<?xml version="1.0" encoding="UTF-8"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://solid-proxy.sunet.se/sp/metadata.xml"> <md:Extensions> <mdattr:EntityAttributes> <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue> </samla:Attribute> </mdattr:EntityAttributes> <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#md5"/> <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#ripemd160"/> <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/> <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/> <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/> <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/> <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/> <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-md5"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160"/> <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha224"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/> <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/> <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-02-18T08:30:19Z"> <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy> </mdrpi:RegistrationInfo> </md:Extensions> <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="false" WantAssertionsSigned="false"> <md:Extensions> <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://solid-proxy.sunet.se/sp/disco" index="1"/> <mdui:UIInfo> <mdui:DisplayName xml:lang="en">Solid gateway (Test)</mdui:DisplayName> <mdui:DisplayName xml:lang="sv">Solid gateway (Test)</mdui:DisplayName> <mdui:Description xml:lang="en">Solid-OIDC-SAML bridge</mdui:Description> <mdui:Description xml:lang="sv">Solid-OIDC-SAML bridge</mdui:Description> <mdui:Logo height="720" width="600" xml:lang="en">https://solid-proxy.sunet.se/static/logo.png</mdui:Logo> <mdui:Logo height="720" width="600" xml:lang="sv">https://solid-proxy.sunet.se/static/logo.png</mdui:Logo> <mdui:InformationURL xml:lang="en">https://solid-proxy.sunet.se/index.html</mdui:InformationURL> <mdui:InformationURL xml:lang="sv">https://solid-proxy.sunet.se/index.html</mdui:InformationURL> <mdui:PrivacyStatementURL xml:lang="en">https://solid-proxy.sunet.se/privacy.html</mdui:PrivacyStatementURL> <mdui:PrivacyStatementURL xml:lang="sv">https://solid-proxy.sunet.se/privacy.html</mdui:PrivacyStatementURL> </mdui:UIInfo> </md:Extensions> <md:KeyDescriptor use="signing"> <ds:KeyInfo> <ds:X509Data> <ds:X509Certificate>MIIFazCCA1OgAwIBAgIUMafL5ktR8YfWJNZhBFlVxtBLLDkwDQYJKoZIhvcNAQEL BQAwRTELMAkGA1UEBhMCU0UxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM GEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDAeFw0yMjAyMTYyMTE3MTNaFw0yMzAy MTYyMTE3MTNaMEUxCzAJBgNVBAYTAlNFMRMwEQYDVQQIDApTb21lLVN0YXRlMSEw HwYDVQQKDBhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDOZWjlo5NKgucCIE693bjS5WdJ+h79iRC1cMteLPXF wQ5NGZNXRcCwwoy8mjxih1zl76MLlXh3zY3Hzj+W3C1mPquJIhFzawP1OyH9lBwR V7xGndLKd02FztYK2ihsvtlXmaJed+nusmtWVThDGxT7o+d1PMozplqK8xYdUBsy JMxI1Pb7ufi4nJcVeSoq/DA0hGj54QLmxFYb30V4H4Odjj3g0kNRgcioEslR0Z/e a82aiJYtg5HXEou4hB4ahtnzpbXZKHcVGQe0hgbiCo3bYrBt+PBSY8J10vLMnZwa vL/XwIHn5izefpd7Tt6rox0JTYE+Zkj6NswSGXXNSB6n1Dzq6opUueD01ehanN5B p5q9BbdtPtczGpiRlFXd+G2iKMlOFmjX7VH9slGxdktSR/zfhshH4MiSrTyLH9hc jAitJp+HQdV/HQRdE+H5vIrbyc2iqCkB4ZBpYa8E/qbQvjWi5XL+xvjuY7iAOGjg PgY0ITCeRAjOq4EHnc3+J9owKR+LCgRFLKpSQ5j7bG62J7383HYf0t3Z07ywZm9A kyLdRE2d8IPVbWUjKCqwGnKCXL/6iSw3P8leQEt3/yoHmuB8yU+uXT8TbCvKj4hX AY4txhPumIaorCNPkOpapxNFmluquSmYQ8OJbvi2+LgPCAucmaOqR1c8vw6MZs+y zQIDAQABo1MwUTAdBgNVHQ4EFgQU6KoUPJOUATkXTREWeUgEB74Ax5QwHwYDVR0j BBgwFoAU6KoUPJOUATkXTREWeUgEB74Ax5QwDwYDVR0TAQH/BAUwAwEB/zANBgkq hkiG9w0BAQsFAAOCAgEAKfG3XWBVZKQNGWDl7RMZVZ3T5GRrZwUY5hYDUErv9stg czbxCx60AJprDnDx0NapM0HNL5l5MQwyFBdCxQwHb3ov2h95mdriK3mGcMowj6aD jnQqpJNxNdCZfCQSzNDU+UeS21Y94bB0n8NNUAYnV7hbNt700wQutXQjAF2+uiha a/MJPS2bQddv4s/TlBBJuvYciHoW6rsCQ7ck9txoSKokiYFeHKfiHlpiAGzwjesL f1XBtAoR9RuS4dZHWVJq0lqPrvUpIXXx0AMqPFKs4hmWaJdSnBiwmP/YsnLBMOvt xJO+hmkWvgeTBxW1ud4lDk+07L/qj3GrRsDLy+CvJeejcIHXxJfPJ5KhGBGB6kn8 8nQLoejxap4QHgk4ufNjRWt+28KHqjYxFZ59cekxShUmLyI6ltkSYox09gDi4GuE XEWfwm8URbMfmpklvKO8acNMYJ9/egdq5deOBSFP1ISO0PHiGHOr8z1RDYCuDUs0 GYVbr6HJafxif4re10RcU62gTR28dmXEkb7G+EZ8bSNcWsjTWVAIzeoc/HndWSQt 2+xxet8TPQk6fJVZOKdJHLELAEPhwQnC+zXOUStw788Z2g/ohl2h3qL/igOsW0iH X9Si322m4vRUWYrPfkaXn9epfllq5Y7cP6itbTb8kgx0rTSz1XAIZnH4nAsTpbI= </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo> <ds:X509Data> <ds:X509Certificate>MIIFazCCA1OgAwIBAgIUMafL5ktR8YfWJNZhBFlVxtBLLDkwDQYJKoZIhvcNAQEL BQAwRTELMAkGA1UEBhMCU0UxEzARBgNVBAgMClNvbWUtU3RhdGUxITAfBgNVBAoM GEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDAeFw0yMjAyMTYyMTE3MTNaFw0yMzAy MTYyMTE3MTNaMEUxCzAJBgNVBAYTAlNFMRMwEQYDVQQIDApTb21lLVN0YXRlMSEw HwYDVQQKDBhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDOZWjlo5NKgucCIE693bjS5WdJ+h79iRC1cMteLPXF wQ5NGZNXRcCwwoy8mjxih1zl76MLlXh3zY3Hzj+W3C1mPquJIhFzawP1OyH9lBwR V7xGndLKd02FztYK2ihsvtlXmaJed+nusmtWVThDGxT7o+d1PMozplqK8xYdUBsy JMxI1Pb7ufi4nJcVeSoq/DA0hGj54QLmxFYb30V4H4Odjj3g0kNRgcioEslR0Z/e a82aiJYtg5HXEou4hB4ahtnzpbXZKHcVGQe0hgbiCo3bYrBt+PBSY8J10vLMnZwa vL/XwIHn5izefpd7Tt6rox0JTYE+Zkj6NswSGXXNSB6n1Dzq6opUueD01ehanN5B p5q9BbdtPtczGpiRlFXd+G2iKMlOFmjX7VH9slGxdktSR/zfhshH4MiSrTyLH9hc jAitJp+HQdV/HQRdE+H5vIrbyc2iqCkB4ZBpYa8E/qbQvjWi5XL+xvjuY7iAOGjg PgY0ITCeRAjOq4EHnc3+J9owKR+LCgRFLKpSQ5j7bG62J7383HYf0t3Z07ywZm9A kyLdRE2d8IPVbWUjKCqwGnKCXL/6iSw3P8leQEt3/yoHmuB8yU+uXT8TbCvKj4hX AY4txhPumIaorCNPkOpapxNFmluquSmYQ8OJbvi2+LgPCAucmaOqR1c8vw6MZs+y