<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://idp.it.su.se/idp/shibboleth">
  <md:Extensions>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
      <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="urn:oasis:names:tc:SAML:attribute:assurance-certification">
        <samla:AttributeValue>http://www.swamid.se/policy/assurance/al1</samla:AttributeValue>
        <samla:AttributeValue>http://www.swamid.se/policy/assurance/al2</samla:AttributeValue>
        <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue>
      </samla:Attribute>
      <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category-support">
        <saml:AttributeValue>http://refeds.org/category/research-and-scholarship</saml:AttributeValue>
        <saml:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</saml:AttributeValue>
      </saml:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <IDPSSODescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&amp;errorurl_ts=ERRORURL_TS&amp;errorurl_rp=ERRORURL_RP&amp;errorurl_tid=ERRORURL_TID&amp;errorurl_ctx=ERRORURL_CTX&amp;entityid=https://idp.it.su.se/idp/shibboleth">
    <Extensions>
      <shibmd:Scope regexp="false">su.se</shibmd:Scope>
      <mdui:UIInfo>
        <mdui:DisplayName xml:lang="sv">Stockholms universitet</mdui:DisplayName>
        <mdui:DisplayName xml:lang="en">Stockholm University</mdui:DisplayName>
        <mdui:Description xml:lang="sv">Identity Provider för medarbetare och studenter vid Stockholms universitet.</mdui:Description>
        <mdui:Description xml:lang="en">The Stockholm university Identity Provider is used by employees and students at the university.</mdui:Description>
        <mdui:InformationURL xml:lang="sv">http://www.su.se</mdui:InformationURL>
        <mdui:InformationURL xml:lang="en">http://www.su.se/english/</mdui:InformationURL>
        <mdui:Logo xml:lang="sv" height="110" width="127">https://idp.it.su.se/idp/img/su-logo-sv_OLD.gif</mdui:Logo>
        <mdui:Logo xml:lang="en" height="110" width="127">https://idp.it.su.se/idp/img/su-logo-en_OLD.gif</mdui:Logo>
        <mdui:PrivacyStatementURL xml:lang="sv">https://www.su.se/medarbetare/it/it-tj%C3%A4nster/universitetskonto/policy-f%C3%B6r-hantering-av-personuppgifter-inom-ramen-f%C3%B6r-identitetsutgivaren-identity-provider-idp-1.383506</mdui:PrivacyStatementURL>
        <mdui:PrivacyStatementURL xml:lang="en">https://www.su.se/english/staff/it/it-services/policy-for-the-management-of-personal-information-within-the-scope-of-the-identity-provider-idp-1.384218</mdui:PrivacyStatementURL>
      </mdui:UIInfo>
      <mdui:DiscoHints>
        <mdui:DomainHint>su.se</mdui:DomainHint>
        <mdui:GeolocationHint>geo:59.3625,18.0586</mdui:GeolocationHint>
      </mdui:DiscoHints>
    </Extensions>
    <KeyDescriptor>
      <ds:KeyInfo>
        <ds:X509Data>
          <ds:X509Certificate>
            MIID9zCCAl+gAwIBAgIVAKM4svIX/6tsrDcGeAmq/Nkr4crjMA0GCSqGSIb3DQEB
            CwUAMBcxFTATBgNVBAMMDGlkcC5pdC5zdS5zZTAeFw0yMDEwMTIwNzU3MDJaFw00
            MDEwMTIwNzU3MDJaMBcxFTATBgNVBAMMDGlkcC5pdC5zdS5zZTCCAaIwDQYJKoZI
            hvcNAQEBBQADggGPADCCAYoCggGBAJpPutZsaDJ73u6GPGf5G0TDsd5M6GoVxgGf
            6IpIZHieYlzahYevo2vSHSNTQpDx2ZYKmw27Ca+LQxydd0ma4CPUeneU0yEXi149
