diff options
-rw-r--r-- | swamid-1.0/selfservice.test.hb.se-shibboleth.xml | 80 | ||||
-rw-r--r-- | swamid-2.0/box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml | 51 | ||||
-rw-r--r-- | swamid-2.0/uninett-box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml | 41 | ||||
-rw-r--r-- | swamid-2.0/uninett-box-idp.nordu.net-simplesaml-saml2-idp-metadata.php.xml | 27 | ||||
-rw-r--r-- | swamid-edugain-1.0.mxml | 1 | ||||
-rw-r--r-- | swamid-kalmar-1.0.mxml | 2 | ||||
-rw-r--r-- | swamid-sp-2.0.mxml | 2 | ||||
-rw-r--r-- | swamid-testing-idp-1.0.mxml | 2 |
8 files changed, 135 insertions, 71 deletions
diff --git a/swamid-1.0/selfservice.test.hb.se-shibboleth.xml b/swamid-1.0/selfservice.test.hb.se-shibboleth.xml new file mode 100644 index 00000000..13ef1885 --- /dev/null +++ b/swamid-1.0/selfservice.test.hb.se-shibboleth.xml @@ -0,0 +1,80 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!-- +This is example metadata only. Do *NOT* supply it as is without review, +and do *NOT* provide it in real time to your partners. + --> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://selfservice.test.hb.se/Shibboleth"> + <md:Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://selfservice.test.hb.se/Shibboleth.sso/WAYF/shibboleth.antagning.se"/> + <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://selfservice.test.hb.se/Shibboleth.sso/DS/ds.swamid.se"/> + <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://selfservice.test.hb.se/Shibboleth.sso/DS/ds.swamid.se" index="1"/> + <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://selfservice.test.hb.se/Shibboleth.sso/Login"/> + <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://selfservice.test.hb.se/Shibboleth.sso/Login" index="2"/> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> + <ds:KeyName>shibboleth-test.ad.hb.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=shibboleth-test.ad.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIIDDzCCAfegAwIBAgIJAJsFipYuzSCNMA0GCSqGSIb3DQEBBQUAMCMxITAfBgNV +BAMTGHNoaWJib2xldGgtdGVzdC5hZC5oYi5zZTAeFw0xMzA2MDMwNzU0NDdaFw0y +MzA2MDEwNzU0NDdaMCMxITAfBgNVBAMTGHNoaWJib2xldGgtdGVzdC5hZC5oYi5z +ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL8EiMp3pwFgE3OjON1n +d4YyLxJG4HXccfwR5Zxjt/lC5VUz8LvYN2oKEd6G7l+RXn/YXBjXK6zhQZGT8NdI +3ZTOtf5p1A95sv3pCCC9n+iFeA86fIPOZ/8jVXSHJAFxRo+jJRf970Ne2tQDGKjZ +DcwrKWYq9GR17It4kV/fjsxkKaH3pL2paAo+Y78AKMvCIiPxQcLa2iw8e8/wiFjd +gPjycctbT2WFLQyP7yO1AbkqwvsuIrfKZAA9VJtiQrLDw440OJ1WlzYAedC1x4OW +tCpu9c0hxh0uGm7tSXftoNU+QRTfZ3f0hO5V/YiO75q7bUDXT6QEqbJZDhIgV7P1 +UxMCAwEAAaNGMEQwIwYDVR0RBBwwGoIYc2hpYmJvbGV0aC10ZXN0LmFkLmhiLnNl +MB0GA1UdDgQWBBTuOO4N35U2OBnQEjWPROX5X1XxgzANBgkqhkiG9w0BAQUFAAOC +AQEARK9X6PdglOtfmUcotGdEslFhm/7D2TN1hBuD3POq/sjOB3d32VL02YdAV0+p +xPGw/DKZmZSA7ZeNDftcdM3bA8k6Z9Xl2xOz/tK+kPerfrtjWfB+0d831QS8GMAd +cuzO1ViobjYwkzn4yIp3WigqseknDlLcj0zpoEsZOxPYCL8XR7eUI5HJGH458cJP +2Iz51/iZwf/Z6CII4T/oIasdlwn/l75HxGwE76n5DWkWBTtb65HFMuNS2GuW9FUa +o5eqVFxjd539yJoW3vwK9in6Dk02GWyaA7lB5ll0GdIdNVesmr1SdnbIOpAfmzwO +pLVg8TuW0OoYhGHJ29qk8kbAiQ== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://selfservice.test.hb.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://selfservice.test.hb.se/Shibboleth.sso/SLO/Artifact"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://selfservice.test.hb.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://selfservice.test.hb.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://selfservice.test.hb.se/Shibboleth.sso/SLO/SOAP"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://selfservice.test.hb.se/Shibboleth.sso/SAML/Artifact" index="6"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://selfservice.test.hb.se/Shibboleth.sso/SAML/POST" index="7"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://selfservice.test.hb.se/Shibboleth.sso/SAML2/Artifact" index="8"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://selfservice.test.hb.se/Shibboleth.sso/SAML2/ECP" index="9"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://selfservice.test.hb.se/Shibboleth.sso/SAML2/POST" index="10"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://selfservice.test.hb.