<?xml version="1.0" encoding="UTF-8"?> <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://idp.gli.cas.cz/idp/shibboleth"> <md:Extensions> <eduidmd:RepublishRequest xmlns:eduidmd="http://eduid.cz/schema/metadata/1.0"> <eduidmd:RepublishTarget>http://edugain.org/</eduidmd:RepublishTarget> </eduidmd:RepublishRequest> <mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://www.eduid.cz/" registrationInstant="2014-04-09T14:17:34Z"> <mdrpi:RegistrationPolicy xml:lang="en">http://www.eduid.cz/wiki/_media/en/eduid/policy/policy_eduid_en-1_1.pdf</mdrpi:RegistrationPolicy> <mdrpi:RegistrationPolicy xml:lang="cs">http://www.eduid.cz/wiki/_media/eduid/policy/policy_eduid_cz-1_1-3.pdf</mdrpi:RegistrationPolicy> </mdrpi:RegistrationInfo> <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"> <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> <saml:AttributeValue>http://eduid.cz/uri/idp-group/avcr</saml:AttributeValue> </saml:Attribute> </mdattr:EntityAttributes> </md:Extensions> <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0"> <md:Extensions> <shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">gli.cas.cz</shibmd:Scope> <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"> <mdui:DisplayName xml:lang="en">Institute of Geology AS CR</mdui:DisplayName> <mdui:DisplayName xml:lang="cs">Geologický ústav AV ČR</mdui:DisplayName> <mdui:Description xml:lang="en">Identity Provider GLI AV CR employees.</mdui:Description> <mdui:Description xml:lang="cs">Identity Provider pro zaměstnance GLÚ AV ČR</mdui:Description> <mdui:InformationURL xml:lang="en">http://www.gli.cas.cz/en</mdui:InformationURL> <mdui:InformationURL xml:lang="cs">http://www.gli.cas.cz/cs</mdui:InformationURL> <mdui:Logo height="44" width="74">https://gedeon.cas.cz/loga/logo-gli-44.png</mdui:Logo> <mdui:Logo height="411" width="960">https://gedeon.cas.cz/loga/logo-gli-633.png</mdui:Logo> </mdui:UIInfo> </md:Extensions> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate> MIIDJDCCAgygAwIBAgIVAJKSAwXePVHrFEtnrTZ+4UxQdRZDMA0GCSqGSIb3DQEB CwUAMBkxFzAVBgNVBAMMDmlkcC5nbGkuY2FzLmN6MB4XDTE2MTAxMDE0MTQxNVoX DTM2MTAxMDE0MTQxNVowGTEXMBUGA1UEAwwOaWRwLmdsaS5jYXMuY3owggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT/vds+/7AJWmiod3Infr/5xSXUCWe k8TsQZFalak06LVEpTL1l4LuFPORMsxsrXr61zW7HqiCm3csWYC+6O65HYpU8dhr QgHIJ5i8iulp/CtY0xCmBPL558GBulAGJksLjoD2Yuzpc5+tcd1JrMjGX3Hra7ON iH8eDSfaQblMdhI/92OHLl8L0EzO2nbpGyJpfwoEP29yr5MoYWVvxmD9wy6ujBCJ rNLejIN/SmpkVc6QC6geDsyiocJZIPGkmB32IC6Ahb2KheVZmOm+fEYS1XFBSiav MTbvPtK99awnRbnY1uvi4zNdnDwxw7DH2w24cUV1uMEfa+Y9nxhjkipLAgMBAAGj YzBhMB0GA1UdDgQWBBTF7J15pagJpypF6Mu08Sc6yIrSmTBABgNVHREEOTA3gg5p ZHAuZ2xpLmNhcy5jeoYlaHR0cHM6Ly9pZHAuZ2xpLmNhcy5jei9pZHAvc2hpYmJv bGV0aDANBgkqhkiG9w0BAQsFAAOCAQEAiSNbXym/GtB4GFWzFd9x9uz1KiS7HY6Y