diff options
Diffstat (limited to 'swamid-testing')
67 files changed, 8484 insertions, 0 deletions
diff --git a/swamid-testing/adfs.tad.hv.se-adfs-services-trust.xml b/swamid-testing/adfs.tad.hv.se-adfs-services-trust.xml new file mode 100644 index 00000000..990b36e4 --- /dev/null +++ b/swamid-testing/adfs.tad.hv.se-adfs-services-trust.xml @@ -0,0 +1,102 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://adfs.tad.hv.se/adfs/services/trust"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-09-08T09:39:26Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=http://adfs.tad.hv.se/adfs/services/trust"> + <md:Extensions> + <shibmd:Scope regexp="false">hv.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:Description xml:lang="en">New Identity Provider for University West</mdui:Description> + <mdui:Description xml:lang="sv">Ny Identity Provider för Högskolan Väst</mdui:Description> + <mdui:DisplayName xml:lang="en">Test Identity Provider for University West</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Test Identity Provider för Högskolan Väst</mdui:DisplayName> + <mdui:InformationURL xml:lang="en">http://www.hv.se/en</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">http://www.hv.se</mdui:InformationURL> + <mdui:Keywords xml:lang="en">hv högskolan+väst university+west</mdui:Keywords> + <mdui:Keywords xml:lang="sv">hv högskolan+väst university+west</mdui:Keywords> + <mdui:Logo xml:lang="en" height="103" width="200">https://logo.hv.se/logo-en.jpg</mdui:Logo> + <mdui:Logo xml:lang="sv" height="103" width="200">https://logo.hv.se/logo-sv.jpg</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="sv">https://mdata.hv.se/privacy/Identity_Provider_Privacy_Policy.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://mdata.hv.se/privacy/English_Identity_Provider_Privacy_Policy.html</mdui:PrivacyStatementURL> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>hv.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:58.2822,12.2934</mdui:GeolocationHint> + <mdui:IPHint>193.10.188.0/22</mdui:IPHint> + <mdui:IPHint>193.10.192.0/20</mdui:IPHint> + <mdui:IPHint>193.10.234.0/23</mdui:IPHint> + <mdui:IPHint>193.10.236.0/23</mdui:IPHint> + <mdui:IPHint>212.25.132.0/23</mdui:IPHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIC2DCCAcCgAwIBAgIQE45whhqdRLNNlZ6eDkOvdTANBgkqhkiG9w0BAQsFADAoMSYwJAYDVQQDEx1BREZTIFNpZ25pbmcgLSBhZGZzLnRhZC5odi5zZTAeFw0yMDExMTIyMDQ4NDZaFw0yNTExMTMyMDQ4NDZaMCgxJjAkBgNVBAMTHUFERlMgU2lnbmluZyAtIGFkZnMudGFkLmh2LnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6FKP2dRQ7oKy/3RtjmG++57bfKjjC64XwGPzQnoZf5FPsWN2tL/BYJxNRUbDoc252aMr+LTjEf5JwMT7KM5E8dMGCCiiQ8WLHGXHXcFM9xB+MpQxE1FCVcfAPMwZNULZ6knN0gkSjAPF2eE6eg/xqlT370/9koEzTD4BQszMbtuHkZYH54MqSl59jWxUwRX3QUJYQIou75RB8EQOAYSi4wPALKTGI9twOf67hC7tuEOlo2u8EWPv/Qy3ZgBuMNc3RLiSX8C0NxBiyTSqUeeQg09aX2VMzvhMZpO2BGdBdkrW4wd2xA5Xx7reHVfXFPbXCGFACvAosrLhidjGOpsNQIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQBtgvEuTxhP2aSszYglHg76v1LXuPhfBAAlNvaKv5nQOap5obZY6eY0PVmwcWZhZRwJuj1izxJFKIb84LWNwVyEla4WqmCuKZ5pZMpbkawtmW3HnlU13fbI+fL53CrnjLp5MNQQjb//PKhhxFF2VfDa5XEW6bMR6YfDefNAxfwuqjuybwqJ18En8K7st03+fAWA32RbRKopp/DtJYtVY01QjmactDhjuzA6INwVhZJecVGsLEQP+9Uvr15PdSnlHU3N3EvskMl7+1PNXbBl5JsnbZAq3WQytGfpyhxyoUSeHLaZ6hyS7EuoTYdkz0k3u1AtVMRMA46+n+Gybf3vR9Sf</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://adfs.tad.hv.se/adfs/services/trust/artifactresolution" index="0"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://adfs.tad.hv.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://adfs.tad.hv.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://adfs.tad.hv.se/adfs/ls/"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://adfs.tad.hv.se/adfs/ls/"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">HV</md:OrganizationName> + <md:OrganizationName xml:lang="sv">HV</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">University West</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Högskolan Väst</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.hv.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">http://www.hv.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:Company>University West</md:Company> + <md:SurName>Servicedesk Högkoslan Väst</md:SurName> + <md:EmailAddress>mailto:servicecenter@hv.se</md:EmailAddress> + <md:TelephoneNumber>+46 520 223300</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:Company>University West</md:Company> + <md:GivenName>Magnus</md:GivenName> + <md:SurName>Andersson</md:SurName> + <md:EmailAddress>mailto:Magnus.Andersson@hv.se</md:EmailAddress> + <md:TelephoneNumber>+46 520 223193</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>University West</md:Company> + <md:GivenName>Christian</md:GivenName> + <md:SurName>Jiresjö</md:SurName> + <md:EmailAddress>mailto:Christian.Jiresjo@hv.se</md:EmailAddress> + <md:TelephoneNumber>+46 520 223189</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>University West</md:Company> + <md:GivenName>Incident Response Team</md:GivenName> + <md:SurName>IRT</md:SurName> + <md:EmailAddress>mailto:irt@hv.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/adfs.test.umu.se-adfs-services-trust.xml b/swamid-testing/adfs.test.umu.se-adfs-services-trust.xml new file mode 100644 index 00000000..74dcedfc --- /dev/null +++ b/swamid-testing/adfs.test.umu.se-adfs-services-trust.xml @@ -0,0 +1,156 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://adfs.test.umu.se/adfs/services/trust"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-06-28T13:32:59Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Umeå universitet</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Umeå University</mdui:DisplayName> + <mdui:Description xml:lang="sv">Umeå universitet</mdui:Description> + <mdui:Description xml:lang="en">Umeå University</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://www.umu.se</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://www.umu.se/english</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://administrationsverktyg.umu.se/privacy/?system=http://adfs.umu.se/adfs/services/trust&lang=sv</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://administrationsverktyg.umu.se/privacy/?system=http://adfs.umu.se/adfs/services/trust&lang=en</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDRTCCAi2gAwIBAgIQclnHE0ziOIVM5+RU5ZTZXTANBgkqhkiG9w0BAQsFADAjMSEwHwYDVQQDDBhzaWduaW5nLmFkZnMudGVzdC51bXUuc2UwHhcNMjAwMjIwMDc0OTM3WhcNMzAwMjIwMDc1OTM3WjAjMSEwHwYDVQQDDBhzaWduaW5nLmFkZnMudGVzdC51bXUuc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAcS2YkS1iNoJKOY+8rLSqupIts6QYYHb5XW07BSAxkZAC6vdaIhrV2zEdJxa5Tf7AxdzrHdyeP1oOBiJLKyrb0l+RuM+RjXPUM328LeWTC1o++/X6AXBzsJED/iici3BjtgTC6Em9IjGeB41mWpPCy6UbP9OtKNRI6Ac0XcDZkAzDA2a0tpDQPQiPsJ09aoCYc1ZMkp+vlFqhvXPMFkS+zO5Vog6pfe9hUs8yDwsEP8YHb5eHfyWqPcI8XWkeWMJvIcgIedHU0ubJ7H7O5cVlfYaM5qS4UkwFRAMSEvyl99P4p2GBAdTZNSBO7hS3zAR6KWbTG9SNqr4wk6oFPuu5AgMBAAGjdTBzMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwIwYDVR0RBBwwGoIYc2lnbmluZy5hZGZzLnRlc3QudW11LnNlMB0GA1UdDgQWBBQbdu26yXQnU130Nv//MnJpqpi8cDANBgkqhkiG9w0BAQsFAAOCAQEABT4RjcrLCZc68tsM3AZJoYsplr7MQGlixSJ/v9c6N+dYL5kULFmTy/mDKHy1SnHwEVK9fkTcb4afg+kI9IrJOf8vX9MsJmprmU/RWmv47JIZ2k6/B8sQcy9CZj6vmEUtCu5crJrGhSNhepg8gpEP+hqCHjIRG4BV6eDJf+iKEj4EXIUN2Fd6rAuAeZ8SX8iNiW+aA/RNqgrxXJgJPSGTxRMnFEJrI0mFuwkiD3bv3KyrzcztyKCYjWP0huv2SRDsowGgfmJRCxcQFn7/PETxcaMgbbsypc9JlAViysdwQu1u4QdPbawu3AOqyWgqO0I6k+CM9bQT/suDjr2ElsXK6Q==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://adfs.test.umu.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://adfs.test.umu.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://adfs.test.umu.se/adfs/ls/" index="0" isDefault="true"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://adfs.test.umu.se/adfs/ls/" index="1"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">Umeå University</md:ServiceName> + <md:ServiceName xml:lang="sv">Umeå universitet</md:ServiceName> + <md:RequestedAttribute FriendlyName="c" Name="urn:oid:2.5.4.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="cn" Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="co" Name="urn:oid:0.9.2342.19200300.100.1.43" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonOrcid" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.16" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduOrgAcronym" Name="urn:oid:1.3.6.1.4.1.2428.90.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="personalIdentityNumber" Name="urn:oid:1.2.752.29.4.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="schacDateOfBirth" Name="urn:oid:1.3.6.1.4.1.25178.1.2.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="schacHomeOrganization" Name="urn:oid:1.3.6.1.4.1.25178.1.2.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonUniqueId" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="o" Name="urn:oid:2.5.4.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="schacHomeOrganizationType" Name="urn:oid:1.3.6.1.4.1.25178.1.2.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://administrationsverktyg.umu.se/ErrorUrl/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX"> + <md:Extensions> + <shibmd:Scope regexp="false">umu.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Umeå universitet (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Umeå University (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Identitsutgivare för anställda och studenter vid Umeå universitet (TEST).</mdui:Description> + <mdui:Description xml:lang="en">Identity Provider for employees and students at Umeå University (TEST).</mdui:Description> + <mdui:InformationURL xml:lang="sv">http://www.umu.se</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">http://www.umu.se/english</mdui:InformationURL> + <mdui:Logo xml:lang="sv" height="60" width="274">https://www.umu.se/globalassets/organisation/forvaltningen/universitetsservice/umu-logo-left-se-te.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="60" width="274">https://www.umu.se/globalassets/organisation/forvaltningen/universitetsservice/umu-logo-left-en-te.png</mdui:Logo> + <mdui:Keywords xml:lang="sv">umu umeå+universitet umea+universitet umea+university umeå+university umeå umea</mdui:Keywords> + <mdui:Keywords xml:lang="en">umu umeå+universitet umea+universitet umea+university umeå+university umeå umea</mdui:Keywords> + <mdui:PrivacyStatementURL xml:lang="en">https://administrationsverktyg.umu.se/privacy?system=http://adfs.umu.se/adfs/services/trust&lang=en</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://administrationsverktyg.umu.se/privacy?system=http://adfs.umu.se/adfs/services/trust&lang=sv</mdui:PrivacyStatementURL> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>umu.se</mdui:DomainHint> + <mdui:IPHint>130.239.0.0/16</mdui:IPHint> + <mdui:GeolocationHint>geo:63.820554,20.305799</mdui:GeolocationHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://adfs.test.umu.se/adfs/services/trust/artifactresolution" index="0"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://adfs.test.umu.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://adfs.test.umu.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://adfs.test.umu.se/adfs/ls/"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://adfs.test.umu.se/adfs/ls/"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Umea University</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Umeå universitet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Umea University</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Umeå universitet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.umu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.umu.se/english/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:Company>Umeå University</md:Company> + <md:SurName>ITS datordrift</md:SurName> + <md:EmailAddress>mailto:datordrift@its.umu.se</md:EmailAddress> + <md:TelephoneNumber>+46 90 786 6300</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:Company>Umea University</md:Company> + <md:GivenName>ITS datordrift</md:GivenName> + <md:EmailAddress>mailto:datordrift@its.umu.se</md:EmailAddress> + <md:TelephoneNumber>+46 90 786 6300</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>Umea University</md:Company> + <md:GivenName>UmU Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:abuse@umu.se</md:EmailAddress> + <md:TelephoneNumber>+46 90 786 6300</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Umea University</md:Company> + <md:GivenName>ITS datordrift</md:GivenName> + <md:EmailAddress>mailto:datordrift@its.umu.se</md:EmailAddress> + <md:TelephoneNumber>+46 90 786 6300</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/akka-adm.test.uu.se-shibboleth.xml b/swamid-testing/akka-adm.test.uu.se-shibboleth.xml new file mode 100644 index 00000000..b2700e1b --- /dev/null +++ b/swamid-testing/akka-adm.test.uu.se-shibboleth.xml @@ -0,0 +1,104 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://akka-adm.test.uu.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-11-16T18:53:05Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Uppsala universitets AKKA (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Uppsala University AKKA (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Autentisering/Kontroll - Katalogadministration (TEST)</mdui:Description> + <mdui:Description xml:lang="en">Authentication/Control - Directory Administration (TEST)</mdui:Description> + <mdui:Logo xml:lang="en" height="50" width="50">https://weblogin.test.uu.se/idp/images/logga-50.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="50" width="50">https://weblogin.test.uu.se/idp/images/logga-50.png</mdui:Logo> + <mdui:InformationURL xml:lang="sv">http://akka.uadm.uu.se/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">http://akka.uadm.uu.se/?languageId=1</mdui:InformationURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIFDDCCAvSgAwIBAgIJAKteO8AenOr0MA0GCSqGSIb3DQEBBQUAMCIxIDAeBgNV +BAMTF3V1Yy1ha2thMDA0LXQuaXRzLnV1LnNlMB4XDTE1MTAyMDA3Mjc1OVoXDTI1 +MTAxNzA3Mjc1OVowIjEgMB4GA1UEAxMXdXVjLWFra2EwMDQtdC5pdHMudXUuc2Uw +ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC5Yykfh896zzlUMDkKfgP9 +bDEqGjRGLyIJaj+nDqtBzpStcqutIBbFhg59hkCO0rSQ7tTqAfiyTd+Tumu//+Va +eP5cs98FPMePfRd53xYECQzIw4UtVAjEQJEgnhrtuW6izhKv8QBy7NE/+w44kwx1 +NyHnwk0LhkmPr8t131PfCqktOZ5zuRu/neqx99CPbsBLtFZ7Sq3YFBrQA8w5UhiQ +EyHR3moUUYxOI/1QzjrEjBOM/3tRnX5JW1vYJUTuTPpOz3/xNUFYuD3WyVfIGS2d +/qyDmfJF8W9WZHFosKszJ/ptsLFu1htS8M6X5NE75/Axw1Iq7j/tuf6Ie/PyyIpF +898YdX7ZNb4SrjkaEK28uKmomXW3eA9OtJfzYZI2n9cKmaEHPP0clBDksyPn16q8 +6sAOq0MWOUUZ6/KnWPmZWczEaHzsvlsAdP715c4QjfRN0eh65T0gUJA8YcKqBIef +qLaW4buj1udWFCfmH3V9DwOcedEU2v90Qxrn/Og7VUoCaaw05OeouRIxPVZVhyX2 +jCxWtVl1HWXDKcDDwh2q70B2TzCnlmHnEINxldAvAfy2vAW/BusCNxrLiscHdj3a +1+N97p3xHrtMdUTEs1GsQVnVSNHxinshGiIis3lw+W5xuOnEVFpzBjad2oqLCj8t +m2IzDvqYtNXE91fg0kwMUQIDAQABo0UwQzAiBgNVHREEGzAZghd1dWMtYWtrYTAw +NC10Lml0cy51dS5zZTAdBgNVHQ4EFgQUUruxH3bOINDbPvFnLUaZzNmRTzwwDQYJ +KoZIhvcNAQEFBQADggIBADY78qD6b3UWghVabhCLWLW9MPrMiV0FeKaOHOuQYERv +DsU3//Nc9lwExqfOavsdQu5sWmjv8DwfJkmRxRz83qtFUlcPCc3NTRwLDkB/BFpy +RUYXQtzbOfAJA5zHZvFeNVtgDNT+492BrdHlovMCkYEmYsEJbH+JlTuPK0qxwRqI +mrPt0xTY/uTfr3WJWjUuDJfRXBqk7RduPE/OuRmJgR5y2YTuhD7xuH3g2n11Lcqp +oDANE9jKgPeFD8otFNmDxb8vzFaHvxPN8VAJEzTbtA0ijvpOWFodlv/yVsn8klvE +WSLRvWzSCXenOaSCaf4y92Fi4n0WjOXtWV4C7nkjrlO6ov9FxDo9U+p7PQ568T8N +mt3qQBeVbAFb2McyyB4J8XSO2PGOZOfx/P+QREqCCSQK+vd5/WNZdU/O+QEVOA67 +xLEWZrA8ctG8LISaRvo25r6JAnwrQYF7RaCFCBmqBe1JYYdtEaiSVAbo1WKsxRub +ijMA4vVFfH6jjSOnzquVyciKxDOaCNNT2h8qqBiVA1DyS0m3N403ebwNrzoFwGrk +54g7VI1jtxz15prFXwN3yIaG14fUHsRiEAWu84QBAQ2wnufJNWqaLiHHUPDaxTpg +lo0T4kERMhfIMpY98G4xTyJQrk6qqNItEsD8CWePbYFnlo+c2IxU9tvGM6sLA50k + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://akka-adm.test.uu.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://akka-adm.test.uu.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://akka-adm.test.uu.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://akka-adm.test.uu.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://akka-adm.test.uu.se/Shibboleth.sso/SLO/Artifact"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://akka-adm.test.uu.se/Shibboleth.sso/NIM/SOAP"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://akka-adm.test.uu.se/Shibboleth.sso/NIM/Redirect"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://akka-adm.test.uu.se/Shibboleth.sso/NIM/POST"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://akka-adm.test.uu.se/Shibboleth.sso/NIM/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://akka-adm.test.uu.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://akka-adm.test.uu.se/Shibboleth.sso/SAML2/ECP" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://akka-adm.test.uu.se/Shibboleth.sso/SAML/POST" index="4"/> + <md:AttributeConsumingService index="0" isDefault="true"> + <md:ServiceName xml:lang="sv">Uppsala universitets AKKA (TEST)</md:ServiceName> + <md:ServiceName xml:lang="en">Uppsala University AKKA (TEST)</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Operations</md:SurName> + <md:EmailAddress>mailto:drift@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Uppsala University Computer Security Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:security@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4717560</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/aqtest.port.se-shibboleth.xml b/swamid-testing/aqtest.port.se-shibboleth.xml new file mode 100644 index 00000000..b07bb10a --- /dev/null +++ b/swamid-testing/aqtest.port.se-shibboleth.xml @@ -0,0 +1,97 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://aqtest.port.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2014-06-11T09:09:19Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.swamid.se/category/hei-service</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://aqtest.port.se/Shibboleth.sso/Login-ltv"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://aqtest.port.se/Shibboleth.sso/Login-lu"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://aqtest.port.se/Shibboleth.sso/Login-ki"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Klara</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Klara</mdui:DisplayName> + <mdui:Description xml:lang="sv">Kemikaliehanteringssystem för tester</mdui:Description> + <mdui:Description xml:lang="en">Chemical information system for tests</mdui:Description> + <mdui:InformationURL xml:lang="en">https://www.example.se/info/about.html</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.example.se/info/integritet.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.example.se/info/privacy.html</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="sv" height="40" width="200">https://aqtest.port.se/alphaquest/bilder/loggor/np.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="40" width="200">https://aqtest.port.se/alphaquest/bilder/loggor/np.png</mdui:Logo> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:KeyName>test01.prod.port.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=test01.prod.port.se</ds:X509SubjectName> + <ds:X509Certificate>MIIDADCCAeigAwIBAgIJAJjc2i4BvoZ6MA0GCSqGSIb3DQEBBQUAMB4xHDAaBgNV +BAMTE3Rlc3QwMS5wcm9kLnBvcnQuc2UwHhcNMTQwMzE5MTMyMjI0WhcNMjQwMzE2 +MTMyMjI0WjAeMRwwGgYDVQQDExN0ZXN0MDEucHJvZC5wb3J0LnNlMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAu2JhOkXmp+ROQBR94r/gajtrXms+JM +iLDxYb1P7QioKlP0/M6TdqXnyCUh6wJwmdYUxMHFJbzNo9zD+pse3RTv5IlpFV7g +6jwnFwqYNR0FCEZKyhSx54l5NYNfmEjnYrWHJS+OcMUjYNDQMjvp08L6vqWuygWZ +PKq/MkMp/wPjB3mYaqSSImpTNk8wjlNUdZh7/yiw2+h9fVHFaa0jypk8yOezJC7e +F58JPDraq5kZu3B136hQpUu9oPO8oDBXVCxGwMEIcC/kNofUnDfXEjH9BzEmRNry +b+y0KwzlhWv96xumFysKXrz0zbOu67A4qrYZB9fh3CT4KOk626a3WQIDAQABo0Ew +PzAeBgNVHREEFzAVghN0ZXN0MDEucHJvZC5wb3J0LnNlMB0GA1UdDgQWBBT92NxF +6NI0YeE1/fkglTAwoOrpYjANBgkqhkiG9w0BAQUFAAOCAQEARZJcu+kw205IdbnZ +ksxNKBugjjXPByjDfOexPV50MAT9afx9bvDhlSNEr3R5tfT1eKR7c12JpItQoilP +khRhxYzfeW1ric20eAwH1FE5Q8ZJ7IHFSo0nHGlPNPEjQsPIlaNkXjUiziWOo+hz ++CODixF0OhrK1fB6WHMamgRl009Ns7/lx+aXScFUJnNTP1zylj6zIRVf2tU+nw1T +tc/AUH3947EbCtXmt3xlw7kisKO6wiLkZS3ZF9F2PNYPz79oBUIRHAjLC2B73OYO +bfjFoe6/viT7p/XJQPt6Zgga/NNt7mvOy+4i9FZ32dZu30DJx323OTFY03eTPmb2 ++q0FMQ== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://aqtest.port.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://aqtest.port.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://aqtest.port.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aqtest.port.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://aqtest.port.se/Shibboleth.sso/SLO/Artifact"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://aqtest.port.se/Shibboleth.sso/NIM/SOAP"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://aqtest.port.se/Shibboleth.sso/NIM/Redirect"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aqtest.port.se/Shibboleth.sso/NIM/POST"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://aqtest.port.se/Shibboleth.sso/NIM/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aqtest.port.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://aqtest.port.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://aqtest.port.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://aqtest.port.se/Shibboleth.sso/SAML/POST" index="5"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://aqtest.port.se/Shibboleth.sso/SAML/Artifact" index="6"/> + </md:SPSSODescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/box-idp.nordu.net-simplesaml-saml2-idp-metadata.php.xml b/swamid-testing/box-idp.nordu.net-simplesaml-saml2-idp-metadata.php.xml new file mode 100644 index 00000000..edfac18c --- /dev/null +++ b/swamid-testing/box-idp.nordu.net-simplesaml-saml2-idp-metadata.php.xml @@ -0,0 +1,32 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://box-idp.nordu.net/simplesaml/saml2/idp/metadata.php"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2013-06-27T14:11:46Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://box-idp.nordu.net/simplesaml/saml2/idp/metadata.php"> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://box-idp.nordu.net/simplesaml/saml2/idp/SingleLogoutService.php"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://box-idp.nordu.net/simplesaml/saml2/idp/SSOService.php"/> + </md:IDPSSODescriptor> + <md:ContactPerson contactType="technical"> + <md:GivenName>NORDUNet</md:GivenName> + <md:SurName>NOC</md:SurName> + <md:EmailAddress>mailto:noc@nordu.net</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/castest.weblogin.uu.se-cas.xml b/swamid-testing/castest.weblogin.uu.se-cas.xml new file mode 100644 index 00000000..0a894c83 --- /dev/null +++ b/swamid-testing/castest.weblogin.uu.se-cas.xml @@ -0,0 +1,83 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://castest.weblogin.uu.se/cas"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-11-16T18:53:05Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://castest.weblogin.uu.se/cas/login"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Interna tjänster vid Uppsala universitet (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Internal Services at Uppsala University (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Uppsala universitets centrala autentiseringsservice (CAS) (TEST)</mdui:Description> + <mdui:Description xml:lang="en">The Central Authentication Service (CAS) at Uppsala University (TEST)</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://akka.uadm.uu.se/Teknisk_info/Gemensam_webbinloggning/CAS/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://akka.uadm.uu.se/Teknisk_info/Gemensam_webbinloggning/CAS/?languageId=1</mdui:InformationURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIC9DCCAdygAwIBAgIJAOwNygOxULuiMA0GCSqGSIb3DQEBBQUAMBoxGDAWBgNV + BAMTD2dlbmVpLml0cy51dS5zZTAeFw0xNDAzMTkxMzIxMDJaFw0yNDAzMTYxMzIx + MDJaMBoxGDAWBgNVBAMTD2dlbmVpLml0cy51dS5zZTCCASIwDQYJKoZIhvcNAQEB + BQADggEPADCCAQoCggEBALmlOXHZH3qX/WRqlHTj2gLZq1CJSBzJvRztgMwSy99j + wECvZl3tK3u2MRJAfDuzFN71cSc/043aw1iRFcUmDTNcem3k++gamCkH+ZOU9otp + 1REyUx48h2P0n954u/pYH800i/gZRHvmBULwXeoXl6Mspsj+/qC1fCKKdQ600QDA + nK+0e2n+T5maAHT7nIR8YkCuExoq/Z8/m4gx+W3VTtLO0BSrzmWhNxUAL2JXJeyj + 0rlA5z9Dds0WvFFX6Q9JuSnmRdpQSFQvIlysQWAFea6a26Bita+pnr6rsi6p3JUS + O0U3/hbooWkbk0vMYkWlBMkEmcHeeYkwuHhODr89vd0CAwEAAaM9MDswGgYDVR0R + BBMwEYIPZ2VuZWkuaXRzLnV1LnNlMB0GA1UdDgQWBBTQ4oxwpsOll6tzXhCYC2qk + 708bqDANBgkqhkiG9w0BAQUFAAOCAQEAtYqS4aYzDp/+UATGsN1WQ3PEQ2nM2GpS + M+GMJVTdPJql3FdPmerpRljr+kQyPUXHAr+8qWqk/DkERhSb+C47fRsixDsQYiOU + lyUCJ2HHbE6ZYI7w6e5o07c5IuTZxQy4VyBmFsH+o2aNhZbMFKNk4TPMAIWQPtbi + nW893Xs69KMMmPZT+s6mlp3eoNZCIKh7vIJrZtZYWH88IN1CqV6X0e8ElRHf4vUe + uSchaFhZ24so9OWUQwA6z5EG4j9l+dzjKKgI78BHUiIeexASk3BXNqSOQ1Q52KFI + Ezr4DJi4GietsCNfksQ5n5h7vzRM3Ob2mVRNfbJZ3AVHm4pc55GTBw==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SLO/Artifact"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SLO/SOAP"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SAML/Artifact" index="6"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SAML/POST" index="5"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://castest.weblogin.uu.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AttributeConsumingService index="0" isDefault="true"> + <md:ServiceName xml:lang="sv">Interna tjänster vid Uppsala universitet (TEST)</md:ServiceName> + <md:ServiceName xml:lang="en">Internal Services at Uppsala University (TEST)</md:ServiceName> + <md:RequestedAttribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Operations</md:SurName> + <md:EmailAddress>mailto:drift@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/coip-test.sunet.se-idp-shibboleth.xml b/swamid-testing/coip-test.sunet.se-idp-shibboleth.xml new file mode 100644 index 00000000..4d052c56 --- /dev/null +++ b/swamid-testing/coip-test.sunet.se-idp-shibboleth.xml @@ -0,0 +1,43 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://coip-test.sunet.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2019-06-12T08:15:13Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">sunet.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNDCCAhygAwIBAgIVAIEijMHQfZuv/n/goQuJ0Q4JizX1MA0GCSqGSIb3DQEB +BQUAMB0xGzAZBgNVBAMTEmNvaXAtdGVzdC5zdW5ldC5zZTAeFw0xMDEyMDYyMzI1 +MTNaFw0zMDEyMDYyMzI1MTNaMB0xGzAZBgNVBAMTEmNvaXAtdGVzdC5zdW5ldC5z +ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMZ3jfjgtkyfH1TJ/rQd +ziYCIi9h1Rne9yFt83KrsykQVxRDoA/0AbBpQnKNl1sD14iAyj+xpHPUMPz5/MpK +5b7f1pRXsL+8tEf+gmdPDiJ1rUecV3soyOVdOuOZcROyfx70iddHgkUYmKUbVeeE +rvU8vKa8BjYEvzG3WRT4o6I2tkQyYEu6mJlw48EjcgCG8CYFbrhKhiTk8d/qMWrQ +eRfdWaBqLfQnum3DJXPaZ35QvO6Qk+uWN2CcdWPKWyyvpUmNp5/LklPJ4XZC9JqO +LBzV02EVsnNbNTKjYKjwtlKa5BPD7QoDLp+QJel0jtx8WH5LCmFtvSdwnUFV1oig +DzcCAwEAAaNrMGkwSAYDVR0RBEEwP4ISY29pcC10ZXN0LnN1bmV0LnNlhilodHRw +czovL2NvaXAtdGVzdC5zdW5ldC5zZS9pZHAvc2hpYmJvbGV0aDAdBgNVHQ4EFgQU +eTW+lqHTyfngd7TOlml27LxY5H8wDQYJKoZIhvcNAQEFBQADggEBAJsa3va2XmyV +9vt0MtXK7xetQc7YpCl8IPMTPqJyiwIOmRDahU0fOlsnyXgiVbgtBWEkdPU+mFJt +ieUpQNmHMvNkGWHmBBkSX0ANyor+H54XNYYnaMcxa/dZHE3hCWO1N1Y5AOFRUauv +qr0ECPqqiM8M/Ir/9iRivLkBpBgLa4SU9O13s/1dgsP7vvNoIbxMecLRhVVaTkwj +v5OqkXDvlha9dI/NRxBYUsIpts6tU+20DvSmyZG1IbSu5tMSGn6jrDHsClXuig7w +ZBkqgmTtNcDZXR2FaflUDmM7Xk1gw581bWdYCpQZHNQv7Kh7yAeQWjU2OoYFm3U9 +C2+Rm0cXr6U= +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://coip-test.sunet.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://coip-test.sunet.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + </md:AttributeAuthorityDescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/connect.dev.eduid.se-sunet.xml b/swamid-testing/connect.dev.eduid.se-sunet.xml new file mode 100644 index 00000000..72252050 --- /dev/null +++ b/swamid-testing/connect.dev.eduid.se-sunet.xml @@ -0,0 +1,87 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://connect.dev.eduid.se/sunet"> + <md:Extensions> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#md5"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#ripemd160"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-md5"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-10-21T14:08:19Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" WantAuthnRequestsSigned="false" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idpproxy.dev.eduid.se/sunet"> + <md:Extensions> + <shibmd:Scope regexp="false">dev.eduid.se</shibmd:Scope> + <shibmd:Scope regexp="false">test.eduid.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:Description xml:lang="en">Login for SUNET employees - Test</mdui:Description> + <mdui:Description xml:lang="sv">Inloggning för anställda på SUNET - TEST</mdui:Description> + <mdui:DisplayName xml:lang="en">SUNET - Connect Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">SUNET - Connect Test</mdui:DisplayName> + <mdui:InformationURL xml:lang="en">https://wiki.sunet.se/display/info/Sunet Identity Provider Service Definition and Privacy Policy?showLanguage=en_GB</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">https://wiki.sunet.se/display/info/Sunet Identity Provider Service Definition and Privacy Policy?showLanguage=sv_SE</mdui:InformationURL> + <mdui:Logo xml:lang="en" height="205" width="256">https://static.sunet.se/images/sunet256.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="205" width="256">https://static.sunet.se/images/sunet256.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/info/Sunet Identity Provider Service Definition and Privacy Policy?showLanguage=en_GB</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/info/Sunet Identity Provider Service Definition and Privacy Policy?showLanguage=sv_SE</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idpproxy.dev.eduid.se/EduidSP/SunetIDP/sso/post"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idpproxy.dev.eduid.se/EduidSP/SunetIDP/sso/redirect"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">The Swedish Research Council</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Vetenskapsrådet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Sunet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Sunet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://sunet.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://sunet.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:GivenName>SUNET NOC</md:GivenName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>SUNET NOC</md:GivenName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:GivenName>SUNET NOC</md:GivenName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>SUNET CERT</md:GivenName> + <md:EmailAddress>mailto:cert@cert.sunet.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/devrb.lbic.lu.se.xml b/swamid-testing/devrb.lbic.lu.se.xml new file mode 100644 index 00000000..bfbb8d2c --- /dev/null +++ b/swamid-testing/devrb.lbic.lu.se.xml @@ -0,0 +1,48 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://devrb.lbic.lu.se/"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-06-13T20:52:33Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/hei-service</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">RB ansökan</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">RB application</mdui:DisplayName> + <mdui:Description xml:lang="sv">Research Board ansökningsformulär utveckling</mdui:Description> + <mdui:Description xml:lang="en">Research Board Application Development</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://ext-devrb.lbic.lu.se/simplesaml/module.php/saml/sp/saml2-logout.php/devrb"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://ext-devrb.lbic.lu.se/simplesaml/module.php/saml/sp/saml2-acs.php/devrb" index="0"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://ext-devrb.lbic.lu.se/simplesaml/module.php/saml/sp/saml1-acs.php/devrb" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://ext-devrb.lbic.lu.se/simplesaml/module.php/saml/sp/saml2-acs.php/devrb" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://ext-devrb.lbic.lu.se/simplesaml/module.php/saml/sp/saml1-acs.php/devrb/artifact" index="3"/> + </md:SPSSODescriptor> + <md:ContactPerson contactType="technical"> + <md:GivenName>Anders</md:GivenName> + <md:SurName>Mårtensson</md:SurName> + <md:EmailAddress>mailto:Anders.Martensson@med.lu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/flax.nettst.chalmers.se-adfs-services-trust.xml b/swamid-testing/flax.nettst.chalmers.se-adfs-services-trust.xml new file mode 100644 index 00000000..f254ccfa --- /dev/null +++ b/swamid-testing/flax.nettst.chalmers.se-adfs-services-trust.xml @@ -0,0 +1,94 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://flax.nettst.chalmers.se/adfs/services/trust"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-01-17T12:29:10Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=http://flax.nettst.chalmers.se/adfs/services/trust"> + <md:Extensions> + <shibmd:Scope regexp="false">nettst.chalmers.se</shibmd:Scope> + <shibmd:Scope regexp="false">chalmers.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Chalmers test</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Chalmers test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Identity Provider for Chalmers (test)</mdui:Description> + <mdui:Description xml:lang="en">Identity Provider for Chalmers (test)</mdui:Description> + <mdui:InformationURL xml:lang="en">http://www.chalmers.se/en/</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">http://www.chalmers.se/</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.ita.chalmers.se/PrivacyPolicyIdP.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.ita.chalmers.se/PrivacyPolicyIdP.html</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="sv" height="81" width="625">https://www.chalmers.se/SiteCollectionImages/Logotyper/Chalmers%20logotyp/Chalmers_black.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="81" width="625">https://www.chalmers.se/SiteCollectionImages/Logotyper/Chalmers%20logotyp/Chalmers_black.png</mdui:Logo> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + 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 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + 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 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://flax.nettst.chalmers.se/adfs/services/trust/artifactresolution" index="0"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://flax.nettst.chalmers.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://flax.nettst.chalmers.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://flax.nettst.chalmers.se/adfs/ls/"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://flax.nettst.chalmers.se/adfs/ls/"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Chalmers University of Technology</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Chalmers Tekniska Högskola Aktiebolag</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Chalmers</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Chalmers</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.chalmers.se/en</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">http://www.chalmers.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:Company>Chalmers</md:Company> + <md:GivenName>Björn</md:GivenName> + <md:SurName>Sandell</md:SurName> + <md:EmailAddress>mailto:biorn@chalmers.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:Company>Chalmers</md:Company> + <md:GivenName>Niklas</md:GivenName> + <md:SurName>Rosenqvist</md:SurName> + <md:EmailAddress>mailto:support@chalmers.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Chalmers</md:Company> + <md:GivenName>Servicedesk</md:GivenName> + <md:EmailAddress>mailto:support@chalmers.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>Chalmers</md:Company> + <md:GivenName>Chalmers Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:abuse@chalmers.se</md:EmailAddress> + <md:TelephoneNumber>+46 31 772 8450</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/fs.test.ad.liu.se-adfs-services-trust.xml b/swamid-testing/fs.test.ad.liu.se-adfs-services-trust.xml new file mode 100644 index 00000000..ecdda021 --- /dev/null +++ b/swamid-testing/fs.test.ad.liu.se-adfs-services-trust.xml @@ -0,0 +1,145 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://fs.test.ad.liu.se/adfs/services/trust"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-05-30T09:38:51Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al3</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:Description xml:lang="en">Linköping University</mdui:Description> + <mdui:Description xml:lang="sv">Linköpings universitet</mdui:Description> + <mdui:DisplayName xml:lang="en">Linköping University</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Linköpings universitet</mdui:DisplayName> + <mdui:Logo xml:lang="en" height="126" width="350">https://liu.se/mall11/images/logo-350-en.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="121" width="350">https://liu.se/mall11/images/logo-350-sv.png</mdui:Logo> + <mdui:InformationURL xml:lang="en">https://www.liu.se/?l=en</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">https://www.liu.se/?l=sv</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="en">https://minit.liu.se/static/privacy_policy.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://minit.liu.se/static/privacy_policy.html</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDRTCCAi2gAwIBAgIQeq/xL/dgt4VCKKovegQWtzANBgkqhkiG9w0BAQsFADAjMSEwHwYDVQQDDBhmc3NpZ25pbmcudGVzdC5hZC5saXUuc2UwHhcNMTcxMjEyMTI1NjQ2WhcNMjcxMjEyMTMwNjQ2WjAjMSEwHwYDVQQDDBhmc3NpZ25pbmcudGVzdC5hZC5saXUuc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTPF7hdUl+i8tmPGO4RRtjmSwCGsPFADy+wb67uimM/xM8cf58Cj73MhbSuPK1o5d5VGnzVk+wp51H+BxLOFr0pSuVPTVvybeA8d9ZipN9A6Fi7JzGixsixCnbWfPmvDZVzy1V+658nlVTouoQjD4SiHpTVBBoroim8UNWJxBWC392WLXxeslmzXji/L6eD3S4VK/whuFiQm46z65whtGz9Iyy1b/4Uk8+tcmtbMSqK3fgWtbAFE3CpnklD5zplSJVmOENa+FPunELmVxiC3l/pjfbyAeDXEn6lhJ7ca/JNZxVtfO7DKmLooHz+pEfX3Aa3foub+qrQ4Z5WoUORLLnAgMBAAGjdTBzMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwIwYDVR0RBBwwGoIYZnNzaWduaW5nLnRlc3QuYWQubGl1LnNlMB0GA1UdDgQWBBSKnmy1oaliBcoA6U200WScQU/KLDANBgkqhkiG9w0BAQsFAAOCAQEAMK3j0b5sqfedV8NshBu/AcA/6OdSCy7iH1COS5NdT24G/H58mkuCTzWdiJQNIP9haF+4w84+vFfJtDn/dBcpv5k7vq0CG+3DtfE6sIizd035SnApWU86RsRYNo4QnEzz4VqU2ExvNe1K8FWRa2n81CCzvEEJ+bEEeEAzenAB6Txpt6EPJFKUwDqwmcytGPbZfNAr9+eju4VGmjsdeX6fj+QYt9yc6ioNz0I8JOjDpYGhY/mIr/S/OnD+BaNuPsHThXlfl5aw4JA6tCmSCty9NQHiMjzmz4muzAxgNwpjne18g/7YyubRB60RKX+/WA77RATGlF6xwEB137kOnBw1+w==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://fs.test.ad.liu.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://fs.test.ad.liu.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://fs.test.ad.liu.se/adfs/ls/" index="0" isDefault="true"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://fs.test.ad.liu.se/adfs/ls/" index="1"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">Linköping University</md:ServiceName> + <md:ServiceName xml:lang="sv">Linköpings universitet</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="personalIdentityNumber" Name="urn:oid:1.2.752.29.4.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://liu-errorurl-test-wa.azurewebsites.net/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX"> + <md:Extensions> + <shibmd:Scope regexp="false">liu.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Linköpings universitet Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Linköping University Test</mdui:DisplayName> + <mdui:Description xml:lang="en">Linköping University</mdui:Description> + <mdui:Description xml:lang="sv">Linköpings universitet</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://www.liu.se/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://www.liu.se/?l=en</mdui:InformationURL> + <mdui:Logo xml:lang="en" height="126" width="350">https://liu.se/mall11/images/logo-350-en.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="126" width="350">https://liu.se/mall11/images/logo-350-en.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="sv">https://liu.se/en/article/policy-for-hantering-av-personuppgifter-inom-ramen-for-identitetsutgivaren</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://liu.se/en/article/policy-for-hantering-av-personuppgifter-inom-ramen-for-identitetsutgivaren</mdui:PrivacyStatementURL> + <mdui:Keywords xml:lang="sv">LIU Linköping University</mdui:Keywords> + <mdui:Keywords xml:lang="en">LIU Linköping University</mdui:Keywords> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>liu.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:58.397282,15.578624</mdui:GeolocationHint> + <mdui:IPHint>130.236.0.0/16</mdui:IPHint> + <mdui:IPHint>2001:6b0:17::/48</mdui:IPHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://fs.test.ad.liu.se/adfs/services/trust/artifactresolution" index="0"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://fs.test.ad.liu.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://fs.test.ad.liu.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://fs.test.ad.liu.se/adfs/ls/"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://fs.test.ad.liu.se/adfs/ls/"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Linköpings universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Linköping University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Linköping University Test</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Linköpings universitet Test</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">https://liu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">https://liu.se/en</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:Company>Linköping University</md:Company> + <md:GivenName>Saml</md:GivenName> + <md:SurName>Admins</md:SurName> + <md:EmailAddress>mailto:saml-admins@it.liu.se</md:EmailAddress> + <md:TelephoneNumber>+46 13 282828</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:Company>Linköping University</md:Company> + <md:SurName>LiU-IT SAML admins</md:SurName> + <md:EmailAddress>mailto:saml-admins@it.liu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Linköping University</md:Company> + <md:SurName>LiU-IT SAML admins</md:SurName> + <md:EmailAddress>mailto:saml-admins@it.liu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>LiU Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:abuse@liu.se</md:EmailAddress> + <md:TelephoneNumber>+46 13 281744</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/fs.test.bth.se-adfs-services-trust.xml b/swamid-testing/fs.test.bth.se-adfs-services-trust.xml new file mode 100644 index 00000000..7050206c --- /dev/null +++ b/swamid-testing/fs.test.bth.se-adfs-services-trust.xml @@ -0,0 +1,96 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://fs.test.bth.se/adfs/services/trust"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-05-18T16:17:39Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=http://fs.bth.se/adfs/services/trust"> + <md:Extensions> + <shibmd:Scope regexp="false">bth.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:Description xml:lang="en">TEST - Identity Provider for Blekinge Institute of Technology</mdui:Description> + <mdui:Description xml:lang="sv">TEST - Identity Provider för Blekinge Tekniska Högskola</mdui:Description> + <mdui:DisplayName xml:lang="sv">Blekinge Tekniska Högskola - TEST</mdui:DisplayName> + <mdui:InformationURL xml:lang="en">http://www.bth.se/eng</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">http://www.bth.se</mdui:InformationURL> + <mdui:Keywords xml:lang="en">BTH Blekinge+Tekniska+Högskola Blekinge+Institute+of+Technology</mdui:Keywords> + <mdui:Keywords xml:lang="sv">BTH Blekinge+Tekniska+Högskola Blekinge+Institute+of+Technology</mdui:Keywords> + <mdui:Logo xml:lang="en" height="200" width="200">https://www.bth.se/wp-content/uploads/2022/01/logo_bth.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="200" width="200">https://www.bth.se/wp-content/uploads/2022/01/logo_bth.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="en">https://www.bth.se/eng/about-bth/personal-data/swamid-service-definition/</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.bth.se/om-oss/personuppgifter/swamid-tjanstedefinition/</mdui:PrivacyStatementURL> + <mdui:DisplayName xml:lang="en">Blekinge Institute of Technology - TEST</mdui:DisplayName> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>bth.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:56.181775,15.590592</mdui:GeolocationHint> + <mdui:IPHint>193.11.184.0/21</mdui:IPHint> + <mdui:IPHint>194.47.128.0/19</mdui:IPHint> + <mdui:IPHint>2001:6b0:2a::/48</mdui:IPHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIC2DCCAcCgAwIBAgIQQTOp2BcAHLpH+3erh3BjzDANBgkqhkiG9w0BAQsFADAoMSYwJAYDVQQDEx1BREZTIFNpZ25pbmcgLSBmcy50ZXN0LmJ0aC5zZTAeFw0yMjA0MjExNDAyMDZaFw0yNTA0MjAxNDAyMDZaMCgxJjAkBgNVBAMTHUFERlMgU2lnbmluZyAtIGZzLnRlc3QuYnRoLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA49Vq8ZG5Ig1l8cb2pBXVSFcmlbj37MFWraQftQ79APGlwstwM0U/5a6hYHaODDagrVdda5nJhM6uoDfRPE9Jl2q6KaLvMZOuqKsCYKiqq8dG05/VQk0Z652DJ0N/1D0A9fSVmPB0B89U5PexSdGQj++n4RWVNzMzdCS+2MPrTahf+4+6lQD09HfvDquONVwPpYz+fzbJP/E0BVvdzy1EWerF9aKmSFtuGPMohXvp9UnPLxjkk3U7MMCDBgG4KysOQLM3AX5uRjWIpYubqiMyXEXx9qa9MchhHhgikzaYzEW2Qgv6siok2mRy9F6vRgWCbPG0DQTP9NHqQWys+jNjzQIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQDL6Skh79Db+hUO+IEqSsQZT7cDVXRgX9dbpHKME9sS1lEPHLPlAVhvvJ9nsYKg/eFlH04/9j83zBWlBLlend/85kq+bFnY498w7M6iUXVReI4virO1WIoqVw6W71hSnkUxhotBqLnA6GCnjripgr2BASpjVAH03XQjV8XDJ3pyX1S+pZrgUiHL9NT222IM9MG0GFuMaTzCDhye4fWhpSDC1UiaVG7R0Fxg3psSj2LeXo7qsi9TFA97L5qHyGXlvSBpUL2l2THPo/NCMlNqT51OcZ0GS7e/ps3CQudOs+LR0z+WYvQTwdiiPjVnKiPsr6sQ0662LykvX5jGov/8z5zA</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://fs.test.bth.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://fs.test.bth.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://fs.test.bth.se/adfs/ls/"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://fs.test.bth.se/adfs/ls/"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">BTH</md:OrganizationName> + <md:OrganizationName xml:lang="sv">BTH</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Blekinge Institute of Technology</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Blekinge Tekniska Högskola</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.bth.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">http://www.bth.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:Company>Blekinge Institute of Technology</md:Company> + <md:SurName>IT Helpdesk</md:SurName> + <md:EmailAddress>mailto:ithelpdesk@bth.se</md:EmailAddress> + <md:TelephoneNumber>+46 455 381500</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:Company>Blekinge Institute of Technology</md:Company> + <md:SurName>IT Helpdesk</md:SurName> + <md:EmailAddress>mailto:ithelpdesk@bth.se</md:EmailAddress> + <md:TelephoneNumber>+46 455 38 51 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Blekinge Institute of Technology</md:Company> + <md:SurName>IT Helpdesk</md:SurName> + <md:EmailAddress>mailto:ithelpdesk@bth.se</md:EmailAddress> + <md:TelephoneNumber>+46 455 38 51 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Security Response Team</md:GivenName> + <md:EmailAddress>mailto:abuse@bth.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/hbidp-test.test.hb.se-idp-shibboleth.xml b/swamid-testing/hbidp-test.test.hb.se-idp-shibboleth.xml new file mode 100644 index 00000000..b79ab830 --- /dev/null +++ b/swamid-testing/hbidp-test.test.hb.se-idp-shibboleth.xml @@ -0,0 +1,268 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://hbidp-test.test.hb.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-09-06T09:33:04Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://hbidp-test.test.hb.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">hb.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Högskolan i Borås - Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">University of Borås - Test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Test Identity Provider för anställda och studenter vid Högskolan i Borås.</mdui:Description> + <mdui:Description xml:lang="en">Test Identity Provider for employees and students at Borås University.</mdui:Description> + <mdui:InformationURL xml:lang="sv">http://www.hb.se/Om-hogskolan/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://www.hb.se/en/About-UB/</mdui:InformationURL> + <mdui:Logo xml:lang="sv" height="71" width="350">https://logga.hb.se/HB_logo_sv_350px.