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="11"/> + </md:SPSSODescriptor> +</md:EntityDescriptor> diff --git a/swamid-2.0/box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml b/swamid-2.0/box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml new file mode 100644 index 00000000..39fd5e42 --- /dev/null +++ b/swamid-2.0/box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml @@ -0,0 +1,51 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://box-idp.nordu.net/simplesaml/module.php/saml/sp/metadata.php/default-sp"> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <DiscoveryResponse xmlns="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://box-idp.nordu.net/simplesaml/module.php/saml/sp/discoresp.php" index="1"/> + <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"> + <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname -format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.swamid.se/category/eu-adequate-protection</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/nren-service</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> + <ds:X509Data> + <ds:X509Certificate>MIIDODCCAiCgAwIBAgIJAIAVEWBFxna/MA0GCSqGSIb3DQEBBQUAMBwxGjAYBgNVBAMTEWJveC1pZHAubm9yZHUubmV0MB4XDTEzMDYxOTA4MTYxMFoXDTIzMDQyODA4MTYxMFowHDEaMBgGA1UEAxMRYm94LWlkcC5ub3JkdS5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5gi5hp6Uh1EAckiVKNUWqUqSPVuKmCEzE6iM85a+y3KZE+GUiaeaykltH0m83B3UsSxPeyZdP/mJTmCRFG/2F05uY1S6kcmK+X1Q+Trfswybt5xOdjlEq17GZD5qBzWMBdcQc60Ai9R2a7OvsRP05jljcv8x2njHbbmP/yqcUbKDL0niSm0bF06Rx5KVw+uWpDM3A34eWyf4aGulfnjy8xWq9plsiqzw2kfrfsmM+4S8oYRP9QqV3RVMlIYuPwyEzO7ko/lRp/moBFkOzbGU2ynuhpn51r9WSX4kK+1gyyi8l/QCZ9jfM+QLY7uB/mm/xUXBfH82K6tvJZLR64OL/AgMBAAGjfTB7MB0GA1UdDgQWBBSeFLZkxHZxW0JeFidp1pR3hhVMmzBMBgNVHSMERTBDgBSeFLZkxHZxW0JeFidp1pR3hhVMm6EgpB4wHDEaMBgGA1UEAxMRYm94LWlkcC5ub3JkdS5uZXSCCQCAFRFgRcZ2vzAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBBQUAA4IBAQAQZ0ZVUQvEOucts7DYA885XEbKJZ50tkNHgbna/ZQCdrSMXb4J2l3B706T7yATXBSaH5KgFIgrCVnoCa3CAPlxZf5IUsvU/en+OBFYYlJB6D/ndfvlwYS6uYOBeY3pY/Ct1Epu3AG2qNkZ+LgRNDxMvYLms76BOc4L5YuPOk76tZtbpqw9ChtwcJh3JXvICwZ75I3SyZ1PFOlVsusjq+pZ8Iqk1fGECEJs34szes0j11E46YSMmwLSH1uxyb4LAQQ2K+Ird2Jl9+yPhovsJ/DMxdtg6mA2TeybOSN46hTdPZ44iOuPKrfSrgBMtulYaUN7MG3Rx4b/SffCdTLgBKg2</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://box-idp.nordu.net/simplesaml/module.php/saml/sp/saml2-logout.php/default-sp"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://box-idp.nordu.net/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://box-idp.nordu.net/simplesaml/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://box-idp.nordu.net/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://box-idp.nordu.net/simplesaml/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:profiles:holder-of-key:SSO:browser" Location="https://box-idp.nordu.net/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="4"/> + <md:AttributeConsumingService index="0"> + <md:ServiceName xml:lang="en">NORDUnet Box</md:ServiceName> + <md:ServiceDescription xml:lang="en">NORDUnet Box</md:ServiceDescription> + <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"/> + <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3"/> + <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName" Name="urn:oid:2.5.4.42"/> + <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241"/> + <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn" Name="urn:oid:2.5.4.4"/> + <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9"/> + <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:ContactPerson