f5Bw/UQ1LZaQvhzMpdkFZVBj9lNRhjSDQPOXCipNA7YaZGlXkG6z9nrTmZvK0rrX v81mAtldX+l9QcJqXNY0YC4PTvqjSLc2jPTEyy6F1rb5QxxHc6yAY1SEZwBAZSDc ZlGC4gAwiuN2B4eb1udZCmDYmKjCNmPP94muqs3bMWtOvLBf8ljJX06sSarOtHgF fWM6O2MjccukfLza5ACjFMLHzTeBBwzMZ1csdXU1f9P7GgWCMkrEAQMRvQCu6+p8 dxbUVZmsWMLn1wCS1jvWKRhNuchXQxu4e+QIslEqi7MZaANgPMsTwA== </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate> MIIDIzCCAgugAwIBAgIUO+/Rivnvdgnk9HcM7hoPisnlJ08wDQYJKoZIhvcNAQEL BQAwGTEXMBUGA1UEAwwOaWRwLmdsaS5jYXMuY3owHhcNMTYxMDEwMTQxNDE0WhcN MzYxMDEwMTQxNDE0WjAZMRcwFQYDVQQDDA5pZHAuZ2xpLmNhcy5jejCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALfmXxgRqnyDcOic1779AuL/UXEK6vdo W5gnqUrqxGLvQ/B1qquPx4gRfJy0mKGZDOK5nOMqdAc06uttJsuVo4A9bfM4z2FG VOVHX5+YoSgpLkrfSVtnmGohyt+k2xvJCCj5oK03owT7j6jPL9KXcqT7EwvomFVY 2qYG489zVxv0W4RQNkGVCZ+8SjjOHLNBbAPG/XCtg8g7k9keN9pk5xSVevrExOZP t7WFxbntGxUr0mbbh0q62eOwxOblw7bxeyCdVAyuyWu8M8gcfUcqrGYaFrCATwFi kn7DxNTo6LhDsOCCYzMd4kJqFVJ8U+6k3fBnEEygwDw+f8ZD+HN8CQECAwEAAaNj MGEwHQYDVR0OBBYEFGi5basBSBDCaCVMrNBz6UUIms9sMEAGA1UdEQQ5MDeCDmlk cC5nbGkuY2FzLmN6hiVodHRwczovL2lkcC5nbGkuY2FzLmN6L2lkcC9zaGliYm9s ZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQAHOfxFlx8Mg7qFdXQH0/VAexX/6soEeZs/ w1tYfs2a0x1WwSN/LH3cE9l7TalHhS1c9qxKUH6rHNdqN+WiLhNCpKC8p7fLOF4j XXKHNZOVl/sDLUKHfMl3ebCT9KK2lhVsV7YHd0agqW+Z6Xy64zXyGIW8Ay0Ya/lN WhxysqjGefHrunWIHHUF9rGMTA8dcE06GO3AUUpfTRWRL0uBPzSjOYK/Qn959jb/ qbLpm6ere0O4LUXF8qscLTq5IufqJxAoH8djCfLAwpnCExheJZeDCdVg0NPoWJlK J0ZL586Bq8hjp1DaZfCJ34Wn4CzGPwm9fVn8XB9zLJe5Bh4xkaVM </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate> MIIDIzCCAgugAwIBAgIUHyFSxi2HQ2DazjmSyso9AUTcmCwwDQYJKoZIhvcNAQEL BQAwGTEXMBUGA1UEAwwOaWRwLmdsaS5jYXMuY3owHhcNMTYxMDEwMTQxNDE0WhcN MzYxMDEwMTQxNDE0WjAZMRcwFQYDVQQDDA5pZHAuZ2xpLmNhcy5jejCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALDrOV2yiok4x/AlkZg3PX4LRkCPD26o xGmmqQeIJq7nY3OKnhs0XdjHJsVPz5DdZwA5waDnVh7rVgGK49cHqM6b16F1r/4r EE0VEfxstAfK/h/MF/kqp4eyxnuJaD5f1hXnuT4s8GiLZCg2e1swpHYahFkdc3oL n0h1/qUW4wVNBX2+ikzERCedb640lq3mFfjmSUlL89FYWsqFyjWWAiryQkNNPIyG fOW2NEgLjoedaGsJp0mxNCmkDDpTww1ZRTNJvox77uBhrqC+m70M3qL05QypnPhT xRXQCH8bsU3IvgBly6J1W3ol+rcejoqS14iZqFc3ZPQfE6EB5hSwKY8CAwEAAaNj MGEwHQYDVR0OBBYEFOyCPS5iHdVjP4AwWOXZCM+f5MtnMEAGA1UdEQQ5MDeCDmlk cC5nbGkuY2FzLmN6hiVodHRwczovL2lkcC5nbGkuY2FzLmN6L2lkcC9zaGliYm9s ZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQBfgIbJra4XT7idRQL3lRy/0NM/ExVngxLj yDt0P73erYSkXByjHsf5wednvqchy+yXBKXZ2kmc3wOfRuvubYLv7d5CPl3Wa/zv wBJHJXFfN91r0jPqN/TmuqoURLwUX4k+q0juAk+oA6ClnpHZwB4U7g6kHNFC3p5N zHngayFMHnYbY5a+TqdpsInumsbr5dfXG5eRqoHM7hyS1P9A4dw4reFWqWRH7XPh fBxQGqOQ3Xfuwta1AuGuIp0TWAJTIec2y9XB5X2M2JAuXzRN9wiTfryvG/H5w5Y4 psX3Vty+MvqqNQyIsItFnL4IaNLiM9CR6jY7RIZzJi9VVmbj0bNn </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.gli.cas.cz:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/> <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.gli.cas.cz:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/> <md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat> <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat> <md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.gli.cas.cz/idp/profile/Shibboleth/SSO"/> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.gli.cas.cz/idp/profile/SAML2/POST/SSO"/> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.gli.cas.cz/idp/profile/SAML2/POST-SimpleSign/SSO"/> <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.gli.cas.cz/idp/profile/SAML2/Redirect/SSO"/> </md:IDPSSODescriptor> <md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol"> <md:Extensions> <shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">gli.cas.cz</shibmd:Scope> </md:Extensions> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate> MIIDJDCCAgygAwIBAgIVAJKSAwXePVHrFEtnrTZ+4UxQdRZDMA0GCSqGSIb3DQEB CwUAMBkxFzAVBgNVBAMMDmlkcC5nbGkuY2FzLmN6MB4XDTE2MTAxMDE0MTQxNVoX DTM2MTAxMDE0MTQxNVowGTEXMBUGA1UEAwwOaWRwLmdsaS5jYXMuY3owggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT/vds+/7AJWmiod3Infr/5xSXUCWe k8TsQZFalak06LVEpTL1l4LuFPORMsxsrXr61zW7HqiCm3csWYC+6O65HYpU8dhr QgHIJ5i8iulp/CtY0xCmBPL558GBulAGJksLjoD2Yuzpc5+tcd1JrMjGX3Hra7ON iH8eDSfaQblMdhI/92OHLl8L0EzO2nbpGyJpfwoEP29yr5MoYWVvxmD9wy6ujBCJ rNLejIN/SmpkVc6QC6geDsyiocJZIPGkmB32IC6Ahb2KheVZmOm+fEYS1XFBSiav MTbvPtK99awnRbnY1uvi4zNdnDwxw7DH2w24cUV1uMEfa+Y9nxhjkipLAgMBAAGj YzBhMB0GA1UdDgQWBBTF7J15pagJpypF6Mu08Sc6yIrSmTBABgNVHREEOTA3gg5p ZHAuZ2xpLmNhcy5jeoYlaHR0cHM6Ly9pZHAuZ2xpLmNhcy5jei9pZHAvc2hpYmJv bGV0aDANBgkqhkiG9w0BAQsFAAOCAQEAiSNbXym/GtB4GFWzFd9x9uz1KiS7HY6Y f5Bw/UQ1LZaQvhzMpdkFZVBj9lNRhjSDQPOXCipNA7YaZGlXkG6z9nrTmZvK0rrX v81mAtldX+l9QcJqXNY0YC4PTvqjSLc2jPTEyy6F1rb5QxxHc6yAY1SEZwBAZSDc ZlGC4gAwiuN2B4eb1udZCmDYmKjCNmPP94muqs3bMWtOvLBf8ljJX06sSarOtHgF fWM6O2MjccukfLza5ACjFMLHzTeBBwzMZ1csdXU1f9P7GgWCMkrEAQMRvQCu6+p8 dxbUVZmsWMLn1wCS1jvWKRhNuchXQxu4e+QIslEqi7MZaANgPMsTwA== </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="signing"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate> MIIDIzCCAgugAwIBAgIUO+/Rivnvdgnk9HcM7hoPisnlJ08wDQYJKoZIhvcNAQEL BQAwGTEXMBUGA1UEAwwOaWRwLmdsaS5jYXMuY3owHhcNMTYxMDEwMTQxNDE0WhcN MzYxMDEwMTQxNDE0WjAZMRcwFQYDVQQDDA5pZHAuZ2xpLmNhcy5jejCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALfmXxgRqnyDcOic1779AuL/UXEK6vdo W5gnqUrqxGLvQ/B1qquPx4gRfJy0mKGZDOK5nOMqdAc06uttJsuVo4A9bfM4z2FG VOVHX5+YoSgpLkrfSVtnmGohyt+k2xvJCCj5oK03owT7j6jPL9KXcqT7EwvomFVY 2qYG489zVxv0W4RQNkGVCZ+8SjjOHLNBbAPG/XCtg8g7k9keN9pk5xSVevrExOZP t7WFxbntGxUr0mbbh0q62eOwxOblw7bxeyCdVAyuyWu8M8gcfUcqrGYaFrCATwFi kn7DxNTo6LhDsOCCYzMd4kJqFVJ8U+6k3fBnEEygwDw+f8ZD+HN8CQECAwEAAaNj MGEwHQYDVR0OBBYEFGi5basBSBDCaCVMrNBz6UUIms9sMEAGA1UdEQQ5MDeCDmlk