summaryrefslogtreecommitdiff
path: root/metadata/swamid-2.0/metadata.lab.swamid.se-shibboleth.xml
blob: 1da45bc08276991225b4640144270307a301f4ee (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://metadata.lab.swamid.se/shibboleth">
  <md:Extensions>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2021-10-26T09:33:57Z">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <mdattr:EntityAttributes>
      <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
        <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue>
      </samla:Attribute>
      <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="https://refeds.org/entity-selection-profile">
        <samla:AttributeValue>eyJwcm9maWxlcyI6eyJzd2FtaWQtb25seSI6eyJzdHJpY3QiOnRydWUsImVudGl0aWVzIjpbeyJzZWxlY3QiOiJodHRwOi8vd3d3LnN3YW1pZC5zZS8iLCJtYXRjaCI6InJlZ2lzdHJhdGlvbkF1dGhvcml0eSIsImluY2x1ZGUiOnRydWV9XX0sInN3YW1pZCtlZHVnYWluIjp7InN0cmljdCI6dHJ1ZSwiZW50aXRpZXMiOlt7InNlbGVjdCI6ImZpbGU6Ly8vb3B0L3B5ZmYvbWV0YWRhdGEvb3BlbmF0aGVucy54bWwiLCJtYXRjaCI6Im1kX3NvdXJjZSIsImluY2x1ZGUiOmZhbHNlXX19fQo=</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://metadata.lab.swamid.se/Shibboleth.sso/Login"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://metadata.lab.swamid.se/Shibboleth.sso/Login" index="1"/>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://metadata.lab.swamid.se/Shibboleth.sso/DS/seamless-access"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://metadata.lab.swamid.se/Shibboleth.sso/DS/seamless-access" index="2"/>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://metadata.lab.swamid.se/Shibboleth.sso/DS/thiss.io"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://metadata.lab.swamid.se/Shibboleth.sso/DS/thiss.io" index="3"/>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://metadata.lab.swamid.se/Shibboleth.sso/DS/swamid-qa"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://metadata.lab.swamid.se/Shibboleth.sso/DS/swamid-qa" index="4"/>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://metadata.lab.swamid.se/Shibboleth.sso/DS/fidus"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://metadata.lab.swamid.se/Shibboleth.sso/DS/fidus" index="5"/>
      <mdui:UIInfo>
        <mdui:Description xml:lang="en">This is a service for handling Metdadata for entities in SWAMID.</mdui:Description>
        <mdui:Description xml:lang="sv">Detta är en tjänst för att hantera metadata för entiteter i SWAMID.</mdui:Description>
        <mdui:DisplayName xml:lang="en">SWAMID Metdata admin tool - lab</mdui:DisplayName>
        <mdui:DisplayName xml:lang="sv">SWAMID Metadatahanterare - lab</mdui:DisplayName>
        <mdui:InformationURL xml:lang="en">https://metadata.swamid.se/</mdui:InformationURL>
        <mdui:InformationURL xml:lang="sv">https://metadata.swamid.se/</mdui:InformationURL>
        <mdui:Logo xml:lang="en" height="115" width="100">https://metadata.swamid.se/swamid-logo-2-100x115.png</mdui:Logo>
        <mdui:Logo xml:lang="sv" height="115" width="100">https://metadata.swamid.se/swamid-logo-2-100x115.png</mdui:Logo>
        <mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/SWAMID/SWAMID+Metadata+admin+tool+-+Privacy+Policy?showLanguage=en_GB</mdui:PrivacyStatementURL>
        <mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/SWAMID/SWAMID+Metadata+admin+tool+-+Privacy+Policy?showLanguage=sv_SE</mdui:PrivacyStatementURL>
      </mdui:UIInfo>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo>
        <ds:KeyName>07bfaeb0ea87</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=07bfaeb0ea87</ds:X509SubjectName>
          <ds:X509Certificate>MIID9jCCAl6gAwIBAgIUVwgtc8SFBRVTlZJGIgx76mbQm4owDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo>
        <ds:KeyName>07bfaeb0ea87</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=07bfaeb0ea87</ds:X509SubjectName>
          <ds:X509Certificate>MIID9jCCAl6gAwIBAgIUdnvLzleBiCh6hkldNkCxCdWRHl0wDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://metadata.lab.swamid.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://metadata.lab.swamid.se/Shibboleth.sso/SLO/SOAP"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://metadata.lab.swamid.se/Shibboleth.sso/SLO/Redirect"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://metadata.lab.swamid.se/Shibboleth.sso/SLO/POST"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://metadata.lab.swamid.se/Shibboleth.sso/SLO/Artifact"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://metadata.lab.swamid.se/Shibboleth.sso/SAML2/POST" index="1"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://metadata.lab.swamid.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://metadata.lab.swamid.se/Shibboleth.sso/SAML2/Artifact" index="3"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://metadata.lab.swamid.se/Shibboleth.sso/SAML2/ECP" index="4"/>
    <md:AttributeConsumingService index="1">
      <md:ServiceName xml:lang="en">Metadata admin for SWAMID</md:ServiceName>
      <md:ServiceName xml:lang="sv">Metadata admin for SWAMID</md:ServiceName>
      <md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">The Swedish Research Council</md:OrganizationName>
    <md:OrganizationName xml:lang="sv">Vetenskapsrådet</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Swedish Academic Identity Federation (SWAMID)</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="sv">Swedish Academic Identity Federation (SWAMID)</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://www.swamid.se/</md:OrganizationURL>
    <md:OrganizationURL xml:lang="sv">https://www.swamid.se/</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="administrative">
    <md:GivenName>SWAMID Operations</md:GivenName>
    <md:EmailAddress>mailto:operations@swamid.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="support">
    <md:GivenName>SWAMID Operations</md:GivenName>
    <md:EmailAddress>mailto:operations@swamid.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="technical">
    <md:GivenName>SWAMID Operations</md:GivenName>
    <md:EmailAddress>mailto:operations@swamid.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
    <md:GivenName>Security Response Team</md:GivenName>
    <md:EmailAddress>mailto:abuse@sunet.se</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>