zQIDAQABo1MwUTAdBgNVHQ4EFgQU6KoUPJOUATkXTREWeUgEB74Ax5QwHwYDVR0j BBgwFoAU6KoUPJOUATkXTREWeUgEB74Ax5QwDwYDVR0TAQH/BAUwAwEB/zANBgkq hkiG9w0BAQsFAAOCAgEAKfG3XWBVZKQNGWDl7RMZVZ3T5GRrZwUY5hYDUErv9stg czbxCx60AJprDnDx0NapM0HNL5l5MQwyFBdCxQwHb3ov2h95mdriK3mGcMowj6aD jnQqpJNxNdCZfCQSzNDU+UeS21Y94bB0n8NNUAYnV7hbNt700wQutXQjAF2+uiha a/MJPS2bQddv4s/TlBBJuvYciHoW6rsCQ7ck9txoSKokiYFeHKfiHlpiAGzwjesL f1XBtAoR9RuS4dZHWVJq0lqPrvUpIXXx0AMqPFKs4hmWaJdSnBiwmP/YsnLBMOvt xJO+hmkWvgeTBxW1ud4lDk+07L/qj3GrRsDLy+CvJeejcIHXxJfPJ5KhGBGB6kn8 8nQLoejxap4QHgk4ufNjRWt+28KHqjYxFZ59cekxShUmLyI6ltkSYox09gDi4GuE XEWfwm8URbMfmpklvKO8acNMYJ9/egdq5deOBSFP1ISO0PHiGHOr8z1RDYCuDUs0 GYVbr6HJafxif4re10RcU62gTR28dmXEkb7G+EZ8bSNcWsjTWVAIzeoc/HndWSQt 2+xxet8TPQk6fJVZOKdJHLELAEPhwQnC+zXOUStw788Z2g/ohl2h3qL/igOsW0iH X9Si322m4vRUWYrPfkaXn9epfllq5Y7cP6itbTb8kgx0rTSz1XAIZnH4nAsTpbI= </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://solid-proxy.sunet.se/sp/acs/post" index="1"/> <md:AttributeConsumingService index="1"> <md:ServiceName xml:lang="en">Solid-OIDC-SAML bridge</md:ServiceName> <md:ServiceName xml:lang="sv">Solid-OIDC-SAML bridge</md:ServiceName> <md:RequestedAttribute Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="cn" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonScopedAffiliation" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonTargetedID" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonEntitlement" isRequired="true"/> <md:RequestedAttribute Name="urn:oasis:names:tc:SAML:attribute:subject-id" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="subject-id" isRequired="true"/> <md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonAssurance" isRequired="true"/> </md:AttributeConsumingService> </md:SPSSODescriptor> <md:Organization> <md:OrganizationName xml:lang="en">The Swedish Research Council</md:OrganizationName> <md:OrganizationName xml:lang="sv">Vetenskapsrådet</md:OrganizationName> <md:OrganizationDisplayName xml:lang="en">Sunet</md:OrganizationDisplayName> <md:OrganizationDisplayName xml:lang="sv">Sunet</md:OrganizationDisplayName> <md:OrganizationURL xml:lang="en">https://sunet.se</md:OrganizationURL> <md:OrganizationURL xml:lang="sv">https://sunet.se</md:OrganizationURL> </md:Organization> <md:ContactPerson contactType="administrative"> <md:GivenName>Administrative</md:GivenName> <md:EmailAddress>mailto:ivan@sunet.se</md:EmailAddress> </md:ContactPerson> <md:ContactPerson contactType="technical"> <md:GivenName>Technical</md:GivenName> <md:EmailAddress>mailto:ivan@sunet.se</md:EmailAddress> </md:ContactPerson> <md:ContactPerson contactType="support"> <md:GivenName>Support</md:GivenName> <md:EmailAddress>mailto:ivan@sunet.se</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>