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="67" width="350">https://logga.hb.se/HB_logo_en_350px.png</mdui:Logo> + <mdui:Keywords xml:lang="sv">hb högskolan+i+borås hogskolan+i+boras textilhogskolan textilhögskolan bibliotekshogskolan bibliotekshögskolan university+of+borås textile+university+of+borås university+of+boras textile+university+of+boras boras+university+of+library+scieence borås+university+of+library+science</mdui:Keywords> + <mdui:Keywords xml:lang="en">hb högskolan+i+borås hogskolan+i+boras textilhogskolan textilhögskolan bibliotekshogskolan bibliotekshögskolan university+of+borås textile+university+of+borås university+of+boras textile+university+of+boras boras+university+of+library+scieence borås+university+of+library+science</mdui:Keywords> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.hb.se/genvagar/om-webbplatsen/integritetspolicy/</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.hb.se/en/shortcuts/about-the-site/privacy-policy/</mdui:PrivacyStatementURL> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>hb.se</mdui:DomainHint> + <mdui:IPHint>193.10.168.0/24</mdui:IPHint> + <mdui:IPHint>193.10.169.0/24</mdui:IPHint> + <mdui:IPHint>193.10.170.0/24</mdui:IPHint> + <mdui:IPHint>193.10.171.0/24</mdui:IPHint> + <mdui:IPHint>193.10.172.0/24</mdui:IPHint> + <mdui:IPHint>193.10.173.0/24</mdui:IPHint> + <mdui:IPHint>193.10.174.0/24</mdui:IPHint> + <mdui:IPHint>193.10.175.0/24</mdui:IPHint> + <mdui:IPHint>193.10.245.0/24</mdui:IPHint> + <mdui:IPHint>193.10.246.0/24</mdui:IPHint> + <mdui:IPHint>193.10.247.0/24</mdui:IPHint> + <mdui:IPHint>193.11.64.0/24</mdui:IPHint> + <mdui:IPHint>193.11.65.0/24</mdui:IPHint> + <mdui:IPHint>193.11.66.0/24</mdui:IPHint> + <mdui:IPHint>193.11.67.0/24</mdui:IPHint> + <mdui:IPHint>193.11.68.0/24</mdui:IPHint> + <mdui:IPHint>193.11.69.0/24</mdui:IPHint> + <mdui:IPHint>193.11.70.0/24</mdui:IPHint> + <mdui:IPHint>193.11.71.0/24</mdui:IPHint> + <mdui:IPHint>193.11.72.0/24</mdui:IPHint> + <mdui:IPHint>193.11.73.0/24</mdui:IPHint> + <mdui:GeolocationHint>geo:57.724368,12.939918</mdui:GeolocationHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDQDCCAiigAwIBAgIVAP5G1DjR56XDTmOVO7FhPQT6yrvEMA0GCSqGSIb3DQEB +CwUAMCAxHjAcBgNVBAMMFWhiaWRwLXRlc3QudGVzdC5oYi5zZTAeFw0xODA5MDQx +NTM3MTNaFw0zODA5MDQxNTM3MTNaMCAxHjAcBgNVBAMMFWhiaWRwLXRlc3QudGVz +dC5oYi5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIunv38tROIT +xylJLYRGXbBNrvvd1y5TwtZLUPYWl9bRKrMPy5yKGmlohWcOn9eTUgw9ONd/tQLB +VR8R/WIEJ0G8TqieihcEf0NHhldinQ59ZUvjv/T3ViELURjZcewuoBUVV0vgAfcF +xqyGKtPjyBRbDh4X9qyWhNi9/+Gm+21EKxtVdq60tG6XDVfvR0r9VNfQY89elOsE +6MXJSo6mwTzE6hF4LkQ5HBbPVKtEic6uipS7bAV1cGaWva7HTO9IxWSB6LNqzyQy +ABHjztJ44ts9VA4T+m6J/p+gUTO9X0E6HCGkYEU5q7LPhWfxwYjaUMNuJ/IKqksj +7ojzku6rbykCAwEAAaNxMG8wHQYDVR0OBBYEFK8VTzfmTmMM606LaD4mJbFKhW1z +ME4GA1UdEQRHMEWCFWhiaWRwLXRlc3QudGVzdC5oYi5zZYYsaHR0cHM6Ly9oYmlk +cC10ZXN0LnRlc3QuaGIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQAD +ggEBAAkpALSFhOKx/OYjt+N9A+Hzy6mt15PudqmOl2xubEF9634wdpkQZ5DvBW0z +TbBcz9TUwHLEEex67XqXJWOTs6yBdTQlhtuDwlwbSw/gchNKOLCcoIBSzdbozu8o +ta82KzzzlHJ2KPluBw1sCaYm6HTFIKOAYe2VefHQ/9PHsLcYGqd3on93/kzVVroq +tda2MpeOada2bR3fXk5WDs68ztbJ/szEsXZvssPsdq5I0BzltjoSjHrMGuFv8cWT +TdHegNv759FRVCXUUWR2ZI6Y7N/kirs6BcCHjAB1ttgbbbXPngsCX9pV0dV0BqhH +HeJFPfMchJSIf4t2ui7XHSfm5/U= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDPzCCAiegAwIBAgIUXRI6TnTqyLdbWXY+ybzzfbGoeZwwDQYJKoZIhvcNAQEL +BQAwIDEeMBwGA1UEAwwVaGJpZHAtdGVzdC50ZXN0LmhiLnNlMB4XDTE4MDkwNDE1 +MzcxMloXDTM4MDkwNDE1MzcxMlowIDEeMBwGA1UEAwwVaGJpZHAtdGVzdC50ZXN0 +LmhiLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgqktYAX0lZcZ +KjQBkdgNN3VVHi0XmPQWQzZULb8mIEHet0oF2Cu84m6q5+yeLesbVpr17VIiqeYV +rDmfYEoVYKuIxpZkcE/Df4QRtQLMM/zlfPmivjMgY9cA6xy2UkxO3yLH6yWtwvf1 +L+6oOEpix9ZBnK1fxtUP0rqjof4+pwkT6qj6OtgvEcA/0Y4uK9r7gP3bX6qB6vTS +3XW0oZKf9KfNk7ES+pu19mCYSvwUK6UlHeNWZfOzz6/cmHBIJfWnirdE6GZrbIZL +rZT28KwF43zBQ93OjfQxjvoVTFNI0ienSMJh1wquLEez0rgoyfvnnaPwEmdg+xK8 +3Z3JzAkPaQIDAQABo3EwbzAdBgNVHQ4EFgQUi0AQ8gh4n344u3KqkqSr5zXM8osw +TgYDVR0RBEcwRYIVaGJpZHAtdGVzdC50ZXN0LmhiLnNlhixodHRwczovL2hiaWRw +LXRlc3QudGVzdC5oYi5zZS9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0BAQsFAAOC +AQEAaMzc+G/kwGYh6K4nX5fUXqVKSWeYoqj37ewoWDF7ZP+1/iQJ+AEp7yPtDXZQ +e1Hbepeyw/nRDucI8Zs5rw2B7CbQXIhVhzWd4MvD//GZRJn8gllwM7MQ4GQeveG5 +HxkE3HkGyuMw81EqYd+zxbnw9i0OgUaKCjQYv7z66GDN5BnBi0RkwN1K5FdeNq2N +tmwzSXBUYd5AuOluabpjCVJE87CnSIOJ+6ZyFWqhE1owqM2vw2YDR+5qMhqxCn3l +Wkw27URn2McUdKeTUMRQBp4TgHUlPruxui51DsU842gJIeRjKvGpKBEr3whEVwEQ +ulMd7RBwYluu5OV3k9qVEF28oA== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDQDCCAiigAwIBAgIVAPWsuZ2aCN3fS5mXG2JLmHm1AZgOMA0GCSqGSIb3DQEB +CwUAMCAxHjAcBgNVBAMMFWhiaWRwLXRlc3QudGVzdC5oYi5zZTAeFw0xODA5MDQx +NTM3MTNaFw0zODA5MDQxNTM3MTNaMCAxHjAcBgNVBAMMFWhiaWRwLXRlc3QudGVz +dC5oYi5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKQdXtQn6Aei +wNIfovjsFpCSF9UO7nho+gsB48rU8PTWPnuodWhQaBqlyf8FTazrpF/Ring+wJg6 +glPKlBgoWgtUQTOprwkgnqGWRpL5ult7nQTfa1JQjdHBxm+vBFpvEE6+0RKkSmBh +Llm0dd7zBJnyfG28y0Ouv75BDMK6gvoodHucYndBbEPnyUrnf44OvJD/VKg+DAlb +pZaUBJkDeR1jM2VUJNBiMbmUmU8v7HgjgplPu5PvL3u4yMU5i0NI+eL9NWo5eRbI +QNzKQQ4JBW87W90OzoJjaP0VRG7zoO9I27qdlNtVi3I6q2yEEimjx6oC1520JAk/ +aYmG7Cmrg8MCAwEAAaNxMG8wHQYDVR0OBBYEFHWo3WwleQ0SQ1cV9kC+e9D/5AoM +ME4GA1UdEQRHMEWCFWhiaWRwLXRlc3QudGVzdC5oYi5zZYYsaHR0cHM6Ly9oYmlk +cC10ZXN0LnRlc3QuaGIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQAD +ggEBAFv7/0GOeil7iLorFfP7fgiW0PSpOrz1IqdKaPWjGpluav8PW+iBT4l82cNB +ES3wNEcNbqhnRWmP7su5AJqQX8XdorGl330eK2jd99j/lKWS/6e5H9lq4arWEsTF +5UwwfT3/NVDI0lBLh1oewROauWN3c8BWd4fmyJ2vMMp+3BTOMgHMzurelZWkMFbj +emi03bjNx3BEln9TAib40eDwWBJkSzGjsFvjZKhXkA8HunKOqqQrTJw3FK9Z0i+r +3/7dJXfTLB9biTO3FLytC7lHlFHp9V+k0zeFO6hZdyWPggmYjpyD4ayRdAeekjgJ +YPbGFDgtXE/LKeKsvKgyQIfKUW8= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://hbidp-test.test.hb.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://hbidp-test.test.hb.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://hbidp-test.test.hb.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://hbidp-test.test.hb.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://hbidp-test.test.hb.se/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://hbidp-test.test.hb.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">hb.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDQDCCAiigAwIBAgIVAP5G1DjR56XDTmOVO7FhPQT6yrvEMA0GCSqGSIb3DQEB +CwUAMCAxHjAcBgNVBAMMFWhiaWRwLXRlc3QudGVzdC5oYi5zZTAeFw0xODA5MDQx +NTM3MTNaFw0zODA5MDQxNTM3MTNaMCAxHjAcBgNVBAMMFWhiaWRwLXRlc3QudGVz +dC5oYi5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIunv38tROIT +xylJLYRGXbBNrvvd1y5TwtZLUPYWl9bRKrMPy5yKGmlohWcOn9eTUgw9ONd/tQLB +VR8R/WIEJ0G8TqieihcEf0NHhldinQ59ZUvjv/T3ViELURjZcewuoBUVV0vgAfcF +xqyGKtPjyBRbDh4X9qyWhNi9/+Gm+21EKxtVdq60tG6XDVfvR0r9VNfQY89elOsE +6MXJSo6mwTzE6hF4LkQ5HBbPVKtEic6uipS7bAV1cGaWva7HTO9IxWSB6LNqzyQy +ABHjztJ44ts9VA4T+m6J/p+gUTO9X0E6HCGkYEU5q7LPhWfxwYjaUMNuJ/IKqksj +7ojzku6rbykCAwEAAaNxMG8wHQYDVR0OBBYEFK8VTzfmTmMM606LaD4mJbFKhW1z +ME4GA1UdEQRHMEWCFWhiaWRwLXRlc3QudGVzdC5oYi5zZYYsaHR0cHM6Ly9oYmlk +cC10ZXN0LnRlc3QuaGIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQAD +ggEBAAkpALSFhOKx/OYjt+N9A+Hzy6mt15PudqmOl2xubEF9634wdpkQZ5DvBW0z +TbBcz9TUwHLEEex67XqXJWOTs6yBdTQlhtuDwlwbSw/gchNKOLCcoIBSzdbozu8o +ta82KzzzlHJ2KPluBw1sCaYm6HTFIKOAYe2VefHQ/9PHsLcYGqd3on93/kzVVroq +tda2MpeOada2bR3fXk5WDs68ztbJ/szEsXZvssPsdq5I0BzltjoSjHrMGuFv8cWT +TdHegNv759FRVCXUUWR2ZI6Y7N/kirs6BcCHjAB1ttgbbbXPngsCX9pV0dV0BqhH +HeJFPfMchJSIf4t2ui7XHSfm5/U= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDPzCCAiegAwIBAgIUXRI6TnTqyLdbWXY+ybzzfbGoeZwwDQYJKoZIhvcNAQEL +BQAwIDEeMBwGA1UEAwwVaGJpZHAtdGVzdC50ZXN0LmhiLnNlMB4XDTE4MDkwNDE1 +MzcxMloXDTM4MDkwNDE1MzcxMlowIDEeMBwGA1UEAwwVaGJpZHAtdGVzdC50ZXN0 +LmhiLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgqktYAX0lZcZ +KjQBkdgNN3VVHi0XmPQWQzZULb8mIEHet0oF2Cu84m6q5+yeLesbVpr17VIiqeYV +rDmfYEoVYKuIxpZkcE/Df4QRtQLMM/zlfPmivjMgY9cA6xy2UkxO3yLH6yWtwvf1 +L+6oOEpix9ZBnK1fxtUP0rqjof4+pwkT6qj6OtgvEcA/0Y4uK9r7gP3bX6qB6vTS +3XW0oZKf9KfNk7ES+pu19mCYSvwUK6UlHeNWZfOzz6/cmHBIJfWnirdE6GZrbIZL +rZT28KwF43zBQ93OjfQxjvoVTFNI0ienSMJh1wquLEez0rgoyfvnnaPwEmdg+xK8 +3Z3JzAkPaQIDAQABo3EwbzAdBgNVHQ4EFgQUi0AQ8gh4n344u3KqkqSr5zXM8osw +TgYDVR0RBEcwRYIVaGJpZHAtdGVzdC50ZXN0LmhiLnNlhixodHRwczovL2hiaWRw +LXRlc3QudGVzdC5oYi5zZS9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0BAQsFAAOC +AQEAaMzc+G/kwGYh6K4nX5fUXqVKSWeYoqj37ewoWDF7ZP+1/iQJ+AEp7yPtDXZQ +e1Hbepeyw/nRDucI8Zs5rw2B7CbQXIhVhzWd4MvD//GZRJn8gllwM7MQ4GQeveG5 +HxkE3HkGyuMw81EqYd+zxbnw9i0OgUaKCjQYv7z66GDN5BnBi0RkwN1K5FdeNq2N +tmwzSXBUYd5AuOluabpjCVJE87CnSIOJ+6ZyFWqhE1owqM2vw2YDR+5qMhqxCn3l +Wkw27URn2McUdKeTUMRQBp4TgHUlPruxui51DsU842gJIeRjKvGpKBEr3whEVwEQ +ulMd7RBwYluu5OV3k9qVEF28oA== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDQDCCAiigAwIBAgIVAPWsuZ2aCN3fS5mXG2JLmHm1AZgOMA0GCSqGSIb3DQEB +CwUAMCAxHjAcBgNVBAMMFWhiaWRwLXRlc3QudGVzdC5oYi5zZTAeFw0xODA5MDQx +NTM3MTNaFw0zODA5MDQxNTM3MTNaMCAxHjAcBgNVBAMMFWhiaWRwLXRlc3QudGVz +dC5oYi5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKQdXtQn6Aei +wNIfovjsFpCSF9UO7nho+gsB48rU8PTWPnuodWhQaBqlyf8FTazrpF/Ring+wJg6 +glPKlBgoWgtUQTOprwkgnqGWRpL5ult7nQTfa1JQjdHBxm+vBFpvEE6+0RKkSmBh +Llm0dd7zBJnyfG28y0Ouv75BDMK6gvoodHucYndBbEPnyUrnf44OvJD/VKg+DAlb +pZaUBJkDeR1jM2VUJNBiMbmUmU8v7HgjgplPu5PvL3u4yMU5i0NI+eL9NWo5eRbI +QNzKQQ4JBW87W90OzoJjaP0VRG7zoO9I27qdlNtVi3I6q2yEEimjx6oC1520JAk/ +aYmG7Cmrg8MCAwEAAaNxMG8wHQYDVR0OBBYEFHWo3WwleQ0SQ1cV9kC+e9D/5AoM +ME4GA1UdEQRHMEWCFWhiaWRwLXRlc3QudGVzdC5oYi5zZYYsaHR0cHM6Ly9oYmlk +cC10ZXN0LnRlc3QuaGIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQAD +ggEBAFv7/0GOeil7iLorFfP7fgiW0PSpOrz1IqdKaPWjGpluav8PW+iBT4l82cNB +ES3wNEcNbqhnRWmP7su5AJqQX8XdorGl330eK2jd99j/lKWS/6e5H9lq4arWEsTF +5UwwfT3/NVDI0lBLh1oewROauWN3c8BWd4fmyJ2vMMp+3BTOMgHMzurelZWkMFbj +emi03bjNx3BEln9TAib40eDwWBJkSzGjsFvjZKhXkA8HunKOqqQrTJw3FK9Z0i+r +3/7dJXfTLB9biTO3FLytC7lHlFHp9V+k0zeFO6hZdyWPggmYjpyD4ayRdAeekjgJ +YPbGFDgtXE/LKeKsvKgyQIfKUW8= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://hbidp-test.test.hb.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">University of Borås</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Högskolan i Borås</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Högskolan i Borås</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">University of Borås</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.hb.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">http://www.hb.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>University of Borås</md:Company> + <md:GivenName>IRT HB</md:GivenName> + <md:EmailAddress>mailto:csirt@hb.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/id.test.easyvote.se-saml2.xml b/swamid-testing/id.test.easyvote.se-saml2.xml new file mode 100644 index 00000000..e81b4476 --- /dev/null +++ b/swamid-testing/id.test.easyvote.se-saml2.xml @@ -0,0 +1,56 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://id.test.easyvote.se/Saml2"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2019-10-24T09:29:00Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Testenvironment for electronic elections</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Testsystem för elektroniska val</mdui:DisplayName> + <mdui:Description xml:lang="en">Lund University test environment for electronic elections</mdui:Description> + <mdui:Description xml:lang="sv">Lunds universitets testsystem för elektroniska val</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDSDCCAjCgAwIBAgIQbZ8VRUM4Tr9OtQ5lSgpTTzANBgkqhkiG9w0BAQsFADAkMSIwIAYDVQQDDBlpZC50ZXN0LnNhbWwyLmVhc3l2b3RlLnNlMB4XDTE5MTAyMjEzMzMwM1oXDTIwMTAyMjEzNTMwM1owJDEiMCAGA1UEAwwZaWQudGVzdC5zYW1sMi5lYXN5dm90ZS5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKQQDX1eG5SuMAukTuSP+M+j4qdzzD5shhC8NL582Y7MK4b13pultm9ELqCyvxeBBi+uUjt2iOlk7eP0DqA5oM2UB2rfoOG4EdJXj2HZ+FAzRIZbaGRPe/4K8NK1fRYb/2GPR/Ow7jSgivHx3nCLZ3w28nkLhiN4K2LSV4wdS/C8X2TrI3QoftVuQZw1S97B3RgvLAAz7zNrud40VMnS0X/fAiG7El0eiEteMZm1LJrNOmSD/XgOUZlLKJV83+7jDBdP/Qwa1qgNy+5qPknehrzmropwyneOOARqGDGeuUOMr25tXZ2TJ5+toXR+9lh8SpP4VcgnbF2JVEf4NADwunUCAwEAAaN2MHQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATAkBgNVHREEHTAbghlpZC50ZXN0LnNhbWwyLmVhc3l2b3RlLnNlMB0GA1UdDgQWBBQQVAbrP50xPK+eruZsJylRqZz1LDANBgkqhkiG9w0BAQsFAAOCAQEAmOVnrNd38uUuk69QBtdDaP0u6afOFQfx3Jdi0g1MtE0aY/qW6i8/ycYi0e9wGCB+C+RnC3MCbFFvYlT8g2wsd4ludjQPYeFiGqta81ff19h/KfQ7hCRez/CcyIXo8tN6W15R3TCHcSljedDr0wI7xsbTpZLyFoVmNSuOtw2zF5+Uh0vjhj3akmWZgTTGeb/OTQHBydmevvoyGWDLnrv19tCJJ+T7qXuY/+beb+uEt/clsXnheNQjKTRTFVk8zNYJEPUr39bPUyeSqeywTCvSaZq2K8m1XG8kyBCfvtLyZFQr8+QILp3UvGy+xNCQPg1aTmNpfXV/xU7Sqe29FxIfiQ==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://id.test.easyvote.se/Saml2/Logout"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://id.test.easyvote.se/Saml2/Logout"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://id.test.easyvote.se/Saml2/Acs" isDefault="true" index="0"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://id.test.easyvote.se/Saml2/Acs" isDefault="false" index="1"/> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Lund University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Lunds universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Lund University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.lu.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Lunds universitet</md:Company> + <md:GivenName>Anna</md:GivenName> + <md:SurName>Åkesson</md:SurName> + <md:EmailAddress>mailto:servicedesk@lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Lunds universitet</md:Company> + <md:GivenName>Eskil</md:GivenName> + <md:SurName>Swahn</md:SurName> + <md:EmailAddress>mailto:servicedesk@lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Lunds universitet</md:Company> + <md:EmailAddress>mailto:servicedesk@lu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp-proxy.test.sunet.se-shibboleth.xml b/swamid-testing/idp-proxy.test.sunet.se-shibboleth.xml new file mode 100644 index 00000000..0ee0a4ba --- /dev/null +++ b/swamid-testing/idp-proxy.test.sunet.se-shibboleth.xml @@ -0,0 +1,111 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://idp-proxy.test.sunet.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-10-25T15:33:50Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/Login"/> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:KeyName>idp-proxy-1.test.sunet.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=idp-proxy-1.test.sunet.se</ds:X509SubjectName> + <ds:X509Certificate>MIIEHTCCAoWgAwIBAgIUB/sxpk5CvANYnwpfP21edPgXvTwwDQYJKoZIhvcNAQEL +BQAwJDEiMCAGA1UEAxMZaWRwLXByb3h5LTEudGVzdC5zdW5ldC5zZTAeFw0yMjEw +MjQxNDA3NDZaFw0zMjEwMjExNDA3NDZaMCQxIjAgBgNVBAMTGWlkcC1wcm94eS0x +LnRlc3Quc3VuZXQuc2UwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQC1 +KbN/WcN3kr3m0P6cLxg0AMIv/dOSQbmYj7rAolmWUHr4psCpYDpo+eyMaS4kBFrn +KbSz7+rWOi3gdSJZUz4NE7d2Ww1uBucoGnLOloqYLq20whAwTU9EtrMXvv+D43rx +x9gJxZGIeFNpGo/0xAjdtXiUIjBA+hWwm8LvncyFsSV7LfjhggZu8Su/LU4RocqM +3mIcZyfIT2MWH9IWRINdhbgjCCSWYaKuoKdniWHb/+wp2SjUxcoJyA3bcQgoXyAZ +b/UJx40DjldWaTIQoKthwQTOdn2BrE8/vSxhAIdJXEPLnYTIuUh0jika/aNG49QZ +2xuY0Bew1enB/yX5WSHwAZzACSpONBOadx+4zfJrr1IDYkyNR1qIdMCddO+vN+n7 +YMq/Hk66IS6nfBi/3/dm9j4VaCyfFPJI0cvQ5NXGiaUimtvoSK/LzS5oIA7Ew1UU +xdFmO28Jji9qmxokuv349zrM6Uj88Fi5bOe91V6/i3i+8QtTDgDKxckXCZAwpP0C +AwEAAaNHMEUwJAYDVR0RBB0wG4IZaWRwLXByb3h5LTEudGVzdC5zdW5ldC5zZTAd +BgNVHQ4EFgQULWwdE5s3x9SGq1N797eb10Kr48QwDQYJKoZIhvcNAQELBQADggGB +AEiTZvEBDBVoNo3pzP6N+JgelKYYkOFwbcV2pgUEjpTPnJOXYsY5YsE3J093J+UF +fy9YqkR+PrK/azOd2763SaBDjDYTkdvLCCUJhdHNwSQkafU2psWPTsAe0uqvFUPw +7K/WdEG6UWi9DimJGbjZjEEWFGQbbxw0tJ35l2o/R3+X6Hd0hIddcfrY/glTWSQN +KyOd8BqBiiuo2GAsyo0YdIclROhXAR+Ix9hAsKBl/05D3f1nRQa2hPaPugH0AXuq +EkJxG42AnzuHDcBIzcsOlb8vzfFaq4r3WXBn/+zGhVXZk/D6L59s+FcdN0a243NG +aL42e2/JwSHeI+rYzxA1fJYokQXjn/NaURkMnxeaQb00judcMzVaHGdPQlazxHY9 +3vyA7nfY1wXQdci/KwgSAZ6qApBrCuvkCz9NsUShw30AGSmN6ckHEQzFzF19PyBD +Nv/+GFKBH2fYKldCZLejoonbNPQjXfQlA9DC+Vb83N8boYYzvPPuBe/iZmHPnZSK +pg== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:KeyName>idp-proxy-1.test.sunet.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=idp-proxy-1.test.sunet.se</ds:X509SubjectName> + <ds:X509Certificate>MIIEHTCCAoWgAwIBAgIUUrTewyCMMWV/IurG9Gp5nQce3+0wDQYJKoZIhvcNAQEL +BQAwJDEiMCAGA1UEAxMZaWRwLXByb3h5LTEudGVzdC5zdW5ldC5zZTAeFw0yMjEw +MjQxNDA3NTJaFw0zMjEwMjExNDA3NTJaMCQxIjAgBgNVBAMTGWlkcC1wcm94eS0x +LnRlc3Quc3VuZXQuc2UwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDF +Z2Sf9xH4imFrTvOEjVxGoV4WqIjIrb2c1Ay/RiJk/E7IcYQQVGC0gO6NjPrknzfo +8aWKa6hlgbmCWf6RwlsDQPBgVGOBhm85/zG5NMUNP1ha9XLmTjUSeFUL27zHcT66 +YlAfwfSfEpezzByYg1Y1Rp/+w7dsLrfbpkqosDvaDG1HilbJk76BUYzKKR4iPgMY +xBvjgzfpyOYLXjeSw+/rqavfbfuTD7fuxu0xHUB/BMveLXAc9cwV8CNytVzrxRz5 +hEgqU7sajZTGF4P3eTnB/yELKFLoHSri2EuHfxrKIwAeBVHSbkhOL07VFkqxQ78F +fQY6mnV+3tZQl2NMAb7avqHUaCr5ep8NkDXXQrXPBgb5UpyDWX/W7lz+u1VKZdW9 +kC7IdNATfiDOZ+IoFwu39Ooev7To4fGhr4dBcK5m9Cjylq8P2tsxBoYXLFXVhynv +UQqD+piuLE6Jsx/hrREYi+uyfY2JfK2pq4TF7LsGQuP9gkUvewIRWTcwOZeJe6UC +AwEAAaNHMEUwJAYDVR0RBB0wG4IZaWRwLXByb3h5LTEudGVzdC5zdW5ldC5zZTAd +BgNVHQ4EFgQUJ2aJ0bRK0VXQroVaaVfj9v2+6ZUwDQYJKoZIhvcNAQELBQADggGB +AIPWEjMQZ+mpsvvfeidgs9txLHYAQ1Qr8kiG+5M30zK51RmzberE+xuQ6FVln6tD +pfufBp+HRYkqaqo/FEZf7O5LUzkdmD63yZiVkMaJfq4rMg1fZIN/LWTU3L3eJEXY +3H6QtLgEMA1QNU0gEz9T1pDQktNaTIJw0I2oxOcsKzOWyyS4fQrXzUZ4JGlbasqv +WAkyk9+c0uSxg15heOvks0R+LuiSy9HBAYw7y7C9TbCk+8ynknbJo7mvO4VTAVYp +azMIeSD/goL61NQSjfejVxYSKsOKxLEUWURH6AXZpkDUPNAmiVjVqu19zTf+HCGd +52g3fLErLMv4g6V14C+okHx21uFk7c7y0mmO2hhgBmakIk3lPe3TXwy6XaWTujzo +oznnONxouqLL+uFy0Oetc4EbUcFpHT3Gs0pw6+7XojIJD9YE4A8/ovfB5Z7sluhe +9hv7wp7Q4i0QTM+QYykFAz8UTmHUXosLh+GwCLWNqvSijp0Er9IcSL96vZPh6OCq +Fw== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/SLO/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="http://idp-proxy.test.sunet.se/Shibboleth.sso/SAML2/ECP" index="4"/> + </md:SPSSODescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/idp-shibtest.slu.se-idp.xml b/swamid-testing/idp-shibtest.slu.se-idp.xml new file mode 100644 index 00000000..e877439b --- /dev/null +++ b/swamid-testing/idp-shibtest.slu.se-idp.xml @@ -0,0 +1,266 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp-shibtest.slu.se/idp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-09-15T11:11:03Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> + <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp-shibtest.slu.se/idp"> + <md:Extensions> + <shibmd:Scope regexp="false">slu.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">SLU Shibboleth Idp Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">SLU Shibboleth Idp Test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Test Shibboleth Identity Provider för SLU.</mdui:Description> + <mdui:Description xml:lang="en">Test Shibboleth Identity Provider for SLU.</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://idp-shibtest.slu.se/info/om.html</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://idp-shibtest.slu.se/info/about.html</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://idp-shibtest.slu.se/info/integritet.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://idp-shibtest.slu.se/info/privacy.html</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="sv" height="102" width="102">https://idp-shibtest.slu.se/images/logo.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="102" width="102">https://idp-shibtest.slu.se/images/logo.png</mdui:Logo> + </mdui:UIInfo> + </md:Extensions> + <!-- First signing certificate is BackChannel, the Second is FrontChannel --> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEOzCCAqOgAwIBAgIUMhPoEf2KNEEQzETZhaUha/CQmD8wDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 +NzU3WhcNNDAwOTA3MDg1NzU3WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs +dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALv1eV6CikXVLXZb +KHh4Q10LMg0l5AVA72lgdWVVqRH1j0VKzuqWIqLDqh5CRYG801uMhv5s2H7ewo36 +fRFIk9Omh53We4d0yB7BuntBRjF+O469vsGcLVlS2bsOK1kZZNGr5hYZQELc9qhJ +fa7StElIYAnQxkXxIY1aWdnVToEs7gjDkJWdQ4MJDywW/+Kg+e/7kZktteeqoap5 +hFmsq9inZpm11fGtUWOI4fl9TXlZy6X13x5lbDxFNnvF6HRtjafQjRmYx4uLN5+g +IsaFIuguPa/9YnQN8cj0pFRmIROsKAJ5dO45Pi4iY4AqrnT1v7/wnncud+xll26Q +fpq8QDguWf+4KNkt51TWkb++rEJroeTJH9d1iMqAO7qoKthNF6xNVqxN50MApiuO +Y3wEmrBiW9s3d2sTuWSFB0atj+y3KIZsAWmYJ0Gdl8y3YAERHLfZE1hWKrCgobWF +c9QdjQkteld7DLXcb9o1fS+Z8rYmTG7Lw4C22g2Tkb75Qh/QSQIDAQABo28wbTAd +BgNVHQ4EFgQUbWNBoMNHfn1aHUjcXRxZpefoPLYwTAYDVR0RBEUwQ4IUaWRwLXNo +aWJidGVzdC5zbHUuc2WGK2h0dHBzOi8vaWRwLXNoaWJidGVzdC5zbHUuc2UvaWRw +L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggGBAEUQKnyHXUy3FiRsHi+QcJFJ ++4j+wV7FjcAoqYnCZ2BGMJvqyaFOHcoAvWZaYANMW57wDpBCHeY8pC8nc0RkbJkx +1mREdupEtsztvNxwAzdpkEf2Cs4w9m3N0ik2A3jGGcKYTqkmEfwz74ZKfOo3ctU8 +CdYsBNVA9CGxNQmvO7sgdC+rOjj4r05as/XczXHwKAwjnuQnOgTGoimNYAqvIM5q ++uXtqeOzTB2KGW0ZnMuCtKXyVlXcBFFoSK9g7d6perZMZDueS1+/n5VxQyI9wh2n +qX2ghl3ZLngKmPK+CZSBiLRYPqmzaBglFHEP+zTDWAkauajY3YFsVBUKmRdXOuEq +6bBj5Cvi6v3GqEosbFsdoUqOZphdbyUuo78Irg+TijAXat+VM5YA/YWjoi9buexe +rbmBK2bCILRtcGsMPk3uMUsq0Jn6LYrHLzCl1ZRgG6HHwGXrbBqdanHGHoJGACtC +lPXa9r98Vs7bLrP/b11343DbP3bvznNhmpqeaXtU8g== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEOzCCAqOgAwIBAgIUHBOJiF5eItVmpwaAbONnSJwedN0wDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 +NzU0WhcNNDAwOTA3MDg1NzU0WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs +dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALKMy258/b8UEUfM +HxDnWqQnH6hsnVOS2G53+fjiyasQicAYdc4ov0UzhoNPSpIb/pWLFZ07p+NjoILf +Ksq+6/lzcYgLrBbpuqAdLl90slWZb3avSJZ1tkCo0JiC6zaNJw87idR8nTzgWOcQ +RIlCeaXMvV+je1i8k3+LLUn0P63QLDT1wW5N6ZErtnSQEsenjnrH/a3lBtX0DSmU +j/UO533iIvBxniPbNDIgVDWC8waQrDjk1hV9Omj6/xJwkKUNIVLR9XT+33232Fgn +BGm8TbOFbEEv15GvaNLZdfXSTiOErGFYSKU58h9Nzdmr8oZURY4Cu6CENhOhZEYV +O77RwkiuXB5vb+pgO6FFn8SFsF5JPtztGxVKMfI4y3DcaOhcmk3/UHakzzU2pmBW +ac73M2q/JWwkMtvmoi8B65+Px7lMvBbkBVELyozBhBlu+QD6ArgIoH9AAbpaweR6 +LhDD5P1Q3FvUdtM+5QoYEgMRrpSfKa+8bp4EM5vtM4Yr5zOWhwIDAQABo28wbTAd +BgNVHQ4EFgQUr4Sd2lM7XCQTyxNh9CFlfucGngYwTAYDVR0RBEUwQ4IUaWRwLXNo +aWJidGVzdC5zbHUuc2WGK2h0dHBzOi8vaWRwLXNoaWJidGVzdC5zbHUuc2UvaWRw +L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggGBAEgDZ/DH8eavLtPIJLTsOiZK +VXpJenizgbSHagPKeP/dQRv1MDpcVAB3hN8YmOO2tbzGyc5wcBPfC7qvMIUozlBR +iiHTro+l/KZlE5S0nDxTsunVo3y3L1+C+KRhcFmMHNRwI5KArVVl+SiT2YEPE+oO +lNVbqs1y3baFvZdCihDdgC9toS1idF8WxopxNhoFwzrly0d19NMlaOhsPUvjo2Qr +O5AvgTSPdY8UzssqmE5add93yeMlkbDbLgDuLmOf/MT0Q0DQGOpVy18Fs9nD9iwz +BtgLIW+NSUEKwSIbAquFIxcNJLwDlvdLkmreRxrcr1Q3TnUsT0dqyk0Be9wMukQm +zwC6BS/r7dT3EKRlywxxmVr0V6TzeXbX2Ibspjndp7zQz3hb0not/IWUEMvZojgO +50NDCxzWH5CWdUuN1hvAVcruGwJ2UKbgQMAf+3K6kgUeWwbSo+ENo52Mr4jsOdcj +fMB48s6r6Avb5RBLRXFVossgJmxgi5Kp35LVkrkFGA== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEOzCCAqOgAwIBAgIUVCdXGKcOA0mTcBW9/9WpMX8CNWQwDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 +NzU2WhcNNDAwOTA3MDg1NzU2WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs +dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAIoI0cm30Fp2N4Bv +sieqDs69dulkqXkl5L7PlIyCAfZtCiO7Ozc24UgfqEbzEnc2C0Ld7lVdKiFOhbh3 +ot2vjyR6Di0qhlV16WNWol/nqCksNkwVjPmGym8oRAKo/CwrCXVF6t6JBRk5IzN7 +FdydSSBmgiw8YIpYQsPIqpghirVXfn8cCvxAnFX4Sax3hZdB667KLPN6gD5srBQI +uapz/Y7Nr9P7hAdDWPRsGyY9TBGjtMmlWjzwEZQ1sBaUatOzgyEl5Y4C9Q3P8N36 +yTdTkHNy59EHma46dLSCRTe+qZsiIZ2uyRaPU9GdNHGUlKv8etiyUZD1AKOq3/Oh +kLTELnv38910VtSp715nvcFFlwhcvo8fMh2cnp24HSn/YfBgE7edTpSfVQLdGd9g +PMTB9JG9WgOnU98BVdisTJiZsDPbHkjiNEEkzhO2AgrhG+ZVrhKlcqrozjhI1sKE +fBtJVrkceQ9KuDAc4iR5lZ5m6gQBqLvPLtbAIH+adCGaO8JBqQIDAQABo28wbTAd +BgNVHQ4EFgQU0lRyUnJd8CMyaNpRiCgm+NY8p8AwTAYDVR0RBEUwQ4IUaWRwLXNo +aWJidGVzdC5zbHUuc2WGK2h0dHBzOi8vaWRwLXNoaWJidGVzdC5zbHUuc2UvaWRw +L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggGBAG+9FCHtrtXrMLJCNVr3O1TH +JbxNoEIt72PbN1pgnRgVm+ZWklKLM/1npnh3S4ZYuEUz/EjPlmved2GCPMNXq8o7 +Bc6Durlcvb1R0Zek8iQ6tZxKpHAOnEtbP+QC18m94wpgvD3HkPzRpvRYENLj5pK5 +ibTvQbf4ImFpV07qQ6Ur8DwPifYgy7gpoNNEfw92SmI0d4aDSJvWz7nwvb138nRm +QRRt/b1drYL93EeD+pvGx3nUI/oyS4n9PLiIKtUx6Bm4hlc0ByW7y/hZp6dmPsk+ +hmdVa6a6eRuKkGnzGpr3FzbH723+BPfLqEz6Wy51X8ER7ngvjIvbJykRJHWS/E1A +6ipNj79/PyC9nSwTuf49Djs1bY1Gky5Dj5n+aG/gPcPGbxmrf5CKUPxLnwTbx+tg +jc1JNTh2kaMuVtUXytuU6+dTEHSi6u4BqT6Utn103E+nWQlAXsJSA6kWegWT16z8 +osqdhUK7LIXVz1hA0bgvU3Y+WlOlsIFD++67OzYPRg== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp-shibtest.slu.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp-shibtest.slu.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-shibtest.slu.se/idp/profile/SAML2/Redirect/SLO"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp-shibtest.slu.se:8443/idp/profile/SAML2/SOAP/SLO"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp-shibtest.slu.se/idp/profile/SAML2/POST/SLO"/> + <md:SingleSignOnService xmlns:ns1="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ns1:supportsRequestedAttributes="true" Location="https://idp-shibtest.slu.se/idp/profile/SAML2/Redirect/SSO"/> + <md:SingleSignOnService xmlns:ns1="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ns1:supportsRequestedAttributes="true" Location="https://idp-shibtest.slu.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp-shibtest.slu.se/idp/profile/Shibboleth/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">slu.se</shibmd:Scope> + </md:Extensions> + <!-- First signing certificate is BackChannel, the Second is FrontChannel --> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEOzCCAqOgAwIBAgIUMhPoEf2KNEEQzETZhaUha/CQmD8wDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 +NzU3WhcNNDAwOTA3MDg1NzU3WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs +dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALv1eV6CikXVLXZb +KHh4Q10LMg0l5AVA72lgdWVVqRH1j0VKzuqWIqLDqh5CRYG801uMhv5s2H7ewo36 +fRFIk9Omh53We4d0yB7BuntBRjF+O469vsGcLVlS2bsOK1kZZNGr5hYZQELc9qhJ +fa7StElIYAnQxkXxIY1aWdnVToEs7gjDkJWdQ4MJDywW/+Kg+e/7kZktteeqoap5 +hFmsq9inZpm11fGtUWOI4fl9TXlZy6X13x5lbDxFNnvF6HRtjafQjRmYx4uLN5+g +IsaFIuguPa/9YnQN8cj0pFRmIROsKAJ5dO45Pi4iY4AqrnT1v7/wnncud+xll26Q +fpq8QDguWf+4KNkt51TWkb++rEJroeTJH9d1iMqAO7qoKthNF6xNVqxN50MApiuO +Y3wEmrBiW9s3d2sTuWSFB0atj+y3KIZsAWmYJ0Gdl8y3YAERHLfZE1hWKrCgobWF +c9QdjQkteld7DLXcb9o1fS+Z8rYmTG7Lw4C22g2Tkb75Qh/QSQIDAQABo28wbTAd +BgNVHQ4EFgQUbWNBoMNHfn1aHUjcXRxZpefoPLYwTAYDVR0RBEUwQ4IUaWRwLXNo +aWJidGVzdC5zbHUuc2WGK2h0dHBzOi8vaWRwLXNoaWJidGVzdC5zbHUuc2UvaWRw +L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggGBAEUQKnyHXUy3FiRsHi+QcJFJ ++4j+wV7FjcAoqYnCZ2BGMJvqyaFOHcoAvWZaYANMW57wDpBCHeY8pC8nc0RkbJkx +1mREdupEtsztvNxwAzdpkEf2Cs4w9m3N0ik2A3jGGcKYTqkmEfwz74ZKfOo3ctU8 +CdYsBNVA9CGxNQmvO7sgdC+rOjj4r05as/XczXHwKAwjnuQnOgTGoimNYAqvIM5q ++uXtqeOzTB2KGW0ZnMuCtKXyVlXcBFFoSK9g7d6perZMZDueS1+/n5VxQyI9wh2n +qX2ghl3ZLngKmPK+CZSBiLRYPqmzaBglFHEP+zTDWAkauajY3YFsVBUKmRdXOuEq +6bBj5Cvi6v3GqEosbFsdoUqOZphdbyUuo78Irg+TijAXat+VM5YA/YWjoi9buexe +rbmBK2bCILRtcGsMPk3uMUsq0Jn6LYrHLzCl1ZRgG6HHwGXrbBqdanHGHoJGACtC +lPXa9r98Vs7bLrP/b11343DbP3bvznNhmpqeaXtU8g== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEOzCCAqOgAwIBAgIUHBOJiF5eItVmpwaAbONnSJwedN0wDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 +NzU0WhcNNDAwOTA3MDg1NzU0WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs +dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALKMy258/b8UEUfM +HxDnWqQnH6hsnVOS2G53+fjiyasQicAYdc4ov0UzhoNPSpIb/pWLFZ07p+NjoILf +Ksq+6/lzcYgLrBbpuqAdLl90slWZb3avSJZ1tkCo0JiC6zaNJw87idR8nTzgWOcQ +RIlCeaXMvV+je1i8k3+LLUn0P63QLDT1wW5N6ZErtnSQEsenjnrH/a3lBtX0DSmU +j/UO533iIvBxniPbNDIgVDWC8waQrDjk1hV9Omj6/xJwkKUNIVLR9XT+33232Fgn +BGm8TbOFbEEv15GvaNLZdfXSTiOErGFYSKU58h9Nzdmr8oZURY4Cu6CENhOhZEYV +O77RwkiuXB5vb+pgO6FFn8SFsF5JPtztGxVKMfI4y3DcaOhcmk3/UHakzzU2pmBW +ac73M2q/JWwkMtvmoi8B65+Px7lMvBbkBVELyozBhBlu+QD6ArgIoH9AAbpaweR6 +LhDD5P1Q3FvUdtM+5QoYEgMRrpSfKa+8bp4EM5vtM4Yr5zOWhwIDAQABo28wbTAd +BgNVHQ4EFgQUr4Sd2lM7XCQTyxNh9CFlfucGngYwTAYDVR0RBEUwQ4IUaWRwLXNo +aWJidGVzdC5zbHUuc2WGK2h0dHBzOi8vaWRwLXNoaWJidGVzdC5zbHUuc2UvaWRw +L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggGBAEgDZ/DH8eavLtPIJLTsOiZK +VXpJenizgbSHagPKeP/dQRv1MDpcVAB3hN8YmOO2tbzGyc5wcBPfC7qvMIUozlBR +iiHTro+l/KZlE5S0nDxTsunVo3y3L1+C+KRhcFmMHNRwI5KArVVl+SiT2YEPE+oO +lNVbqs1y3baFvZdCihDdgC9toS1idF8WxopxNhoFwzrly0d19NMlaOhsPUvjo2Qr +O5AvgTSPdY8UzssqmE5add93yeMlkbDbLgDuLmOf/MT0Q0DQGOpVy18Fs9nD9iwz +BtgLIW+NSUEKwSIbAquFIxcNJLwDlvdLkmreRxrcr1Q3TnUsT0dqyk0Be9wMukQm +zwC6BS/r7dT3EKRlywxxmVr0V6TzeXbX2Ibspjndp7zQz3hb0not/IWUEMvZojgO +50NDCxzWH5CWdUuN1hvAVcruGwJ2UKbgQMAf+3K6kgUeWwbSo+ENo52Mr4jsOdcj +fMB48s6r6Avb5RBLRXFVossgJmxgi5Kp35LVkrkFGA== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEOzCCAqOgAwIBAgIUVCdXGKcOA0mTcBW9/9WpMX8CNWQwDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUaWRwLXNoaWJidGVzdC5zbHUuc2UwHhcNMjAwOTA3MDg1 +NzU2WhcNNDAwOTA3MDg1NzU2WjAfMR0wGwYDVQQDDBRpZHAtc2hpYmJ0ZXN0LnNs +dS5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAIoI0cm30Fp2N4Bv +sieqDs69dulkqXkl5L7PlIyCAfZtCiO7Ozc24UgfqEbzEnc2C0Ld7lVdKiFOhbh3 +ot2vjyR6Di0qhlV16WNWol/nqCksNkwVjPmGym8oRAKo/CwrCXVF6t6JBRk5IzN7 +FdydSSBmgiw8YIpYQsPIqpghirVXfn8cCvxAnFX4Sax3hZdB667KLPN6gD5srBQI +uapz/Y7Nr9P7hAdDWPRsGyY9TBGjtMmlWjzwEZQ1sBaUatOzgyEl5Y4C9Q3P8N36 +yTdTkHNy59EHma46dLSCRTe+qZsiIZ2uyRaPU9GdNHGUlKv8etiyUZD1AKOq3/Oh +kLTELnv38910VtSp715nvcFFlwhcvo8fMh2cnp24HSn/YfBgE7edTpSfVQLdGd9g +PMTB9JG9WgOnU98BVdisTJiZsDPbHkjiNEEkzhO2AgrhG+ZVrhKlcqrozjhI1sKE +fBtJVrkceQ9KuDAc4iR5lZ5m6gQBqLvPLtbAIH+adCGaO8JBqQIDAQABo28wbTAd +BgNVHQ4EFgQU0lRyUnJd8CMyaNpRiCgm+NY8p8AwTAYDVR0RBEUwQ4IUaWRwLXNo +aWJidGVzdC5zbHUuc2WGK2h0dHBzOi8vaWRwLXNoaWJidGVzdC5zbHUuc2UvaWRw +L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggGBAG+9FCHtrtXrMLJCNVr3O1TH +JbxNoEIt72PbN1pgnRgVm+ZWklKLM/1npnh3S4ZYuEUz/EjPlmved2GCPMNXq8o7 +Bc6Durlcvb1R0Zek8iQ6tZxKpHAOnEtbP+QC18m94wpgvD3HkPzRpvRYENLj5pK5 +ibTvQbf4ImFpV07qQ6Ur8DwPifYgy7gpoNNEfw92SmI0d4aDSJvWz7nwvb138nRm +QRRt/b1drYL93EeD+pvGx3nUI/oyS4n9PLiIKtUx6Bm4hlc0ByW7y/hZp6dmPsk+ +hmdVa6a6eRuKkGnzGpr3FzbH723+BPfLqEz6Wy51X8ER7ngvjIvbJykRJHWS/E1A +6ipNj79/PyC9nSwTuf49Djs1bY1Gky5Dj5n+aG/gPcPGbxmrf5CKUPxLnwTbx+tg +jc1JNTh2kaMuVtUXytuU6+dTEHSi6u4BqT6Utn103E+nWQlAXsJSA6kWegWT16z8 +osqdhUK7LIXVz1hA0bgvU3Y+WlOlsIFD++67OzYPRg== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp-shibtest.slu.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp-shibtest.slu.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Sveriges Lantbruksuniversitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Swedish University of Agricultural Sciences</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Sveriges Lantbruksuniversitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Swedish University of Agricultural Sciences</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.slu.se/en/</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://www.slu.se/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:GivenName>IT Help Desk</md:GivenName> + <md:EmailAddress>mailto:support@slu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:GivenName>IT Help Desk</md:GivenName> + <md:EmailAddress>mailto:support@slu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>IT Help Desk</md:GivenName> + <md:EmailAddress>mailto:support@slu.se</md:EmailAddress> + <md:TelephoneNumber>+46 18 67 66 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>SLU säkerhet</md:GivenName> + <md:EmailAddress>mailto:sakerhet@slu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp-test.it.su.se-idp-shibboleth.xml b/swamid-testing/idp-test.it.su.se-idp-shibboleth.xml new file mode 100644 index 00000000..b96e19fd --- /dev/null +++ b/swamid-testing/idp-test.it.su.se-idp-shibboleth.xml @@ -0,0 +1,104 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp-test.it.su.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2019-06-05T07:55:07Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp-test.it.su.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">su.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Stockholms universitet (test)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Stockholm University (test)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Identity Provider för medarbetare och studenter vid Stockholms universitet.</mdui:Description> + <mdui:Description xml:lang="en">The Stockholm university Identity Provider is used by employees and students at the university.</mdui:Description> + <mdui:InformationURL xml:lang="sv">http://www.su.se</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">http://www.su.se/english/</mdui:InformationURL> + <mdui:Logo xml:lang="sv" height="110" width="127">https://idp-test.it.su.se/idp/img/su-logo-sv_OLD.gif</mdui:Logo> + <mdui:Logo xml:lang="en" height="110" width="127">https://idp-test.it.su.se/idp/img/su-logo-en_OLD.gif</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.su.se/medarbetare/it/it-tj%C3%A4nster/universitetskonto/policy-f%C3%B6r-hantering-av-personuppgifter-inom-ramen-f%C3%B6r-identitetsutgivaren-identity-provider-idp-1.383506</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.su.se/english/staff/it/it-services/policy-for-the-management-of-personal-information-within-the-scope-of-the-identity-provider-idp-1.384218</mdui:PrivacyStatementURL> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>su.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:59.3625,18.0586</mdui:GeolocationHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEBjCCAm6gAwIBAgIVAIoOB0+EQ2esNrfOR/DNO/LiLdhdMA0GCSqGSIb3DQEB +CwUAMBwxGjAYBgNVBAMMEWlkcC10ZXN0Lml0LnN1LnNlMB4XDTIwMTAxMjA3NTAz +NVoXDTQwMTAxMjA3NTAzNVowHDEaMBgGA1UEAwwRaWRwLXRlc3QuaXQuc3Uuc2Uw +ggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQCh/m0otLh1VEJhtCW/DMCb +dOR1iqylNBJGN+hYFIb2hNFrv+NBkAs4jr/99pzAQUgkHLiEpp4WLYAVekS8Adsb +siqNUPsxgQtygm0o4NbIwHN7ZLEMNjC4r2mlscR4RIcfP6OoRUo/RwSvKcQteWMw +wlARk2dsCXJFWKfGpXvdonn762uWcmjSsiwIUZcCOhZ7Xc538FOPMgZ33lBApXwE +rf7cKPsfBWa8asv1U0COcsFliirVC0EqDWuXzMkTXJKnCWBpcNLscOd9zz1bOAQ1 +pf6ZgO2HEGGqczIgqi0q7aafIaFjvOtMkvalQWYThN/4SinMYFeyrbP0IzweLIVO +c3BInDrut81eier88Czwq8oq9/XcqxyJXyS3A75fmoER08JJlNOt1TFokmJLhf1C +e2fETnPTDTmg51ddjQjFYC+VAaiu06Q8A82jIrcMIAgGMAk6Eyi9p3PaEyetwVOj +VibRlOCElJwXqMjpe+JbdoCdj9Hhjz/QBCSL8kccoVsCAwEAAaM/MD0wHQYDVR0O +BBYEFGpKewsKlwmpeXIhOaqQsjdj/kEKMBwGA1UdEQQVMBOCEWlkcC10ZXN0Lml0 +LnN1LnNlMA0GCSqGSIb3DQEBCwUAA4IBgQCDRrQDy7/TTeANIS+uRx1IXaJ9h0Pv +eo/XBNmKEC/M61fYAmGGmZPlpGzDRCKpRS6MlYwhcXT3BgijM3Hy6SBztdpZ462s +rmOaUuoBMR32pTGpoEGnYiM3TJY4kQt+7fJYPMORBBD/Xng3Z+xDHF/wroPikyhH +i7A1XBp1U1fQnP/H9A1eXAFRucoLXaQtxHYm0skHf6EuWfC7wCKa4U87WVueu6YI +9jp0lr3klE34ax+QJ8YOD8bIsd9dTMNvYG8zmXpCEOzitYhFOe4gH3JLPAXp+1gE +7wOi6zFZP3+SC9hTaZOxPMTWbg5Ag7wmQxl39IYBEpRNGe4Jhlqx5QKa82AGU6C5 +aCNzPBXHlvYR4OVzQ7SP5IPVdTCq4bNDhgPtauRy9fwuiAxylkxD/cwI6h+Tpwt8 +U/Fhukwdfy1fB5uVRZniTRINfsdzsFH878eoJZ+RMCbl7P9EO7fYiSS+AZDz/1Ij +i5Njb3NXTdej0Y7FgTe1F/IfGOS4KxKJEG0= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp-test.it.su.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-test.it.su.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">SU</md:OrganizationName> + <md:OrganizationName xml:lang="sv">SU</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Stockholms universitet (test)</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Stockholm University (test)</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.su.se/english</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://www.su.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Stockholm University</md:Company> + <md:SurName>Helpdesk</md:SurName> + <md:EmailAddress>mailto:helpdesk@su.se</md:EmailAddress> + <md:TelephoneNumber>+46 8 16 1999</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Stockholm University</md:Company> + <md:SurName>Helpdesk</md:SurName> + <md:EmailAddress>mailto:helpdesk@su.se</md:EmailAddress> + <md:TelephoneNumber>+46 8 16 1999</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Stockholm University</md:Company> + <md:SurName>Helpdesk</md:SurName> + <md:EmailAddress>mailto:helpdesk@su.se</md:EmailAddress> + <md:TelephoneNumber>+46 8 16 1999</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:irt@su.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp-test.nordu.net-idp-shibboleth.xml b/swamid-testing/idp-test.nordu.net-idp-shibboleth.xml new file mode 100644 index 00000000..52f25b93 --- /dev/null +++ b/swamid-testing/idp-test.nordu.net-idp-shibboleth.xml @@ -0,0 +1,102 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp-test.nordu.net/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2014-12-01T14:56:45Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp-test.nordu.net/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">nordu.net</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">NORDUnet Test IdP</mdui:DisplayName> + <mdui:Description xml:lang="en">The NORDUnet A/S Identity Provider is used by employees and guests of NORDUnet.</mdui:Description> + <mdui:Logo xml:lang="en" height="46" width="203">https://www.nordu.net/resources/NORDUnet2.jpg</mdui:Logo> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>nordu.net</mdui:DomainHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDMzCCAhugAwIBAgIUK/CJDYciXdKCAM5YX+fbleBjTtwwDQYJKoZIhvcNAQEF +BQAwHTEbMBkGA1UEAxMSaWRwLXRlc3Qubm9yZHUubmV0MB4XDTExMDExNzA5NDYx +M1oXDTMxMDExNzA5NDYxM1owHTEbMBkGA1UEAxMSaWRwLXRlc3Qubm9yZHUubmV0 +MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuj833/oKEw/VDNC6c41 +6ul6sopfx1+TS1B+3vOdgJ/HzudPYiDYvglz5lvgOd0+92QOS6LnCbdyAoEvWiKf +kEViH0XC2LkvhFu8BYmh7Rh9DssKZ7AbrXcJo5+urIKGMWYFfqzGdp7GKv3U+ITd +fhrhZS/SjsvGdQ1yVKoUm9AFT9z3r6+niZNkeFQAMRvC+FwnZvK/tdcNLZV5F45F +Y49oZwYMyxEGXc6cFP/d2KR541lzgTZdBmC45BFUkJCJveY4eLMPjvEW7qVR12Kv +uZ4UnbeCrtx3tgWZ0FAxcDQVf3T6k1zZZ9kT3nv5PhUfU76KGyMvYUd+lj7b0hHZ +2wIDAQABo2swaTBIBgNVHREEQTA/ghJpZHAtdGVzdC5ub3JkdS5uZXSGKWh0dHBz +Oi8vaWRwLXRlc3Qubm9yZHUubmV0L2lkcC9zaGliYm9sZXRoMB0GA1UdDgQWBBSo +DnKUiN8jojDRtVlU41cQ0oBgQjANBgkqhkiG9w0BAQUFAAOCAQEAavxQqlYcjCJ8 +5thupV6Uxs/drD6HGAskxdhivQESF0y2LlVxiItFnuxjEnzse7QQTQJJFw3xKfFP +VEoxPMv+eBAU5ltYvLx6072BMdeqld9m0oE+k0lKrVkBQ2zgKv9kM7lwIk1psstC +1C+2dthPu4r6KWB3DIjUJPL8LCA/3r98mCribA1RNI+al/c3sFp6y8gSyVZZ94da +QUs8BBhDxIV4HEXDi8YroXhXIbBzoXik7UKvirNdLe7GF9b7e5MXHgcdgt/11LoQ +tmPh/GpdDRh3fVZzUAP+ffiuAV/Oth1idIikf3zQUBfFiILu2EFUdE2pYlTr7cVG +X627IsSkKg== + + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp-test.nordu.net:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp-test.nordu.net:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp-test.nordu.net/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp-test.nordu.net/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp-test.nordu.net/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-test.nordu.net/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">nordu.net</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDMzCCAhugAwIBAgIUK/CJDYciXdKCAM5YX+fbleBjTtwwDQYJKoZIhvcNAQEF +BQAwHTEbMBkGA1UEAxMSaWRwLXRlc3Qubm9yZHUubmV0MB4XDTExMDExNzA5NDYx +M1oXDTMxMDExNzA5NDYxM1owHTEbMBkGA1UEAxMSaWRwLXRlc3Qubm9yZHUubmV0 +MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuj833/oKEw/VDNC6c41 +6ul6sopfx1+TS1B+3vOdgJ/HzudPYiDYvglz5lvgOd0+92QOS6LnCbdyAoEvWiKf +kEViH0XC2LkvhFu8BYmh7Rh9DssKZ7AbrXcJo5+urIKGMWYFfqzGdp7GKv3U+ITd +fhrhZS/SjsvGdQ1yVKoUm9AFT9z3r6+niZNkeFQAMRvC+FwnZvK/tdcNLZV5F45F +Y49oZwYMyxEGXc6cFP/d2KR541lzgTZdBmC45BFUkJCJveY4eLMPjvEW7qVR12Kv +uZ4UnbeCrtx3tgWZ0FAxcDQVf3T6k1zZZ9kT3nv5PhUfU76KGyMvYUd+lj7b0hHZ +2wIDAQABo2swaTBIBgNVHREEQTA/ghJpZHAtdGVzdC5ub3JkdS5uZXSGKWh0dHBz +Oi8vaWRwLXRlc3Qubm9yZHUubmV0L2lkcC9zaGliYm9sZXRoMB0GA1UdDgQWBBSo +DnKUiN8jojDRtVlU41cQ0oBgQjANBgkqhkiG9w0BAQUFAAOCAQEAavxQqlYcjCJ8 +5thupV6Uxs/drD6HGAskxdhivQESF0y2LlVxiItFnuxjEnzse7QQTQJJFw3xKfFP +VEoxPMv+eBAU5ltYvLx6072BMdeqld9m0oE+k0lKrVkBQ2zgKv9kM7lwIk1psstC +1C+2dthPu4r6KWB3DIjUJPL8LCA/3r98mCribA1RNI+al/c3sFp6y8gSyVZZ94da +QUs8BBhDxIV4HEXDi8YroXhXIbBzoXik7UKvirNdLe7GF9b7e5MXHgcdgt/11LoQ +tmPh/GpdDRh3fVZzUAP+ffiuAV/Oth1idIikf3zQUBfFiILu2EFUdE2pYlTr7cVG +X627IsSkKg== + + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp-test.nordu.net:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp-test.nordu.net:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">NORDUnetTEST</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">NORDUnet Test IdP</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">NORDUnet Test IdP</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.nordu.net</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:Company>NORDUnet NOC</md:Company> + <md:EmailAddress>mailto:noc@nordu.net</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp-test.nordu.net-simplesaml-saml2-idp-metadata.php.xml b/swamid-testing/idp-test.nordu.net-simplesaml-saml2-idp-metadata.php.xml new file mode 100644 index 00000000..7260b357 --- /dev/null +++ b/swamid-testing/idp-test.nordu.net-simplesaml-saml2-idp-metadata.php.xml @@ -0,0 +1,32 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp-test.nordu.net/simplesaml/saml2/idp/metadata.php"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-10-10T15:43:06Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp-test.nordu.net/simplesaml/saml2/idp/metadata.php"> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-test.nordu.net/simplesaml/saml2/idp/SingleLogoutService.php"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-test.nordu.net/simplesaml/saml2/idp/SSOService.php"/> + </md:IDPSSODescriptor> + <md:ContactPerson contactType="technical"> + <md:GivenName>SUNET</md:GivenName> + <md:SurName>NOC</md:SurName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp-test.suni.se-adfs-services-trust.xml b/swamid-testing/idp-test.suni.se-adfs-services-trust.xml new file mode 100644 index 00000000..9c43c611 --- /dev/null +++ b/swamid-testing/idp-test.suni.se-adfs-services-trust.xml @@ -0,0 +1,140 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://idp-test.suni.se/adfs/services/trust"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2015-04-21T13:14:48Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=http://idp-test.suni.se/adfs/services/trust"> + <md:Extensions> + <shibmd:Scope regexp="false">suni.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Södertörns högskola - test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Södertörn University - test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Test-IDP för Södertörns högskola.(Endast för testverksamhet)</mdui:Description> + <mdui:Description xml:lang="en">Test-IDP for Södertörn University.(For Testing purposes only)</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://www.sh.se/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://www.sh.se/english/sodertorn-university</mdui:InformationURL> + <mdui:Logo xml:lang="en" height="118" width="604">https://www.sh.se/webdav/files/System/resources/graphics/logo-SH.svg</mdui:Logo> + <mdui:Logo xml:lang="sv" height="108" width="604">https://www.sh.se/webdav/files/System/resources/graphics/logo-SH.svg</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.sh.se/om-oss/strategier-och-ekonomi/behandling-av-personuppgifter</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.sh.se/english/sodertorn-university/meet-sodertorn-university/strategies/personal-data-processing</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIFLTCCAxWgAwIBAgIQMd+/oVIasoFIXXKFlVUOKjANBgkqhkiG9w0BAQsFADAb +MRkwFwYDVQQDDBBpZHAtdGVzdC5zdW5pLnNlMB4XDTIyMDkyMTEyMjQyOFoXDTI3 +MDkyMTEyMzQyN1owGzEZMBcGA1UEAwwQaWRwLXRlc3Quc3VuaS5zZTCCAiIwDQYJ +KoZIhvcNAQEBBQADggIPADCCAgoCggIBAM40M7yKD+2dJTgpfwxHawn4vUxr/4CO +uEh+GJcqEdpOsjYgYt1Aatscm/A7EJCaKpkVrJ4+NYf9xvYnXx4nTcMSJFaLsOp4 +Fs6ZDmlymM2TF4yRLG+vcDWcb65GXzEerbiMmit3srb5YmXLGV1+3gRU6E8LBfFT +QXJbRSWG9e/Lxbd3Mkc8lMyc7kRRaUE+B2Su6/9VgiyFNbAHozqDTffIgw4gLehm +YJE4PRbRdoFX8URHvNmL0BajFgKPZRasMSUNxdo05htq3g/K47KuabZueA+e5agu +xZ9iPqH7rmjzVM1O3NWgYEQQffJseuubYufhDKZnaNDQmypotpv9mlViHXYU+Ni7 +Kn5WzaklBBrgdMhaCh+m2BKIX8kXo5vZrvVjCk0emjPbPMxYN6ZmDucNnUA04ljx +/nI7zzjvOf4g1LPFP6/1IPgfq4DSbLUbIh1evWu/Jw6qjNJl6JsDGA2NExwCK46/ +buof+ZyHk2HObslz6jVzAuMy2IL80eKbP1Y8cLj28Mh5NUytCA2GE9OwsdAuEW2c +7iGyToTDjj7BL8z4/Po1l/ujRDCEtkrwMWEfFogkC3ZjzgsCTR5jUolHo9Mv863v +0cGoyHiXATe62vtFS69fQMMWYBHu8njg25FkmagT/1nRDPRuxPAZZtUSnWa938vq +kgwN+BT2ZXt1AgMBAAGjbTBrMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr +BgEFBQcDAgYIKwYBBQUHAwEwGwYDVR0RBBQwEoIQaWRwLXRlc3Quc3VuaS5zZTAd +BgNVHQ4EFgQUyYjKdU9a4at+bWVcjL9fClBJ+dwwDQYJKoZIhvcNAQELBQADggIB +AMpaw0oh9x6EX5MQ3zd2BQ61LGYjfKAAQYcu3DW7DyuJkl7C8+lZofsvYqu0osmv +h0ul0AxWXRML9MRBEGHhCb/ecCjPeDzPGZvKVhkPOkthCc0FvfYDCHUj8dmEl5cY +KRGPmaPyH4wxSC/aZBLaipamR7WpXuHS+RDCnZfRcwlfmnsoKMKtiEdddbNvzY39 +NT4Q79FBFSJu2kR4Zb9dKfKQYHfw+inEExzs6epIaKUqoOSrQHSEM+JcI1VdGKnY +4KeaWe2gT3+Fjhqpkw9roU604bzsutRqkAk8shkzJ7lY+oJ3mTqCZqR0KCZ7TqNW +JDw2G7pBIU8efocE1tPWj/IxgmjFiekLjUkE19kSMIyfQhqyXWlcYwMdvXjImanu +NMm4USD+gquWk0OtlQzFwSemhYb6nHzGbWpBla4Zh73r3ov5XangVD9pn0FlZrtJ +hsTg3r9CHiII8FkNq3+qZCnAOSuNjr8ScQ6nTAb9bh8Ke1+Qn8QyLTvFq7QABvab +lgv5ve2lkH5TUfKHetfo31NIysJLf0ZItFdACrQbpu9g5cgacBxfpOUX10lrMATA +seQZuFiSS51oQ7fty7CcY6DQ5/6LSBV26589+wk8VBKV63giwjyyAlknrMR0moQk +VrFRnL6s6WXvC4dWzAggSoEp53xrRU2NaFzuHsRXD8Gj</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIFLTCCAxWgAwIBAgIQMd+/oVIasoFIXXKFlVUOKjANBgkqhkiG9w0BAQsFADAb +MRkwFwYDVQQDDBBpZHAtdGVzdC5zdW5pLnNlMB4XDTIyMDkyMTEyMjQyOFoXDTI3 +MDkyMTEyMzQyN1owGzEZMBcGA1UEAwwQaWRwLXRlc3Quc3VuaS5zZTCCAiIwDQYJ +KoZIhvcNAQEBBQADggIPADCCAgoCggIBAM40M7yKD+2dJTgpfwxHawn4vUxr/4CO +uEh+GJcqEdpOsjYgYt1Aatscm/A7EJCaKpkVrJ4+NYf9xvYnXx4nTcMSJFaLsOp4 +Fs6ZDmlymM2TF4yRLG+vcDWcb65GXzEerbiMmit3srb5YmXLGV1+3gRU6E8LBfFT +QXJbRSWG9e/Lxbd3Mkc8lMyc7kRRaUE+B2Su6/9VgiyFNbAHozqDTffIgw4gLehm +YJE4PRbRdoFX8URHvNmL0BajFgKPZRasMSUNxdo05htq3g/K47KuabZueA+e5agu +xZ9iPqH7rmjzVM1O3NWgYEQQffJseuubYufhDKZnaNDQmypotpv9mlViHXYU+Ni7 +Kn5WzaklBBrgdMhaCh+m2BKIX8kXo5vZrvVjCk0emjPbPMxYN6ZmDucNnUA04ljx +/nI7zzjvOf4g1LPFP6/1IPgfq4DSbLUbIh1evWu/Jw6qjNJl6JsDGA2NExwCK46/ +buof+ZyHk2HObslz6jVzAuMy2IL80eKbP1Y8cLj28Mh5NUytCA2GE9OwsdAuEW2c +7iGyToTDjj7BL8z4/Po1l/ujRDCEtkrwMWEfFogkC3ZjzgsCTR5jUolHo9Mv863v +0cGoyHiXATe62vtFS69fQMMWYBHu8njg25FkmagT/1nRDPRuxPAZZtUSnWa938vq +kgwN+BT2ZXt1AgMBAAGjbTBrMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr +BgEFBQcDAgYIKwYBBQUHAwEwGwYDVR0RBBQwEoIQaWRwLXRlc3Quc3VuaS5zZTAd +BgNVHQ4EFgQUyYjKdU9a4at+bWVcjL9fClBJ+dwwDQYJKoZIhvcNAQELBQADggIB +AMpaw0oh9x6EX5MQ3zd2BQ61LGYjfKAAQYcu3DW7DyuJkl7C8+lZofsvYqu0osmv +h0ul0AxWXRML9MRBEGHhCb/ecCjPeDzPGZvKVhkPOkthCc0FvfYDCHUj8dmEl5cY +KRGPmaPyH4wxSC/aZBLaipamR7WpXuHS+RDCnZfRcwlfmnsoKMKtiEdddbNvzY39 +NT4Q79FBFSJu2kR4Zb9dKfKQYHfw+inEExzs6epIaKUqoOSrQHSEM+JcI1VdGKnY +4KeaWe2gT3+Fjhqpkw9roU604bzsutRqkAk8shkzJ7lY+oJ3mTqCZqR0KCZ7TqNW +JDw2G7pBIU8efocE1tPWj/IxgmjFiekLjUkE19kSMIyfQhqyXWlcYwMdvXjImanu +NMm4USD+gquWk0OtlQzFwSemhYb6nHzGbWpBla4Zh73r3ov5XangVD9pn0FlZrtJ +hsTg3r9CHiII8FkNq3+qZCnAOSuNjr8ScQ6nTAb9bh8Ke1+Qn8QyLTvFq7QABvab +lgv5ve2lkH5TUfKHetfo31NIysJLf0ZItFdACrQbpu9g5cgacBxfpOUX10lrMATA +seQZuFiSS51oQ7fty7CcY6DQ5/6LSBV26589+wk8VBKV63giwjyyAlknrMR0moQk +VrFRnL6s6WXvC4dWzAggSoEp53xrRU2NaFzuHsRXD8Gj</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp-test.suni.se/adfs/services/trust/artifactresolution" index="0"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-test.suni.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp-test.suni.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp-test.suni.se/adfs/ls/"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp-test.suni.se/adfs/ls/"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Södertörns högskola</md:OrganizationName> + <md:OrganizationName xml:lang="en">Södertörn Universsity</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Södertörns högskola</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Södertörn Universsity</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.sh.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">https://www.sh.se/english/sodertorn-university</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:GivenName>Tomas</md:GivenName> + <md:SurName>Legat</md:SurName> + <md:EmailAddress>mailto:server@sh.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Södertörns högskola</md:Company> + <md:EmailAddress>mailto:server@sh.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:GivenName>Tomas</md:GivenName> + <md:SurName>Legat</md:SurName> + <md:EmailAddress>mailto:server@sh.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>Södertörns högskola</md:Company> + <md:GivenName>Alvaro</md:GivenName> + <md:SurName>Acevedo</md:SurName> + <md:EmailAddress>mailto:server@sh.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp.dev.eduid.se-idp.xml.xml b/swamid-testing/idp.dev.eduid.se-idp.xml.xml new file mode 100644 index 00000000..98abd4c9 --- /dev/null +++ b/swamid-testing/idp.dev.eduid.se-idp.xml.xml @@ -0,0 +1,102 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp.dev.eduid.se/idp.xml"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-04-17T16:03:07Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al3</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa-hi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor WantAuthnRequestsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://dev.eduid.se/errors?code=ERRORURL_CODE&ts=ERRORURL_TS&rp=ERRORURL_RP&tid=ERRORURL_TID&ctx=ERRORURL_CTX"> + <md:Extensions> + <shibmd:Scope regexp="false">eduid.se</shibmd:Scope> + <shibmd:Scope regexp="false">dev.eduid.