summaryrefslogtreecommitdiff
path: root/metadata
diff options
context:
space:
mode:
Diffstat (limited to 'metadata')
-rwxr-xr-xmetadata/scripts/weekly-routines-metadata.sh5
-rw-r--r--metadata/swamid-2.0/bankid-idp.sunet.se-bankid-idp.xml96
2 files changed, 100 insertions, 1 deletions
diff --git a/metadata/scripts/weekly-routines-metadata.sh b/metadata/scripts/weekly-routines-metadata.sh
index 2b2a56bc..c7f6dafd 100755
--- a/metadata/scripts/weekly-routines-metadata.sh
+++ b/metadata/scripts/weekly-routines-metadata.sh
@@ -1,4 +1,4 @@
-#!/bin/sh
+#!/bin/bash
# Used on metadata.swamid.se and metadata.lab.swamid.se
# Store statistics
@@ -9,5 +9,8 @@ if [ `/usr/bin/hostname -f` == 'metadata.swamid.se' ] ;then
docker exec swamid-metadata-sp php /var/www/scripts/sendMailReminders.php
fi
+# Clean up database
+docker exec swamid-metadata-sp php /var/www/scripts/cleanupDatabase.php
+
#Remove old URLs
docker exec swamid-metadata-sp php /var/www/scripts/checkOldURLs.php
diff --git a/metadata/swamid-2.0/bankid-idp.sunet.se-bankid-idp.xml b/metadata/swamid-2.0/bankid-idp.sunet.se-bankid-idp.xml
new file mode 100644
index 00000000..119b6d01
--- /dev/null
+++ b/metadata/swamid-2.0/bankid-idp.sunet.se-bankid-idp.xml
@@ -0,0 +1,96 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://bankid-idp.sunet.se/bankid/idp">
+ <md:Extensions>
+ <mdattr:EntityAttributes>
+ <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+ <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue>
+ <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue>
+ </samla:Attribute>
+ </mdattr:EntityAttributes>
+ <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2023-11-30T14:45:07Z">
+ <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
+ </mdrpi:RegistrationInfo>
+ </md:Extensions>
+ <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://eduid.se/errors?code=ERRORURL_CODE&amp;ts=ERRORURL_TS&amp;rp=ERRORURL_RP&amp;tid=ERRORURL_TID&amp;ctx=ERRORURL_CTX">
+ <md:Extensions>
+ <shibmd:Scope regexp="false">@sunet.se</shibmd:Scope>
+ <mdui:UIInfo>
+ <mdui:DisplayName xml:lang="en">BankID</mdui:DisplayName>
+ <mdui:DisplayName xml:lang="sv">BankID</mdui:DisplayName>
+ <mdui:Description xml:lang="en">BankID Identity Provider</mdui:Description>
+ <mdui:Description xml:lang="sv">BankID legitimeringstjänst</mdui:Description>
+ <mdui:Logo xml:lang="en" height="171" width="20">https://bankid-idp.sunet.se/bankid/idp/images/BankID_logo.svg</mdui:Logo>
+ <mdui:Logo xml:lang="sv" height="171" width="20">https://bankid-idp.sunet.se/bankid/idp/images/BankID_logo.svg</mdui:Logo>
+ <mdui:InformationURL xml:lang="en">https://wiki.sunet.se/display/eLegitimationSomTjanst</mdui:InformationURL>
+ <mdui:InformationURL xml:lang="sv">https://wiki.sunet.se/display/eLegitimationSomTjanst</mdui:InformationURL>
+ <mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/eLegitimationSomTjanst</mdui:PrivacyStatementURL>
+ <mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/eLegitimationSomTjanst</mdui:PrivacyStatementURL>
+ </mdui:UIInfo>
+ <psc:RequestedPrincipalSelection xmlns:psc="http://id.swedenconnect.se/authn/1.0/principal-selection/ns">
+ <psc:MatchValue Name="urn:oid:1.2.752.29.4.13"/>
+ </psc:RequestedPrincipalSelection>
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" MinKeySize="2048"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" MinKeySize="2048"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" MinKeySize="2048"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2007/05/xmldsig-more#sha256-rsa-MGF1" MinKeySize="2048"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2007/05/xmldsig-more#sha384-rsa-MGF1" MinKeySize="2048"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2007/05/xmldsig-more#sha512-rsa-MGF1" MinKeySize="2048"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256" MinKeySize="256"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384" MinKeySize="256"/>
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512" MinKeySize="256"/>
+ </md:Extensions>
+ <md:KeyDescriptor use="signing">
+ <ds:KeyInfo>
+ <ds:X509Data>
+ <ds:X509Certificate>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</ds:X509Certificate>
+ </ds:X509Data>
+ <ds:KeyName>saml_metadata</ds:KeyName>
+ </ds:KeyInfo>
+ </md:KeyDescriptor>
+ <md:KeyDescriptor use="encryption">
+ <ds:KeyInfo>
+ <ds:X509Data>
+ <ds:X509Certificate>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</ds:X509Certificate>
+ </ds:X509Data>
+ <ds:KeyName>saml_metadata</ds:KeyName>
+ </ds:KeyInfo>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+ </md:EncryptionMethod>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
+ <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+ </md:KeyDescriptor>
+ <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
+ <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+ <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://bankid-idp.sunet.se/bankid/idp/saml2/redirect/authn"/>
+ <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://bankid-idp.sunet.se/bankid/idp/saml2/post/authn"/>
+ </md:IDPSSODescriptor>
+ <md:Organization>
+ <md:OrganizationName xml:lang="en">Sunet</md:OrganizationName>
+ <md:OrganizationName xml:lang="sv">Sunet</md:OrganizationName>
+ <md:OrganizationDisplayName xml:lang="en">Sunet</md:OrganizationDisplayName>
+ <md:OrganizationDisplayName xml:lang="sv">Sunet</md:OrganizationDisplayName>
+ <md:OrganizationURL xml:lang="en">https://www.sunet.se</md:OrganizationURL>
+ <md:OrganizationURL xml:lang="sv">https://www.sunet.se</md:OrganizationURL>
+ </md:Organization>
+ <md:ContactPerson contactType="technical">
+ <md:Company>Sunet</md:Company>
+ <md:EmailAddress>mailto:bankid-idp@sunet.se</md:EmailAddress>
+ </md:ContactPerson>
+ <md:ContactPerson contactType="support">
+ <md:Company>Sunet</md:Company>
+ <md:EmailAddress>mailto:bankid-idp@sunet.se</md:EmailAddress>
+ </md:ContactPerson>
+ <md:ContactPerson contactType="administrative">
+ <md:Company>Sunet</md:Company>
+ <md:EmailAddress>mailto:bankid-idp@sunet.se</md:EmailAddress>
+ </md:ContactPerson>
+</md:EntityDescriptor>