diff options
| -rw-r--r-- | metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml | 45 |
1 files changed, 39 insertions, 6 deletions
diff --git a/metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml b/metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml index 76352811..6ea48743 100644 --- a/metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml +++ b/metadata/swamid-edugain/idp.kmh.se-idp-shibboleth.xml @@ -13,10 +13,14 @@ <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue> </samla:Attribute> </mdattr:EntityAttributes> </md:Extensions> - <md:IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp.kmh.se/idp/shibboleth"> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp.kmh.se/idp/shibboleth"> <md:Extensions> <shibmd:Scope regexp="false">kmh.se</shibmd:Scope> <mdui:UIInfo> @@ -62,20 +66,50 @@ SqYks9bV+ae2Fl2AyXQXVv2GR6FNF8Y=</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> - <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.kmh.se/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> - <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.kmh.se/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIEsTCCApkCFDc+d16n6M5nXzzPo2qdVaJAaooeMA0GCSqGSIb3DQEBCwUAMBUx +EzARBgNVBAMMCmlkcC5rbWguc2UwHhcNMjQxMDI0MDgwNDIxWhcNMzQxMDIyMDgw +NDIxWjAVMRMwEQYDVQQDDAppZHAua21oLnNlMIICIjANBgkqhkiG9w0BAQEFAAOC +Ag8AMIICCgKCAgEAqHC4icLDKQo0/QSgs6l+A6DUlgN8qNe5VaQ9osi2YPJldvNM +YExpHSBBS1m0iURNNdjAI3EbkDwhH+zdn188Z+KRCnJ/bOXKfn6t7in22Txckw1h +DwtVRsLxGILVuxrAkTf/E3bcPfPQai8pLyeKzBykV6oX/Ghy4utMCd9EiY2E1gWj +EbPMftrIeDFBHZtzXBS0ldmQHQzHPNcYoATAWH/Fjn3qqzzwPfc5/i7qwGYdV3Tn +/D5X7dXSlQyLOXfZa3JT/Ch6rsY1myuwbXZ8CuWhaI7+trNOLJnekuKtyJxAn5i7 +AXdV1ReV7EOpLdSAN3pKDAc9GPWklSuicdAdkqfY/mMtE6875CcCdXZx7kMDlIhj +8PGp71wgLzITitkfsBGvHuP4yRRnIIctTNH081aiiiVdWWe12Lo3ano9f/yrYudU +YKqKQxjBQwk2AyAxsFacVkXm7f5Tk/aoaQRvyV46CwFDb6dbU/nQeGq5jnfoQS8f +rvLs5F6gJpKsSDWg1Z/nVAAWdEk8GgfEAYXxr0mWJuhPddHBOZixbgHyaZnbNKZe +cwZKv7SHt+tjnzTgvAJW6QH5hw1K61OyNYdekAKlkFhrxlB4I3dVyD4ZdF2pw9pb +hkpBLSzDJXvTBmRo03vtNVg7kf7ldeIDi8iniJsj47X12lDPLKEHSStFMDsCAwEA +ATANBgkqhkiG9w0BAQsFAAOCAgEAFoBPmoDn/zqbNV6PI9S1lEetWL9kUc2/ZrlS +Miw0VSI9GvbGlsK/UutdlfqAtD0Mk2TH2I7o5dWwzzVbvc8QJ6Asurz2LGHh5U3l +AJlm8g74svqQtGl8gJ9C5GERruUBBZZnroZLtt12vLfsGYVLxKvgbo5dXRkY55bu +Rl60N13G4qy34frZHjfAHEcPe1vql07X5THgKPZ8CwXDRMB0utdueMlFI+jkA4in +0jNi0lIDOvCxZaTIVg4eVrtANPZKpLTT0M/s7iDZ5fNP+kv8NU1Gfw9Ye8RrWuBD +ixl8SHDihfiyU6Uw0If1jsqF2uaUK0BlmWu2T87b0KNaJK3kbh14+L1JwaZ+FhAR ++q5pDBUlq3KbhnRKQP9806aYq/JFXWS4R6LoXsVf9ddsqxzfVYYvEjzB6FRssLRa +8mJZO8+gKQ/lGMV4JZwctnSgU/6iLIeKp2kZy8HErHdAFY3hoc6zuSQno4okt15h +M/JlIA/HRhwr4xbgnQfr8IFRcKYGVb1hhpZUxKHDDlRp9tnT/8aYi6JTninKDfh6 +XcCvD2H3ppIG9dELSp3rBk0VbJQLLgGwAWybNXBf71Cv++bfAVv6XXoK4oPzeUS3 +SklHlpVWkU4PrLk6k1wNaLlRua5p4DQDDzz4pmJ2BagX+3DdJ6H4ZvUySV+EyRhn +JKjbV/M=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.kmh.se/idp/profile/SAML2/SOAP/ArtifactResolution" index="1"/> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.kmh.se/idp/profile/SAML2/Redirect/SLO"/> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.kmh.se/idp/profile/SAML2/POST/SLO"/> <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.kmh.se/idp/profile/SAML2/SOAP/SLO"/> <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> - <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.kmh.se/idp/profile/Shibboleth/SSO"/> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.kmh.se/idp/profile/SAML2/POST/SSO"/> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.kmh.se/idp/profile/SAML2/POST-SimpleSign/SSO"/> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.kmh.se/idp/profile/SAML2/Redirect/SSO"/> </md:IDPSSODescriptor> - <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> <md:Extensions> <shibmd:Scope regexp="false">kmh.se</shibmd:Scope> </md:Extensions> @@ -102,7 +136,6 @@ SqYks9bV+ae2Fl2AyXQXVv2GR6FNF8Y=</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> - <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.kmh.se/idp/profile/SAML1/SOAP/AttributeQuery"/> <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.kmh.se/idp/profile/SAML2/SOAP/AttributeQuery"/> <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> |