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDgDCCAjigAwIBAgIEUrLhgjANBgkqhkiG9w0BAQsFADAxMQswCQYDVQQGEwJT +RTEiMCAGA1UEAxMZZGV2LTIwMTMxMjE5LmlkcC5lZHVpZC5zZTAeFw0xMzEyMTkx +MjA3MzJaFw0xNjEyMTgxMjA3NDRaMDExCzAJBgNVBAYTAlNFMSIwIAYDVQQDExlk +ZXYtMjAxMzEyMTkuaWRwLmVkdWlkLnNlMIIBUjANBgkqhkiG9w0BAQEFAAOCAT8A +MIIBOgKCATEA1f/fv5GSVkRNkPj1xVshkDlVaVTSeofLjJeFK820uVMaZagUsn8T +mML2YdH8CyLEAZgeU8V/oF2P1SFieG1Ex3lBflLGWw/7pQqe08tjfTkeJthntJJR +W2gCa4I0v1bsJS02U7pVizDv4/3zIo1EpAHrmu7NOs9ybCHA0RnrdQk6aHppe6nz +571Cz3F6zlp9sc4X3Dbf1sVtXHSArUjOh3bgjQnvOAAirJqSYzZgav54WwLzcsas +JMEwLnRSiyRxXm0dnuqhsM7xlJM/G7X35zhBQFwxUKJ33b1xu9PPFfoqIH/NjoPU +gj15jTxvXQam0DvkHMFQvn87bfrtdW187ENZ2lPBYw/yFfF2Mffh0xYKlemJ7LEs +Y1FMJStI+7vKEq9DHGedUfufhFEZNtJW0wIDAQABo0AwPjAMBgNVHRMBAf8EAjAA +MA8GA1UdDwEB/wQFAwMHoAAwHQYDVR0OBBYEFPM+gGbOGyvozZ3L44342h8VTKCN +MA0GCSqGSIb3DQEBCwUAA4IBMQBlBpfl/507hO/upCjKsmtKL7SMufq/kGXb1VB8 +gFiBHgH96woVz/AwHRAVfdrKsQxriXFnOAlgnSAgUtfOmrO8t2mDJ3nxVLW/eKfz +ZfrQCTLxcZpQnzmYlNCyFepjbpb0E9I2wkUeY4DvdzzMlQFwxjSDWa2NPc5UiXAe +EswKK3kEA0luYKv2EN6oiylL5fYP5yx5Hdb22hrUW/Wel2pEGxLK2+Z7vzz87irI +g/7m8/uxxFfPciT39R2t/lZu21ZxnL0zafvT8/NT7ZvSdn/uvZyhETtg4TqL02QZ +xkPaPHxjjBMdLtLPmmHXVgaYczQFoO8GrxfsR+gkCEu4mbVn5rhFxl/r/OrwxacI +hJCVd8ooEGRINTG+TBMufZC9UxoIdxjQRwrevhXTQAkfWT2+ +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDgDCCAjigAwIBAgIEUrLhgjANBgkqhkiG9w0BAQsFADAxMQswCQYDVQQGEwJT +RTEiMCAGA1UEAxMZZGV2LTIwMTMxMjE5LmlkcC5lZHVpZC5zZTAeFw0xMzEyMTkx +MjA3MzJaFw0xNjEyMTgxMjA3NDRaMDExCzAJBgNVBAYTAlNFMSIwIAYDVQQDExlk +ZXYtMjAxMzEyMTkuaWRwLmVkdWlkLnNlMIIBUjANBgkqhkiG9w0BAQEFAAOCAT8A +MIIBOgKCATEA1f/fv5GSVkRNkPj1xVshkDlVaVTSeofLjJeFK820uVMaZagUsn8T +mML2YdH8CyLEAZgeU8V/oF2P1SFieG1Ex3lBflLGWw/7pQqe08tjfTkeJthntJJR +W2gCa4I0v1bsJS02U7pVizDv4/3zIo1EpAHrmu7NOs9ybCHA0RnrdQk6aHppe6nz +571Cz3F6zlp9sc4X3Dbf1sVtXHSArUjOh3bgjQnvOAAirJqSYzZgav54WwLzcsas +JMEwLnRSiyRxXm0dnuqhsM7xlJM/G7X35zhBQFwxUKJ33b1xu9PPFfoqIH/NjoPU +gj15jTxvXQam0DvkHMFQvn87bfrtdW187ENZ2lPBYw/yFfF2Mffh0xYKlemJ7LEs +Y1FMJStI+7vKEq9DHGedUfufhFEZNtJW0wIDAQABo0AwPjAMBgNVHRMBAf8EAjAA +MA8GA1UdDwEB/wQFAwMHoAAwHQYDVR0OBBYEFPM+gGbOGyvozZ3L44342h8VTKCN +MA0GCSqGSIb3DQEBCwUAA4IBMQBlBpfl/507hO/upCjKsmtKL7SMufq/kGXb1VB8 +gFiBHgH96woVz/AwHRAVfdrKsQxriXFnOAlgnSAgUtfOmrO8t2mDJ3nxVLW/eKfz +ZfrQCTLxcZpQnzmYlNCyFepjbpb0E9I2wkUeY4DvdzzMlQFwxjSDWa2NPc5UiXAe +EswKK3kEA0luYKv2EN6oiylL5fYP5yx5Hdb22hrUW/Wel2pEGxLK2+Z7vzz87irI +g/7m8/uxxFfPciT39R2t/lZu21ZxnL0zafvT8/NT7ZvSdn/uvZyhETtg4TqL02QZ +xkPaPHxjjBMdLtLPmmHXVgaYczQFoO8GrxfsR+gkCEu4mbVn5rhFxl/r/OrwxacI +hJCVd8ooEGRINTG+TBMufZC9UxoIdxjQRwrevhXTQAkfWT2+ +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.dev.eduid.se/slo/soap"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.dev.eduid.se/slo/post"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.dev.eduid.se/slo/redirect"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.dev.eduid.se/sso/redirect"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.dev.eduid.se/sso/post"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://idp.dev.eduid.se/sso/art"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">eduID DEV TEST</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">eduID DEV TEST</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.eduid.se/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:GivenName>eduID</md:GivenName> + <md:SurName>developers</md:SurName> + <md:EmailAddress>mailto:eduid-dev@SEGATE.SUNET.SE</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>Support</md:GivenName> + <md:EmailAddress>mailto:feedback+swamidtesting@eduid.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp.test.antagning.se-aws-idp.xml b/swamid-testing/idp.test.antagning.se-aws-idp.xml new file mode 100644 index 00000000..69c68b16 --- /dev/null +++ b/swamid-testing/idp.test.antagning.se-aws-idp.xml @@ -0,0 +1,101 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp.test.antagning.se/aws-idp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-04-10T09:25:41Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp.test.antagning.se/aws-idp"> + <md:Extensions> + <shibmd:Scope regexp="false">antagning.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Antagning.se - Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Universityadmissions.se - Test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Identity Provider för sökande med konto i NyA-systemet.</mdui:Description> + <mdui:Description xml:lang="en">The Identity Provider for students with account in the NyA-system.</mdui:Description> + <mdui:Keywords xml:lang="sv">antagning.se universityadmissions.se</mdui:Keywords> + <mdui:Keywords xml:lang="en">antagning.se universityadmissions.se</mdui:Keywords> + <mdui:InformationURL xml:lang="en">https://universityadmissions.se/en/about-this-website/swamid-service-definition/</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">https://antagning.se/sv/om-antagning.se/swamid-service-definition/</mdui:InformationURL> + <mdui:Logo xml:lang="en" height="52" width="205">https://www.test.universityadmissions.se/images/logo/university-admisssions.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="52" width="195">https://www.test.antagning.se/images/logo/antagning_se.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="en">https://universityadmissions.se/en/about-this-website/swamid-service-provider-policy/</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://antagning.se/sv/om-antagning.se/swamid-service-provider-privacy-policy/</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> 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 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.test.antagning.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.test.antagning.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.test.antagning.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.test.antagning.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.test.antagning.se/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.test.antagning.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">antagning.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIFEDCCAvigAwIBAgIJAINH1nM/OMFgMA0GCSqGSIb3DQEBCwUAMCAxHjAcBgNVBAMMFWlkcC50ZXN0LmFudGFnbmluZy5zZTAeFw0yMjA2MDgwOTQ5MzRaFw0zMjA2MDUwOTQ5MzRaMCAxHjAcBgNVBAMMFWlkcC50ZXN0LmFudGFnbmluZy5zZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMb11JbuqNZCVhpKMQf8LlGKEtiJuAU9+RNzkAvuQuwTb2XCgGeRvYcVhQM2NwOU2ogkf6FepUN+1nqyzMKWo5v81QR58f1NGTwLNMxo0C3GjzpvCHy1fYdpLP7PfR/QwDA7T7CdSe1L/91ru2OIHJRSyMrwEUvLvr5bloDTTq+ov1ZcUJ/4rv+vxefRviNGcEToRXBigY56SVK0ybjiMYsbw0O6i7IQp2D3TaQICe4cGsPGE18hBTNc2oFDIrwB6iIiT4uvamH/g6rc62Kcu8c/6lBqoda+nTLIDZw/l+hE2V/YHiq/OPRQOUh1HvSl1eSp49EVaG6SRnOTugcLF29Fg14NPjDVTGZHcPPtSdjNSV6aRrIvDyBQxcx7zICv1KTFv+uvVdJotW9Wyl7EQvObPI6yi1E1BGOeANQG7QJR7zqljfPGKs2og2729pXKTXyo+4+oldErh1vNPGPT4fxCyLUd9ZRGwingrAcRY0OB6vMCILyhaoKDCYJ5ovaiza69hQj1quhTT2GiuQL3jEmeQhHRuFjy4QUF8np/Q6f/DIHqwi+ZE/DLNCb40bpnh0NdgJkDm+PAU0yE+R+EQA4l7pMYtYqDg3KZYYA6zLy4+zvaa6bxwD3iK0WNEfUdqeXVzeoljP/2VeGICR4Y5z+/FpMm/tRJyCXyM+22+sNzAgMBAAGjTTBLMB0GA1UdDgQWBBS10u7lvxpbq8QoN8qeIZFcGWWPpTAfBgNVHSMEGDAWgBS10u7lvxpbq8QoN8qeIZFcGWWPpTAJBgNVHRMEAjAAMA0GCSqGSIb3DQEBCwUAA4ICAQAMVuQoX1mJFKGZNRJhS+ssQxd4N4m3dF1GE+JBx4Rs+n6C51YjyfCiI33bsqRAP3AP6Ntu0MctW0l3NDbcIHSBXFayxGPLrv5AnLNAUzJkthVF3m2svam1XxS1xiVEElkkzZhoP4ZU/vtsOucNzq8R0zVVfv7imc191GFKbPuxjRdckUHJlMQW+n6PCFCzLLIt/3qLn1kHTbfQ9fi50mGau7kBdgxmvl9NCscdHJEK4Uncu1IZe87suIYzaXavBLxr6cnm11vRPMnSsX6T6nP/Hu2eMNt0lccjIGlknCWIvoWcyLviaaKy/gEQH5V5uDHt6Oj7HznfnWY1Nvm0coz26Ne0uSTnV10o7rX0brn2nqd+mYAiFAevoM0GguIlX8YkiWRYOE1rSv2TLZIainjZnMQdniv0dZFtU+VHj6Fo+MjxigyWdgngiN95tl2rXxW/bPGyiQaOCahRcSixP/OMC53PpdJyYeyFxlyLTBB6xyZK5MSHqwOBPB1+5Oj+G3XgOt0Vrp+AlA5XieuJNrGpL98HbIrSMJpNLjGzsCS9m3Uhqw0r5/c04y4AB4gD2kCUNjZctXCbm0d4L5dTAEpYGCW6igYlGcaSzwPHHMGEXQWnt6JpepNLpqA5ICnkt7j+ZGqYEcR+XOqFV47+79TuxM1V8Y3jJRxbORpw1VKQ1w== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.test.antagning.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.test.antagning.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">The Swedish Council for Higher Education</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Universitets- och högskolerådet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Antagning.se - Test</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Universityadmissions.se - Test</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.uhr.se/en/start/</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://www.uhr.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Universityadmissions.se</md:Company> + <md:SurName>UHR Systemdrift</md:SurName> + <md:EmailAddress>mailto:appldrift_saml@uhr.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Universityadmissions.se</md:Company> + <md:SurName>UHR Systemdrift</md:SurName> + <md:EmailAddress>mailto:appldrift_saml@uhr.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Universityadmissions.se</md:Company> + <md:SurName>UHR Systemdrift</md:SurName> + <md:EmailAddress>mailto:appldrift_saml@uhr.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>Universityadmissions.se</md:Company> + <md:GivenName>UHR Systemdrift</md:GivenName> + <md:SurName>UHR Systemdrift</md:SurName> + <md:EmailAddress>mailto:appldrift_saml@uhr.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp.test.sunet.se-idp.xml b/swamid-testing/idp.test.sunet.se-idp.xml new file mode 100644 index 00000000..73b0b2bf --- /dev/null +++ b/swamid-testing/idp.test.sunet.se-idp.xml @@ -0,0 +1,107 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp.test.sunet.se/idp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-05-12T13:53:47Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#md5"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#ripemd160"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-md5"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + </md:Extensions> + <md:IDPSSODescriptor WantAuthnRequestsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp.test.sunet.se/idp"> + <md:Extensions> + <shibmd:Scope regexp="false">sunet.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">SUNET - Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">SUNET - Test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Inloggning för anställda på SUNET - Test</mdui:Description> + <mdui:Description xml:lang="en">Login for SUNET employees - Test</mdui:Description> + <mdui:Logo xml:lang="sv" height="205" width="256">https://static.sunet.se/images/sunet256.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="205" width="256">https://static.sunet.se/images/sunet256.png</mdui:Logo> + <mdui:InformationURL xml:lang="sv">https://wiki.sunet.se/display/info/Sunet+Identity+Provider+Service+Definition+and+Privacy+Policy?showLanguage=sv_SE</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://wiki.sunet.se/display/info/Sunet+Identity+Provider+Service+Definition+and+Privacy+Policy?showLanguage=en_GB</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/info/Sunet+Identity+Provider+Service+Definition+and+Privacy+Policy?showLanguage=en_GB</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/info/Sunet+Identity+Provider+Service+Definition+and+Privacy+Policy?showLanguage=sv_SE</mdui:PrivacyStatementURL> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>sunet.se</mdui:DomainHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIFFTCCAv2gAwIBAgIUYEql9KeORzO2MWunOhj+TpEjff8wDQYJKoZIhvcNAQEL +BQAwGjEYMBYGA1UEAwwPc2F0b3NhX2Zyb250ZW5kMB4XDTIwMDUwNTA5MDQwOVoX +DTMwMDUwMzA5MDQwOVowGjEYMBYGA1UEAwwPc2F0b3NhX2Zyb250ZW5kMIICIjAN +BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuO4LF9D+pTsI21yr4j91KEHa8P/N +5cDjpxziteWXYt/RZtj1wIg1TjvcJF64LJ0qvkeyxpEjHSH0EkN2iRhWplw+5otI +rWWJfz7k7uoD6z9vGgfEx6c4chOYqTioHz9kO4Extet+8xfO4lK5jC8x3hqEtXc1 +k0FUhHLNvaSnF+n8/nAMXZFROrs11y836oOefXYcenzQmQINsD/N/yVQWExJTujG +KbBAZuWlYixChxEcB5a8fiTJjqBG36IvD5vtUL00BbAxkrewbSQqTRYph5gNCiaL +2u3a0NCvecyHLPlNj+St4MuRZPVcT2R6j1Mdi00Gu24kEDF8+0FwBhASOPMNeTme +weaCcTfP/nLqfUzq/GoQZd0Z+mA0Q3avcOg6OEDp5XH+WdbNnYftUYJzVMJdEI3/ +KfQ+VoQY+mYhAAMmiz+05QvQhGE6WxvW1Yzzqkzro9+5+A21+VrWfvGURGas/p/o +cuCojZSpsyBrD/7MbJYIbbNwP4TMzgGXjjfFnRdimsx4lS3q/GgmdRmLsMKotTu0 +ul3b9+/UzPrPAAjhRKbHcYiXh5TqfI/PEvCowiW4Uh0dqybIl56LUcFqi6ZY9hIE +vdEaNB0M+tTKo+Oe0I8MhtTKJNZcVqU1tKjAuVgpCUGdfPiUbzbO8i5aM1Wv2daw +xVHubi/2wFWaex0CAwEAAaNTMFEwHQYDVR0OBBYEFK4Thns8RC8LpZgpl8smURWo +oRZUMB8GA1UdIwQYMBaAFK4Thns8RC8LpZgpl8smURWooRZUMA8GA1UdEwEB/wQF +MAMBAf8wDQYJKoZIhvcNAQELBQADggIBAGfxgX2yfoD7Z45G4OSqRVSKPRBqmNPc +W0+KR+o4a5DlbvRIMbELu2YWbxbrOV3i2OBxTCUqQxIbw67gEIlhyBYhgre5f+qh +Mc/A5lZs+xhgIWgWb9ZuzyP9MDCUIhL6yx6FI0jKI4+lzRMPSWk2azmeWSFKE23M +jZL/0xqOnsXsBS2AP76mHsedZzXot9L2P5MIQgWuilBs8IVjKIsNndddtzqNanH/ +PSMHNvSmN5Df5rw90qkI7qnPAM996Oblyn/0k32AqWExApMWa8ZD5uUjCNw61enX +nSgDSMfFiltEQk9P+wESQN2JWqe8d7O9LqUhtHL4ljndbM1El+AQ8w9I3f6R/aUz +awAwRJStuCRJvXL/9Civ/x0nKNfxrQOmAjLtK3fA9kJmuxQemenpT5CC1g5klutK +04J0B5PyfHCoQuYs2NcvQ3NI9ozfssYmXplVAe0w4PwH2vvHH++4PpWDmTmiy86Q +dlp8PDkRRctKbUu4ojK9mvYr7XfXY3UMVhLHorFfUEv7TEzN7OnAQC9AxFmAoQj0 +z22R0TQfg2nJKac4/rZ3Ri6IJtD9maIHeL3XikGrVe/9el8wXCVVOXsb6e+aJltj +LVuQ6hWxdLht5ODuYILdfwPWFpdhTalVF4JgxqgpwMmAv7f4UHu6ukFQcq1jX+eI +w1/klZ0omp5S +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.test.sunet.se/Saml2SP/sso/post"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.test.sunet.se/Saml2SP/sso/redirect"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">The Swedish Research Council</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Vetenskapsrådet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Sunet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Sunet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://sunet.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://sunet.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:GivenName>Technical</md:GivenName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>Support</md:GivenName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:GivenName>SUNET NOC</md:GivenName> + <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp.uhr.se-idp-shibboleth.xml b/swamid-testing/idp.uhr.se-idp-shibboleth.xml new file mode 100644 index 00000000..6e7b103f --- /dev/null +++ b/swamid-testing/idp.uhr.se-idp-shibboleth.xml @@ -0,0 +1,186 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp.uhr.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-03-14T13:55:24Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp.uhr.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">uhr.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">UHR's IDP</mdui:DisplayName> + <mdui:Description xml:lang="en">Identityprovider for UHR</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDEzCCAfugAwIBAgIUQA1fEvobeB0k7/9iU1scJLuj8bgwDQYJKoZIhvcNAQEL +BQAwFTETMBEGA1UEAwwKaWRwLnVoci5zZTAeFw0xNjAzMTMwNjEzNDhaFw0zNjAz +MTMwNjEzNDhaMBUxEzARBgNVBAMMCmlkcC51aHIuc2UwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQC5UJfJ8igHrENbdVYXCnU7yDb0hilzUW/iuZ9+8sj+ +GhtbREGNan0lCf5hEn+ZI7oNL6G9zhwdQxVrSuatcBDd63DHrk+pr7EX0b6x3qba +4N3URVdmDcHz3ot+tdd3uxqofDGep/beUpureqW2AscRspLImvgy4lfEkqA7pKuB +3NQvNDhPjiRIYo2gcQVmEI4uDTiJW9/YlXW8SYZO4Q5vHnJ2gItkD+5iGPRxul27 +uGaHeEjFov3e5b17NiqX4naZ7dYWPOK0KvBeHbY83pZqVzh/Dav3piXVkrJC+/MM +1W/j1S0nO1J+vTKFYXD41u5b5+VhNCUKkT8Tb95l+5d9AgMBAAGjWzBZMB0GA1Ud +DgQWBBSKLIlyhvxhCYq4b/P2OGh2Ad1YcjA4BgNVHREEMTAvggppZHAudWhyLnNl +hiFodHRwczovL2lkcC51aHIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQEL +BQADggEBAKCFa0xcFkZZE+YXVGiRQ78Npu0fISmo3mJIQNfvX1f47kM3veRPX6c6 +kz+yCxdBmsFrzS6GZMASUS8HRApumTzbao/2EPXZIX1a6Fli/TRXhBjSKX3BQYv/ +qLXYfwDCHTXzxAXmSInEWrAeGsfWkznub7dJBL6gyVwocrgWIdf5NHujkuYCl6X+ +UxtRYjrGjs1FzAJS8b+mlaLELIKBmRMLdknZ/IhTExjiuvhIXnQdgcHRbcyKURQx +fEHqr/LXLAx+9GIvQxcC84F2Wq8+iPCERg0b23gjzPT00sKlHkvEPaft5//b1jcd +jh6Yq3qCCn2Yb+cFUDJT72VDJ7NoDRg= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDEzCCAfugAwIBAgIUK85xuzAU41ZIbKm/LJP7YzIXD/gwDQYJKoZIhvcNAQEL +BQAwFTETMBEGA1UEAwwKaWRwLnVoci5zZTAeFw0xNjAzMTMwNjEzNDdaFw0zNjAz +MTMwNjEzNDdaMBUxEzARBgNVBAMMCmlkcC51aHIuc2UwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQCvNbZH0kfcp0xJ8uVIiBjuRTK2gAmcizSa36WHmsuL +7c6wOx3XNjpMRxr5mA3k5u27sW6/lyGaqMdeQNY2CK6j6oL0hWcLAeRkZh8mRgNS +H8+/FDLKn9+r/IQv4qUxHxvfJquLGotAbD9qcSzQmiqBeHtQTNE5k+5ajFH8IA6W +74TEA1cwCH+g1EATRC36PGaDtLkvmXmKShPcKJ9Qg0Mvd252Y3Cm44I/LG0YgKvl +8ubfC1KOHpEglrCZ+qxtO/rmhdlVpeKRoXIpYSbevDL3FwVE3o47dyM+sn2zhwsh +XMuYD8EUlr+1T/gBLmeaHO9QlYXevGdbdDoEbWjHGsODAgMBAAGjWzBZMB0GA1Ud +DgQWBBRXLdPEN0n4SiGCE9vPuD7ixTBQADA4BgNVHREEMTAvggppZHAudWhyLnNl +hiFodHRwczovL2lkcC51aHIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQEL +BQADggEBAAgp4d1TvLdprgUKZj+S/YBwDyQ70Mr54TLrv8FrVCeHRXOw/piEkGAj +Y/GfKbxP5yeQp3UvoYpEFwXEuXbqhX+ejdZRk9fUwQqlsVbUmd1IUauXSvD4qk4S +qpzLqHNEpcwcGvHpv0c/PLMoYfgAB405kna7V+t9LjBgFgdL+QZTDK5SpG2NLnmq +5J49BaZxgxHMcSoDRjeTbli1DlyPCf1QJWzmgJgbi79+SSou0y/1ncirmk7S2dVo +g55hppBxE4Ch23T/kEHh6GraswLGpCOK/kyDyUA1YVrR8wELO7WBmJrxobTtAFWi +jcs6eH7JlXc3P5b44189qTfCgUMntVg= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDEzCCAfugAwIBAgIUCRfcQ0FZIWx4ZsT6g19Z/LZ448MwDQYJKoZIhvcNAQEL +BQAwFTETMBEGA1UEAwwKaWRwLnVoci5zZTAeFw0xNjAzMTMwNjEzNDhaFw0zNjAz +MTMwNjEzNDhaMBUxEzARBgNVBAMMCmlkcC51aHIuc2UwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQCZnBiK6quMGf57WTvpfoRWHpb5GSP6Xwh1QsXqf8Ws +6uRqFFx7AXe09Vn2BU/yPtZO+Rw0Yb3+eNByUYbz7A5ZIG2vn0nSnryPo4Q8NQsp +p+VKWXzatXefK+xhYzOgla+f/kIM+CcpqkypLHBzFX3jXPYM31i1HJHcLzXn4EWX +GWKWYNVMVWM3h7aXOozWran5iGlZa2bB5Q/1Mfx2JWgdKKqmxv8HrnupdjcDjqQ1 +yA1ARH0Mp6MWGBNE9zm/nmNcTxCzHnZiXze2uHH7mH+qc6jWZbYxQ6PEll5FfgMT +DXO4slIx2WYD7cSXLUYrWOfmzNJROOZz7M5p6G21tjzJAgMBAAGjWzBZMB0GA1Ud +DgQWBBQC6Bz+Gh8FN6WyPNNxumKKWHJJ6zA4BgNVHREEMTAvggppZHAudWhyLnNl +hiFodHRwczovL2lkcC51aHIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQEL +BQADggEBAAc/D2iocq5hL7n585M10ola3lyuja91giPXv4vDRAqPN9TznKfPhd2v +2uaWzcyyDVZRXfQbEoqwdm+65ijxSUjEXK8vcD/x4m4OMuBqkY7PAbap1za5dAJQ +uKrjCR95Os2KWDdfuglPz5sh73kQwOKXNG/6fOb7LpW7cd2kBfDFuHLJegmK2H9u +IpYvhjyBB62widywr2u8PXudGhkymB1ZArxaGEKKCbt4804ngM9ImYfop6xt4OwD +ejud16QXqp7rWP7ba6tATI9k3Zngi4hP1bjkRJsmGcBIMQHODb4Xi3dft1uGWBdT +slCO9tT9JJLe1hpBFObZDTDY6/rOkuc= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.uhr.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.uhr.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.uhr.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.uhr.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.uhr.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">uhr.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDEzCCAfugAwIBAgIUQA1fEvobeB0k7/9iU1scJLuj8bgwDQYJKoZIhvcNAQEL +BQAwFTETMBEGA1UEAwwKaWRwLnVoci5zZTAeFw0xNjAzMTMwNjEzNDhaFw0zNjAz +MTMwNjEzNDhaMBUxEzARBgNVBAMMCmlkcC51aHIuc2UwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQC5UJfJ8igHrENbdVYXCnU7yDb0hilzUW/iuZ9+8sj+ +GhtbREGNan0lCf5hEn+ZI7oNL6G9zhwdQxVrSuatcBDd63DHrk+pr7EX0b6x3qba +4N3URVdmDcHz3ot+tdd3uxqofDGep/beUpureqW2AscRspLImvgy4lfEkqA7pKuB +3NQvNDhPjiRIYo2gcQVmEI4uDTiJW9/YlXW8SYZO4Q5vHnJ2gItkD+5iGPRxul27 +uGaHeEjFov3e5b17NiqX4naZ7dYWPOK0KvBeHbY83pZqVzh/Dav3piXVkrJC+/MM +1W/j1S0nO1J+vTKFYXD41u5b5+VhNCUKkT8Tb95l+5d9AgMBAAGjWzBZMB0GA1Ud +DgQWBBSKLIlyhvxhCYq4b/P2OGh2Ad1YcjA4BgNVHREEMTAvggppZHAudWhyLnNl +hiFodHRwczovL2lkcC51aHIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQEL +BQADggEBAKCFa0xcFkZZE+YXVGiRQ78Npu0fISmo3mJIQNfvX1f47kM3veRPX6c6 +kz+yCxdBmsFrzS6GZMASUS8HRApumTzbao/2EPXZIX1a6Fli/TRXhBjSKX3BQYv/ +qLXYfwDCHTXzxAXmSInEWrAeGsfWkznub7dJBL6gyVwocrgWIdf5NHujkuYCl6X+ +UxtRYjrGjs1FzAJS8b+mlaLELIKBmRMLdknZ/IhTExjiuvhIXnQdgcHRbcyKURQx +fEHqr/LXLAx+9GIvQxcC84F2Wq8+iPCERg0b23gjzPT00sKlHkvEPaft5//b1jcd +jh6Yq3qCCn2Yb+cFUDJT72VDJ7NoDRg= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDEzCCAfugAwIBAgIUK85xuzAU41ZIbKm/LJP7YzIXD/gwDQYJKoZIhvcNAQEL +BQAwFTETMBEGA1UEAwwKaWRwLnVoci5zZTAeFw0xNjAzMTMwNjEzNDdaFw0zNjAz +MTMwNjEzNDdaMBUxEzARBgNVBAMMCmlkcC51aHIuc2UwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQCvNbZH0kfcp0xJ8uVIiBjuRTK2gAmcizSa36WHmsuL +7c6wOx3XNjpMRxr5mA3k5u27sW6/lyGaqMdeQNY2CK6j6oL0hWcLAeRkZh8mRgNS +H8+/FDLKn9+r/IQv4qUxHxvfJquLGotAbD9qcSzQmiqBeHtQTNE5k+5ajFH8IA6W +74TEA1cwCH+g1EATRC36PGaDtLkvmXmKShPcKJ9Qg0Mvd252Y3Cm44I/LG0YgKvl +8ubfC1KOHpEglrCZ+qxtO/rmhdlVpeKRoXIpYSbevDL3FwVE3o47dyM+sn2zhwsh +XMuYD8EUlr+1T/gBLmeaHO9QlYXevGdbdDoEbWjHGsODAgMBAAGjWzBZMB0GA1Ud +DgQWBBRXLdPEN0n4SiGCE9vPuD7ixTBQADA4BgNVHREEMTAvggppZHAudWhyLnNl +hiFodHRwczovL2lkcC51aHIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQEL +BQADggEBAAgp4d1TvLdprgUKZj+S/YBwDyQ70Mr54TLrv8FrVCeHRXOw/piEkGAj +Y/GfKbxP5yeQp3UvoYpEFwXEuXbqhX+ejdZRk9fUwQqlsVbUmd1IUauXSvD4qk4S +qpzLqHNEpcwcGvHpv0c/PLMoYfgAB405kna7V+t9LjBgFgdL+QZTDK5SpG2NLnmq +5J49BaZxgxHMcSoDRjeTbli1DlyPCf1QJWzmgJgbi79+SSou0y/1ncirmk7S2dVo +g55hppBxE4Ch23T/kEHh6GraswLGpCOK/kyDyUA1YVrR8wELO7WBmJrxobTtAFWi +jcs6eH7JlXc3P5b44189qTfCgUMntVg= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDEzCCAfugAwIBAgIUCRfcQ0FZIWx4ZsT6g19Z/LZ448MwDQYJKoZIhvcNAQEL +BQAwFTETMBEGA1UEAwwKaWRwLnVoci5zZTAeFw0xNjAzMTMwNjEzNDhaFw0zNjAz +MTMwNjEzNDhaMBUxEzARBgNVBAMMCmlkcC51aHIuc2UwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQCZnBiK6quMGf57WTvpfoRWHpb5GSP6Xwh1QsXqf8Ws +6uRqFFx7AXe09Vn2BU/yPtZO+Rw0Yb3+eNByUYbz7A5ZIG2vn0nSnryPo4Q8NQsp +p+VKWXzatXefK+xhYzOgla+f/kIM+CcpqkypLHBzFX3jXPYM31i1HJHcLzXn4EWX +GWKWYNVMVWM3h7aXOozWran5iGlZa2bB5Q/1Mfx2JWgdKKqmxv8HrnupdjcDjqQ1 +yA1ARH0Mp6MWGBNE9zm/nmNcTxCzHnZiXze2uHH7mH+qc6jWZbYxQ6PEll5FfgMT +DXO4slIx2WYD7cSXLUYrWOfmzNJROOZz7M5p6G21tjzJAgMBAAGjWzBZMB0GA1Ud +DgQWBBQC6Bz+Gh8FN6WyPNNxumKKWHJJ6zA4BgNVHREEMTAvggppZHAudWhyLnNl +hiFodHRwczovL2lkcC51aHIuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQEL +BQADggEBAAc/D2iocq5hL7n585M10ola3lyuja91giPXv4vDRAqPN9TznKfPhd2v +2uaWzcyyDVZRXfQbEoqwdm+65ijxSUjEXK8vcD/x4m4OMuBqkY7PAbap1za5dAJQ +uKrjCR95Os2KWDdfuglPz5sh73kQwOKXNG/6fOb7LpW7cd2kBfDFuHLJegmK2H9u +IpYvhjyBB62widywr2u8PXudGhkymB1ZArxaGEKKCbt4804ngM9ImYfop6xt4OwD +ejud16QXqp7rWP7ba6tATI9k3Zngi4hP1bjkRJsmGcBIMQHODb4Xi3dft1uGWBdT +slCO9tT9JJLe1hpBFObZDTDY6/rOkuc= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.uhr.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/idp02.gih.se-idp-shibboleth.xml b/swamid-testing/idp02.gih.se-idp-shibboleth.xml new file mode 100644 index 00000000..ffc8927c --- /dev/null +++ b/swamid-testing/idp02.gih.se-idp-shibboleth.xml @@ -0,0 +1,214 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp02.gih.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://idp02.gih.se/error/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX"> + <md:Extensions> + <shibmd:Scope regexp="false">gih.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Gymnastik- och idrottshögskolan - Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">The Swedish School of Sport and Health Sciences - Test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Identitetsutgivare för Gymnastik- och Idrottshögskolan - Test</mdui:Description> + <mdui:Description xml:lang="en">Identity Provider for The Swedish School of Sport and Health Sciences - Test</mdui:Description> + <mdui:Logo xml:lang="sv" height="80" width="80">https://idp02.gih.se/idp/images/gihlogo-mdui.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="80" width="80">https://idp02.gih.se/idp/images/gihlogo-mdui.png</mdui:Logo> + <mdui:InformationURL xml:lang="sv">https://www.gih.se/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://www.gih.se/</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.gih.se/OM-GIH/Styrdokument/Forvaltning-styrdokument/</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.gih.se/OM-GIH/Styrdokument/Forvaltning-styrdokument/</mdui:PrivacyStatementURL> + <mdui:Keywords xml:lang="sv">gih gymnastik-+och+idrottshögskolan the+swedish+school+of+sport+and+health+sciences</mdui:Keywords> + <mdui:Keywords xml:lang="en">gih gymnastik-+och+idrottshögskolan the+swedish+school+of+sport+and+health+sciences</mdui:Keywords> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>gih.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:59.3467350,18.0811920</mdui:GeolocationHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHDCCAgSgAwIBAgIVAKtN6+g8qyINNSUdMUj+ETmlrH8pMA0GCSqGSIb3DQEB +CwUAMBcxFTATBgNVBAMMDGlkcDAyLmdpaC5zZTAeFw0yMDExMTkxMTMyMTBaFw0z +MDExMTkxMTMyMTBaMBcxFTATBgNVBAMMDGlkcDAyLmdpaC5zZTCCASIwDQYJKoZI +hvcNAQEBBQADggEPADCCAQoCggEBAIpGBr68QLi3BUV91eCG3U76xIuPwQdwJc3I +0UkWaVUDT3018TmVOpHUftzi7ratKM2/YsSCXjKXAwd55Wrg9b13jZOBOajPumKA +rTQ0j1XrJe3RrNXYV8fW3YGc2r5QkSK9exgZOQMYvrYszB4TRUxGFxtVbQ1bVqDu +TPZw9+q3hZPwg7SXMyJxMqtviA73M8MhfwFhIS6oYiKa4vf3wVEWxRC8x/YOuzCh +h1Yvq3BIzNWxJCimrcZeWe/VJlYnK2XsJ+37R94oPA/UZZWM4W7gZks3o0btJR8r +jihmzfw63uTdiLQuquxti7vf3AfKjmy5CccigFDHN+7RUvtnBvUCAwEAAaNfMF0w +HQYDVR0OBBYEFEsdX6ciDexkMd7P4b2DrjG9EtM+MDwGA1UdEQQ1MDOCDGlkcDAy +LmdpaC5zZYYjaHR0cHM6Ly9pZHAwMi5naWguc2UvaWRwL3NoaWJib2xldGgwDQYJ +KoZIhvcNAQELBQADggEBAFvSriJHkdCy3EJ7W7Xn1guLHf7wMpACeOIv0TRK+TKi +msQNzObMvxFRnAFgmIvuxq/7f6DZ0XGm0VqCcKxmuM7dW9GXtzVzzrtAIds5kFI1 +d3WUWkx8q//v9NGPG4i5KpXZHwR30IuDl5AyrUh0mm1haKWHy9ybm5/y/Yw/OoX1 +BGnFSMWW9V5fwiW1S6E5QqCC/LTPBJR3jIl0pQS/Ik2u2+6hVu/O12U9eaE5ZOCB +pp7OqR+jjunl42YyKK6PYT209nJiW8SmFi+c9qSYmDgPKwlHnA/hYdvy9heTAWYm +HrR00emNkHk9fs7zq95jHw4hSBCKWKhvoL62Xe4m/EE= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHDCCAgSgAwIBAgIVAL7+mBPoPWMeB+fhGyTwStsYI5rrMA0GCSqGSIb3DQEB +CwUAMBcxFTATBgNVBAMMDGlkcDAyLmdpaC5zZTAeFw0yMDExMTkxMTMxNDlaFw0z +MDExMTkxMTMxNDlaMBcxFTATBgNVBAMMDGlkcDAyLmdpaC5zZTCCASIwDQYJKoZI +hvcNAQEBBQADggEPADCCAQoCggEBAK5ldipbAra5FH7zwDzdDHtZWqb64qBIIr7L +Tjrg0tDxP2RGRzYEHuIwf14ce/fkDjTbBidgQTOj3DxnL7Pg/PfkSLsOiL9yPiiC +y3ql3KJ+eB8JipnrtiGlU61D4o8g1kwGSCn+dSWECtPFh8L42++ht3n2YOUeWFn+ ++V/TKtGG3Ng0MfKb434K2eAJ89lkyd7Rwj7IWiCRXfLnuC+Hz5wz/HSR3L4xsIjh +RDmEpsQpjBVsPdq6asuiLNTsuN6qQBQNg1oVjumCH1GD3mDas6oaGwICFnzl1wWW +51A+9i6EHtW2nxtP3pTZZioxUwTzlVwmXVHtPwAixNMvksEqyz0CAwEAAaNfMF0w +HQYDVR0OBBYEFFU9Z4F8VzfJPZnhDM1V0c8bLGWBMDwGA1UdEQQ1MDOCDGlkcDAy +LmdpaC5zZYYjaHR0cHM6Ly9pZHAwMi5naWguc2UvaWRwL3NoaWJib2xldGgwDQYJ +KoZIhvcNAQELBQADggEBAIF/cLOHqzlGE6b3VTi0PDKME9IU/UXayuTPLwXcZC/W +iU8aiaX9Ut2l5seEpQW49n9/llHpMz8U3YKOKqkpdinB4b8dCcYbP9m9rOsuvYBM +ONL0hwFxwl2Ph6WB3U7jbpIt+dwShQzmWLDYMjqMbj5lW0dyq8cVii3w46L4Rgz0 +e7Hcjpzmj8XWf1qt/PotxX9RC6KpztrVAiuECnLo2M32uqYISykOPVW1ojpSG0Yb +/4q9l+xBYxQ8zhXh+WHYK+m2iTYGc3yBaogxoylffp7dm735Y6+e/u7McDJgSuYU +hfPauxBtehyqdj0u5Kh1alBnJrNgsNU1ldLSDXt8fxU= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp02.gih.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp02.gih.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp02.gih.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService xmlns:ns1="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ns1:supportsRequestedAttributes="true" Location="https://idp02.gih.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService xmlns:ns1="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" ns1:supportsRequestedAttributes="true" Location="https://idp02.gih.se/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService xmlns:ns1="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ns1:supportsRequestedAttributes="true" Location="https://idp02.gih.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">gih.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDGzCCAgOgAwIBAgIUfL5eIxaCCsXXEHWoMbWDcuznRdkwDQYJKoZIhvcNAQEL +BQAwFzEVMBMGA1UEAwwMaWRwMDIuZ2loLnNlMB4XDTIwMTExOTExMzA1OFoXDTMw +MTExOTExMzA1OFowFzEVMBMGA1UEAwwMaWRwMDIuZ2loLnNlMIIBIjANBgkqhkiG +9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+HoBNvAQtsXd+fWDPJaB3oZhN4sLRxKxvr2 +6GnH67VmUtzb8LpByJ6P9aW+xbHP/KYZ2waDDM0OwmhFsgT6WMfIwu3JWa+JL0ey +5ttKaP6Z7Dv20UD6ntntVLq9hGf/RDQSlbAtqoYAUMURAbiGQ8W0MK1K1cLCzJNn +51xgvIJ0EFCThoBm29Qz9L85MwLFM/qQm3HLf3VuR7Sm9r1Uehr1XeZbylv1n5Ln +PKThGVqNF3EUWPxY1rJb07MYKyis+IG8jf+8GyXi9hmdBX96znacB3MAZ+VSSxYX +/glQYdukMZZr0UoL5AowT9GkEZ82lBOPngXm9SnDA4tGabe8jQIDAQABo18wXTAd +BgNVHQ4EFgQUmf0NpPd2MGKF4HJmHxXsmDBhVyowPAYDVR0RBDUwM4IMaWRwMDIu +Z2loLnNlhiNodHRwczovL2lkcDAyLmdpaC5zZS9pZHAvc2hpYmJvbGV0aDANBgkq +hkiG9w0BAQsFAAOCAQEARcQYXeG/c5NT1dqlOQEbS5RmuuHo8YeVJqn42J4p7YWK +ePa/fGNyiIa6r5L96S4zf1pBGXQ4waEofvdDr3WC/bUr2y4zpSoGL04z7Kz4JhIn +2vv9sUFxjU+N61NxuSu/nSdoHNNi0+vTLqO0dCn2tsCzCYDOM+8fIzanWT7CCMd1 ++7kzroyXpbQfrsg1gHwkdz6FRhpyy8wYlkQBqNiYw8uI2Enz5DtCIgTdzeY5K6T2 +sq6tAAvkig6Q9YAKsZp2pxchkm8VE3Asn9pkKmmylelMXYrX1JZzfPyaQcY2UPD8 +U+hy+KSevibyVy5OBDk6lia+Yp9JAMYJ9eXkcaI1mg== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHDCCAgSgAwIBAgIVAKtN6+g8qyINNSUdMUj+ETmlrH8pMA0GCSqGSIb3DQEB +CwUAMBcxFTATBgNVBAMMDGlkcDAyLmdpaC5zZTAeFw0yMDExMTkxMTMyMTBaFw0z +MDExMTkxMTMyMTBaMBcxFTATBgNVBAMMDGlkcDAyLmdpaC5zZTCCASIwDQYJKoZI +hvcNAQEBBQADggEPADCCAQoCggEBAIpGBr68QLi3BUV91eCG3U76xIuPwQdwJc3I +0UkWaVUDT3018TmVOpHUftzi7ratKM2/YsSCXjKXAwd55Wrg9b13jZOBOajPumKA +rTQ0j1XrJe3RrNXYV8fW3YGc2r5QkSK9exgZOQMYvrYszB4TRUxGFxtVbQ1bVqDu +TPZw9+q3hZPwg7SXMyJxMqtviA73M8MhfwFhIS6oYiKa4vf3wVEWxRC8x/YOuzCh +h1Yvq3BIzNWxJCimrcZeWe/VJlYnK2XsJ+37R94oPA/UZZWM4W7gZks3o0btJR8r +jihmzfw63uTdiLQuquxti7vf3AfKjmy5CccigFDHN+7RUvtnBvUCAwEAAaNfMF0w +HQYDVR0OBBYEFEsdX6ciDexkMd7P4b2DrjG9EtM+MDwGA1UdEQQ1MDOCDGlkcDAy +LmdpaC5zZYYjaHR0cHM6Ly9pZHAwMi5naWguc2UvaWRwL3NoaWJib2xldGgwDQYJ +KoZIhvcNAQELBQADggEBAFvSriJHkdCy3EJ7W7Xn1guLHf7wMpACeOIv0TRK+TKi +msQNzObMvxFRnAFgmIvuxq/7f6DZ0XGm0VqCcKxmuM7dW9GXtzVzzrtAIds5kFI1 +d3WUWkx8q//v9NGPG4i5KpXZHwR30IuDl5AyrUh0mm1haKWHy9ybm5/y/Yw/OoX1 +BGnFSMWW9V5fwiW1S6E5QqCC/LTPBJR3jIl0pQS/Ik2u2+6hVu/O12U9eaE5ZOCB +pp7OqR+jjunl42YyKK6PYT209nJiW8SmFi+c9qSYmDgPKwlHnA/hYdvy9heTAWYm +HrR00emNkHk9fs7zq95jHw4hSBCKWKhvoL62Xe4m/EE= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHDCCAgSgAwIBAgIVAL7+mBPoPWMeB+fhGyTwStsYI5rrMA0GCSqGSIb3DQEB +CwUAMBcxFTATBgNVBAMMDGlkcDAyLmdpaC5zZTAeFw0yMDExMTkxMTMxNDlaFw0z +MDExMTkxMTMxNDlaMBcxFTATBgNVBAMMDGlkcDAyLmdpaC5zZTCCASIwDQYJKoZI +hvcNAQEBBQADggEPADCCAQoCggEBAK5ldipbAra5FH7zwDzdDHtZWqb64qBIIr7L +Tjrg0tDxP2RGRzYEHuIwf14ce/fkDjTbBidgQTOj3DxnL7Pg/PfkSLsOiL9yPiiC +y3ql3KJ+eB8JipnrtiGlU61D4o8g1kwGSCn+dSWECtPFh8L42++ht3n2YOUeWFn+ ++V/TKtGG3Ng0MfKb434K2eAJ89lkyd7Rwj7IWiCRXfLnuC+Hz5wz/HSR3L4xsIjh +RDmEpsQpjBVsPdq6asuiLNTsuN6qQBQNg1oVjumCH1GD3mDas6oaGwICFnzl1wWW +51A+9i6EHtW2nxtP3pTZZioxUwTzlVwmXVHtPwAixNMvksEqyz0CAwEAAaNfMF0w +HQYDVR0OBBYEFFU9Z4F8VzfJPZnhDM1V0c8bLGWBMDwGA1UdEQQ1MDOCDGlkcDAy +LmdpaC5zZYYjaHR0cHM6Ly9pZHAwMi5naWguc2UvaWRwL3NoaWJib2xldGgwDQYJ +KoZIhvcNAQELBQADggEBAIF/cLOHqzlGE6b3VTi0PDKME9IU/UXayuTPLwXcZC/W +iU8aiaX9Ut2l5seEpQW49n9/llHpMz8U3YKOKqkpdinB4b8dCcYbP9m9rOsuvYBM +ONL0hwFxwl2Ph6WB3U7jbpIt+dwShQzmWLDYMjqMbj5lW0dyq8cVii3w46L4Rgz0 +e7Hcjpzmj8XWf1qt/PotxX9RC6KpztrVAiuECnLo2M32uqYISykOPVW1ojpSG0Yb +/4q9l+xBYxQ8zhXh+WHYK+m2iTYGc3yBaogxoylffp7dm735Y6+e/u7McDJgSuYU +hfPauxBtehyqdj0u5Kh1alBnJrNgsNU1ldLSDXt8fxU= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp02.gih.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Gymnastik- och idrottshögskolan</md:OrganizationName> + <md:OrganizationName xml:lang="en">The Swedish School of sport and health sciences</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Gymnastik- och idrottshögskolan</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">The Swedish School of sport and health sciences</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">https://www.gih.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">https://www.gih.se/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Gymnastik- och idrottshögskolan, GIH</md:Company> + <md:SurName>CIO</md:SurName> + <md:EmailAddress>mailto:cio@gih.se</md:EmailAddress> + <md:TelephoneNumber>+46812053700</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Gymnastik- och idrottshögskolan, GIH</md:Company> + <md:SurName>ITOps</md:SurName> + <md:EmailAddress>mailto:itops@gih.se</md:EmailAddress> + <md:TelephoneNumber>+46812053700</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Gymnastik- och idrottshögskolan, GIH</md:Company> + <md:SurName>IT Support</md:SurName> + <md:EmailAddress>mailto:itsupport@gih.se</md:EmailAddress> + <md:TelephoneNumber>+46812053700</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Security Response Team</md:GivenName> + <md:EmailAddress>mailto:abuse@gih.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idp2.it.gu.se-idp-shibboleth.xml b/swamid-testing/idp2.it.gu.se-idp-shibboleth.xml new file mode 100644 index 00000000..1a0a0fdc --- /dev/null +++ b/swamid-testing/idp2.it.gu.se-idp-shibboleth.xml @@ -0,0 +1,242 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp2.it.gu.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-03-14T14:46:18Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idp2.it.gu.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">gu.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">University of Gothenburg idp2.it.gu.se</mdui:DisplayName> + <mdui:Description xml:lang="en">Test IdP for University of Gothenburg idp2.it.gu.se</mdui:Description> + <mdui:Description xml:lang="sv">Test Identity Provider för anställda och studenter vid Göteborgs universitet.</mdui:Description> + <mdui:DisplayName xml:lang="sv">Göteborgs Universitet idp2.it.gu.se</mdui:DisplayName> + <mdui:InformationURL xml:lang="en">https://www.gu.se/en</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">https://www.gu.se/</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.gu.se/en/about-the-website/processing-personal-data</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.gu.se/om-webbplatsen/behandling-av-personuppgifter</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="en" height="129" width="127">https://idp2.it.gu.se/idp/images/1498144_ny_logo_en_normal.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="128" width="126">https://idp2.it.gu.se/idp/images/1510601_logo_sv_126.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="40" width="277">https://idp3.it.gu.se/idp/images/1374690_lo_gu_left.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="40" width="277">https://idp3.it.gu.se/idp/images/1374690_lo_gu_left.png</mdui:Logo> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>gu.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:57.6981,11.9716</mdui:GeolocationHint> + <mdui:IPHint>130.241.0.0/18</mdui:IPHint> + <mdui:IPHint>2001:6b0:d::/48</mdui:IPHint> + </mdui:DiscoHints> + <mdui:DiscoHints> + <mdui:DomainHint>gu.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:57.6981,11.9716</mdui:GeolocationHint> + <mdui:IPHint>130.241.0.0/18</mdui:IPHint> + <mdui:IPHint>2001:6b0:d::/48</mdui:IPHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDIDCCAgigAwIBAgIVAINrwBJif7MyDdcmC3aMRQx/C6NIMA0GCSqGSIb3DQEB +CwUAMBgxFjAUBgNVBAMMDWlkcDIuaXQuZ3Uuc2UwHhcNMTYwMzE0MTA0NzMwWhcN +MzYwMzE0MTA0NzMwWjAYMRYwFAYDVQQDDA1pZHAyLml0Lmd1LnNlMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklmy11Wi1gbd2qqX51/6ye3KfqM3AAac +dcrQIrLzdaqZL7vrrQpq2qgH/epM6Ed+WzixDZqnkUoKoumyAmyC46yWXfrz1+Hj +1yjvXsnwbRefs7lT1JqRJczZiCli5hQ4WYZap+3QPHQrvJGEq51i13ULhNgK5xe+ +ito4GpVUlUwOjyoI08LXIZs7l59eTGK/sHsHh0WC/46u3AduQfnpZx1mlq6+3huk +2DFgKrXNzFQRfhsyB/btD0v7DQ1wyn/b94fECeIiJtNWfzifKtsvXOMGuNUMhk04 +8EFeHfL5vMX7K3maJTfS5B9wcvi/mf7E0xhvCD9n5R/C5ikNzqzfqQIDAQABo2Ew +XzAdBgNVHQ4EFgQUbhaTcpz0n3M1pcZ3wQqBG5L4ROYwPgYDVR0RBDcwNYINaWRw +Mi5pdC5ndS5zZYYkaHR0cHM6Ly9pZHAyLml0Lmd1LnNlL2lkcC9zaGliYm9sZXRo +MA0GCSqGSIb3DQEBCwUAA4IBAQAAtb8IM9rZSxCDqFqQqwiZH0Ij4pJPwTZbSUXW ++T2O9LzLpCtJSVWtLlv15R0OILRieh9ckIFbnW40Y4JVbjETaX1CbVFUSIgq6WZG +aKzoKR2m1IgP9Gs/2EUrZFFr7FXsAzDTbGZhPbaF6GhmK8+vIacbtmdAKO85BlOR +n6JxeyT4l0tcm8loeajCPpER+1DyWeGtgFdXdIUsP5TfJdKwG1hZL0dUNc7YI/sR +fm8r33IUquovFZwOmEmfgMBP7JZGwgf+UKA8YLCTuqzXrKhOOS+w0gS/I0xOeKvi +slmWOOgRICBRYA2lHBZc0E9cAHv8ltiP/1ummZfZL3snn+eX + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDIDCCAgigAwIBAgIVAJXNXfPkY/tJdDVMCaw+c61mVwv0MA0GCSqGSIb3DQEB +CwUAMBgxFjAUBgNVBAMMDWlkcDIuaXQuZ3Uuc2UwHhcNMTYwMzE0MTA0NzI5WhcN +MzYwMzE0MTA0NzI5WjAYMRYwFAYDVQQDDA1pZHAyLml0Lmd1LnNlMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpXT1DgnFLxxOsRy8LSuNHkmsHm0waBS +BwtCXiqTEYDRcnB31Hye4DT7wjwpqsg8e81QFqszdDO3b/se1brgrsAX4gX+UoHv +mNd9CkG9vfNF3vNpL3aUTV5CID7+r8iXXqvgxcCTH39W2b/1E/7xhV2cd1PAP9VI +pRNuHVibWJEixl4MpHsrVJJk1TrmvQtjT+frCMKTM14i2wGLJMLjzudebsWZFX64 +A02XhkzloQIrE3+/bUkZBsTxpJzJBL9Gc+HLVraB4RVzrnmh+7U0BEPbkcgHEvAS +OkidW/RtyBCTcr3uoxiXEHvW9f5/Wca0VMAKs8csNxQIUqUE+oc9ewIDAQABo2Ew +XzAdBgNVHQ4EFgQUP7zSE8MllrSEOvovWKnieEDjsjYwPgYDVR0RBDcwNYINaWRw +Mi5pdC5ndS5zZYYkaHR0cHM6Ly9pZHAyLml0Lmd1LnNlL2lkcC9zaGliYm9sZXRo +MA0GCSqGSIb3DQEBCwUAA4IBAQAKn5K5CdnG2bZgzeQu+g4Ay8AcnjpRHRw6w89v +edu6nBWvqQyAqZcLl9STC6UJBeWwfLMGj8eu9wOOCtCBETGE7hXcaTp+N2tGVHnG +l8+lwZ6s5R8B95quke4OTzlxazWhwI3xicZL1Kwrj64GfjLvDCrQpEZJYd50hzyb +rGGOOQN4j/oViF5Yl0xMLx2u+DLn6Zd/6/I7Eon6NoIdhNYVyd6UGlt0nYIpeBVI +tkZr09dLUyeu1kGsnGhZZnRL7G+YLxJlO4SFHV/VjoeRZXwZ1MQJ1XIbqa7xgDpM +fHA2iBVTGFOHR/EduBYUoKmhYK2LkJVMyHI3DzTNEle07mr6 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHzCCAgegAwIBAgIUKT1nsJWjTvn/gUt5ZMVyXM6ax78wDQYJKoZIhvcNAQEL +BQAwGDEWMBQGA1UEAwwNaWRwMi5pdC5ndS5zZTAeFw0xNjAzMTQxMDQ3MjlaFw0z +NjAzMTQxMDQ3MjlaMBgxFjAUBgNVBAMMDWlkcDIuaXQuZ3Uuc2UwggEiMA0GCSqG +SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzq06/MQ7xCiwlHbHaliAkLuQnTkkD0sQ6 +1jKuwGzjNn/shY7Hf2EVKzy/vYOH9QLbMMzeHMwCAeq/W7QcZwnVjgSTeFaK7DeW +xJkUELJvp8/T2RJMdj3XnSO76x01g1eLXKtgHfKC/WWeAP+WkrT07YBj0fRen+99 +jXHgj5BqL5IEtBGYFWA6GjNlWXdD3CDsUnDnj7S7fLo6BXs9Ob4vSFjRF9KWUaHf +uspv1Sc4qIcm5qvhuYejuiP1oP1jLINE27ZRQgNGB9OFbe2dQrsdIiDVVNcdKq28 +Bltq+vu8+7c19RyY7oasDfxp01nIVpKAjLQxRHhkERkMNl/19y0VAgMBAAGjYTBf +MB0GA1UdDgQWBBQsqSwdpJcQrBYLYtdKR9PAdv2mNjA+BgNVHREENzA1gg1pZHAy +Lml0Lmd1LnNlhiRodHRwczovL2lkcDIuaXQuZ3Uuc2UvaWRwL3NoaWJib2xldGgw +DQYJKoZIhvcNAQELBQADggEBAHF5lvS7YzKY4qPZI1sVSkQuiIK9U2jht5wYUQEC +HnWFGAmS3idl3afHdGBVv+jD44jndnkojJ5pl63c9phYiKRiFqaRvoyC+hHkd0qD +pkbY+yOc1ePrjXuIyNBKh9UJTiWWF2x/J7MJ2fiSsL+Q44Ot/wd3VzsOTWMgY+Gz +USCXAEeFWLAs1crBEAaW2mmWQOYSyp95LNXV1JCsyd1R7I1KAQ6S21XqSyPEBtZf +ocfXlxiISI9q8HuuNs3FvJhJZWITD4pgq6hDioWmYyDa5Xjr7d9e2oOJD9C25Te2 +1l6gYUDIMOfT4TSe+YHPj0W7ZChHQwggdChvqjV0WtykKL4= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp2.it.gu.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp2.it.gu.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp2.it.gu.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp2.it.gu.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp2.it.gu.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">gu.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDIDCCAgigAwIBAgIVAINrwBJif7MyDdcmC3aMRQx/C6NIMA0GCSqGSIb3DQEB +CwUAMBgxFjAUBgNVBAMMDWlkcDIuaXQuZ3Uuc2UwHhcNMTYwMzE0MTA0NzMwWhcN +MzYwMzE0MTA0NzMwWjAYMRYwFAYDVQQDDA1pZHAyLml0Lmd1LnNlMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklmy11Wi1gbd2qqX51/6ye3KfqM3AAac +dcrQIrLzdaqZL7vrrQpq2qgH/epM6Ed+WzixDZqnkUoKoumyAmyC46yWXfrz1+Hj +1yjvXsnwbRefs7lT1JqRJczZiCli5hQ4WYZap+3QPHQrvJGEq51i13ULhNgK5xe+ +ito4GpVUlUwOjyoI08LXIZs7l59eTGK/sHsHh0WC/46u3AduQfnpZx1mlq6+3huk +2DFgKrXNzFQRfhsyB/btD0v7DQ1wyn/b94fECeIiJtNWfzifKtsvXOMGuNUMhk04 +8EFeHfL5vMX7K3maJTfS5B9wcvi/mf7E0xhvCD9n5R/C5ikNzqzfqQIDAQABo2Ew +XzAdBgNVHQ4EFgQUbhaTcpz0n3M1pcZ3wQqBG5L4ROYwPgYDVR0RBDcwNYINaWRw +Mi5pdC5ndS5zZYYkaHR0cHM6Ly9pZHAyLml0Lmd1LnNlL2lkcC9zaGliYm9sZXRo +MA0GCSqGSIb3DQEBCwUAA4IBAQAAtb8IM9rZSxCDqFqQqwiZH0Ij4pJPwTZbSUXW ++T2O9LzLpCtJSVWtLlv15R0OILRieh9ckIFbnW40Y4JVbjETaX1CbVFUSIgq6WZG +aKzoKR2m1IgP9Gs/2EUrZFFr7FXsAzDTbGZhPbaF6GhmK8+vIacbtmdAKO85BlOR +n6JxeyT4l0tcm8loeajCPpER+1DyWeGtgFdXdIUsP5TfJdKwG1hZL0dUNc7YI/sR +fm8r33IUquovFZwOmEmfgMBP7JZGwgf+UKA8YLCTuqzXrKhOOS+w0gS/I0xOeKvi +slmWOOgRICBRYA2lHBZc0E9cAHv8ltiP/1ummZfZL3snn+eX + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDIDCCAgigAwIBAgIVAJXNXfPkY/tJdDVMCaw+c61mVwv0MA0GCSqGSIb3DQEB +CwUAMBgxFjAUBgNVBAMMDWlkcDIuaXQuZ3Uuc2UwHhcNMTYwMzE0MTA0NzI5WhcN +MzYwMzE0MTA0NzI5WjAYMRYwFAYDVQQDDA1pZHAyLml0Lmd1LnNlMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlpXT1DgnFLxxOsRy8LSuNHkmsHm0waBS +BwtCXiqTEYDRcnB31Hye4DT7wjwpqsg8e81QFqszdDO3b/se1brgrsAX4gX+UoHv +mNd9CkG9vfNF3vNpL3aUTV5CID7+r8iXXqvgxcCTH39W2b/1E/7xhV2cd1PAP9VI +pRNuHVibWJEixl4MpHsrVJJk1TrmvQtjT+frCMKTM14i2wGLJMLjzudebsWZFX64 +A02XhkzloQIrE3+/bUkZBsTxpJzJBL9Gc+HLVraB4RVzrnmh+7U0BEPbkcgHEvAS +OkidW/RtyBCTcr3uoxiXEHvW9f5/Wca0VMAKs8csNxQIUqUE+oc9ewIDAQABo2Ew +XzAdBgNVHQ4EFgQUP7zSE8MllrSEOvovWKnieEDjsjYwPgYDVR0RBDcwNYINaWRw +Mi5pdC5ndS5zZYYkaHR0cHM6Ly9pZHAyLml0Lmd1LnNlL2lkcC9zaGliYm9sZXRo +MA0GCSqGSIb3DQEBCwUAA4IBAQAKn5K5CdnG2bZgzeQu+g4Ay8AcnjpRHRw6w89v +edu6nBWvqQyAqZcLl9STC6UJBeWwfLMGj8eu9wOOCtCBETGE7hXcaTp+N2tGVHnG +l8+lwZ6s5R8B95quke4OTzlxazWhwI3xicZL1Kwrj64GfjLvDCrQpEZJYd50hzyb +rGGOOQN4j/oViF5Yl0xMLx2u+DLn6Zd/6/I7Eon6NoIdhNYVyd6UGlt0nYIpeBVI +tkZr09dLUyeu1kGsnGhZZnRL7G+YLxJlO4SFHV/VjoeRZXwZ1MQJ1XIbqa7xgDpM +fHA2iBVTGFOHR/EduBYUoKmhYK2LkJVMyHI3DzTNEle07mr6 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDHzCCAgegAwIBAgIUKT1nsJWjTvn/gUt5ZMVyXM6ax78wDQYJKoZIhvcNAQEL +BQAwGDEWMBQGA1UEAwwNaWRwMi5pdC5ndS5zZTAeFw0xNjAzMTQxMDQ3MjlaFw0z +NjAzMTQxMDQ3MjlaMBgxFjAUBgNVBAMMDWlkcDIuaXQuZ3Uuc2UwggEiMA0GCSqG +SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzq06/MQ7xCiwlHbHaliAkLuQnTkkD0sQ6 +1jKuwGzjNn/shY7Hf2EVKzy/vYOH9QLbMMzeHMwCAeq/W7QcZwnVjgSTeFaK7DeW +xJkUELJvp8/T2RJMdj3XnSO76x01g1eLXKtgHfKC/WWeAP+WkrT07YBj0fRen+99 +jXHgj5BqL5IEtBGYFWA6GjNlWXdD3CDsUnDnj7S7fLo6BXs9Ob4vSFjRF9KWUaHf +uspv1Sc4qIcm5qvhuYejuiP1oP1jLINE27ZRQgNGB9OFbe2dQrsdIiDVVNcdKq28 +Bltq+vu8+7c19RyY7oasDfxp01nIVpKAjLQxRHhkERkMNl/19y0VAgMBAAGjYTBf +MB0GA1UdDgQWBBQsqSwdpJcQrBYLYtdKR9PAdv2mNjA+BgNVHREENzA1gg1pZHAy +Lml0Lmd1LnNlhiRodHRwczovL2lkcDIuaXQuZ3Uuc2UvaWRwL3NoaWJib2xldGgw +DQYJKoZIhvcNAQELBQADggEBAHF5lvS7YzKY4qPZI1sVSkQuiIK9U2jht5wYUQEC +HnWFGAmS3idl3afHdGBVv+jD44jndnkojJ5pl63c9phYiKRiFqaRvoyC+hHkd0qD +pkbY+yOc1ePrjXuIyNBKh9UJTiWWF2x/J7MJ2fiSsL+Q44Ot/wd3VzsOTWMgY+Gz +USCXAEeFWLAs1crBEAaW2mmWQOYSyp95LNXV1JCsyd1R7I1KAQ6S21XqSyPEBtZf +ocfXlxiISI9q8HuuNs3FvJhJZWITD4pgq6hDioWmYyDa5Xjr7d9e2oOJD9C25Te2 +1l6gYUDIMOfT4TSe+YHPj0W7ZChHQwggdChvqjV0WtykKL4= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp2.it.gu.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">GU</md:OrganizationName> + <md:OrganizationName xml:lang="sv">GU</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">University of Gothenburg</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Göteborgs Universitet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.gu.se/en</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://www.gu.se/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>University of Gothenburg</md:Company> + <md:SurName>Lena Ström</md:SurName> + <md:EmailAddress>mailto:lena.strom@gu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>University of Gothenburg</md:Company> + <md:SurName>Tobias Galéus</md:SurName> + <md:EmailAddress>mailto:tobias.galeus@gu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>University of Gothenburg</md:Company> + <md:SurName>GU-Support</md:SurName> + <md:EmailAddress>mailto:support@gu.se</md:EmailAddress> + <md:TelephoneNumber>+46317862020</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>IRT GU</md:GivenName> + <md:EmailAddress>mailto:irt@gu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/idpproxy.dev.eduid.se-idp.xml b/swamid-testing/idpproxy.dev.eduid.se-idp.xml new file mode 100644 index 00000000..a12fb40d --- /dev/null +++ b/swamid-testing/idpproxy.dev.eduid.se-idp.xml @@ -0,0 +1,78 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idpproxy.dev.eduid.se/idp"> + <md:Extensions> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-03-20T21:04:54Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa-hi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor WantAuthnRequestsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://idpproxy.dev.eduid.se/idp"> + <md:Extensions> + <shibmd:Scope regexp="false">dev.eduid.se</shibmd:Scope> + <shibmd:Scope regexp="false">test.eduid.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">eduID Proxy IdP Sverige</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">eduID Proxy IdP Sweden</mdui:DisplayName> + <mdui:Description xml:lang="sv">eduID är en gemensam inloggning för din utbildning</mdui:Description> + <mdui:Description xml:lang="en">eduID gives you a common login for your education</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://eduid.se</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://eduid.se</mdui:InformationURL> + <mdui:Logo xml:lang="sv" height="120" width="350">https://eduid.se/static/img/ds-eduID-logo-black350x120px.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="120" width="350">https://eduid.se/static/img/ds-eduID-logo-black350x120px.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="sv">https://eduid.se/privacy.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://eduid.se/privacy.html</mdui:PrivacyStatementURL> + <mdui:Keywords xml:lang="sv">eduID+studentIdP</mdui:Keywords> + <mdui:Keywords xml:lang="en">eduID+studentIdP</mdui:Keywords> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idpproxy.dev.eduid.se/Saml2SP/sso/post"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idpproxy.dev.eduid.se/Saml2SP/sso/redirect"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">eduID Proxy IdP Sweden</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">eduID Proxy IdP Sweden</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://eduid.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:GivenName>Administrative</md:GivenName> + <md:EmailAddress>mailto:feedback@eduid.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:GivenName>Technical</md:GivenName> + <md:EmailAddress>mailto:feedback@eduid.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>Support</md:GivenName> + <md:EmailAddress>mailto:feedback@eduid.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/imogen.surfnet.nl-proxy-module.php-saml-sp-metadata.php-default-sp.xml b/swamid-testing/imogen.surfnet.nl-proxy-module.php-saml-sp-metadata.php-default-sp.xml new file mode 100644 index 00000000..fbb49c94 --- /dev/null +++ b/swamid-testing/imogen.surfnet.nl-proxy-module.php-saml-sp-metadata.php-default-sp.xml @@ -0,0 +1,39 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://imogen.surfnet.nl/proxy/module.php/saml/sp/metadata.php/default-sp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2013-07-02T09:50:20Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://imogen.surfnet.nl/proxy/module.php/saml/sp/saml2-logout.php/default-sp"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://imogen.surfnet.nl/proxy/module.php/saml/sp/saml2-logout.php/default-sp"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://imogen.surfnet.nl/proxy/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://imogen.surfnet.nl/proxy/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://imogen.surfnet.nl/proxy/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://imogen.surfnet.nl/proxy/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/> + <md:AttributeConsumingService index="0"> + <md:ServiceName xml:lang="en">SURFconext test proxy</md:ServiceName> + <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:ContactPerson contactType="technical"> + <md:GivenName>Bas</md:GivenName> + <md:SurName>Zoetekouw</md:SurName> + <md:EmailAddress>mailto:bas.zoetekouw@surfnet.nl</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/konto-test.test.hb.se-Shibboleth.xml b/swamid-testing/konto-test.test.hb.se-Shibboleth.xml new file mode 100644 index 00000000..80f42159 --- /dev/null +++ b/swamid-testing/konto-test.test.hb.se-Shibboleth.xml @@ -0,0 +1,255 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://konto-test.test.hb.se/Shibboleth"> + <md:Extensions> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-11-22T11:58:31Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://konto-test.test.hb.se/Shibboleth.sso/Login"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://konto-test.test.hb.se/Shibboleth.sso/Login" index="1"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://konto-test.test.hb.se/Shibboleth.sso/DS/ds-test.swamid.se"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://konto-test.test.hb.se/Shibboleth.sso/DS/ds-test.swamid.se" index="2"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://konto-test.test.hb.se/Shibboleth.sso/WAYF/shibboleth.antagning.se"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://konto-test.test.hb.se/Shibboleth.sso/WAYF/login.idp.eduid.se"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https:/konto-test.test.hb.se//Shibboleth.sso/https://hbidp-test.hb.se/idp/profile/Shibboleth/SSO"/> + <mdui:UIInfo> + <mdui:Description xml:lang="en">Testserver for the application Konto, which provides identities at the University of Borås.