SWAMID-525, Keyrollover part 1 for 4 SP:s at math.su.se

1 files changed, 65 insertions, 0 deletions

diff --git a/swamid-2.0/prep.math.su.se-shibboleth.xml b/swamid-2.0/prep.math.su.se-shibboleth.xml
index 1e94369d..7d61927c 100644
--- a/swamid-2.0/prep.math.su.se-shibboleth.xml
+++ b/swamid-2.0/prep.math.su.se-shibboleth.xml
@@ -12,6 +12,22 @@
         <samla:AttributeValue>http://www.swamid.se/category/sfs-1993-1153</samla:AttributeValue>
       </samla:Attribute>
     </mdattr:EntityAttributes>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
   </md:Extensions>
   <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
     <md:Extensions>
@@ -53,6 +69,55 @@ pGb7MIeSW79eyk7seLTBvfcHQ/dHPtCq2wY20g==
 </ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
+    </md:KeyDescriptor>
+    <md:KeyDescriptor use="encryption">
+      <ds:KeyInfo>
+        <ds:KeyName>prep.math.su.se</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>CN=prep.math.su.se</ds:X509SubjectName>
+          <ds:X509Certificate>MIID/zCCAmegAwIBAgIUI3u1acH7jlxaPc0ivRWEkoz5xO0wDQYJKoZIhvcNAQEL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+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
     </md:KeyDescriptor>
     <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://prep.math.su.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://prep.math.su.se/Shibboleth.sso/SLO/SOAP"/>