metadata/swamid-2.0/kaucat.sai.kau.se-shibboleth.xml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169

<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://kaucat.sai.kau.se/shibboleth">
  <md:Extensions>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-08-12T13:06:59Z">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
    <mdattr:EntityAttributes>
      <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
        <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue>
      </samla:Attribute>
      <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://kaucat.sai.kau.se/Shibboleth.sso/Login"/>
      <mdui:UIInfo>
        <mdui:DisplayName xml:lang="en">Kaucat</mdui:DisplayName>
        <mdui:DisplayName xml:lang="sv">Kaucat</mdui:DisplayName>
        <mdui:Description xml:lang="sv">Kaucat är universitetets identitetshanteringssystem för personal. Du som anställd kan hantera dina egna profiluppgifter och forskarprofil. Du som Kaucat-ansvarig kan hantera identiteter i universitetets system.</mdui:Description>
        <mdui:Description xml:lang="en">Kaucat is the University's identity management system for personnel. Employees can manage their own profile information and researcher profile. Kaucat-administrators can manage identities in the University's systems.</mdui:Description>
        <mdui:PrivacyStatementURL xml:lang="sv">https://privacypolicy.hotell.kau.se/kaucat/sv.html</mdui:PrivacyStatementURL>
        <mdui:PrivacyStatementURL xml:lang="en">https://privacypolicy.hotell.kau.se/kaucat/en.html</mdui:PrivacyStatementURL>
        <mdui:InformationURL xml:lang="en">https://privacypolicy.hotell.kau.se/kaucat/en_inf.html</mdui:InformationURL>
        <mdui:InformationURL xml:lang="sv">https://privacypolicy.hotell.kau.se/kaucat/sv_inf.html</mdui:InformationURL>
      </mdui:UIInfo>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo>
        <ds:KeyName>https://kaucat.sai.kau.se/shibboleth</ds:KeyName>
        <ds:KeyName>kaucat.sai.kau.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=kaucat.sai.kau.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIFKzCCAxOgAwIBAgIUdUlEp2JQMsVVrZ2Qa6s9qJf2CscwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo>
        <ds:KeyName>https://kaucat.sai.kau.se/shibboleth</ds:KeyName>
        <ds:KeyName>kaucat.sai.kau.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=kaucat.sai.kau.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIFKzCCAxOgAwIBAgIUajZNNIvv1HWoue14nYn0So0UiDYwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://kaucat.sai.kau.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://kaucat.sai.kau.se/Shibboleth.sso/SLO/SOAP"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://kaucat.sai.kau.se/Shibboleth.sso/SLO/Redirect"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://kaucat.sai.kau.se/Shibboleth.sso/SLO/POST"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://kaucat.sai.kau.se/Shibboleth.sso/SLO/Artifact"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://kaucat.sai.kau.se/Shibboleth.sso/SAML2/POST" index="1"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://kaucat.sai.kau.se/Shibboleth.sso/SAML2/Artifact" index="2"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://kaucat.sai.kau.se/Shibboleth.sso/SAML2/ECP" index="3"/>
    <md:AttributeConsumingService index="1">
      <md:ServiceName xml:lang="en">kaucat</md:ServiceName>
      <md:ServiceName xml:lang="sv">kaucat</md:ServiceName>
      <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">Karlstad University</md:OrganizationName>
    <md:OrganizationName xml:lang="sv">Karlstads universitet</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="sv">Karlstads universitet</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="en">Karlstad University</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://www.kau.se/en</md:OrganizationURL>
    <md:OrganizationURL xml:lang="sv">https://www.kau.se</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="administrative">
    <md:SurName>IT-avdelningen</md:SurName>
    <md:EmailAddress>mailto:webbteknik@kau.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="technical">
    <md:SurName>IT-avdelningen</md:SurName>
    <md:EmailAddress>mailto:webbteknik@kau.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="support">
    <md:SurName>IT-avdelningen</md:SurName>
    <md:EmailAddress>mailto:2525@kau.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
    <md:GivenName>IRT, IT-avdelningen</md:GivenName>
    <md:EmailAddress>mailto:irt@kau.se</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>