</mdui:Description> + <mdui:Description xml:lang="sv">Testserver för applikationen Konto, som skapar identiteter på Högskolan i Borås.</mdui:Description> + <mdui:DisplayName xml:lang="en">Konto TEST</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Konto TEST</mdui:DisplayName> + <mdui:InformationURL xml:lang="en">https://www.hb.se/en/About-UB/</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">https://www.hb.se/Om-hogskolan/</mdui:InformationURL> + <mdui:Logo xml:lang="en" height="67" width="350">https://logga.hb.se/HB_logo_en_350px.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="71" width="350">https://logga.hb.se/HB_logo_sv_350px.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="en">https://konto.hb.se/PrivacyIntegrity.aspx</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://konto.hb.se/PrivacyIntegrity.aspx</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:KeyName>hbsp-test.ad.hb.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=hbsp-test.ad.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIID/TCCAmWgAwIBAgIJAJXxIZ8hzubRMA0GCSqGSIb3DQEBCwUAMB0xGzAZBgNV +BAMTEmhic3AtdGVzdC5hZC5oYi5zZTAeFw0xODA4MTUxMDAzMDRaFw0yODA4MTIx +MDAzMDRaMB0xGzAZBgNVBAMTEmhic3AtdGVzdC5hZC5oYi5zZTCCAaIwDQYJKoZI +hvcNAQEBBQADggGPADCCAYoCggGBAKpwRrE5j42Jku0JU5hbk/GISqjlSmZ5c5Xq +a0zYBlZPdmYf4K3hVqeUZtK+f2MHE+RZ/M8Xe4ujBvi+KAebSK1f43b/A1+sTQ3Q +VNuKHu2wNMOy/f/F5IOHaU3H97TG2dirI2hNasG/lQjheIzcrqPAZAlak+CbjAQe +WNPuyeHtdab9yNllo51zefOt57e3+DfQRY5JOSasmEzhn7BD7Io6P8T4IqDE3viN +j7uJDmjuEoMHQfXqXuBkNmdbpC/x43u9zOi6FLqjuLlUNNXeYbe6+JGWPHIZZWpw +10EE52VUo/DqvUFLpW8DQx8dTTTuDVfpkWlNobY7DG6uMVz7KxlPPkzRojZdaU+Z +IzeAoLgAMnLLf18hBkKdx6Kq/RDH5+4pJCo9y1os1o5tljH80p2+03+Z0rFkApnH +4G3hnoXaDXnGfm3n0sSMjpvSQ3xhPH1fLHTfJD9IOYgNufWQqrX//61t/HVmoJZZ +d0RPjU+uL2ahfVQNN4wZkFAYgSudLQIDAQABo0AwPjAdBgNVHREEFjAUghJoYnNw +LXRlc3QuYWQuaGIuc2UwHQYDVR0OBBYEFETbzt7ILuBVhr6N12meu0FA6OrnMA0G +CSqGSIb3DQEBCwUAA4IBgQAwjkyU1ADuMjfRiIfF2oHhKghlYyNyWI+UopYkuFS9 +QK+446eydGTRH+sp5LIoB6ylcm588Mn5uVmgNBNkqrEMXYOtbtN8hugfSAMuJTJj +HEazh3eKpa/PYArmFotw4kLtgtVtYk6gRo6ZKtKXe+Vmgf+eFEbHMTn2i6fsDu7t +9aDtZNzt1beSdU51awn8wn9jdD7aN9iT9GZ4RNAXU93UaFE+dy9EpC0nd0NNxsLn +AJnEYrFEZus4XFG0aUGzcZReWQi5C/ryUmXeq93H/Dt82rKfWn/Jg4dKg33vu0Ol +49WDxOfjUNFXTckw7SmDm2iKNwUZns7/E11Pvt/Sa/Kzo/xccO3dZ0ESLbhlL0sd +cDAenuSelj4GWkExkn8JJu+Gf4tF454KHdjGHNv4760astFtWDLMcQwFgVW0CDXq +9z5dsTa3vVJHsD7aUAtDd8TIECi1QmsknXZPEN9kyCYLN1b4+THk8NPw8lfeMA44 +WBZx2UHH2lrrPqfxaKVb5Hg=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:KeyName>hbsp-test01.test.hb.se</ds:KeyName> + <ds:KeyName>https://hbsp-test01.test.hb.se/idp/shibboleth</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=hbsp-test01.test.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIIFQzCCAyugAwIBAgIUbv+kwfKXyZfZfHE3c5/5BL6IMtcwDQYJKoZIhvcNAQEL +BQAwITEfMB0GA1UEAxMWaGJzcC10ZXN0MDEudGVzdC5oYi5zZTAeFw0yMjEwMjEw +ODM1MDdaFw0zMjEwMTgwODM1MDdaMCExHzAdBgNVBAMTFmhic3AtdGVzdDAxLnRl +c3QuaGIuc2UwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCySumGjhEp +jeo97oOk65Y8BvLQiIAULnd0fYwdvyxzAD8O7sM+DIJTevouyjVZoKv24D1s+L7r +C6fnwoNNvisSm0QhLTzSoLb5awNlvXCOVQtr62pdfIHRzM9O3GZK5BegzdVzoE+t +hv7DmupbT5rxwTvfnhm9VVcjWWtcNcQki1KGPplhTD/hWa9t/YesMV5jqiw0AHpO +HrYRhDmrvgeLtSgEbPfrowmG1p8EDxgMdHWMxLvuY2W6gnPUoPCVW4pRFSEjd9i8 +rxpPArptnA19HWvxt2ff83WgNvJOG7QIkDhmIdfwjnWivVgcKRBo1ee7HF28oKNG +H/oBrpWukNnSSEobViBaF4dAVxE4A6XOjiQ+fBXx/7jGLdL3S3fag5K2rds2N854 +m1MyYdkihnWk2G1qVHlotnaKiy3UY4KyUwV35J4IvpbQqLLZjxoeCoyCrhEQuy/S +pTi/Ov2Ctwhb2Iy9Syo90yEEShFM+yud4/APOT/xkBummhWLmAR27isNOydK5LgN +AWrVecFwmtaL9L8wKIxoeD6wMCO7jhvyHkAUUH6k036OToEebKGNyCpV2504aUuB +qOby+uLtuZtuDxiy+RaQU27k+MnK/zaZIpgr0cUnAuo5/vX27P1tACQMpDPiBnV+ +F4HlS5O4XWWJY6yyP8qpMd1l/N+iw2ht4QIDAQABo3MwcTBQBgNVHREESTBHghZo +YnNwLXRlc3QwMS50ZXN0LmhiLnNlhi1odHRwczovL2hic3AtdGVzdDAxLnRlc3Qu +aGIuc2UvaWRwL3NoaWJib2xldGgwHQYDVR0OBBYEFHeD7XcxviVnS3tGQaASdHts +YjIrMA0GCSqGSIb3DQEBCwUAA4ICAQA9PBA8YElA0mYtS935zpEsN60CX3Tu0upe +4aDoDYZhNH/V1PqDHJPVCTZmYuLOVQw/0qWvHe6IZgWEPjM4Xm+erqOf3x84iVLA +my2CpSR11sfshCtkW6vUAGYniXglS6KvtHH518cqboQoCJPX/yWOvNtily2DB81E +dhBZcvn0nEQFwRs504B0BL8jqiwfSto9M/yYR+UCh/3X6fsbvbL/3TrakXNsxrnk +ajLG1hiopmVyk+sW9VojfDk7vV0UfKlbK0pc/cWWiRUCYY4Xy+yN8kn1xQWLtlKI +Gze3r2cOqU+loP/7lub7coZyrM9PefU3/kEOIEe/eCfReGnE4tPYAF15zxQzOmvw +lxDrHYDcP+WGKAz1rl2ltxK8XN0F+a6zxmWMjStK2dE1P7C9eqMIUlYKCRCz83Vn +Ej/HK8kQih9KAgLxMzD5hKzEvGNcY2giGOek5UnQQcKoKYoKkn3sK5jAj2xRsG9H +Zmvyp0w98SE4XztFQuXnOGbUsx213dBt07X0roYX2vJgBrIrXmZM53iOMiPYSL0Q +esgKmZIr47ANPQyW8fR/Kzge8rVplf+YNcBqoQfFoLFujtUWYefNEDAy/h3rcE0b +pSSKWfSGRNR1HV2zAlx0IcJxHz1Jw1s/6Mx7x96UnApvatqqg0BNuPFu1tbDtmOi +MCmP/gJ2aw==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:KeyName>hbsp-test01.test.hb.se</ds:KeyName> + <ds:KeyName>https://hbsp-test01.test.hb.se/idp/shibboleth</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=hbsp-test01.test.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIIFQzCCAyugAwIBAgIUQT9mO0y6y74DTDhnpeyyTQFN4DYwDQYJKoZIhvcNAQEL +BQAwITEfMB0GA1UEAxMWaGJzcC10ZXN0MDEudGVzdC5oYi5zZTAeFw0yMjEwMjEw +ODM1MDFaFw0zMjEwMTgwODM1MDFaMCExHzAdBgNVBAMTFmhic3AtdGVzdDAxLnRl +c3QuaGIuc2UwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC1DPXnpgcI +9DTH4RiPGUJ1gCi9GmU+5Hr5Mal1XhunszKXuC/RcAlrC65pvyfuyG9MLT/C6CsD +hXJSySOIDkk1GfU+rYZpjxoVG/Yh7Gb8wyD4jId2mPt7H3TqE6Q295gbQNuEURkF +EPVgBoMWBXxMeqLqOaume0maFyWJx9au/MHNP/o47JfCrmYe2ZOlrKjd8x/vp1gc +zWpwgi2+p2r7QfqfGytHydxdWg0iOOz9pZZ0DUvxXZfFLSOs+cCcJKGtCbr11Wf2 +D0oJSF2pQoU+ZZJKVmy1SHmeiXOVYzPcr7hrvX0mDOdWnt3ZHn9f4z/x9r4DIQVa +zmPC/SQhRIHsalyHgR7cs1ohwXX3EwzlUsgW/FduPKclyPgeytOf+do2U+y5/GaW +4L9wK4w9Z+p+mRsjK2s4kjmlHOoSyRLQDWudN04W/nhkPdp1j8juVWzi7jsfi1DU +WROABtH1iqGyP5S+iLpSzJA/CJdMuj7ZPmUwM02lbTtV6DWwKG0dBF3M75VWNbKj +xFOpDR0NXBCNEzfZmRGUK2Wm2pvyZQ/tpHCyf5ccvnqLeMOLmLgEkjZ0yKS9NZIh +4FLfo3n7ulXnxx1qzx8DuapTHuw5iCO1bJnB9tuSjjqFbSNl+2qeJtzIPeaz2TjE +DtcIez7mDyzoKmUpTTH5XQu55bF2HNhbDQIDAQABo3MwcTBQBgNVHREESTBHghZo +YnNwLXRlc3QwMS50ZXN0LmhiLnNlhi1odHRwczovL2hic3AtdGVzdDAxLnRlc3Qu +aGIuc2UvaWRwL3NoaWJib2xldGgwHQYDVR0OBBYEFP6FQ0cu4eKmlm2fovXPJ0J5 +IUeeMA0GCSqGSIb3DQEBCwUAA4ICAQA8x0aoai18EVqOpDXQ8QTdLwqYw7ccmeI3 +401NLQFN3BoUK3katpuGbF/x2RH7QSDaHFemp7eJOZpKABWa3lMo66jTlzYLVPQi +cR1r0Cb5sgy4D4x8ImlX0h3yG6zTvrCv0S9EnbqXVX8R6bNZ8OXi7gCpfsEVCso0 +qy0ynK/ieTontHmbUy+m9GdKhvEKmyfS2g0fubyC+uhUiOj5IExIJhpXZhyA/7Ht +j4PxxmfoeI6LyUGFxew6DbBlrMLhtCM/uXqAd/A5a2cfzJaRG62j6Et6vFt//VEb +UEWIJfSjEnMB7C/sK+ANwEZncqQL17UasgRjcjP+O21ZCcxQqBsaI7cJEd5t6Du1 +FgSd79XjMC//M7Ocuy7Uqb0tFRiVEyXFLIQlcCocvGyhGQCO/n3L8UzMN7dxUAay +oFGrYn+ozQAULPgB021Pi8BjS35bD1UXI2jjqupY+yJH4Vod3oDPsMx+o/iPvCtU ++ZTuyJ3+doqVQg+DWPCqdlGJr32IgN6j+sc2nfVIBH1q+zU+E7ZwkvXcljlmwPNB +YLoLZ5A6rfH7ePRXjUtmreiTl+Ot7wkhM0YBaAKJF4s2wLKKKgBaGg7V6XwVCRm6 +NrN8FBPj/kOnMa3p0GL23XHrva43poBPf9KFgpZIIDxEboI27JQLoAu5uqcW4W7H +miXuo3j/eA==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:KeyName>hbsp-test01.test.hb.se</ds:KeyName> + <ds:KeyName>https://hbsp-test01.test.hb.se/idp/shibboleth</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=hbsp-test01.test.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIIEQzCCAqugAwIBAgIUQEH05pwokb/txDTgbOv4/GMVmtYwDQYJKoZIhvcNAQEL +BQAwITEfMB0GA1UEAxMWaGJzcC10ZXN0MDEudGVzdC5oYi5zZTAeFw0yMjEwMjAx +NDU0NThaFw0zMjEwMTcxNDU0NThaMCExHzAdBgNVBAMTFmhic3AtdGVzdDAxLnRl +c3QuaGIuc2UwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDD7SJgHDBY +mYQFyI/N16K//515WHWjwxCic0Hog8qcD0zBh5ntgR89XA2H+CKU+qRQ4eotL8GO +l1UHvO3s2FHJ1Ln6BNTr+bCWsLpAPpOoo9jt6OmiP5gJEiZUv4Y2xjvYfqP8OoOf +7SG5kueZsmCWXqZqxCqjN9DoP34YstI2RkWpgsnYZuz4VPg+0junZIV2LKLCdC8j +sgISeGX80LI6tbNeMx9D6qeIbbVLNOvGdCwBt+JLVF/3uEhxNfFnGxlpUH601HYo +2oUVvCVz9eDWAS53kj0YyrPShXWfM6bvJiLH2+dbJc3sDQhMYugnxs7hdzn2fntF +I4yBJp64m6Y6ZP6MHCDYG4XqZl+FLQBBHxCQjS7DnWjCNYbHT0D1e6N1QMN6TmmH +lscSS/Z/2RCqS6Q4uvPSMbMExErKtBQq+6aeRjUdVTeeth1y/X72C8HBXxgmmEW2 +YRK0e2931o2/gphZy7vS4D5qriBHINmMsEg3PZhTxIB1u0i2kb50LBECAwEAAaNz +MHEwUAYDVR0RBEkwR4IWaGJzcC10ZXN0MDEudGVzdC5oYi5zZYYtaHR0cHM6Ly9o +YnNwLXRlc3QwMS50ZXN0LmhiLnNlL2lkcC9zaGliYm9sZXRoMB0GA1UdDgQWBBSE +oIZAnuKc5dZoqHcmgEQLJiwOkDANBgkqhkiG9w0BAQsFAAOCAYEASRszy9q0VwnS +VJFmQuChK+M7sFDaLY/haaJF3lliMcYLVtboIYsaUXTEEvs42FqXTpAeYAA8uXmq +b1BQNxQUpWtyyUfe5Uyn59Yn7JCz8+SbittEyqaeOGu3RawLX0NJAoxK9Agtu0zB +YPcFizHVdBGTI1bLuR7l2xxWod2vFiD3C6xqBdR5lD/0XATRVQ2q7WrxHO+a/UC9 +wpahXMdZEjIl7+Klwz9oIsOUtsBJCgRGEgvpKoiKzrke0+e4PVYKzhZgU9NFQNkd +pZ/aNkyfYZe2K/SKo01FIKB0OJRmL6Cu9BjW48DxKOQ6Nmeiat+8x2JJ5hSmdQzG +iRE+qDXCvtD6tr8Px/nhzI9RrYV92FFTUCdf0v/z8p0dfkkxBQ7gjIArchGVjG/7 +E6gs8WefYo7yCCzLs7uO7rrJFw8SA8bHBvT5OENZc67OtNozTFhCY6F4bWleumQe +Oh+D0cydIQbcgxJlDUV1KTq54FNEOlrN+NICGbbU2W9Tz6YakVTI</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://konto-test.test.hb.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://konto-test.test.hb.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://konto-test.test.hb.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto-test.test.hb.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://konto-test.test.hb.se/Shibboleth.sso/SLO/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto-test.test.hb.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://konto-test.test.hb.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://konto-test.test.hb.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://konto-test.test.hb.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">konto-test.hb.se</md:ServiceName> + <md:ServiceName xml:lang="sv">konto-test.hb.se</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">University of Borås</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Högskolan i Borås</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">University of Borås</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Högskolan i Borås</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.hb.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">http://www.hb.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>University of Borås</md:Company> + <md:GivenName>IRT HB</md:GivenName> + <md:EmailAddress>mailto:csirt@hb.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/konto.test.uu.se-shibboleth.xml b/swamid-testing/konto.test.uu.se-shibboleth.xml new file mode 100644 index 00000000..30650938 --- /dev/null +++ b/swamid-testing/konto.test.uu.se-shibboleth.xml @@ -0,0 +1,96 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://konto.test.uu.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-05-18T09:55:39Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Uppsala universitets kontoaktivering och lösenordsåterställning (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Uppsala University user account activation and password reset (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Denna tjänst används för att du som ny vid universitetet ska kunna aktivera ditt användarkonto vid universitetet. Om du redan har ett aktivt konto kan du sätta ett nytt lösenord A om du glömt bort det.</mdui:Description> + <mdui:Description xml:lang="en">As a new user you use this service to activate your university user account. You can also use this service to reset your password A for your user account after the account activation.</mdui:Description> + <mdui:Logo xml:lang="en" height="50" width="50">https://weblogin.test.uu.se/idp/images/logga-50.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="50" width="50">https://weblogin.test.uu.se/idp/images/logga-50.png</mdui:Logo> + <mdui:InformationURL xml:lang="sv">https://konto.test.uu.se/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://konto.test.uu.se/index-en.html</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="en">https://mp.uu.se/c/perm/link?p=699273448&l=en</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://mp.uu.se/c/perm/link?p=699273448&l=sv</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIC8TCCAdmgAwIBAgIJAMVWchzOigTwMA0GCSqGSIb3DQEBBQUAMBkxFzAVBgNV +BAMTDmNoZW4uaXRzLnV1LnNlMB4XDTE0MDYyMzE1MjcwMVoXDTI0MDYyMDE1Mjcw +MVowGTEXMBUGA1UEAxMOY2hlbi5pdHMudXUuc2UwggEiMA0GCSqGSIb3DQEBAQUA +A4IBDwAwggEKAoIBAQCfDSR8ylUcIcDm/GKx7Ld6onV92/iKfbyrZj9uXiKM8iq7 +FDUtJpCvl8qlQ59vVMr6as+HeHsf3SHYHd/3i0D5FisBBZ8MBYccSELw/OpRuetc +BO5ta8cZMTnhnMnRQi+XV1gic8sEg8LEo3vZmP8eoD5/Xky24cLVFaC/Rk/48oFZ +qInZeSABpFM9FJOXKD801G0xfvma31guTMoTbDWzxg5SM9/oan8kh+lMsfC3Y+zG +3GqttMtTt5CFRqYl+iBCUerKo14wt5Q429KAfHJPVX4W1RmNZ0gYgT1Fr9aZB8zz +D9hQMBzTPKX3Myz6VHpqmg4xtTO0GAGsebMnyKOnAgMBAAGjPDA6MBkGA1UdEQQS +MBCCDmNoZW4uaXRzLnV1LnNlMB0GA1UdDgQWBBTetpIV/6tzXm6My/TDY9d0txKR +STANBgkqhkiG9w0BAQUFAAOCAQEAD9vrnvzkjS7kyM7YUZ8d3X6MwwOTfUxhPRzZ +hoKAFmuXI68K81UYvsSPkoRICeznS5oEk4BRlIDBV4kBO3p4n0351WjIENMAcwFD +mVrEQWUtZkQAZkARTlv9qNuqdgmmKBRb2lL9FXfovpQWCwDVBUzPlrUDdfmZzGuy +Ql/gj+HX4uvvRUwouwG8eoqnBSxzzGPYlVHsjmOMD28tvKp9TrMWp2s852Siks3x +6MnKP/eJW7PcB/XXcpJT8lwLZFnmazLbkUEX5GKijyNNLcRN9u5T7o47iE1tp6Rc +Lf3VcAZi+NsypUL4nVwgn6iHbsaXGfTZPispp6rXJ48r/XnBFQ== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://konto.test.uu.se/Shibboleth.sso/SLO/Artifact"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto.test.uu.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://konto.test.uu.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://konto.test.uu.se/Shibboleth.sso/SLO/SOAP"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://konto.test.uu.se/Shibboleth.sso/NIM/SOAP"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://konto.test.uu.se/Shibboleth.sso/NIM/Redirect"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto.test.uu.se/Shibboleth.sso/NIM/POST"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://konto.test.uu.se/Shibboleth.sso/NIM/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://konto.test.uu.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://konto.test.uu.se/Shibboleth.sso/SAML2/Artifact" index="2"/> + <md:AttributeConsumingService index="0" isDefault="true"> + <md:ServiceName xml:lang="sv">Uppsala universitets kontoaktivering och lösenordsåterställning (TEST)</md:ServiceName> + <md:ServiceName xml:lang="en">Uppsala University user account activation and password reset (TEST)</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Operations</md:SurName> + <md:EmailAddress>mailto:drift@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/login-dev.du.se-idp-shibboleth.xml b/swamid-testing/login-dev.du.se-idp-shibboleth.xml new file mode 100644 index 00000000..a5895c5e --- /dev/null +++ b/swamid-testing/login-dev.du.se-idp-shibboleth.xml @@ -0,0 +1,144 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://login-dev.du.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-10-10T15:43:06Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://login-dev.du.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">du.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Dalarna University (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Högskolan Dalarna (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Högskolan Dalarna (ENDAST TEST)</mdui:Description> + <mdui:Description xml:lang="en">Dalarna University (ONLY FOR TESTING)</mdui:Description> + <mdui:Keywords xml:lang="en">hda du</mdui:Keywords> + <mdui:Keywords xml:lang="sv">hda du</mdui:Keywords> + <mdui:Logo xml:lang="sv" height="16" width="16">https://login.du.se/duse-logo-16x16.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="16" width="16">https://login.du.se/duse-logo-16x16.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="146" width="350">https://login.du.se/duse-logo-sv.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="146" width="350">https://login.du.se/duse-logo-en.png</mdui:Logo> + <mdui:InformationURL xml:lang="en">https://www.du.se/en</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">https://www.du.se</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.du.se/sv/hjalp/personuppgifter/</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.du.se/personal-data-protection</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDKDCCAhCgAwIBAgIVANjkER+E+5lzcBMyqbx/pUrv4StpMA0GCSqGSIb3DQEB +BQUAMBoxGDAWBgNVBAMTD2xvZ2luLWRldi5kdS5zZTAeFw0xMDExMTcxNTI4MTNa +Fw0zMDExMTcxNTI4MTNaMBoxGDAWBgNVBAMTD2xvZ2luLWRldi5kdS5zZTCCASIw +DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJTsLw/2NNOLUjRLB3/aizD3lP5J +Hv9A8kb+luJYFvc8xHsrNX8vs68b34v0hSFkr4/C6qFIAnqG1phnZ+RvRfL9J4wG +vxav6jtLU5WYnrZeFWG8e4PHvelHQ7GnR0ieDUoT5UMz/lQFFkigkuTMDDVVvLhC +5QbsnodeTdALmnQQAKMqaIbxLmlM+wQ0VTqbDYzlyx6gemGHHGDtrd3YaoCteG5N +v5M1eeGLtAwtTzazUh9OQMQXWnbFrFTZsXNOJLDFV4fHtilaHRG4i0GsmkWyzAOC +TFVmsfG7NHcNbsDeArhE/Mdn3lxRTJO/05DJmY7XS7TNT4StPm64I8EdjbUCAwEA +AaNlMGMwQgYDVR0RBDswOYIPbG9naW4tZGV2LmR1LnNlhiZodHRwczovL2xvZ2lu +LWRldi5kdS5zZS9pZHAvc2hpYmJvbGV0aDAdBgNVHQ4EFgQU40tq2fktCvaBJtND +QafNhwXdSMcwDQYJKoZIhvcNAQEFBQADggEBAA4jM2gU64Cmws8pIcNnpm3XPRJN +2kiCB1++cRt3DyAljWVf8GrVP3+xwtHcL54Y3paxEpqH8/QyMZCPOqrJIix3h3Qi +zFPtwTPGP8CO3QKJqPyDSai5IK7GmdVuC0tVWykRCVDXpDBaz02G7+d9Z93b9WQS +x+zPW68bKgavPcBYrN18gqMUEQlZmxs/mogmyx6GBnKiMoZYgUbqYA9Ytp/UI2UF +C2AXPL0+DO5vY7Ah58tSWzVMRkSLZtQEyADQ7sBCa56IAAjIgQY1XXWF/PhjuQ8a +xZo/5fNrNmxFOTkpA3No03UwcJ2LDbzPUPQQbQ9s4GSwwSQMVmlstBI/IIY= + + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login-dev.du.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login-dev.du.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://login-dev.du.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login-dev.du.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://login-dev.du.se/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login-dev.du.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">du.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDKDCCAhCgAwIBAgIVANjkER+E+5lzcBMyqbx/pUrv4StpMA0GCSqGSIb3DQEB +BQUAMBoxGDAWBgNVBAMTD2xvZ2luLWRldi5kdS5zZTAeFw0xMDExMTcxNTI4MTNa +Fw0zMDExMTcxNTI4MTNaMBoxGDAWBgNVBAMTD2xvZ2luLWRldi5kdS5zZTCCASIw +DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJTsLw/2NNOLUjRLB3/aizD3lP5J +Hv9A8kb+luJYFvc8xHsrNX8vs68b34v0hSFkr4/C6qFIAnqG1phnZ+RvRfL9J4wG +vxav6jtLU5WYnrZeFWG8e4PHvelHQ7GnR0ieDUoT5UMz/lQFFkigkuTMDDVVvLhC +5QbsnodeTdALmnQQAKMqaIbxLmlM+wQ0VTqbDYzlyx6gemGHHGDtrd3YaoCteG5N +v5M1eeGLtAwtTzazUh9OQMQXWnbFrFTZsXNOJLDFV4fHtilaHRG4i0GsmkWyzAOC +TFVmsfG7NHcNbsDeArhE/Mdn3lxRTJO/05DJmY7XS7TNT4StPm64I8EdjbUCAwEA +AaNlMGMwQgYDVR0RBDswOYIPbG9naW4tZGV2LmR1LnNlhiZodHRwczovL2xvZ2lu +LWRldi5kdS5zZS9pZHAvc2hpYmJvbGV0aDAdBgNVHQ4EFgQU40tq2fktCvaBJtND +QafNhwXdSMcwDQYJKoZIhvcNAQEFBQADggEBAA4jM2gU64Cmws8pIcNnpm3XPRJN +2kiCB1++cRt3DyAljWVf8GrVP3+xwtHcL54Y3paxEpqH8/QyMZCPOqrJIix3h3Qi +zFPtwTPGP8CO3QKJqPyDSai5IK7GmdVuC0tVWykRCVDXpDBaz02G7+d9Z93b9WQS +x+zPW68bKgavPcBYrN18gqMUEQlZmxs/mogmyx6GBnKiMoZYgUbqYA9Ytp/UI2UF +C2AXPL0+DO5vY7Ah58tSWzVMRkSLZtQEyADQ7sBCa56IAAjIgQY1XXWF/PhjuQ8a +xZo/5fNrNmxFOTkpA3No03UwcJ2LDbzPUPQQbQ9s4GSwwSQMVmlstBI/IIY= + + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login-dev.du.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login-dev.du.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Dalarna University (TEST)</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Högskolan Dalarna (TEST)</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">du.se (TEST)</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">du.se (TEST)</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">https://www.du.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">https://www.du.se/en</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:Company>Dalarna University</md:Company> + <md:GivenName>Office of IT and Digital Infrastructure</md:GivenName> + <md:EmailAddress>mailto:shib-admin@du.se</md:EmailAddress> + <md:TelephoneNumber>+46 23 778000</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:Company>Dalarna University</md:Company> + <md:GivenName>Office of IT and Digital Infrastructure</md:GivenName> + <md:EmailAddress>mailto:shib-admin@du.se</md:EmailAddress> + <md:TelephoneNumber>+46 23 778000</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Dalarna University</md:Company> + <md:GivenName>Office of IT and Digital Infrastructure</md:GivenName> + <md:EmailAddress>mailto:shib-admin@du.se</md:EmailAddress> + <md:TelephoneNumber>+46 23 778000</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>Dalarna University</md:Company> + <md:GivenName>Office of IT and Digital Infrastructure</md:GivenName> + <md:EmailAddress>mailto:shib-admin@du.se</md:EmailAddress> + <md:TelephoneNumber>+46 23 778000</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/login.temp1235.hhs.se-adfs-services-trust.xml b/swamid-testing/login.temp1235.hhs.se-adfs-services-trust.xml new file mode 100644 index 00000000..702189b6 --- /dev/null +++ b/swamid-testing/login.temp1235.hhs.se-adfs-services-trust.xml @@ -0,0 +1,72 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://login.temp1235.hhs.se/adfs/services/trust"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-03-10T12:41:00Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.temp1235.hhs.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.temp1235.hhs.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.temp1235.hhs.se/adfs/ls/" index="0" isDefault="true"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://login.temp1235.hhs.se/adfs/ls/" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.temp1235.hhs.se/adfs/ls/" index="2"/> + </md:SPSSODescriptor> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=http://login.temp1235.hhs.se/adfs/services/trust"> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login.temp1235.hhs.se/adfs/services/trust/artifactresolution" index="0"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.temp1235.hhs.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.temp1235.hhs.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.temp1235.hhs.se/adfs/ls/"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.temp1235.hhs.se/adfs/ls/"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Handelshögskolan i Stockholm (TEST)</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Handelshögskolan i Stockholm (TEST)</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">https://www.hhs.se/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:GivenName>IT</md:GivenName> + <md:SurName>Support</md:SurName> + <md:EmailAddress>mailto:itsupport@hhs.se</md:EmailAddress> + <md:TelephoneNumber>+46 8 7369400</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/login.tst.ki.se-idp-shibboleth.xml b/swamid-testing/login.tst.ki.se-idp-shibboleth.xml new file mode 100644 index 00000000..b6d3c3d0 --- /dev/null +++ b/swamid-testing/login.tst.ki.se-idp-shibboleth.xml @@ -0,0 +1,244 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://login.tst.ki.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2015-11-11T16:03:29Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://login.tst.ki.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">ki.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Karolinska Institutet (test)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Karolinska Institutet (test)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Test Identity Provider för Karolinska Institutet.</mdui:Description> + <mdui:Description xml:lang="en">Test Identity Provider for Karolinska Institutet.</mdui:Description> + <mdui:Logo xml:lang="sv" height="146" width="292">https://login.tst.ki.se/images/ki_logo_292x146.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="146" width="292">https://login.tst.ki.se/images/ki_logo_292x146.png</mdui:Logo> + <mdui:Keywords xml:lang="sv">ki karolinska+institutet</mdui:Keywords> + <mdui:Keywords xml:lang="en">ki karolinska+institutet</mdui:Keywords> + <mdui:InformationURL xml:lang="en">https://staff.ki.se/service-definition-saml2-websso-identity-provider</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="en">https://staff.ki.se/rules-and-regulations-for-the-management-of-personal-information-within-the-identity-provider-idp</mdui:PrivacyStatementURL> + <mdui:InformationURL xml:lang="sv">https://medarbetare.ki.se/tjanstebeskrivning-saml2-websso-identitetsutgivare</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://medarbetare.ki.se/policy-for-hantering-av-personuppgifter-inom-ramen-for-identitetsutgivaren-identity-provider-idp</mdui:PrivacyStatementURL> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>ki.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:59.3475753,18.0279382</mdui:GeolocationHint> + <mdui:GeolocationHint>geo:59.219589,17.940939</mdui:GeolocationHint> + <mdui:IPHint>130.229.0.0/18</mdui:IPHint> + <mdui:IPHint>130.237.96.0/19</mdui:IPHint> + <mdui:IPHint>130.237.128.0/20</mdui:IPHint> + <mdui:IPHint>130.237.204.0/24</mdui:IPHint> + <mdui:IPHint>130.237.207.0/24</mdui:IPHint> + <mdui:IPHint>193.10.16.0/21</mdui:IPHint> + <mdui:IPHint>193.10.140.0/22</mdui:IPHint> + <mdui:IPHint>194.14.96.0/24</mdui:IPHint> + <mdui:IPHint>2001:06B0:0022::/48</mdui:IPHint> + <mdui:IPHint>136.155.0.0/16</mdui:IPHint> + <mdui:IPHint>159.38.0.0/16</mdui:IPHint> + <mdui:IPHint>193.10.63.0/24</mdui:IPHint> + <mdui:IPHint>193.10.76.0/24</mdui:IPHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDKDCCAhCgAwIBAgIVAMoel+MKpG2xaTjyazTBhaikYRLhMA0GCSqGSIb3DQEB +CwUAMBoxGDAWBgNVBAMMD2xvZ2luLnRzdC5raS5zZTAeFw0xNTExMDQxNDI4MDRa +Fw0zNTExMDQxNDI4MDRaMBoxGDAWBgNVBAMMD2xvZ2luLnRzdC5raS5zZTCCASIw +DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIsH/cWaST4Ua0YvM2A1IpfWnWS4 +V8gzg8MFWL9vwAyTmg9prTkOzHxVSXpvrXz+Sr9OvAcpG7Qcia7+rS+raRMqaiG+ ++3tF932XgCZmq532oSYxFLk/ZssmyHQiUYY/tzC832yoiM8vIHYuQeyaD2i9HdhH +vS4FLLcP5k4H166wW/uUkRDs/pG2e7uiT6RIhavV3sUIPlzRdkkuYhURcGjpTCsb +5DRb+FmkRHH61OdLJMkqi7c8z3jmRXBZn+FsENElQPySzaiWJI+XKS8Mn36sFrTM +gOXEYC3u9H6k3ZdXYVq+Brh0dwaQi7waPt3FJpfYPIDwxOYKtLHrgoS0MzECAwEA +AaNlMGMwHQYDVR0OBBYEFMi5T4diS2VMxS0jWp5BszYiV96bMEIGA1UdEQQ7MDmC +D2xvZ2luLnRzdC5raS5zZYYmaHR0cHM6Ly9sb2dpbi50c3Qua2kuc2UvaWRwL3No +aWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAErKe5nlDdbds4rre39uKZZXvPuF ++JZ/VvmJJXF7t/YADLYQEhU4ybZOc0MRvGV6IKrmEwXHOpIcD7Uf+T1rvyIKQ24l +a2qbjZ0/Si4K5V3VHWKw9n1hFxzpBVblRBQKpe3C2/AHtXo42I581Aj4RiMMvdtE +s6I6mUGkWt+12okiFPkPYkZiKNS44MRH/MpFBRZyq2+16AvarO5TxU8czzuHIaiw +WWUe6DVFlidT5MLwtVawka9hmB11ck88jfu1I9MuBA3kshE4P3nAZFUSxWBEJVhw +n8eLCYnUBlf2Tz/qD15v7rjTQgMM5HFL8z5dSdm/ku7V0BGdseke4CKTTWE= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDJzCCAg+gAwIBAgIUNQiQqRF0OWgY/8AQmnbujTqk5pUwDQYJKoZIhvcNAQEL +BQAwGjEYMBYGA1UEAwwPbG9naW4udHN0LmtpLnNlMB4XDTE1MTEwNDE0MjgwMloX +DTM1MTEwNDE0MjgwMlowGjEYMBYGA1UEAwwPbG9naW4udHN0LmtpLnNlMIIBIjAN +BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqigba9iKeQgpVTxXDJdR8XY3unuY +tE4BnM29l3kUIPO17FPURUkhbrl86SeWHE6xPRATi9XHG44o9ACsLyR85FWkeGnj +o26QqovXOxFn+YDEXIFu2Ier2YxJiL8MWte5n41Wf1poZQb0Sf4o+LOSrVZxd98n +xzEuCJ93Luf4RxB9l+dfoVK4EDp6AAIJO/sxBmeEYfvNFukp+duyDFdQV1oSWaWg +TMIqmaPevF4t39YwGCutFpZJyp++jfkixbNHzC75xiFyWfdumMcOs5FYA70rPUEl +ZgQs1pUZv4qP7VeNNS6QXQyQl86kxMN7XfymgoqLQdHN2e1+JiEsk95kmwIDAQAB +o2UwYzAdBgNVHQ4EFgQUTvEk7OlxQx65QaRT+nO7cuOY71wwQgYDVR0RBDswOYIP +bG9naW4udHN0LmtpLnNlhiZodHRwczovL2xvZ2luLnRzdC5raS5zZS9pZHAvc2hp +YmJvbGV0aDANBgkqhkiG9w0BAQsFAAOCAQEATSLgQWRc05CI6vkw8fCaC4pAYKmu +uMqAIcKhkaVslYJGRRxnPlEKKvXZeh3QAkqj0RW7o/VFbltsfbOKpmg/h1hp110Q +EdFRvAfpycCvKp7BnJa4mJ9RD0/PwuyeZ6IMg4hGt82gsgRbWJsCb6lYwj8i0ZIu +N8jxHT9GPA1BezK2+iC7x/UZXuPzI+/AfRMchBzStgau9H+MsP1mXi1SIm+iqaRA +fyNTnKTNyov83sU5fX101h10Qp9rW7Im/Ol1zZefMdOc4rsSYi8zSlaPWuIPz9nu +MrwNBQ4u5RUrJQQCdmBSr/Iw8h4zKUYeAXW+LvaMoyY8uIN3mAq1wle+3A== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDKDCCAhCgAwIBAgIVAN0l6j5eWkN11rN3K+x95i/rrVYgMA0GCSqGSIb3DQEB +CwUAMBoxGDAWBgNVBAMMD2xvZ2luLnRzdC5raS5zZTAeFw0xNTExMDQxNDI4MDNa +Fw0zNTExMDQxNDI4MDNaMBoxGDAWBgNVBAMMD2xvZ2luLnRzdC5raS5zZTCCASIw +DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKJ3zTxhdfaqyeZScdvMEST9OtZ8 +DV2qXwakGUN8o2tdxn+zXKcrN0QN1CUsHkQlZ2m3PEEZlpgsp618SBGJVOHsLea8 +v3UxoEtw9BSGWip8xyWKMAhRh7KRmq4K4OqdNlo6M30KuPpPe0ZkI7gA2qR2lVv6 +ybR97uc9DrM8wKJjwYJKaYFeePdU99H4l2bzR6Au3mJ8Dd4Vq4wIPhC0ADvvDzU4 +UfZY/YkqAyroiwPZsaM2o8mspDqnbTOu6lPM4XeKFYKNdDamFVimnYLDKgM81/Ne +IMv/7Klx5zt1Tf5NZaxgZ/xSXdQQAgQe/emteLIV5bdtIWlmT6O7WUI5QiUCAwEA +AaNlMGMwHQYDVR0OBBYEFF7LNVAsmm6yfKeW7ViJuMrPTWfHMEIGA1UdEQQ7MDmC +D2xvZ2luLnRzdC5raS5zZYYmaHR0cHM6Ly9sb2dpbi50c3Qua2kuc2UvaWRwL3No +aWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBACYeLTIPNFIMCey2yr95YxXdZTzB +wRAODcgpQGaCPdb+MtyT2a7m/Z3g2bzQvqGgC7er/fv8pXMhpsGuPrgwvQNWXWUA +l+0EyhfpVZn/KvehtJV911wrqbLh8XVCTL1f+yegjZb927m3i1ctHIRRq5i2xMoC +xDQRJ2cT1zKmKy/1EaZpJXNvWjt7Jpis7MAa5Upl6bjnYWLfCWwTxnSZ5hVqTU9G +U5qAm8DQOPhc4+r9NNyiwB159QMR9AcUZNb6YHjqV3vcRQqTL6+UlryQimkERyZO +jcblqs70JyQRXtd9os7yqr20I31AuUW8esXh7BQI2puRxXgTTfMJyxoPC5s= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login.tst.ki.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login.tst.ki.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://login.tst.ki.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.tst.ki.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.tst.ki.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">ki.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDKDCCAhCgAwIBAgIVAMoel+MKpG2xaTjyazTBhaikYRLhMA0GCSqGSIb3DQEB +CwUAMBoxGDAWBgNVBAMMD2xvZ2luLnRzdC5raS5zZTAeFw0xNTExMDQxNDI4MDRa +Fw0zNTExMDQxNDI4MDRaMBoxGDAWBgNVBAMMD2xvZ2luLnRzdC5raS5zZTCCASIw +DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIsH/cWaST4Ua0YvM2A1IpfWnWS4 +V8gzg8MFWL9vwAyTmg9prTkOzHxVSXpvrXz+Sr9OvAcpG7Qcia7+rS+raRMqaiG+ ++3tF932XgCZmq532oSYxFLk/ZssmyHQiUYY/tzC832yoiM8vIHYuQeyaD2i9HdhH +vS4FLLcP5k4H166wW/uUkRDs/pG2e7uiT6RIhavV3sUIPlzRdkkuYhURcGjpTCsb +5DRb+FmkRHH61OdLJMkqi7c8z3jmRXBZn+FsENElQPySzaiWJI+XKS8Mn36sFrTM +gOXEYC3u9H6k3ZdXYVq+Brh0dwaQi7waPt3FJpfYPIDwxOYKtLHrgoS0MzECAwEA +AaNlMGMwHQYDVR0OBBYEFMi5T4diS2VMxS0jWp5BszYiV96bMEIGA1UdEQQ7MDmC +D2xvZ2luLnRzdC5raS5zZYYmaHR0cHM6Ly9sb2dpbi50c3Qua2kuc2UvaWRwL3No +aWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAErKe5nlDdbds4rre39uKZZXvPuF ++JZ/VvmJJXF7t/YADLYQEhU4ybZOc0MRvGV6IKrmEwXHOpIcD7Uf+T1rvyIKQ24l +a2qbjZ0/Si4K5V3VHWKw9n1hFxzpBVblRBQKpe3C2/AHtXo42I581Aj4RiMMvdtE +s6I6mUGkWt+12okiFPkPYkZiKNS44MRH/MpFBRZyq2+16AvarO5TxU8czzuHIaiw +WWUe6DVFlidT5MLwtVawka9hmB11ck88jfu1I9MuBA3kshE4P3nAZFUSxWBEJVhw +n8eLCYnUBlf2Tz/qD15v7rjTQgMM5HFL8z5dSdm/ku7V0BGdseke4CKTTWE= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDJzCCAg+gAwIBAgIUNQiQqRF0OWgY/8AQmnbujTqk5pUwDQYJKoZIhvcNAQEL +BQAwGjEYMBYGA1UEAwwPbG9naW4udHN0LmtpLnNlMB4XDTE1MTEwNDE0MjgwMloX +DTM1MTEwNDE0MjgwMlowGjEYMBYGA1UEAwwPbG9naW4udHN0LmtpLnNlMIIBIjAN +BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqigba9iKeQgpVTxXDJdR8XY3unuY +tE4BnM29l3kUIPO17FPURUkhbrl86SeWHE6xPRATi9XHG44o9ACsLyR85FWkeGnj +o26QqovXOxFn+YDEXIFu2Ier2YxJiL8MWte5n41Wf1poZQb0Sf4o+LOSrVZxd98n +xzEuCJ93Luf4RxB9l+dfoVK4EDp6AAIJO/sxBmeEYfvNFukp+duyDFdQV1oSWaWg +TMIqmaPevF4t39YwGCutFpZJyp++jfkixbNHzC75xiFyWfdumMcOs5FYA70rPUEl +ZgQs1pUZv4qP7VeNNS6QXQyQl86kxMN7XfymgoqLQdHN2e1+JiEsk95kmwIDAQAB +o2UwYzAdBgNVHQ4EFgQUTvEk7OlxQx65QaRT+nO7cuOY71wwQgYDVR0RBDswOYIP +bG9naW4udHN0LmtpLnNlhiZodHRwczovL2xvZ2luLnRzdC5raS5zZS9pZHAvc2hp +YmJvbGV0aDANBgkqhkiG9w0BAQsFAAOCAQEATSLgQWRc05CI6vkw8fCaC4pAYKmu +uMqAIcKhkaVslYJGRRxnPlEKKvXZeh3QAkqj0RW7o/VFbltsfbOKpmg/h1hp110Q +EdFRvAfpycCvKp7BnJa4mJ9RD0/PwuyeZ6IMg4hGt82gsgRbWJsCb6lYwj8i0ZIu +N8jxHT9GPA1BezK2+iC7x/UZXuPzI+/AfRMchBzStgau9H+MsP1mXi1SIm+iqaRA +fyNTnKTNyov83sU5fX101h10Qp9rW7Im/Ol1zZefMdOc4rsSYi8zSlaPWuIPz9nu +MrwNBQ4u5RUrJQQCdmBSr/Iw8h4zKUYeAXW+LvaMoyY8uIN3mAq1wle+3A== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDKDCCAhCgAwIBAgIVAN0l6j5eWkN11rN3K+x95i/rrVYgMA0GCSqGSIb3DQEB +CwUAMBoxGDAWBgNVBAMMD2xvZ2luLnRzdC5raS5zZTAeFw0xNTExMDQxNDI4MDNa +Fw0zNTExMDQxNDI4MDNaMBoxGDAWBgNVBAMMD2xvZ2luLnRzdC5raS5zZTCCASIw +DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKJ3zTxhdfaqyeZScdvMEST9OtZ8 +DV2qXwakGUN8o2tdxn+zXKcrN0QN1CUsHkQlZ2m3PEEZlpgsp618SBGJVOHsLea8 +v3UxoEtw9BSGWip8xyWKMAhRh7KRmq4K4OqdNlo6M30KuPpPe0ZkI7gA2qR2lVv6 +ybR97uc9DrM8wKJjwYJKaYFeePdU99H4l2bzR6Au3mJ8Dd4Vq4wIPhC0ADvvDzU4 +UfZY/YkqAyroiwPZsaM2o8mspDqnbTOu6lPM4XeKFYKNdDamFVimnYLDKgM81/Ne +IMv/7Klx5zt1Tf5NZaxgZ/xSXdQQAgQe/emteLIV5bdtIWlmT6O7WUI5QiUCAwEA +AaNlMGMwHQYDVR0OBBYEFF7LNVAsmm6yfKeW7ViJuMrPTWfHMEIGA1UdEQQ7MDmC +D2xvZ2luLnRzdC5raS5zZYYmaHR0cHM6Ly9sb2dpbi50c3Qua2kuc2UvaWRwL3No +aWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBACYeLTIPNFIMCey2yr95YxXdZTzB +wRAODcgpQGaCPdb+MtyT2a7m/Z3g2bzQvqGgC7er/fv8pXMhpsGuPrgwvQNWXWUA +l+0EyhfpVZn/KvehtJV911wrqbLh8XVCTL1f+yegjZb927m3i1ctHIRRq5i2xMoC +xDQRJ2cT1zKmKy/1EaZpJXNvWjt7Jpis7MAa5Upl6bjnYWLfCWwTxnSZ5hVqTU9G +U5qAm8DQOPhc4+r9NNyiwB159QMR9AcUZNb6YHjqV3vcRQqTL6+UlryQimkERyZO +jcblqs70JyQRXtd9os7yqr20I31AuUW8esXh7BQI2puRxXgTTfMJyxoPC5s= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login.tst.ki.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login.tst.ki.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Karolinska Institutet</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Karolinska Institutet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Karolinska Institutet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Karolinska Institutet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://ki.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://ki.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Karolinska Institutet</md:Company> + <md:EmailAddress>mailto:selfservice@ki.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Karolinska Institutet</md:Company> + <md:EmailAddress>mailto:selfservice@ki.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Karolinska Institutet</md:Company> + <md:EmailAddress>mailto:selfservice@ki.se</md:EmailAddress> + <md:TelephoneNumber>+46 8 524 82222</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Security Response Team</md:GivenName> + <md:EmailAddress>mailto:abuse@ki.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/login2.temp1235.hhs.se-idp-shibboleth.xml b/swamid-testing/login2.temp1235.hhs.se-idp-shibboleth.xml new file mode 100644 index 00000000..474c715e --- /dev/null +++ b/swamid-testing/login2.temp1235.hhs.se-idp-shibboleth.xml @@ -0,0 +1,206 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://login2.temp1235.hhs.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-04-05T09:41:44Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://login2.temp1235.hhs.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">hhs.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Stockholm School of Economics -- TEST ONLY</mdui:DisplayName> + <mdui:Description xml:lang="en">For testing only</mdui:Description> + <mdui:DisplayName xml:lang="sv">Handelshögskolan i Stockholm -- ENDAST TEST</mdui:DisplayName> + <mdui:Description xml:lang="sv">Endast TEST</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDRDCCAiygAwIBAgIVANboDpiChpZce1QQ5dpyWf/W0JF9MA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFmxvZ2luMi50ZW1wMTIzNS5oaHMuc2UwHhcNMTcwNDAz +MTMyNDUxWhcNMzcwNDAzMTMyNDUxWjAhMR8wHQYDVQQDDBZsb2dpbjIudGVtcDEy +MzUuaGhzLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjL3UUdDF +MG+LpPoNtCylTQLQEF9V1lpKa36haGhDnbpDlfY5jMR+u/SYqZDm4XK+03CgSSFp +d6bKDpQJdXRCE1e3+zLG70nHYVYr4xJRLYXnYqOTIzHyW5Scod469j7KQX3ZJqor +VF/2I1b34S5IhvIPWcwpFCbPsy0Y0JA9u5bI60qN7WI2AvfHjSRNEyLYy26I21uO +VxWBosQOOuWJWM5u9nxxsDgx/7mXjNgG9MNndU3/asSt3gxMDWBIR8HnGRVEIpRt +Ix4osEhEv6cCvC3KW5ivWxLYjYfVf74X6110jnyFmimchjihncCg2dhFar3evBL0 +WDl+KqHw5Iq6ZQIDAQABo3MwcTAdBgNVHQ4EFgQU9dV+CoGic2FD/Qfb00dscI1d +J00wUAYDVR0RBEkwR4IWbG9naW4yLnRlbXAxMjM1Lmhocy5zZYYtaHR0cHM6Ly9s +b2dpbjIudGVtcDEyMzUuaGhzLnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEB +CwUAA4IBAQBPzRpf9a96dgiCaLUBbJ8VfuKUtmsXoO71hmLpwWobv8v9d5HK03iY +Kqm52vYm/GVlTTpar6Xg4icGLuGOvdB0/Ux0fdK9XebD9Qi0OBvD/5fD+TAbGoML +bnkT4zr2+87txGEjLtmcT47Fu2dM58UArtLSvu7cGhh50P+LD7a6Ip6KxM35X94v +m/hq55Kozrie6cB5vxSP8Kx/n5RKrLQBRedUaKNkfAacYXYKcFeWvwecnZz5Ezbs +kL8+nsk2L2EWP+5Gdvlj7Og4ZmMW3WCV5VrAcn0aknUTyguUU3iPSzDqHG+s1Woh +B90rsNE83YT8g731/6Y6sLC841F5HGNO + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDRDCCAiygAwIBAgIVAJJaCEFsKewXEyQNmm3HxyP8WG0oMA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFmxvZ2luMi50ZW1wMTIzNS5oaHMuc2UwHhcNMTcwNDAz +MTMyNDUwWhcNMzcwNDAzMTMyNDUwWjAhMR8wHQYDVQQDDBZsb2dpbjIudGVtcDEy +MzUuaGhzLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcuBujdK +EIL3/PLAo6iFzVsBBtHKjdcmW0BKuvLqq2xXPeXzcCWtwV06BHTRbu1lLS/VUWQb +hv7Y16DBSPyxyJbYiugN8WqgqGUaSCLnAhlm0owX59f6uEnpCfgkS87Km5S1KeD6 +KDUA8OOdoRSjG+mFVBSlC4nvYJjB+9eideAtW5TxUgGqp9lG4aLLMAUuPzOX3imH +Vf04mNKFk2OQ3Mq20Ri8KewOpYHSXjfIPNAuxJ8mVndQ4RFazaxFmwvgD35uBN8f +jfwVFKmjPFYU/DmxMisui/6JMkur/PQyr7n1Z/WVSHphkwzunj1EkYTvxWLZSDc1 +Spn+IhjnfLVoSwIDAQABo3MwcTAdBgNVHQ4EFgQUnKKAxcCkmcDnyFi37n82nNDA +o9swUAYDVR0RBEkwR4IWbG9naW4yLnRlbXAxMjM1Lmhocy5zZYYtaHR0cHM6Ly9s +b2dpbjIudGVtcDEyMzUuaGhzLnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEB +CwUAA4IBAQCd1hisMfUZEpqKyizswbtkxLNIU1Yp4NbkNtKt2HgK8FSZHyx7bgEB +zhg7BVetgrnfeRm8bBm0MBdxXt1aQSmLv0AxhwvgPv+W4oYtQacuG8MLTXop4y4A +0libaM0vUQjJ6wniI+hZMpitaH/Q0vlO2Tq87Bg4n/cqXxBvwotBpf/R1RJXJ76y +P1J973eOl+PqoVp6sSaNKlnoGi3oSu3yC6qKN1bLtT73UJQQTrJMK71psOTTTb78 +Z/tJfXfrAU6clq8BzV9tPrGaNh8Vc8fCafyosAyIggbyGuKbnoTBSk7X1+dKFcCL +dKJkzuygfKebul7JLITyh1taLtz86Wrq + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDRDCCAiygAwIBAgIVAJFFeRTPSw5r8Nr1ASE+SxUO9SXqMA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFmxvZ2luMi50ZW1wMTIzNS5oaHMuc2UwHhcNMTcwNDAz +MTMyNDUxWhcNMzcwNDAzMTMyNDUxWjAhMR8wHQYDVQQDDBZsb2dpbjIudGVtcDEy +MzUuaGhzLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhWNQvzJ +HpTZuSkaVsPbE4S0W2MfnV2RzNzdqg8vjeWILJrrLs5oJZHfK7xxcnsiLsTRIAaW +rbeGFW2cy9fCTOJqPtG6vWuQz40qUAn0gJHGKYk/bXFpt5OkiR2XLwwtBoRO1tFz +FTCYh/S+sB38km/RLu0MWD6Gzxta3H9+eU2zVepYopAU5UCRskytEHCpGeml0w8z +oaw8mCf/8upkXsaKeH7VbTXhyS22rvqT/aTyxQMhbmVtNg7LtnJzZh+s4dYKiNAY +59Tp8hhKFonLKD705BJoDYVZpl6LJI5lsn1L3xImSamVt6QFkf1H6oUTg7V+T0uw +PJrbxtfPOVD0vwIDAQABo3MwcTAdBgNVHQ4EFgQUYSvnk/lbI16l/EDD6F7+1dSy +xSEwUAYDVR0RBEkwR4IWbG9naW4yLnRlbXAxMjM1Lmhocy5zZYYtaHR0cHM6Ly9s +b2dpbjIudGVtcDEyMzUuaGhzLnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEB +CwUAA4IBAQA+WDOAP8fltDJLtOxdVjQ9QwiPffz6CyjKIGYuXouTBKeIP0FdbFvh +Z8Cq51VyHqSOx3b5vVi9COT5LjOsz/Bo+SPGzBRAT+NjfJDvqjpXC4C8VZp7LuNJ +w0mxQqp7BHnWHsDfT/oNHnsJOM5kT0knq6h7YDL05Tm2rzy//OsrA66EYaKsycnR +PFEyLgZ0Ls+MUQgQzZDow4UHpfFwPnx/4CHQImB+aOiPvKAzbCf6S29z8BPxJta6 +ZVOgTNDyMvfjJy54qOW28X+xRFZ9JpVo1SCBY/VyM1qJsOvFesw18dJORMU444BX +1tAPLutBQ/nXr5SzoF4sUipVZGCI/nJy + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login2.temp1235.hhs.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://login2.temp1235.hhs.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://login2.temp1235.hhs.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login2.temp1235.hhs.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://login2.temp1235.hhs.se/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login2.temp1235.hhs.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">hhs.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDRDCCAiygAwIBAgIVANboDpiChpZce1QQ5dpyWf/W0JF9MA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFmxvZ2luMi50ZW1wMTIzNS5oaHMuc2UwHhcNMTcwNDAz +MTMyNDUxWhcNMzcwNDAzMTMyNDUxWjAhMR8wHQYDVQQDDBZsb2dpbjIudGVtcDEy +MzUuaGhzLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjL3UUdDF +MG+LpPoNtCylTQLQEF9V1lpKa36haGhDnbpDlfY5jMR+u/SYqZDm4XK+03CgSSFp +d6bKDpQJdXRCE1e3+zLG70nHYVYr4xJRLYXnYqOTIzHyW5Scod469j7KQX3ZJqor +VF/2I1b34S5IhvIPWcwpFCbPsy0Y0JA9u5bI60qN7WI2AvfHjSRNEyLYy26I21uO +VxWBosQOOuWJWM5u9nxxsDgx/7mXjNgG9MNndU3/asSt3gxMDWBIR8HnGRVEIpRt +Ix4osEhEv6cCvC3KW5ivWxLYjYfVf74X6110jnyFmimchjihncCg2dhFar3evBL0 +WDl+KqHw5Iq6ZQIDAQABo3MwcTAdBgNVHQ4EFgQU9dV+CoGic2FD/Qfb00dscI1d +J00wUAYDVR0RBEkwR4IWbG9naW4yLnRlbXAxMjM1Lmhocy5zZYYtaHR0cHM6Ly9s +b2dpbjIudGVtcDEyMzUuaGhzLnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEB +CwUAA4IBAQBPzRpf9a96dgiCaLUBbJ8VfuKUtmsXoO71hmLpwWobv8v9d5HK03iY +Kqm52vYm/GVlTTpar6Xg4icGLuGOvdB0/Ux0fdK9XebD9Qi0OBvD/5fD+TAbGoML +bnkT4zr2+87txGEjLtmcT47Fu2dM58UArtLSvu7cGhh50P+LD7a6Ip6KxM35X94v +m/hq55Kozrie6cB5vxSP8Kx/n5RKrLQBRedUaKNkfAacYXYKcFeWvwecnZz5Ezbs +kL8+nsk2L2EWP+5Gdvlj7Og4ZmMW3WCV5VrAcn0aknUTyguUU3iPSzDqHG+s1Woh +B90rsNE83YT8g731/6Y6sLC841F5HGNO + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDRDCCAiygAwIBAgIVAJJaCEFsKewXEyQNmm3HxyP8WG0oMA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFmxvZ2luMi50ZW1wMTIzNS5oaHMuc2UwHhcNMTcwNDAz +MTMyNDUwWhcNMzcwNDAzMTMyNDUwWjAhMR8wHQYDVQQDDBZsb2dpbjIudGVtcDEy +MzUuaGhzLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcuBujdK +EIL3/PLAo6iFzVsBBtHKjdcmW0BKuvLqq2xXPeXzcCWtwV06BHTRbu1lLS/VUWQb +hv7Y16DBSPyxyJbYiugN8WqgqGUaSCLnAhlm0owX59f6uEnpCfgkS87Km5S1KeD6 +KDUA8OOdoRSjG+mFVBSlC4nvYJjB+9eideAtW5TxUgGqp9lG4aLLMAUuPzOX3imH +Vf04mNKFk2OQ3Mq20Ri8KewOpYHSXjfIPNAuxJ8mVndQ4RFazaxFmwvgD35uBN8f +jfwVFKmjPFYU/DmxMisui/6JMkur/PQyr7n1Z/WVSHphkwzunj1EkYTvxWLZSDc1 +Spn+IhjnfLVoSwIDAQABo3MwcTAdBgNVHQ4EFgQUnKKAxcCkmcDnyFi37n82nNDA +o9swUAYDVR0RBEkwR4IWbG9naW4yLnRlbXAxMjM1Lmhocy5zZYYtaHR0cHM6Ly9s +b2dpbjIudGVtcDEyMzUuaGhzLnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEB +CwUAA4IBAQCd1hisMfUZEpqKyizswbtkxLNIU1Yp4NbkNtKt2HgK8FSZHyx7bgEB +zhg7BVetgrnfeRm8bBm0MBdxXt1aQSmLv0AxhwvgPv+W4oYtQacuG8MLTXop4y4A +0libaM0vUQjJ6wniI+hZMpitaH/Q0vlO2Tq87Bg4n/cqXxBvwotBpf/R1RJXJ76y +P1J973eOl+PqoVp6sSaNKlnoGi3oSu3yC6qKN1bLtT73UJQQTrJMK71psOTTTb78 +Z/tJfXfrAU6clq8BzV9tPrGaNh8Vc8fCafyosAyIggbyGuKbnoTBSk7X1+dKFcCL +dKJkzuygfKebul7JLITyh1taLtz86Wrq + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDRDCCAiygAwIBAgIVAJFFeRTPSw5r8Nr1ASE+SxUO9SXqMA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFmxvZ2luMi50ZW1wMTIzNS5oaHMuc2UwHhcNMTcwNDAz +MTMyNDUxWhcNMzcwNDAzMTMyNDUxWjAhMR8wHQYDVQQDDBZsb2dpbjIudGVtcDEy +MzUuaGhzLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhWNQvzJ +HpTZuSkaVsPbE4S0W2MfnV2RzNzdqg8vjeWILJrrLs5oJZHfK7xxcnsiLsTRIAaW +rbeGFW2cy9fCTOJqPtG6vWuQz40qUAn0gJHGKYk/bXFpt5OkiR2XLwwtBoRO1tFz +FTCYh/S+sB38km/RLu0MWD6Gzxta3H9+eU2zVepYopAU5UCRskytEHCpGeml0w8z +oaw8mCf/8upkXsaKeH7VbTXhyS22rvqT/aTyxQMhbmVtNg7LtnJzZh+s4dYKiNAY +59Tp8hhKFonLKD705BJoDYVZpl6LJI5lsn1L3xImSamVt6QFkf1H6oUTg7V+T0uw +PJrbxtfPOVD0vwIDAQABo3MwcTAdBgNVHQ4EFgQUYSvnk/lbI16l/EDD6F7+1dSy +xSEwUAYDVR0RBEkwR4IWbG9naW4yLnRlbXAxMjM1Lmhocy5zZYYtaHR0cHM6Ly9s +b2dpbjIudGVtcDEyMzUuaGhzLnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEB +CwUAA4IBAQA+WDOAP8fltDJLtOxdVjQ9QwiPffz6CyjKIGYuXouTBKeIP0FdbFvh +Z8Cq51VyHqSOx3b5vVi9COT5LjOsz/Bo+SPGzBRAT+NjfJDvqjpXC4C8VZp7LuNJ +w0mxQqp7BHnWHsDfT/oNHnsJOM5kT0knq6h7YDL05Tm2rzy//OsrA66EYaKsycnR +PFEyLgZ0Ls+MUQgQzZDow4UHpfFwPnx/4CHQImB+aOiPvKAzbCf6S29z8BPxJta6 +ZVOgTNDyMvfjJy54qOW28X+xRFZ9JpVo1SCBY/VyM1qJsOvFesw18dJORMU444BX +1tAPLutBQ/nXr5SzoF4sUipVZGCI/nJy + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://login2.temp1235.hhs.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Stockholm School of Economics</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Handelshögskolan i Stockholm</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Stockholm School of Economics -- TEST ONLY</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Handelshögskolan i Stockholm -- ENDAST TEST</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.hhs.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://www.hhs.se/sv/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:EmailAddress>mailto:gregor.borgstrand@hhs.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:EmailAddress>mailto:itsupport@hhs.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/miunidptest.miun.se-idp-shibboleth.xml b/swamid-testing/miunidptest.miun.se-idp-shibboleth.xml new file mode 100644 index 00000000..0d802fee --- /dev/null +++ b/swamid-testing/miunidptest.miun.se-idp-shibboleth.xml @@ -0,0 +1,238 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://miunidptest.miun.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-03-14T13:27:55Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://miunidptest.miun.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">miun.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Mittuniversitetet (test)</mdui:DisplayName> + <mdui:Description xml:lang="sv">IDP för test på Mittuniversitetet</mdui:Description> + <mdui:DisplayName xml:lang="en">Mid Sweden University (test)</mdui:DisplayName> + <mdui:Description xml:lang="en">IDP for testing at Mid Sweden University</mdui:Description> + <mdui:InformationURL xml:lang="en">http://www.miun.se/en/</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">http://www.miun.se</mdui:InformationURL> + <mdui:Keywords xml:lang="en">miun miu mittuniversitetet mid+sweden+university miunpunktse</mdui:Keywords> + <mdui:Keywords xml:lang="sv">miun miu mittuniversitetet mid+sweden+university miunpunktse</mdui:Keywords> + <mdui:PrivacyStatementURL xml:lang="sv">https://miun.se/personuppgifterIdP</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://miun.se/en/personuppgifterIdP</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="en" height="146" width="260">https://miunidptest.miun.se/idp/images/miun-logo.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="146" width="260">https://miunidptest.miun.se/idp/images/miun-logo.png</mdui:Logo> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>miun.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:63.176762,14.651352</mdui:GeolocationHint> + <mdui:GeolocationHint>geo:62.394626,17.284259</mdui:GeolocationHint> + <mdui:GeolocationHint>geo:62.630989,17.946473</mdui:GeolocationHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDNzCCAh+gAwIBAgIUDopqrwr+8ysNjsx8WcAQU0xgFqYwDQYJKoZIhvcNAQEL +BQAwHjEcMBoGA1UEAwwTbWl1bmlkcHRlc3QubWl1bi5zZTAeFw0xNjAzMTQxMDQ4 +MzRaFw0zNjAzMTQxMDQ4MzRaMB4xHDAaBgNVBAMME21pdW5pZHB0ZXN0Lm1pdW4u +c2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSfUra2csPm7zfml2+ ++FLWgZ3C3W7V77ogOuOd/5+79XywWdtHD1WrJntmL4eGvytW8vU6/DOo0c4UVKxt +DKB2LSIy6uwd+OPbnWl6IQbk2ylb0UOIMV1pLMgBmrBoKt2dtpUH0T3Oqg2D7r9r +CH8nk7rgrT5INIQDCS1NNVWEgRqltMH1Mmn90J2XzoGZrl6ZmEZ8uWURcypuPZcT +QY9VvbVP8PKz1Bo9Qhh0LjXOumIGCdQoH0sQytePjcroLpL1HSAvX7DDsPNl4/Qh +snILrHdK2z601oN1Ngu1rxrqWz0H2j9Z8U+zYjxdGOpvjXPg8iOIZJW0YM36SbcB +SfKZAgMBAAGjbTBrMB0GA1UdDgQWBBQC5zJpccPPIWSbMiJAkQHQ39PBNTBKBgNV +HREEQzBBghNtaXVuaWRwdGVzdC5taXVuLnNlhipodHRwczovL21pdW5pZHB0ZXN0 +Lm1pdW4uc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBACdM6Gcf +mHA0Hr1zC4T18vXqj2todlOm/wBoisGcJ8Yvz5YDozE0Ginn1RpjaUab/v10s8BK +xBwVnyzTupIJMl0pW7XEHzVEWStpn69m+iNFtDuCe8gVvILI0dRt1NVUD/+b3d1U +/QePhM43hJVGWi7/yyP12INV98P4HdZ91VMxafGzFVCh/cgLjYxwVaAYt0kCzZqE +oAK9ajxQTMEz7h5ebJDfi+eydnDmzUFuFYzjB4CIPs0YLvyr5R1wXOxzZcpPE7c5 +qjqmAlpXZIozlPXNuM5NG2qX5fs+okW0ZvDzp7uGthyxxTchBR8PxTfSnE2ImX2a +Q2DB2f7ifMpnsvw=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDODCCAiCgAwIBAgIVAPRwsS0jawwgnaLnIOydT5jeXjVhMA0GCSqGSIb3DQEB +CwUAMB4xHDAaBgNVBAMME21pdW5pZHB0ZXN0Lm1pdW4uc2UwHhcNMTYwMzE0MTA0 +ODMyWhcNMzYwMzE0MTA0ODMyWjAeMRwwGgYDVQQDDBNtaXVuaWRwdGVzdC5taXVu +LnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4EPO2E98M79WKFHy +APjeQALlMgPuAkrVa9aiC84V7q3hgfdbD0wbNJTGA9uj7an2Fz5uNfUWS1Rg/7DT +uEjrGpsWXn3mlBuH2wOZe9wHqFwVf5NUos/00gLxs6WIjaNv6gxnbnVss0pKURTL ++bl4mn7XSPpbNosWlHkn4IbnXBi8zTwQ7Us2+klu15YfAPnlkMYgzOl1YkxqB3cM +zxnejzBjzpG1VJWkLUOEFxlFYUwEsn5aOMpT4DXEq1PSSZfDmtz6tN+WQiV8W1rt +QYyThOUwvF+L6Z9N960IFfiirCVk30doFfu5P/KmzciFWKcRHH2Jce3R/pC0SVNs +56Z63QIDAQABo20wazAdBgNVHQ4EFgQUhtV3ZMcE4JWqlNJJVYkqB5inKUEwSgYD +VR0RBEMwQYITbWl1bmlkcHRlc3QubWl1bi5zZYYqaHR0cHM6Ly9taXVuaWRwdGVz +dC5taXVuLnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQCKf/Z8 +m1RMKsiP56XEBD/KlZToM23WF+i3xw7IPlo6a+bMT2emxKBCVv3CU6oMe55TMUeu +RHzNHB3g0oa/xH+APxLbP64FMvDrJAPFDsltRX97C9UyO47rBL983Jcjo20fjCt1 +03xMipYa9aYc6miUSXKSP0zLu8XoyRo8Vlx0+4y1hI1B/vfgw2I850thSfM/TepO +eHLpC5j1cjhz+omgj8KtOu4iwRShXmOTb3/MPKYQ0BezIuI99QfavE3jkdVg4+bb +sEjpTEgCNeNotsnug8EzSf3jMac7QVsKk/ZUjpMUiH1QWeXQSzpkT+BfEjcXUm23 +p8Zy6HNa1RvGgW8P</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDNzCCAh+gAwIBAgIUPMQjIIrMt+goB+uHSwi2oO14KAgwDQYJKoZIhvcNAQEL +BQAwHjEcMBoGA1UEAwwTbWl1bmlkcHRlc3QubWl1bi5zZTAeFw0xNjAzMTQxMDQ4 +MzRaFw0zNjAzMTQxMDQ4MzRaMB4xHDAaBgNVBAMME21pdW5pZHB0ZXN0Lm1pdW4u +c2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgqMKF+EDtjw74HWSy +t2SU4fV4734PyV9gsPBJph8VQ32cAB7tqkqhIQbkHJKhJ4XeladH+ifk+BOdje9n +EwIKIehxdujW832NAlMkEXfo3M2wt8UCBATCoWsxexkFUtNhZQnvtUm7dW0GuDYE +NaZd0W6JMz0vBl83+JatCHu30kHu6CDgo/D6S9RL4pj3KiN08oR5Rjn5jHdNgMTf +dNuYn2jsvKiR9EtcXC2KgvtYwqzGpjmcFxthBPBF3lzAza8ES16UVCPxVuH9DSJ5 +gB20wTMzP9xKSWQ/NKjh4AqEZ0hLH4dXGDzA3G3h/IkSgfaB+XalZDC6vzfuXXnv +dE2HAgMBAAGjbTBrMB0GA1UdDgQWBBREfhKvA2DRE1mKkZfCgjAyiwegWzBKBgNV +HREEQzBBghNtaXVuaWRwdGVzdC5taXVuLnNlhipodHRwczovL21pdW5pZHB0ZXN0 +Lm1pdW4uc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAGl9GoKC +gm7ywKn8I5eAF+MEUkDPPPt5KMSfIe7SZmI975vceeCDaPOZ8gvKuAHHC3yG6fgf +FLqNffN26y4k6EYg4XVGq5u8SmEwDktTn4wRJyj4NN9cqg3EZbw7wa10jTVTGEWm +13Hf0TEi2qAkU3Xb8K7hHDy//BnKHo1FZLcIPMUGrIpaCl32klb5fAwvE+E6QgCB +aFup4A/f+gTnofyIo1gi8TmMs/7v+A5Ty39VdmU15eXvA2TBhGEDFmVAQWnZvSQ2 +YAe2eCFJhzuNutfMyzzH4ZE1da+vfxQX0yLQpKiK4XRIH4Jr1THM/12L+YNmlRPF +7RI4YGkyabhUuiM=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://miunidptest.miun.