diff options
author | Mikael Frykholm <mifr@sunet.se> | 2023-12-20 14:58:55 +0100 |
---|---|---|
committer | Mikael Frykholm <mifr@sunet.se> | 2023-12-20 14:58:55 +0100 |
commit | 71c82028d34c646535fbd14bb47cf2bbfaa8d191 (patch) | |
tree | f84f83ce0c2f44d95e8e08c8e7da694a10158a86 /metadata/swamid-2.0/jenkins.led.ladok.se-securityRealm-finishLogin.xml | |
parent | ac45856270556747047920c272ce92b217b2710d (diff) |
SWAMID-3625: bulk changes for many of ladoks non prod envs.md-2023-12-20-v04
Diffstat (limited to 'metadata/swamid-2.0/jenkins.led.ladok.se-securityRealm-finishLogin.xml')
-rw-r--r-- | metadata/swamid-2.0/jenkins.led.ladok.se-securityRealm-finishLogin.xml | 119 |
1 files changed, 66 insertions, 53 deletions
diff --git a/metadata/swamid-2.0/jenkins.led.ladok.se-securityRealm-finishLogin.xml b/metadata/swamid-2.0/jenkins.led.ladok.se-securityRealm-finishLogin.xml index bf36de1e..5a389aa3 100644 --- a/metadata/swamid-2.0/jenkins.led.ladok.se-securityRealm-finishLogin.xml +++ b/metadata/swamid-2.0/jenkins.led.ladok.se-securityRealm-finishLogin.xml @@ -1,6 +1,22 @@ <?xml version="1.0" encoding="UTF-8"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://jenkins.led.ladok.se/securityRealm/finishLogin"> <md:Extensions> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-03-06T11:33:35Z"> <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> </mdrpi:RegistrationInfo> @@ -10,94 +26,91 @@ </samla:Attribute> </mdattr:EntityAttributes> </md:Extensions> - <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.0:protocol urn:oasis:names:tc:SAML:1.1:protocol"> <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://jenkins.led.ladok.se/securityRealm/finishLogin"/> <mdui:UIInfo> - <mdui:DisplayName xml:lang="sv">Inloggning LED Jenkins</mdui:DisplayName> - <mdui:Description xml:lang="sv">Inloggning mot LED Jenkins</mdui:Description> <mdui:Description xml:lang="en">Login to LED Jenkins</mdui:Description> + <mdui:Description xml:lang="sv">Inloggning mot LED Jenkins</mdui:Description> + <mdui:DisplayName xml:lang="en">LED Jenkins login</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Inloggning LED Jenkins</mdui:DisplayName> <mdui:InformationURL xml:lang="en">https://ladok.se/</mdui:InformationURL> <mdui:InformationURL xml:lang="sv">https://ladok.se/</mdui:InformationURL> <mdui:PrivacyStatementURL xml:lang="en">https://ladok3.its.umu.se/privacy-policy/index-en.html</mdui:PrivacyStatementURL> <mdui:PrivacyStatementURL xml:lang="sv">https://ladok3.its.umu.se/privacy-policy/</mdui:PrivacyStatementURL> - <mdui:DisplayName xml:lang="en">LED