<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://voparis-auth.obspm.fr/">
  <md:Extensions>
    <mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="https://federation.renater.fr/" registrationInstant="2015-02-04T14:37:54Z">
      <mdrpi:RegistrationPolicy xml:lang="en">https://services.renater.fr/federation/en/metadata_registration_practice_statement</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
      <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
        <saml:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</saml:AttributeValue>
        <saml:AttributeValue>https://federation.renater.fr/category/metier</saml:AttributeValue>
        <saml:AttributeValue>https://federation.renater.fr/scope/community</saml:AttributeValue>
      </saml:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
        <mdui:DisplayName xml:lang="en">VO Paris Authentication</mdui:DisplayName>
        <mdui:InformationURL xml:lang="fr">https://voparis-auth.obspm.fr/</mdui:InformationURL>
        <mdui:Description xml:lang="en">Access to authenticated service of the astronomical virtual observatory at Observatoire de Paris.</mdui:Description>
        <mdui:DisplayName xml:lang="fr">Authentification VO Paris</mdui:DisplayName>
        <mdui:Description xml:lang="fr">Accès au service authentifié de l'observatoire virtuel astronomique de l'Observatoire de Paris.</mdui:Description>
        <mdui:PrivacyStatementURL xml:lang="en">http://voparis-srv.obspm.fr/portal/privacy_policy</mdui:PrivacyStatementURL>
      </mdui:UIInfo>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>
					      MIIDBjCCAe6gAwIBAgIJANXkggHBesKeMA0GCSqGSIb3DQEBBQUAMCAxHjAcBgNV
BAMTFXZvcGFyaXMtYXV0aC5vYnNwbS5mcjAeFw0xNTAyMDQxMzI4MDlaFw0yNTAy
MDExMzI4MDlaMCAxHjAcBgNVBAMTFXZvcGFyaXMtYXV0aC5vYnNwbS5mcjCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOXw2yL9a6xlFB26MUsFjKDwsWuC
L/nn4CGRsU6cBtNQU7/z/pHRihWWxlSV+FXySkRYoy7DrpA84zo0AiYPtxuV31K/
Ib9mg5jB12M5jqDHGk8blbxStVAF5ZI7GSP1Yo0SYrMBtPzxRy5yjtyCPb3Cj/ez
2EO+Dh0lS9FCIlaPwfyRfEFaGhKlZ0oFFn1Y4D6suNKE3tFWRtz5lPW66BGZ6303
WWlF0wNPhJy7SlZIFeYmdoLD/n68hCmI9BUivXsbTlRJdEYhcwQbkX0e/CBONC7M
riIOlQ/Pci2jnMo0np/x6EHKg7vCxrHr7zGZVNl8Mgiw03RZlZqrDnRSvTUCAwEA
AaNDMEEwIAYDVR0RBBkwF4IVdm9wYXJpcy1hdXRoLm9ic3BtLmZyMB0GA1UdDgQW
BBTbSK3h6OXJaGl0/w1Jo7as0O1xUjANBgkqhkiG9w0BAQUFAAOCAQEAUvf2DQUQ
NonutHUXwYTIpK12+FgOmo+O8Akn+RNYzmwCmxxTfUdkXPWCI5RDE3k6RRo265xx
U+zijD6XZia4v2oxXoIxS/dTMyysU/VvIgtnHOaaeEsDJRLB9/7pxd6uuDS5mMG6
bk1LYTFU+wM5joK7UL7iAQGPbPXJ/yXXMYfE6E6FzPbCs6K46z1Xxc6QTZDrcwmW
U4f0PwCtKDt6yuk8zcvPCNStQlT3udLzIb4szTSS2Mcdb+k+LJdN0AulJYZG0L3p
UkePHzLUtvkC2YNySU+2LKUzZbyGxR3mXQ5mk/F0mrpk6Yn/frplA6nYGIWM7tb4
8BTF+jExj09ZCw==
					    </ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>
					      MIIDBjCCAe6gAwIBAgIJANXkggHBesKeMA0GCSqGSIb3DQEBBQUAMCAxHjAcBgNV
BAMTFXZvcGFyaXMtYXV0aC5vYnNwbS5mcjAeFw0xNTAyMDQxMzI4MDlaFw0yNTAy
MDExMzI4MDlaMCAxHjAcBgNVBAMTFXZvcGFyaXMtYXV0aC5vYnNwbS5mcjCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOXw2yL9a6xlFB26MUsFjKDwsWuC
L/nn4CGRsU6cBtNQU7/z/pHRihWWxlSV+FXySkRYoy7DrpA84zo0AiYPtxuV31K/
Ib9mg5jB12M5jqDHGk8blbxStVAF5ZI7GSP1Yo0SYrMBtPzxRy5yjtyCPb3Cj/ez
2EO+Dh0lS9FCIlaPwfyRfEFaGhKlZ0oFFn1Y4D6suNKE3tFWRtz5lPW66BGZ6303
WWlF0wNPhJy7SlZIFeYmdoLD/n68hCmI9BUivXsbTlRJdEYhcwQbkX0e/CBONC7M
riIOlQ/Pci2jnMo0np/x6EHKg7vCxrHr7zGZVNl8Mgiw03RZlZqrDnRSvTUCAwEA
AaNDMEEwIAYDVR0RBBkwF4IVdm9wYXJpcy1hdXRoLm9ic3BtLmZyMB0GA1UdDgQW
BBTbSK3h6OXJaGl0/w1Jo7as0O1xUjANBgkqhkiG9w0BAQUFAAOCAQEAUvf2DQUQ
NonutHUXwYTIpK12+FgOmo+O8Akn+RNYzmwCmxxTfUdkXPWCI5RDE3k6RRo265xx
U+zijD6XZia4v2oxXoIxS/dTMyysU/VvIgtnHOaaeEsDJRLB9/7pxd6uuDS5mMG6
bk1LYTFU+wM5joK7UL7iAQGPbPXJ/yXXMYfE6E6FzPbCs6K46z1Xxc6QTZDrcwmW
U4f0PwCtKDt6yuk8zcvPCNStQlT3udLzIb4szTSS2Mcdb+k+LJdN0AulJYZG0L3p
UkePHzLUtvkC2YNySU+2LKUzZbyGxR3mXQ5mk/F0mrpk6Yn/frplA6nYGIWM7tb4
8BTF+jExj09ZCw==
					    </ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://voparis-auth.obspm.fr/Shibboleth.sso/SAML/POST" index="0"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://voparis-auth.obspm.fr/Shibboleth.sso/SAML2/POST" index="0"/>
    <md:AttributeConsumingService index="0">
      <md:ServiceName xml:lang="fr">Authentification VO Paris</md:ServiceName>
      <md:ServiceName xml:lang="en">VO Paris Authentication</md:ServiceName>
      <md:ServiceDescription xml:lang="fr">Accès au service authentifié de l'observatoire virtuel astronomique de l'Observatoire de Paris.</md:ServiceDescription>
      <md:ServiceDescription xml:lang="en">Access to authenticated service of the astronomical virtual observatory at Observatoire de Paris.</md:ServiceDescription>
      <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
      <md:RequestedAttribute FriendlyName="eduPersonPrimaryAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
      <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">Observatoire de Paris</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Observatoire de Paris</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">http://www.obspm.fr</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="technical">
    <md:EmailAddress>vo.paris@obspm.fr</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>