Updates during MFA hackatonmd-2023-05-23-v02

author: Björn Mattsson <bjorn@sunet.se> 2023-05-23 16:56:43 +0200
committer: Björn Mattsson <bjorn@sunet.se> 2023-05-23 16:56:43 +0200
commit: ba7260728b5b9c88ad1e05790cb27c5c681d6171 (patch)
tree: 6ec139e3d3f1cb720efcccfbcfedf4b673866ca0 /metadata/swamid-edugain
parent: 3cf98cb88db6faab5a21a3e0119ea25a876e66a5 (diff)
2 files changed, 164 insertions, 24 deletions
diff --git a/metadata/swamid-edugain/idp.ltu.se-idp-shibboleth.xml b/metadata/swamid-edugain/idp.ltu.se-idp-shibboleth.xml
index b247b4a1..79467ebc 100644
--- a/metadata/swamid-edugain/idp.ltu.se-idp-shibboleth.xml
+++ b/metadata/swamid-edugain/idp.ltu.se-idp-shibboleth.xml
@@ -14,9 +14,87 @@
         <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue>
         <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue>
         <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
+        <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue>
+        <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue>
+        <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue>
+        <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
+      </samla:Attribute>
+      <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+        <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
+        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
       </samla:Attribute>
     </mdattr:EntityAttributes>
   </md:Extensions>
+  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
+    <md:Extensions>
+      <mdui:UIInfo>
+        <mdui:DisplayName xml:lang="sv">Luleå tekniska universitet</mdui:DisplayName>
+        <mdui:DisplayName xml:lang="en">Lulea University of Technology</mdui:DisplayName>
+        <mdui:Description xml:lang="sv">Identity Provider för Luleå tekniska universitet</mdui:Description>
+        <mdui:Description xml:lang="en">Identity Provider for Lulea University of Technology</mdui:Description>
+        <mdui:InformationURL xml:lang="sv">http://www.ltu.se</mdui:InformationURL>
+        <mdui:InformationURL xml:lang="en">http://www.ltu.se/?l=en</mdui:InformationURL>
+        <mdui:Logo xml:lang="sv" height="130" width="250">https://www.ltu.se/image/LTU_logo-sve-smal.png</mdui:Logo>
+        <mdui:Logo xml:lang="en" height="130" width="250">https://www.ltu.se/image/LTU_logo-eng-smal.png</mdui:Logo>
+        <mdui:PrivacyStatementURL xml:lang="sv">https://www.ltu.se/student/Tjanster-och-service/IT-support-student/Din-anvandare/Behandling-av-personuppgifter-vid-aktivering-och-losenordsaterstallning-av-studentkonton-1.224237</mdui:PrivacyStatementURL>
+        <mdui:PrivacyStatementURL xml:lang="en">https://www.ltu.se/student/Tjanster-och-service/IT-support-student/Din-anvandare/Behandling-av-personuppgifter-vid-aktivering-och-losenordsaterstallning-av-studentkonton-1.224237?l=en</mdui:PrivacyStatementURL>
+        <mdui:Keywords xml:lang="sv">LTU lulea+tekniska+universitet lulea+university+of+technology</mdui:Keywords>
