Resolves SWAMIDOPS-706

author: Paul Scott <paul.scott@kau.se> 2018-05-23 08:36:06 +0200
committer: Paul Scott <paul.scott@kau.se> 2018-05-23 08:36:06 +0200
commit: 0be92adb8322ebe1e50ed29e63d1a7ba3e6dce70 (patch)
tree: 7c3937813d0dc99b88fcc917baa02751bb29b788 /swamid-2.0/shibboleth.turnitin.com-shibboleth.xml
parent: 6752c1406e3a48bbad9592b03c723a55b4623b4b (diff)
1 files changed, 96 insertions, 8 deletions
diff --git a/swamid-2.0/shibboleth.turnitin.com-shibboleth.xml b/swamid-2.0/shibboleth.turnitin.com-shibboleth.xml
index 38ae9b4f..d0736b02 100644
--- a/swamid-2.0/shibboleth.turnitin.com-shibboleth.xml
+++ b/swamid-2.0/shibboleth.turnitin.com-shibboleth.xml
@@ -1,6 +1,22 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://shibboleth.turnitin.com/shibboleth">
-  <md:Extensions>
+  <md:Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport">
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
+    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
     <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
       <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
         <samla:AttributeValue>http://www.swamid.se/category/eu-adequate-protection</samla:AttributeValue>
@@ -22,6 +38,16 @@
       <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/DFNAAITEST" index="5"/>
       <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/SWAMID"/>
       <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/SWAMID" index="6"/>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/SWITCH"/>
+      <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/SWITCH" index="7"/>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/PORTO"/>
+      <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/PORTO" index="8"/>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/IDEM"/>
+      <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/IDEM" index="9"/>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://shibboleth.turnitin.com/Shibboleth.sso/duke"/>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://shibboleth.turnitin.com/Shibboleth.sso/cityuhk"/>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://shibboleth.turnitin.com/Shibboleth.sso/uq"/>
+      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://shibboleth.turnitin.com/Shibboleth.sso/WAYF/SURFconext"/>
       <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
         <mdui:DisplayName xml:lang="sv">Turnitin</mdui:DisplayName>
         <mdui:DisplayName xml:lang="en">Turnitin</mdui:DisplayName>
@@ -58,17 +84,79 @@ FfnY7V5wsSpLdk49lCnffBRVtwzF0tzt
 </ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
     </md:KeyDescriptor>
-    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibboleth.turnitin.com/Shibboleth.sso/Artifact/SOAP" index="0"/>
+    <md:KeyDescriptor>
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:KeyName>https://shibboleth.turnitin.com/shibboleth</ds:KeyName>
+        <ds:KeyName>shibboleth.turnitin.com</ds:KeyName>
+        <ds:X509Data>
+          <ds:X509SubjectName>OU=Engineering,O=Turnitin,L=Oakland,ST=California,C=US,CN=shibboleth.turnitin.com,emailAddress=shibadmin@turnitin.com</ds:X509SubjectName>
+          <ds:X509Certificate>MIIFQjCCA6qgAwIBAgIJAKgRQzNllFSbMA0GCSqGSIb3DQEBCwUAMIGmMSUwIwYJ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+</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
+      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
+    </md:KeyDescriptor>
+    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibboleth.turnitin.com/Shibboleth.sso/Artifact/SOAP" index="1"/>
     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SLO/SOAP"/>
     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SLO/Redirect"/>
     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SLO/POST"/>
     <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SLO/Artifact"/>
-    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML2/POST" index="0"/>
-    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML2/POST-SimpleSign" index="1"/>
-    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML2/Artifact" index="2"/>
-    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML2/ECP" index="3"/>
-    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML/POST" index="4"/>
-    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML/Artifact" index="5"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML2/POST" index="1"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML2/Artifact" index="3"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML2/ECP" index="4"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML/POST" index="5"/>
+    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://shibboleth.turnitin.com/Shibboleth.sso/SAML/Artifact" index="6"/>
   </md:SPSSODescriptor>
+  <md:ContactPerson contactType="technical">
+    <md:GivenName>River</md:GivenName>
+    <md:SurName>Lune</md:SurName>
+    <md:EmailAddress>mailto:rlune@turnitin.com</md:EmailAddress>
+  </md:ContactPerson>
 </md:EntityDescriptor>
author	Paul Scott <paul.scott@kau.se>	2018-05-23 08:36:06 +0200
committer	Paul Scott <paul.scott@kau.se>	2018-05-23 08:36:06 +0200
commit	0be92adb8322ebe1e50ed29e63d1a7ba3e6dce70 (patch)
tree	7c3937813d0dc99b88fcc917baa02751bb29b788 /swamid-2.0/shibboleth.turnitin.com-shibboleth.xml
parent	6752c1406e3a48bbad9592b03c723a55b4623b4b (diff)