blob: 88e8489f48d9e4a47faa602c42bab574eac07f57 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://bedaadministration.stage.i.uhr.se/beda-administration">
<md:Extensions>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
<mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2023-06-01T14:48:25Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
<mdattr:EntityAttributes>
<samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
<samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
</samla:Attribute>
</mdattr:EntityAttributes>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<md:Extensions>
<init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/Login"/>
<idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/Login" index="1"/>
<mdui:UIInfo>
<mdui:Description xml:lang="en">Stage for beda-administration login during Beda development</mdui:Description>
<mdui:Description xml:lang="sv">Stage för beda-administration inloggning under utveckling av Beda</mdui:Description>
<mdui:DisplayName xml:lang="en">Beda development administration-sp</mdui:DisplayName>
<mdui:DisplayName xml:lang="sv">Beda utveckling administration-sp</mdui:DisplayName>
<mdui:InformationURL xml:lang="en">https://betyg.uhr.se/</mdui:InformationURL>
<mdui:InformationURL xml:lang="sv">https://betyg.uhr.se/</mdui:InformationURL>
<mdui:PrivacyStatementURL xml:lang="en">https://betyg.stage.uhr.se/inrapportering/assets/privacy-policy/privacypolicyen.html</mdui:PrivacyStatementURL>
<mdui:PrivacyStatementURL xml:lang="sv">https://betyg.stage.uhr.se/inrapportering/assets/privacy-policy/privacypolicysv.html</mdui:PrivacyStatementURL>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:KeyName>bedaadministration.stage.i.uhr.se</ds:KeyName>
<ds:KeyName>https://bedaadministration.stage.i.uhr.se/beda-administration</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=bedaadministration.stage.i.uhr.se</ds:X509SubjectName>
<ds:X509Certificate>MIIFdjCCA16gAwIBAgIUELHDT7ebyZVkRU8iaaMqWDD446owDQYJKoZIhvcNAQEL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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:KeyName>bedaadministration.stage.i.uhr.se</ds:KeyName>
<ds:KeyName>https://bedaadministration.stage.i.uhr.se/beda-administration</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=bedaadministration.stage.i.uhr.se</ds:X509SubjectName>
<ds:X509Certificate>MIIFdjCCA16gAwIBAgIUELHDT7ebyZVkRU8iaaMqWDD446owDQYJKoZIhvcNAQEL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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/SLO/SOAP"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/SLO/Redirect"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/SLO/POST"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/SLO/Artifact"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/NIM/SOAP"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/NIM/Redirect"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/NIM/POST"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/NIM/Artifact"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/SAML2/POST" index="1"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/SAML2/Artifact" index="3"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://bedaadministration.stage.i.uhr.se/Shibboleth.sso/SAML2/ECP" index="4"/>
<md:AttributeConsumingService index="1">
<md:ServiceName xml:lang="en">Beda development administration-sp</md:ServiceName>
<md:ServiceName xml:lang="sv">Beda utveckling administration-sp</md:ServiceName>
<md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
</md:AttributeConsumingService>
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">The Swedish Council for Higher Education</md:OrganizationName>
<md:OrganizationName xml:lang="sv">Universitets- och högskolerådet</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">The Swedish Council for Higher Education</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="sv">Universitets- och högskolerådet</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">https://www.uhr.se/en/start/</md:OrganizationURL>
<md:OrganizationURL xml:lang="sv">https://www.uhr.se</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="technical">
<md:Company>ITS, Umeå universitet</md:Company>
<md:EmailAddress>mailto:nya-cm@its.umu.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="support">
<md:Company>ITS, Umeå universitet</md:Company>
<md:EmailAddress>mailto:nya-cm@its.umu.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="administrative">
<md:Company>ITS, Umeå universitet</md:Company>
<md:EmailAddress>mailto:nya-cm@its.umu.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
<md:Company>ITS, Umeå universitet</md:Company>
<md:GivenName>Nya CM</md:GivenName>
<md:EmailAddress>mailto:nya-cm@its.umu.se</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
|
