diff options
-rw-r--r-- | swamid-2.0/outscan-idp-proxy.sunet.se-sp.xml | 149 | ||||
-rw-r--r-- | swamid-sp-2.0.mxml | 1 |
2 files changed, 150 insertions, 0 deletions
diff --git a/swamid-2.0/outscan-idp-proxy.sunet.se-sp.xml b/swamid-2.0/outscan-idp-proxy.sunet.se-sp.xml new file mode 100644 index 00000000..3cd0a39d --- /dev/null +++ b/swamid-2.0/outscan-idp-proxy.sunet.se-sp.xml @@ -0,0 +1,149 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://outscan-idp-proxy.sunet.se/sp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2021-11-01T15:58:53Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <ns2:DigestMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#md5"/> + <ns2:DigestMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmlenc#ripemd160"/> + <ns2:DigestMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <ns2:DigestMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <ns2:DigestMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <ns2:DigestMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <ns2:DigestMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-md5"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha224"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <ns2:SigningMethod xmlns:ns2="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"> + <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <ns0:SPSSODescriptor xmlns:ns0="urn:oasis:names:tc:SAML:2.0:metadata" AuthnRequestsSigned="false" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <ns3:DiscoveryResponse xmlns:ns3="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://outscan-idp-proxy.sunet.se/Saml2SP/disco" index="1"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Sunets Outscan proxy</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Sunet Outscan proxy</mdui:DisplayName> + <mdui:Description xml:lang="sv">Sunets proxy för inloggning till Outscan</mdui:Description> + <mdui:Description xml:lang="en">Sunet's proxy for logging into Outscan</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://wiki.sunet.se/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://wiki.sunet.se/</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/info/Outscan+proxy+Privacy+Policy</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/info/Outscan+proxy+Privacy+Policy</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="en" height="128" width="128">https://wiki.sunet.se/favicon-128-128.