+        <mdui:Keywords xml:lang="en">LTU lulea+tekniska+universitet lulea+university+of+technology</mdui:Keywords>
+      </mdui:UIInfo>
+    </md:Extensions>
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>MIIDFDCCAfygAwIBAgIVAOGyXLVRoSiwOvBslVqyO8H8MUpkMA0GCSqGSIb3DQEB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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:KeyDescriptor use="encryption">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>MIIDFDCCAfygAwIBAgIVAJtIqlatDGFOju804cuPymREGdCnMA0GCSqGSIb3DQEB
+CwUAMBUxEzARBgNVBAMMCmlkcC5sdHUuc2UwHhcNMTYxMDAzMTA1NDQ0WhcNMzYx
+MDAzMTA1NDQ0WjAVMRMwEQYDVQQDDAppZHAubHR1LnNlMIIBIjANBgkqhkiG9w0B
+AQEFAAOCAQ8AMIIBCgKCAQEApssNdGrdf68j/MkcesycaSHS09IOOJOfvKAMsTS3
+tqurFc5Jebxiu+uoHm5pDqXcrDxquJxFVvD7HJhPsR0yMm85/7bt9NkmQssqqMQ7
+GTX1WnrJa1STaZO/izcJcOw7vXJ89c3DevszGZqZGAiImzpiX2N5T9Xl1OtckOrG
+pX/2aXZg6TATC0Q/lAa9u/GBYvuCZ/hlUKfyjzIAkIXms/w8bZu7EAb2tIipGoVO
+dfvsW/3LtA7tnYDNrK0ZyhgCSDiu7L6bfGcLlMsJNCNmGbRsVkkx5L7Di9KI9WD2
+cfnmuPMQLu/C9F3lGcfRg05yZSFrA0TgZ9xFeB8cq/H5dwIDAQABo1swWTAdBgNV
+HQ4EFgQUAjMKyo3f4aK/PsMfBg4Z5ybxg1wwOAYDVR0RBDEwL4IKaWRwLmx0dS5z
+ZYYhaHR0cHM6Ly9pZHAubHR1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEB
+CwUAA4IBAQAATNstFYSsUkvum8FSaX5ocJwTxuiH1kNM/ZHhEWeT6/iWHnLhu7Ny
+TmDtc3WkxSMtJ3sk6JXr+SHKCMdDoFhUH2R/djGEnjLURtMLhEeMIEIk3tY3v4cO
+7SoVlJMf+3olbpvWzd9DzkONU9U/CcY6si0FWXFnzWkkJOzCdJcvIpY2eQ5ToBvr
+uowwVDOkLMkwJEKleCa0iFm6oRGmGOGavnymCFZSG2BCikRllS5J0j0Pj3ZYwc5p
+MfScMYUVxXQNrKv/yODSBaeDgqvxmTzKjSyNUShynz+WXbFOxV/HlCKtaaZNh2Zv
+ZdLXjuEF1cFQB3AAK9PIEmkLc69IXjPQ</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibmfa.test.swamid.se/idp/profile/Authn/SAML2/POST/SSO" index="0"/>
+    <md:AttributeConsumingService index="1">
+      <md:ServiceName xml:lang="en">Lulea University of Technology</md:ServiceName>
+      <md:ServiceName xml:lang="sv">Luleå tekniska universitet</md:ServiceName>
+      <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+    </md:AttributeConsumingService>
+  </md:SPSSODescriptor>
   <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://www.ltu.se/ltu/it-support/loginerror-1.207338">
     <md:Extensions>
       <shibmd:Scope regexp="false">ltu.se</shibmd:Scope>
@@ -42,8 +120,7 @@
     <md:KeyDescriptor use="signing">
       <ds:KeyInfo>
         <ds:X509Data>
-          <ds:X509Certificate>
-MIIDEzCCAfugAwIBAgIUEF1BMNIKMVmOiuK2uUY7yMT/FZEwDQYJKoZIhvcNAQEL
+          <ds:X509Certificate>MIIDEzCCAfugAwIBAgIUEF1BMNIKMVmOiuK2uUY7yMT/FZEwDQYJKoZIhvcNAQEL
 BQAwFTETMBEGA1UEAwwKaWRwLmx0dS5zZTAeFw0xNjEwMDMxMDU0NDRaFw0zNjEw
 MDMxMDU0NDRaMBUxEzARBgNVBAMMCmlkcC5sdHUuc2UwggEiMA0GCSqGSIb3DQEB
 AQUAA4IBDwAwggEKAoIBAQC77HPEN3ywPEqpkuv92tbanirV61gX3Eg9LFBPGhXM
@@ -59,16 +136,14 @@ wOWcty/UyZQpxHZucSXumj11iSeIY8FQ+hH0IusDg32esITifj67nNZaWsY7KPVg
 IPq41WLphw/6UPHBtv3KkG3dwhx7ZglIc1uf904zLZyl5W5t4KSSues7E9yWcURV
 QbftDOzCzlTCiqH4LAOrNzY5T03E/NzoDCynKGpML+KLHqH8yCFHzpPzXopprG+f
 1aH7y6eF6sFdeeD7xbvPNNqRF1dLIz2N997LrmEjLQGRUPhCeaXo0kNMDxzJMbAc
