diff options
author | Einar Lönn <el@sunet.se> | 2017-12-01 16:03:09 +0100 |
---|---|---|
committer | Einar Lönn <el@sunet.se> | 2017-12-01 16:03:09 +0100 |
commit | ea09c47551964741d7e300af20116a1f465d9300 (patch) | |
tree | b93cdfea38b4ea042690374e30b62e08ac77c0c8 /swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml | |
parent | c10535f83dd05a79e687c1759a5a563ce5e2dec1 (diff) |
Add ze GRR per ticket 348
Diffstat (limited to 'swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml')
-rw-r--r-- | swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml | 90 |
1 files changed, 90 insertions, 0 deletions
diff --git a/swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml b/swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml new file mode 100644 index 00000000..dd4bd32e --- /dev/null +++ b/swamid-2.0/grr.cert.sunet.se-8443-shibboleth.xml @@ -0,0 +1,90 @@ +<!-- +This is example metadata only. Do *NOT* supply it as is without review, +and do *NOT* provide it in real time to your partners. + --> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_3c5a8ac47c9940dd6c0e247d1f6e72fcae406495" entityID="https://grr.cert.sunet.se:8443/shibboleth"> + + <md:Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"> + <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.swamid.se/category/nren-service</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:Extensions> + <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/Login"/> + <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/Login" index="1"/> + <mdui:UIInfo xmlns:mdui=“urn:oasis:names:tc:SAML:metadata:ui”> + <mdui:DisplayName xml:lang=“sv”>SUNET GRR</mdui:DisplayName> + <mdui:DisplayName xml:lang=“en”>SUNET GRR</mdui:DisplayName> + <mdui:Description xml:lang=“sv”>GRR tjänst hos SUNET</mdui:Description> + <mdui:Description xml:lang=“en”>GRR service run by SUNET</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> + <ds:KeyName>grr.cert.sunet.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=grr.cert.sunet.se</ds:X509SubjectName> + <ds:X509Certificate>MIIC+jCCAeKgAwIBAgIJAL/AhZwDvMkMMA0GCSqGSIb3DQEBBQUAMBwxGjAYBgNV +BAMTEWdyci5jZXJ0LnN1bmV0LnNlMB4XDTE3MTIwMTEzNDQwMloXDTI3MTEyOTEz +NDQwMlowHDEaMBgGA1UEAxMRZ3JyLmNlcnQuc3VuZXQuc2UwggEiMA0GCSqGSIb3 +DQEBAQUAA4IBDwAwggEKAoIBAQDGPDNAwMfhpYhpCiUJjaD8rCUZkO/2kYcxP3m1 +GhS4gorDnaciWmiXmL1tXI/vCPgwbnnwuLr2fiBJBAcZCzKtQYgQAx1pD/cfhysf +KbyWbH8kFZVRAf6r6CmaT1HdyszX10VoXZFqSED/LkvUbQFzkbEIrTjh0v2wN0Za +qWpbQzBIPrEx3Pj2tpkZ37cezVAjkSCWcSZpBtvae2x5Rr6UVAhj2gIBZQ+oiyE8 +n3cA1q2fvb40vDMOt3lNAUcC/FVFWpwEaZUyVnHFCcffuOQmIxUcViSOm15LJVg8 +eCtYgTLifKRrRZfJZFEMGA6w+rgAkbX8uuaGVvCQjJRPhIwFAgMBAAGjPzA9MBwG +A1UdEQQVMBOCEWdyci5jZXJ0LnN1bmV0LnNlMB0GA1UdDgQWBBRPAQWwuIPlxepF +jkRveeZps7yciTANBgkqhkiG9w0BAQUFAAOCAQEAvZZ/X3IFO/JmtAI3ZGlUTV5L +Z0U0eVXDbeTJQPM0+amTH4YQtkCYakUabDEw2bo2PHtEPkxV+VbzfPXsTCJRuuNI +5ndF9odGlqMxE722/u5nSygVRqzXSx3dNlqf2F/K7eGYucmiwyJwQ/AOmGTmEoe7 +hztMPTqLCulCJhkwz3Gkj2dM0o1fO3gEc5PYfs2t5iGni+oJQYP9tNSinzk5QVE8 +mdrZOulcm4PbeG2aIPXAsqvnL8Z7OiQugAoUA7KJzW7GC3q7dyZ+2CtTOlCZKfJc +U2CMeWihvrXOFYyKBmlMNt78NqegrleUURtdyMWCMuiU6sMdPbT0g3vrgnOV9w== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SLO/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML/POST" index="5"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://grr.cert.sunet.se:8443/Shibboleth.sso/SAML/Artifact" index="6"/> + </md:SPSSODescriptor> + +</md:EntityDescriptor> |