diff options
Diffstat (limited to 'swamid-2.0/sig.idsec.se-shibboleth.xml')
-rw-r--r-- | swamid-2.0/sig.idsec.se-shibboleth.xml | 110 |
1 files changed, 110 insertions, 0 deletions
diff --git a/swamid-2.0/sig.idsec.se-shibboleth.xml b/swamid-2.0/sig.idsec.se-shibboleth.xml new file mode 100644 index 00000000..3a0d9fd4 --- /dev/null +++ b/swamid-2.0/sig.idsec.se-shibboleth.xml @@ -0,0 +1,110 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://sig.idsec.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/"> + <mdrpi:RegistrationPolicy xml:lang="en">https://www.sunet.se/wp-content/uploads/2016/08/SWAMID-Metadata-Registration-Practice-Statement-v2.pdf</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"> + <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Upload and Sign - TEST</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Ladda upp och skriv under - TEST</mdui:DisplayName> + <mdui:Description xml:lang="en">SUNET signature test application</mdui:Description> + <mdui:Description xml:lang="sv">SUNET test applikation för signering</mdui:Description> + <mdui:Logo height="500" width="500">https://www.sunet.se/wp-content/themes/sunet/images/sunet-print.png</mdui:Logo> + </mdui:UIInfo> + <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://sig.idsec.se/Shibboleth.sso/DS/Login"/> + <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://sig.idsec.se/Shibboleth.sso/DS/Login" index="1"/> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:KeyName>Shibboleth SP</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=Shibboleth SP,OU=Test +environment,O=IDsec Solutions AB,C=SE</ds:X509SubjectName> + <ds:X509Certificate>MIIEUjCCArqgAwIBAgIEXYI88jANBgkqhkiG9w0BAQsFADBdMQswCQYDVQQGEwJT +RTEbMBkGA1UECgwSSURzZWMgU29sdXRpb25zIEFCMRkwFwYDVQQLDBBUZXN0IGVu +dmlyb25tZW50MRYwFAYDVQQDDA1TaGliYm9sZXRoIFNQMB4XDTE5MDkxODE0MTkz +MFoXDTIwMDkxNzE0MTkzMFowXTELMAkGA1UEBhMCU0UxGzAZBgNVBAoMEklEc2Vj +IFNvbHV0aW9ucyBBQjEZMBcGA1UECwwQVGVzdCBlbnZpcm9ubWVudDEWMBQGA1UE +AwwNU2hpYmJvbGV0aCBTUDCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGB +AMwmomlhzhDE9ZaLIkVrNMVbIrZ83Yzb7gcl/X+UtjnPoC1/5pekiCTVC1lKYCpO +8Qm4eqD0MMcV47ZZiaWDuWFWE1rG856Nii7sPnOjq5k/AzyFumZWjgEYXGTMoeeD +R/VswFr35oev8SydISw772Pm28N5RcKfxISX0Q8w7uhy8dWKiJVV0zIWVTcwmqU1 +wBVdQ8WsAnje7Z8nr8yxQ1iQIZSn3y4k5hLMGHhuyY+EnY5HRMWD54ACBQMhmWFq +joHd9E7bPij0k9FtsacxveQdclLa07mRUTLMFnG4mIqiZaunyvua6MSa/gktlhza +vtxK5l92JaPYLcTCeBYEyNhmAfZkY1+VbGQkiXxAkp76SNSvnC6oigOwXuWUGjcR +cageS2zWBunkSFkb0JZowcRlgzHljXviEClSQUqCRbJSjZN7Q63TQ0tymr1ZpIBn +r3GMBHgo8Pmv1gPYwrEHYoIYM93S/O54Wl6YxAMPqkrDVE3kuBjsQ4XjQIFzgu6D +owIDAQABoxowGDAJBgNVHRMEAjAAMAsGA1UdDwQEAwIFoDANBgkqhkiG9w0BAQsF +AAOCAYEAgpaK5QQlJP3IFtZWPOJwfpJ/xI9fZE56MI+yWvT3SDCo1rE+EbLmVyMX +0q+Vmqo3vprduvsZ5vdTeC6RIs9+7uVWWrjRq9syl1Dp5bkbayRJgBPAK5gZMh3g +N/vH/QKqE2UF6mYqTu+4Xtl2UHvs2pd47NA1rBjTE98vGEDWwoLRPqDxcLkaBa3h +qew6jZhqH8oTCd0YmTYDcRS+SZeHe33qHD6w4mDkVlHSJiw1bofK3bnWw7KtHzJx +lGVzSy9VZ6+yKma74ZJaSMXWN8yLCAq5X7OXQh73pk7JV2VpubSawaJkNhGm97VG +StN7DI9gbAwADRgF9AYVzXCjZ/Q9Oj8saoIL7mkfYmcJe065ylCDANYRnFknW5Tc +AUiQuzF9YdXJlivci6XaH8+fqL/HOLcLflk4Tv4rrxaldr4DHn0xYkxgMSCFi5x9 +4z9CJ9P4U3W2Lv3qiY7olVbeTdT02SGSV+h9/WtsYJJC9FGBmUNSc8YVQBdzyhym +F7vl9NdL +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://sig.idsec.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://sig.idsec.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sig.idsec.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sig.idsec.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://sig.idsec.se/Shibboleth.sso/SLO/Artifact"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sig.idsec.se/Shibboleth.sso/SAML2/POST" index="1"/> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">SUNET</md:OrganizationName> + <md:OrganizationName xml:lang="sv">SUNET</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">SUNET</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">SUNET</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://sunet.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:Company>IDsec</md:Company> + <md:GivenName>Customer support</md:GivenName> + <md:EmailAddress>mailto:sts@aaa-sec.com</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>IDsec</md:Company> + <md:GivenName>Technical support</md:GivenName> + <md:EmailAddress>mailto:sts@aaa-sec.com</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> |