diff options
Diffstat (limited to 'metadata/swamid-testing/idp-shibtest.slu.se-idp.xml')
-rw-r--r-- | metadata/swamid-testing/idp-shibtest.slu.se-idp.xml | 124 |
1 files changed, 98 insertions, 26 deletions
diff --git a/metadata/swamid-testing/idp-shibtest.slu.se-idp.xml b/metadata/swamid-testing/idp-shibtest.slu.se-idp.xml index 125b0dd1..c1cb1683 100644 --- a/metadata/swamid-testing/idp-shibtest.slu.se-idp.xml +++ b/metadata/swamid-testing/idp-shibtest.slu.se-idp.xml @@ -17,6 +17,10 @@ <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue> + </samla:Attribute> </mdattr:EntityAttributes> </md:Extensions> <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp-shibtest.slu.se/idp"> @@ -35,12 +39,10 @@ <mdui:Logo xml:lang="en" height="102" width="102">https://idp-shibtest.slu.se/images/logo.png</mdui:Logo> </mdui:UIInfo> </md:Extensions> - <!-- First signing certificate is BackChannel, the Second is FrontChannel --> <md:KeyDescriptor use="signing"> <ds:KeyInfo> <ds:X509Data> - <ds:X509Certificate> -MIIEOzCCAqOgAwIBAgIUMhPoEf2KNEEQzETZhaUha/CQmD8wDQYJKoZIhvcNAQEL + <ds:X509Certificate>MIIEOzCCAqOgAwIBAgIUMhPoEf2KNEEQzETZhaUha/CQmD8wDQYJKoZIhvcNAQEL BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 NzU3WhcNNDAwOTA3MDg1NzU3WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALv1eV6CikXVLXZb @@ -62,16 +64,14 @@ CdYsBNVA9CGxNQmvO7sgdC+rOjj4r05as/XczXHwKAwjnuQnOgTGoimNYAqvIM5q qX2ghl3ZLngKmPK+CZSBiLRYPqmzaBglFHEP+zTDWAkauajY3YFsVBUKmRdXOuEq 6bBj5Cvi6v3GqEosbFsdoUqOZphdbyUuo78Irg+TijAXat+VM5YA/YWjoi9buexe rbmBK2bCILRtcGsMPk3uMUsq0Jn6LYrHLzCl1ZRgG6HHwGXrbBqdanHGHoJGACtC -lPXa9r98Vs7bLrP/b11343DbP3bvznNhmpqeaXtU8g== - </ds:X509Certificate> +lPXa9r98Vs7bLrP/b11343DbP3bvznNhmpqeaXtU8g==</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="signing"> <ds:KeyInfo> <ds:X509Data> - <ds:X509Certificate> -MIIEOzCCAqOgAwIBAgIUHBOJiF5eItVmpwaAbONnSJwedN0wDQYJKoZIhvcNAQEL + <ds:X509Certificate>MIIEOzCCAqOgAwIBAgIUHBOJiF5eItVmpwaAbONnSJwedN0wDQYJKoZIhvcNAQEL BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 NzU0WhcNNDAwOTA3MDg1NzU0WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALKMy258/b8UEUfM @@ -93,16 +93,14 @@ O5AvgTSPdY8UzssqmE5add93yeMlkbDbLgDuLmOf/MT0Q0DQGOpVy18Fs9nD9iwz BtgLIW+NSUEKwSIbAquFIxcNJLwDlvdLkmreRxrcr1Q3TnUsT0dqyk0Be9wMukQm zwC6BS/r7dT3EKRlywxxmVr0V6TzeXbX2Ibspjndp7zQz3hb0not/IWUEMvZojgO 50NDCxzWH5CWdUuN1hvAVcruGwJ2UKbgQMAf+3K6kgUeWwbSo+ENo52Mr4jsOdcj -fMB48s6r6Avb5RBLRXFVossgJmxgi5Kp35LVkrkFGA== - </ds:X509Certificate> +fMB48s6r6Avb5RBLRXFVossgJmxgi5Kp35LVkrkFGA==</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo> <ds:X509Data> - <ds:X509Certificate> -MIIEOzCCAqOgAwIBAgIUVCdXGKcOA0mTcBW9/9WpMX8CNWQwDQYJKoZIhvcNAQEL + <ds:X509Certificate>MIIEOzCCAqOgAwIBAgIUVCdXGKcOA0mTcBW9/9WpMX8CNWQwDQYJKoZIhvcNAQEL BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 NzU2WhcNNDAwOTA3MDg1NzU2WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAIoI0cm30Fp2N4Bv @@ -124,8 +122,7 @@ QRRt/b1drYL93EeD+pvGx3nUI/oyS4n9PLiIKtUx6Bm4hlc0ByW7y/hZp6dmPsk+ hmdVa6a6eRuKkGnzGpr3FzbH723+BPfLqEz6Wy51X8ER7ngvjIvbJykRJHWS/E1A 6ipNj79/PyC9nSwTuf49Djs1bY1Gky5Dj5n+aG/gPcPGbxmrf5CKUPxLnwTbx+tg jc1JNTh2kaMuVtUXytuU6+dTEHSi6u4BqT6Utn103E+nWQlAXsJSA6kWegWT16z8 -osqdhUK7LIXVz1hA0bgvU3Y+WlOlsIFD++67OzYPRg== - </ds:X509Certificate> +osqdhUK7LIXVz1hA0bgvU3Y+WlOlsIFD++67OzYPRg==</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> @@ -138,16 +135,96 @@ osqdhUK7LIXVz1hA0bgvU3Y+WlOlsIFD++67OzYPRg== <md:SingleSignOnService xmlns:ns1="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ns1:supportsRequestedAttributes="true" Location="https://idp-shibtest.slu.se/idp/profile/SAML2/POST/SSO"/> <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp-shibtest.slu.se/idp/profile/Shibboleth/SSO"/> </md:IDPSSODescriptor> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">SLU Shibboleth Idp Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">SLU Shibboleth Idp Test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Test Shibboleth Service Provider för SLU.</mdui:Description> + <mdui:Description xml:lang="en">Test Shibboleth Service Provider for SLU.</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://idp-shibtest.slu.se/info/om.html</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://idp-shibtest.slu.se/info/about.html</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://idp-shibtest.slu.se/info/integritet.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://idp-shibtest.slu.se/info/privacy.html</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="sv" height="102" width="102">https://idp-shibtest.slu.se/images/logo.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="102" width="102">https://idp-shibtest.slu.se/images/logo.png</mdui:Logo> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIEOzCCAqOgAwIBAgIUHBOJiF5eItVmpwaAbONnSJwedN0wDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 +NzU0WhcNNDAwOTA3MDg1NzU0WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs +dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALKMy258/b8UEUfM +HxDnWqQnH6hsnVOS2G53+fjiyasQicAYdc4ov0UzhoNPSpIb/pWLFZ07p+NjoILf +Ksq+6/lzcYgLrBbpuqAdLl90slWZb3avSJZ1tkCo0JiC6zaNJw87idR8nTzgWOcQ +RIlCeaXMvV+je1i8k3+LLUn0P63QLDT1wW5N6ZErtnSQEsenjnrH/a3lBtX0DSmU +j/UO533iIvBxniPbNDIgVDWC8waQrDjk1hV9Omj6/xJwkKUNIVLR9XT+33232Fgn +BGm8TbOFbEEv15GvaNLZdfXSTiOErGFYSKU58h9Nzdmr8oZURY4Cu6CENhOhZEYV +O77RwkiuXB5vb+pgO6FFn8SFsF5JPtztGxVKMfI4y3DcaOhcmk3/UHakzzU2pmBW +ac73M2q/JWwkMtvmoi8B65+Px7lMvBbkBVELyozBhBlu+QD6ArgIoH9AAbpaweR6 +LhDD5P1Q3FvUdtM+5QoYEgMRrpSfKa+8bp4EM5vtM4Yr5zOWhwIDAQABo28wbTAd +BgNVHQ4EFgQUr4Sd2lM7XCQTyxNh9CFlfucGngYwTAYDVR0RBEUwQ4IUaWRwLXNo +aWJidGVzdC5zbHUuc2WGK2h0dHBzOi8vaWRwLXNoaWJidGVzdC5zbHUuc2UvaWRw +L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggGBAEgDZ/DH8eavLtPIJLTsOiZK +VXpJenizgbSHagPKeP/dQRv1MDpcVAB3hN8YmOO2tbzGyc5wcBPfC7qvMIUozlBR +iiHTro+l/KZlE5S0nDxTsunVo3y3L1+C+KRhcFmMHNRwI5KArVVl+SiT2YEPE+oO +lNVbqs1y3baFvZdCihDdgC9toS1idF8WxopxNhoFwzrly0d19NMlaOhsPUvjo2Qr +O5AvgTSPdY8UzssqmE5add93yeMlkbDbLgDuLmOf/MT0Q0DQGOpVy18Fs9nD9iwz +BtgLIW+NSUEKwSIbAquFIxcNJLwDlvdLkmreRxrcr1Q3TnUsT0dqyk0Be9wMukQm +zwC6BS/r7dT3EKRlywxxmVr0V6TzeXbX2Ibspjndp7zQz3hb0not/IWUEMvZojgO +50NDCxzWH5CWdUuN1hvAVcruGwJ2UKbgQMAf+3K6kgUeWwbSo+ENo52Mr4jsOdcj +fMB48s6r6Avb5RBLRXFVossgJmxgi5Kp35LVkrkFGA==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIEOzCCAqOgAwIBAgIUVCdXGKcOA0mTcBW9/9WpMX8CNWQwDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 +NzU2WhcNNDAwOTA3MDg1NzU2WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs +dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAIoI0cm30Fp2N4Bv +sieqDs69dulkqXkl5L7PlIyCAfZtCiO7Ozc24UgfqEbzEnc2C0Ld7lVdKiFOhbh3 +ot2vjyR6Di0qhlV16WNWol/nqCksNkwVjPmGym8oRAKo/CwrCXVF6t6JBRk5IzN7 +FdydSSBmgiw8YIpYQsPIqpghirVXfn8cCvxAnFX4Sax3hZdB667KLPN6gD5srBQI +uapz/Y7Nr9P7hAdDWPRsGyY9TBGjtMmlWjzwEZQ1sBaUatOzgyEl5Y4C9Q3P8N36 +yTdTkHNy59EHma46dLSCRTe+qZsiIZ2uyRaPU9GdNHGUlKv8etiyUZD1AKOq3/Oh +kLTELnv38910VtSp715nvcFFlwhcvo8fMh2cnp24HSn/YfBgE7edTpSfVQLdGd9g +PMTB9JG9WgOnU98BVdisTJiZsDPbHkjiNEEkzhO2AgrhG+ZVrhKlcqrozjhI1sKE +fBtJVrkceQ9KuDAc4iR5lZ5m6gQBqLvPLtbAIH+adCGaO8JBqQIDAQABo28wbTAd +BgNVHQ4EFgQU0lRyUnJd8CMyaNpRiCgm+NY8p8AwTAYDVR0RBEUwQ4IUaWRwLXNo +aWJidGVzdC5zbHUuc2WGK2h0dHBzOi8vaWRwLXNoaWJidGVzdC5zbHUuc2UvaWRw +L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggGBAG+9FCHtrtXrMLJCNVr3O1TH +JbxNoEIt72PbN1pgnRgVm+ZWklKLM/1npnh3S4ZYuEUz/EjPlmved2GCPMNXq8o7 +Bc6Durlcvb1R0Zek8iQ6tZxKpHAOnEtbP+QC18m94wpgvD3HkPzRpvRYENLj5pK5 +ibTvQbf4ImFpV07qQ6Ur8DwPifYgy7gpoNNEfw92SmI0d4aDSJvWz7nwvb138nRm +QRRt/b1drYL93EeD+pvGx3nUI/oyS4n9PLiIKtUx6Bm4hlc0ByW7y/hZp6dmPsk+ +hmdVa6a6eRuKkGnzGpr3FzbH723+BPfLqEz6Wy51X8ER7ngvjIvbJykRJHWS/E1A +6ipNj79/PyC9nSwTuf49Djs1bY1Gky5Dj5n+aG/gPcPGbxmrf5CKUPxLnwTbx+tg +jc1JNTh2kaMuVtUXytuU6+dTEHSi6u4BqT6Utn103E+nWQlAXsJSA6kWegWT16z8 +osqdhUK7LIXVz1hA0bgvU3Y+WlOlsIFD++67OzYPRg==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp-shibtest.slu.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp-shibtest.slu.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp-shibtest.slu.se:8443/idp/profile/Authn/SAML2/POST/SSO" index="0"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">SLU Shibboleth Idp Test</md:ServiceName> + <md:ServiceName xml:lang="sv">SLU Shibboleth Idp Test</md:ServiceName> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> <md:Extensions> <shibmd:Scope regexp="false">slu.se</shibmd:Scope> </md:Extensions> - <!