cC5nbGkuY2FzLmN6hiVodHRwczovL2lkcC5nbGkuY2FzLmN6L2lkcC9zaGliYm9s ZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQAHOfxFlx8Mg7qFdXQH0/VAexX/6soEeZs/ w1tYfs2a0x1WwSN/LH3cE9l7TalHhS1c9qxKUH6rHNdqN+WiLhNCpKC8p7fLOF4j XXKHNZOVl/sDLUKHfMl3ebCT9KK2lhVsV7YHd0agqW+Z6Xy64zXyGIW8Ay0Ya/lN WhxysqjGefHrunWIHHUF9rGMTA8dcE06GO3AUUpfTRWRL0uBPzSjOYK/Qn959jb/ qbLpm6ere0O4LUXF8qscLTq5IufqJxAoH8djCfLAwpnCExheJZeDCdVg0NPoWJlK J0ZL586Bq8hjp1DaZfCJ34Wn4CzGPwm9fVn8XB9zLJe5Bh4xkaVM </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:KeyDescriptor use="encryption"> <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:X509Data> <ds:X509Certificate> MIIDIzCCAgugAwIBAgIUHyFSxi2HQ2DazjmSyso9AUTcmCwwDQYJKoZIhvcNAQEL BQAwGTEXMBUGA1UEAwwOaWRwLmdsaS5jYXMuY3owHhcNMTYxMDEwMTQxNDE0WhcN MzYxMDEwMTQxNDE0WjAZMRcwFQYDVQQDDA5pZHAuZ2xpLmNhcy5jejCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALDrOV2yiok4x/AlkZg3PX4LRkCPD26o xGmmqQeIJq7nY3OKnhs0XdjHJsVPz5DdZwA5waDnVh7rVgGK49cHqM6b16F1r/4r EE0VEfxstAfK/h/MF/kqp4eyxnuJaD5f1hXnuT4s8GiLZCg2e1swpHYahFkdc3oL n0h1/qUW4wVNBX2+ikzERCedb640lq3mFfjmSUlL89FYWsqFyjWWAiryQkNNPIyG fOW2NEgLjoedaGsJp0mxNCmkDDpTww1ZRTNJvox77uBhrqC+m70M3qL05QypnPhT xRXQCH8bsU3IvgBly6J1W3ol+rcejoqS14iZqFc3ZPQfE6EB5hSwKY8CAwEAAaNj MGEwHQYDVR0OBBYEFOyCPS5iHdVjP4AwWOXZCM+f5MtnMEAGA1UdEQQ5MDeCDmlk cC5nbGkuY2FzLmN6hiVodHRwczovL2lkcC5nbGkuY2FzLmN6L2lkcC9zaGliYm9s ZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQBfgIbJra4XT7idRQL3lRy/0NM/ExVngxLj yDt0P73erYSkXByjHsf5wednvqchy+yXBKXZ2kmc3wOfRuvubYLv7d5CPl3Wa/zv wBJHJXFfN91r0jPqN/TmuqoURLwUX4k+q0juAk+oA6ClnpHZwB4U7g6kHNFC3p5N zHngayFMHnYbY5a+TqdpsInumsbr5dfXG5eRqoHM7hyS1P9A4dw4reFWqWRH7XPh fBxQGqOQ3Xfuwta1AuGuIp0TWAJTIec2y9XB5X2M2JAuXzRN9wiTfryvG/H5w5Y4 psX3Vty+MvqqNQyIsItFnL4IaNLiM9CR6jY7RIZzJi9VVmbj0bNn </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> </md:KeyDescriptor> <md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.gli.cas.cz:8443/idp/profile/SAML1/SOAP/AttributeQuery"/> </md:AttributeAuthorityDescriptor> <md:Organization> <md:OrganizationName xml:lang="en">Institute of Geology AS CR</md:OrganizationName> <md:OrganizationName xml:lang="cs">Geologický ústav AV ČR</md:OrganizationName> <md:OrganizationDisplayName xml:lang="en">Institute of Geology AS CR, v. v. i.</md:OrganizationDisplayName> <md:OrganizationDisplayName xml:lang="cs">Geologický ústav AV ČR, v. v. i.</md:OrganizationDisplayName> <md:OrganizationURL xml:lang="en">http://www.gli.cas.cz/en</md:OrganizationURL> <md:OrganizationURL xml:lang="cs">http://www.gli.cas.cz/cs</md:OrganizationURL> </md:Organization> <md:ContactPerson contactType="technical"> <md:GivenName>Petr</md:GivenName> <md:SurName>Vaníček</md:SurName> <md:EmailAddress>vanicekp@utia.cas.cz</md:EmailAddress> </md:ContactPerson> </md:EntityDescriptor>