md:GivenName>
+ <md:EmailAddress>mailto:itsupport@kib.ki.se</md:EmailAddress>
+ </md:ContactPerson>
</md:EntityDescriptor>