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://miunidptest.miun.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://miunidptest.miun.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://miunidptest.miun.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://miunidptest.miun.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">miun.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDNzCCAh+gAwIBAgIUDopqrwr+8ysNjsx8WcAQU0xgFqYwDQYJKoZIhvcNAQEL +BQAwHjEcMBoGA1UEAwwTbWl1bmlkcHRlc3QubWl1bi5zZTAeFw0xNjAzMTQxMDQ4 +MzRaFw0zNjAzMTQxMDQ4MzRaMB4xHDAaBgNVBAMME21pdW5pZHB0ZXN0Lm1pdW4u +c2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSfUra2csPm7zfml2+ ++FLWgZ3C3W7V77ogOuOd/5+79XywWdtHD1WrJntmL4eGvytW8vU6/DOo0c4UVKxt +DKB2LSIy6uwd+OPbnWl6IQbk2ylb0UOIMV1pLMgBmrBoKt2dtpUH0T3Oqg2D7r9r +CH8nk7rgrT5INIQDCS1NNVWEgRqltMH1Mmn90J2XzoGZrl6ZmEZ8uWURcypuPZcT +QY9VvbVP8PKz1Bo9Qhh0LjXOumIGCdQoH0sQytePjcroLpL1HSAvX7DDsPNl4/Qh +snILrHdK2z601oN1Ngu1rxrqWz0H2j9Z8U+zYjxdGOpvjXPg8iOIZJW0YM36SbcB +SfKZAgMBAAGjbTBrMB0GA1UdDgQWBBQC5zJpccPPIWSbMiJAkQHQ39PBNTBKBgNV +HREEQzBBghNtaXVuaWRwdGVzdC5taXVuLnNlhipodHRwczovL21pdW5pZHB0ZXN0 +Lm1pdW4uc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBACdM6Gcf +mHA0Hr1zC4T18vXqj2todlOm/wBoisGcJ8Yvz5YDozE0Ginn1RpjaUab/v10s8BK +xBwVnyzTupIJMl0pW7XEHzVEWStpn69m+iNFtDuCe8gVvILI0dRt1NVUD/+b3d1U +/QePhM43hJVGWi7/yyP12INV98P4HdZ91VMxafGzFVCh/cgLjYxwVaAYt0kCzZqE +oAK9ajxQTMEz7h5ebJDfi+eydnDmzUFuFYzjB4CIPs0YLvyr5R1wXOxzZcpPE7c5 +qjqmAlpXZIozlPXNuM5NG2qX5fs+okW0ZvDzp7uGthyxxTchBR8PxTfSnE2ImX2a +Q2DB2f7ifMpnsvw=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDODCCAiCgAwIBAgIVAPRwsS0jawwgnaLnIOydT5jeXjVhMA0GCSqGSIb3DQEB +CwUAMB4xHDAaBgNVBAMME21pdW5pZHB0ZXN0Lm1pdW4uc2UwHhcNMTYwMzE0MTA0 +ODMyWhcNMzYwMzE0MTA0ODMyWjAeMRwwGgYDVQQDDBNtaXVuaWRwdGVzdC5taXVu +LnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4EPO2E98M79WKFHy +APjeQALlMgPuAkrVa9aiC84V7q3hgfdbD0wbNJTGA9uj7an2Fz5uNfUWS1Rg/7DT +uEjrGpsWXn3mlBuH2wOZe9wHqFwVf5NUos/00gLxs6WIjaNv6gxnbnVss0pKURTL ++bl4mn7XSPpbNosWlHkn4IbnXBi8zTwQ7Us2+klu15YfAPnlkMYgzOl1YkxqB3cM +zxnejzBjzpG1VJWkLUOEFxlFYUwEsn5aOMpT4DXEq1PSSZfDmtz6tN+WQiV8W1rt +QYyThOUwvF+L6Z9N960IFfiirCVk30doFfu5P/KmzciFWKcRHH2Jce3R/pC0SVNs +56Z63QIDAQABo20wazAdBgNVHQ4EFgQUhtV3ZMcE4JWqlNJJVYkqB5inKUEwSgYD +VR0RBEMwQYITbWl1bmlkcHRlc3QubWl1bi5zZYYqaHR0cHM6Ly9taXVuaWRwdGVz +dC5taXVuLnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQCKf/Z8 +m1RMKsiP56XEBD/KlZToM23WF+i3xw7IPlo6a+bMT2emxKBCVv3CU6oMe55TMUeu +RHzNHB3g0oa/xH+APxLbP64FMvDrJAPFDsltRX97C9UyO47rBL983Jcjo20fjCt1 +03xMipYa9aYc6miUSXKSP0zLu8XoyRo8Vlx0+4y1hI1B/vfgw2I850thSfM/TepO +eHLpC5j1cjhz+omgj8KtOu4iwRShXmOTb3/MPKYQ0BezIuI99QfavE3jkdVg4+bb +sEjpTEgCNeNotsnug8EzSf3jMac7QVsKk/ZUjpMUiH1QWeXQSzpkT+BfEjcXUm23 +p8Zy6HNa1RvGgW8P</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDNzCCAh+gAwIBAgIUPMQjIIrMt+goB+uHSwi2oO14KAgwDQYJKoZIhvcNAQEL +BQAwHjEcMBoGA1UEAwwTbWl1bmlkcHRlc3QubWl1bi5zZTAeFw0xNjAzMTQxMDQ4 +MzRaFw0zNjAzMTQxMDQ4MzRaMB4xHDAaBgNVBAMME21pdW5pZHB0ZXN0Lm1pdW4u +c2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgqMKF+EDtjw74HWSy +t2SU4fV4734PyV9gsPBJph8VQ32cAB7tqkqhIQbkHJKhJ4XeladH+ifk+BOdje9n +EwIKIehxdujW832NAlMkEXfo3M2wt8UCBATCoWsxexkFUtNhZQnvtUm7dW0GuDYE +NaZd0W6JMz0vBl83+JatCHu30kHu6CDgo/D6S9RL4pj3KiN08oR5Rjn5jHdNgMTf +dNuYn2jsvKiR9EtcXC2KgvtYwqzGpjmcFxthBPBF3lzAza8ES16UVCPxVuH9DSJ5 +gB20wTMzP9xKSWQ/NKjh4AqEZ0hLH4dXGDzA3G3h/IkSgfaB+XalZDC6vzfuXXnv +dE2HAgMBAAGjbTBrMB0GA1UdDgQWBBREfhKvA2DRE1mKkZfCgjAyiwegWzBKBgNV +HREEQzBBghNtaXVuaWRwdGVzdC5taXVuLnNlhipodHRwczovL21pdW5pZHB0ZXN0 +Lm1pdW4uc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAGl9GoKC +gm7ywKn8I5eAF+MEUkDPPPt5KMSfIe7SZmI975vceeCDaPOZ8gvKuAHHC3yG6fgf +FLqNffN26y4k6EYg4XVGq5u8SmEwDktTn4wRJyj4NN9cqg3EZbw7wa10jTVTGEWm +13Hf0TEi2qAkU3Xb8K7hHDy//BnKHo1FZLcIPMUGrIpaCl32klb5fAwvE+E6QgCB +aFup4A/f+gTnofyIo1gi8TmMs/7v+A5Ty39VdmU15eXvA2TBhGEDFmVAQWnZvSQ2 +YAe2eCFJhzuNutfMyzzH4ZE1da+vfxQX0yLQpKiK4XRIH4Jr1THM/12L+YNmlRPF +7RI4YGkyabhUuiM=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://miunidptest.miun.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">MIUN</md:OrganizationName> + <md:OrganizationName xml:lang="sv">MIUN</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Mid Sweden University</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Mittuniversitetet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.miun.se/en/</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://www.miun.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:Company>Mid Sweden University</md:Company> + <md:SurName>SystemDrift, INFRA Department</md:SurName> + <md:EmailAddress>mailto:swamidcontact@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 10-142 80 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:Company>Mid Sweden University</md:Company> + <md:GivenName>Incident Manager</md:GivenName> + <md:SurName>SystemDrift, INFRA Department</md:SurName> + <md:EmailAddress>mailto:swamidcontact@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 10-142 80 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Mid Sweden University</md:Company> + <md:SurName>IT Helpdesk</md:SurName> + <md:EmailAddress>mailto:helpdesk@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 10-142 80 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>Mid Sweden University</md:Company> + <md:GivenName>Incident Manager</md:GivenName> + <md:SurName>Mid Sweden University Incident Manager</md:SurName> + <md:EmailAddress>mailto:abuse@miun.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/miunidtest.test.miun.se-saml-miun-metadata.xml b/swamid-testing/miunidtest.test.miun.se-saml-miun-metadata.xml new file mode 100644 index 00000000..abcb63e1 --- /dev/null +++ b/swamid-testing/miunidtest.test.miun.se-saml-miun-metadata.xml @@ -0,0 +1,81 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://miunidtest.test.miun.se/saml/miun/metadata"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-11-12T08:35:56Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Studentinformationsverktyg</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Student Information Tools</mdui:DisplayName> + <mdui:Description xml:lang="sv">Tjänster för studenter.</mdui:Description> + <mdui:Description xml:lang="en">Services for student.</mdui:Description> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.miun.se/privacypolicy/studentinformationsverktyg</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.miun.se/privacypolicy/studentinformationtools</mdui:PrivacyStatementURL> + <mdui:InformationURL xml:lang="en">https://www.miun.se/privacypolicy/studentinformationtools</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">https://www.miun.se/privacypolicy/studentinformationsverktyg</mdui:InformationURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://miunidtest.test.miun.se/saml/miun/sls"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://miunidtest.test.miun.se/saml/miun/acs" index="1"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">Studentinformationsverktyg</md:ServiceName> + <md:ServiceName xml:lang="sv">Studentinformationsverktyg</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">MIUN</md:OrganizationName> + <md:OrganizationName xml:lang="en">MIUN</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Mittuniversitetet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Mid Sweden University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.miun.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.miun.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Mid Sweden University</md:Company> + <md:SurName>SystemDrift, INFRA, Mittuniversitetet</md:SurName> + <md:EmailAddress>mailto:swamidcontact@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 10-142 80 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Mid Sweden University</md:Company> + <md:SurName>SystemDrift, INFRA, Mittuniversitetet</md:SurName> + <md:EmailAddress>mailto:swamidcontact@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 10-142 80 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Mid Sweden University</md:Company> + <md:SurName>IT Helpdesk</md:SurName> + <md:EmailAddress>mailto:helpdesk@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 771 976130</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Incident Manager</md:GivenName> + <md:SurName>Mid Sweden University Icident Manager</md:SurName> + <md:EmailAddress>mailto:abuse@miun.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/miunidutv.test.miun.se-saml-miun-metadata.xml b/swamid-testing/miunidutv.test.miun.se-saml-miun-metadata.xml new file mode 100644 index 00000000..3ca2568f --- /dev/null +++ b/swamid-testing/miunidutv.test.miun.se-saml-miun-metadata.xml @@ -0,0 +1,81 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://miunidutv.test.miun.se/saml/miun/metadata"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-11-12T08:35:56Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Studentinformationsverktyg</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Student Information Tools</mdui:DisplayName> + <mdui:Description xml:lang="sv">Tjänster för studenter.</mdui:Description> + <mdui:Description xml:lang="en">Services for student.</mdui:Description> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.miun.se/privacypolicy/studentinformationsverktyg</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.miun.se/privacypolicy/studentinformationtools</mdui:PrivacyStatementURL> + <mdui:InformationURL xml:lang="en">https://www.miun.se/privacypolicy/studentinformationtools</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">https://www.miun.se/privacypolicy/studentinformationsverktyg</mdui:InformationURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIEoTCCAwmgAwIBAgIJALr6KmPgG+ebMA0GCSqGSIb3DQEBCwUAMGcxCzAJBgNVBAYTAlNFMRMwEQYDVQQIDApTb21lLVN0YXRlMSEwHwYDVQQKDBhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQxIDAeBgNVBAMMF21pdW5pZHB1dHYudGVzdC5taXVuLnNlMB4XDTIwMDkyMjA4MjY0N1oXDTMwMDkyMjA4MjY0N1owZzELMAkGA1UEBhMCU0UxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoMGEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDEgMB4GA1UEAwwXbWl1bmlkcHV0di50ZXN0Lm1pdW4uc2UwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDG6ZhVyA1nYDkcjSOWTBHSVUWwo0ku36oZ/+KWo4KHK9PaA66FpQc0iisOO7aXXFFbtR2WS3dkymUp4wGiOCuda/omF1SMTmYyYKAcPXAei+dsVxNsJ+5notWj5JRKnRQxJ4TnS7GJiS1pK2JBAifx4ssPZCIa5F941iQDiJk6r3/S9C4+AxCkQej7zrNr9AzFYksNSOzLcOxZatG6X+L6EV+ujAtIiwtiJ8rnh4jFyY33LrXuVWty3fGPBn4HG7NiCnjRt+MopEPc0TAM0XX+5xY6TTEYwQASK66ScypIfSBuhTiVixpRcKcMcAENHKQJTNueS+f0w23ESKpGgKGn98MwIy93PzEgX3T9f3wefKLVSxHuPizOs5tWPoGEtzT1RDqYR7gZxkKw0vz8fFmt/JQPOvX0xTZzxomaiFCgyyZsHk6gtlYnTtFZf4ULI/NiK8mC9oQA6VR3FqOAsYpV3i6atVl55g4gUs4lXuRKFW2HbNrarDhZ2IEvLHrzCasCAwEAAaNQME4wHQYDVR0OBBYEFChMG93llg10eQb2YkbVrxb9k5ZpMB8GA1UdIwQYMBaAFChMG93llg10eQb2YkbVrxb9k5ZpMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggGBABz2u3FfSXJyLyMpuTdGV2H0G1t2hRQi6F+uMdCQEwZ5dXbX5sutEl5JzKR57amtNfXodeCQck1pgXDoT3dM8lgi8f4Oz1tKo0PZQfXL+zQiev0/9X6iC1cXWqjuMw28c4o0YYz+j+8WFdaNjW4zxYNBay9hBsPoofxWZeaTGV5Y93svy4xe+9G0Mbo42LOUDXEhOnHMip3TdBMGsNu2VEcUzLiKjKZBmzUtqISofD61fdI8d22je/bRim7MV69i9uGHw4pmbWEd3OAmMGFIIyOZOM/fPAIxLKV7kZs11xVBL14ViHFBKklQcYqZ1ws+N0fUhwaBzQzzUzaPz9wN4X0ixvr0wNM9M3Sv/dM4Cfq7fkvp5qJBuj+nIX7YgBPllMwUtf9XddGYxZJZrkpjNlt03WPTmPU3wZDiR125442ANoPZZ1TAC5W3z7Q+5SKCSMaZxNRagwwr5oeA3iLdfaJsHEln6f215KAMTisHCVuscmX0kA/YwWTkIMztb5JUcg==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://miunidutv.test.miun.se/saml/miun/sls"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://miunidutv.test.miun.se/saml/miun/acs" index="1"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">Student Information Tools</md:ServiceName> + <md:ServiceName xml:lang="sv">Studentinformationsverktyg</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">MIUN</md:OrganizationName> + <md:OrganizationName xml:lang="en">MIUN</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Mittuniversitetet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Mid Sweden University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.miun.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.miun.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Mid Sweden University</md:Company> + <md:SurName>SystemDrift, INFRA, Mittuniversitetet</md:SurName> + <md:EmailAddress>mailto:swamidcontact@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 10-142 80 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Mid Sweden University</md:Company> + <md:SurName>SystemDrift, INFRA, Mittuniversitetet</md:SurName> + <md:EmailAddress>mailto:swamidcontact@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 10-142 80 00</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Mid Sweden University</md:Company> + <md:SurName>IT Helpdesk</md:SurName> + <md:EmailAddress>mailto:helpdesk@miun.se</md:EmailAddress> + <md:TelephoneNumber>+46 771 976130</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Incident Manager</md:GivenName> + <md:SurName>Mid Sweden University Icident Manager</md:SurName> + <md:EmailAddress>mailto:abuse@miun.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/nya-00.its.umu.se-aws-idp.xml b/swamid-testing/nya-00.its.umu.se-aws-idp.xml new file mode 100644 index 00000000..23702110 --- /dev/null +++ b/swamid-testing/nya-00.its.umu.se-aws-idp.xml @@ -0,0 +1,82 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://nya-00.its.umu.se/aws-idp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-09-04T13:59:17Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://nya-00.its.umu.se/aws-idp"> + <md:Extensions> + <shibmd:Scope regexp="false">antagning.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">nya-00 Test IdP antagning.se</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">nya-00 Test IdP universityadmissions.se</mdui:DisplayName> + <mdui:Description xml:lang="sv">An IdP in the development environment of NyA</mdui:Description> + <mdui:Description xml:lang="en">An IdP in the development environment of NyA</mdui:Description> + <mdui:Keywords xml:lang="sv">antagning.se universityadmissions.se</mdui:Keywords> + <mdui:Keywords xml:lang="en">antagning.se universityadmissions.se</mdui:Keywords> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.umu.se/om-webbplatsen/juridisk-information/behandling-av-personuppgifter/</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.umu.se/en/about-the-website/legal-information/processing-of-personal-data/</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> 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 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://nya-00.its.umu.se:8442/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://nya-00.its.umu.se:8442/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://nya-00.its.umu.se:442/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://nya-00.its.umu.se:442/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://nya-00.its.umu.se:442/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://nya-00.its.umu.se:442/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">antagning.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> 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 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://nya-00.its.umu.se:8442/idp/profile/SAML1/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://nya-00.its.umu.se:8442/idp/profile/SAML2/SOAP/AttributeQuery"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">UmU-ITS-NyA-dev</md:OrganizationName> + <md:OrganizationName xml:lang="en">UmU-ITS-NyA-dev</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">ITS, it-stod-och-systemutveckling</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">ICT, Services and System Development</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">https://www.umu.se/it-stod-och-systemutveckling/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">https://www.umu.se/en/ict-services-and-system-development/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Umea University</md:Company> + <md:SurName>Mikael Lindmark</md:SurName> + <md:EmailAddress>mailto:mikael.lindmark@umu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/openidp.feide.no.xml b/swamid-testing/openidp.feide.no.xml new file mode 100644 index 00000000..1f146aff --- /dev/null +++ b/swamid-testing/openidp.feide.no.xml @@ -0,0 +1,32 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://openidp.feide.no"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-10-10T15:43:06Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://openidp.feide.no"> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIICizCCAfQCCQCY8tKaMc0BMjANBgkqhkiG9w0BAQUFADCBiTELMAkGA1UEBhMCTk8xEjAQBgNVBAgTCVRyb25kaGVpbTEQMA4GA1UEChMHVU5JTkVUVDEOMAwGA1UECxMFRmVpZGUxGTAXBgNVBAMTEG9wZW5pZHAuZmVpZGUubm8xKTAnBgkqhkiG9w0BCQEWGmFuZHJlYXMuc29sYmVyZ0B1bmluZXR0Lm5vMB4XDTA4MDUwODA5MjI0OFoXDTM1MDkyMzA5MjI0OFowgYkxCzAJBgNVBAYTAk5PMRIwEAYDVQQIEwlUcm9uZGhlaW0xEDAOBgNVBAoTB1VOSU5FVFQxDjAMBgNVBAsTBUZlaWRlMRkwFwYDVQQDExBvcGVuaWRwLmZlaWRlLm5vMSkwJwYJKoZIhvcNAQkBFhphbmRyZWFzLnNvbGJlcmdAdW5pbmV0dC5ubzCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAt8jLoqI1VTlxAZ2axiDIThWcAOXdu8KkVUWaN/SooO9O0QQ7KRUjSGKN9JK65AFRDXQkWPAu4HlnO4noYlFSLnYyDxI66LCr71x4lgFJjqLeAvB/GqBqFfIZ3YK/NrhnUqFwZu63nLrZjcUZxNaPjOOSRSDaXpv1kb5k3jOiSGECAwEAATANBgkqhkiG9w0BAQUFAAOBgQBQYj4cAafWaYfjBU2zi1ElwStIaJ5nyp/s/8B8SAPK2T79McMyccP3wSW13LHkmM1jwKe3ACFXBvqGQN0IbcH49hu0FKhYFM/GPDJcIHFBsiyMBXChpye9vBaTNEBCtU3KjjyG0hRT2mAQ9h+bkPmOvlEo/aH0xR68Z9hw4PF13w==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://openidp.feide.no/simplesaml/saml2/idp/SingleLogoutService.php"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://openidp.feide.no/simplesaml/saml2/idp/SSOService.php"/> + </md:IDPSSODescriptor> + <md:ContactPerson contactType="technical"> + <md:GivenName>Andreas</md:GivenName> + <md:SurName>Åkre Solberg</md:SurName> + <md:EmailAddress>mailto:andreas@uninett.no</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/permitwinstaging1.caleaccess.com.xml b/swamid-testing/permitwinstaging1.caleaccess.com.xml new file mode 100644 index 00000000..fd35829d --- /dev/null +++ b/swamid-testing/permitwinstaging1.caleaccess.com.xml @@ -0,0 +1,126 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://permitwinstaging1.caleaccess.com"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-07-04T11:36:21Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://permitwinstaging1.caleaccess.com/Shibboleth.sso/Login/Lund_University"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Flowbird Parking Services</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Flowbird Parking Services</mdui:DisplayName> + <mdui:Description xml:lang="sv">Webbaserat system för parkeringstillstånd</mdui:Description> + <mdui:Description xml:lang="en">A web based parking solution</mdui:Description> + <mdui:PrivacyStatementURL xml:lang="en">https://calepermit.com/customer/swamid/privacypolicy.html</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:KeyName>caleaccess.com</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=caleaccess.com</ds:X509SubjectName> + <ds:X509Certificate>MIID/DCCAmSgAwIBAgIUZQq7U9ElqvROzxsBFSVGCFylSp4wDQYJKoZIhvcNAQEL +BQAwGTEXMBUGA1UEAxMOY2FsZWFjY2Vzcy5jb20wHhcNMjAwNjI1MDgzNDQxWhcN +MzAwNjIzMDgzNDQxWjAZMRcwFQYDVQQDEw5jYWxlYWNjZXNzLmNvbTCCAaIwDQYJ +KoZIhvcNAQEBBQADggGPADCCAYoCggGBAKvksESS+EIF5od1vgwxRfR6m4qat1VB +tnFJEO7hEiUrBlWwjiHcGQC6fg337aEGzh4g+dNBOeJRST+8ZmgbGc6R7O6gAQfT +qtAaJAcfSzYl3Q6dXMU0ziQMtsZcJdIIbrMOF6eEsbK311wcZx+2g5nKIa280Bhg +ZZI4fO0FBamBl4SEXzIxZ/7E+TtQjJDUTqJ5OuHF+BxG4awEVaIKfdseLHcbsIoM +l6rNiSVd+/X6YD0dEhgWWd4aZxhgS4JOXOcPb6ztbF7EaM8z93ImRaHI9z2WO5Tw +u3Wf/lNPaV71lmyZid9r29WEdiMdKe1aEokrhQJVF0Wz4YMlCwVIpAMKbOUTBDHR +gli8QPyCYHw5SywxLwkZaVSb1ipba0nUbtNRDdtPezAXZvj3h1NyIoD+7ihTkIMd +MuaTrXYrpW3RxqmdeNC3/yJJ+7PTkKa1VyYkJ5IoHJHS1aWMkgwsY/KmpUKuYtUN +R0jNXMJTwOWCOMHTXSEmEPhhiemggU5k9wIDAQABozwwOjAZBgNVHREEEjAQgg5j +YWxlYWNjZXNzLmNvbTAdBgNVHQ4EFgQUdAqevqVWsBzQHNJ63IKrJwRTaS8wDQYJ +KoZIhvcNAQELBQADggGBAB2F7f11FaCRhVIgI5V6aWWsnK1nNw80V6O8STQdiHXX +VnKGF+mkJmtoeNe0hJKptqQatheFzagBlzSrmvUI4FUkx5yI/0apl19402niRg/G ++7BMlR4KtHSDFdT6NqMMnBixU0ozFE/caeLN1RP7bZHXfP9pmz/pp6s/n85UvKhu +ZekcmCF4Gr8t0/DyalRojDmAz9g2JCJIHUzctzhUM2bpWk6pbo0VDihL2YLSQSXc +BqOYWfgAl40ktDOZlviwhNKOAV6SNBe9xMFW/DqiKgggOQzCKMHsKvUYSuV4ALWe +JR5RtUCyxnGYSKsCabD6V0PsL8rObVdC4PDwfv/TFRpS8Y5VDAO3j9/h1blS108d +k1DhoZaPeEIHa97F5j6qXpFqadLLjV1O8Ph1q/EFkbAS0MYtMyRTOlxy4qypSIaO +32l60CiSDNoQfgD0ey5ENM3vau/GSQd/ylBD1717hLEjNA4+kl2AFNPJ6r19ZNpQ +tt8Ph0n7cMJdPPS6TcNfEA== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://permitwinstaging1.caleaccess.com/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://permitwinstaging1.caleaccess.com/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://permitwinstaging1.caleaccess.com/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://permitwinstaging1.caleaccess.com/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://permitwinstaging1.caleaccess.com/Shibboleth.sso/SLO/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://permitwinstaging1.caleaccess.com/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AttributeConsumingService index="1" isDefault="true"> + <md:ServiceName xml:lang="en">Flowbird Parking Services</md:ServiceName> + <md:RequestedAttribute FriendlyName="schacHomeOrganization" Name="urn:oid:1.3.6.1.4.1.25178.1.2.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="schacHomeOrganizationType" Name="urn:oid:1.3.6.1.4.1.25178.1.2.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="personalIdentityNumber" Name="urn:oid:1.2.752.29.4.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="o" Name="urn:oid:2.5.4.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/> + <md:RequestedAttribute FriendlyName="schacDateOfBirth" Name="urn:oid:1.3.6.1.4.1.25178.1.2.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/> + <md:RequestedAttribute FriendlyName="cn" Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/> + <md:RequestedAttribute FriendlyName="c" Name="urn:oid:2.5.4.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/> + <md:RequestedAttribute FriendlyName="co" Name="urn:oid:0.9.2342.19200300.100.1.43" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Flowbird Sverige AB</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Flowbird Sverige AB</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.caleaccess.com/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:SurName>Zoran Ivic</md:SurName> + <md:EmailAddress>mailto:zoran.ivic@service.lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Flowbird Sverige AB</md:Company> + <md:GivenName>Stefan</md:GivenName> + <md:SurName>Belkot</md:SurName> + <md:EmailAddress>mailto:stefan.belkot@flowbird.group</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Flowbird Sverige AB</md:Company> + <md:GivenName>Stefan</md:GivenName> + <md:SurName>Belkot</md:SurName> + <md:EmailAddress>mailto:stefan.belkot@flowbird.group</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/referens-idp.skolfederation.se-idp-shibboleth.xml b/swamid-testing/referens-idp.skolfederation.se-idp-shibboleth.xml new file mode 100644 index 00000000..85d816f5 --- /dev/null +++ b/swamid-testing/referens-idp.skolfederation.se-idp-shibboleth.xml @@ -0,0 +1,93 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://referens-idp.skolfederation.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-10-10T15:43:06Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://referens-idp.skolfederation.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">referens-idp.skolfederation.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDZTCCAk2gAwIBAgIUKPuSVuIjr2FbDlWqGOFy0ApB/O0wDQYJKoZIhvcNAQEF +BQAwKTEnMCUGA1UEAxMecmVmZXJlbnMtaWRwLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTEyMDUwMjA5MDI1MVoXDTMyMDUwMjA5MDI1MVowKTEnMCUGA1UEAxMecmVmZXJl +bnMtaWRwLnNrb2xmZWRlcmF0aW9uLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A +MIIBCgKCAQEAinya2PnreUkOXyDvS4Vaooc0cmBlsRHsJ8DWxhuNA0LiUI+MDBPs +5OC71rmTXzg3ePZVrAsmQiy+vCA5hsWsYDMH5rVHlHWvtojxyS+AGbNgbaWkX+l9 +GWfDAGvs93nfeFhDU8sLScjCnDwwcaCfLj26OHeRv8bkuNFdE4Cm4/bQOn1DwhqK +PM/za1N7yBDX98apeNidbqCknlL9G/O0MYvuMv0hTWJcEclIy78olLzecPPQ+Ymj +1sWj0xT1nVbgUz5xcV1p9KMs9+uzOFuS4vDAh8RI/kj4oZkvYm5eUviSqbtAvCuc +gIkrnAHpsVJeKwvfE1t6KMAGAg8nmPfG+QIDAQABo4GEMIGBMGAGA1UdEQRZMFeC +HnJlZmVyZW5zLWlkcC5za29sZmVkZXJhdGlvbi5zZYY1aHR0cHM6Ly9yZWZlcmVu +cy1pZHAuc2tvbGZlZGVyYXRpb24uc2UvaWRwL3NoaWJib2xldGgwHQYDVR0OBBYE +FDGYGEoW6StQ2y1uiHAO4kbWKEzXMA0GCSqGSIb3DQEBBQUAA4IBAQARTJuCZOLb +zxV5XFjBaPtWdEeZbYqYrItX5BeAPQ/M0hnyYeU3bU3ytfWGyT5m7Ff8aQcRM8Xe +EBW7oTSurHCVO1joCXzI46tsq/71Enq+IFhhWMjHt12MopjsKRC7y6GcbjrTjA8o +NERsWm/h0CKeBv0vn2tmGHjcKF6nI+sZfiVsOufnFvfjO3r2laPz2XsTNwPs3HlQ +l27vPw5wc7vuymARYxUEaDSRqL1Tzk784JGsGeoAhGMMjJp+IiYC6rtRDOD43rsZ +73JJwci3n22fBYfUAIPYzjETa0mJ0zg18NGK90yXH7d786hUvxsn0h/b8GBUyiZb +1d+aL8hqHTd2 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://referens-idp.skolfederation.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://referens-idp.skolfederation.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://referens-idp.skolfederation.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://referens-idp.skolfederation.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://referens-idp.skolfederation.se/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://referens-idp.skolfederation.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">referens-idp.skolfederation.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDZTCCAk2gAwIBAgIUKPuSVuIjr2FbDlWqGOFy0ApB/O0wDQYJKoZIhvcNAQEF +BQAwKTEnMCUGA1UEAxMecmVmZXJlbnMtaWRwLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTEyMDUwMjA5MDI1MVoXDTMyMDUwMjA5MDI1MVowKTEnMCUGA1UEAxMecmVmZXJl +bnMtaWRwLnNrb2xmZWRlcmF0aW9uLnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A +MIIBCgKCAQEAinya2PnreUkOXyDvS4Vaooc0cmBlsRHsJ8DWxhuNA0LiUI+MDBPs +5OC71rmTXzg3ePZVrAsmQiy+vCA5hsWsYDMH5rVHlHWvtojxyS+AGbNgbaWkX+l9 +GWfDAGvs93nfeFhDU8sLScjCnDwwcaCfLj26OHeRv8bkuNFdE4Cm4/bQOn1DwhqK +PM/za1N7yBDX98apeNidbqCknlL9G/O0MYvuMv0hTWJcEclIy78olLzecPPQ+Ymj +1sWj0xT1nVbgUz5xcV1p9KMs9+uzOFuS4vDAh8RI/kj4oZkvYm5eUviSqbtAvCuc +gIkrnAHpsVJeKwvfE1t6KMAGAg8nmPfG+QIDAQABo4GEMIGBMGAGA1UdEQRZMFeC +HnJlZmVyZW5zLWlkcC5za29sZmVkZXJhdGlvbi5zZYY1aHR0cHM6Ly9yZWZlcmVu +cy1pZHAuc2tvbGZlZGVyYXRpb24uc2UvaWRwL3NoaWJib2xldGgwHQYDVR0OBBYE +FDGYGEoW6StQ2y1uiHAO4kbWKEzXMA0GCSqGSIb3DQEBBQUAA4IBAQARTJuCZOLb +zxV5XFjBaPtWdEeZbYqYrItX5BeAPQ/M0hnyYeU3bU3ytfWGyT5m7Ff8aQcRM8Xe +EBW7oTSurHCVO1joCXzI46tsq/71Enq+IFhhWMjHt12MopjsKRC7y6GcbjrTjA8o +NERsWm/h0CKeBv0vn2tmGHjcKF6nI+sZfiVsOufnFvfjO3r2laPz2XsTNwPs3HlQ +l27vPw5wc7vuymARYxUEaDSRqL1Tzk784JGsGeoAhGMMjJp+IiYC6rtRDOD43rsZ +73JJwci3n22fBYfUAIPYzjETa0mJ0zg18NGK90yXH7d786hUvxsn0h/b8GBUyiZb +1d+aL8hqHTd2 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://referens-idp.skolfederation.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://referens-idp.skolfederation.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">ReferensIdP</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Skolfederation.SE Referens-IDP</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://skolfederation.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:Company>SUNET</md:Company> + <md:EmailAddress>mailto:operations@skolfederation.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/s2s.ifmsa.se-saml2-proxy_saml2_backend.xml b/swamid-testing/s2s.ifmsa.se-saml2-proxy_saml2_backend.xml new file mode 100644 index 00000000..fe7687b1 --- /dev/null +++ b/swamid-testing/s2s.ifmsa.se-saml2-proxy_saml2_backend.xml @@ -0,0 +1,61 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://s2s.ifmsa.se/Saml2/proxy_saml2_backend.xml"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-11-05T14:34:05Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/eu-adequate-protection</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://s2s.ifmsa.se/Saml2/disco" index="1"/> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDZDCCAkwCCQC/CkAr6rf3djANBgkqhkiG9w0BAQsFADB0MQswCQYDVQQGEwJT +RTESMBAGA1UECAwJU3RvY2tob2xtMRIwEAYDVQQHDAlTdG9ja2hvbG0xFTATBgNV +BAoMDElGTVNBLVN3ZWRlbjELMAkGA1UECwwCSVQxGTAXBgNVBAMMEHMycy5jbG91 +ZGFwcC5uZXQwHhcNMTcwOTE2MjMwMTQ0WhcNMjcwOTE0MjMwMTQ0WjB0MQswCQYD +VQQGEwJTRTESMBAGA1UECAwJU3RvY2tob2xtMRIwEAYDVQQHDAlTdG9ja2hvbG0x +FTATBgNVBAoMDElGTVNBLVN3ZWRlbjELMAkGA1UECwwCSVQxGTAXBgNVBAMMEHMy +cy5jbG91ZGFwcC5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8 +Avq0plP8TbRCesOX3ZdBtUySWjiXGolOP+YFWvkF1DKyqLsttiYCUelKng+bNvWH +xwRvFp/+LIfObeOOgDyzz+MJq8y5NaJNM9ZDErT2jLI533VIC3GYnmMu0D/FLG+N +wzXf7B3w35APuy0UhamKxLIyZSaAAXctNeGyzM5QU1jC+ylgkW0swMG2u4F45Ufd +MvpfMfHqpg1rVYDWSBOz8fLLh1FXgzjU3OvGjeYHTEusRdiY5ff+uzDNPmt8SWvY +GK3LIEHNkP2VAG2AfQ21v32BMWtSTqG+vqcsgaivqwo2Gt+d8WuZgVCmV4XzFHdI +C6U7lnojlRmPbxia4QlTAgMBAAEwDQYJKoZIhvcNAQELBQADggEBAEAimvY/Xyn9 +GSrN3Fpu4eWffDocY/OAeLknsokv5fRrE3DfUYC1akwW5GMha6hQcc5DNt3F5O0z +9FeUFLoEGjmavVL5kFDnkQcxBxDQMx2i3hfdd4Ji2c2yZf66xNot54/L5Ha25Gcl +dwQ0t8n66d+IXLLvg2KtyWJjfycEgsbrV76b6L71t+iTbFh/ZsfvmEePYJlwOZ7q +l88ZeHMBKnOdDANm1jTZTD2DjpwjO2Qy4Ng8gIXQola1O/gG/LaLfu7Fxk/8T9TE +r5EPe+L5117kzDaDZtqV6H4q24B2mhguRNUCN2ZkonPPEvkhdgcokV7qffRDkwXu +zJkE6G+EYWU= +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://s2s.ifmsa.se/Saml2/acs/post" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://s2s.ifmsa.se/Saml2/acs/redirect" index="2"/> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">IFMSA-Sweden</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">IFMSA-Sweden</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.ifmsa.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:GivenName>Admin</md:GivenName> + <md:EmailAddress>mailto:admin@ifmsa.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>Admin</md:GivenName> + <md:EmailAddress>mailto:admin@ifmsa.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/selfservice-test.test.hb.se-Shibboleth.xml b/swamid-testing/selfservice-test.test.hb.se-Shibboleth.xml new file mode 100644 index 00000000..ef378f6c --- /dev/null +++ b/swamid-testing/selfservice-test.test.hb.se-Shibboleth.xml @@ -0,0 +1,255 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://selfservice-test.test.hb.se/Shibboleth"> + <md:Extensions> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-10-01T11:11:04Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/Login"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/Login" index="1"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/DS/ds-test.swamid.se"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/DS/ds-test.swamid.se" index="2"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/WAYF/shibboleth.antagning.se"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/WAYF/login.idp.eduid.se"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https:/selfservice-test.test.hb.se//Shibboleth.sso/https://hbidp-test.hb.se/idp/profile/Shibboleth/SSO"/> + <mdui:UIInfo> + <mdui:Description xml:lang="en">SelfService Test application.</mdui:Description> + <mdui:Description xml:lang="sv">SelfService Test applikation.</mdui:Description> + <mdui:DisplayName xml:lang="en">SelfService Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">SelfService Test</mdui:DisplayName> + <mdui:InformationURL xml:lang="en">https://www.hb.se/en/About-UB/</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">http://www.hb.se/Om-hogskolan/</mdui:InformationURL> + <mdui:Logo xml:lang="en" height="100" width="100">https://selfservice.hb.se/images/s2logo.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="100" width="100">https://selfservice.hb.se/images/s2logo.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="en">http://selfservice.hb.se/PrivacyStatement.aspx</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">http://selfservice.hb.se/PrivacyStatement.aspx</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:KeyName>hbsp-test.ad.hb.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=hbsp-test.ad.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIID/TCCAmWgAwIBAgIJAJXxIZ8hzubRMA0GCSqGSIb3DQEBCwUAMB0xGzAZBgNV +BAMTEmhic3AtdGVzdC5hZC5oYi5zZTAeFw0xODA4MTUxMDAzMDRaFw0yODA4MTIx +MDAzMDRaMB0xGzAZBgNVBAMTEmhic3AtdGVzdC5hZC5oYi5zZTCCAaIwDQYJKoZI +hvcNAQEBBQADggGPADCCAYoCggGBAKpwRrE5j42Jku0JU5hbk/GISqjlSmZ5c5Xq +a0zYBlZPdmYf4K3hVqeUZtK+f2MHE+RZ/M8Xe4ujBvi+KAebSK1f43b/A1+sTQ3Q +VNuKHu2wNMOy/f/F5IOHaU3H97TG2dirI2hNasG/lQjheIzcrqPAZAlak+CbjAQe +WNPuyeHtdab9yNllo51zefOt57e3+DfQRY5JOSasmEzhn7BD7Io6P8T4IqDE3viN +j7uJDmjuEoMHQfXqXuBkNmdbpC/x43u9zOi6FLqjuLlUNNXeYbe6+JGWPHIZZWpw +10EE52VUo/DqvUFLpW8DQx8dTTTuDVfpkWlNobY7DG6uMVz7KxlPPkzRojZdaU+Z +IzeAoLgAMnLLf18hBkKdx6Kq/RDH5+4pJCo9y1os1o5tljH80p2+03+Z0rFkApnH +4G3hnoXaDXnGfm3n0sSMjpvSQ3xhPH1fLHTfJD9IOYgNufWQqrX//61t/HVmoJZZ +d0RPjU+uL2ahfVQNN4wZkFAYgSudLQIDAQABo0AwPjAdBgNVHREEFjAUghJoYnNw +LXRlc3QuYWQuaGIuc2UwHQYDVR0OBBYEFETbzt7ILuBVhr6N12meu0FA6OrnMA0G +CSqGSIb3DQEBCwUAA4IBgQAwjkyU1ADuMjfRiIfF2oHhKghlYyNyWI+UopYkuFS9 +QK+446eydGTRH+sp5LIoB6ylcm588Mn5uVmgNBNkqrEMXYOtbtN8hugfSAMuJTJj +HEazh3eKpa/PYArmFotw4kLtgtVtYk6gRo6ZKtKXe+Vmgf+eFEbHMTn2i6fsDu7t +9aDtZNzt1beSdU51awn8wn9jdD7aN9iT9GZ4RNAXU93UaFE+dy9EpC0nd0NNxsLn +AJnEYrFEZus4XFG0aUGzcZReWQi5C/ryUmXeq93H/Dt82rKfWn/Jg4dKg33vu0Ol +49WDxOfjUNFXTckw7SmDm2iKNwUZns7/E11Pvt/Sa/Kzo/xccO3dZ0ESLbhlL0sd +cDAenuSelj4GWkExkn8JJu+Gf4tF454KHdjGHNv4760astFtWDLMcQwFgVW0CDXq +9z5dsTa3vVJHsD7aUAtDd8TIECi1QmsknXZPEN9kyCYLN1b4+THk8NPw8lfeMA44 +WBZx2UHH2lrrPqfxaKVb5Hg=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:KeyName>hbsp-test01.test.hb.se</ds:KeyName> + <ds:KeyName>https://hbsp-test01.test.hb.se/idp/shibboleth</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=hbsp-test01.test.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIIFQzCCAyugAwIBAgIUbv+kwfKXyZfZfHE3c5/5BL6IMtcwDQYJKoZIhvcNAQEL +BQAwITEfMB0GA1UEAxMWaGJzcC10ZXN0MDEudGVzdC5oYi5zZTAeFw0yMjEwMjEw +ODM1MDdaFw0zMjEwMTgwODM1MDdaMCExHzAdBgNVBAMTFmhic3AtdGVzdDAxLnRl +c3QuaGIuc2UwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCySumGjhEp +jeo97oOk65Y8BvLQiIAULnd0fYwdvyxzAD8O7sM+DIJTevouyjVZoKv24D1s+L7r +C6fnwoNNvisSm0QhLTzSoLb5awNlvXCOVQtr62pdfIHRzM9O3GZK5BegzdVzoE+t +hv7DmupbT5rxwTvfnhm9VVcjWWtcNcQki1KGPplhTD/hWa9t/YesMV5jqiw0AHpO +HrYRhDmrvgeLtSgEbPfrowmG1p8EDxgMdHWMxLvuY2W6gnPUoPCVW4pRFSEjd9i8 +rxpPArptnA19HWvxt2ff83WgNvJOG7QIkDhmIdfwjnWivVgcKRBo1ee7HF28oKNG +H/oBrpWukNnSSEobViBaF4dAVxE4A6XOjiQ+fBXx/7jGLdL3S3fag5K2rds2N854 +m1MyYdkihnWk2G1qVHlotnaKiy3UY4KyUwV35J4IvpbQqLLZjxoeCoyCrhEQuy/S +pTi/Ov2Ctwhb2Iy9Syo90yEEShFM+yud4/APOT/xkBummhWLmAR27isNOydK5LgN +AWrVecFwmtaL9L8wKIxoeD6wMCO7jhvyHkAUUH6k036OToEebKGNyCpV2504aUuB +qOby+uLtuZtuDxiy+RaQU27k+MnK/zaZIpgr0cUnAuo5/vX27P1tACQMpDPiBnV+ +F4HlS5O4XWWJY6yyP8qpMd1l/N+iw2ht4QIDAQABo3MwcTBQBgNVHREESTBHghZo +YnNwLXRlc3QwMS50ZXN0LmhiLnNlhi1odHRwczovL2hic3AtdGVzdDAxLnRlc3Qu +aGIuc2UvaWRwL3NoaWJib2xldGgwHQYDVR0OBBYEFHeD7XcxviVnS3tGQaASdHts +YjIrMA0GCSqGSIb3DQEBCwUAA4ICAQA9PBA8YElA0mYtS935zpEsN60CX3Tu0upe +4aDoDYZhNH/V1PqDHJPVCTZmYuLOVQw/0qWvHe6IZgWEPjM4Xm+erqOf3x84iVLA +my2CpSR11sfshCtkW6vUAGYniXglS6KvtHH518cqboQoCJPX/yWOvNtily2DB81E +dhBZcvn0nEQFwRs504B0BL8jqiwfSto9M/yYR+UCh/3X6fsbvbL/3TrakXNsxrnk +ajLG1hiopmVyk+sW9VojfDk7vV0UfKlbK0pc/cWWiRUCYY4Xy+yN8kn1xQWLtlKI +Gze3r2cOqU+loP/7lub7coZyrM9PefU3/kEOIEe/eCfReGnE4tPYAF15zxQzOmvw +lxDrHYDcP+WGKAz1rl2ltxK8XN0F+a6zxmWMjStK2dE1P7C9eqMIUlYKCRCz83Vn +Ej/HK8kQih9KAgLxMzD5hKzEvGNcY2giGOek5UnQQcKoKYoKkn3sK5jAj2xRsG9H +Zmvyp0w98SE4XztFQuXnOGbUsx213dBt07X0roYX2vJgBrIrXmZM53iOMiPYSL0Q +esgKmZIr47ANPQyW8fR/Kzge8rVplf+YNcBqoQfFoLFujtUWYefNEDAy/h3rcE0b +pSSKWfSGRNR1HV2zAlx0IcJxHz1Jw1s/6Mx7x96UnApvatqqg0BNuPFu1tbDtmOi +MCmP/gJ2aw==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:KeyName>hbsp-test01.test.hb.se</ds:KeyName> + <ds:KeyName>https://hbsp-test01.test.hb.se/idp/shibboleth</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=hbsp-test01.test.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIIFQzCCAyugAwIBAgIUQT9mO0y6y74DTDhnpeyyTQFN4DYwDQYJKoZIhvcNAQEL +BQAwITEfMB0GA1UEAxMWaGJzcC10ZXN0MDEudGVzdC5oYi5zZTAeFw0yMjEwMjEw +ODM1MDFaFw0zMjEwMTgwODM1MDFaMCExHzAdBgNVBAMTFmhic3AtdGVzdDAxLnRl +c3QuaGIuc2UwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC1DPXnpgcI +9DTH4RiPGUJ1gCi9GmU+5Hr5Mal1XhunszKXuC/RcAlrC65pvyfuyG9MLT/C6CsD +hXJSySOIDkk1GfU+rYZpjxoVG/Yh7Gb8wyD4jId2mPt7H3TqE6Q295gbQNuEURkF +EPVgBoMWBXxMeqLqOaume0maFyWJx9au/MHNP/o47JfCrmYe2ZOlrKjd8x/vp1gc +zWpwgi2+p2r7QfqfGytHydxdWg0iOOz9pZZ0DUvxXZfFLSOs+cCcJKGtCbr11Wf2 +D0oJSF2pQoU+ZZJKVmy1SHmeiXOVYzPcr7hrvX0mDOdWnt3ZHn9f4z/x9r4DIQVa +zmPC/SQhRIHsalyHgR7cs1ohwXX3EwzlUsgW/FduPKclyPgeytOf+do2U+y5/GaW +4L9wK4w9Z+p+mRsjK2s4kjmlHOoSyRLQDWudN04W/nhkPdp1j8juVWzi7jsfi1DU +WROABtH1iqGyP5S+iLpSzJA/CJdMuj7ZPmUwM02lbTtV6DWwKG0dBF3M75VWNbKj +xFOpDR0NXBCNEzfZmRGUK2Wm2pvyZQ/tpHCyf5ccvnqLeMOLmLgEkjZ0yKS9NZIh +4FLfo3n7ulXnxx1qzx8DuapTHuw5iCO1bJnB9tuSjjqFbSNl+2qeJtzIPeaz2TjE +DtcIez7mDyzoKmUpTTH5XQu55bF2HNhbDQIDAQABo3MwcTBQBgNVHREESTBHghZo +YnNwLXRlc3QwMS50ZXN0LmhiLnNlhi1odHRwczovL2hic3AtdGVzdDAxLnRlc3Qu +aGIuc2UvaWRwL3NoaWJib2xldGgwHQYDVR0OBBYEFP6FQ0cu4eKmlm2fovXPJ0J5 +IUeeMA0GCSqGSIb3DQEBCwUAA4ICAQA8x0aoai18EVqOpDXQ8QTdLwqYw7ccmeI3 +401NLQFN3BoUK3katpuGbF/x2RH7QSDaHFemp7eJOZpKABWa3lMo66jTlzYLVPQi +cR1r0Cb5sgy4D4x8ImlX0h3yG6zTvrCv0S9EnbqXVX8R6bNZ8OXi7gCpfsEVCso0 +qy0ynK/ieTontHmbUy+m9GdKhvEKmyfS2g0fubyC+uhUiOj5IExIJhpXZhyA/7Ht +j4PxxmfoeI6LyUGFxew6DbBlrMLhtCM/uXqAd/A5a2cfzJaRG62j6Et6vFt//VEb +UEWIJfSjEnMB7C/sK+ANwEZncqQL17UasgRjcjP+O21ZCcxQqBsaI7cJEd5t6Du1 +FgSd79XjMC//M7Ocuy7Uqb0tFRiVEyXFLIQlcCocvGyhGQCO/n3L8UzMN7dxUAay +oFGrYn+ozQAULPgB021Pi8BjS35bD1UXI2jjqupY+yJH4Vod3oDPsMx+o/iPvCtU ++ZTuyJ3+doqVQg+DWPCqdlGJr32IgN6j+sc2nfVIBH1q+zU+E7ZwkvXcljlmwPNB +YLoLZ5A6rfH7ePRXjUtmreiTl+Ot7wkhM0YBaAKJF4s2wLKKKgBaGg7V6XwVCRm6 +NrN8FBPj/kOnMa3p0GL23XHrva43poBPf9KFgpZIIDxEboI27JQLoAu5uqcW4W7H +miXuo3j/eA==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:KeyName>hbsp-test01.test.hb.se</ds:KeyName> + <ds:KeyName>https://hbsp-test01.test.hb.se/idp/shibboleth</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=hbsp-test01.test.hb.se</ds:X509SubjectName> + <ds:X509Certificate>MIIEQzCCAqugAwIBAgIUQEH05pwokb/txDTgbOv4/GMVmtYwDQYJKoZIhvcNAQEL +BQAwITEfMB0GA1UEAxMWaGJzcC10ZXN0MDEudGVzdC5oYi5zZTAeFw0yMjEwMjAx +NDU0NThaFw0zMjEwMTcxNDU0NThaMCExHzAdBgNVBAMTFmhic3AtdGVzdDAxLnRl +c3QuaGIuc2UwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDD7SJgHDBY +mYQFyI/N16K//515WHWjwxCic0Hog8qcD0zBh5ntgR89XA2H+CKU+qRQ4eotL8GO +l1UHvO3s2FHJ1Ln6BNTr+bCWsLpAPpOoo9jt6OmiP5gJEiZUv4Y2xjvYfqP8OoOf +7SG5kueZsmCWXqZqxCqjN9DoP34YstI2RkWpgsnYZuz4VPg+0junZIV2LKLCdC8j +sgISeGX80LI6tbNeMx9D6qeIbbVLNOvGdCwBt+JLVF/3uEhxNfFnGxlpUH601HYo +2oUVvCVz9eDWAS53kj0YyrPShXWfM6bvJiLH2+dbJc3sDQhMYugnxs7hdzn2fntF +I4yBJp64m6Y6ZP6MHCDYG4XqZl+FLQBBHxCQjS7DnWjCNYbHT0D1e6N1QMN6TmmH +lscSS/Z/2RCqS6Q4uvPSMbMExErKtBQq+6aeRjUdVTeeth1y/X72C8HBXxgmmEW2 +YRK0e2931o2/gphZy7vS4D5qriBHINmMsEg3PZhTxIB1u0i2kb50LBECAwEAAaNz +MHEwUAYDVR0RBEkwR4IWaGJzcC10ZXN0MDEudGVzdC5oYi5zZYYtaHR0cHM6Ly9o +YnNwLXRlc3QwMS50ZXN0LmhiLnNlL2lkcC9zaGliYm9sZXRoMB0GA1UdDgQWBBSE +oIZAnuKc5dZoqHcmgEQLJiwOkDANBgkqhkiG9w0BAQsFAAOCAYEASRszy9q0VwnS +VJFmQuChK+M7sFDaLY/haaJF3lliMcYLVtboIYsaUXTEEvs42FqXTpAeYAA8uXmq +b1BQNxQUpWtyyUfe5Uyn59Yn7JCz8+SbittEyqaeOGu3RawLX0NJAoxK9Agtu0zB +YPcFizHVdBGTI1bLuR7l2xxWod2vFiD3C6xqBdR5lD/0XATRVQ2q7WrxHO+a/UC9 +wpahXMdZEjIl7+Klwz9oIsOUtsBJCgRGEgvpKoiKzrke0+e4PVYKzhZgU9NFQNkd +pZ/aNkyfYZe2K/SKo01FIKB0OJRmL6Cu9BjW48DxKOQ6Nmeiat+8x2JJ5hSmdQzG +iRE+qDXCvtD6tr8Px/nhzI9RrYV92FFTUCdf0v/z8p0dfkkxBQ7gjIArchGVjG/7 +E6gs8WefYo7yCCzLs7uO7rrJFw8SA8bHBvT5OENZc67OtNozTFhCY6F4bWleumQe +Oh+D0cydIQbcgxJlDUV1KTq54FNEOlrN+NICGbbU2W9Tz6YakVTI</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/SLO/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://selfservice-test.test.hb.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">selfservice-test.hb.se</md:ServiceName> + <md:ServiceName xml:lang="sv">selfservice-test.hb.se</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">University of Borås</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Högskolan i Borås</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">University of Borås</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Högskolan i Borås</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.hb.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">http://www.hb.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>University of Borås</md:Company> + <md:SurName>IT</md:SurName> + <md:EmailAddress>mailto:it@hb.se</md:EmailAddress> + <md:TelephoneNumber>+46 33 435 4690</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>University of Borås</md:Company> + <md:GivenName>IRT HB</md:GivenName> + <md:EmailAddress>mailto:csirt@hb.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/sesamutvf.its.uu.se-shibboleth.xml b/swamid-testing/sesamutvf.its.uu.se-shibboleth.xml new file mode 100644 index 00000000..74b58793 --- /dev/null +++ b/swamid-testing/sesamutvf.its.uu.se-shibboleth.xml @@ -0,0 +1,101 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://sesamutvf.its.uu.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-11-16T18:53:05Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Uppsala universitet Sesam (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Uppsala University Sesam (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Uppsala universitets Sesam (TEST) administration av passagerättigheter</mdui:Description> + <mdui:Description xml:lang="en">Uppsala University Sesam (TEST) administration of contactless smart card access</mdui:Description> + <mdui:Logo xml:lang="sv" height="50" width="50">https://weblogin.test.uu.se/idp/UUlogin/img/logga-50.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="50" width="50">https://weblogin.test.uu.se/idp/UUlogin/img/logga-50.png</mdui:Logo> + <mdui:InformationURL xml:lang="sv">https://mp.uu.se/c/perm/link?p=940179&l=sv</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://mp.uu.se/c/perm/link?p=940179&l=en</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://mp.uu.se/c/perm/link?p=823039527</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://mp.uu.se/c/perm/link?p=823039527</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIE+jCCAuKgAwIBAgIJAJhSyoAWTFzEMA0GCSqGSIb3DQEBBQUAMBwxGjAYBgNV +BAMTEWZsYW1tZWEuaXRzLnV1LnNlMB4XDTE0MTIxNTEyNTE1MloXDTI0MTIxMjEy +NTE1MlowHDEaMBgGA1UEAxMRZmxhbW1lYS5pdHMudXUuc2UwggIiMA0GCSqGSIb3 +DQEBAQUAA4ICDwAwggIKAoICAQDOQIdNrT3ozzhbvdlYz2F9xzk1RRmMhbL169sZ +o5kqUMIC/W1PkFcALskGb9rMelMymp2+fun7hgyLggjWDBjgFfRH3nZniXtil3PI +C/0aNYoC+9Yl0SOHN5xFvfThIibj0c6ofZU9252ZaL1/GRylvO57fAvZpcULWvlA ++/0ZTc//vsVZC/cs1dcmA4fS5dry1UucqqnAXT6Ws05JB4h8pRjYNFWU7riT6UUn +Sv3VGmGdzZQ9lkDNzNhseFI2M3WhrVGiBamwDtP8CdJflDpKDkxx+za34P+YiB7S +l+pbN+igY2oJ+CTNijp0R1USU49IL754ml8rEQI8NzWcTtc4C5YyD8fh1P4jkU8q +D1UWPBblB/tiKmEL9gmy29gRdi/3Um/6kgV6Hkw4b6WQr1qMLKFdLJrTw0hJ3sab +ilvU/IdeKVC8vIyRui0C4VSyEQ4WnKnl0P8uUn9GcUXnL8bwjCyQh/M8pfGmWDya +l8x+DTG6efAobeUi/TnXqNZ1I66bVrgMBAnm9SJHj5xR37mraI1W7FhH6FapyasT +UCINP0rdiQDDdBQHC+uSONrCFd1xYiaKY1uoqXOYiRB5jFRtacpaln5+/C+2BGOK +leyP17jUilSN7dKlXQPL6EhDcIVDIke4L6fQopPoDyJa1kjA4B9M/lDfCiL29Iw9 +M2cY7wIDAQABoz8wPTAcBgNVHREEFTATghFmbGFtbWVhLml0cy51dS5zZTAdBgNV +HQ4EFgQUHuy22CyDNk551MZVbbHRA8xprQMwDQYJKoZIhvcNAQEFBQADggIBAL7I +wKMMMtIU2dGybNU4VNtsRGpF1o4cYsgHB3N7dpzzI2gXf/tWOzvaW8fEy9/cbxdk +K5IO/RmjPcVapAsjSStpGIu2FYbV7R1fQfepx0CsUuj8DeAd0y3vM2Qh5nTl0I+e +ncOAud30RWu50/hMn/EO/BsJjJqFFlYoWIWWYtAKepDOIC12ZM/XhLy2BRbJkdEh +wQRAOfqxMuRbuCVfhp+kQc99EBSSTj2UQkJy5oUt6758v+HVEewi32iLvwELHCJS +FnRfNNUZ9CedmGZ1zLKDhKTKOxe89b5xLdokuiyenjeqtCO29/QTJ3mIjpmIOQFg +TioBNEYdXDEE2kbF7XMeNfwFQEBRSMGGG0NyHFTPYuel4YPpfW5FnXgdRVZ+vjLi +3Y9WtWCDQnZsqrQUko4QHiZxxzI+Y8NskpAmu/irdqkos8ygIE18sNnRJWiSWyRL +Pr4QFcrikK81FE9YyU2oDGLpZ2HE6EArRrxf8LWM0QGSLVaVxArBZxQEda8FLLTz +LdjIlLdoy5HHK3cHBDIXaZsEp8cbqDIirHeu0evE9ooBNX1z5mBk5JK/BxDq5rPr +7EFPPMjCr52KPie5L8RhFdo/D+4VYTnsQU9vehjYWyS2p+Gen3uSE/wCOdik+d44 +7aLd8zfp9fclH6JrMaiO11A/k3UtsBMCqJmXuWmH + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://sesamutvf.its.uu.se/Shibboleth.sso/SLO/Artifact"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sesamutvf.its.uu.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sesamutvf.its.uu.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://sesamutvf.its.uu.se/Shibboleth.sso/SLO/SOAP"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://sesamutvf.its.uu.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://sesamutvf.its.uu.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sesamutvf.its.uu.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AttributeConsumingService index="0" isDefault="true"> + <md:ServiceName xml:lang="sv">Uppsala universitets Sesam (TEST)</md:ServiceName> + <md:ServiceName xml:lang="en">Uppsala University Sesam (TEST)</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:GivenName>Sesam applikationsdrift</md:GivenName> + <md:EmailAddress>mailto:sesam-applikationsdrift@its.uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4717920</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:GivenName>Operations</md:GivenName> + <md:EmailAddress>mailto:drift@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:GivenName>Sesam applikationsdrift</md:GivenName> + <md:EmailAddress>mailto:sesam-applikationsdrift@its.uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4717920</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>Uppsala universitet</md:Company> + <md:GivenName>Uppsala University Computer Security Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:security@uu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/shib-test01.skolfederation.se-idp-shibboleth.xml b/swamid-testing/shib-test01.skolfederation.se-idp-shibboleth.xml new file mode 100644 index 00000000..c1b7a96e --- /dev/null +++ b/swamid-testing/shib-test01.skolfederation.se-idp-shibboleth.xml @@ -0,0 +1,192 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://shib-test01.skolfederation.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-03-14T14:07:26Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://shib-test01.skolfederation.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">skolfederation.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Test IdP 01 Skolfederation</mdui:DisplayName> + <mdui:Description xml:lang="en">Test IdP 01 Skolfederation</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAPQ2/2lBxCasx98gbLhaMYWOfsu4MA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAxLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDczM1oXDTM2MDMxNDEyMDczM1owKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDEuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQCyrgKI7YKZJTgfOMz6Tdl4JSh0/lI4a6t6kc6nWbK2wPrTO6dr/6rc +6zfSnzZTxdMfdq4i3GQm6wqARhyopiBioqL7jfi9xFHAQ1EKBo0bYgILkUWaDB0c +BE+g4GHbsDtU46M3Nv01iFSRrZfJIvir19sRK7pNPVneJogZMyHIGk0DeIE1e3sy +q5hrkiPQh2wpvjQ5m0iqu/EdFfnX2SusvxZicYaFv5tuX7SWta8em9lQUXXOE1oq +rrLucAvzlbvgPR+JWBWS92Rzyba49nP1RVpt5nFQEPDxndHJJX2jFleMXlQekjZY +wkq43JH+lxeAniRkKNLXMNqVGb5OvgyNAgMBAAGjgYEwfzAdBgNVHQ4EFgQUqUSe +k3iUhS7oddbgmRKPj92kelEwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDEuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDEuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAHsPZpDTpzq3Ok4u +MEV2sbqLvXlv2rIKLrSXn5wyyBisUtDKRgPpvhWeUHTjcHZMeuIY/V41d3ULDJfM +njdytPo1d+5zXwtmqRMixzG8j/VNVPtHEwe+oFvYlWM2lvG/58dpJGVNZMgJoFpI +ELWXWTRuDfmvB59XaJNjPA91lPCtNvpumW5ArRyT+OtvFyKWam01jEPf8ALS2Q9E +t3CIJ1G5s7bXyPvXnrtbmQ6ZLEChbzByvLJkFtJS45IpKPy4hxtOLfOQxdlg4jna +8W+hsupYXK3/3qb4qqaqhdtD+SWkwe/+ATup8hcmodfxhGTDnRKGXrFSzKZT4rZ0 +SMNmbOs= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVANmghSf7VgN3DeTHXvgyLAxYK07WMA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAxLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDczMloXDTM2MDMxNDEyMDczMlowKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDEuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQDHQoTq1sDL1nvtkyWJIcS+2QKV+7UnSckcYhV9ETcOjz/X0eW+tI19 +2mdmJ7eYuQhtjAwUefCssbv4D4N0AB35yfbNFHJFSR32iMp8XSzcjkY1p7reL/91 +8v77ywWge5n66/2oTI1uxPbFESFXuSmNULNsZ084EVsZ5cVdSWaMhTV1yb3UT6P7 +ggioG7ZSezWftR4A9YTrDZ/L68Cl67d1QTcuLjBHuXnYaTylIzrUF/uSQ18wecOt +P5c84m9z9Wp5mkSnKsM/5X2XAL2rnF30UJ1PbnnBiord7wsbzYlB37pURbJHkzSb +85UjD65qzPJE1TxhWzeQoohGiA5VoTO7AgMBAAGjgYEwfzAdBgNVHQ4EFgQU7lJv +sBxJjTpqyzRn2n6bJHwP8n0wXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDEuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDEuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAKrU1hh+0smkuJoj +kk5LdoVpO+umabRIHxzhb9Qg29TMYgI8M9KvIpzxIa9dkJO5E2Il/soMgu9DPGc2 +sgxlqpIK9IQRrszhYh7/KIqXLeazZvt+VAkqcKEh2YlAzOng3JiDGQg2RuMVoEE3 +kS9Ib6/hyXLNabKnLncmU78qSN8AKvqt0I7E0q6EZSOje2LH7lxn1GOxGUQ6dh1y +Ac8g0evEFl9VPCV/8ekZScbJV4V9AD/Zt9iNfgBY/9fylLKWrNjOnewHPDN6iof2 +e9uaMSKN+lfG7j1VT3ILeK287Xlec41ohosz9j/MlKNKGMjI1bybF+PLFmdfE30w +oM6nOO8= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAIeMvqpR5U5Y2XpY3eVqWkq+JRhzMA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAxLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDczM1oXDTM2MDMxNDEyMDczM1owKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDEuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQCS9DrfWA4WLombKbKcFAooA0rr8FQTPWXUZKdAf5jrkPhgLQRWExvE +da2ZJ2obCvd68fuXooNlyErEzNOar7tVqisNdbzpOmxD6/DfHEjCoYyO+gzeYZI5 +wvQYZVvNeI/ZaZmAF69IQBIUrGjWNOOYh8WYWQpN7H6LV1gFJaMkaaANQGUy5LYy +OdgdipMfg2H9Zl7nT3b3OkH8+q3Ti500EdRkY23Z0iG2ir/p6g3rQCkZ4tCftlDN +cQgmrXTlY52/tXaFH5D+I0u3XoMJEuc0WSdmABZqZFSrNTZSaa77p3Nea0h4BtQX +UcXauYw1s/6q2AqQvpqbknC/XC+YXSOtAgMBAAGjgYEwfzAdBgNVHQ4EFgQU1dE1 +8Ytop65CLyRnV6sbc4nsGbkwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDEuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDEuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAIFLv6J5KwrWE9jC +0j6/iYlmWBBHhgqJM5jxId+QJ/iWWFw7mv1H50pXh6zxHQby9jSMoR1vDHZJyEAH +EuMKnZserxLunp+UwwWsDM7yhMI0IJpN4Vq+5akQqa1ScitMr4K9nDoGst9zkyZo +aePquGWFdiAUdEq4tZOWAba4t0wC1/OSE08JiW5BLZF2ntIPxPGtkIAkg1pkA2+w +KlBf+dVuoEzEDYbbyhTHVDtcYqVD2V69GeoUB3HjUToP/qn19t1oqGOtUkIeFzuO +z75FH/RYPpm1Ol0OyS4l9cOkIg9LZdmYk3ze8kM1TwBdK/SX3UKW5tfNKnGW6Kbq +ARYfhCs= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shib-test01.skolfederation.