-Imrso4dObDk/xFdJSbWgmKWEnvUc2+o=
-                        </ds:X509Certificate>
+Imrso4dObDk/xFdJSbWgmKWEnvUc2+o=</ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
     </md:KeyDescriptor>
     <md:KeyDescriptor use="signing">
       <ds:KeyInfo>
         <ds:X509Data>
-          <ds:X509Certificate>
-MIIDFDCCAfygAwIBAgIVAOGyXLVRoSiwOvBslVqyO8H8MUpkMA0GCSqGSIb3DQEB
+          <ds:X509Certificate>MIIDFDCCAfygAwIBAgIVAOGyXLVRoSiwOvBslVqyO8H8MUpkMA0GCSqGSIb3DQEB
 CwUAMBUxEzARBgNVBAMMCmlkcC5sdHUuc2UwHhcNMTYxMDAzMTA1NDQzWhcNMzYx
 MDAzMTA1NDQzWjAVMRMwEQYDVQQDDAppZHAubHR1LnNlMIIBIjANBgkqhkiG9w0B
 AQEFAAOCAQ8AMIIBCgKCAQEAi1hFx0uyuGSOAI4syizgW1tHwR5mtSrzmeNDBFYM
@@ -84,16 +159,14 @@ CwUAA4IBAQADhDlm/9jU3jn49SjTtYbvBCvGj4pQXit0m0uRo6nFpYK3IZFTlUA6
 olQ/A1/53G6ibw7zQM7G9luRuE9NsIlUp40+XmSkZAb+ywaPG74OHJo2FzIbwC20
 +donlVlCl22RG0hRqoyKRjFaDr6wskvw5kXqqjcnCyEp81HiJHu9DefFiKSy7knQ
 ZVSpDwl0ijbRGFwWRPYwOf+M2H8b49UKq3D0nhXRhynPP+txW7xwFg4gIsqg4kgC
-X4dei9FUiIpNKgYziKf/tzbvJQqiV18l
-                        </ds:X509Certificate>
+X4dei9FUiIpNKgYziKf/tzbvJQqiV18l</ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
     </md:KeyDescriptor>
     <md:KeyDescriptor use="encryption">
       <ds:KeyInfo>
         <ds:X509Data>
-          <ds:X509Certificate>
-MIIDFDCCAfygAwIBAgIVAJtIqlatDGFOju804cuPymREGdCnMA0GCSqGSIb3DQEB
+          <ds:X509Certificate>MIIDFDCCAfygAwIBAgIVAJtIqlatDGFOju804cuPymREGdCnMA0GCSqGSIb3DQEB
 CwUAMBUxEzARBgNVBAMMCmlkcC5sdHUuc2UwHhcNMTYxMDAzMTA1NDQ0WhcNMzYx
 MDAzMTA1NDQ0WjAVMRMwEQYDVQQDDAppZHAubHR1LnNlMIIBIjANBgkqhkiG9w0B
 AQEFAAOCAQ8AMIIBCgKCAQEApssNdGrdf68j/MkcesycaSHS09IOOJOfvKAMsTS3
@@ -109,8 +182,7 @@ TmDtc3WkxSMtJ3sk6JXr+SHKCMdDoFhUH2R/djGEnjLURtMLhEeMIEIk3tY3v4cO
 7SoVlJMf+3olbpvWzd9DzkONU9U/CcY6si0FWXFnzWkkJOzCdJcvIpY2eQ5ToBvr
 uowwVDOkLMkwJEKleCa0iFm6oRGmGOGavnymCFZSG2BCikRllS5J0j0Pj3ZYwc5p
 MfScMYUVxXQNrKv/yODSBaeDgqvxmTzKjSyNUShynz+WXbFOxV/HlCKtaaZNh2Zv
-ZdLXjuEF1cFQB3AAK9PIEmkLc69IXjPQ
-                        </ds:X509Certificate>
+ZdLXjuEF1cFQB3AAK9PIEmkLc69IXjPQ</ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
     </md:KeyDescriptor>
@@ -129,8 +201,7 @@ ZdLXjuEF1cFQB3AAK9PIEmkLc69IXjPQ
     <md:KeyDescriptor use="signing">
       <ds:KeyInfo>
         <ds:X509Data>
-          <ds:X509Certificate>
-MIIDEzCCAfugAwIBAgIUEF1BMNIKMVmOiuK2uUY7yMT/FZEwDQYJKoZIhvcNAQEL
+          <ds:X509Certificate>MIIDEzCCAfugAwIBAgIUEF1BMNIKMVmOiuK2uUY7yMT/FZEwDQYJKoZIhvcNAQEL
 BQAwFTETMBEGA1UEAwwKaWRwLmx0dS5zZTAeFw0xNjEwMDMxMDU0NDRaFw0zNjEw
 MDMxMDU0NDRaMBUxEzARBgNVBAMMCmlkcC5sdHUuc2UwggEiMA0GCSqGSIb3DQEB
 AQUAA4IBDwAwggEKAoIBAQC77HPEN3ywPEqpkuv92tbanirV61gX3Eg9LFBPGhXM
@@ -146,16 +217,14 @@ wOWcty/UyZQpxHZucSXumj11iSeIY8FQ+hH0IusDg32esITifj67nNZaWsY7KPVg
 IPq41WLphw/6UPHBtv3KkG3dwhx7ZglIc1uf904zLZyl5W5t4KSSues7E9yWcURV
 QbftDOzCzlTCiqH4LAOrNzY5T03E/NzoDCynKGpML+KLHqH8yCFHzpPzXopprG+f
 1aH7y6eF6sFdeeD7xbvPNNqRF1dLIz2N997LrmEjLQGRUPhCeaXo0kNMDxzJMbAc
-Imrso4dObDk/xFdJSbWgmKWEnvUc2+o=
-                        </ds:X509Certificate>
