diff options
author | Björn Mattsson <Bjorn.Mattsson@bth.se> | 2017-12-15 10:50:02 +0100 |
---|---|---|
committer | Björn Mattsson <Bjorn.Mattsson@bth.se> | 2017-12-15 10:50:02 +0100 |
commit | 1de751a1aeab00171a6b2fc5294666bf0e53bb08 (patch) | |
tree | d6a665719108c5418666f6444180501e1a022b56 /swamid-2.0/nfg.su.se-shibboleth.sso.xml | |
parent | c2a9753444f1eb7e6107cd3a4c82b72e68696ced (diff) |
Resolved SWAMID-357
Diffstat (limited to 'swamid-2.0/nfg.su.se-shibboleth.sso.xml')
-rw-r--r-- | swamid-2.0/nfg.su.se-shibboleth.sso.xml | 83 |
1 files changed, 83 insertions, 0 deletions
diff --git a/swamid-2.0/nfg.su.se-shibboleth.sso.xml b/swamid-2.0/nfg.su.se-shibboleth.sso.xml new file mode 100644 index 00000000..243f3ca0 --- /dev/null +++ b/swamid-2.0/nfg.su.se-shibboleth.sso.xml @@ -0,0 +1,83 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://nfg.su.se/Shibboleth.sso"> + <md:Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"> + <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"> + <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.swamid.se/category/hei-service</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:Extensions> + <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://nfg.su.se/Shibboleth.sso/SWAMID"/> + <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://nfg.su.se/Shibboleth.sso/SWAMID" index="1"/> + <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://nfg.su.se/Shibboleth.sso/WAYF/idp.it.su.se"/> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> + <ds:KeyName>nfg-prod-web01.it.su.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=nfg-prod-web01.it.su.se</ds:X509SubjectName> + <ds:X509Certificate>MIIEDDCCAnSgAwIBAgIJAPUHrO6pRkZ8MA0GCSqGSIb3DQEBCwUAMCIxIDAeBgNV +BAMTF25mZy1wcm9kLXdlYjAxLml0LnN1LnNlMB4XDTE3MTIwNTEyNDUwOVoXDTI3 +MTIwMzEyNDUwOVowIjEgMB4GA1UEAxMXbmZnLXByb2Qtd2ViMDEuaXQuc3Uuc2Uw +ggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDfveVBnVnl+nnQHkmIj3V3 +1bKiL3BJd1qNfg/exip88ljApMx9cHE47wHmvFTNIF1yfkcvD2MRVR1yZEEr3yt6 +wcMCLSVBP8W3MJkiV5jPJBn+ADoztzWZhk2kzm4hwNh2hNwsUs8Z/dCZZtNVlC4M +1hvXuSCpw5Sxa/oRMgTXBLjRPXBFzSaY80EWv1RR9n0joK7Cpt1B1KLAXbLLY/YJ +za2pL+iiDsZKHCrz0adb152zZLZeeOsoBs9zP08qdldJuimeeF/CGvxONoLFa2h9 +7TpAsrO0BDeTKwrrUJcEL6nFy3suG6yGvnZEUutDXNpCl4IAiq26RSFa/ajOU+EQ +akst2J2Upztx8aWVrYkA5+EwAhHhX86URCfxQuTdmTf1f3hChBx83y/Z9el1TRBb +rQrxZ0ccT+uihTyyfGQHKUC9uEQw0YDbuhdNq0YAn872FZguT0XUu9zKG4uesCzQ +tkbVKPNVukAo24O1CzjxgtCewkD+E4tiEzIXQOoHek0CAwEAAaNFMEMwIgYDVR0R +BBswGYIXbmZnLXByb2Qtd2ViMDEuaXQuc3Uuc2UwHQYDVR0OBBYEFFgJBX23wN8D +k6T5IKv+fQZ5RlMkMA0GCSqGSIb3DQEBCwUAA4IBgQCvpmIt/eKeZvqF+twsiq3o +fLjuSU0HFSYsbqgR68BpPgo7YYr85Qg3xlnqeJJd+lPJb4hEH4y7IVU1w7uiJpI3 +ZkIbvAdZPiqH3ASSNmTGtj9x3AWqmXSzqECQXFvMg672Y3Xla8bqP+mtEcDMCYdY +iyvSZzpd/ZZMUqlcARKUFXGKClefta1t5GfTyE9dKNiNZ6TASQaLlW3w0JoZrzGb +l+DEKm1ti+lsnFZguyibMAd0XUVilZNmz1D2e0O971u2qtSNCQn0JMvuCdVqhHT+ +dIbpO4FbtQBtT80+vTdvFVFcHvX9WJ7O2nE4xM9uXaJ3g0xHeoUXSJjAW7is+9qi +j/RQjxKgTbSzPK3cbz1IbHQqzOngCu7RtpCV9ppm1zBcaknSRXyHiUONF8YUNEQ0 +mc35zerkqdVzCTDZQFnxunH9rrAC0cCrgoO4wUDLCp+KrtFl68dc70viSp/bEhDp +iEBP9GjIK/5IW3dJF+RPAqpatMcUUNM+lqcpMabxM5o= +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://nfg.su.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://nfg.su.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://nfg.su.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://nfg.su.se/Shibboleth.sso/SLO/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://nfg.su.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://nfg.su.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://nfg.su.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://nfg.su.se/Shibboleth.sso/SAML/POST" index="5"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://nfg.su.se/Shibboleth.sso/SAML/Artifact" index="6"/> + </md:SPSSODescriptor> +</md:EntityDescriptor> |