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shib-test01.skolfederation.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://shib-test01.skolfederation.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shib-test01.skolfederation.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shib-test01.skolfederation.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">skolfederation.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAPQ2/2lBxCasx98gbLhaMYWOfsu4MA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAxLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDczM1oXDTM2MDMxNDEyMDczM1owKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDEuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQCyrgKI7YKZJTgfOMz6Tdl4JSh0/lI4a6t6kc6nWbK2wPrTO6dr/6rc +6zfSnzZTxdMfdq4i3GQm6wqARhyopiBioqL7jfi9xFHAQ1EKBo0bYgILkUWaDB0c +BE+g4GHbsDtU46M3Nv01iFSRrZfJIvir19sRK7pNPVneJogZMyHIGk0DeIE1e3sy +q5hrkiPQh2wpvjQ5m0iqu/EdFfnX2SusvxZicYaFv5tuX7SWta8em9lQUXXOE1oq +rrLucAvzlbvgPR+JWBWS92Rzyba49nP1RVpt5nFQEPDxndHJJX2jFleMXlQekjZY +wkq43JH+lxeAniRkKNLXMNqVGb5OvgyNAgMBAAGjgYEwfzAdBgNVHQ4EFgQUqUSe +k3iUhS7oddbgmRKPj92kelEwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDEuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDEuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAHsPZpDTpzq3Ok4u +MEV2sbqLvXlv2rIKLrSXn5wyyBisUtDKRgPpvhWeUHTjcHZMeuIY/V41d3ULDJfM +njdytPo1d+5zXwtmqRMixzG8j/VNVPtHEwe+oFvYlWM2lvG/58dpJGVNZMgJoFpI +ELWXWTRuDfmvB59XaJNjPA91lPCtNvpumW5ArRyT+OtvFyKWam01jEPf8ALS2Q9E +t3CIJ1G5s7bXyPvXnrtbmQ6ZLEChbzByvLJkFtJS45IpKPy4hxtOLfOQxdlg4jna +8W+hsupYXK3/3qb4qqaqhdtD+SWkwe/+ATup8hcmodfxhGTDnRKGXrFSzKZT4rZ0 +SMNmbOs= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVANmghSf7VgN3DeTHXvgyLAxYK07WMA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAxLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDczMloXDTM2MDMxNDEyMDczMlowKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDEuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQDHQoTq1sDL1nvtkyWJIcS+2QKV+7UnSckcYhV9ETcOjz/X0eW+tI19 +2mdmJ7eYuQhtjAwUefCssbv4D4N0AB35yfbNFHJFSR32iMp8XSzcjkY1p7reL/91 +8v77ywWge5n66/2oTI1uxPbFESFXuSmNULNsZ084EVsZ5cVdSWaMhTV1yb3UT6P7 +ggioG7ZSezWftR4A9YTrDZ/L68Cl67d1QTcuLjBHuXnYaTylIzrUF/uSQ18wecOt +P5c84m9z9Wp5mkSnKsM/5X2XAL2rnF30UJ1PbnnBiord7wsbzYlB37pURbJHkzSb +85UjD65qzPJE1TxhWzeQoohGiA5VoTO7AgMBAAGjgYEwfzAdBgNVHQ4EFgQU7lJv +sBxJjTpqyzRn2n6bJHwP8n0wXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDEuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDEuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAKrU1hh+0smkuJoj +kk5LdoVpO+umabRIHxzhb9Qg29TMYgI8M9KvIpzxIa9dkJO5E2Il/soMgu9DPGc2 +sgxlqpIK9IQRrszhYh7/KIqXLeazZvt+VAkqcKEh2YlAzOng3JiDGQg2RuMVoEE3 +kS9Ib6/hyXLNabKnLncmU78qSN8AKvqt0I7E0q6EZSOje2LH7lxn1GOxGUQ6dh1y +Ac8g0evEFl9VPCV/8ekZScbJV4V9AD/Zt9iNfgBY/9fylLKWrNjOnewHPDN6iof2 +e9uaMSKN+lfG7j1VT3ILeK287Xlec41ohosz9j/MlKNKGMjI1bybF+PLFmdfE30w +oM6nOO8= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAIeMvqpR5U5Y2XpY3eVqWkq+JRhzMA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAxLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDczM1oXDTM2MDMxNDEyMDczM1owKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDEuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQCS9DrfWA4WLombKbKcFAooA0rr8FQTPWXUZKdAf5jrkPhgLQRWExvE +da2ZJ2obCvd68fuXooNlyErEzNOar7tVqisNdbzpOmxD6/DfHEjCoYyO+gzeYZI5 +wvQYZVvNeI/ZaZmAF69IQBIUrGjWNOOYh8WYWQpN7H6LV1gFJaMkaaANQGUy5LYy +OdgdipMfg2H9Zl7nT3b3OkH8+q3Ti500EdRkY23Z0iG2ir/p6g3rQCkZ4tCftlDN +cQgmrXTlY52/tXaFH5D+I0u3XoMJEuc0WSdmABZqZFSrNTZSaa77p3Nea0h4BtQX +UcXauYw1s/6q2AqQvpqbknC/XC+YXSOtAgMBAAGjgYEwfzAdBgNVHQ4EFgQU1dE1 +8Ytop65CLyRnV6sbc4nsGbkwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDEuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDEuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAIFLv6J5KwrWE9jC +0j6/iYlmWBBHhgqJM5jxId+QJ/iWWFw7mv1H50pXh6zxHQby9jSMoR1vDHZJyEAH +EuMKnZserxLunp+UwwWsDM7yhMI0IJpN4Vq+5akQqa1ScitMr4K9nDoGst9zkyZo +aePquGWFdiAUdEq4tZOWAba4t0wC1/OSE08JiW5BLZF2ntIPxPGtkIAkg1pkA2+w +KlBf+dVuoEzEDYbbyhTHVDtcYqVD2V69GeoUB3HjUToP/qn19t1oqGOtUkIeFzuO +z75FH/RYPpm1Ol0OyS4l9cOkIg9LZdmYk3ze8kM1TwBdK/SX3UKW5tfNKnGW6Kbq +ARYfhCs= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shib-test01.skolfederation.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/shib-test02.skolfederation.se-idp-shibboleth.xml b/swamid-testing/shib-test02.skolfederation.se-idp-shibboleth.xml new file mode 100644 index 00000000..2f72bf89 --- /dev/null +++ b/swamid-testing/shib-test02.skolfederation.se-idp-shibboleth.xml @@ -0,0 +1,192 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://shib-test02.skolfederation.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-03-14T14:07:26Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://shib-test02.skolfederation.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">skolfederation.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Test IdP at shib-test02.skolfederation.se</mdui:DisplayName> + <mdui:Description xml:lang="en">Test IdP at shib-test02.skolfederation.se</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAKIpDXYRvdS2zrotYm2OUO6QtBHxMA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAyLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDcxNFoXDTM2MDMxNDEyMDcxNFowKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDIuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQDuXdCQDsnzEIKfhIVj4JXc3iLImuBBjd8b0AsaYIODAgnFTYEp6JwR +YnEKDnQYEoWs6WfWjm9ByOtinHo55J27H7St5svmILIaA0XL/mtMEvVrwL+V8sp0 +UQG85zECyBUUsfa9ak9OsL/mMQSauOLOAmvO0NWP73/9AMBEDAP+Z3sncvhNVeUH +3qXG7TYMyS63yiPQuzS/4IMA4YTm/zefx2cOC7DuouGzli2JdiLKwWVw2gnAw7m8 +AvAJM362NgwqcKEK8GXnHUUPOoNzvP6tMOuXtOt9LykmgY5okLgIUlVdJMELDcns +hdx+/dUabm0lXXfihXletkwg7xSoGjUJAgMBAAGjgYEwfzAdBgNVHQ4EFgQU4Drw +32V/cXL1Hps1tAMm5Wlzt5YwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDIuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDIuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBANVNtea/BQug5Xpa +CvoLtZtn33yTL+LLwd7xhXYKlVrwXUm8oNfuJ6xpuql019t4S6+xJRNhqfqDHYVl +nZVE6p98IVjboOPvQRDb9vGTaiGFIHkujpSAplPT3Q0ObJQXnosZdqVz0f5Ek5Y1 +uCx+7x06it9hCtMiuOx2rvbcSnB7aZ6QEmM+waRm9/NBbIfVVXyBAfvV5Tkj1ggB +tU7ldt/up6rWflSYUuGSsyOK93tdl4/mElsax6z0uh5WGYysXD3VNwO3TUgn5oik +qgLKGvBSeU71+pacWFMPhGTlgN9xilY98Izcpkqx8R0HOPse1Glrv/g/d2WBeTdW +gYB1MC0= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAMTx9B2MrDDQObwplYL31jsuEurxMA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAyLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDcxM1oXDTM2MDMxNDEyMDcxM1owKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDIuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQCt+kswx/S/yGOdwcE6PXoLmdyosI+HyD4zewHAIvt2GaI+q6xcEY/I +OwSLzVmaepW7HXbjJTTh2WWZXD9LuvUdRcddUoWyZRzO64heeKXwc09Un/QapulI +qpJ7GJlX7ltNvWy10RqTkacPwXQimXcUQw/VNe0z2oF0erJifLHqkLT8MqXbHSQt +Sv+5h2vR6M64ZNxe0lx4Slz6k9PCnXXQ2JdWJ07kPk3XWBTIv5g9EQi2OiD4gloD +xawjNV51RiIUu5/BCarZgR3zPbRhkdswEHGAV26qU4QuwfqPZ8u1KPCnoZiNWCvD +yyBj5hS5la0CmlYE+Fpk4lsgDV+HwRcNAgMBAAGjgYEwfzAdBgNVHQ4EFgQU2umq +nceDOCxq0IvogBhhDmGzl9gwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDIuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDIuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAG3pFikol/CkP/6R +tmkXK73fWojvbI8BatUTqikaRUTlfVgjqZ+71Uo648AUzT2pZUft+c/sAsQuW7p5 +rTsd1UkK5bGPji5JVsmD5qFOwGeMvyA3gGa8dgO1SehTwxG4Je7ZdvX5baYiMj4l +aBWvYni36opxrFb/Xm144wU6F2wuLNQls9wzdtDivQnRoRMmUGkX6PRKzOIXuILQ +lV+dpSrUDVYXncmFabB4jg6UU9GcXqNJz8IvQIVQcejw5pV4Zl1at52pDahk0U4U +wB3emD5nkdkKgcsXj0LAYKZFYC4xqQxpBTZW5BCRwOQRKSa842J73oqGoAkdBAKa +XOGjlaA= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAOKFRmXnO1W0+z5Ro16pX8gqQCK3MA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAyLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDcxNFoXDTM2MDMxNDEyMDcxNFowKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDIuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQDnudV/0wu5A017jD3yt41NXG2RzHbxJwt1E5khPHhgETfs+8ypTAEf +HpdsWNWgM55jIi1w9HVVjzdY4i/htksxSvBgrRBnv79ZXjGlTEeaG+O1+xbmFAmp +Zc4GHDpqW85U5Lw4skSjm/KJkzMd6biCdbd7syNoBk039XMHA0A8IgKOd3Dhs72u +i2v0LF7ODqkmMSX27kC7p+dpfrNfvK/FstrhKzfDZVmijqNogqmw4s4bb9HL/Lw3 +dlPPpWMvvpuPcp11m9A09uo0ucSTrKhb7GZMZKvFMwnII7cfchjVkFQ9xXsTDLKm +PIGPk2N/q+KUD7FUsCiNvClBxqocAiYvAgMBAAGjgYEwfzAdBgNVHQ4EFgQUkJdZ +a+VzDO7nwVBI7P2x2zfhiAgwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDIuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDIuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAHewrKz8eBsP8NLG +aHPOLkLvxPKO2gOBzwGUafCp5zXLpnOIrOjVziBxeCRaGbsXlnLsxsTTfUnw7bxo +TSKm8wwxpgtLoygQKyrY1GdN0fusRibm1D3221matfb4qCQSxZfttXy5TGzild3K +CK0Wz3vK8wia/ldpUp0CR77F90XUpnOBZUJraZGP3zNWOulQn/V04DKjEbfFYbsT +Kns4efG8+N0tHM6lqEVgiZn2/II3mHKwX8mJfXOmcXHSg9dwIlxcI2GQmUc5Yfu6 +wJXtfbVcy4pR2oEn6oLV4AFtkqrhlRIwXyEVLk+wVGBcn5lkZdjhilRqpVYVpL86 +yD8jVf0= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shib-test02.skolfederation.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shib-test02.skolfederation.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://shib-test02.skolfederation.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shib-test02.skolfederation.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shib-test02.skolfederation.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">skolfederation.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAKIpDXYRvdS2zrotYm2OUO6QtBHxMA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAyLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDcxNFoXDTM2MDMxNDEyMDcxNFowKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDIuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQDuXdCQDsnzEIKfhIVj4JXc3iLImuBBjd8b0AsaYIODAgnFTYEp6JwR +YnEKDnQYEoWs6WfWjm9ByOtinHo55J27H7St5svmILIaA0XL/mtMEvVrwL+V8sp0 +UQG85zECyBUUsfa9ak9OsL/mMQSauOLOAmvO0NWP73/9AMBEDAP+Z3sncvhNVeUH +3qXG7TYMyS63yiPQuzS/4IMA4YTm/zefx2cOC7DuouGzli2JdiLKwWVw2gnAw7m8 +AvAJM362NgwqcKEK8GXnHUUPOoNzvP6tMOuXtOt9LykmgY5okLgIUlVdJMELDcns +hdx+/dUabm0lXXfihXletkwg7xSoGjUJAgMBAAGjgYEwfzAdBgNVHQ4EFgQU4Drw +32V/cXL1Hps1tAMm5Wlzt5YwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDIuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDIuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBANVNtea/BQug5Xpa +CvoLtZtn33yTL+LLwd7xhXYKlVrwXUm8oNfuJ6xpuql019t4S6+xJRNhqfqDHYVl +nZVE6p98IVjboOPvQRDb9vGTaiGFIHkujpSAplPT3Q0ObJQXnosZdqVz0f5Ek5Y1 +uCx+7x06it9hCtMiuOx2rvbcSnB7aZ6QEmM+waRm9/NBbIfVVXyBAfvV5Tkj1ggB +tU7ldt/up6rWflSYUuGSsyOK93tdl4/mElsax6z0uh5WGYysXD3VNwO3TUgn5oik +qgLKGvBSeU71+pacWFMPhGTlgN9xilY98Izcpkqx8R0HOPse1Glrv/g/d2WBeTdW +gYB1MC0= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAMTx9B2MrDDQObwplYL31jsuEurxMA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAyLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDcxM1oXDTM2MDMxNDEyMDcxM1owKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDIuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQCt+kswx/S/yGOdwcE6PXoLmdyosI+HyD4zewHAIvt2GaI+q6xcEY/I +OwSLzVmaepW7HXbjJTTh2WWZXD9LuvUdRcddUoWyZRzO64heeKXwc09Un/QapulI +qpJ7GJlX7ltNvWy10RqTkacPwXQimXcUQw/VNe0z2oF0erJifLHqkLT8MqXbHSQt +Sv+5h2vR6M64ZNxe0lx4Slz6k9PCnXXQ2JdWJ07kPk3XWBTIv5g9EQi2OiD4gloD +xawjNV51RiIUu5/BCarZgR3zPbRhkdswEHGAV26qU4QuwfqPZ8u1KPCnoZiNWCvD +yyBj5hS5la0CmlYE+Fpk4lsgDV+HwRcNAgMBAAGjgYEwfzAdBgNVHQ4EFgQU2umq +nceDOCxq0IvogBhhDmGzl9gwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDIuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDIuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAG3pFikol/CkP/6R +tmkXK73fWojvbI8BatUTqikaRUTlfVgjqZ+71Uo648AUzT2pZUft+c/sAsQuW7p5 +rTsd1UkK5bGPji5JVsmD5qFOwGeMvyA3gGa8dgO1SehTwxG4Je7ZdvX5baYiMj4l +aBWvYni36opxrFb/Xm144wU6F2wuLNQls9wzdtDivQnRoRMmUGkX6PRKzOIXuILQ +lV+dpSrUDVYXncmFabB4jg6UU9GcXqNJz8IvQIVQcejw5pV4Zl1at52pDahk0U4U +wB3emD5nkdkKgcsXj0LAYKZFYC4xqQxpBTZW5BCRwOQRKSa842J73oqGoAkdBAKa +XOGjlaA= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDYTCCAkmgAwIBAgIVAOKFRmXnO1W0+z5Ro16pX8gqQCK3MA0GCSqGSIb3DQEB +CwUAMCgxJjAkBgNVBAMMHXNoaWItdGVzdDAyLnNrb2xmZWRlcmF0aW9uLnNlMB4X +DTE2MDMxNDEyMDcxNFoXDTM2MDMxNDEyMDcxNFowKDEmMCQGA1UEAwwdc2hpYi10 +ZXN0MDIuc2tvbGZlZGVyYXRpb24uc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw +ggEKAoIBAQDnudV/0wu5A017jD3yt41NXG2RzHbxJwt1E5khPHhgETfs+8ypTAEf +HpdsWNWgM55jIi1w9HVVjzdY4i/htksxSvBgrRBnv79ZXjGlTEeaG+O1+xbmFAmp +Zc4GHDpqW85U5Lw4skSjm/KJkzMd6biCdbd7syNoBk039XMHA0A8IgKOd3Dhs72u +i2v0LF7ODqkmMSX27kC7p+dpfrNfvK/FstrhKzfDZVmijqNogqmw4s4bb9HL/Lw3 +dlPPpWMvvpuPcp11m9A09uo0ucSTrKhb7GZMZKvFMwnII7cfchjVkFQ9xXsTDLKm +PIGPk2N/q+KUD7FUsCiNvClBxqocAiYvAgMBAAGjgYEwfzAdBgNVHQ4EFgQUkJdZ +a+VzDO7nwVBI7P2x2zfhiAgwXgYDVR0RBFcwVYIdc2hpYi10ZXN0MDIuc2tvbGZl +ZGVyYXRpb24uc2WGNGh0dHBzOi8vc2hpYi10ZXN0MDIuc2tvbGZlZGVyYXRpb24u +c2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAHewrKz8eBsP8NLG +aHPOLkLvxPKO2gOBzwGUafCp5zXLpnOIrOjVziBxeCRaGbsXlnLsxsTTfUnw7bxo +TSKm8wwxpgtLoygQKyrY1GdN0fusRibm1D3221matfb4qCQSxZfttXy5TGzild3K +CK0Wz3vK8wia/ldpUp0CR77F90XUpnOBZUJraZGP3zNWOulQn/V04DKjEbfFYbsT +Kns4efG8+N0tHM6lqEVgiZn2/II3mHKwX8mJfXOmcXHSg9dwIlxcI2GQmUc5Yfu6 +wJXtfbVcy4pR2oEn6oLV4AFtkqrhlRIwXyEVLk+wVGBcn5lkZdjhilRqpVYVpL86 +yD8jVf0= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shib-test02.skolfederation.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/shibbo3test.ltu.se-idp-shibboleth.xml b/swamid-testing/shibbo3test.ltu.se-idp-shibboleth.xml new file mode 100644 index 00000000..ef409e28 --- /dev/null +++ b/swamid-testing/shibbo3test.ltu.se-idp-shibboleth.xml @@ -0,0 +1,186 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://shibbo3test.ltu.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-03-14T13:20:10Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://shibbo3test.ltu.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">ltu.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">A Name for the IdP at shibbo3test.ltu.se</mdui:DisplayName> + <mdui:Description xml:lang="en">Enter a description of your IdP at shibbo3test.ltu.se</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNDCCAhygAwIBAgIVAJ/C7GVb0LTEi+7pmKXgaDAcajc6MA0GCSqGSIb3DQEB +CwUAMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5zZTAeFw0xNjAzMTQwOTIz +MzdaFw0zNjAzMTQwOTIzMzdaMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5z +ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKxY6dkU9SFJLbKBtWEH +wUWSxz9S4EpELEEmrTlv5FVQhR+UPMGqtbojFMasuFZOhFExLPB+NWKC2hsmhEyO +R2/EHTFe7VhL9ZNEcbVZedHHw7dq3Zc0GuU3s2tqTb4/8gace9Pkx8MV2JGQcpll +h/AE23GXRXPMSkFo6l35zBlzp9fmI42aKx+KGAdrvZhO4ZDVJ+8n+6U5z0YXDkIN +32HlssxPOWYIQlhzLpNAJ9fLPwDk54dptE7oH+FRwZeAqvNobb/nwCH5Mw6wEOWJ +xRi6lWDtW7LpPPeL+LwsDimvmtv8ahcOHxFclu/WrJ6FF8vJy/gH5pbqaNsI6mqC ++EcCAwEAAaNrMGkwHQYDVR0OBBYEFFqKbVvlVTHGptIYS+EG98Wt/rEJMEgGA1Ud +EQRBMD+CEnNoaWJibzN0ZXN0Lmx0dS5zZYYpaHR0cHM6Ly9zaGliYm8zdGVzdC5s +dHUuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBACF00Z7OZ4IK +C2t/ywPTIDe5U+Wk2pQ03tBpZ+pTbnI7nFxvkSRB65TeP4KX7BS6cn52jtpi+j1T +oEWMTmTjxRBCs9RIGox04kUQlD87W7fxDyI0ZN0FA8GYOm27ZmA7PHSb9IPiXBJ5 +Kq+xeyKcnkJ84xa5Q91C9uVsgLafjdm/Z69imp9JIiybEKgnK88KRDU5VSBgV93R +ctUC49it+6D3/Wi8K3eOLA+wo5lPLPxIsLf8gHLHwWgUvaVHt1sg6MdTU+011DTj +8eJ9j9wuRVWrsHH97ZmkITZB0mBzkx3OS3VLsCJB5f640tbPZY75OKrOz7D07LBJ +seV/+5km6JE= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNDCCAhygAwIBAgIVANzbaWTqiitWHi/FZY/Cf0XjTG2tMA0GCSqGSIb3DQEB +CwUAMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5zZTAeFw0xNjAzMTQwOTIz +MzVaFw0zNjAzMTQwOTIzMzVaMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5z +ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIM1kTvLw1tGy0YpTe80 +KxGj8w4oZiMHbErUhWUVNG09C6hMOfGkVdLBTZhqZcNhqGHLKGeE6ET9l4/YGEY1 +xdPCy4aHPyBH0AZZ5hVhRgOthEFdKTH5smb4J+lMk8a51BoRMStRmsm93IeYMMzU +7HlCbsZ0H6bGRksEMWvbAiH5w5psT6He5oI+05g3RV1WrDexFImX/x7fZTI8YOTD +qi64CDoLtGmGfE6dp1HPONfdLyFBr3/ENC6n9b9OOE2w7PDK63bHKrc4WfGCPWMG +rWGLFnRwSfUKijJtvUdLAaE2SRvfzqxyZ5gUv0jcZH7VMkW1SWhgEajeiez+Z3J5 +MesCAwEAAaNrMGkwHQYDVR0OBBYEFI/PN6vDb385cLrqCL3JU+gGX4lGMEgGA1Ud +EQRBMD+CEnNoaWJibzN0ZXN0Lmx0dS5zZYYpaHR0cHM6Ly9zaGliYm8zdGVzdC5s +dHUuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAFKVyzGKVJty +QYqseA7FjSfrOXw9Kljuggvn7M1fCs3esr3Ic4Gm3cDhjyFNakysZQm7kXC364sC +N1JBGj4pSRLOmjaZVCCQkat4gQztumH+W47M7aFFIw+IUveS6HzhL3xMQFjxFnfL +JU/FmWASnTeBzLGtts7eUcOtSobz6N4grPlR75KuOSDPovWyFgcmaAS17OFOt6AH +3KIHNZOHO0rqx5g9EHzOF/+CsiAwRhg+2ydhLtf51A3ju8g/A4WMFdfmGESvM7MO +zqNlArfwLcg+x0Au2u+aTWbCjwIq0cvdEC8CmJorZA6nH0tz8WMQXImhvrEWbtAi +DUfmSji9lFM= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNDCCAhygAwIBAgIVALc7cXmNp5/uQQWtVri12AzDbYe/MA0GCSqGSIb3DQEB +CwUAMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5zZTAeFw0xNjAzMTQwOTIz +MzZaFw0zNjAzMTQwOTIzMzZaMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5z +ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMry0LiGt0F7Kkk/xqpo ++evp9nQtztlkRNdN7DDDUejwLAOBB4xwotTdwmAs2F611QLhZSWI+FLM3jr+YxD1 +fUzef54BLPlPFRPmQUFzy9Uf6NJ9RUnArPWjyWEgwSQwpyu9TeKz5rpCCe39woL9 +sLOfFVRw/Lh2y6j1hPBipbP0OP3nsRE1WLZ36Q7LKQPJ6+FF0eyrEqnVfNEgHmFa +bOR9aNjEL14gsW6KbfOsRuM+XWOj+0cNboBddVYwMmaML1sC8N5mZI0pmchz80VW +OoY77wTxp4s4cLiOHvEfX2JqERy9h89tJQC5HnzLhjaDT9W9gKBlxe5GTvY22JhB +g0kCAwEAAaNrMGkwHQYDVR0OBBYEFG7iRdtb6OAhSOnHYnNCvvNuZ9IEMEgGA1Ud +EQRBMD+CEnNoaWJibzN0ZXN0Lmx0dS5zZYYpaHR0cHM6Ly9zaGliYm8zdGVzdC5s +dHUuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBADiDD72lxvE6 +K0/DIp6S4DOkqzJkyV+rzDDEJ4/TBvlr22jBFoCTjI/G2n/GjvOXYfIw2nMV86iC +Ug5HMXsV9vgsIR4ChH+Y8YkNebCDgKckZK7opC1Jbq/7e7KNc+Dr++aOPKnuHQjQ +N7xSqaBpIRIavAWONsxbvyLKSGWQsckYtwVug9rDwkjYm6JPd0Uae+ALgCIcIOgQ +NDdQFzh/nDsIV9lfCwSIgBVFDAvO5HODbMrlIyAyCw4cdDxRLP0Q/dI3uLcs6Hxb +ls1YqceuIJ1xea3cFj/VxrqP2sizmG/OGusxJ1JfWY/OHbeyiBtVAYz1u3WAy0xh +ynzkb00+6b8= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibbo3test.ltu.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibbo3test.ltu.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://shibbo3test.ltu.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibbo3test.ltu.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shibbo3test.ltu.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">ltu.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNDCCAhygAwIBAgIVAJ/C7GVb0LTEi+7pmKXgaDAcajc6MA0GCSqGSIb3DQEB +CwUAMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5zZTAeFw0xNjAzMTQwOTIz +MzdaFw0zNjAzMTQwOTIzMzdaMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5z +ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKxY6dkU9SFJLbKBtWEH +wUWSxz9S4EpELEEmrTlv5FVQhR+UPMGqtbojFMasuFZOhFExLPB+NWKC2hsmhEyO +R2/EHTFe7VhL9ZNEcbVZedHHw7dq3Zc0GuU3s2tqTb4/8gace9Pkx8MV2JGQcpll +h/AE23GXRXPMSkFo6l35zBlzp9fmI42aKx+KGAdrvZhO4ZDVJ+8n+6U5z0YXDkIN +32HlssxPOWYIQlhzLpNAJ9fLPwDk54dptE7oH+FRwZeAqvNobb/nwCH5Mw6wEOWJ +xRi6lWDtW7LpPPeL+LwsDimvmtv8ahcOHxFclu/WrJ6FF8vJy/gH5pbqaNsI6mqC ++EcCAwEAAaNrMGkwHQYDVR0OBBYEFFqKbVvlVTHGptIYS+EG98Wt/rEJMEgGA1Ud +EQRBMD+CEnNoaWJibzN0ZXN0Lmx0dS5zZYYpaHR0cHM6Ly9zaGliYm8zdGVzdC5s +dHUuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBACF00Z7OZ4IK +C2t/ywPTIDe5U+Wk2pQ03tBpZ+pTbnI7nFxvkSRB65TeP4KX7BS6cn52jtpi+j1T +oEWMTmTjxRBCs9RIGox04kUQlD87W7fxDyI0ZN0FA8GYOm27ZmA7PHSb9IPiXBJ5 +Kq+xeyKcnkJ84xa5Q91C9uVsgLafjdm/Z69imp9JIiybEKgnK88KRDU5VSBgV93R +ctUC49it+6D3/Wi8K3eOLA+wo5lPLPxIsLf8gHLHwWgUvaVHt1sg6MdTU+011DTj +8eJ9j9wuRVWrsHH97ZmkITZB0mBzkx3OS3VLsCJB5f640tbPZY75OKrOz7D07LBJ +seV/+5km6JE= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNDCCAhygAwIBAgIVANzbaWTqiitWHi/FZY/Cf0XjTG2tMA0GCSqGSIb3DQEB +CwUAMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5zZTAeFw0xNjAzMTQwOTIz +MzVaFw0zNjAzMTQwOTIzMzVaMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5z +ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIM1kTvLw1tGy0YpTe80 +KxGj8w4oZiMHbErUhWUVNG09C6hMOfGkVdLBTZhqZcNhqGHLKGeE6ET9l4/YGEY1 +xdPCy4aHPyBH0AZZ5hVhRgOthEFdKTH5smb4J+lMk8a51BoRMStRmsm93IeYMMzU +7HlCbsZ0H6bGRksEMWvbAiH5w5psT6He5oI+05g3RV1WrDexFImX/x7fZTI8YOTD +qi64CDoLtGmGfE6dp1HPONfdLyFBr3/ENC6n9b9OOE2w7PDK63bHKrc4WfGCPWMG +rWGLFnRwSfUKijJtvUdLAaE2SRvfzqxyZ5gUv0jcZH7VMkW1SWhgEajeiez+Z3J5 +MesCAwEAAaNrMGkwHQYDVR0OBBYEFI/PN6vDb385cLrqCL3JU+gGX4lGMEgGA1Ud +EQRBMD+CEnNoaWJibzN0ZXN0Lmx0dS5zZYYpaHR0cHM6Ly9zaGliYm8zdGVzdC5s +dHUuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAFKVyzGKVJty +QYqseA7FjSfrOXw9Kljuggvn7M1fCs3esr3Ic4Gm3cDhjyFNakysZQm7kXC364sC +N1JBGj4pSRLOmjaZVCCQkat4gQztumH+W47M7aFFIw+IUveS6HzhL3xMQFjxFnfL +JU/FmWASnTeBzLGtts7eUcOtSobz6N4grPlR75KuOSDPovWyFgcmaAS17OFOt6AH +3KIHNZOHO0rqx5g9EHzOF/+CsiAwRhg+2ydhLtf51A3ju8g/A4WMFdfmGESvM7MO +zqNlArfwLcg+x0Au2u+aTWbCjwIq0cvdEC8CmJorZA6nH0tz8WMQXImhvrEWbtAi +DUfmSji9lFM= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNDCCAhygAwIBAgIVALc7cXmNp5/uQQWtVri12AzDbYe/MA0GCSqGSIb3DQEB +CwUAMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5zZTAeFw0xNjAzMTQwOTIz +MzZaFw0zNjAzMTQwOTIzMzZaMB0xGzAZBgNVBAMMEnNoaWJibzN0ZXN0Lmx0dS5z +ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMry0LiGt0F7Kkk/xqpo ++evp9nQtztlkRNdN7DDDUejwLAOBB4xwotTdwmAs2F611QLhZSWI+FLM3jr+YxD1 +fUzef54BLPlPFRPmQUFzy9Uf6NJ9RUnArPWjyWEgwSQwpyu9TeKz5rpCCe39woL9 +sLOfFVRw/Lh2y6j1hPBipbP0OP3nsRE1WLZ36Q7LKQPJ6+FF0eyrEqnVfNEgHmFa +bOR9aNjEL14gsW6KbfOsRuM+XWOj+0cNboBddVYwMmaML1sC8N5mZI0pmchz80VW +OoY77wTxp4s4cLiOHvEfX2JqERy9h89tJQC5HnzLhjaDT9W9gKBlxe5GTvY22JhB +g0kCAwEAAaNrMGkwHQYDVR0OBBYEFG7iRdtb6OAhSOnHYnNCvvNuZ9IEMEgGA1Ud +EQRBMD+CEnNoaWJibzN0ZXN0Lmx0dS5zZYYpaHR0cHM6Ly9zaGliYm8zdGVzdC5s +dHUuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBADiDD72lxvE6 +K0/DIp6S4DOkqzJkyV+rzDDEJ4/TBvlr22jBFoCTjI/G2n/GjvOXYfIw2nMV86iC +Ug5HMXsV9vgsIR4ChH+Y8YkNebCDgKckZK7opC1Jbq/7e7KNc+Dr++aOPKnuHQjQ +N7xSqaBpIRIavAWONsxbvyLKSGWQsckYtwVug9rDwkjYm6JPd0Uae+ALgCIcIOgQ +NDdQFzh/nDsIV9lfCwSIgBVFDAvO5HODbMrlIyAyCw4cdDxRLP0Q/dI3uLcs6Hxb +ls1YqceuIJ1xea3cFj/VxrqP2sizmG/OGusxJ1JfWY/OHbeyiBtVAYz1u3WAy0xh +ynzkb00+6b8= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibbo3test.ltu.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/shibboleth-test.uhr.se-idp-shibboleth.xml b/swamid-testing/shibboleth-test.uhr.se-idp-shibboleth.xml new file mode 100644 index 00000000..2931cbe1 --- /dev/null +++ b/swamid-testing/shibboleth-test.uhr.se-idp-shibboleth.xml @@ -0,0 +1,255 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://shibboleth-test.uhr.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2019-09-26T13:57:15Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://shibboleth-test.uhr.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">uhr.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Universitets- och högskolerådet - Test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">The Swedish Council for Higher Education - Test</mdui:DisplayName> + <mdui:Description xml:lang="sv">TEST Identity Provider för Universitets- och högskolerådet (UHR)</mdui:Description> + <mdui:Description xml:lang="en">TEST Identity Provider for the Swedish Council for Higher Education (UHR)</mdui:Description> + <mdui:Logo xml:lang="sv" height="80" width="131">https://shibboleth-test.uhr.se/idp/images/uhr_logo.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="80" width="131">https://shibboleth-test.uhr.se/idp/images/uhr_logo.png</mdui:Logo> + <mdui:Keywords xml:lang="sv">UHR Universitets+och+Högskolerådet VHS IPK The+Swedish+Council+for+Higher+Education</mdui:Keywords> + <mdui:Keywords xml:lang="en">UHR Universitets+och+Högskolerådet VHS IPK The+Swedish+Council+for+Higher+Education</mdui:Keywords> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>uhr.se</mdui:DomainHint> + <mdui:IPHint>193.11.100.0/24</mdui:IPHint> + <mdui:GeolocationHint>geo:59.33760,18.05835</mdui:GeolocationHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEKTCCApGgAwIBAgIVAOmJNNsPlhtyCEhGvcbHwm8z88oHMA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFnNoaWJib2xldGgtdGVzdC51aHIuc2UwHhcNMTkwOTE5 +MDcyMzI5WhcNMzkwOTE5MDcyMzI5WjAhMR8wHQYDVQQDDBZzaGliYm9sZXRoLXRl +c3QudWhyLnNlMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAl6s0U5zo +wGjNHDo6iyYbUCrKC8zIvyykkilrZDQZTjIfCiuETwaWY9bghpZiNrAZcVsUgVIP +qaWoSw4P0v2e7s4xU076nVTrDagjc9Jh3OJfjws5n5Jo4/1GfPOeKuXXP3zVq52B +A72sJA4D3QJJ4V04Jxr7RZlTfkqtBJqMEMHhPPB5nqxkUUeH6y/ceXUgJDBJ1Z2q +MpSLMRgzTBFdc99SqZuR2oIlkA3KIzQVsyZqx+SgvMxCMImrXpmLNwUFak6lHEsN +wH0jeKSJAI/5M2jP+OcRMy0H3/InE6VfPaKrQDq46bWIfQHsgdR5KbunKUXuEmcm +E5W2o3/M/iWMPpd1FWtLT2nyf+7MHuTv/qms6vXDw2BBW74H8lRXC9pqVWq3plzg +gwRWbKJJaGMgrELpQ47ewzzGro0XrgS3J6Mj+QPRn46Md3DqjmPSKnB8cP8v5YxU +2+L8oGcnWLr1DTwy8BCCXUeDC2bgEt/TNpwTVm6td+ryhU6hghDJEEaNAgMBAAGj +WDBWMB0GA1UdDgQWBBSzu8A3ALrUEs1+5Fft+DfUreW5/jA1BgNVHREELjAsghZz +aGliYm9sZXRoLXRlc3QudWhyLnNlhhJodHRwczovL3Voci5zZS9pZHAwDQYJKoZI +hvcNAQELBQADggGBAFLkaC9FXHlCzi2mYGPPixEc3pHMn9jwDCAcDB4UahJeEx5W +EAJJkw4/ivHawLeG7AyF8IqSpvhBoGKZ3vAVUgD65jCj0lDOXAqGdl+zO7SvaEyZ +gFUOv1UyEjE5vjdBQoA0wTfMxnFxKt4J2mUhBu7QGHjOcUfgYD+LBf825/IZ6R5/ +uByive0WP1f6gMxgN4EwgYWVVZxsBSCPTIOFqzBlngXt++A17JY3n3S2WM9fLe3Y +j5utiDd3yF0LOOVGbwWFq9Y6VCm47rIciT3Y0KuDTyk3Fyf/h3Rhy/r8qROd+/kn +kIIXs6CQW2y+e45mlfvxV9RV6OzmYjwyeit+Woa4BauHkUHKv+YeDlqHLkliOYMx +x2N9Vkf+SslXx+zUB3YwHDEZ8G5nIM/eVE7lQuVcKLXjGhnIssKufM4cza9RSYxX +Tvsyp3YRLHYFm581IBZ5eOu/11K63GieK1AM782871wmNDSFIM3dF5DRS73PG09H +R1pR1C9aGOgVijhfxA== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEKTCCApGgAwIBAgIVAJa3jrWH5mn8cZPSdsybp17ygpHYMA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFnNoaWJib2xldGgtdGVzdC51aHIuc2UwHhcNMTkwOTE5 +MDcyMzI3WhcNMzkwOTE5MDcyMzI3WjAhMR8wHQYDVQQDDBZzaGliYm9sZXRoLXRl +c3QudWhyLnNlMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAnORmFlBy +RbVlEjF+HTt+yZgAxl1hfddpXkJvNti8f+1wovfbANXMO12Iycpf63kfHojzx5Z3 +HOskiMju/o9tUMEgcvLQC4KDXzd2YgvmTO+0dYPI/eMDOmNZlRy+x5O8yIJWYSGJ +rOwKHY4Wt4oRNCMbGeXM5uBX3S+95EFfD+JFquwhG50Pxv31CF1tPyaUJ47BnoU1 +evoahG2ZPX9GMcYYRtRf/gG+PTZ2xc5ZTDFQUnVu7dbcENcpFFGTdzChlW/6nBBO +E1pDAB5cZ1+uXmpt92gf5R5ZDJ14Cj9+qou5vnA3ozdRVtPKcwpYBtrNb3hq+i8s +RlcVX4Xl/TZxaN2rMJq1Wywb2EssRF3Nynq3jPaZk0QOOlldAwzhSvoeXbCxpj6/ +v0VMRlGijmCBZoY8vPTEB+C6e60ORQWDVq/N3ZyfLyekYjscIvZwfDZjYsCrtTJR +xXsYg1m4tcrPfMd2QKcD4SZimfkDOH/qDSQdB7gAadOeledBoitWPrdVAgMBAAGj +WDBWMB0GA1UdDgQWBBQiaM4Hy9R+2Lh+7JjLE2yrQWcf5jA1BgNVHREELjAsghZz +aGliYm9sZXRoLXRlc3QudWhyLnNlhhJodHRwczovL3Voci5zZS9pZHAwDQYJKoZI +hvcNAQELBQADggGBAGMzTkPlKeNFvcYsBKOcKkElTcekWwUCw8YyK+0qvKcOHR8b ++APaud40Qs6mc4GOpju9ttUqI41ivDrpTSTSn1kyuUORgBUxnMduXUsm9sl9kJEL +zEtLbxGl2588afRvy6qbnk9OAtpf1ckkoSW/lgZlWLg8TSC0Ff64a1wt6L86Z2aZ +ByhiQWNlG+1eEbP4WBCae+HB/aKz+kYqdfjMqdFKhe4m1xgTwHzzjkwIeblEOzM1 +NDDdYfLEPiZZBoLOGn6txrkHHiEaL7lGVNTyWW7iiNG4kDIKH/ENSETKw1nNomJw +r+0wNLrVzkpIStn43Mix/sr7mGCglFjfVP1AUD1o10GUPkYFDLR3BKpYbRbrg+s7 ++LjW2gG8l01hhq/mir+TII4Jm2PUFEXG4xYy6aohusA2u7t5u0gbc8Z0BUO/weZH +b852nYB4FAI99bRACz3198vgnGCbEONYFpAjd4ZpJnYVd+CAOw7JpZk9Pn4rMtja +m0LsY3AEmqhT8UG9og== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEKDCCApCgAwIBAgIUZRduGMYlVVvhNNG7skvbn4qYZf8wDQYJKoZIhvcNAQEL +BQAwITEfMB0GA1UEAwwWc2hpYmJvbGV0aC10ZXN0LnVoci5zZTAeFw0xOTA5MTkw +NzIzMjhaFw0zOTA5MTkwNzIzMjhaMCExHzAdBgNVBAMMFnNoaWJib2xldGgtdGVz +dC51aHIuc2UwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDhkTrpfzf9 +q+4/CPNHWjFpCsjSU6WQ/mwZ5sKc3q/f9CWLMoNoYWfQxjFaltD5hbiC9Dan5tqu +Hj24w3Vep2qS+Zy4YIWb+uGgdecV4mMBkmiYmVH0PyKu6n3PFvBpY9tX5WxNQlvC +hrEJ59z8xZlGdl0+Ph4esYKqurKJWSR/eHooalHa0Pu466C9WWh+BWJZ6KZasPjr +5AF2NGM+uC5cdlzV9sZvwwJDrfW0eVBfCdtDFxuDeEOuDzmsC655D135hgfCWnTK +ZZDzgWLC0JYjIv01qhShy4Na4QrvItwqz8BzZodRXi6k381FyEbBcwJA52S/FvMy +YeipAHxuq8CmnHd0LE8cotzKHkuzx2WGdHaPNLkgOEDIpl+e6SPNSjHd01mIjX1F +YJ9KN2Ax2YfMm73aA5qP63toJTc6k73bf/zZdxWS86blGsnJHYLmGpDttJmO78ap +19K4vQbbZLy9mcQsfyDQ2wPfRIarJl0SQd23Gj9VBBNtbWsrEw1WXtECAwEAAaNY +MFYwHQYDVR0OBBYEFCJ172tw8WP8o6kkwyqqejmwfYWJMDUGA1UdEQQuMCyCFnNo +aWJib2xldGgtdGVzdC51aHIuc2WGEmh0dHBzOi8vdWhyLnNlL2lkcDANBgkqhkiG +9w0BAQsFAAOCAYEALkFrjQvcJrVguWW/fo02no3vpHztWZ8Fmmcy7SY6nNxRaqR0 +P6aixFWr+lsEzaISV2uiJWBg79hjW9d7yQ+igDj8ONJVSy+oA2uivm3PaKkOXs8h +kpKKg4fFa2THtqMhS4imtr9A5HWzWoff1PeidOFKS/HQdLaHHlA3IzixbWzx3k9H +sxZkVE2eK5eFIyVoYfS/l/Qy/6pK/EnSHMVbOgQ+LtzSdPEi9ABEJ5/3U5lbRXN9 +V7UlTzaXliJqeLt8m5B3DEs1azTLTPyR0Htitor0MAKD+BHqLebhEwGgMr+Fpjdg +kIU8uXJq2rkxuhcil5OJwjUMPA+BqD8BlsPwEnXkeOD1RVvQWvV3VF99IerdM7z+ +ZNd4tzvfX6UIwSxELtcoO4xCi/ngqq9bb6eg3kSFu2rRcX7LNuFrcSeNclyrcTHR +WXMFwoSfMdumy0WzeBAegMe7tKCPEjFKMBi22Wak0U57lRMZE3JB7mTna3L49R1W +l7UYcB93c7mgKbGO + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibboleth-test.uhr.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibboleth-test.uhr.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://shibboleth-test.uhr.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService xmlns:ns7="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ns7:supportsRequestedAttributes="true" Location="https://shibboleth-test.uhr.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService xmlns:ns7="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ns7:supportsRequestedAttributes="true" Location="https://shibboleth-test.uhr.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">uhr.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEKTCCApGgAwIBAgIVAOmJNNsPlhtyCEhGvcbHwm8z88oHMA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFnNoaWJib2xldGgtdGVzdC51aHIuc2UwHhcNMTkwOTE5 +MDcyMzI5WhcNMzkwOTE5MDcyMzI5WjAhMR8wHQYDVQQDDBZzaGliYm9sZXRoLXRl +c3QudWhyLnNlMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAl6s0U5zo +wGjNHDo6iyYbUCrKC8zIvyykkilrZDQZTjIfCiuETwaWY9bghpZiNrAZcVsUgVIP +qaWoSw4P0v2e7s4xU076nVTrDagjc9Jh3OJfjws5n5Jo4/1GfPOeKuXXP3zVq52B +A72sJA4D3QJJ4V04Jxr7RZlTfkqtBJqMEMHhPPB5nqxkUUeH6y/ceXUgJDBJ1Z2q +MpSLMRgzTBFdc99SqZuR2oIlkA3KIzQVsyZqx+SgvMxCMImrXpmLNwUFak6lHEsN +wH0jeKSJAI/5M2jP+OcRMy0H3/InE6VfPaKrQDq46bWIfQHsgdR5KbunKUXuEmcm +E5W2o3/M/iWMPpd1FWtLT2nyf+7MHuTv/qms6vXDw2BBW74H8lRXC9pqVWq3plzg +gwRWbKJJaGMgrELpQ47ewzzGro0XrgS3J6Mj+QPRn46Md3DqjmPSKnB8cP8v5YxU +2+L8oGcnWLr1DTwy8BCCXUeDC2bgEt/TNpwTVm6td+ryhU6hghDJEEaNAgMBAAGj +WDBWMB0GA1UdDgQWBBSzu8A3ALrUEs1+5Fft+DfUreW5/jA1BgNVHREELjAsghZz +aGliYm9sZXRoLXRlc3QudWhyLnNlhhJodHRwczovL3Voci5zZS9pZHAwDQYJKoZI +hvcNAQELBQADggGBAFLkaC9FXHlCzi2mYGPPixEc3pHMn9jwDCAcDB4UahJeEx5W +EAJJkw4/ivHawLeG7AyF8IqSpvhBoGKZ3vAVUgD65jCj0lDOXAqGdl+zO7SvaEyZ +gFUOv1UyEjE5vjdBQoA0wTfMxnFxKt4J2mUhBu7QGHjOcUfgYD+LBf825/IZ6R5/ +uByive0WP1f6gMxgN4EwgYWVVZxsBSCPTIOFqzBlngXt++A17JY3n3S2WM9fLe3Y +j5utiDd3yF0LOOVGbwWFq9Y6VCm47rIciT3Y0KuDTyk3Fyf/h3Rhy/r8qROd+/kn +kIIXs6CQW2y+e45mlfvxV9RV6OzmYjwyeit+Woa4BauHkUHKv+YeDlqHLkliOYMx +x2N9Vkf+SslXx+zUB3YwHDEZ8G5nIM/eVE7lQuVcKLXjGhnIssKufM4cza9RSYxX +Tvsyp3YRLHYFm581IBZ5eOu/11K63GieK1AM782871wmNDSFIM3dF5DRS73PG09H +R1pR1C9aGOgVijhfxA== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEKTCCApGgAwIBAgIVAJa3jrWH5mn8cZPSdsybp17ygpHYMA0GCSqGSIb3DQEB +CwUAMCExHzAdBgNVBAMMFnNoaWJib2xldGgtdGVzdC51aHIuc2UwHhcNMTkwOTE5 +MDcyMzI3WhcNMzkwOTE5MDcyMzI3WjAhMR8wHQYDVQQDDBZzaGliYm9sZXRoLXRl +c3QudWhyLnNlMIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAnORmFlBy +RbVlEjF+HTt+yZgAxl1hfddpXkJvNti8f+1wovfbANXMO12Iycpf63kfHojzx5Z3 +HOskiMju/o9tUMEgcvLQC4KDXzd2YgvmTO+0dYPI/eMDOmNZlRy+x5O8yIJWYSGJ +rOwKHY4Wt4oRNCMbGeXM5uBX3S+95EFfD+JFquwhG50Pxv31CF1tPyaUJ47BnoU1 +evoahG2ZPX9GMcYYRtRf/gG+PTZ2xc5ZTDFQUnVu7dbcENcpFFGTdzChlW/6nBBO +E1pDAB5cZ1+uXmpt92gf5R5ZDJ14Cj9+qou5vnA3ozdRVtPKcwpYBtrNb3hq+i8s +RlcVX4Xl/TZxaN2rMJq1Wywb2EssRF3Nynq3jPaZk0QOOlldAwzhSvoeXbCxpj6/ +v0VMRlGijmCBZoY8vPTEB+C6e60ORQWDVq/N3ZyfLyekYjscIvZwfDZjYsCrtTJR +xXsYg1m4tcrPfMd2QKcD4SZimfkDOH/qDSQdB7gAadOeledBoitWPrdVAgMBAAGj +WDBWMB0GA1UdDgQWBBQiaM4Hy9R+2Lh+7JjLE2yrQWcf5jA1BgNVHREELjAsghZz +aGliYm9sZXRoLXRlc3QudWhyLnNlhhJodHRwczovL3Voci5zZS9pZHAwDQYJKoZI +hvcNAQELBQADggGBAGMzTkPlKeNFvcYsBKOcKkElTcekWwUCw8YyK+0qvKcOHR8b ++APaud40Qs6mc4GOpju9ttUqI41ivDrpTSTSn1kyuUORgBUxnMduXUsm9sl9kJEL +zEtLbxGl2588afRvy6qbnk9OAtpf1ckkoSW/lgZlWLg8TSC0Ff64a1wt6L86Z2aZ +ByhiQWNlG+1eEbP4WBCae+HB/aKz+kYqdfjMqdFKhe4m1xgTwHzzjkwIeblEOzM1 +NDDdYfLEPiZZBoLOGn6txrkHHiEaL7lGVNTyWW7iiNG4kDIKH/ENSETKw1nNomJw +r+0wNLrVzkpIStn43Mix/sr7mGCglFjfVP1AUD1o10GUPkYFDLR3BKpYbRbrg+s7 ++LjW2gG8l01hhq/mir+TII4Jm2PUFEXG4xYy6aohusA2u7t5u0gbc8Z0BUO/weZH +b852nYB4FAI99bRACz3198vgnGCbEONYFpAjd4ZpJnYVd+CAOw7JpZk9Pn4rMtja +m0LsY3AEmqhT8UG9og== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIEKDCCApCgAwIBAgIUZRduGMYlVVvhNNG7skvbn4qYZf8wDQYJKoZIhvcNAQEL +BQAwITEfMB0GA1UEAwwWc2hpYmJvbGV0aC10ZXN0LnVoci5zZTAeFw0xOTA5MTkw +NzIzMjhaFw0zOTA5MTkwNzIzMjhaMCExHzAdBgNVBAMMFnNoaWJib2xldGgtdGVz +dC51aHIuc2UwggGiMA0GCSqGSIb3DQEBAQUAA4IBjwAwggGKAoIBgQDhkTrpfzf9 +q+4/CPNHWjFpCsjSU6WQ/mwZ5sKc3q/f9CWLMoNoYWfQxjFaltD5hbiC9Dan5tqu +Hj24w3Vep2qS+Zy4YIWb+uGgdecV4mMBkmiYmVH0PyKu6n3PFvBpY9tX5WxNQlvC +hrEJ59z8xZlGdl0+Ph4esYKqurKJWSR/eHooalHa0Pu466C9WWh+BWJZ6KZasPjr +5AF2NGM+uC5cdlzV9sZvwwJDrfW0eVBfCdtDFxuDeEOuDzmsC655D135hgfCWnTK +ZZDzgWLC0JYjIv01qhShy4Na4QrvItwqz8BzZodRXi6k381FyEbBcwJA52S/FvMy +YeipAHxuq8CmnHd0LE8cotzKHkuzx2WGdHaPNLkgOEDIpl+e6SPNSjHd01mIjX1F +YJ9KN2Ax2YfMm73aA5qP63toJTc6k73bf/zZdxWS86blGsnJHYLmGpDttJmO78ap +19K4vQbbZLy9mcQsfyDQ2wPfRIarJl0SQd23Gj9VBBNtbWsrEw1WXtECAwEAAaNY +MFYwHQYDVR0OBBYEFCJ172tw8WP8o6kkwyqqejmwfYWJMDUGA1UdEQQuMCyCFnNo +aWJib2xldGgtdGVzdC51aHIuc2WGEmh0dHBzOi8vdWhyLnNlL2lkcDANBgkqhkiG +9w0BAQsFAAOCAYEALkFrjQvcJrVguWW/fo02no3vpHztWZ8Fmmcy7SY6nNxRaqR0 +P6aixFWr+lsEzaISV2uiJWBg79hjW9d7yQ+igDj8ONJVSy+oA2uivm3PaKkOXs8h +kpKKg4fFa2THtqMhS4imtr9A5HWzWoff1PeidOFKS/HQdLaHHlA3IzixbWzx3k9H +sxZkVE2eK5eFIyVoYfS/l/Qy/6pK/EnSHMVbOgQ+LtzSdPEi9ABEJ5/3U5lbRXN9 +V7UlTzaXliJqeLt8m5B3DEs1azTLTPyR0Htitor0MAKD+BHqLebhEwGgMr+Fpjdg +kIU8uXJq2rkxuhcil5OJwjUMPA+BqD8BlsPwEnXkeOD1RVvQWvV3VF99IerdM7z+ +ZNd4tzvfX6UIwSxELtcoO4xCi/ngqq9bb6eg3kSFu2rRcX7LNuFrcSeNclyrcTHR +WXMFwoSfMdumy0WzeBAegMe7tKCPEjFKMBi22Wak0U57lRMZE3JB7mTna3L49R1W +l7UYcB93c7mgKbGO + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibboleth-test.uhr.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Universitets- och hogskoleradet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Universitets- och högskolerådet - Test</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">The Swedish Council for Higher Education - Test</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.uhr.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>The Swedish Council for Higher Education</md:Company> + <md:SurName>Håkan Pettersson</md:SurName> + <md:EmailAddress>mailto:hakan.pettersson@uhr.se</md:EmailAddress> + <md:TelephoneNumber>070-595 96 28</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>The Swedish Council for Higher Education</md:Company> + <md:SurName>Håkan Pettersson</md:SurName> + <md:EmailAddress>mailto:hakan.pettersson@uhr.se</md:EmailAddress> + <md:TelephoneNumber>+46 70595 96 28</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>The Swedish Council for Higher Education</md:Company> + <md:SurName>Håkan Pettersson</md:SurName> + <md:EmailAddress>mailto:hakan.pettersson@uhr.se</md:EmailAddress> + <md:TelephoneNumber>+46 70595 96 28</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/sp.haikom.com-saml-kph-test.xml b/swamid-testing/sp.haikom.com-saml-kph-test.xml new file mode 100644 index 00000000..6948c1f0 --- /dev/null +++ b/swamid-testing/sp.haikom.com-saml-kph-test.xml @@ -0,0 +1,50 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://sp.haikom.com/saml/kph-test"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-10-17T11:16:40Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="true" WantAssertionsSigned="true"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Uppsala universitets visitkortsportal (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Uppsala University business cards portal (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Uppsala universitets visitkortsportal används för beställning av visitkort.</mdui:Description> + <mdui:Description xml:lang="en">The Uppsala University business cards portal is used for ordering business cards.</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://mp.uu.se/c/perm/link?p=860972</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://mp.uu.se/c/perm/link?p=860972</mdui:InformationURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIEczCCA1ugAwIBAgIIcS3igxdPcxEwDQYJKoZIhvcNAQENBQAwgZwxKDAmBgNVBAMMH0hhaUtvbSBTZWxmLVNpZ25lZCBDZXJ0aWZpY2F0ZXMxDzANBgNVBAoMBkhhaUtvbTEXMBUGA1UECwwOd3d3LmhhaWtvbS5jb20xEjAQBgNVBAcMCVN0b2NraG9sbTEPMA0GA1UEBhMGU3dlZGVuMSEwHwYJKoZIhvcNAQkBFhJzdXBwb3J0QGhhaWtvbS5jb20wHhcNMTcwOTE2MDAwMDAwWhcNMzcwOTE2MDAwMDAwWjBOMRYwFAYDVQQDDA1zcC5oYWlrb20uY29tMQ8wDQYDVQQKDAZIYWlLb20xEjAQBgNVBAcMCVN0b2NraG9sbTEPMA0GA1UEBhMGU3dlZGVuMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWmhC8VIJsSOSArrsO/jRgukGxCbX+0KyIzA2aNcsi9GDvYIMnf9m4P/uhVK7YFrsaC6BvWv38mdZP3oW4tOVX5J9XuiMwH+mOJajyNvMqaMebWLbwJJ2mDSC/4kX9y5tn+y/Fwu3+QMnRApVQCLWL+Pr5z7xeq4gpETsC8KnDqRq3jNSRClYmZzU3UNFb5wKIcLFJ7ShQpFi5tORhNeX1Y8ziUJgUChKlvrqI9Xxs+whEtMjqmqB6P/8NDR35y8bzmv8FlfNdJQXP8XG+icTXAOsuI78fIQQl860v+BiuCHIr3nzHcZIkeXP1E5skVE8G521TzALacNABvMKRUhCQIDAQABo4IBBDCCAQAwgdAGA1UdIwSByDCBxYAUUlkcUX7NJ5BrsANXn7DX2or8t2ihgaKkgZ8wgZwxKDAmBgNVBAMMH0hhaUtvbSBTZWxmLVNpZ25lZCBDZXJ0aWZpY2F0ZXMxDzANBgNVBAoMBkhhaUtvbTEXMBUGA1UECwwOd3d3LmhhaWtvbS5jb20xEjAQBgNVBAcMCVN0b2NraG9sbTEPMA0GA1UEBhMGU3dlZGVuMSEwHwYJKoZIhvcNAQkBFhJzdXBwb3J0QGhhaWtvbS5jb22CCHEt4oMXT3MRMB0GA1UdDgQWBBRSWRxRfs0nkGuwA1efsNfaivy3aDAMBgNVHRMBAf8EAjAAMA0GCSqGSIb3DQEBDQUAA4IBAQAESl1nr0+3TNo3KEh2UPykyi/2XrYrfMU4Yu7FMQPYPcyNqjumUumzX/fjwHP/yWeNZ7F3L+2npQicZ/04o4sNwzhixuZ2fSv/s5PTvpbwQzBEbTitLkr/ki1PTLQp12yIN6EWkmpxdsnfMEvY3arV3e6Le8c2dVZSIUomuDYg38KhEoj22yPUYsBCxKv7mWBB4H/BJ6rOxAlJ00T4FOCKttj4qajKuEK3T9rbQ2CMnhxLB2WPcWUSE8oprLZSNwqDSWzhnn0YZEWRKj2jd3RuFsnSBTlroYwiUgfiLTWOj3bTcw5/B5uty2TVAqmWTA4fAQUgZn3JBJ7SeeGbaQdc</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://tryckportal.kph.se:8443/Kph/api/saml/sp/v1/slo/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://tryckportal.kph.se:8443/Kph/api/saml/sp/v1/slo/Redirect"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://tryckportal.kph.se:8443/Kph/api/saml/sp/v1/sso/POST" index="1" isDefault="true"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://tryckportal.kph.se:8443/Kph/api/saml/sp/v1/sso/Redirect" index="2" isDefault="false"/> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">HaiKom AB</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">HaiKom</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.haikom.com</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:Company>HaiKom</md:Company> + <md:EmailAddress>mailto:support@haikom.com</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/stipendier-test.its.uu.se-stipendium.xml b/swamid-testing/stipendier-test.its.uu.se-stipendium.xml new file mode 100644 index 00000000..6a5e304b --- /dev/null +++ b/swamid-testing/stipendier-test.its.uu.se-stipendium.xml @@ -0,0 +1,100 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://stipendier-test.its.uu.se/stipendium"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-04-10T09:08:30Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Stipendiehantering (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Scholarship (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">System (TEST) som hanterar stipendium vid Uppsala universitet</mdui:Description> + <mdui:Description xml:lang="en">Scholarship (TEST) management system at Uppsala University</mdui:Description> + <mdui:Logo xml:lang="en" height="125" width="125">https://stipendier-test.its.uu.se/stipendium/img/UU-logga_125x125.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="125" width="125">https://stipendier-test.its.uu.se/stipendium/img/UU-logga_125x125.png</mdui:Logo> + <mdui:InformationURL xml:lang="sv">http://stipendier-test.its.uu.se/stipendium/stipac/login</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">http://stipendier-test.its.uu.se/stipendium/stipac/login?lang=en</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://uu.se/hittastipendier/behandling-av-personuppgifter</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://uu.se/en/findscholarships/processing-of-personal-data</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDYzCCAkugAwIBAgIEfScBOzANBgkqhkiG9w0BAQsFADBiMQswCQYDVQQGEwJzZTEQMA4GA1UE + CBMHU3ZlcmlnZTEQMA4GA1UEBxMHVXBwc2FsYTELMAkGA1UEChMCVVUxCzAJBgNVBAsTAklUMRUw + EwYDVQQDEwxUb21teSBTdGVudmkwHhcNMTcwMzAzMDcwMDA3WhcNMzcwMjI2MDcwMDA3WjBiMQsw + CQYDVQQGEwJzZTEQMA4GA1UECBMHU3ZlcmlnZTEQMA4GA1UEBxMHVXBwc2FsYTELMAkGA1UEChMC + VVUxCzAJBgNVBAsTAklUMRUwEwYDVQQDEwxUb21teSBTdGVudmkwggEiMA0GCSqGSIb3DQEBAQUA + A4IBDwAwggEKAoIBAQCcxAvJuFC8orIPNpsam9iXZJekHs2dSmDd/ex50A0vf3l60cpkxg3cAMcR + EH5Bk+h9PSO0eRjj7pzPFE1Ok0MQEsmCljXQPcMfOOXGAD6g+cR3ZyLqiZ7k8/oog5G+S5HFAY+4 + 7y6loEkYsJ1iLTPhgBLeoWjFP2T8S67l5WSHAeeUVEyeXfodxGA4zee3w3V9XtaNc/ldiEZnF905 + dITQX4D5gew3Tb9ezP79+GrHQwv3Q3xWjU4EILJ6uGFcBhO0fbj7hS7GGvmzMgI9vyq10xVdUAY6 + kFpwwnfFiJm3gkusTvluuWnyscA3RTzrNab290jrXzHQQcP1AoeA/WdjAgMBAAGjITAfMB0GA1Ud + DgQWBBTCDLvl0/fpImvNkS9Wsg1fZ+fu1jANBgkqhkiG9w0BAQsFAAOCAQEAHXbUQzYX7q5tE7f6 + VuU2YtI+XFOBdrw4SE1uDcd1XeWMcBsMvcEFbeWrwhYdVlv9+ni1A3/pGgy6Do9EvJfu79Jj6QgQ + GdbL+RJ/8oBt09w+zGJ00m86g5JpN5l19CIi+yIVBGL1v+aK6c3AHC+9y8f2965mHk/YZknIw1xR + 1EXQ1/KXwlHzvBpEU3EfWRxhZ+B66zWHfekr659A3T5wCUpPWrzVCTaXh2ZNEBY95bGhuECZnVVY + yRw902t0AGgUk9jhJ83aMPdrSk3IZTFa5YOC9OQcwJ6nfAGXNgsn/taFleA8+GaIBwhKF95s8h1J + l+6u+L3FBjFOWmy9EQZdyA== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stipendier-test.its.uu.se:443/stipendium/saml/SingleLogout/alias/defaultAlias"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://stipendier-test.its.uu.se:443/stipendium/saml/SingleLogout/alias/defaultAlias"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stipendier-test.its.uu.se:443/stipendium/saml/SSO/alias/defaultAlias" index="0" isDefault="true"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://stipendier-test.its.uu.se:443/stipendium/saml/SSO/alias/defaultAlias" index="1"/> + <md:AttributeConsumingService index="0" isDefault="true"> + <md:ServiceName xml:lang="sv">Stipendiehantering (TEST)</md:ServiceName> + <md:ServiceName xml:lang="en">Scholarship (TEST)</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Stipendiekansliet</md:SurName> + <md:EmailAddress>mailto:stipendiekansliet@uadm.uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714750</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Operations</md:SurName> + <md:EmailAddress>mailto:drift@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Stipendiekansliet</md:SurName> + <md:EmailAddress>mailto:stipendiekansliet@uadm.uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714750</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Uppsala University Computer Security Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:security@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4717560</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/stipendier-utv.its.uu.se-stipendium.xml b/swamid-testing/stipendier-utv.its.uu.se-stipendium.xml new file mode 100644 index 00000000..cf0d2f5a --- /dev/null +++ b/swamid-testing/stipendier-utv.its.uu.se-stipendium.xml @@ -0,0 +1,100 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://stipendier-utv.its.uu.se/stipendium"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-11-16T14:49:15Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Stipendiehantering (UTV)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Scholarship (DEV)</mdui:DisplayName> + <mdui:Description xml:lang="sv">System (UTV) för att söka och hantera stipendium vid Uppsala universitet</mdui:Description> + <mdui:Description xml:lang="en">Scholarship (DEV) management system at Uppsala University</mdui:Description> + <mdui:Logo xml:lang="en" height="125" width="125">https://stipendier-utv.its.uu.se/stipendium/img/UU-logga_125x125.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="125" width="125">https://stipendier-utv.its.uu.se/stipendium/img/UU-logga_125x125.png</mdui:Logo> + <mdui:InformationURL xml:lang="sv">http://stipendier-utv.its.uu.se/stipendium/stipac/login</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">http://stipendier-utv.its.uu.se/stipendium/stipac/login?lang=en</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://uu.se/hittastipendier/behandling-av-personuppgifter</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://uu.se/en/findscholarships/processing-of-personal-data</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDYzCCAkugAwIBAgIEfScBOzANBgkqhkiG9w0BAQsFADBiMQswCQYDVQQGEwJzZTEQMA4GA1UE + CBMHU3ZlcmlnZTEQMA4GA1UEBxMHVXBwc2FsYTELMAkGA1UEChMCVVUxCzAJBgNVBAsTAklUMRUw + EwYDVQQDEwxUb21teSBTdGVudmkwHhcNMTcwMzAzMDcwMDA3WhcNMzcwMjI2MDcwMDA3WjBiMQsw + CQYDVQQGEwJzZTEQMA4GA1UECBMHU3ZlcmlnZTEQMA4GA1UEBxMHVXBwc2FsYTELMAkGA1UEChMC + VVUxCzAJBgNVBAsTAklUMRUwEwYDVQQDEwxUb21teSBTdGVudmkwggEiMA0GCSqGSIb3DQEBAQUA + A4IBDwAwggEKAoIBAQCcxAvJuFC8orIPNpsam9iXZJekHs2dSmDd/ex50A0vf3l60cpkxg3cAMcR + EH5Bk+h9PSO0eRjj7pzPFE1Ok0MQEsmCljXQPcMfOOXGAD6g+cR3ZyLqiZ7k8/oog5G+S5HFAY+4 + 7y6loEkYsJ1iLTPhgBLeoWjFP2T8S67l5WSHAeeUVEyeXfodxGA4zee3w3V9XtaNc/ldiEZnF905 + dITQX4D5gew3Tb9ezP79+GrHQwv3Q3xWjU4EILJ6uGFcBhO0fbj7hS7GGvmzMgI9vyq10xVdUAY6 + kFpwwnfFiJm3gkusTvluuWnyscA3RTzrNab290jrXzHQQcP1AoeA/WdjAgMBAAGjITAfMB0GA1Ud + DgQWBBTCDLvl0/fpImvNkS9Wsg1fZ+fu1jANBgkqhkiG9w0BAQsFAAOCAQEAHXbUQzYX7q5tE7f6 + VuU2YtI+XFOBdrw4SE1uDcd1XeWMcBsMvcEFbeWrwhYdVlv9+ni1A3/pGgy6Do9EvJfu79Jj6QgQ + GdbL+RJ/8oBt09w+zGJ00m86g5JpN5l19CIi+yIVBGL1v+aK6c3AHC+9y8f2965mHk/YZknIw1xR + 1EXQ1/KXwlHzvBpEU3EfWRxhZ+B66zWHfekr659A3T5wCUpPWrzVCTaXh2ZNEBY95bGhuECZnVVY + yRw902t0AGgUk9jhJ83aMPdrSk3IZTFa5YOC9OQcwJ6nfAGXNgsn/taFleA8+GaIBwhKF95s8h1J + l+6u+L3FBjFOWmy9EQZdyA== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stipendier-utv.its.uu.se:443/stipendium/saml/SingleLogout/alias/defaultAlias"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://stipendier-utv.its.uu.se:443/stipendium/saml/SingleLogout/alias/defaultAlias"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stipendier-utv.its.uu.se:443/stipendium/saml/SSO/alias/defaultAlias" index="0" isDefault="true"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://stipendier-utv.its.uu.se:443/stipendium/saml/SSO/alias/defaultAlias" index="1"/> + <md:AttributeConsumingService index="0" isDefault="true"> + <md:ServiceName xml:lang="sv">Stipendiehantering (UTV)</md:ServiceName> + <md:ServiceName xml:lang="en">Scholarship (DEV)</md:ServiceName> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Stipendiekansliet</md:SurName> + <md:EmailAddress>mailto:stipendiekansliet@uadm.uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714750</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Operations</md:SurName> + <md:EmailAddress>mailto:drift@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Stipendiekansliet</md:SurName> + <md:EmailAddress>mailto:stipendiekansliet@uadm.uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714750</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Uppsala University Computer Security Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:security@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4717560</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/stslab.mah.se-adfs-services-trust.xml b/swamid-testing/stslab.mah.se-adfs-services-trust.xml new file mode 100644 index 00000000..be8157fd --- /dev/null +++ b/swamid-testing/stslab.mah.se-adfs-services-trust.xml @@ -0,0 +1,105 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="http://stslab.mah.se/adfs/services/trust"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-05-20T09:23:01Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=http://stslab.mah.se/adfs/services/trust"> + <md:Extensions> + <shibmd:Scope regexp="false">mah.se (regexp="false")</shibmd:Scope> + <shibmd:Scope regexp="false">mah.