SWAMID-4866: Updated idp.kmh.semd-2024-10-24-v10

author: Johan Wassberg <jocar@sunet.se> 2024-10-24 12:33:44 +0200
committer: Johan Wassberg <jocar@sunet.se> 2024-10-24 12:33:44 +0200
commit: c83748be7aa6b3049f695fff04d9f6bb8639eefb (patch)
tree: c83fe1af9db8a1f2bed6e594c80b3cd2f6570867
parent: 475da47e883ad8a210818f82bebca0264d965d36 (diff)
1 files changed, 39 insertions, 6 deletions
diff --git a/metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml b/metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml
index 76352811..6ea48743 100644
--- a/metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml
+++ b/metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml
@@ -13,10 +13,14 @@
         <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue>
         <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue>
         <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue>
+        <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
+        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
+        <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue>
+        <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue>
       </samla:Attribute>
     </mdattr:EntityAttributes>
   </md:Extensions>
-  <md:IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&amp;errorurl_ts=ERRORURL_TS&amp;errorurl_rp=ERRORURL_RP&amp;errorurl_tid=ERRORURL_TID&amp;errorurl_ctx=ERRORURL_CTX&amp;entityid=https://idp.kmh.se/idp/shibboleth">
+  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&amp;errorurl_ts=ERRORURL_TS&amp;errorurl_rp=ERRORURL_RP&amp;errorurl_tid=ERRORURL_TID&amp;errorurl_ctx=ERRORURL_CTX&amp;entityid=https://idp.kmh.se/idp/shibboleth">
     <md:Extensions>
       <shibmd:Scope regexp="false">kmh.se</shibmd:Scope>
       <mdui:UIInfo>
@@ -62,20 +66,50 @@ SqYks9bV+ae2Fl2AyXQXVv2GR6FNF8Y=</ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
     </md:KeyDescriptor>
-    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.kmh.se/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
-    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.kmh.se/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>MIIEsTCCApkCFDc+d16n6M5nXzzPo2qdVaJAaooeMA0GCSqGSIb3DQEBCwUAMBUx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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.kmh.se/idp/profile/SAML2/SOAP/ArtifactResolution" index="1"/>
     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.kmh.se/idp/profile/SAML2/Redirect/SLO"/>
     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.kmh.se/idp/profile/SAML2/POST/SLO"/>
     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.kmh.se/idp/profile/SAML2/SOAP/SLO"/>
     <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat>
     <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
     <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
-    <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.kmh.se/idp/profile/Shibboleth/SSO"/>
     <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.kmh.se/idp/profile/SAML2/POST/SSO"/>
     <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.kmh.se/idp/profile/SAML2/POST-SimpleSign/SSO"/>
     <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.kmh.se/idp/profile/SAML2/Redirect/SSO"/>
   </md:IDPSSODescriptor>
-  <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+  <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
     <md:Extensions>
       <shibmd:Scope regexp="false">kmh.se</shibmd:Scope>
     </md:Extensions>
@@ -102,7 +136,6 @@ SqYks9bV+ae2Fl2AyXQXVv2GR6FNF8Y=</ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
     </md:KeyDescriptor>
-    <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.kmh.se/idp/profile/SAML1/SOAP/AttributeQuery"/>
     <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.kmh.se/idp/profile/SAML2/SOAP/AttributeQuery"/>
     <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat>
     <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
author	Johan Wassberg <jocar@sunet.se>	2024-10-24 12:33:44 +0200
committer	Johan Wassberg <jocar@sunet.se>	2024-10-24 12:33:44 +0200
commit	c83748be7aa6b3049f695fff04d9f6bb8639eefb (patch)
tree	c83fe1af9db8a1f2bed6e594c80b3cd2f6570867
parent	475da47e883ad8a210818f82bebca0264d965d36 (diff)