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="128" width="128">https://wiki.sunet.se/favicon-128-128.png</mdui:Logo> + </mdui:UIInfo> + </md:Extensions> + <ns0:KeyDescriptor use="signing"> + <ns1:KeyInfo xmlns:ns1="http://www.w3.org/2000/09/xmldsig#"> + <ns1:X509Data> + <ns1:X509Certificate>MIIFEzCCAvugAwIBAgIUZ1Oow1fKz7Ch5AuZjSzGYxbzkXQwDQYJKoZIhvcNAQEL +BQAwGTEXMBUGA1UEAwwOc2F0b3NhX2JhY2tlbmQwHhcNMjExMTAxMTQ0NzM2WhcN +MzExMDMwMTQ0NzM2WjAZMRcwFQYDVQQDDA5zYXRvc2FfYmFja2VuZDCCAiIwDQYJ +KoZIhvcNAQEBBQADggIPADCCAgoCggIBAJ0vwZGstFedFgG1CbcU/wyv9i1BUeZb +xGpG8tGCusCHyq9k1k+58XECuI0ZB2wiscSqSkQ/0WYWJ2Y2cLI4OWN5DRhffxya +DYY7N+bSTnrNYRc1BLZ0zMgx4V5WX38KMU7l5Uc4Dldyd/2MUJf6HrdgyAXJfq3C +mUByEMiBnjRABWb9T7DjVPeEinrEcCsBTRCfE+R/yhDOqMWZAIh18Suw6VrajJpp +O/QxPGya0xtS35xoTIPdKRPDG+rJImU3xIUuxwyfyL/QW+Syz7DMX6T2BMsjhn95 +WkrzVSrRYLEaGT1ie8sLTZXIs43wMOF6dbuwXct5siRBrv4jeWTG1J4e7pX+fcyQ +82nUw6fVEhThR9Y8zxQpIRWkL8cdeViCUsljcPJdHdsOjOH8JLZPtD10JrPey1Mf +9y49Vp/bd1JVzoqGTtDElGpyhBf7IYXCXuKfDNl1pzyD8BJm4MdDhtbyPfwfcxFP +7uw5Q34JPnatELH75CwE+zy4eIAf9roQuhebe41yK95xFsRSsF+nJjQLLbqbNKcp +y13bcDag3Ht1HL0ZG1/X/a4igKQssKNAlXb6Lp3TCnbFtA2p4OqQLA1uKp3T8AKT +ESEcpnpYjMVLMvyI9dBZ5GJkd7uOUS/aAY6mCG0yy1Fgc4vVF1yUgrxceRVO76fU +kpA2nmqgMMQfAgMBAAGjUzBRMB0GA1UdDgQWBBRzew8/a5avJ9pAUc0WSE0MOGIS +xDAfBgNVHSMEGDAWgBRzew8/a5avJ9pAUc0WSE0MOGISxDAPBgNVHRMBAf8EBTAD +AQH/MA0GCSqGSIb3DQEBCwUAA4ICAQAcrXaSrLc8+q+ORftGkPrOZ/XFsOeE8edL +La/jxCY88zcwYe7c+tswrJ2rrlbauLYFZgER/C5EogVjANSVjXsrpdFe45hZSjcf +Q/wkkKmZDIRUnpB7xtB46gI0SKdPq5Q/s+XwAng1zQanvPOvtiUBqM/2tcJ12G/V +VeJia1HTV37D5devU7RU60m9EOqAjlOvZzUDwrgyrCGn4INwQVDsMg8c1iq79L/a +emaMAR0yBh37oh1mZtOEp1c/CBfQqwQCxk9MO+Q2yIBcDQweJtz56IjLJHAYNvYi +wMLcAYvgu1aIQE3ekfJI7uEjWu2Wnmt2SQgE+077bXByPnxqTAz2jiD0mlIQs8lx +PBrqYoOYWKMNSNZFEHZftvF7XCYc7yA0LWiCtuWzHisYxzSf/TU8apaLayfkG3Bt +wEITIOasEXHXoC4G3CON6PWeIuBCbwuLuH7Nvx4wzDTsJ18pzP0dgY0UpAGAG55i +plhjwuYy0LIBc4RBiw6xJIiuqmi5yjxiWqkQ/08imkWFcU4AinqrGu6qvNOY3SJt +wJ00lTnZAj3RWRamQK26iShY+sFVrnsHuQgs29ov+L0gkKaM3efowD/6zUwbgmZs +w5T3xuyviMVSu3BBZcA0YdGGtuvSSU+mj5UkeJO6DgBcNiOxAdxAFk5g1wjlGffp +TkzG7ocEUA== +</ns1:X509Certificate> + </ns1:X509Data> + </ns1:KeyInfo> + </ns0:KeyDescriptor> + <ns0:KeyDescriptor use="encryption"> + <ns1:KeyInfo xmlns:ns1="http://www.w3.org/2000/09/xmldsig#"> + <ns1:X509Data> + <ns1:X509Certificate>MIIFEzCCAvugAwIBAgIUZ1Oow1fKz7Ch5AuZjSzGYxbzkXQwDQYJKoZIhvcNAQEL +BQAwGTEXMBUGA1UEAwwOc2F0b3NhX2JhY2tlbmQwHhcNMjExMTAxMTQ0NzM2WhcN +MzExMDMwMTQ0NzM2WjAZMRcwFQYDVQQDDA5zYXRvc2FfYmFja2VuZDCCAiIwDQYJ +KoZIhvcNAQEBBQADggIPADCCAgoCggIBAJ0vwZGstFedFgG1CbcU/wyv9i1BUeZb +xGpG8tGCusCHyq9k1k+58XECuI0ZB2wiscSqSkQ/0WYWJ2Y2cLI4OWN5DRhffxya +DYY7N+bSTnrNYRc1BLZ0zMgx4V5WX38KMU7l5Uc4Dldyd/2MUJf6HrdgyAXJfq3C +mUByEMiBnjRABWb9T7DjVPeEinrEcCsBTRCfE+R/yhDOqMWZAIh18Suw6VrajJpp +O/QxPGya0xtS35xoTIPdKRPDG+rJImU3xIUuxwyfyL/QW+Syz7DMX6T2BMsjhn95 +WkrzVSrRYLEaGT1ie8sLTZXIs43wMOF6dbuwXct5siRBrv4jeWTG1J4e7pX+fcyQ +82nUw6fVEhThR9Y8zxQpIRWkL8cdeViCUsljcPJdHdsOjOH8JLZPtD10JrPey1Mf +9y49Vp/bd1JVzoqGTtDElGpyhBf7IYXCXuKfDNl1pzyD8BJm4MdDhtbyPfwfcxFP +7uw5Q34JPnatELH75CwE+zy4eIAf9roQuhebe41yK95xFsRSsF+nJjQLLbqbNKcp +y13bcDag3Ht1HL0ZG1/X/a4igKQssKNAlXb6Lp3TCnbFtA2p4OqQLA1uKp3T8AKT +ESEcpnpYjMVLMvyI9dBZ5GJkd7uOUS/aAY6mCG0yy1Fgc4vVF1yUgrxceRVO76fU +kpA2nmqgMMQfAgMBAAGjUzBRMB0GA1UdDgQWBBRzew8/a5avJ9pAUc0WSE0MOGIS +xDAfBgNVHSMEGDAWgBRzew8/a5avJ9pAUc0WSE0MOGISxDAPBgNVHRMBAf8EBTAD +AQH/MA0GCSqGSIb3DQEBCwUAA4ICAQAcrXaSrLc8+q+ORftGkPrOZ/XFsOeE8edL +La/jxCY88zcwYe7c+tswrJ2rrlbauLYFZgER/C5EogVjANSVjXsrpdFe45hZSjcf +Q/wkkKmZDIRUnpB7xtB46gI0SKdPq5Q/s+XwAng1zQanvPOvtiUBqM/2tcJ12G/V +VeJia1HTV37D5devU7RU60m9EOqAjlOvZzUDwrgyrCGn4INwQVDsMg8c1iq79L/a +emaMAR0yBh37oh1mZtOEp1c/CBfQqwQCxk9MO+Q2yIBcDQweJtz56IjLJHAYNvYi +wMLcAYvgu1aIQE3ekfJI7uEjWu2Wnmt2SQgE+077bXByPnxqTAz2jiD0mlIQs8lx +PBrqYoOYWKMNSNZFEHZftvF7XCYc7yA0LWiCtuWzHisYxzSf/TU8apaLayfkG3Bt +wEITIOasEXHXoC4G3CON6PWeIuBCbwuLuH7Nvx4wzDTsJ18pzP0dgY0UpAGAG55i +plhjwuYy0LIBc4RBiw6xJIiuqmi5yjxiWqkQ/08imkWFcU4AinqrGu6qvNOY3SJt +wJ00lTnZAj3RWRamQK26iShY+sFVrnsHuQgs29ov+L0gkKaM3efowD/6zUwbgmZs +w5T3xuyviMVSu3BBZcA0YdGGtuvSSU+mj5UkeJO6DgBcNiOxAdxAFk5g1wjlGffp +TkzG7ocEUA== +</ns1:X509Certificate> + </ns1:X509Data> + </ns1:KeyInfo> + </ns0:KeyDescriptor> + <ns0:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</ns0:NameIDFormat> + <ns0:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://outscan-idp-proxy.sunet.se/Saml2SP/acs/post" index="1"/> + <ns0:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://outscan-idp-proxy.sunet.se/Saml2SP/acs/redirect" index="2"/> + <ns0:AttributeConsumingService index="1"> + <ns0:ServiceName xml:lang="en">Sunet Outscan proxy</ns0:ServiceName> + <ns0:ServiceName xml:lang="sv">Sunet Outscan proxy</ns0:ServiceName> + <ns0:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </ns0:AttributeConsumingService> + </ns0:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Sunet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Sunet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Sunet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Sunet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">https://www.sunet.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">https://www.sunet.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:GivenName>Sunet NOC</md:GivenName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>Sunet NOC</md:GivenName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Sunet Security Contact</md:GivenName> + <md:EmailAddress>mailto:abuse@sunet.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-sp-2.0.mxml b/swamid-sp-2.0.mxml index 0dc78df2..e2b10696 100644 --- a/swamid-sp-2.0.mxml +++ b/swamid-sp-2.0.mxml @@ -721,4 +721,5 @@ <xi:include href="swamid-2.0/kth-nav.cnaas.sunet.se.xml"/> <xi:include href="swamid-2.0/demo.nyaanvandarstod.uhr.se-shibboleth.xml"/> <xi:include href="swamid-2.0/demo.bedomningshandboken.uhr.se-shibboleth.xml"/> + <xi:include href="swamid-2.0/outscan-idp-proxy.sunet.se-sp.xml"/> </md:EntitiesDescriptor> |