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Test Identity Provider for Malmö university</mdui:DisplayName> + <mdui:Description xml:lang="en">Identity Provider for Malmö university</mdui:Description> + <mdui:InformationURL xml:lang="en">https://mau.topdesk.net/solutions/open-knowledge-items/item/KA%201552/en_GB/</mdui:InformationURL> + <mdui:Keywords xml:lang="en">mah mau malmo+universitet malmo+university</mdui:Keywords> + <mdui:Logo xml:lang="en" height="163" width="56">https://cdn.mah.se/images/header/en/mau-logo.svg</mdui:Logo> + <mdui:Logo xml:lang="sv" height="163" width="56">https://cdn.mah.se/images/header/sv/mau-logo.svg</mdui:Logo> + <mdui:DisplayName xml:lang="sv">Test Identity Provider för Malmö universitet</mdui:DisplayName> + <mdui:Description xml:lang="sv">Identity Provider för Malmö universitet</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://mau.topdesk.net/solutions/open-knowledge-items/item/KA%201552/sv_SE/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://mau.topdesk.net/solutions/open-knowledge-items/item/KA%201552/en_GB/</mdui:InformationURL> + <mdui:Keywords xml:lang="sv">mah mau malmo+universitet malmo+university</mdui:Keywords> + <mdui:PrivacyStatementURL xml:lang="sv">https://idservice.mau.se/GdprInfo.aspx</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://idservice.mau.se/GdprInfo.aspx</mdui:PrivacyStatementURL> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>mah.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:55.6087954,12.9945611</mdui:GeolocationHint> + <mdui:IPHint>195.178.224.0/19</mdui:IPHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIC3DCCAcSgAwIBAgIQW0dvhIGI9LlEjyE4QH+rTDANBgkqhkiG9w0BAQsFADAqMSgwJgYDVQQDEx9BREZTIEVuY3J5cHRpb24gLSBzdHNsYWIubWFoLnNlMB4XDTIyMDUxMDEwNTYxM1oXDTI1MDUwOTEwNTYxM1owKjEoMCYGA1UEAxMfQURGUyBFbmNyeXB0aW9uIC0gc3RzbGFiLm1haC5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMaS0WkRq0kUwWAUMtKMLYUw6kwNlpTyJfjn/Xs64oSMsUyN59V3UHF42Ane1x6ZVACF/ctxMeFhLMh8Uj/cCfecHIbvSOgmajuVwe5usgYCUErNhRaoX38xsYnoEaOBLT4bQRq4xm3mNakNzO4KPVzJ/ybyaUOfDKFkpx4ZO1a6wsGXcVxp5UAABg2Q3Ll9/dQAZUbywwElhtuB/J4kRbVxXejAIwqDWTP68wIwIPbjFaSUT8BmhjPwBnGMkQTf6xgv9Aq7N1h2m2k1GPN62WwjaYlQt2r/ROkplNj1bu+7z13sI0ReqmjHpozmKqi50O9igaP9PPEJFMrA/CFFIaUCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAuxW4Kgg51WWiT1tZAK8CAzOvHTJSzig1hjbX8GPVZKKt3bNOeczhEqKRvLVWvio1huTuSHSnF7mEBt2ghbl80NHPJ6BSwHeTjSW4J81UzCb8BCtVFVGxvNypG/fRBMGZpQ7/PjP4DkobWR6tyLbKVMshq3d9gQPjkzLLM/70XPLuzX9JAW7uVbfutK6NUmxSBSPakDc7mzlJGC5xYEDsO1PtEhP3gQsY66O5Ftl1FwmH6M3YaGIHs8HNlOtr4zYv7UXuTo93MaDVp6QqJIdSUYCbXy+SeLnogS2nIuZNqDyUvViwpobyxS9DkuOrd5gkLAnE5eHLtJa8azmfNBGEZg==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>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</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIC1jCCAb6gAwIBAgIQFoGG9+p3RpdG1Ufyjd3O9TANBgkqhkiG9w0BAQsFADAnMSUwIwYDVQQDExxBREZTIFNpZ25pbmcgLSBzdHNsYWIubWFoLnNlMB4XDTIyMDUxMDEwNTYwM1oXDTI1MDUwOTEwNTYwM1owJzElMCMGA1UEAxMcQURGUyBTaWduaW5nIC0gc3RzbGFiLm1haC5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL0V6jeNEyEW2z2NEyHxehmkJDHg9L82OMzf0dcsaYzXJFZhLYsbygJmbs7B9f3lZQ5VWf9Bi1dUNQI1BJJhkd/vMAeB1Pcu4pUfS8lGJiV9e20qQ7fMmzaajzUtLTkHbJFUQRnpKCeWh0+ScIGDzyUMhQsLfYYbg3vgJUTnCrN/keqT5ZykquhZmXkskaeH3sc9fvEb1JtkYe+6sdT4oRYuJrERML/qPx+Dg74tqz9Q11bT04FxEi0QSpWMEXkownwRaIuyPYq4Sa0+imHwOa1+tMkdLulSA8BqXR6l8kcGamWjXozH+Hri4xiQyuLiscAozkDmBRbBpLKlCO8HmL8CAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAKLF9+v57eznYgb9HSXKT5icnK+5YqT5oLEj12m0B3CNp7/Yzh3cWzRW4es453JYv1MixbmG68kLg7hW5B9/WoewSpqveRy+95ard040vnq3wHib9uzP8kn/+6gHCOhWmdvAQ6nVFCIlY2CnHZot4h1aDJ2KFWFFYr31w2SrtfkMsUJXkZ7rQIhTGb0si5ogko3L/SfVnHsAwC9IFVu5A/HHRaflMV1C7FctcDhoMBch3OFy/CWoMr4v3SNTGhVwIzQyrH3ko9jr1GoN5lXm3d55WSn6bJYkycWwrwjCxbED32XvqTElM9316E056fiaGa7uyQcG8KccfhuoBULMN0Q==</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://stslab.mah.se/adfs/ls/"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stslab.mah.se/adfs/ls/"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://stslab.mah.se/adfs/ls/"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stslab.mah.se/adfs/ls/"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">MAH</md:OrganizationName> + <md:OrganizationName xml:lang="sv">MAH</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Malmö universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Malmö university</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">https://www.mau.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">https://www.mau.se/en</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:Company>Malmö universitet</md:Company> + <md:SurName>IT Servicedesk</md:SurName> + <md:EmailAddress>mailto:support@mau.se</md:EmailAddress> + <md:TelephoneNumber>+46 40 6657555</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Malmö universitet</md:Company> + <md:SurName>IT Drift</md:SurName> + <md:EmailAddress>mailto:drift@mau.se</md:EmailAddress> + <md:TelephoneNumber>+46 709 655480</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:Company>Malmö universitet</md:Company> + <md:SurName>IT Drift</md:SurName> + <md:EmailAddress>mailto:drift@mau.se</md:EmailAddress> + <md:TelephoneNumber>+46 709 655480</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:Company>Malmö universitet</md:Company> + <md:GivenName>IT Drift</md:GivenName> + <md:SurName>IT Drift</md:SurName> + <md:EmailAddress>mailto:drift@mau.se</md:EmailAddress> + <md:TelephoneNumber>+46 709 655480</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/t0253.srv.lu.se-shibboleth.xml b/swamid-testing/t0253.srv.lu.se-shibboleth.xml new file mode 100644 index 00000000..915fdbcc --- /dev/null +++ b/swamid-testing/t0253.srv.lu.se-shibboleth.xml @@ -0,0 +1,65 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://t0253.srv.lu.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2015-05-26T10:30:52Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/hei-service</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://t0253.srv.lu.se/Shibboleth.sso/Login-lu"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://t0253.srv.lu.se/Shibboleth.sso/Login-swamid" index="1"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">lu.se dev-server</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">lu.se dev-server</mdui:DisplayName> + <mdui:Description xml:lang="sv">Server för leveransområdet lu.se, där det sker utvecklingstester.</mdui:Description> + <mdui:Description xml:lang="en">Server for development tests for lu.se</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:KeyName>t0253.srv.lu.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=t0253.srv.lu.se</ds:X509SubjectName> + <ds:X509Certificate>MIIC9DCCAdygAwIBAgIJAKsb9ND3kJJHMA0GCSqGSIb3DQEBBQUAMBoxGDAWBgNV +BAMTD3QwMjUzLnNydi5sdS5zZTAeFw0xNTA1MjExMjUxMzdaFw0yNTA1MTgxMjUx +MzdaMBoxGDAWBgNVBAMTD3QwMjUzLnNydi5sdS5zZTCCASIwDQYJKoZIhvcNAQEB +BQADggEPADCCAQoCggEBALUEWPsvPfvLMpdOcuj2pTlAkB/AclM7pk3Pid/Y8N2g +Ig/zNuwvm3JHb7wtX2rnYwlQkZnVQHYmCdHcPRqVF2skZ3oGhAxKfMhzMv9hdpQC +z2rOkU7TKHOCS8QVtUrp+5lHNLJgRLGwRdnkmKwmBeaw+ARrMajac78XM/IluR6W +szvvDxuJzTI4VrIIFaxowIaqEQZ0eqJ5xRgVtm2gWT/+dFKQ5Rarih5J7YsAf/qx +QdzLuzxprElN154+GK6v2cPjzzNFFDZ2b2nZYGlA7monslUvvtyPJfftC8eUlo+x +0oh57KT+2l+LQAKMQK2fTJzP26PWEk0EkcYc4tAgXccCAwEAAaM9MDswGgYDVR0R +BBMwEYIPdDAyNTMuc3J2Lmx1LnNlMB0GA1UdDgQWBBSjdvGg25y0PMaGlfeOUpZt +Hxs+xzANBgkqhkiG9w0BAQUFAAOCAQEAMdX5Gptx4P0wZP09bvE7f6iUzoZJvIzQ +5Fx4bJmSOvk4gBY67HI/jMdr96SUx95jtEaPeyIZY+qgMHt50VH6EmJUX2MvTmGq +9SmVBkyZlslgGgbhfxNyle2Q/2MmJSrVZLKlE1OCTXrP8wQ8cnUQhFMycNkPq++B +ycUie3oom6nWqBNdYTIm/BMLrm3s/ElSYKaMP9fTfcZEidI1f9tcfNKFVvnWdF2m +c+rHrc5Y3vgVwBDLiCKgVnfrdD94HrvV9o+8T9joTmacC/1MqXVhC/yFPIAWTx0z +X0M9HPc6jTSKpzxoFU9QN+XTGltcAihuBo8Qh8fpVqYAX6Qi3VD/Fg== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://t0253.srv.lu.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://t0253.srv.lu.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://t0253.srv.lu.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://t0253.srv.lu.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://t0253.srv.lu.se/Shibboleth.sso/SLO/Artifact"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://t0253.srv.lu.se/Shibboleth.sso/NIM/SOAP"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://t0253.srv.lu.se/Shibboleth.sso/NIM/Redirect"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://t0253.srv.lu.se/Shibboleth.sso/NIM/POST"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://t0253.srv.lu.se/Shibboleth.sso/NIM/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://t0253.srv.lu.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://t0253.srv.lu.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://t0253.srv.lu.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://t0253.srv.lu.se/Shibboleth.sso/SAML/POST" index="5"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://t0253.srv.lu.se/Shibboleth.sso/SAML/Artifact" index="6"/> + </md:SPSSODescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/test-his.hr.evry.se-shibboleth.xml b/swamid-testing/test-his.hr.evry.se-shibboleth.xml new file mode 100644 index 00000000..6ddb30e6 --- /dev/null +++ b/swamid-testing/test-his.hr.evry.se-shibboleth.xml @@ -0,0 +1,72 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://test-his.hr.evry.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2015-01-30T10:48:28Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDKDCCAhCgAwIBAgIJALQZLo4SG3IqMA0GCSqGSIb3DQEBBQUAMB4xHDAaBgNV +BAMTE3Rlc3Qtc3NjLmhyLmV2cnkuc2UwHhcNMTQxMTI1MTQ0ODU1WhcNMjQxMTIy +MTQ0ODU1WjAeMRwwGgYDVQQDExN0ZXN0LXNzYy5oci5ldnJ5LnNlMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmMXETFuyDLH3w07c8NvkgzVuwzIXrCE +Uvs7wZyT6ZxJBZUpv40E3hMjWD6H1HES5EReGn1Pz/N0WNwJgKwPSoXAKdIsarle +JXT8tLnWh1VwxYwqJAWicIBEHg+wieZOtpx4bZWbuoawrmG4y+Sv2bQ4ysCGTv+e +ldtBQDDg7AoYgKKNd7XTCvmpCFSRgsvKNlfcM7IqqbQGZXAjAdN8fE925NCwJAXD +Ls1TkHuhdUDqonkpjeIcOknfl1MYHmabjICyStZapz+3/dwbkUxpR92FwaCg+RcQ +S0rnS/PL9NXZYliFZp0Xh4ScDIma9psz2sE7slSRYuw1YVUiOu5iawIDAQABo2kw +ZzBGBgNVHREEPzA9ghN0ZXN0LXNzYy5oci5ldnJ5LnNlhiZodHRwczovL3Rlc3Qt +c3NjLmhyLmV2cnkuc2Uvc2hpYmJvbGV0aDAdBgNVHQ4EFgQUyyz73UbcUW2un96s +oed1EtDPMQAwDQYJKoZIhvcNAQEFBQADggEBADlt8uXtd2pneWkOTEsnz1pjb9bi +pirtJavI5AUPV2rK70VRG/jpSbagsZFJWQrw+fPZVEF5emKUyR49EUJRn0KCBNya +SZg2n3AISr0f3QfubUAzCCHukIRnhGt4xeAAWN05X7ANzxwnGlvVFrY4LQmwYiyD +8IUFY03HFM86DjGWnC7TfPA4sg12abLkRuWHRytlWSO61a6xXvFflQlAuwMlL6Vm +gEhPDsDiKCgP+rtRfKirnUj/35G+bl+esZ9Nv4FQ3uEMxezo5IofzVjy92Xg4bxP +tFtOy/01MRdVsQQc8spn2VX6WxZsXCj1HNHrT91JARliVf+ztavCB3DOxSE= +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test-his.hr.evry.se/Shibboleth.sso/SAML2/Artifact" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test-his.hr.evry.se/Shibboleth.sso/SAML2/POST" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://test-his.hr.evry.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:artifact-01" Location="https://test-his.hr.evry.se/Shibboleth.sso/SAML2/Artifact" index="5"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:browser-post" Location="https://test-his.hr.evry.se/Shibboleth.sso/SAML2/POST" index="6"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">Primula Web</md:ServiceName> + <md:RequestedAttribute FriendlyName="eppn" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/> + <md:RequestedAttribute FriendlyName="affiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/> + <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Evry HR Solutions AB</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Evry HR Solutions AB</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.evry.se/it-tjanster/applikationstjanster-och-losningar/personal-och-lonesystem/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="support"> + <md:GivenName>Primula</md:GivenName> + <md:SurName>Support</md:SurName> + <md:EmailAddress>mailto:primulasupport@tietoevry.com</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/test.lu.ortrac.com-saml-sp.xml b/swamid-testing/test.lu.ortrac.com-saml-sp.xml new file mode 100644 index 00000000..d7713565 --- /dev/null +++ b/swamid-testing/test.lu.ortrac.com-saml-sp.xml @@ -0,0 +1,99 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://test.lu.ortrac.com/saml/sp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-09-14T06:28:36Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://test.lu.ortrac.com/Shibboleth.sso/DS/Login"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://test.lu.ortrac.com/Shibboleth.sso/DS/Login" index="1"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">QPS Test environment</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">QPS Testmiljö</mdui:DisplayName> + <mdui:Description xml:lang="en">Quality and control system for the education at the Faculty of Medicine</mdui:Description> + <mdui:Description xml:lang="sv">Kvalitets- och uppföljningssystem för utbildningen vid Medicinska fakulteten</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:KeyName>www.ortrac.com</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=www.ortrac.com</ds:X509SubjectName> + <ds:X509Certificate>MIID/DCCAmSgAwIBAgIUIdrYO7SXSTpQdQMUN0OaFNDfNeYwDQYJKoZIhvcNAQEL +BQAwGTEXMBUGA1UEAxMOd3d3Lm9ydHJhYy5jb20wHhcNMjAwMTA1MjM1ODUxWhcN +MzAwMTAyMjM1ODUxWjAZMRcwFQYDVQQDEw53d3cub3J0cmFjLmNvbTCCAaIwDQYJ +KoZIhvcNAQEBBQADggGPADCCAYoCggGBAL2eD02Ch/WpMfgA8Bmsy1C3etN1QmvQ +WROGi9nlm9A1tYg6A/E99nebNNuaDjOhlf2bFEmrUvXNZV2htZxp9Dk3iS3LoQen +n6j+hlxHVZKBm8ns/NMyO7wSVKimJCx6YXpisPPYBQn9Q3LQFARDXdkNndOtnIja +Jy6+bpmSUM7J90kTlinZ++VXYv2fTnVpWQie6ir422n+MvfJli9XFi8pri895XZZ +CExeTOe4u5FIoVrVxLp+TIolb4xsvpZo6PCHKpCW0nyfX2EUe94yAP+i9wwtqnRB +lHRDIbjitnpoVn0wIw/JkpY6Uk6Qs46vm1bxo9RlILY9+NoaUJuqOvXg7sGvGcC2 +wHcHEwzzb44V43mUkgOA8/QUwiOzkgzpTKZZpwwTKvKFCiMcQ9ck/hy9372TRX4L +qOpkwxOAS5gQzlJQ3UKpn7sJavzjZgpUbWn9yHWVGxAaKHpbW0I7Sa+lHqtWoVJX +h56LH/K2FmGtA9fCIKi3pCaC/FBZXCIfHQIDAQABozwwOjAZBgNVHREEEjAQgg53 +d3cub3J0cmFjLmNvbTAdBgNVHQ4EFgQUid+qBStC7mLmxpz2tc7WqmrBB9EwDQYJ +KoZIhvcNAQELBQADggGBAB+1zL/mJGZZ6DHN9ohhrv3Kw47bNgn8MEiSrrE9bjwH +/0WaqJFUwiBcmH1N3EA25uZT4mUK0AwlnuQlPwkkDgj3Y5yrSE21//99+Xf8Ksfe +91Yjx4hMUUmZnMxJQl1JsvuZ3KF8kgHk+ijmWJGlz7u2NKTDY6m9y/RsaDoycqOp +S/r9HFuPYBYdFw3DivQmjM0jwOtt4JuWZDYg75sYjelR8RnxSIQnxgk5St4GKLq0 +URB0VnbbiYt1vGpVvbpXcEnlrwCo+gWUMM6a35Q5eKgKantfkhd1ElfFB6OIZCXd +InqHD3/3ZgqTfdYZ8IzIsMxqyTEbCWwSlisE7L2JQ2wNKUO5gDMRD/IrwvQZc+UG +zIbTFrMZ+RPS8CVwt0NlvzYfKSM/12HjZ/FUluKIcJwXC3sPnyn0V5fJZjQm3qf1 +kJ+sjgFwjYk3lFoOmYnXU8NZQWlyfNO0XNNiZK+4RU2zyDDNARD95j0FueYVFvA3 +yQ8Fym8zwW/5KlfigfEnLA== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.lu.ortrac.com/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test.lu.ortrac.com/Shibboleth.sso/SLO/Artifact"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.lu.ortrac.com/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://test.lu.ortrac.com/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.lu.ortrac.com/Shibboleth.sso/SLO/SOAP"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.lu.ortrac.com/Shibboleth.sso/SAML2/POST" index="1"/> + </md:SPSSODescriptor> + <md:ContactPerson contactType="support"> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:SurName>Jakob Donnér</md:SurName> + <md:EmailAddress>mailto:jakob.donner@med.lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:SurName>Johan Agardh</md:SurName> + <md:EmailAddress>mailto:johan.agardh@med.lu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/test.mp.uu.se-Shibboleth.sso.xml b/swamid-testing/test.mp.uu.se-Shibboleth.sso.xml new file mode 100644 index 00000000..f2d4999e --- /dev/null +++ b/swamid-testing/test.mp.uu.se-Shibboleth.sso.xml @@ -0,0 +1,130 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://test.mp.uu.se/Shibboleth.sso"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2013-11-14T18:24:20Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://test.mp.uu.se/Shibboleth.sso/Login"/> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://test.mp.uu.se/Shibboleth.sso/DS"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://test.mp.uu.se/Shibboleth.sso/DS" index="1"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Medarbetarportalen vid Uppsala universitet (TEST)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">The Staff Portal (Medarbetarportalen) at Uppsala University (TEST)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Medarbetarportalen är ett intranät för anställda vid Uppsala universitet, men är även åtkomlig för studenter och externa användare.</mdui:Description> + <mdui:Description xml:lang="en">The Staff Portal (Medarbetarportalen) is an intranet for employees at Uppsala University, but it's also available for students and external users.</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://test.mp.uu.se/sv/web/support/om-mp</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://test.mp.uu.se/en/web/support/om-mp</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="en">https://mp.uu.se/en/web/support/behandlingpersonuppgifter</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://mp.uu.se/sv/web/support/behandlingpersonuppgifter</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIE8DCCAtigAwIBAgIJAM5IksMD367xMA0GCSqGSIb3DQEBCwUAMBgxFjAUBgNV +BAMTDXRlc3QubXAudXUuc2UwIBcNMjIxMDE0MDcwNDI4WhgPMjEyMjA5MjAwNzA0 +MjhaMBgxFjAUBgNVBAMTDXRlc3QubXAudXUuc2UwggIiMA0GCSqGSIb3DQEBAQUA +A4ICDwAwggIKAoICAQCqYz4WJSxnNPzQHvjLUzMkwPP00F1PUJRkQdbRdLLCshTj +0VBhXE7LR+I86WW2HRhjR+EYuEgcKCPptIAuVPutO5sfljMnfkrgUAqW3AygjA4W +2w0L5Bc2+RV3mPnjkGFogUdPZ4TjnYn3AHlF7ocwkoLr45iRiL0o0s1vckIMTpI4 +LkZlHmdUnHmm2Ae3rNhQ0FoPmx/wov3radxCpnQazdhVaUlKkDBuvZ8xP0qcKaPw +yul5bW6/Wut8gSHrESR9yMH3Gnh0p9StoMwEW3h0kxjik+FSwn8qN+EeIURryNxm +XgauBZSF3kYwFrUxeR8g4tVq/Pw6h1hhCc2j9P+Cktfa+et46YC4H9RIUJpiBAPg +ySQnpx+uGQzxC700RnN8y8pHg1rpv+CkDiuA4PIIzMpCcUBBhNeSwZJq8yKH91u0 +Mz0MwPKF6hJsQzJ3/S3o/uRsFLntska0HMpBdWt5nZvY/YVWvgEgGWU+hwtAnxRl +Vy2KuaIf6fQTNIKux4ShdjtPTSH7H9scqxx+Xf3BNKMBJQvefavt9qftbmlzl+JX +xl8ZqsX+LON6EYBVQfmuBUdP75Kc7tIOaJVd6q6duqZcCkz73ZpNj3IY6YKOAp7i +HiJJiq3TfqkN/8baIh0++YlrjeYoY7/baIvP/+8zOMUK5jJwvWfks5DZClK+ywID +AQABozswOTAYBgNVHREEETAPgg10ZXN0Lm1wLnV1LnNlMB0GA1UdDgQWBBTFQL5E +u3ewVGP07MsTOp3cSbUHrzANBgkqhkiG9w0BAQsFAAOCAgEALnypaHbunBiyZGeI +1wW+6nLEPjwK9lDF2Mq0kASN1dP1ZPqju9E4cXx98DBAyD5r7YuQd8JqOU6hBhMe +Mnz6WcUjbyTzMdvk7ergG9CVjKneYuLXgdcW3PvK2YeaAviMnYiHQqi2tYMWLU+Z +zAK5a47U0EUku2F9riQeDvcvl9YSBlFt/81c9q8A/j5f5Ece2ux6rdILeUf9tKWb +SB24AeFBd9UJ11+XiJdnAZ2KkKeAAjznradSL034guALL6KqhvPPdGkGTA32fQjI +ub3vsCBtOeZIXGHK4NysN0bwDiWpOHmNEfM5a2jH8/pIs5SA03Iz2KH3b/tFgUTN +yTso2QH9eM2cHBUCLyLUpoH7cyqzbh8dFU3hklLcrveoXW2KNXc2TYQbUSRw96Pp +BFwkmr6Czx0hQP6HFJMnymYIlHEXxsDBCzM/xJtDFEjxDP/bl9jWyFTAyPisq3ZU +ssQ2JFLVEyQ6GtfaoRzG/1SPO8LqPNQTC9GMOO7Gr9NdwKEPz1OI4nI7QvspS/Wd +fA/5tndXaVrbpD22WQWPiNxdKBrNh6K296dmx0nWhpkoMN1LKXqBwCCkTgbKNP+F +EygWvHCGgDVriBh6+tcRwV0fZ+YiwfvxtKsfOP6eI/2YQMw9BfusXUOx4/4KeFuY +xeSNu6jmKOMefPbRNSYIBOTTQFI=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.mp.uu.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.mp.uu.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://test.mp.uu.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.mp.uu.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test.mp.uu.se/Shibboleth.sso/SLO/Artifact"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.mp.uu.se/Shibboleth.sso/NIM/SOAP"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://test.mp.uu.se/Shibboleth.sso/NIM/Redirect"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.mp.uu.se/Shibboleth.sso/NIM/POST"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test.mp.uu.se/Shibboleth.sso/NIM/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.mp.uu.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test.mp.uu.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://test.mp.uu.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="sv">Medarbetarportalen vid Uppsala universitet (TEST)</md:ServiceName> + <md:ServiceName xml:lang="en">The Staff Portal (Medarbetarportalen) at Uppsala University (TEST)</md:ServiceName> + <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/> + <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/> + <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/> + <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>IT Support</md:SurName> + <md:EmailAddress>mailto:itsupport@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Operations</md:SurName> + <md:EmailAddress>mailto:liferay-datordrift@its.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>IT Support</md:SurName> + <md:EmailAddress>mailto:itsupport@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Uppsala University Computer Security Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:security@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4717560</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/test.ortrac.com-saml-sp.xml b/swamid-testing/test.ortrac.com-saml-sp.xml new file mode 100644 index 00000000..988a2895 --- /dev/null +++ b/swamid-testing/test.ortrac.com-saml-sp.xml @@ -0,0 +1,110 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://test.ortrac.com/saml/sp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-06-11T13:35:41Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://test.ortrac.com/Shibboleth.sso/DS/Login"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://test.ortrac.com/Shibboleth.sso/DS/Login" index="1"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">QPS testmiljö</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">QPS test environment</mdui:DisplayName> + <mdui:Description xml:lang="sv">Testmiljö för medicinska fakultetens utbildningsplattform</mdui:Description> + <mdui:Description xml:lang="en">Test environment for the Quality and Performance System at the Faculty of Medicine</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://test.ortrac.com/Shibboleth.sso/DS/Login</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://test.ortrac.com/Shibboleth.sso/DS/Login</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.medarbetarwebben.lu.se/stod-och-verktyg/juridik-dokument-och-arendehantering/personuppgifter-och-dataskydd/overgripande-information/allmanna-principer-for-personuppgiftshantering</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.medarbetarwebben.lu.se/stod-och-verktyg/juridik-dokument-och-arendehantering/personuppgifter-och-dataskydd/overgripande-information/allmanna-principer-for-personuppgiftshantering</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:KeyName>www.ortrac.com</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=www.ortrac.com</ds:X509SubjectName> + <ds:X509Certificate>MIID/DCCAmSgAwIBAgIUIdrYO7SXSTpQdQMUN0OaFNDfNeYwDQYJKoZIhvcNAQEL +BQAwGTEXMBUGA1UEAxMOd3d3Lm9ydHJhYy5jb20wHhcNMjAwMTA1MjM1ODUxWhcN +MzAwMTAyMjM1ODUxWjAZMRcwFQYDVQQDEw53d3cub3J0cmFjLmNvbTCCAaIwDQYJ +KoZIhvcNAQEBBQADggGPADCCAYoCggGBAL2eD02Ch/WpMfgA8Bmsy1C3etN1QmvQ +WROGi9nlm9A1tYg6A/E99nebNNuaDjOhlf2bFEmrUvXNZV2htZxp9Dk3iS3LoQen +n6j+hlxHVZKBm8ns/NMyO7wSVKimJCx6YXpisPPYBQn9Q3LQFARDXdkNndOtnIja +Jy6+bpmSUM7J90kTlinZ++VXYv2fTnVpWQie6ir422n+MvfJli9XFi8pri895XZZ +CExeTOe4u5FIoVrVxLp+TIolb4xsvpZo6PCHKpCW0nyfX2EUe94yAP+i9wwtqnRB +lHRDIbjitnpoVn0wIw/JkpY6Uk6Qs46vm1bxo9RlILY9+NoaUJuqOvXg7sGvGcC2 +wHcHEwzzb44V43mUkgOA8/QUwiOzkgzpTKZZpwwTKvKFCiMcQ9ck/hy9372TRX4L +qOpkwxOAS5gQzlJQ3UKpn7sJavzjZgpUbWn9yHWVGxAaKHpbW0I7Sa+lHqtWoVJX +h56LH/K2FmGtA9fCIKi3pCaC/FBZXCIfHQIDAQABozwwOjAZBgNVHREEEjAQgg53 +d3cub3J0cmFjLmNvbTAdBgNVHQ4EFgQUid+qBStC7mLmxpz2tc7WqmrBB9EwDQYJ +KoZIhvcNAQELBQADggGBAB+1zL/mJGZZ6DHN9ohhrv3Kw47bNgn8MEiSrrE9bjwH +/0WaqJFUwiBcmH1N3EA25uZT4mUK0AwlnuQlPwkkDgj3Y5yrSE21//99+Xf8Ksfe +91Yjx4hMUUmZnMxJQl1JsvuZ3KF8kgHk+ijmWJGlz7u2NKTDY6m9y/RsaDoycqOp +S/r9HFuPYBYdFw3DivQmjM0jwOtt4JuWZDYg75sYjelR8RnxSIQnxgk5St4GKLq0 +URB0VnbbiYt1vGpVvbpXcEnlrwCo+gWUMM6a35Q5eKgKantfkhd1ElfFB6OIZCXd +InqHD3/3ZgqTfdYZ8IzIsMxqyTEbCWwSlisE7L2JQ2wNKUO5gDMRD/IrwvQZc+UG +zIbTFrMZ+RPS8CVwt0NlvzYfKSM/12HjZ/FUluKIcJwXC3sPnyn0V5fJZjQm3qf1 +kJ+sjgFwjYk3lFoOmYnXU8NZQWlyfNO0XNNiZK+4RU2zyDDNARD95j0FueYVFvA3 +yQ8Fym8zwW/5KlfigfEnLA== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.ortrac.com/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.ortrac.com/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://test.ortrac.com/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.ortrac.com/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test.ortrac.com/Shibboleth.sso/SLO/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.ortrac.com/Shibboleth.sso/SAML2/POST" index="1"/> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Lunds universitet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Lunds universitet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.lu.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:GivenName>Jakob</md:GivenName> + <md:SurName>Donner</md:SurName> + <md:EmailAddress>mailto:jakob.donner@med.lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:GivenName>Johan</md:GivenName> + <md:SurName>Agardh</md:SurName> + <md:EmailAddress>mailto:johan.agardh@med.lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:SurName>Support</md:SurName> + <md:EmailAddress>mailto:support@lu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/testidpv4.lu.se-idp-shibboleth.xml b/swamid-testing/testidpv4.lu.se-idp-shibboleth.xml new file mode 100644 index 00000000..3d098e1d --- /dev/null +++ b/swamid-testing/testidpv4.lu.se-idp-shibboleth.xml @@ -0,0 +1,270 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://testidpv4.lu.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2020-04-21T08:31:10Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al3</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa-hi</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>https://myacademicid.org/entity-categories/esi</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://saml-error.lu.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX"> + <md:Extensions> + <shibmd:Scope regexp="false">lu.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Lunds universitet (Test)</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Lund University (Test)</mdui:DisplayName> + <mdui:Description xml:lang="sv">Testidentitetstjänst för anställda och studenter vid Lunds universitet (Shibboleth IdPv4)</mdui:Description> + <mdui:Description xml:lang="en">Test identity provider for employees and students at Lund University (Shibboleth IdPv4)</mdui:Description> + <mdui:Keywords xml:lang="sv">lu lth</mdui:Keywords> + <mdui:Keywords xml:lang="en">lu lth</mdui:Keywords> + <mdui:InformationURL xml:lang="sv">https://www.lu.se/</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://www.lunduniversity.lu.se/</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.it.lu.se/fileadmin/user_upload/itlu/personuppgiftshantering.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.it.lu.se/fileadmin/user_upload/itlu/personaldata.html</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="sv" height="146" width="121">https://testidpv4.lu.se/idp/images/mdui-logo-sv.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="146" width="116">https://testidpv4.lu.se/idp/images/mdui-logo-en.png</mdui:Logo> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>lu.se</mdui:DomainHint> + <mdui:DomainHint>lth.se</mdui:DomainHint> + <mdui:IPHint>130.235.0.0/16</mdui:IPHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIEJzCCAo+gAwIBAgIUax5wlSZ9mfr4nj6Nq3lG3OJ/rlAwDQYJKoZIhvcNAQEL + BQAwGjEYMBYGA1UEAwwPdGVzdGlkcHY0Lmx1LnNlMB4XDTIwMDIyODE0MTkzMloX + DTQwMDIyODE0MTkzMlowGjEYMBYGA1UEAwwPdGVzdGlkcHY0Lmx1LnNlMIIBojAN + BgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAjSLQZe0gVwlmXmX7Aodd7RtVIq7x + SdGkUMzXKWmu0RrGoEYiIqWGPl4vwepj8rxpB+3fn1ICYLNzDZ/uZjIrQpRRLVFo + EpkvPtio7DiBP67CFBrW8dqeFljyyeJ1x9LXEElM5RTnduwLZfz19QnhKT3BJ6nl + ErtQX6AEhDaGBQr5xPcx6MOmEL6Z3l8oOuIHEJzs++CWUsaGGratFalk1mRKPjOS + OVS8ABKTL2WSGFWN9lg262YSozDg/b9A2Yb1CO9BfqSQLf7dqDjT8ncuQSeJ0F+k + 9TbVgoclFPwCGW2ozi0I521UePRaAIQ9K9ogdyHntcGzg6CI4vBIiQTwBqxxBwQc + 6Y0E9SKeNajx2zBUuXKhU7Ny+xk/fCSB8/tCn/hU1cSI+3nOpD7I+W5AkI1aJarE + 16qmpeqnE0hVsSnJrRvR3RXcUkuFfjNR4ZDSzPgvF4zRgbXHDuN7CQAi+6zhdcnW + M8mxrv0Kv8+2x1rrKsqU2O0ug/N5vaEDasZXAgMBAAGjZTBjMB0GA1UdDgQWBBRQ + E/8BKrHdzUJ77Gwu73rUEDJGMDBCBgNVHREEOzA5gg90ZXN0aWRwdjQubHUuc2WG + Jmh0dHBzOi8vdGVzdGlkcHY0Lmx1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3 + DQEBCwUAA4IBgQAEX8bVUgn4Fx11xpM1InUKTX5PCFABCCEHrcogdisG+i9D/6vp + lByz8+htRhWK3NiQcFeEvb22+vWSdILQ2Orxkr5pKnq/gwwtxCtwyLLzppN9Apk8 + MdGKykZhTt5q2vC+z5QIYVAFqop+Aur8PV8/jh5hfOS1A8qP9f4CdDbJ4yut9slD + ezmhSDyBzwBGw9Gp9MMwki8wUxPABnYSO0tB9hHqHcNs66L9TnU7MHFwgttWkVAe + fEtnmE3TOfhDvPKfA0GvxMx+8Yq33l5ULYpe7VTIZ9cnB8JDyVmxQEVY/OzfBTzr + 4+MRo+Mla4dxpRFZCjjPzJfIoWZ4zyRCknVyITj10tVFDyZhgoGlwj3OXrny8HEz + syr6g6Dv3/Dvpa2hfvagYaV7MCS63lxnEwhrfHR9s8BwYhmLzKybVc+V+39cddMb + rQxCop8QUrH5asbJFtrD181RVvg+78kE6+06+ZpRK3fMWOxaXYQNgTsV9SUknt9W + vfDfE7lmEmBH3KU= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIEKDCCApCgAwIBAgIVALKujwaVHaZhGOqyCUibFCDSPg+WMA0GCSqGSIb3DQEB + CwUAMBoxGDAWBgNVBAMMD3Rlc3RpZHB2NC5sdS5zZTAeFw0yMDAyMjgxNDE5MTNa + Fw00MDAyMjgxNDE5MTNaMBoxGDAWBgNVBAMMD3Rlc3RpZHB2NC5sdS5zZTCCAaIw + DQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAKV4FKUullzDjlhIueafuIMUklq4 + PnkRpcLedmblQ52Vla7kA4ZWJlTihFBuxNrnV3zrRMMdvjZI1u69HgdgZHSwtCFc + TsqiKc3Mj2LaWrRn9+CXPvgsoHNLSVJNHBugm1lDrX/9ON5qPfcF4ojaYdvUVi56 + ZNNhSGYUQ0zZ1+BhdUMGNAJDPL1keqsxS+OHlJzcAAhWWLEwiEohfZEcKItvE5w4 + m53q1nJaPKZCmNRMu/U0cS5Kglr6mkF9x11HmVswdIrWEtTD7n5cfqt/2d/fimK5 + TErL4tHLnxN8iXp5k/2ZvXKEhgT8RLczVArl7ji3WG7Uyf/+tCvbMQxsZDx5lfar + 237f/lBQz98/73hNa6eu20Jk4aiz5RnWQDJVr5J0vxKnls6CVZ7VvckLQazQLLRw + LiEngXL3vRw9ZgDioKudpiPwTRvbL7Q5VjYr4WBAMImSR//AEdW14O6xSq11eKmI + ydEHHvH+mfEu1jwc5obRnKPgtRi44FqqVTnU3wIDAQABo2UwYzAdBgNVHQ4EFgQU + AFbJB7RnXcAZhzFHErMsHIWyvtMwQgYDVR0RBDswOYIPdGVzdGlkcHY0Lmx1LnNl + hiZodHRwczovL3Rlc3RpZHB2NC5sdS5zZS9pZHAvc2hpYmJvbGV0aDANBgkqhkiG + 9w0BAQsFAAOCAYEAJH5eXOsHdSeq29vW0v0NJs3WhQILiyykp6I7yyy8gM8LSv4j + mQvzKDwGZUYkbhpGHm0zlKc+hMUA/xwZ6aoIk2/rj/ZZRa5HX0/y+UWMiQJ1mnF5 + 3PPxR/95cAwD7dOJVM5gn4Bos8DWSNI6dgSaqS59FkSFrVtWFxRLbsyviq8eRfT0 + mVqBszBh3YYvsv3YCgVlDhW9UmvA7DsHD1UK4Ot3dfV7NkB4XMb1o6LJ1/fjP8Jt + Vhi0fmZx/Jjf7yBZZsZvXuty9NSeJYSFl4CrV5FtZyDjv81PpT1Ho5tFDGF+MWAP + xZlszLFdompzKrg4GV0hOYCVzbYHP87okyKexYqM+ILsjnbiBaYPhvbT0OvqzCyB + 3xR3z6v9VJ7iZb6s53/6hfPIOaqoigCVVs9kryL/LWxAcONVe3j+LHSpO/LbVeVl + PhPdkKEJlNSh0fl1He/4tDRgn6oxtriCeGhkgkgec1Wts9ToVkVTx8Qj7KOH5pY7 + /3I+s2NlmSzSfJF2 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIEKDCCApCgAwIBAgIVAL5LJ0uT+Dd+w/aIz5bHK/9jbaYQMA0GCSqGSIb3DQEB + CwUAMBoxGDAWBgNVBAMMD3Rlc3RpZHB2NC5sdS5zZTAeFw0yMDAyMjgxNDE5MTNa + Fw00MDAyMjgxNDE5MTNaMBoxGDAWBgNVBAMMD3Rlc3RpZHB2NC5sdS5zZTCCAaIw + DQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAIxmBcbFnCYXL5QozP0c1RSoAs9R + +LLhYdFM8zXE1pfg0MGlNGylU/OyrDG80pRV3RvNFYLWWJ8y0w2I2aVmWjxrcCt0 + g95qQC/MbIc7yMJXL5X8jzIJ7dTT3npW+QCzgXOvV+9kk9ukG0/Z6tJiRz2Ici6a + 1fvJU8QjfRJqJsm4iRGYvoxLZiLlQcwyGerzoS2rDgIor99KSQEONYjoRdp/6VNy + yCNBta9/ZWCxAd8TFfU2QmilDR+t846IeSWuZ0lhLywr+GzxmEycklAPN/xaNQ1K + /nConoYA6TiJD3ecLm/K9fEay+wCN918ENJABHiQ+i2KStnhqL8oUeudPL5zUgen + D767tUYSjJ10orRSv0agqX7HMYMBl65Zqw9asjZNL9DZkyomyL40QIv5eFV7GmvD + 0XyBtem7IR7SGdxloOxFE8PdRYBW655e8ojxIKoMEyoHkelhEtobzIJlYCpE44/I + LDxgt+NRgQ7Cjq2vh/A89JpWbYo0h2hoy6zUvwIDAQABo2UwYzAdBgNVHQ4EFgQU + I5jXm8+Npq8IslUUAkBW3tlyrGMwQgYDVR0RBDswOYIPdGVzdGlkcHY0Lmx1LnNl + hiZodHRwczovL3Rlc3RpZHB2NC5sdS5zZS9pZHAvc2hpYmJvbGV0aDANBgkqhkiG + 9w0BAQsFAAOCAYEAN1yFroy/gJAvGQ/wcKLrbWHCeCBp8HXGRh+bJIzJoE6/JKSw + BNGLbd6Jp2rYobG4AnyThYn3FeaCWwq0cSyCJZ+7r+xf/X7nqWp1Hz9ols2pM7l2 + Gszd3DP3Op8Dv1MPPbb1vWiYHhQY/AwH0dDGpkMiouxyhL7bRkId1tka6/y4olYb + JsqFquFZzWxiicBiY/xPqBgOA1Xd3nusiXfpawtP/5cH+HwJTMaQqDDqW9yzhZAI + jm8y85Vo2h4lXtqRcOJKt7m2mpGEJHKEODr7ZnmCi8gpjlwXYBqn/4ztEQCgsQwy + K8iUARfquSCvJbq9u68bpfG85c3CPwX4Wjke71CV50P1fwWosXUZDawR+am6PEP6 + OJ8Dg60C40ih35vpVLw3Ro7L/48vDtE79Ncc6jPEoincmJNHsdzhWwhB0kdPC2hy + BOk5y8w16iqOOkOJmt1bBG5Y3fxXxFKsqecJnGu+bz++xLjtCOJhV2WEsevWKelB + S1UOXyr6n+XEbwgu + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://testidpv4.lu.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://testidpv4.lu.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://testidpv4.lu.se/idp/profile/SAML2/Redirect/SLO"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://testidpv4.lu.se/idp/profile/SAML2/POST/SLO"/> + <md:SingleSignOnService xmlns:ns1="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ns1:supportsRequestedAttributes="true" Location="https://testidpv4.lu.se/idp/profile/SAML2/Redirect/SSO"/> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://testidpv4.lu.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService xmlns:ns1="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ns1:supportsRequestedAttributes="true" Location="https://testidpv4.lu.se/idp/profile/SAML2/POST/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">lu.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIEJzCCAo+gAwIBAgIUax5wlSZ9mfr4nj6Nq3lG3OJ/rlAwDQYJKoZIhvcNAQEL + BQAwGjEYMBYGA1UEAwwPdGVzdGlkcHY0Lmx1LnNlMB4XDTIwMDIyODE0MTkzMloX + DTQwMDIyODE0MTkzMlowGjEYMBYGA1UEAwwPdGVzdGlkcHY0Lmx1LnNlMIIBojAN + BgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAjSLQZe0gVwlmXmX7Aodd7RtVIq7x + SdGkUMzXKWmu0RrGoEYiIqWGPl4vwepj8rxpB+3fn1ICYLNzDZ/uZjIrQpRRLVFo + EpkvPtio7DiBP67CFBrW8dqeFljyyeJ1x9LXEElM5RTnduwLZfz19QnhKT3BJ6nl + ErtQX6AEhDaGBQr5xPcx6MOmEL6Z3l8oOuIHEJzs++CWUsaGGratFalk1mRKPjOS + OVS8ABKTL2WSGFWN9lg262YSozDg/b9A2Yb1CO9BfqSQLf7dqDjT8ncuQSeJ0F+k + 9TbVgoclFPwCGW2ozi0I521UePRaAIQ9K9ogdyHntcGzg6CI4vBIiQTwBqxxBwQc + 6Y0E9SKeNajx2zBUuXKhU7Ny+xk/fCSB8/tCn/hU1cSI+3nOpD7I+W5AkI1aJarE + 16qmpeqnE0hVsSnJrRvR3RXcUkuFfjNR4ZDSzPgvF4zRgbXHDuN7CQAi+6zhdcnW + M8mxrv0Kv8+2x1rrKsqU2O0ug/N5vaEDasZXAgMBAAGjZTBjMB0GA1UdDgQWBBRQ + E/8BKrHdzUJ77Gwu73rUEDJGMDBCBgNVHREEOzA5gg90ZXN0aWRwdjQubHUuc2WG + Jmh0dHBzOi8vdGVzdGlkcHY0Lmx1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3 + DQEBCwUAA4IBgQAEX8bVUgn4Fx11xpM1InUKTX5PCFABCCEHrcogdisG+i9D/6vp + lByz8+htRhWK3NiQcFeEvb22+vWSdILQ2Orxkr5pKnq/gwwtxCtwyLLzppN9Apk8 + MdGKykZhTt5q2vC+z5QIYVAFqop+Aur8PV8/jh5hfOS1A8qP9f4CdDbJ4yut9slD + ezmhSDyBzwBGw9Gp9MMwki8wUxPABnYSO0tB9hHqHcNs66L9TnU7MHFwgttWkVAe + fEtnmE3TOfhDvPKfA0GvxMx+8Yq33l5ULYpe7VTIZ9cnB8JDyVmxQEVY/OzfBTzr + 4+MRo+Mla4dxpRFZCjjPzJfIoWZ4zyRCknVyITj10tVFDyZhgoGlwj3OXrny8HEz + syr6g6Dv3/Dvpa2hfvagYaV7MCS63lxnEwhrfHR9s8BwYhmLzKybVc+V+39cddMb + rQxCop8QUrH5asbJFtrD181RVvg+78kE6+06+ZpRK3fMWOxaXYQNgTsV9SUknt9W + vfDfE7lmEmBH3KU= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIEKDCCApCgAwIBAgIVALKujwaVHaZhGOqyCUibFCDSPg+WMA0GCSqGSIb3DQEB + CwUAMBoxGDAWBgNVBAMMD3Rlc3RpZHB2NC5sdS5zZTAeFw0yMDAyMjgxNDE5MTNa + Fw00MDAyMjgxNDE5MTNaMBoxGDAWBgNVBAMMD3Rlc3RpZHB2NC5sdS5zZTCCAaIw + DQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAKV4FKUullzDjlhIueafuIMUklq4 + PnkRpcLedmblQ52Vla7kA4ZWJlTihFBuxNrnV3zrRMMdvjZI1u69HgdgZHSwtCFc + TsqiKc3Mj2LaWrRn9+CXPvgsoHNLSVJNHBugm1lDrX/9ON5qPfcF4ojaYdvUVi56 + ZNNhSGYUQ0zZ1+BhdUMGNAJDPL1keqsxS+OHlJzcAAhWWLEwiEohfZEcKItvE5w4 + m53q1nJaPKZCmNRMu/U0cS5Kglr6mkF9x11HmVswdIrWEtTD7n5cfqt/2d/fimK5 + TErL4tHLnxN8iXp5k/2ZvXKEhgT8RLczVArl7ji3WG7Uyf/+tCvbMQxsZDx5lfar + 237f/lBQz98/73hNa6eu20Jk4aiz5RnWQDJVr5J0vxKnls6CVZ7VvckLQazQLLRw + LiEngXL3vRw9ZgDioKudpiPwTRvbL7Q5VjYr4WBAMImSR//AEdW14O6xSq11eKmI + ydEHHvH+mfEu1jwc5obRnKPgtRi44FqqVTnU3wIDAQABo2UwYzAdBgNVHQ4EFgQU + AFbJB7RnXcAZhzFHErMsHIWyvtMwQgYDVR0RBDswOYIPdGVzdGlkcHY0Lmx1LnNl + hiZodHRwczovL3Rlc3RpZHB2NC5sdS5zZS9pZHAvc2hpYmJvbGV0aDANBgkqhkiG + 9w0BAQsFAAOCAYEAJH5eXOsHdSeq29vW0v0NJs3WhQILiyykp6I7yyy8gM8LSv4j + mQvzKDwGZUYkbhpGHm0zlKc+hMUA/xwZ6aoIk2/rj/ZZRa5HX0/y+UWMiQJ1mnF5 + 3PPxR/95cAwD7dOJVM5gn4Bos8DWSNI6dgSaqS59FkSFrVtWFxRLbsyviq8eRfT0 + mVqBszBh3YYvsv3YCgVlDhW9UmvA7DsHD1UK4Ot3dfV7NkB4XMb1o6LJ1/fjP8Jt + Vhi0fmZx/Jjf7yBZZsZvXuty9NSeJYSFl4CrV5FtZyDjv81PpT1Ho5tFDGF+MWAP + xZlszLFdompzKrg4GV0hOYCVzbYHP87okyKexYqM+ILsjnbiBaYPhvbT0OvqzCyB + 3xR3z6v9VJ7iZb6s53/6hfPIOaqoigCVVs9kryL/LWxAcONVe3j+LHSpO/LbVeVl + PhPdkKEJlNSh0fl1He/4tDRgn6oxtriCeGhkgkgec1Wts9ToVkVTx8Qj7KOH5pY7 + /3I+s2NlmSzSfJF2 + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIEKDCCApCgAwIBAgIVAL5LJ0uT+Dd+w/aIz5bHK/9jbaYQMA0GCSqGSIb3DQEB + CwUAMBoxGDAWBgNVBAMMD3Rlc3RpZHB2NC5sdS5zZTAeFw0yMDAyMjgxNDE5MTNa + Fw00MDAyMjgxNDE5MTNaMBoxGDAWBgNVBAMMD3Rlc3RpZHB2NC5sdS5zZTCCAaIw + DQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAIxmBcbFnCYXL5QozP0c1RSoAs9R + +LLhYdFM8zXE1pfg0MGlNGylU/OyrDG80pRV3RvNFYLWWJ8y0w2I2aVmWjxrcCt0 + g95qQC/MbIc7yMJXL5X8jzIJ7dTT3npW+QCzgXOvV+9kk9ukG0/Z6tJiRz2Ici6a + 1fvJU8QjfRJqJsm4iRGYvoxLZiLlQcwyGerzoS2rDgIor99KSQEONYjoRdp/6VNy + yCNBta9/ZWCxAd8TFfU2QmilDR+t846IeSWuZ0lhLywr+GzxmEycklAPN/xaNQ1K + /nConoYA6TiJD3ecLm/K9fEay+wCN918ENJABHiQ+i2KStnhqL8oUeudPL5zUgen + D767tUYSjJ10orRSv0agqX7HMYMBl65Zqw9asjZNL9DZkyomyL40QIv5eFV7GmvD + 0XyBtem7IR7SGdxloOxFE8PdRYBW655e8ojxIKoMEyoHkelhEtobzIJlYCpE44/I + LDxgt+NRgQ7Cjq2vh/A89JpWbYo0h2hoy6zUvwIDAQABo2UwYzAdBgNVHQ4EFgQU + I5jXm8+Npq8IslUUAkBW3tlyrGMwQgYDVR0RBDswOYIPdGVzdGlkcHY0Lmx1LnNl + hiZodHRwczovL3Rlc3RpZHB2NC5sdS5zZS9pZHAvc2hpYmJvbGV0aDANBgkqhkiG + 9w0BAQsFAAOCAYEAN1yFroy/gJAvGQ/wcKLrbWHCeCBp8HXGRh+bJIzJoE6/JKSw + BNGLbd6Jp2rYobG4AnyThYn3FeaCWwq0cSyCJZ+7r+xf/X7nqWp1Hz9ols2pM7l2 + Gszd3DP3Op8Dv1MPPbb1vWiYHhQY/AwH0dDGpkMiouxyhL7bRkId1tka6/y4olYb + JsqFquFZzWxiicBiY/xPqBgOA1Xd3nusiXfpawtP/5cH+HwJTMaQqDDqW9yzhZAI + jm8y85Vo2h4lXtqRcOJKt7m2mpGEJHKEODr7ZnmCi8gpjlwXYBqn/4ztEQCgsQwy + K8iUARfquSCvJbq9u68bpfG85c3CPwX4Wjke71CV50P1fwWosXUZDawR+am6PEP6 + OJ8Dg60C40ih35vpVLw3Ro7L/48vDtE79Ncc6jPEoincmJNHsdzhWwhB0kdPC2hy + BOk5y8w16iqOOkOJmt1bBG5Y3fxXxFKsqecJnGu+bz++xLjtCOJhV2WEsevWKelB + S1UOXyr6n+XEbwgu + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://testidpv4.lu.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Lund University</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Lunds universitet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Lunds universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Lund University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.lunduniversity.lu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">https://www.lu.se/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:GivenName>LU IdP administrators</md:GivenName> + <md:EmailAddress>mailto:idpadmin@epic.lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>LU Servicedesk</md:GivenName> + <md:EmailAddress>mailto:servicedesk@lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>IRT Lund University</md:GivenName> + <md:EmailAddress>mailto:abuse@lu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:GivenName>LU IdP administrators</md:GivenName> + <md:EmailAddress>mailto:idpadmin@epic.lu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/uppsala-test.blackboard.com-lms.xml b/swamid-testing/uppsala-test.blackboard.com-lms.xml new file mode 100644 index 00000000..0cabd884 --- /dev/null +++ b/swamid-testing/uppsala-test.blackboard.com-lms.xml @@ -0,0 +1,83 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://uppsala-test.blackboard.com/lms"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2017-11-08T10:29:42Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category"> + <samla:AttributeValue>http://www.swamid.se/category/research-and-education</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/category/hei-service</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://uppsala-test.blackboard.com/auth-saml/saml/login/alias/_102_1?disco=true" index="1"/> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Learning Management System - Blackboard</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Lärplattformen Blackboard</mdui:DisplayName> + <mdui:Description xml:lang="sv">Lärplattform vid Uppsala universitet</mdui:Description> + <mdui:Description xml:lang="en">Learning Management System at Uppsala university</mdui:Description> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIICrTCCAZWgAwIBAgIBATANBgkqhkiG9w0BAQsFADAaMRgwFgYDVQQDEw9CbGFja2JvYXJkIFNB + TUwwHhcNMTcxMTAxMjMzNjU4WhcNMjcxMTAxMjMzNjU4WjAaMRgwFgYDVQQDEw9CbGFja2JvYXJk + IFNBTUwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbg9857S7YUJ+bjNnPH3XtSk1l + Hhoka3O110aWJK72ffgeDDQyncpzri1xVBUOzkhDeqKu/OskypGkc8XCr1cik0V/g8rAdM3OGlZh + 6UlZJXgIeyv4BAbo9SXHG56gRW3VvMQ9GDgglVVH3aQ+WX4AwUrCTaPYNeBMX5VXan12/+tDxqz4 + nk3tY3OKVwH0xtDksJXW0ug0KuN9T4PZtGg1OPf3Tot/O+JvWtC/awVSNTiLoqHGT4taSw2v43WH + vnxZBHE/lkSgobBK2Gg391WSGCO2c7V+4AH2y+lVfu4Y16FWupCYc49jk8yqzRyHpmtLvWezomQ1 + 2IHI724lf5H7AgMBAAEwDQYJKoZIhvcNAQELBQADggEBAGpP0lKNJNQ4uYu5XBIRku1XK8HMQoZS + St5qw1ClBhcobOMXq5s4a0zTkAKhQ/gG+f62pSEHvTu7x3TGg+fNvzT5GgEvAuPZfOcvSFoXfpYw + V0u1KHXeSlKrkHxx/kjsIsfsTxhepyhROd59c4Z7tIWx8Ypc0AabYSP5AcASws96Pj/Xrq16ayBw + 380z9sk/dFlMHjF/eSp2OTmXSObwFSU5hj6vcY9t+cBhHEV5fu+Lfs0zuvD5wNcFeoEEqp+Rb46v + AqG7mZxR5m4/rXKR7UCIkxVOMZx6uy9ZfvxPWyc6FNUKY86AnK9FiUNOdxdUWw1aDKgGrgwd7lFX + tKNZrNo= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIICrTCCAZWgAwIBAgIBATANBgkqhkiG9w0BAQsFADAaMRgwFgYDVQQDEw9CbGFja2JvYXJkIFNB + TUwwHhcNMTcxMTAxMjMzNjU4WhcNMjcxMTAxMjMzNjU4WjAaMRgwFgYDVQQDEw9CbGFja2JvYXJk + IFNBTUwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbg9857S7YUJ+bjNnPH3XtSk1l + Hhoka3O110aWJK72ffgeDDQyncpzri1xVBUOzkhDeqKu/OskypGkc8XCr1cik0V/g8rAdM3OGlZh + 6UlZJXgIeyv4BAbo9SXHG56gRW3VvMQ9GDgglVVH3aQ+WX4AwUrCTaPYNeBMX5VXan12/+tDxqz4 + nk3tY3OKVwH0xtDksJXW0ug0KuN9T4PZtGg1OPf3Tot/O+JvWtC/awVSNTiLoqHGT4taSw2v43WH + vnxZBHE/lkSgobBK2Gg391WSGCO2c7V+4AH2y+lVfu4Y16FWupCYc49jk8yqzRyHpmtLvWezomQ1 + 2IHI724lf5H7AgMBAAEwDQYJKoZIhvcNAQELBQADggEBAGpP0lKNJNQ4uYu5XBIRku1XK8HMQoZS + St5qw1ClBhcobOMXq5s4a0zTkAKhQ/gG+f62pSEHvTu7x3TGg+fNvzT5GgEvAuPZfOcvSFoXfpYw + V0u1KHXeSlKrkHxx/kjsIsfsTxhepyhROd59c4Z7tIWx8Ypc0AabYSP5AcASws96Pj/Xrq16ayBw + 380z9sk/dFlMHjF/eSp2OTmXSObwFSU5hj6vcY9t+cBhHEV5fu+Lfs0zuvD5wNcFeoEEqp+Rb46v + AqG7mZxR5m4/rXKR7UCIkxVOMZx6uy9ZfvxPWyc6FNUKY86AnK9FiUNOdxdUWw1aDKgGrgwd7lFX + tKNZrNo= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://uppsala-test.blackboard.com/auth-saml/saml/SingleLogout/alias/_102_1"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress + </md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient + </md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent + </md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified + </md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName + </md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://uppsala-test.blackboard.com/auth-saml/saml/SSO/alias/_102_1" index="0" isDefault="true"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://uppsala-test.blackboard.com/auth-saml/saml/SSO/alias/_102_1" index="1"/> + </md:SPSSODescriptor> + <md:ContactPerson contactType="administrative"> + <md:GivenName>Tommy</md:GivenName> + <md:SurName>Stenvi</md:SurName> + <md:EmailAddress>mailto:tommy.stenvi@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/urn-mace-feide.no-services-no.inspera.assessment.test.xml b/swamid-testing/urn-mace-feide.no-services-no.inspera.assessment.test.xml new file mode 100644 index 00000000..38c69779 --- /dev/null +++ b/swamid-testing/urn-mace-feide.no-services-no.inspera.assessment.test.xml @@ -0,0 +1,111 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="urn:mace:feide.no:services:no.inspera.assessment.test"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2021-04-13T08:34:27Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="false" WantAssertionsSigned="false"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Inspera Assessment (T)</mdui:DisplayName> + <mdui:Description xml:lang="en">Inspera Assessment is a leading European SaaS provider for high stakes assessment.