contactType="technical"> + <md:GivenName>NORDUNet</md:GivenName> + <md:SurName>NOC</md:SurName> + <md:EmailAddress>noc@nordu.net</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-2.0/uninett-box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml b/swamid-2.0/uninett-box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml deleted file mode 100644 index 060317fc..00000000 --- a/swamid-2.0/uninett-box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml +++ /dev/null @@ -1,41 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://uninett-box-idp.nordu.net/simplesaml/module.php/saml/sp/metadata.php/default-sp"> - <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> - <md:KeyDescriptor use="signing"> - <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> - <ds:X509Data> - <ds:X509Certificate>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</ds:X509Certificate> - </ds:X509Data> - </ds:KeyInfo> - </md:KeyDescriptor> - <md:KeyDescriptor use="encryption"> - <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> - <ds:X509Data> - <ds:X509Certificate>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</ds:X509Certificate> - </ds:X509Data> - </ds:KeyInfo> - </md:KeyDescriptor> - <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://uninett-box-idp.nordu.net/simplesaml/module.php/saml/sp/saml2-logout.php/default-sp"/> - <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://uninett-box-idp.nordu.net/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/> - <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://uninett-box-idp.nordu.net/simplesaml/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/> - <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://uninett-box-idp.nordu.net/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/> - <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://uninett-box-idp.nordu.net/simplesaml/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/> - <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:profiles:holder-of-key:SSO:browser" Location="https://uninett-box-idp.nordu.net/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="4"/> - <md:AttributeConsumingService index="0"> - <md:ServiceName xml:lang="en">UNINETT Box</md:ServiceName> - <md:ServiceDescription xml:lang="en">UNINETT Box</md:ServiceDescription> - <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"/> - <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3"/> - <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName" Name="urn:oid:2.5.4.42"/> - <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241"/> - <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn" Name="urn:oid:2.5.4.4"/> - <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9"/> - <md:RequestedAttribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1"/> - </md:AttributeConsumingService> - </md:SPSSODescriptor> - <md:ContactPerson contactType="technical"> - <md:GivenName>NORDUNet</md:GivenName> - <md:SurName>NOC</md:SurName> - <md:EmailAddress>noc@nordu.net</md:EmailAddress> - </md:ContactPerson> -</md:EntityDescriptor> diff --git a/swamid-2.0/uninett-box-idp.nordu.net-simplesaml-saml2-idp-metadata.php.xml b/swamid-2.0/uninett-box-idp.nordu.net-simplesaml-saml2-idp-metadata.php.xml deleted file mode 100644 index 59dea35c..00000000 --- a/swamid-2.0/uninett-box-idp.nordu.net-simplesaml-saml2-idp-metadata.php.xml +++ /dev/null @@ -1,27 +0,0 @@ -<?xml version="1.0" encoding="UTF-8"?