+Imrso4dObDk/xFdJSbWgmKWEnvUc2+o=</ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
     </md:KeyDescriptor>
     <md:KeyDescriptor use="signing">
       <ds:KeyInfo>
         <ds:X509Data>
-          <ds:X509Certificate>
-MIIDFDCCAfygAwIBAgIVAOGyXLVRoSiwOvBslVqyO8H8MUpkMA0GCSqGSIb3DQEB
+          <ds:X509Certificate>MIIDFDCCAfygAwIBAgIVAOGyXLVRoSiwOvBslVqyO8H8MUpkMA0GCSqGSIb3DQEB
 CwUAMBUxEzARBgNVBAMMCmlkcC5sdHUuc2UwHhcNMTYxMDAzMTA1NDQzWhcNMzYx
 MDAzMTA1NDQzWjAVMRMwEQYDVQQDDAppZHAubHR1LnNlMIIBIjANBgkqhkiG9w0B
 AQEFAAOCAQ8AMIIBCgKCAQEAi1hFx0uyuGSOAI4syizgW1tHwR5mtSrzmeNDBFYM
@@ -171,16 +240,14 @@ CwUAA4IBAQADhDlm/9jU3jn49SjTtYbvBCvGj4pQXit0m0uRo6nFpYK3IZFTlUA6
 olQ/A1/53G6ibw7zQM7G9luRuE9NsIlUp40+XmSkZAb+ywaPG74OHJo2FzIbwC20
 +donlVlCl22RG0hRqoyKRjFaDr6wskvw5kXqqjcnCyEp81HiJHu9DefFiKSy7knQ
 ZVSpDwl0ijbRGFwWRPYwOf+M2H8b49UKq3D0nhXRhynPP+txW7xwFg4gIsqg4kgC
-X4dei9FUiIpNKgYziKf/tzbvJQqiV18l
-                        </ds:X509Certificate>
+X4dei9FUiIpNKgYziKf/tzbvJQqiV18l</ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
     </md:KeyDescriptor>
     <md:KeyDescriptor use="encryption">
       <ds:KeyInfo>
         <ds:X509Data>
-          <ds:X509Certificate>
-MIIDFDCCAfygAwIBAgIVAJtIqlatDGFOju804cuPymREGdCnMA0GCSqGSIb3DQEB
+          <ds:X509Certificate>MIIDFDCCAfygAwIBAgIVAJtIqlatDGFOju804cuPymREGdCnMA0GCSqGSIb3DQEB
 CwUAMBUxEzARBgNVBAMMCmlkcC5sdHUuc2UwHhcNMTYxMDAzMTA1NDQ0WhcNMzYx
 MDAzMTA1NDQ0WjAVMRMwEQYDVQQDDAppZHAubHR1LnNlMIIBIjANBgkqhkiG9w0B
 AQEFAAOCAQ8AMIIBCgKCAQEApssNdGrdf68j/MkcesycaSHS09IOOJOfvKAMsTS3
@@ -196,8 +263,7 @@ TmDtc3WkxSMtJ3sk6JXr+SHKCMdDoFhUH2R/djGEnjLURtMLhEeMIEIk3tY3v4cO
 7SoVlJMf+3olbpvWzd9DzkONU9U/CcY6si0FWXFnzWkkJOzCdJcvIpY2eQ5ToBvr
 uowwVDOkLMkwJEKleCa0iFm6oRGmGOGavnymCFZSG2BCikRllS5J0j0Pj3ZYwc5p
 MfScMYUVxXQNrKv/yODSBaeDgqvxmTzKjSyNUShynz+WXbFOxV/HlCKtaaZNh2Zv
-ZdLXjuEF1cFQB3AAK9PIEmkLc69IXjPQ
-                        </ds:X509Certificate>
+ZdLXjuEF1cFQB3AAK9PIEmkLc69IXjPQ</ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
     </md:KeyDescriptor>
diff --git a/metadata/swamid-edugain/idp3.hig.se-idp-shibboleth.xml b/metadata/swamid-edugain/idp3.hig.se-idp-shibboleth.xml
index 4d9b6a6b..626561d6 100644
--- a/metadata/swamid-edugain/idp3.hig.se-idp-shibboleth.xml
+++ b/metadata/swamid-edugain/idp3.hig.se-idp-shibboleth.xml
@@ -19,6 +19,10 @@
         <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue>
         <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue>
       </samla:Attribute>
+      <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+        <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
+        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
+      </samla:Attribute>
     </mdattr:EntityAttributes>
   </md:Extensions>
   <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&amp;errorurl_ts=ERRORURL_TS&amp;errorurl_rp=ERRORURL_RP&amp;errorurl_tid=ERRORURL_TID&amp;errorurl_ctx=ERRORURL_CTX&amp;entityid=https://idp3.hig.se/idp/shibboleth">
@@ -124,6 +128,76 @@ uSUv8QvuQcOa9kYsSNH4o1+qTVp8mrFCghss</ds:X509Certificate>