</mdui:Description> + <mdui:InformationURL xml:lang="en">https://www.inspera.com</mdui:InformationURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.inspera.com/legal/privacy-notice</mdui:PrivacyStatementURL> + <mdui:Logo xml:lang="en" width="126" height="18">https://www.inspera.com/hubfs/InsperaFall2015/insperaassessment.svg</mdui:Logo> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIDVzCCAj+gAwIBAgIJAI4CnpvwSXWDMA0GCSqGSIb3DQEBCwUAMEIxCzAJBgNV + BAYTAk5PMQ8wDQYDVQQIDAZOb3J3YXkxDTALBgNVBAcMBE9zbG8xEzARBgNVBAoM + Ckluc3BlcmEgQVMwHhcNMTgwMzA1MTEyMjEzWhcNMjMwMzA0MTEyMjEzWjBCMQsw + CQYDVQQGEwJOTzEPMA0GA1UECAwGTm9yd2F5MQ0wCwYDVQQHDARPc2xvMRMwEQYD + VQQKDApJbnNwZXJhIEFTMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA + 9xP6LbR7o7xE+4Nfyc+ERYEEdBfFzMoi3RlkXaNnyfz5KhK7J9X8PNQv7OOd+hQ3 + ygbM7OuWzkvq030C4Qfu0HGNT6/cDQikCjvE4gKZzeqInSkK0fouiaOMBGAwNdDW + tWFsoCYPvtuuDlWgxTSem93tL0oxKk8Kq3HVMYEldELlb8WJlBpK+fW7pZyKGiv/ + 0BZoDwt49aJTMI9xixwuZ25XseHd0m8uyE3jWkMZFGEC4f20MrwhPIml9T8V/ZI9 + a8HUcfarqjKkAL3cvlBu0F3RQxIjZZUlVWLZzGvkejnJELzaCoQertLaZOnTpm2G + V87SLqFDrbgb51arOr7hYQIDAQABo1AwTjAdBgNVHQ4EFgQUdwYeh/Do5h3spm/u + uJBAa6FZ9uwwHwYDVR0jBBgwFoAUdwYeh/Do5h3spm/uuJBAa6FZ9uwwDAYDVR0T + BAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAQEAbve3Ezx+JaUpAxC3VlcI/nNUp4hu + gTtwAFENo8aFQDkl+d+UjwG8s7+DVg5QKfq86PC3eLqHoVQYfJkyFpCg0mYnd+j3 + DKrQpGHvHhygLalAAxdLt3iWkOO44+UXI/x9BQfmKz8FxeKhgZUsYeoOu6dMqHEO + fqAoHlectwQPkYwBtRFiRPjFVDFYQ6ByJgpvWC74YireWwTG7VBjXmwxH6fRI9Vd + s54PP7vYL+FDAc/phqyD/DejCQ6VSEzvujI1n7LhvLrgnPYpcnP9qPQQ4lo8SdPu + QbmZguNk1osxdUK0XH/eBFCYKEygmK+7iKPg4C9/w53uSTdolnmsssOWGQ== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> + MIIDVzCCAj+gAwIBAgIJAI4CnpvwSXWDMA0GCSqGSIb3DQEBCwUAMEIxCzAJBgNV + BAYTAk5PMQ8wDQYDVQQIDAZOb3J3YXkxDTALBgNVBAcMBE9zbG8xEzARBgNVBAoM + Ckluc3BlcmEgQVMwHhcNMTgwMzA1MTEyMjEzWhcNMjMwMzA0MTEyMjEzWjBCMQsw + CQYDVQQGEwJOTzEPMA0GA1UECAwGTm9yd2F5MQ0wCwYDVQQHDARPc2xvMRMwEQYD + VQQKDApJbnNwZXJhIEFTMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA + 9xP6LbR7o7xE+4Nfyc+ERYEEdBfFzMoi3RlkXaNnyfz5KhK7J9X8PNQv7OOd+hQ3 + ygbM7OuWzkvq030C4Qfu0HGNT6/cDQikCjvE4gKZzeqInSkK0fouiaOMBGAwNdDW + tWFsoCYPvtuuDlWgxTSem93tL0oxKk8Kq3HVMYEldELlb8WJlBpK+fW7pZyKGiv/ + 0BZoDwt49aJTMI9xixwuZ25XseHd0m8uyE3jWkMZFGEC4f20MrwhPIml9T8V/ZI9 + a8HUcfarqjKkAL3cvlBu0F3RQxIjZZUlVWLZzGvkejnJELzaCoQertLaZOnTpm2G + V87SLqFDrbgb51arOr7hYQIDAQABo1AwTjAdBgNVHQ4EFgQUdwYeh/Do5h3spm/u + uJBAa6FZ9uwwHwYDVR0jBBgwFoAUdwYeh/Do5h3spm/uuJBAa6FZ9uwwDAYDVR0T + BAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAQEAbve3Ezx+JaUpAxC3VlcI/nNUp4hu + gTtwAFENo8aFQDkl+d+UjwG8s7+DVg5QKfq86PC3eLqHoVQYfJkyFpCg0mYnd+j3 + DKrQpGHvHhygLalAAxdLt3iWkOO44+UXI/x9BQfmKz8FxeKhgZUsYeoOu6dMqHEO + fqAoHlectwQPkYwBtRFiRPjFVDFYQ6ByJgpvWC74YireWwTG7VBjXmwxH6fRI9Vd + s54PP7vYL+FDAc/phqyD/DejCQ6VSEzvujI1n7LhvLrgnPYpcnP9qPQQ4lo8SdPu + QbmZguNk1osxdUK0XH/eBFCYKEygmK+7iKPg4C9/w53uSTdolnmsssOWGQ== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"> + <ns6:KeySize xmlns:ns6="http://www.w3.org/2001/04/xmlenc#">128</ns6:KeySize> + </md:EncryptionMethod> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://sso-test.inspera.no/edugain/endpoint/logout"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://sso-test.inspera.no/edugain/endpoint/assertion" index="0" isDefault="true"/> + <md:AttributeConsumingService index="1"> + <md:ServiceName xml:lang="en">Inspera Assessment Login + service (test)</md:ServiceName> + <md:ServiceDescription xml:lang="en">Inspera + Assessment Login service, test environment</md:ServiceDescription> + <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName" isRequired="true"/> + <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonTargetedID" isRequired="false"/> + <md:RequestedAttribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName" isRequired="false"/> + <md:RequestedAttribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn" isRequired="false"/> + <md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail" isRequired="false"/> + <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonAffiliation" isRequired="false"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Inspera AS</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Inspera</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">https://www.inspera.com/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="technical"> + <md:GivenName>Inspera Assessment Technical Support Team</md:GivenName> + <md:EmailAddress>mailto:support@inspera.no</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="administrative"> + <md:GivenName>Inspera Assessment Administration</md:GivenName> + <md:EmailAddress>mailto:firmapost@inspera.no</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:GivenName>Inspera Assessment Service Desk</md:GivenName> + <md:EmailAddress>mailto:support@inspera.no</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/use-uu.sitevision.se.xml b/swamid-testing/use-uu.sitevision.se.xml new file mode 100644 index 00000000..03943eff --- /dev/null +++ b/swamid-testing/use-uu.sitevision.se.xml @@ -0,0 +1,103 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://use-uu.sitevision.se"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2021-05-24T15:33:54Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Uppsala universitet</mdui:DisplayName> + <mdui:DisplayName xml:lang="sv">Uppsala University</mdui:DisplayName> + <mdui:Description xml:lang="sv">Här loggar du in till de interna sidorna för studenter och anställda vid Uppsala universitet. Har du frågor om inloggningen eller hur du använder de interna sidorna? Kontakta servicedesk@.uu.se</mdui:Description> + <mdui:Description xml:lang="en">On this page you log in to the internal pages for students and employees at Uppsala University. If you have questions about the login function or how to use the internal pages please contact servicedesk@uu.se</mdui:Description> + <mdui:PrivacyStatementURL xml:lang="sv">https://www.uu.se/om-uu/dataskyddspolicy/</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://www.uu.se/en/about-uu/data-protection-policy/</mdui:PrivacyStatementURL> + </mdui:UIInfo> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDQDCCAiigAwIBAgIGAXl6Z5EuMA0GCSqGSIb3DQEBCwUAMD8xJTAjBgNVBAMMHGh0dHBzOi8v +dXNlLXV1LnNpdGV2aXNpb24uc2UxFjAUBgNVBAsMDXNpdGV2aXNpb24tc3AwHhcNMjEwNTE3MTI1 +NzU4WhcNMzEwNTE1MTI1NzU4WjA/MSUwIwYDVQQDDBxodHRwczovL3VzZS11dS5zaXRldmlzaW9u +LnNlMRYwFAYDVQQLDA1zaXRldmlzaW9uLXNwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC +AQEAkZpF9FI4GGy1BVD2iFH21yVx+Dmx3XC39vo3wET/xNoZLTSM2DYRotFgeeO6fl/2weNevKJ7 +XKPj45oiFUmApXgNSDdpW029G/4mzlVcCZwPKoSE/9TgSX8fJjRylbL2dRuOMY46HQHijplEEQZA +QeBQCnuEk3cLWUohXFg9umtHJJKgXmYVHKCLDuVvcO6YHPhmLJ4HPeSxFyBUlD/bZ1jqyIR1tY8K +XhxwAL2dlshehB9yYvqFd3C/MqJD1ZhlkWX2k6KvRW3kpNosMWirtPmAkx1RsQudTELnBJS1g/0x +VK0IB3ZbE21ud5bXtK5aaQLPqk29rteah4LGlaSMuwIDAQABo0IwQDAdBgNVHQ4EFgQUszSp3juS +ZqgVwA6K1pEZNATrmg8wHwYDVR0jBBgwFoAUszSp3juSZqgVwA6K1pEZNATrmg8wDQYJKoZIhvcN +AQELBQADggEBAEeXZZAhXv8cQb3Z8EMPgbdIfSEeJz44T/dl5VPuGA2JyMCmzHs0hOmf45WZL+YV +NYMGR+q+9wheRd5zKF000tQnafOa98rRw8yBjTN6Bo71cLmMfIp4Mc7I8f0M/g5shtZeW7FoFH16 +gYxDCI2Mnq6cYBUc077lNclKAlJx4AvaGIsJGz04DWTz4/8tuTktZaH6GDXrsMHM63ZcluGFSrOq +AccfOhkZn9ZamLQp54W4/Ge2E8zfW7znk7seZiRel4dQn3Cg3Miy9D46BsN7WGulIE81cYtEtWHV +7PlPpWDWTq6acw0sdjOc9dLtnoeT3RuyOj+nk1iN8LGf/mdR5IE=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate>MIIDQDCCAiigAwIBAgIGAXl6Z5EuMA0GCSqGSIb3DQEBCwUAMD8xJTAjBgNVBAMMHGh0dHBzOi8v +dXNlLXV1LnNpdGV2aXNpb24uc2UxFjAUBgNVBAsMDXNpdGV2aXNpb24tc3AwHhcNMjEwNTE3MTI1 +NzU4WhcNMzEwNTE1MTI1NzU4WjA/MSUwIwYDVQQDDBxodHRwczovL3VzZS11dS5zaXRldmlzaW9u +LnNlMRYwFAYDVQQLDA1zaXRldmlzaW9uLXNwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC +AQEAkZpF9FI4GGy1BVD2iFH21yVx+Dmx3XC39vo3wET/xNoZLTSM2DYRotFgeeO6fl/2weNevKJ7 +XKPj45oiFUmApXgNSDdpW029G/4mzlVcCZwPKoSE/9TgSX8fJjRylbL2dRuOMY46HQHijplEEQZA +QeBQCnuEk3cLWUohXFg9umtHJJKgXmYVHKCLDuVvcO6YHPhmLJ4HPeSxFyBUlD/bZ1jqyIR1tY8K +XhxwAL2dlshehB9yYvqFd3C/MqJD1ZhlkWX2k6KvRW3kpNosMWirtPmAkx1RsQudTELnBJS1g/0x +VK0IB3ZbE21ud5bXtK5aaQLPqk29rteah4LGlaSMuwIDAQABo0IwQDAdBgNVHQ4EFgQUszSp3juS +ZqgVwA6K1pEZNATrmg8wHwYDVR0jBBgwFoAUszSp3juSZqgVwA6K1pEZNATrmg8wDQYJKoZIhvcN +AQELBQADggEBAEeXZZAhXv8cQb3Z8EMPgbdIfSEeJz44T/dl5VPuGA2JyMCmzHs0hOmf45WZL+YV +NYMGR+q+9wheRd5zKF000tQnafOa98rRw8yBjTN6Bo71cLmMfIp4Mc7I8f0M/g5shtZeW7FoFH16 +gYxDCI2Mnq6cYBUc077lNclKAlJx4AvaGIsJGz04DWTz4/8tuTktZaH6GDXrsMHM63ZcluGFSrOq +AccfOhkZn9ZamLQp54W4/Ge2E8zfW7znk7seZiRel4dQn3Cg3Miy9D46BsN7WGulIE81cYtEtWHV +7PlPpWDWTq6acw0sdjOc9dLtnoeT3RuyOj+nk1iN8LGf/mdR5IE=</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://use-uu.sitevision.se/saml/LogoutServiceHTTPRedirect" ResponseLocation="https://use-uu.sitevision.se/saml/LogoutServiceHTTPRedirectResponse"/> + <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://use-uu.sitevision.se/saml/SAMLAssertionConsumer" index="0" isDefault="true"/> + <md:AttributeConsumingService index="0" isDefault="true"> + <md:ServiceName xml:lang="sv">Uppsala universitet</md:ServiceName> + <md:ServiceName xml:lang="en">Uppsala University</md:ServiceName> + <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/> + </md:AttributeConsumingService> + </md:SPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Operations</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:SurName>Servicedesk</md:SurName> + <md:EmailAddress>mailto:servicedesk@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/vhs-dev01.dyndns.org-shibboleth-sp.xml b/swamid-testing/vhs-dev01.dyndns.org-shibboleth-sp.xml new file mode 100644 index 00000000..d0a420ac --- /dev/null +++ b/swamid-testing/vhs-dev01.dyndns.org-shibboleth-sp.xml @@ -0,0 +1,70 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://vhs-dev01.dyndns.org/shibboleth-sp"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2019-06-12T08:15:13Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:KeyName>ip-10-228-21-235.eu-west-1.compute.internal</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=ip-10-228-21-235.eu-west-1.compute.internal</ds:X509SubjectName> + <ds:X509Certificate>MIIDSDCCAjCgAwIBAgIJAOOKwExQhI7MMA0GCSqGSIb3DQEBBQUAMDYxNDAyBgNV +BAMTK2lwLTEwLTIyOC0yMS0yMzUuZXUtd2VzdC0xLmNvbXB1dGUuaW50ZXJuYWww +HhcNMTAxMDA2MDg0MjExWhcNMjAxMDAzMDg0MjExWjA2MTQwMgYDVQQDEytpcC0x +MC0yMjgtMjEtMjM1LmV1LXdlc3QtMS5jb21wdXRlLmludGVybmFsMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv11UTIKVlVN7DfY78bJ187coQZmLt3ey +J1Qf1EkSufI1Iyz49XkCZslWEMBJiNcH0bcjdLIqm9NCuJtd+Bk0fZxg1yZJ1qAA +2nt7fQ/wZrnkMlnbOkpzDLh0+CSynD76Z4Iv5BeSOUxSQuqzxB5+pGqDjdrX7NHZ +vb13fYoMy76zAJnnRBjwnTCNnQiuzsisC9bdEJmFZEzWy0/QZYS8/RNanI8yOpPk +hEXCm2YToWA+8vWiTo5qKzYwwDjsOwTAh4+NJhSIHS2QVKa3yIDR/LSRsSJHhVT+ +BOr/H+41m3FHebryU+OyM+nr02onkpDDIqAe1BAo1Ae6BlHukkd8jQIDAQABo1kw +VzA2BgNVHREELzAtgitpcC0xMC0yMjgtMjEtMjM1LmV1LXdlc3QtMS5jb21wdXRl +LmludGVybmFsMB0GA1UdDgQWBBQIudTe1ZcxpNPgLs9PaX2TtzBxvjANBgkqhkiG +9w0BAQUFAAOCAQEAgr6asZTswOFw7iBfD5mWu2Yon2IRMnEZDmq3aIvbzqeM2K6X ++CQzlmyP36Ctt3F3yMDfl4AyA4thju3wsCH50sD2g8CACFMUvIk2v8/cbpbURNoV +1mZwqVS7xQ+CmwWTVgqmPKk7WXQ9kqbknA5jVYzJmRBhylS6kwFGkjQUKlVaS29j +Ou/sOMAgf9ub7LI0tWT1e6Mz83uFx+vdTuzvUVc+ufuUIDTdVeV9ZdjBRusc/FQe +OrhnrrEum5QGmuXYb1mFs/TAqiQrGKbLoHAOqqAvDKOg5rX774JGnuv9DSVaeawB +wcg2i07qM4SR0O7n7fkIYQvX5IUeicF8SLu++A== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:KeyName>ip-10-228-21-235.eu-west-1.compute.internal</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=ip-10-228-21-235.eu-west-1.compute.internal</ds:X509SubjectName> + <ds:X509Certificate>MIIDSDCCAjCgAwIBAgIJAOOKwExQhI7MMA0GCSqGSIb3DQEBBQUAMDYxNDAyBgNV +BAMTK2lwLTEwLTIyOC0yMS0yMzUuZXUtd2VzdC0xLmNvbXB1dGUuaW50ZXJuYWww +HhcNMTAxMDA2MDg0MjExWhcNMjAxMDAzMDg0MjExWjA2MTQwMgYDVQQDEytpcC0x +MC0yMjgtMjEtMjM1LmV1LXdlc3QtMS5jb21wdXRlLmludGVybmFsMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv11UTIKVlVN7DfY78bJ187coQZmLt3ey +J1Qf1EkSufI1Iyz49XkCZslWEMBJiNcH0bcjdLIqm9NCuJtd+Bk0fZxg1yZJ1qAA +2nt7fQ/wZrnkMlnbOkpzDLh0+CSynD76Z4Iv5BeSOUxSQuqzxB5+pGqDjdrX7NHZ +vb13fYoMy76zAJnnRBjwnTCNnQiuzsisC9bdEJmFZEzWy0/QZYS8/RNanI8yOpPk +hEXCm2YToWA+8vWiTo5qKzYwwDjsOwTAh4+NJhSIHS2QVKa3yIDR/LSRsSJHhVT+ +BOr/H+41m3FHebryU+OyM+nr02onkpDDIqAe1BAo1Ae6BlHukkd8jQIDAQABo1kw +VzA2BgNVHREELzAtgitpcC0xMC0yMjgtMjEtMjM1LmV1LXdlc3QtMS5jb21wdXRl +LmludGVybmFsMB0GA1UdDgQWBBQIudTe1ZcxpNPgLs9PaX2TtzBxvjANBgkqhkiG +9w0BAQUFAAOCAQEAgr6asZTswOFw7iBfD5mWu2Yon2IRMnEZDmq3aIvbzqeM2K6X ++CQzlmyP36Ctt3F3yMDfl4AyA4thju3wsCH50sD2g8CACFMUvIk2v8/cbpbURNoV +1mZwqVS7xQ+CmwWTVgqmPKk7WXQ9kqbknA5jVYzJmRBhylS6kwFGkjQUKlVaS29j +Ou/sOMAgf9ub7LI0tWT1e6Mz83uFx+vdTuzvUVc+ufuUIDTdVeV9ZdjBRusc/FQe +OrhnrrEum5QGmuXYb1mFs/TAqiQrGKbLoHAOqqAvDKOg5rX774JGnuv9DSVaeawB +wcg2i07qM4SR0O7n7fkIYQvX5IUeicF8SLu++A== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vhs-dev01.dyndns.org/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://vhs-dev01.dyndns.org/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://vhs-dev01.dyndns.org/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://vhs-dev01.dyndns.org/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://vhs-dev01.dyndns.org/Shibboleth.sso/SAML/POST" index="5"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://vhs-dev01.dyndns.org/Shibboleth.sso/SAML/Artifact" index="6"/> + </md:SPSSODescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/vmfront.lan.kth.se-shibboleth.xml b/swamid-testing/vmfront.lan.kth.se-shibboleth.xml new file mode 100644 index 00000000..e6102b96 --- /dev/null +++ b/swamid-testing/vmfront.lan.kth.se-shibboleth.xml @@ -0,0 +1,80 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://vmfront.lan.kth.se/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2019-06-12T08:15:13Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:Extensions> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://vmfront.lan.kth.se/Shibboleth.sso/DS" index="1"/> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:KeyName>vmfront.lan.kth.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=vmfront.lan.kth.se</ds:X509SubjectName> + <ds:X509Certificate>MIIDETCCAfmgAwIBAgIJAIZPkpPDLV8WMA0GCSqGSIb3DQEBBQUAMB0xGzAZBgNV +BAMTEnZtZnJvbnQubGFuLmt0aC5zZTAeFw0xMDA1MjAxMzM1MTFaFw0yMDA1MTcx +MzM1MTFaMB0xGzAZBgNVBAMTEnZtZnJvbnQubGFuLmt0aC5zZTCCASIwDQYJKoZI +hvcNAQEBBQADggEPADCCAQoCggEBANG4IsTSEChitjEA/isd7hZVlzXCUwJWOrXs +xjtLzFsFaU+3Of99SrRfhlB866d0L6U6VfVkuvonOw/2HCXGA1JpPIfIc10vEIZL +iLPvPdBDCRk09qUDlyqDj5P2hD8G+pA/luA1DIXTd6bImV+ciCWM1/AOuPhiAt7A +zsawVY6S0K2rkDO3pPs13pfhJEdC8+w7HDJG5WWA79rp0MVr1REUh2p71EWfVWh/ +ecXdLvMLrBpMToP5e9v1ZUIEFBFlbQiI2wetvcWNdo7kJYfplZ/g3zLxvtMfFa0q +JWeV01bOKFXprQz8xsqzdhGq9zD3VezIzu6EdWdQ8T0tAgWHpvUCAwEAAaNUMFIw +MQYDVR0RBCowKIISdm1mcm9udC5sYW4ua3RoLnNlhhJ2bWZyb250Lmxhbi5rdGgu +c2UwHQYDVR0OBBYEFJuONt6BkLHzl/nbr7xujmkWlT5CMA0GCSqGSIb3DQEBBQUA +A4IBAQBOEYkvNmbN23mTD5Kt7/gvcsIxIP9MEYNXn04u1oJhWVT4FhbXfdrxeapi +7Mu7ozsQazUq0wQ7OK5UgYu53gz3lCp9rIr4X51CMDKaXlIIzba/cAw8WTQmvygu +hPGS63MlZux4dw9N7a4yxffmKhokW2ZAamoMjbojgPUj/2uqLrc4rmxmg2g5XV/s +lfZ0HfL19JANfzFtjeapBcllg/lnYuCNh/CzMB1z2RQqXNI+kdR3nWTUiaegtdmo +OX/SIGPWQxxjY47ggv4d3pW5orhZzzM5Qjj8WbZ3hrK0thaZzebh3gzJ9mGEakoF +nvPUXwQpAourZJSyt5BJwx3dJT1b +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:KeyName>vmfront.lan.kth.se</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=vmfront.lan.kth.se</ds:X509SubjectName> + <ds:X509Certificate>MIIDETCCAfmgAwIBAgIJAIZPkpPDLV8WMA0GCSqGSIb3DQEBBQUAMB0xGzAZBgNV +BAMTEnZtZnJvbnQubGFuLmt0aC5zZTAeFw0xMDA1MjAxMzM1MTFaFw0yMDA1MTcx +MzM1MTFaMB0xGzAZBgNVBAMTEnZtZnJvbnQubGFuLmt0aC5zZTCCASIwDQYJKoZI +hvcNAQEBBQADggEPADCCAQoCggEBANG4IsTSEChitjEA/isd7hZVlzXCUwJWOrXs +xjtLzFsFaU+3Of99SrRfhlB866d0L6U6VfVkuvonOw/2HCXGA1JpPIfIc10vEIZL +iLPvPdBDCRk09qUDlyqDj5P2hD8G+pA/luA1DIXTd6bImV+ciCWM1/AOuPhiAt7A +zsawVY6S0K2rkDO3pPs13pfhJEdC8+w7HDJG5WWA79rp0MVr1REUh2p71EWfVWh/ +ecXdLvMLrBpMToP5e9v1ZUIEFBFlbQiI2wetvcWNdo7kJYfplZ/g3zLxvtMfFa0q +JWeV01bOKFXprQz8xsqzdhGq9zD3VezIzu6EdWdQ8T0tAgWHpvUCAwEAAaNUMFIw +MQYDVR0RBCowKIISdm1mcm9udC5sYW4ua3RoLnNlhhJ2bWZyb250Lmxhbi5rdGgu +c2UwHQYDVR0OBBYEFJuONt6BkLHzl/nbr7xujmkWlT5CMA0GCSqGSIb3DQEBBQUA +A4IBAQBOEYkvNmbN23mTD5Kt7/gvcsIxIP9MEYNXn04u1oJhWVT4FhbXfdrxeapi +7Mu7ozsQazUq0wQ7OK5UgYu53gz3lCp9rIr4X51CMDKaXlIIzba/cAw8WTQmvygu +hPGS63MlZux4dw9N7a4yxffmKhokW2ZAamoMjbojgPUj/2uqLrc4rmxmg2g5XV/s +lfZ0HfL19JANfzFtjeapBcllg/lnYuCNh/CzMB1z2RQqXNI+kdR3nWTUiaegtdmo +OX/SIGPWQxxjY47ggv4d3pW5orhZzzM5Qjj8WbZ3hrK0thaZzebh3gzJ9mGEakoF +nvPUXwQpAourZJSyt5BJwx3dJT1b +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://vmfront.lan.kth.se/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SLO/Artifact"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://vmfront.lan.kth.se/Shibboleth.sso/NIM/SOAP"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://vmfront.lan.kth.se/Shibboleth.sso/NIM/Redirect"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vmfront.lan.kth.se/Shibboleth.sso/NIM/POST"/> + <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://vmfront.lan.kth.se/Shibboleth.sso/NIM/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SAML2/Artifact" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SAML2/ECP" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SAML/POST" index="5"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://vmfront.lan.kth.se/Shibboleth.sso/SAML/Artifact" index="6"/> + </md:SPSSODescriptor> +</md:EntityDescriptor> diff --git a/swamid-testing/weblogin-test-v4.kau.se-idp-shibboleth.xml b/swamid-testing/weblogin-test-v4.kau.se-idp-shibboleth.xml new file mode 100644 index 00000000..34a5da69 --- /dev/null +++ b/swamid-testing/weblogin-test-v4.kau.se-idp-shibboleth.xml @@ -0,0 +1,208 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://weblogin-test-v4.kau.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2021-11-02T12:39:53Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al3</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa-hi</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://weblogin-test.kau.se/error/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX"> + <md:Extensions> + <shibmd:Scope regexp="false">kau.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="en">Karlstad University v4 test IdP</mdui:DisplayName> + <mdui:Description xml:lang="en">Karlstad University v4 test IdP</mdui:Description> + <mdui:Description xml:lang="sv">Karlstads universitet v4 test IdP</mdui:Description> + <mdui:DisplayName xml:lang="sv">Karlstads universitet v4 test IdP</mdui:DisplayName> + <mdui:InformationURL xml:lang="en">http://www.kau.se/en</mdui:InformationURL> + <mdui:InformationURL xml:lang="sv">http://www.kau.se</mdui:InformationURL> + <mdui:Keywords xml:lang="en">kau karlstads+universitet karlstad+universitet karlstad+university</mdui:Keywords> + <mdui:Keywords xml:lang="sv">kau karlstads+universitet karlstad+universitet karlstad+university</mdui:Keywords> + <mdui:Logo xml:lang="en" height="112" width="112">https://www.kau.se/themes/custom/kau16/images/logotype.png</mdui:Logo> + <mdui:Logo xml:lang="sv" height="112" width="112">https://www.kau.se/themes/custom/kau16/images/logotype.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="en">https://weblogin-test.kau.se/information.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="sv">https://weblogin-test.kau.se/information.html</mdui:PrivacyStatementURL> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>kau.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:59.4059,13.5816</mdui:GeolocationHint> + <mdui:IPHint>130.243.16.0/20</mdui:IPHint> + <mdui:IPHint>193.10.162.0/24</mdui:IPHint> + <mdui:IPHint>193.10.220.0/22</mdui:IPHint> + <mdui:IPHint>193.10.224.0/21</mdui:IPHint> + <mdui:IPHint>193.10.238.0/24</mdui:IPHint> + <mdui:IPHint>193.11.148.0/22</mdui:IPHint> + <mdui:IPHint>193.11.152.0/21</mdui:IPHint> + <mdui:IPHint>2001:6b0:34::0/48</mdui:IPHint> + </mdui:DiscoHints> + <mdui:DiscoHints> + <mdui:DomainHint>kau.se</mdui:DomainHint> + <mdui:GeolocationHint>geo:59.4059,13.5816</mdui:GeolocationHint> + <mdui:IPHint>130.243.16.0/20</mdui:IPHint> + <mdui:IPHint>193.10.162.0/24</mdui:IPHint> + <mdui:IPHint>193.10.220.0/22</mdui:IPHint> + <mdui:IPHint>193.10.224.0/21</mdui:IPHint> + <mdui:IPHint>193.10.238.0/24</mdui:IPHint> + <mdui:IPHint>193.11.148.0/22</mdui:IPHint> + <mdui:IPHint>193.11.152.0/21</mdui:IPHint> + <mdui:IPHint>2001:6b0:34::0/48</mdui:IPHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIFSDCCAzCgAwIBAgIVAK3hJPC38AiIQXjA79Aky/ceGCDUMA0GCSqGSIb3DQEB +CwUAMCIxIDAeBgNVBAMMF3dlYmxvZ2luLXRlc3QtdjQua2F1LnNlMB4XDTIyMDYy +MTA4MzIzM1oXDTQyMDYyMTA4MzIzM1owIjEgMB4GA1UEAwwXd2VibG9naW4tdGVz +dC12NC5rYXUuc2UwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC1k9bL +++zRcegCvIPwc6c0uoqWbfNsXFreLqEfOzi3fd1Yb8aEBVaATlyqMu6uAZLXrLF6 +IVB0okugeDHKtM3iG/V8aoN++UeIPs35cmqXO0pULaWikGCEBDKVFKx3fpVx8m0E +K3gN/R6JQa17DGirTWtmmFFWb0Dtj36RYrg19yzMZiWl2Y2O5D9KdEZ5zUEa5U79 +AzipieRolsRb0SXiemN9W8BE1wbiJyKljX7nfQLiZR5TmoQVTmoeJp9eLBFmxLK+ +UXavE8M28aA3pxJeuMDtLDC7NUGI493UYX9SqPXY+1D85ACAlumB+1xY5AQ6eh5o +EonmhFK3tKhlWn6/fqEs0G9Md01OoxW+s7bfJH82giU5aDLIQZrE3cGIUo6mj4ru +0RxJgJwY54VtncNhMI405pNFosTORS4YYjwCgr/sW5FDs7c1bKMi87+IOC7upJ/3 +u2uDK/jK0CV+qsk0ZyQ1A2M3zkZMHanj/ZcciQcqoG3F0GKRzEm9i65Vudy2peUX +oIEgPkKtAPhJqU4sP5yvJeF1KYGi+yVvqIyRTdUux1QBA6UttWLFeYS/2Lp74eqT ++fI5wbqjgfZEyuk3H0qPWnYuWHBukwqhJVQAb6ZaASnN6BsyRT3ZpPmttxe2NFXR +AetlcOKqTsEB80OgGjHjePhDWdtXmqC0sWcRxwIDAQABo3UwczAdBgNVHQ4EFgQU +z5BC4sAbcWPAvEPbEjYx40bC80UwUgYDVR0RBEswSYIXd2VibG9naW4tdGVzdC12 +NC5rYXUuc2WGLmh0dHBzOi8vd2VibG9naW4tdGVzdC12NC5rYXUuc2UvaWRwL3No +aWJib2xldGgwDQYJKoZIhvcNAQELBQADggIBACDH9lO3dFEOANCHCcljmBEZAtAI +RTTMiW30fZkuBN3bUu25dHSDSmSt7AfXUjdkLkV0ziPPFAUgldvFyBRyjBxd+5WJ +7rnP+FJ4YYFj5fol7C0+ZMX+G7T37ya4EmytI4xhQpPWesg1WSFstZnIPeo7o10H +9bIgFfCQ6IhmfdpiDrUW+fVsLoJcVYOOGfEaoCHV6Q0dfhF6rsgbh66t7lxUa9zD +/F3yuUzNWEdH0jAcW/wU7mSaeEOAAHuU6h96wGd7Z6tiqLB8/tezMeIkU61HkDNs +btkXPA1RwuHH6jPtXSefgwAlLM0OeR+uwSBtSN38n4/utx+99at6tpmWQVZkMDj2 +KCUWp8+KNyzW9rZtEvW5bqxWMB8Esj9TbB8cQfYJOuaYNffpHYwTIMKwXL6snLot +a7RqzY158AmMC4X9Ts7fvsCYsVQG7HMjRofluuEv/v6YFnAk5SifsPJGStDpcifO +zm75pl9JzrXAyNyj7fkaSKDnzO0O8iGfg0IBs8jz49MhPISdI+vC/mjOYdPydwxn +Q4BnLQi7CG3VbRhmkEpwkBZ19UvFUfvpxulubcomnfVYse1i+snMo+jbzxxxosm/ +mzx1d1VU1xwEfspoOFI6wKhW/eoWyCMCTXR+mxALDu9/wGbo8+m1TyhUTwzcVaOO +ZIEHQfl81U/gUVLi + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIFSDCCAzCgAwIBAgIVANBSNV8Fym0k+wYlloWqL27Pvhv4MA0GCSqGSIb3DQEB +CwUAMCIxIDAeBgNVBAMMF3dlYmxvZ2luLXRlc3QtdjQua2F1LnNlMB4XDTIyMDYy +MTA4MzE1NFoXDTQyMDYyMTA4MzE1NFowIjEgMB4GA1UEAwwXd2VibG9naW4tdGVz +dC12NC5rYXUuc2UwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDFYBAr +EZKh27UsRvs+r4ihtVWJZ44b3O+FSFsh+1lV+elZwek2nmkfNd431l1Tv+b7S31W +eqN+6z5+3r6nKdyPo3BB+Erxa3LaW0Vn9gq9gUAyHgV1cNVHcdYO7YbyLympxopX +Hp/fs6MGzHezpxlsSyxWvK0otnpwfBRUi5PDGBrxQGB8fXzbM7uDgEw6kM678Dz4 +ip580JsiJ8k2+D8isqdVMWSbzMyrzLJNhmUCsvDNOC9j3S97z8c4xxT/nqOBqSDN +IiGEEFV08/2PL0+sRdIg7u3uXqXPo+/wR1t8xSX4dh7dxxPsdKV+3lQBf9T3N0kq +8TcOTooJBwX2L3+4QmPSoEg+6CMAELgnsJgg/81312/XmQxohc4C3oilNZdtUo1z +3HKCfxM8eaXfb0gUKzNCd8NCOWjhntc/Cfkg+fVb9eUvXoHqkp4/oI+VEhLb9MZu +39oFEBMRTSEUrT/cP113/h+qazwuDIK+9ROzYm74DLOoB6QYEUNqqse+LV7NMUum +t5wLbxDQmuSWEMh4Gf5mc6FI5C0JV3RUaaFQx8U7JEfdkhSu9Lyv+fUDUYwgbkSR +Wjnt8jKnpEsEqFoNPN75TExTJFoerVDpLQgeuNDhB4WpiB/hBkru+0Ar+gU9/AAE +DMiw8/phNnvToZCENisdQQKu3qhau0UHJstcyQIDAQABo3UwczAdBgNVHQ4EFgQU +PTINVWwKullQ8KBPOEih3ssJVCowUgYDVR0RBEswSYIXd2VibG9naW4tdGVzdC12 +NC5rYXUuc2WGLmh0dHBzOi8vd2VibG9naW4tdGVzdC12NC5rYXUuc2UvaWRwL3No +aWJib2xldGgwDQYJKoZIhvcNAQELBQADggIBAGdI9pD5p/ZcuchkaEAYItATo81/ +gzv/CZyP4Hg0nYSUG3r+yXOOV1yCv5NPT0FXvdIJm9ONYBOB4ShZKLnQpWnJppPm +XAg6eJ85wWt+ubvQwHUETey0zfmvUgF+jN1wBaHvMeoELdsxhUOZMjeNnjApLivJ +HFV2VujXj8zH16MFvADdNLf9qy0AWEnDIaFqGu4dFZJRdXeTYPaCDAgewXIIXjUj +CTi+buw2svZxV7fp9Cc0/KDxIxWMAICm5+T+r3T7L39OTxcVwFfvzZf+322iMoSl +NXeoONDHKSxVRWK+Y/DbGlXUIDCtqmTecQF7GrjHcWhxQGJfNdApChsrh/xvZQJQ +EQ4mkYABcALlB5DAhfGxZMzyyLXufH7OMBe7mC9FpifcxmCaErqtD3iPuR1v/vjP +ml9iVTDe1cnnKOrz5M3gPxvUOLFFYzn8JZely3F8va4a0FAYIO5XuKL9F1PoLY0N +5f2cRR6GklzvD/Bew26F4Q6cOW7ttNT9LOFR1PEG7F54FEIPCpEAvCpZBObwCzWP +HVUqbPa95AcSUn3h8z3d9IxD1X1YlWkwAexZlcecaA1ex8txd2U355X51WZ3BAuN +XUWnXrKJUDfzJne/dgoq0XPc8GTxsh5asQEtdgegWgAFVdquT/TTQJAkwCZS+vr/ +SQNkhhhQFosZbvKp + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIFRzCCAy+gAwIBAgIUHWtZUtNwHkIdfqv6JaH+SnTXRmAwDQYJKoZIhvcNAQEL +BQAwIjEgMB4GA1UEAwwXd2VibG9naW4tdGVzdC12NC5rYXUuc2UwHhcNMjIwNjIx +MDgzMTU0WhcNNDIwNjIxMDgzMTU0WjAiMSAwHgYDVQQDDBd3ZWJsb2dpbi10ZXN0 +LXY0LmthdS5zZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALV2mu+h +sBzA8+KNWnFAJh7vi08Rr6KU8NyLyHWK+2Tk3gWmtQLS18kMxlRlRsmxX6t2MEI2 +2OzOgli/6gLbspMlhd2bZSbHz5efqUIYjO832RFIfuQkPKeEYkevx8XdO9S5tjpq +sY7VOgq6rPfg4DKBTGP8uyXZiAZLjl9rHLYtmKSM0k71eqVTWbsYXQcFO+G6CaAl +y4ZVpOpWJbhA6tdnER9g2PwQpCyQ+7pTZF43bESnEzEd8aO9dPZMI+UVUjkQ1Vo2 +LUhjnMCnEB3DWtlDf47QVTv2hNNg+8iM3Ux27HJBCDnMcT/uNKVI/0Gp6kuqK6sN +teelzsz9flmVZ9/gunguw+vV99Gcq+eA7CRXh5gROQceXmk56LSSGzEhAu6BYEka +vdkerv0N3sBLY7tUsWxynIi38PfAkdKa5HuY83vPNPspZd3iaFSF6PYAcsAKOCV8 +FxaMf5pG75kJpysrKAINJsCIdrui7mR8JfC2tqAj+DV8Jsdm/zquhTwLVc7uWbTB +Scc9g9oNyJFvFxiJasI98Qhv0wv95E3v8UGHufNhseYBuAlqnmMUBwSj82YwyE9e +DLdDkR5D2WMJMkKOn531lH0QzhmFULXpCbhedGAnVeRdyb6weqZWsQ7C6D2Urcy6 +GvIE5tvUfCNXEwvQ2S5vU4fnRa860GBoPherAgMBAAGjdTBzMB0GA1UdDgQWBBTH +OGGY2vifqXvOkoK8au7N2HijVDBSBgNVHREESzBJghd3ZWJsb2dpbi10ZXN0LXY0 +LmthdS5zZYYuaHR0cHM6Ly93ZWJsb2dpbi10ZXN0LXY0LmthdS5zZS9pZHAvc2hp +YmJvbGV0aDANBgkqhkiG9w0BAQsFAAOCAgEAEK0e6L4CTdhKDEsKHy3IOLUs9bP4 +9ohfZZAJhWTTZWy9ULrcDl//zfeCDXMZpE3061skhzEcoMV5rs2ZerHwu2zL0Gw0 +TWnSPFc0B9y2tO21WIQ3OB3Y9xpTMtGHyVJEYbmQYq43KjBkBbuMhM8IjPy+BfO7 +tM/F+uJxDGwtC32zLLF6TtgTu7WxE2aAw6GDYv71zKR5YJubn4nMUSQ/QfGIUGAQ +r2EjQWOnMW/BHN9IyISas29RTZ3/5A0zLaHR+Ptjs7NEe6TPiVnhuFjMPIrLZ6dX +iHGL+P76mi1kdoqrzhjFoo5KwMyvInPKTG14mtb2Z2IKon0b2eorxmZXJoNiRzZO +vNjfgxqkYxGJiTRmlcGldW3jY0vG7ogasnGbvXxwvWXpSb2AE2F+iBpOg9qptbp4 +v3kKn0z0sOOvxAUpT3Nevw9ZuATydoyDyaIyV/qyuHbWN3AUhREwM3pygg6TsV22 +gnrCoE/QqjNbPiwGgHfiAZ2WmZdI96M5p6l43jHexXSwQB+clQtC8qhsGSQqIl0A +ciNZ3H3meQ+c7qoHb0p50dkBYGi5d/Dlr+MBVCtF8gh/sqvMfwJ1d5lBad4IF7IS +sGr7Vpsw+kPCOPt1Qsx21X5yhJQCl4Dbv0N54LzOKGFbQU7wcNOvKOPuw1JSVmZX +YgmmVKJz7UoRoFo= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://weblogin-test-v4.kau.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:SingleSignOnService xmlns:ns7="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" ns7:supportsRequestedAttributes="true" Location="https://weblogin-test-v4.kau.se/idp/profile/SAML2/POST-SimpleSign/SSO"/> + <md:SingleSignOnService xmlns:ns7="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" ns7:supportsRequestedAttributes="true" Location="https://weblogin-test-v4.kau.se/idp/profile/SAML2/Redirect/SSO"/> + <md:SingleSignOnService xmlns:ns7="urn:oasis:names:tc:SAML:protocol:ext:req-attr" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ns7:supportsRequestedAttributes="true" Location="https://weblogin-test-v4.kau.se/idp/profile/SAML2/POST/SSO"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="en">Karlstad University</md:OrganizationName> + <md:OrganizationName xml:lang="sv">Karlstads universitet</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="en">Karlstad University</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="sv">Karlstads universitet</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="en">http://www.kau.se/en</md:OrganizationURL> + <md:OrganizationURL xml:lang="sv">http://www.kau.se</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Karlstad University</md:Company> + <md:SurName>IT-avdelningen</md:SurName> + <md:EmailAddress>mailto:webbteknik@kau.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Karlstad University</md:Company> + <md:SurName>IT-avdelningen</md:SurName> + <md:EmailAddress>mailto:webbteknik@kau.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Karlstad University</md:Company> + <md:SurName>IT-avdelningen</md:SurName> + <md:EmailAddress>mailto:2525@kau.se</md:EmailAddress> + <md:TelephoneNumber>+46 54 700 2525</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:irt@kau.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/weblogin-test.kau.se-idp-shibboleth.xml b/swamid-testing/weblogin-test.kau.se-idp-shibboleth.xml new file mode 100644 index 00000000..3947cda0 --- /dev/null +++ b/swamid-testing/weblogin-test.kau.se-idp-shibboleth.xml @@ -0,0 +1,169 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://weblogin-test.kau.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-01-18T15:30:16Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al3</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/authentication/swamid-al2-mfa-hi</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/pseudonymous</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/category/anonymous</samla:AttributeValue> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://weblogin-test.kau.se/error/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX"> + <md:Extensions> + <shibmd:Scope regexp="false">kau.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Karlstads universitet test</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Karlstad University test</mdui:DisplayName> + <mdui:Description xml:lang="sv">Test Identity Provider för Karlstads universitet</mdui:Description> + <mdui:Description xml:lang="en">Test Identity Provider for Karlstad University</mdui:Description> + <mdui:InformationURL xml:lang="sv">http://www.kau.se</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">http://www.kau.se/en</mdui:InformationURL> + <mdui:Logo xml:lang="sv" height="112" width="112">https://www.kau.se/themes/custom/kau16/images/logotype.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="112" width="112">https://www.kau.se/themes/custom/kau16/images/logotype.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="sv">https://weblogin-test.kau.se/information.html</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://weblogin-test.kau.se/information.html</mdui:PrivacyStatementURL> + <mdui:Keywords xml:lang="sv">kau karlstads+universitet karlstad+universitet karlstad+university</mdui:Keywords> + <mdui:Keywords xml:lang="en">kau karlstads+universitet karlstad+universitet karlstad+university</mdui:Keywords> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>kau.se</mdui:DomainHint> + <mdui:IPHint>130.243.16.0/20</mdui:IPHint> + <mdui:IPHint>193.10.162.0/24</mdui:IPHint> + <mdui:IPHint>193.10.220.0/22</mdui:IPHint> + <mdui:IPHint>193.10.224.0/21</mdui:IPHint> + <mdui:IPHint>193.10.238.0/24</mdui:IPHint> + <mdui:IPHint>193.11.148.0/22</mdui:IPHint> + <mdui:IPHint>193.11.152.0/21</mdui:IPHint> + <mdui:IPHint>2001:6b0:34::0/48</mdui:IPHint> + <mdui:GeolocationHint>geo:59.4059,13.5816</mdui:GeolocationHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDOzCCAiOgAwIBAgIUUrhSwzSvtWaZ3Sfu6psWXurK16MwDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUd2VibG9naW4tdGVzdC5rYXUuc2UwHhcNMTYxMTE1MTIx +NzI1WhcNMzYxMTE1MTIxNzI1WjAfMR0wGwYDVQQDDBR3ZWJsb2dpbi10ZXN0Lmth +dS5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAI0rC0NVNdCUVfX4 +5/eW0SQRcI+U8BBSQSsxJExYovxZKbQHoInYtq/e8Xeof1OHF/R47jXvUizlid/D +e879yIW0dK7kfQIhgKx4DY/HrDfvyEirl6rOWbAxcIC/cyQ454a0zAO+97t6Tevk +kJ5OvXMS+9Z9AvPyahEdUlu6IVRNh+Y06TCik5Nklf8P7xIz7PeRJz9KeLJ1LSOa +2nzvtQcqhfkQDoGwRWePzqOgsA4bBvkD5KYBKCs9uWlLqWg3WeDORBsKE67GhpeJ +clxch+qur4yQB+VPfnipKnAvVKGGyLQS+Rk09bEezvZF9ovStA2FMSJeYNmXQoke +UCYJ41MCAwEAAaNvMG0wHQYDVR0OBBYEFIBqQyfJedY0G2VtXyCRgbmKQgaLMEwG +A1UdEQRFMEOCFHdlYmxvZ2luLXRlc3Qua2F1LnNlhitodHRwczovL3dlYmxvZ2lu +LXRlc3Qua2F1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQBQ +4Gw+2mPSsTQT07wC6ylolVaJa6b9Qs81RXx2yH8A3hxYrIXsj98W/TZx/4T4Oeax +ckky2CkpU4be9c/+AGt0sf8r2RLsOXjbG8lqNlyyHQYixzyvSYlDPgN0QRMHou9S +4qltAzINnr0kKBH2TOSsIuwL0xggbj6BkyeqF8UpG/b1+QGvNtRfl7KifPPYboyV +esym0FXxpLKsgChIE2x/N5iw7pwUwVvOW2v2KvYRMPDpB0iJUFas2kvmu2awmlj1 +yzduSmw52mERZMSVFLOexYdKoOWH9nMPgnyPra5Oc0KqfVchGLJRG1HtVX/Z2wAm +fCvevJT42mGDX9mPl/QB + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDPDCCAiSgAwIBAgIVANO9ZEcWOcaE73HSok8HY1oi589fMA0GCSqGSIb3DQEB +CwUAMB8xHTAbBgNVBAMMFHdlYmxvZ2luLXRlc3Qua2F1LnNlMB4XDTE2MTExNTEy +MTcyNFoXDTM2MTExNTEyMTcyNFowHzEdMBsGA1UEAwwUd2VibG9naW4tdGVzdC5r +YXUuc2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCBGu7AOcfqPCoO +IFKKwVVjP0rrp2nm08vG071NAyUgEu0ukcNmlf1lZ6sqZHCspNrlXk1oez6CHGnr +yUtr9uvQnzglBx8o4lLir+KnPmlrYRMpjIO1tXiRWzEtpaEsU84wMEH23W/GJu8J +daGftlse0fnPq2hDeO7+w8FZSPV3wFfpL+OTzt36w0MdfuLZKEvk2fbBuG3DiZIy +fuBlL0sARs5OKFx8o2le8REB6ajQUYfexYxXKsAwA7NLQptg1NoZRex1g2SdfHG5 +XKLE5UH6OFCa9fL7s258sInLosb6mw5FBMvlgOAHzYtLOjrAJH5lhqz+CZectr7f +nVg56c4RAgMBAAGjbzBtMB0GA1UdDgQWBBTacYJ4P3uc/ZXfv5CbMowF9jDweDBM +BgNVHREERTBDghR3ZWJsb2dpbi10ZXN0LmthdS5zZYYraHR0cHM6Ly93ZWJsb2dp +bi10ZXN0LmthdS5zZS9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0BAQsFAAOCAQEA +Vb5bTcgigvuPNGNbq+EPMpdtcExsSP4ZKYvqBvDxM168rpLE5F2rG/IOHAU6S9wZ +4Rc3wKSOE79TkgK3LCjvubnJn+tqXYKPuaN40DWVPUUEmj6ppr+BNmdA1wMe5Jl0 +ap4cMCWh3uy8stgciEXyJXLl4JWTG7Cecvc4m7Z89djzcwAXOTMDeHObwWdm1VLJ +IrGe9GfEBeelTew/ksD/99/cwfhRaeo0RRE/lh5Ibr6ggTVJDqgkCgBuU69eYBOh +RDXg7YJCZfGxGPha9x3MDIh080vgMF3APdlj576a7CZnZ5gOSIu6mUwmCOOO1xeQ +yuEBUW3NO/r+NDLDCkwM7Q== + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDOzCCAiOgAwIBAgIUchvMI8WNSpt59S81zxzw+PM/rSAwDQYJKoZIhvcNAQEL +BQAwHzEdMBsGA1UEAwwUd2VibG9naW4tdGVzdC5rYXUuc2UwHhcNMTYxMTE1MTIx +NzI1WhcNMzYxMTE1MTIxNzI1WjAfMR0wGwYDVQQDDBR3ZWJsb2dpbi10ZXN0Lmth +dS5zZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIk333N/jPkJPyuD +n4sz2fPa1HxGusVSO6zZIKc+WA2rBlOxmhjFcM+qDBVDBKwM0yMn3vV4TfouI/Zf +C6M/HvLRGFoq1uiHXzv4nhvcluMkWhKUZSSRN3P2Ib53iCuvB2ZPDF7DkLkxEZEQ +rndXvmZh8DyfgmDjN+eHRUQshb3gCjKa5j77clHuBdrb5yAy4eXqZgJC7V2BaW00 +DgyNOJH9L8ML9hxgSfRO8bYwoza2iFFdPaAWZGOkSMWHzQCTOQTcAqOi3tGC4Ayf +jMc0qj+qI89ZhpQAcW7mOaBmXJUfycO69MRaVsC5q+Pb7Hlr5QFOYCCa0Wy7dgvI +gvIj1X0CAwEAAaNvMG0wHQYDVR0OBBYEFH+rnSw6NZACHD6P3bgW1n1CtQ+IMEwG +A1UdEQRFMEOCFHdlYmxvZ2luLXRlc3Qua2F1LnNlhitodHRwczovL3dlYmxvZ2lu +LXRlc3Qua2F1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQB5 +sNSGtEC55eyN5m6ppYVIvv1LcnZ6wI4vZIQ4adKPScw7u8ipxmXSlFybJpOkbkCH +/Tybhz8TvvsZoUQdrB7cxYMeKOwhoAU2KiD4E/I3hSYXMZ2HTTnY1mRBwlRXlJ3m +gBSt/tOnmiEVLDc0/Lvloh3BHHZuTdy5YRfUXEtVVGq5YFf4joMcEKccNhIR5fBu +u+ijMqlp8OwBWO9Hrbatd0CIzpg1zWT7JvoAHPs68SF1ktPCwH+1+P+cTncww/Wb +2/K5pAbEiMSlG4vS2jZiGSbW0ELfzPIyxbIwv3X4J+3MdEikuoK4atC/daJhVuxU +tcbcOrD8hYtnkJ0VE3Ns + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://weblogin-test.kau.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://weblogin-test.kau.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://weblogin-test.kau.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://weblogin-test.kau.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://weblogin-test.kau.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">KAU</md:OrganizationName> + <md:OrganizationName xml:lang="en">KAU</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Karlstads universitet</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Karlstad University</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.kau.se</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.kau.se/en</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Karlstad University</md:Company> + <md:SurName>IT-avdelningen</md:SurName> + <md:EmailAddress>mailto:webbteknik@kau.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Karlstad University</md:Company> + <md:SurName>IT-avdelningen</md:SurName> + <md:EmailAddress>mailto:webbteknik@kau.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Karlstad University</md:Company> + <md:SurName>IT-avdelningen</md:SurName> + <md:EmailAddress>mailto:2525@kau.se</md:EmailAddress> + <md:TelephoneNumber>+46 54 700 2525</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:irt@kau.se</md:EmailAddress> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/weblogin.test.uu.se-idp-shibboleth.xml b/swamid-testing/weblogin.test.uu.se-idp-shibboleth.xml new file mode 100644 index 00000000..ac06d3ca --- /dev/null +++ b/swamid-testing/weblogin.test.uu.se-idp-shibboleth.xml @@ -0,0 +1,257 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://weblogin.test.uu.se/idp/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2016-04-22T10:26:32Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <mdattr:EntityAttributes> + <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue> + <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue> + <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue> + </samla:Attribute> + <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support"> + <samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue> + <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> + </samla:Attribute> + </mdattr:EntityAttributes> + </md:Extensions> + <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://weblogin.test.uu.se/idp/shibboleth"> + <md:Extensions> + <shibmd:Scope regexp="false">test.uu.se</shibmd:Scope> + <mdui:UIInfo> + <mdui:DisplayName xml:lang="sv">Uppsala universitet TEST</mdui:DisplayName> + <mdui:DisplayName xml:lang="en">Uppsala University TEST</mdui:DisplayName> + <mdui:Description xml:lang="sv">Gemensam webbinloggning TEST för anställda, studenter och övriga verksamma vid Uppsala universitet.</mdui:Description> + <mdui:Description xml:lang="en">The Uppsala University TEST Identity Provider is used by employees and students at the university.</mdui:Description> + <mdui:InformationURL xml:lang="sv">https://weblogin.test.uu.se</mdui:InformationURL> + <mdui:InformationURL xml:lang="en">https://weblogin.test.uu.se/english.html</mdui:InformationURL> + <mdui:Logo xml:lang="sv" height="50" width="50">https://weblogin.test.uu.se/idp/images/logga-50.png</mdui:Logo> + <mdui:Logo xml:lang="en" height="50" width="50">https://weblogin.test.uu.se/idp/images/logga-50.png</mdui:Logo> + <mdui:PrivacyStatementURL xml:lang="sv">https://weblogin.test.uu.se/#2</mdui:PrivacyStatementURL> + <mdui:PrivacyStatementURL xml:lang="en">https://weblogin.test.uu.se/english.html#2</mdui:PrivacyStatementURL> + <mdui:Keywords xml:lang="sv">uppsala+universitet</mdui:Keywords> + <mdui:Keywords xml:lang="en">uppsala+university</mdui:Keywords> + </mdui:UIInfo> + <mdui:DiscoHints> + <mdui:DomainHint>uu.se</mdui:DomainHint> + <mdui:IPHint>130.238.0.0/18</mdui:IPHint> + <mdui:IPHint>130.238.64.0/19</mdui:IPHint> + <mdui:IPHint>130.238.128.0/17</mdui:IPHint> + <mdui:IPHint>130.242.96.0/20</mdui:IPHint> + <mdui:IPHint>130.243.128.0/17</mdui:IPHint> + <mdui:IPHint>212.25.130.0/24</mdui:IPHint> + <mdui:IPHint>212.25.144.0/21</mdui:IPHint> + <mdui:IPHint>2001:6b0:B::/48</mdui:IPHint> + <mdui:IPHint>2001:6b0:C::/48</mdui:IPHint> + <mdui:GeolocationHint>geo:59.857583,17.629500</mdui:GeolocationHint> + </mdui:DiscoHints> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDODCCAiCgAwIBAgIVALH78yF625WD24SZwiOcGOOvPZ27MA0GCSqGSIb3DQEB +CwUAMB4xHDAaBgNVBAMME3dlYmxvZ2luLnRlc3QudXUuc2UwHhcNMTYwMjA4MTMw +MDU0WhcNMzYwMjA4MTMwMDU0WjAeMRwwGgYDVQQDDBN3ZWJsb2dpbi50ZXN0LnV1 +LnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IVKOwzztzBHho99 +3f30KUTepy2rO3rbZCjrLRKmFwXE2+1jXN5Ox6xvwcJxgt4UYMkyu2bEBV2fhJgc +nKYZ79jn/LRY6SuqII+IjDPluAbJJpWDkjMkE4gaWjgGa6+Smc083cKeDYor3qH3 +crvFPyOHAh8G7NedEvx/n6Q/lgkwcYzVNTH3lObA+IkpCmfwgrWklZZuFruItbR8 +WpNcdV2ZVb85IPSiFRNUAM2YmlXoF82hcwowNQXwORF4QVzj/KaB/LTp/ptVL4Fp +YJseNRuGk8ZFbDFRUzzIt4l62AYJwUJ1ELoKtI9nR2VTrcAg1XML2EN8SypcWvmu +es4cfQIDAQABo20wazAdBgNVHQ4EFgQUrFYCH0GaHu1iWwdjpRXQZ6nUi/gwSgYD +VR0RBEMwQYITd2VibG9naW4udGVzdC51dS5zZYYqaHR0cHM6Ly93ZWJsb2dpbi50 +ZXN0LnV1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQBkE+0t +2NdsLrAFltZxcaR8fBcgH6Ps4qY4jCAHcXtvj/XZ6oW6R/8V7LLRMhhfkkwEVfwP +dxGQzFzjn+XdFEKf1AF4d7kma6GnCAexYUggEDnc3RHlE33MvZHhMUa+qgidb5Nc +z0XSLb/uZVeguusT0lBnVj/4ZChA4nd/JIkTP75XMKJ51b+TS9+i5sQLPVR4D/+e +pFe422nJTV+yciVwKsuHmu3br2DEtgSSFWGilvGDdlfBAYtUDKG1DL2AVdI3ikZa +kCyta/hzhS30XO24ZrWeaPKGQri48PsZufzaHcjcVw8IRY8HI226xFya7F8AbGZQ +qK8gNoxLpQOHlY2i + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNzCCAh+gAwIBAgIUcIyPpnhtGppaMvJ1n+26SdVOQRkwDQYJKoZIhvcNAQEL +BQAwHjEcMBoGA1UEAwwTd2VibG9naW4udGVzdC51dS5zZTAeFw0xNjAyMDgxMzAw +NTFaFw0zNjAyMDgxMzAwNTFaMB4xHDAaBgNVBAMME3dlYmxvZ2luLnRlc3QudXUu +c2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMszKAiwTx/7loe8kP +nDObgCx1N3RgE4X5Eau8e+cPXIeUZGO7MFidEH5jWV0/ZYAUQN+dy+pSpstyZ3MX +pW7XkJi9t4ttj8CtFa3sZTrzjsrIiOcmFqHYoKzzZ6b0EKdFyGKORNE5flHrVpUG +6P709YzxpzMLLEcESpmQwtpm/ILxBM4IPhkvOk6f8v0QbZYC4jo0BTHWgdVgyju9 +CzozhQcCuCU4UVwNgen2P+kIFoXiQybUE/yxgBih7bHFto5Mn5oBsE3mOLe0wHA5 +nL6ZLR8Atzi8nC8YOsV3UB86BIoYWgHBJKPRg2z6UhCgbMJxMfCXtYAGxUM7kTKi +7kJ9AgMBAAGjbTBrMB0GA1UdDgQWBBR5vMupHMEppHPF0vcF7zsykH9LujBKBgNV +HREEQzBBghN3ZWJsb2dpbi50ZXN0LnV1LnNlhipodHRwczovL3dlYmxvZ2luLnRl +c3QudXUuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBABY3Iinr +k2pjQFB9VhWb0g/nS2NCU0ipnPmHNEBIXIHhwBe1W3QT2tEcSuF2K4G50v5tjUnY +DfLVqbWtEfwUG0dz25K5Me4S2Zm6AIITYulVv6j0fdIAiLgDwj/Hpg3fvZtbVtkb +QHOEryJY6wvvI/zwpyOSkOSTt3qFQ3ZnS40wCs34wP/Hj6cHtkrl2OF0XA5M6yU4 +1kAk9gpaiX2Rhapn4W9V3p6CgpXthk+b8nwQeZ22KeG3ompceHJ/+nmS8G63pq56 +efRdH5xJNjTPu6mVHW9W+lW83i7mGlmMJAgl+qjTECSKXe9LcyYMsy6IphbVsDbX +zMHQwjf5evdJ6lo= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDODCCAiCgAwIBAgIVAKxjuWw/YZpjuyfHWcbrDOP8tYnkMA0GCSqGSIb3DQEB +CwUAMB4xHDAaBgNVBAMME3dlYmxvZ2luLnRlc3QudXUuc2UwHhcNMTYwMjA4MTMw +MDU0WhcNMzYwMjA4MTMwMDU0WjAeMRwwGgYDVQQDDBN3ZWJsb2dpbi50ZXN0LnV1 +LnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiF3dhy69bCTFrcPd +MOKrp8e8XH5jld7KhPAplQQHg79oAzAE/1tn6a8pD0ZqTVqBXTeZKyvKwICa2kbw +ZcqBQfyqI7IWmgc2u+PWal0JXod5oDXQ1Uw/6xq5InTuoIlNLIpKolaJtr1cANRg +acTrgIrV1B3cM9PbkcP6EuQpxenWT0fvh3kxesZraBTyy/LBhPZgqsKRcyTX8dOk +yKLY+bfUCXidlI2juymQ7x0kenDF09B8khRkYr4rmV14wULzWVHfsT9wQEJvlIbx +ajz5DCqX6wB/a8ik77GdLJP7h7BkStd4+kJ2aCdnsn4qvhXwCCC0oz1um0rNpP1g +xcxEXQIDAQABo20wazAdBgNVHQ4EFgQUK2d6JMehLr6T8WAM1I9i+rz9Wh0wSgYD +VR0RBEMwQYITd2VibG9naW4udGVzdC51dS5zZYYqaHR0cHM6Ly93ZWJsb2dpbi50 +ZXN0LnV1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQA18KzE +t7EuR1DEmAKtqndUPWuKnds2qhur2HRyETgdXh3qfczvgZLnnhNXI0c/M54CYJb+ +7Tc0f5Pv1cV0GmKkfRadEzc0qSiFrn1t/GhRTakzRprh3JxtT++ZstJzf2/nD1PK +Oktly7qvWX0Qrh0yYfHJaI/WPVxH4jI/1jDwa9Am/jJbOW/uy6s14zjXswi1ZKd0 +EPzW8pfIR9H1gDAU5hoLuGjWF7NIqmRCfYE6n9/oEZfET1dG3zUpBG2EacmZDv8o +CIpvN4bSlO9wP5fnymBLt+DxfMdmN973aeU529su8I3uj3Q4qaDBk8zGTKFx82Ae +dqPteAxhBzLEflg+ + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://weblogin.test.uu.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://weblogin.test.uu.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://weblogin.test.uu.se/idp/profile/SAML2/Redirect/SLO"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://weblogin.test.uu.se/idp/profile/SAML2/POST/SLO"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://weblogin.test.uu.se:8443/idp/profile/SAML2/SOAP/SLO"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://weblogin.test.uu.se/idp/profile/Shibboleth/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://weblogin.test.uu.se/idp/profile/SAML2/POST/SSO"/> + <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://weblogin.test.uu.se/idp/profile/SAML2/Redirect/SSO"/> + </md:IDPSSODescriptor> + <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol"> + <md:Extensions> + <shibmd:Scope regexp="false">test.uu.se</shibmd:Scope> + </md:Extensions> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDODCCAiCgAwIBAgIVALH78yF625WD24SZwiOcGOOvPZ27MA0GCSqGSIb3DQEB +CwUAMB4xHDAaBgNVBAMME3dlYmxvZ2luLnRlc3QudXUuc2UwHhcNMTYwMjA4MTMw +MDU0WhcNMzYwMjA4MTMwMDU0WjAeMRwwGgYDVQQDDBN3ZWJsb2dpbi50ZXN0LnV1 +LnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0IVKOwzztzBHho99 +3f30KUTepy2rO3rbZCjrLRKmFwXE2+1jXN5Ox6xvwcJxgt4UYMkyu2bEBV2fhJgc +nKYZ79jn/LRY6SuqII+IjDPluAbJJpWDkjMkE4gaWjgGa6+Smc083cKeDYor3qH3 +crvFPyOHAh8G7NedEvx/n6Q/lgkwcYzVNTH3lObA+IkpCmfwgrWklZZuFruItbR8 +WpNcdV2ZVb85IPSiFRNUAM2YmlXoF82hcwowNQXwORF4QVzj/KaB/LTp/ptVL4Fp +YJseNRuGk8ZFbDFRUzzIt4l62AYJwUJ1ELoKtI9nR2VTrcAg1XML2EN8SypcWvmu +es4cfQIDAQABo20wazAdBgNVHQ4EFgQUrFYCH0GaHu1iWwdjpRXQZ6nUi/gwSgYD +VR0RBEMwQYITd2VibG9naW4udGVzdC51dS5zZYYqaHR0cHM6Ly93ZWJsb2dpbi50 +ZXN0LnV1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQBkE+0t +2NdsLrAFltZxcaR8fBcgH6Ps4qY4jCAHcXtvj/XZ6oW6R/8V7LLRMhhfkkwEVfwP +dxGQzFzjn+XdFEKf1AF4d7kma6GnCAexYUggEDnc3RHlE33MvZHhMUa+qgidb5Nc +z0XSLb/uZVeguusT0lBnVj/4ZChA4nd/JIkTP75XMKJ51b+TS9+i5sQLPVR4D/+e +pFe422nJTV+yciVwKsuHmu3br2DEtgSSFWGilvGDdlfBAYtUDKG1DL2AVdI3ikZa +kCyta/hzhS30XO24ZrWeaPKGQri48PsZufzaHcjcVw8IRY8HI226xFya7F8AbGZQ +qK8gNoxLpQOHlY2i + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="signing"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDNzCCAh+gAwIBAgIUcIyPpnhtGppaMvJ1n+26SdVOQRkwDQYJKoZIhvcNAQEL +BQAwHjEcMBoGA1UEAwwTd2VibG9naW4udGVzdC51dS5zZTAeFw0xNjAyMDgxMzAw +NTFaFw0zNjAyMDgxMzAwNTFaMB4xHDAaBgNVBAMME3dlYmxvZ2luLnRlc3QudXUu +c2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMszKAiwTx/7loe8kP +nDObgCx1N3RgE4X5Eau8e+cPXIeUZGO7MFidEH5jWV0/ZYAUQN+dy+pSpstyZ3MX +pW7XkJi9t4ttj8CtFa3sZTrzjsrIiOcmFqHYoKzzZ6b0EKdFyGKORNE5flHrVpUG +6P709YzxpzMLLEcESpmQwtpm/ILxBM4IPhkvOk6f8v0QbZYC4jo0BTHWgdVgyju9 +CzozhQcCuCU4UVwNgen2P+kIFoXiQybUE/yxgBih7bHFto5Mn5oBsE3mOLe0wHA5 +nL6ZLR8Atzi8nC8YOsV3UB86BIoYWgHBJKPRg2z6UhCgbMJxMfCXtYAGxUM7kTKi +7kJ9AgMBAAGjbTBrMB0GA1UdDgQWBBR5vMupHMEppHPF0vcF7zsykH9LujBKBgNV +HREEQzBBghN3ZWJsb2dpbi50ZXN0LnV1LnNlhipodHRwczovL3dlYmxvZ2luLnRl +c3QudXUuc2UvaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBABY3Iinr +k2pjQFB9VhWb0g/nS2NCU0ipnPmHNEBIXIHhwBe1W3QT2tEcSuF2K4G50v5tjUnY +DfLVqbWtEfwUG0dz25K5Me4S2Zm6AIITYulVv6j0fdIAiLgDwj/Hpg3fvZtbVtkb +QHOEryJY6wvvI/zwpyOSkOSTt3qFQ3ZnS40wCs34wP/Hj6cHtkrl2OF0XA5M6yU4 +1kAk9gpaiX2Rhapn4W9V3p6CgpXthk+b8nwQeZ22KeG3ompceHJ/+nmS8G63pq56 +efRdH5xJNjTPu6mVHW9W+lW83i7mGlmMJAgl+qjTECSKXe9LcyYMsy6IphbVsDbX +zMHQwjf5evdJ6lo= + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:KeyDescriptor use="encryption"> + <ds:KeyInfo> + <ds:X509Data> + <ds:X509Certificate> +MIIDODCCAiCgAwIBAgIVAKxjuWw/YZpjuyfHWcbrDOP8tYnkMA0GCSqGSIb3DQEB +CwUAMB4xHDAaBgNVBAMME3dlYmxvZ2luLnRlc3QudXUuc2UwHhcNMTYwMjA4MTMw +MDU0WhcNMzYwMjA4MTMwMDU0WjAeMRwwGgYDVQQDDBN3ZWJsb2dpbi50ZXN0LnV1 +LnNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiF3dhy69bCTFrcPd +MOKrp8e8XH5jld7KhPAplQQHg79oAzAE/1tn6a8pD0ZqTVqBXTeZKyvKwICa2kbw +ZcqBQfyqI7IWmgc2u+PWal0JXod5oDXQ1Uw/6xq5InTuoIlNLIpKolaJtr1cANRg +acTrgIrV1B3cM9PbkcP6EuQpxenWT0fvh3kxesZraBTyy/LBhPZgqsKRcyTX8dOk +yKLY+bfUCXidlI2juymQ7x0kenDF09B8khRkYr4rmV14wULzWVHfsT9wQEJvlIbx +ajz5DCqX6wB/a8ik77GdLJP7h7BkStd4+kJ2aCdnsn4qvhXwCCC0oz1um0rNpP1g +xcxEXQIDAQABo20wazAdBgNVHQ4EFgQUK2d6JMehLr6T8WAM1I9i+rz9Wh0wSgYD +VR0RBEMwQYITd2VibG9naW4udGVzdC51dS5zZYYqaHR0cHM6Ly93ZWJsb2dpbi50 +ZXN0LnV1LnNlL2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQA18KzE +t7EuR1DEmAKtqndUPWuKnds2qhur2HRyETgdXh3qfczvgZLnnhNXI0c/M54CYJb+ +7Tc0f5Pv1cV0GmKkfRadEzc0qSiFrn1t/GhRTakzRprh3JxtT++ZstJzf2/nD1PK +Oktly7qvWX0Qrh0yYfHJaI/WPVxH4jI/1jDwa9Am/jJbOW/uy6s14zjXswi1ZKd0 +EPzW8pfIR9H1gDAU5hoLuGjWF7NIqmRCfYE6n9/oEZfET1dG3zUpBG2EacmZDv8o +CIpvN4bSlO9wP5fnymBLt+DxfMdmN973aeU529su8I3uj3Q4qaDBk8zGTKFx82Ae +dqPteAxhBzLEflg+ + </ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + </md:KeyDescriptor> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://weblogin.test.uu.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> + <md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://weblogin.test.uu.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> + <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> + <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> + </md:AttributeAuthorityDescriptor> + <md:Organization> + <md:OrganizationName xml:lang="sv">Uppsala universitet</md:OrganizationName> + <md:OrganizationName xml:lang="en">Uppsala University</md:OrganizationName> + <md:OrganizationDisplayName xml:lang="sv">Uppsala universitet TEST</md:OrganizationDisplayName> + <md:OrganizationDisplayName xml:lang="en">Uppsala University TEST</md:OrganizationDisplayName> + <md:OrganizationURL xml:lang="sv">http://www.uu.se/</md:OrganizationURL> + <md:OrganizationURL xml:lang="en">http://www.uu.se/en/</md:OrganizationURL> + </md:Organization> + <md:ContactPerson contactType="administrative"> + <md:Company>Uppsala universitet</md:Company> + <md:GivenName>Operations</md:GivenName> + <md:EmailAddress>mailto:drift@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="technical"> + <md:Company>Uppsala universitet</md:Company> + <md:GivenName>Operations</md:GivenName> + <md:EmailAddress>mailto:drift@uadm.uu.se</md:EmailAddress> + </md:ContactPerson> + <md:ContactPerson contactType="support"> + <md:Company>Uppsala universitet</md:Company> + <md:GivenName>IT Support</md:GivenName> + <md:EmailAddress>mailto:itsupport@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4714400</md:TelephoneNumber> + </md:ContactPerson> + <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security"> + <md:GivenName>Uppsala University Computer Security Incident Response Team</md:GivenName> + <md:EmailAddress>mailto:security@uu.se</md:EmailAddress> + <md:TelephoneNumber>+46-18-4717560</md:TelephoneNumber> + </md:ContactPerson> +</md:EntityDescriptor> diff --git a/swamid-testing/wl07089.sigma.local-shibboleth.xml b/swamid-testing/wl07089.sigma.local-shibboleth.xml new file mode 100644 index 00000000..c2e8f743 --- /dev/null +++ b/swamid-testing/wl07089.sigma.local-shibboleth.xml @@ -0,0 +1,75 @@ +<?xml version="1.0" encoding="UTF-8"?> +<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://wl07089.sigma.local/shibboleth"> + <md:Extensions> + <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2014-04-03T09:19:23Z"> + <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> + </mdrpi:RegistrationInfo> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> + <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> + <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> + </md:Extensions> + <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol"> + <md:Extensions> + <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="http://wl07089.sigma.local/Shibboleth.sso/Login"/> + <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="http://wl07089.sigma.local/Shibboleth.sso/Login" index="1"/> + </md:Extensions> + <md:KeyDescriptor> + <ds:KeyInfo> + <ds:KeyName>wl07089.sigma.local</ds:KeyName> + <ds:X509Data> + <ds:X509SubjectName>CN=wl07089.sigma.local</ds:X509SubjectName> + <ds:X509Certificate>MIIDADCCAeigAwIBAgIJALepnD5Ui80lMA0GCSqGSIb3DQEBBQUAMB4xHDAaBgNV +BAMTE3dsMDcwODkuc2lnbWEubG9jYWwwHhcNMTQwNDAyMDgyMzM5WhcNMjQwMzMw +MDgyMzM5WjAeMRwwGgYDVQQDExN3bDA3MDg5LnNpZ21hLmxvY2FsMIIBIjANBgkq +hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDLOtt0s0jQOv5rp1haep1OgR0ZVOz4W +4cT8ohIJRzLKcz750kJVSf2F2tqgNAkKUsVgyutTZCOrFgs+xHrKmkogo8j7Dnfy +gI6hinQnutijsceWLglY2Mt57CV4XstdBuO9k+suQw+RLiXymfW1qWkUeEEtPpP1 +N5YwE5DDBPuuvzM/Tq/JivaSpOdnbDJkWuNFYcekhWPmfB/wJRPUQgnhaKXOsU9l +TtbFZAF+y0iOtpxSFC5rLlotN1L1gA0d9OvLDVjxFVSmKLTBtJbL0H6kpxGbgcev +5TxOWHq9AB0nIeFjN5rFuNN+NKxryOtUJN0Xi6p4rPi/vaoLlQeN5QIDAQABo0Ew +PzAeBgNVHREEFzAVghN3bDA3MDg5LnNpZ21hLmxvY2FsMB0GA1UdDgQWBBTLjA0/ +pU+uBCzjb9SCJpq733OQezANBgkqhkiG9w0BAQUFAAOCAQEAc/j53vQlfVYgY+XQ +5LrkmOCmuyjqVzrx+XvDrVxwolQGUw9wviuVtTx0dp+Lq4jhZ5eTt4A28VZxrE8n +DTAWz8d+QkRdt+kuFUeLqAB26jG4avIsiCmRwdi+ee0d/48vO8CMlgzcRRsevX3z +mQ9cCSKO4nnymdFFIIH5bDtUi3f/dFPj8+HGYwiI3YpC65N/ItU9B0GKJXtuyMNl +gwlAlgjWaP/QuiyxqXwhrP3u1F7OVh+mDo+QfwoqkVBd35XMe840E+HzQrji7dTa +I73xyA+mtnSNj4YOabB3nZ/MEhHaU3Ng/Pwv36Oy25XeBRSHiSLNzASWTF3vJrUQ +u4Wbjw== +</ds:X509Certificate> + </ds:X509Data> + </ds:KeyInfo> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/> + <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/> + </md:KeyDescriptor> + <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://wl07089.sigma.local/Shibboleth.sso/Artifact/SOAP" index="1"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://wl07089.sigma.local/Shibboleth.sso/SLO/SOAP"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://wl07089.sigma.local/Shibboleth.sso/SLO/Redirect"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://wl07089.sigma.local/Shibboleth.sso/SLO/POST"/> + <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="http://wl07089.sigma.local/Shibboleth.sso/SLO/Artifact"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://wl07089.sigma.local/Shibboleth.sso/SAML2/POST" index="1"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="http://wl07089.sigma.local/Shibboleth.sso/SAML2/Artifact" index="2"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="http://wl07089.sigma.local/Shibboleth.sso/SAML2/ECP" index="3"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="http://wl07089.sigma.local/Shibboleth.sso/SAML/POST" index="4"/> + <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="http://wl07089.sigma.local/Shibboleth.sso/SAML/Artifact" index="5"/> + </md:SPSSODescriptor> +</md:EntityDescriptor> |