> -<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" entityID="https://uninett-box-idp.nordu.net/simplesaml/saml2/idp/metadata.php"> - <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> - <md:KeyDescriptor use="signing"> - <ds:KeyInfo> - <ds:X509Data> - <ds:X509Certificate>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</ds:X509Certificate> - </ds:X509Data> - </ds:KeyInfo> - </md:KeyDescriptor> - <md:KeyDescriptor use="encryption"> - <ds:KeyInfo> - <ds:X509Data> - <ds:X509Certificate>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</ds:X509Certificate> - </ds:X509Data> - </ds:KeyInfo> - </md:KeyDescriptor> - <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://uninett-box-idp.nordu.net/simplesaml/saml2/idp/SingleLogoutService.php"/> - <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> - <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://uninett-box-idp.nordu.net/simplesaml/saml2/idp/SSOService.php"/> - </md:IDPSSODescriptor> - <md:ContactPerson contactType="technical"> - <md:GivenName>NORDUNet</md:GivenName> - <md:SurName>NOC</md:SurName> - <md:EmailAddress>noc@nordu.net</md:EmailAddress> - </md:ContactPerson> -</md:EntityDescriptor> diff --git a/swamid-edugain-1.0.mxml b/swamid-edugain-1.0.mxml index ff4cb3f1..8758486c 100644 --- a/swamid-edugain-1.0.mxml +++ b/swamid-edugain-1.0.mxml @@ -23,4 +23,5 @@ <xi:include href="swamid-1.0/idp.bth.se-idp-shibboleth.xml"/> <xi:include href="swamid-1.0/login.du.se-idp-shibboleth.xml"/> <xi:include href="swamid-2.0/idp.kb.se-idp-shibboleth.xml"/> + <xi:include href="swamid-2.0/box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml"/> </md:EntitiesDescriptor> diff --git a/swamid-kalmar-1.0.mxml b/swamid-kalmar-1.0.mxml index d3e3cfb9..112139d7 100644 --- a/swamid-kalmar-1.0.mxml +++ b/swamid-kalmar-1.0.mxml @@ -15,5 +15,5 @@ <xi:include href="swamid-1.0/connect-beta.sunet.se-shibboleth.xml"/> <xi:include href="swamid-1.0/connect-stable.sunet.se-shibboleth.xml"/> <xi:include href="swamid-2.0/webinar.nordu.net-shibboleth.xml"/> - <xi:include href="swamid-2.0/uninett-box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml"/> + <xi:include href="swamid-2.0/box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml"/> </md:EntitiesDescriptor> diff --git a/swamid-sp-2.0.mxml b/swamid-sp-2.0.mxml index 2c06952c..978d07d5 100644 --- a/swamid-sp-2.0.mxml +++ b/swamid-sp-2.0.mxml @@ -59,7 +59,6 @@ <xi:include href="swamid-2.0/xenosmilus2.umdc.umu.se-8086-re_sfs_hei-sp.xml"/> <xi:include href="swamid-2.0/xenosmilus2.umdc.umu.se-8086-sfs-sp.xml"/> <xi:include href="swamid-2.0/xenosmilus2.umdc.umu.se-8086-sp.xml"/> - <xi:include href="swamid-2.0/uninett-box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml"/> <xi:include href="swamid-2.0/aktivera.ki.se-shibboleth.xml"/> <xi:include href="swamid-2.0/portalservices.miun.se-shibboleth.xml"/> <xi:include href="swamid-2.0/hashog.umdc.umu.se-8087-hth.xml"/> @@ -77,4 +76,5 @@ <xi:include href="swamid-2.0/kilwtest.it.ki.se-shibboleth.xml"/> <xi:include href="swamid-2.0/lpwtest.it.ki.se-shibboleth.xml"/> <xi:include href="swamid-2.0/medlem.chs.chalmers.se-saml-simplesamlphp-www-module.php-saml-sp-metadata.php-ageramedlem.xml"/> + <xi:include href="swamid-2.0/box-idp.nordu.net-simplesaml-module.php-saml-sp-metadata.php-default-sp.xml"/> </md:EntitiesDescriptor> diff --git a/swamid-testing-idp-1.0.mxml b/swamid-testing-idp-1.0.mxml index ff4ca9a8..f841f962 100644 --- a/swamid-testing-idp-1.0.mxml +++ b/swamid-testing-idp-1.0.mxml @@ -141,5 +141,5 @@ <xi:include href="swamid-1.0/ecsidp.testb.antagning.se-ecs-idp.xml"/> <xi:include href="swamid-2.0/idp2.test.umu.se-saml2-idp-metadata.php.xml"/> <xi:include href="swamid-1.0/idp-fre-1.eduid.se-idp.xml"/> - <xi:include href="swamid-2.0/uninett-box-idp.nordu.net-simplesaml-saml2-idp-metadata.php.xml"/> + <xi:include href="swamid-1.0/selfservice.test.hb.se-shibboleth.xml"/> </EntitiesDescriptor> |