     <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp3.hig.se/idp/profile/SAML2/POST/SSO"/>
     <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp3.hig.se/idp/profile/SAML2/Redirect/SSO"/>
   </md:IDPSSODescriptor>
+  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
+    <md:Extensions>
+      <mdui:UIInfo>
+        <mdui:DisplayName xml:lang="sv">Högskolan i Gävle SP</mdui:DisplayName>
+        <mdui:DisplayName xml:lang="en">University of Gävle SP</mdui:DisplayName>
+        <mdui:Description xml:lang="sv">Identity Provider för anställda och studenter vid Högskolan i Gävle. SP</mdui:Description>
+        <mdui:Description xml:lang="en">The University of Gävle Identity Provider is used by employees and students at the university. SP</mdui:Description>
+        <mdui:Logo xml:lang="en" height="83" width="94">https://reset.hig.se/head/loggaengelska.png</mdui:Logo>
+        <mdui:Keywords xml:lang="sv">gävle gavle hig</mdui:Keywords>
+        <mdui:Keywords xml:lang="en">gävle gavle hig</mdui:Keywords>
+        <mdui:InformationURL xml:lang="sv">https://hig.se/Ext/Sv/Om-Hogskolan.html</mdui:InformationURL>
+        <mdui:InformationURL xml:lang="en">https://hig.se/Ext/En/University-of-Gavle/About-the-University.html</mdui:InformationURL>
+        <mdui:PrivacyStatementURL xml:lang="sv">https://www.hig.se/Ext/Sv/-Om-webbplatsen/Om-webbplatsen/Behandling-av-personuppgifter---IDP.html</mdui:PrivacyStatementURL>
+        <mdui:PrivacyStatementURL xml:lang="en">https://www.hig.se/Ext/En/University-of-Gavle/Om-webbplatsen/About-the-website/Processing-of-personal-data---IDP.html</mdui:PrivacyStatementURL>
+        <mdui:Logo xml:lang="sv" height="83" width="94">https://reset.hig.se/head/logga3.png</mdui:Logo>
+      </mdui:UIInfo>
+    </md:Extensions>
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>MIIDFzCCAf+gAwIBAgIURDaPmh4fojI5RTQlsw6odpGuJ9IwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:KeyDescriptor use="encryption">
+      <ds:KeyInfo>
+        <ds:X509Data>
+          <ds:X509Certificate>MIIDFzCCAf+gAwIBAgIUd7xvAjohRdOXVDSf0wu3l75uPbMwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp3.hig.se.se/idp/profile/Authn/SAML2/POST/SSO" index="0"/>
+    <md:AttributeConsumingService index="1">
+      <md:ServiceName xml:lang="en">University of Gävle SP</md:ServiceName>
+      <md:ServiceName xml:lang="sv">Högskolan i Gävle SP</md:ServiceName>
+      <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+    </md:AttributeConsumingService>
+  </md:SPSSODescriptor>
   <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
     <md:Extensions>
       <shibmd:Scope regexp="false">hig.se</shibmd:Scope>
author	Björn Mattsson <bjorn@sunet.se>	2023-05-23 16:56:43 +0200
committer	Björn Mattsson <bjorn@sunet.se>	2023-05-23 16:56:43 +0200
commit	ba7260728b5b9c88ad1e05790cb27c5c681d6171 (patch)
tree	6ec139e3d3f1cb720efcccfbcfedf4b673866ca0 /metadata/swamid-edugain
parent	3cf98cb88db6faab5a21a3e0119ea25a876e66a5 (diff)