            VC7pk/sX8aRvkDJJeiCpGE41rHlH3NSkiV8AtyRyfseXOhb2AK/590FW0aL/Gl9U
            h9mUzBg9eTTxVDYV6snkRMa/SCvwq2hekWTIMNNgt2WgeRrk9xMrqpJte5go9Fxp
            jCuSRzotFE+iwKqNguuad/iwKc8ZvNl+dvJdyQmyXmdyCP6wbSvdXTsJyYF76ghk
            J3eDLh/HwIt8rcmVAtpYgA0UX3ciTM8PCbZurliFsO7mNtZgOeJ4gm9jZe5n6z1G
            8hDo4TIvBVAFnr7n1OlxiGApLWxegRducZxpshj30LY7lOPK+4eCA+Hz4vpYUCT+
            R+k7N9L/Cc/fcpNboUcAwYD7ke/cqDmAojv+EHHt5OU6tyYAJRF2JZT5aPb+UKzB
            2jru4U+Iqiviggr3KFwvB+pClhW9twIDAQABozowODAdBgNVHQ4EFgQU3lJF+xEf
            2/DFkKZnWjlRk9EceR8wFwYDVR0RBBAwDoIMaWRwLml0LnN1LnNlMA0GCSqGSIb3
            DQEBCwUAA4IBgQAm7MM8AXIccG+SzqlffhU8GamA8wlPWl69MW4IMp+Zn7OJLcqb
            27lmdUkvB5G34qhx6G6uZnVsTbRz3iwIRcgcxZiWR7qysA+TeLRig5lBC5dBpg3u
            nJHyc0XQID0uUFfqzbZGh4RR9lPTSQUsY8iW8iFFZZgm6OjMEDe+Sagd6qYWzEfL
            s8dHUZDFDANDaEO3r5RpemWao+HKfV2lGGOVuGOxbpYjPDMoGaqRtj602V+c9Nkn
            zkmGE+pnixajYLUfdpCEvt3Dzu3W+bfCLuaFrTyJVdMOE8Yct+yVVa4XReXTc7mI
            fgLoKtCpgIDrbVBzE5bQD9akyLK+tIQ9kQi/mztxgZNuqhbbM+MSLdC3wM8QVdST
            gUSSJNbLAroudxag0BV1pQ65f/4Qc5M2/HEdXIE5Z3s4eLLTGtY3ZYg6O8m7SYHC
            shXBFChTPUxfTKsYjO/DtlKirk/P6L8F01oVILeafbgCchpZJmYL4AxaJHcCkHvd
            9eRXsPMTPDnMY7c=
          </ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </KeyDescriptor>
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
    <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</NameIDFormat>
    <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.it.su.se/idp/profile/SAML2/POST/SSO"/>
    <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.it.su.se/idp/profile/SAML2/Redirect/SSO"/>
  </IDPSSODescriptor>
  <Organization xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
    <OrganizationName xml:lang="en">SU</OrganizationName>
    <OrganizationDisplayName xml:lang="sv">Stockholms universitet</OrganizationDisplayName>
    <OrganizationDisplayName xml:lang="en">Stockholm University</OrganizationDisplayName>
    <OrganizationURL xml:lang="en">http://www.su.se</OrganizationURL>
  </Organization>
  <ContactPerson xmlns="urn:oasis:names:tc:SAML:2.0:metadata" contactType="administrative">
    <Company>Stockholm University</Company>
    <SurName>Helpdesk</SurName>
    <EmailAddress>mailto:helpdesk@su.se</EmailAddress>
    <TelephoneNumber>+46 8 16 1999</TelephoneNumber>
  </ContactPerson>
  <ContactPerson xmlns="urn:oasis:names:tc:SAML:2.0:metadata" contactType="technical">
    <Company>Stockholm University</Company>
    <SurName>Helpdesk</SurName>
    <EmailAddress>mailto:helpdesk@su.se</EmailAddress>
    <TelephoneNumber>+46 8 16 1999</TelephoneNumber>
  </ContactPerson>
  <ContactPerson xmlns="urn:oasis:names:tc:SAML:2.0:metadata" contactType="support">
    <Company>Stockholm University</Company>
    <SurName>Helpdesk</SurName>
    <EmailAddress>mailto:helpdesk@su.se</EmailAddress>
    <TelephoneNumber>+46 8 16 1999</TelephoneNumber>
  </ContactPerson>
  <ContactPerson xmlns:remd="http://refeds.org/metadata" xmlns="urn:oasis:names:tc:SAML:2.0:metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
    <GivenName>Incident Response Team</GivenName>
    <EmailAddress>mailto:irt@su.se</EmailAddress>
  </ContactPerson>
</md:EntityDescriptor>