Jenkins login</mdui:DisplayName> </mdui:UIInfo> </md:Extensions> <md:KeyDescriptor use="signing"> <ds:KeyInfo> <ds:X509Data> - <ds:X509Certificate>MIID8TCCAtmgAwIBAgIJAJ5hciT48zCDMA0GCSqGSIb3DQEBCwUAMIGOMQswCQYD -VQQGEwJTRTELMAkGA1UECAwCQUMxDTALBgNVBAcMBFVtZWExDDAKBgNVBAoMA0lU -UzEMMAoGA1UECwwDSVRTMR0wGwYDVQQDDBRqZW5raW5zLmxlZC5sYWRvay5zZTEo -MCYGCSqGSIb3DQEJARYZYW5kZXJzLnNpZ2ZyaWRzc29uQHVtdS5zZTAeFw0yMDAz -MDUxMjQ4MDRaFw0zMDAzMDMxMjQ4MDRaMIGOMQswCQYDVQQGEwJTRTELMAkGA1UE -CAwCQUMxDTALBgNVBAcMBFVtZWExDDAKBgNVBAoMA0lUUzEMMAoGA1UECwwDSVRT -MR0wGwYDVQQDDBRqZW5raW5zLmxlZC5sYWRvay5zZTEoMCYGCSqGSIb3DQEJARYZ -YW5kZXJzLnNpZ2ZyaWRzc29uQHVtdS5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEP -ADCCAQoCggEBAOQwj8qUiehb4TCxZo6ciAwopW9llkAz3Dz3LO343tuBUX1ABpEw -B3Nw5pDmQvk8C11FOVe+9Eo6Lp0TpmnPZ1uRnRmlloOYmcy2E63pVvHhCIBo9D+3 -DE5kGku3N5PKQ2HLvV+EYJYUUggJOeYkr7vAUcp1b/j8Mrg21Qz0wwid3GJFsUgB -0m2qPfE3lyqsW4eWocUqPDTlJeXo+9a+Nse47pf+61LraPfTOl41/Zwq+b59tRvr -PiKofWl7cWeJrPErOO/e5iNuQj90/WXgDLbop+6XIylgOA3nDCBV9I0MegyMUmoI -6jy1TZmkp7gyjGuFDPnLFDbf2CpXEw8Xq9UCAwEAAaNQME4wHQYDVR0OBBYEFMTn -bbcjWO41sms7N5JYQY1tYjfHMB8GA1UdIwQYMBaAFMTnbbcjWO41sms7N5JYQY1t -YjfHMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAIUcjzXzKDkf8og/ -N/4QZJhVcKzBVMfbZIUUXOeLVRvXs6oOv7//SdXIxIph1DvLkdpiUWarVKa2nz26 -L8OMXHcJPu1jgmhKLciFWO5ufZ8ioK9XsbZPwHDlPnCcwL67TczjPtTjZDgarUsC -40g4hb3up8HWCU8ds3hhDniqc/K1xY4TwYk/JKmBLMb6GYoXP01+n6fScxNYcdbe -nGN9NfLMSl4v0IDPQU6IwM1j3UC+vGfUwHaK1T0xNFbrZ/kM2Tflyr3BPHqSUrAb -olRZL2POl8u5KnGw6CVwojyapKmEYuZvplqkdWyJyC61nA+Km8iYfly3/MQ+NfoA -aeTtz7U=</ds:X509Certificate> + <ds:X509Certificate>MIID8TCCAtmgAwIBAgIJAJ5hciT48zCDMA0GCSqGSIb3DQEBCwUAMIGOMQswCQYDVQQGEwJTRTEL +MAkGA1UECAwCQUMxDTALBgNVBAcMBFVtZWExDDAKBgNVBAoMA0lUUzEMMAoGA1UECwwDSVRTMR0w +GwYDVQQDDBRqZW5raW5zLmxlZC5sYWRvay5zZTEoMCYGCSqGSIb3DQEJARYZYW5kZXJzLnNpZ2Zy +aWRzc29uQHVtdS5zZTAeFw0yMDAzMDUxMjQ4MDRaFw0zMDAzMDMxMjQ4MDRaMIGOMQswCQYDVQQG +EwJTRTELMAkGA1UECAwCQUMxDTALBgNVBAcMBFVtZWExDDAKBgNVBAoMA0lUUzEMMAoGA1UECwwD +SVRTMR0wGwYDVQQDDBRqZW5raW5zLmxlZC5sYWRvay5zZTEoMCYGCSqGSIb3DQEJARYZYW5kZXJz +LnNpZ2ZyaWRzc29uQHVtdS5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOQwj8qU +iehb4TCxZo6ciAwopW9llkAz3Dz3LO343tuBUX1ABpEwB3Nw5pDmQvk8C11FOVe+9Eo6Lp0TpmnP +Z1uRnRmlloOYmcy2E63pVvHhCIBo9D+3DE5kGku3N5PKQ2HLvV+EYJYUUggJOeYkr7vAUcp1b/j8 +Mrg21Qz0wwid3GJFsUgB0m2qPfE3lyqsW4eWocUqPDTlJeXo+9a+Nse47pf+61LraPfTOl41/Zwq ++b59tRvrPiKofWl7cWeJrPErOO/e5iNuQj90/WXgDLbop+6XIylgOA3nDCBV9I0MegyMUmoI6jy1 +TZmkp7gyjGuFDPnLFDbf2CpXEw8Xq9UCAwEAAaNQME4wHQYDVR0OBBYEFMTnbbcjWO41sms7N5JY +QY1tYjfHMB8GA1UdIwQYMBaAFMTnbbcjWO41sms7N5JYQY1tYjfHMAwGA1UdEwQFMAMBAf8wDQYJ +KoZIhvcNAQELBQADggEBAIUcjzXzKDkf8og/N/4QZJhVcKzBVMfbZIUUXOeLVRvXs6oOv7//SdXI +xIph1DvLkdpiUWarVKa2nz26L8OMXHcJPu1jgmhKLciFWO5ufZ8ioK9XsbZPwHDlPnCcwL67Tczj +PtTjZDgarUsC40g4hb3up8HWCU8ds3hhDniqc/K1xY4TwYk/JKmBLMb6GYoXP01+n6fScxNYcdbe +nGN9NfLMSl4v0IDPQU6IwM1j3UC+vGfUwHaK1T0xNFbrZ/kM2Tflyr3BPHqSUrAbolRZL2POl8u5 +KnGw6CVwojyapKmEYuZvplqkdWyJyC61nA+Km8iYfly3/MQ+NfoAaeTtz7U=</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo> <ds:X509Data> - <ds:X509Certificate>MIID8TCCAtmgAwIBAgIJAJ5hciT48zCDMA0GCSqGSIb3DQEBCwUAMIGOMQswCQYD -VQQGEwJTRTELMAkGA1UECAwCQUMxDTALBgNVBAcMBFVtZWExDDAKBgNVBAoMA0lU -UzEMMAoGA1UECwwDSVRTMR0wGwYDVQQDDBRqZW5raW5zLmxlZC5sYWRvay5zZTEo -MCYGCSqGSIb3DQEJARYZYW5kZXJzLnNpZ2ZyaWRzc29uQHVtdS5zZTAeFw0yMDAz -MDUxMjQ4MDRaFw0zMDAzMDMxMjQ4MDRaMIGOMQswCQYDVQQGEwJTRTELMAkGA1UE -CAwCQUMxDTALBgNVBAcMBFVtZWExDDAKBgNVBAoMA0lUUzEMMAoGA1UECwwDSVRT -MR0wGwYDVQQDDBRqZW5raW5zLmxlZC5sYWRvay5zZTEoMCYGCSqGSIb3DQEJARYZ -YW5kZXJzLnNpZ2ZyaWRzc29uQHVtdS5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEP -ADCCAQoCggEBAOQwj8qUiehb4TCxZo6ciAwopW9llkAz3Dz3LO343tuBUX1ABpEw -B3Nw5pDmQvk8C11FOVe+9Eo6Lp0TpmnPZ1uRnRmlloOYmcy2E63pVvHhCIBo9D+3 -DE5kGku3N5PKQ2HLvV+EYJYUUggJOeYkr7vAUcp1b/j8Mrg21Qz0wwid3GJFsUgB -0m2qPfE3lyqsW4eWocUqPDTlJeXo+9a+Nse47pf+61LraPfTOl41/Zwq+b59tRvr -PiKofWl7cWeJrPErOO/e5iNuQj90/WXgDLbop+6XIylgOA3nDCBV9I0MegyMUmoI -6jy1TZmkp7gyjGuFDPnLFDbf2CpXEw8Xq9UCAwEAAaNQME4wHQYDVR0OBBYEFMTn -bbcjWO41sms7N5JYQY1tYjfHMB8GA1UdIwQYMBaAFMTnbbcjWO41sms7N5JYQY1t -YjfHMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAIUcjzXzKDkf8og/ -N/4QZJhVcKzBVMfbZIUUXOeLVRvXs6oOv7//SdXIxIph1DvLkdpiUWarVKa2nz26 -L8OMXHcJPu1jgmhKLciFWO5ufZ8ioK9XsbZPwHDlPnCcwL67TczjPtTjZDgarUsC -40g4hb3up8HWCU8ds3hhDniqc/K1xY4TwYk/JKmBLMb6GYoXP01+n6fScxNYcdbe -nGN9NfLMSl4v0IDPQU6IwM1j3UC+vGfUwHaK1T0xNFbrZ/kM2Tflyr3BPHqSUrAb -olRZL2POl8u5KnGw6CVwojyapKmEYuZvplqkdWyJyC61nA+Km8iYfly3/MQ+NfoA -aeTtz7U=</ds:X509Certificate> + <ds:X509Certificate>MIID8TCCAtmgAwIBAgIJAJ5hciT48zCDMA0GCSqGSIb3DQEBCwUAMIGOMQswCQYDVQQGEwJTRTEL +MAkGA1UECAwCQUMxDTALBgNVBAcMBFVtZWExDDAKBgNVBAoMA0lUUzEMMAoGA1UECwwDSVRTMR0w +GwYDVQQDDBRqZW5raW5zLmxlZC5sYWRvay5zZTEoMCYGCSqGSIb3DQEJARYZYW5kZXJzLnNpZ2Zy +aWRzc29uQHVtdS5zZTAeFw0yMDAzMDUxMjQ4MDRaFw0zMDAzMDMxMjQ4MDRaMIGOMQswCQYDVQQG +EwJTRTELMAkGA1UECAwCQUMxDTALBgNVBAcMBFVtZWExDDAKBgNVBAoMA0lUUzEMMAoGA1UECwwD +SVRTMR0wGwYDVQQDDBRqZW5raW5zLmxlZC5sYWRvay5zZTEoMCYGCSqGSIb3DQEJARYZYW5kZXJz +LnNpZ2ZyaWRzc29uQHVtdS5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOQwj8qU +iehb4TCxZo6ciAwopW9llkAz3Dz3LO343tuBUX1ABpEwB3Nw5pDmQvk8C11FOVe+9Eo6Lp0TpmnP +Z1uRnRmlloOYmcy2E63pVvHhCIBo9D+3DE5kGku3N5PKQ2HLvV+EYJYUUggJOeYkr7vAUcp1b/j8 +Mrg21Qz0wwid3GJFsUgB0m2qPfE3lyqsW4eWocUqPDTlJeXo+9a+Nse47pf+61LraPfTOl41/Zwq ++b59tRvrPiKofWl7cWeJrPErOO/e5iNuQj90/WXgDLbop+6XIylgOA3nDCBV9I0MegyMUmoI6jy1 +TZmkp7gyjGuFDPnLFDbf2CpXEw8Xq9UCAwEAAaNQME4wHQYDVR0OBBYEFMTnbbcjWO41sms7N5JY +QY1tYjfHMB8GA1UdIwQYMBaAFMTnbbcjWO41sms7N5JYQY1tYjfHMAwGA1UdEwQFMAMBAf8wDQYJ +KoZIhvcNAQELBQADggEBAIUcjzXzKDkf8og/N/4QZJhVcKzBVMfbZIUUXOeLVRvXs6oOv7//SdXI +xIph1DvLkdpiUWarVKa2nz26L8OMXHcJPu1jgmhKLciFWO5ufZ8ioK9XsbZPwHDlPnCcwL67Tczj +PtTjZDgarUsC40g4hb3up8HWCU8ds3hhDniqc/K1xY4TwYk/JKmBLMb6GYoXP01+n6fScxNYcdbe +nGN9NfLMSl4v0IDPQU6IwM1j3UC+vGfUwHaK1T0xNFbrZ/kM2Tflyr3BPHqSUrAbolRZL2POl8u5 +KnGw6CVwojyapKmEYuZvplqkdWyJyC61nA+Km8iYfly3/MQ+NfoAaeTtz7U=</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://jenkins.led.ladok.se/securityRealm/finishLogin?logoutendpoint=true"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://jenkins.led.ladok.se/securityRealm/finishLogin?logoutendpoint=true"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://jenkins.led.ladok.se/securityRealm/finishLogin?logoutendpoint=true"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://jenkins.led.ladok.se/securityRealm/finishLogin?logoutendpoint=true"/> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://jenkins.led.ladok.se/securityRealm/finishLogin" index="0"/> <md:AttributeConsumingService index="1"> - <md:ServiceName xml:lang="sv">Inloggning LED Jenkins</md:ServiceName> <md:ServiceName xml:lang="en">LED Jenkins login</md:ServiceName> + <md:ServiceName xml:lang="sv">Inloggning LED Jenkins</md:ServiceName> + <md:RequestedAttribute FriendlyName="cn" Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> - <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> <md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> - <md:RequestedAttribute FriendlyName="cn" Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> </md:AttributeConsumingService> </md:SPSSODescriptor> <md:Organization> - <md:OrganizationName xml:lang="en">Ladok Consortium</md:OrganizationName> - <md:OrganizationName xml:lang="sv">Ladokkonsortiet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Umea University</md:OrganizationName> + <md:OrganizationName xml:lang="sv">UmeƄ universitet</md:OrganizationName> <md:OrganizationDisplayName xml:lang="en">Ladok Consortium</md:OrganizationDisplayName> <md:OrganizationDisplayName xml:lang="sv">Ladokkonsortiet</md:OrganizationDisplayName> <md:OrganizationURL xml:lang="en">https://ladok.se/</md:OrganizationURL> |