-- First signing certificate is BackChannel, the Second is FrontChannel --> <md:KeyDescriptor use="signing"> <ds:KeyInfo> <ds:X509Data> - <ds:X509Certificate> -MIIEOzCCAqOgAwIBAgIUMhPoEf2KNEEQzETZhaUha/CQmD8wDQYJKoZIhvcNAQEL + <ds:X509Certificate>MIIEOzCCAqOgAwIBAgIUMhPoEf2KNEEQzETZhaUha/CQmD8wDQYJKoZIhvcNAQEL BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 NzU3WhcNNDAwOTA3MDg1NzU3WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALv1eV6CikXVLXZb @@ -169,16 +246,14 @@ CdYsBNVA9CGxNQmvO7sgdC+rOjj4r05as/XczXHwKAwjnuQnOgTGoimNYAqvIM5q qX2ghl3ZLngKmPK+CZSBiLRYPqmzaBglFHEP+zTDWAkauajY3YFsVBUKmRdXOuEq 6bBj5Cvi6v3GqEosbFsdoUqOZphdbyUuo78Irg+TijAXat+VM5YA/YWjoi9buexe rbmBK2bCILRtcGsMPk3uMUsq0Jn6LYrHLzCl1ZRgG6HHwGXrbBqdanHGHoJGACtC -lPXa9r98Vs7bLrP/b11343DbP3bvznNhmpqeaXtU8g== - </ds:X509Certificate> +lPXa9r98Vs7bLrP/b11343DbP3bvznNhmpqeaXtU8g==</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="signing"> <ds:KeyInfo> <ds:X509Data> - <ds:X509Certificate> -MIIEOzCCAqOgAwIBAgIUHBOJiF5eItVmpwaAbONnSJwedN0wDQYJKoZIhvcNAQEL + <ds:X509Certificate>MIIEOzCCAqOgAwIBAgIUHBOJiF5eItVmpwaAbONnSJwedN0wDQYJKoZIhvcNAQEL BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 NzU0WhcNNDAwOTA3MDg1NzU0WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALKMy258/b8UEUfM @@ -200,16 +275,14 @@ O5AvgTSPdY8UzssqmE5add93yeMlkbDbLgDuLmOf/MT0Q0DQGOpVy18Fs9nD9iwz BtgLIW+NSUEKwSIbAquFIxcNJLwDlvdLkmreRxrcr1Q3TnUsT0dqyk0Be9wMukQm zwC6BS/r7dT3EKRlywxxmVr0V6TzeXbX2Ibspjndp7zQz3hb0not/IWUEMvZojgO 50NDCxzWH5CWdUuN1hvAVcruGwJ2UKbgQMAf+3K6kgUeWwbSo+ENo52Mr4jsOdcj -fMB48s6r6Avb5RBLRXFVossgJmxgi5Kp35LVkrkFGA== - </ds:X509Certificate> +fMB48s6r6Avb5RBLRXFVossgJmxgi5Kp35LVkrkFGA==</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo> <ds:X509Data> - <ds:X509Certificate> -MIIEOzCCAqOgAwIBAgIUVCdXGKcOA0mTcBW9/9WpMX8CNWQwDQYJKoZIhvcNAQEL + <ds:X509Certificate>MIIEOzCCAqOgAwIBAgIUVCdXGKcOA0mTcBW9/9WpMX8CNWQwDQYJKoZIhvcNAQEL BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 NzU2WhcNNDAwOTA3MDg1NzU2WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAIoI0cm30Fp2N4Bv @@ -231,8 +304,7 @@ QRRt/b1drYL93EeD+pvGx3nUI/oyS4n9PLiIKtUx6Bm4hlc0ByW7y/hZp6dmPsk+ hmdVa6a6eRuKkGnzGpr3FzbH723+BPfLqEz6Wy51X8ER7ngvjIvbJykRJHWS/E1A 6ipNj79/PyC9nSwTuf49Djs1bY1Gky5Dj5n+aG/gPcPGbxmrf5CKUPxLnwTbx+tg jc1JNTh2kaMuVtUXytuU6+dTEHSi6u4BqT6Utn103E+nWQlAXsJSA6kWegWT16z8 -osqdhUK7LIXVz1hA0bgvU3Y+WlOlsIFD++67OzYPRg== - </ds:X509Certificate> +osqdhUK7LIXVz1hA0bgvU3Y+WlOlsIFD++67OzYPRg==</ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> |