metadata/swamid-2.0/metadata.qa.swamid.se-shibboleth.xml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179

<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://metadata.qa.swamid.se/shibboleth">
  <md:Extensions>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-08-31T13:58:28Z">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
    <mdattr:EntityAttributes>
      <samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
        <samla:AttributeValue>https://refeds.org/category/personalized</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://metadata.qa.swamid.se/Shibboleth.sso/Login"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://metadata.qa.swamid.se/Shibboleth.sso/Login" index="1"/>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://metadata.qa.swamid.se/Shibboleth.sso/DS/seamless-access"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://metadata.qa.swamid.se/Shibboleth.sso/DS/seamless-access" index="2"/>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://metadata.qa.swamid.se/Shibboleth.sso/DS/thiss.io"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://metadata.qa.swamid.se/Shibboleth.sso/DS/thiss.io" index="3"/>
      <mdui:UIInfo>
        <mdui:Description xml:lang="en">This is a service for handling Metdadata for entities in SWAMID.</mdui:Description>
        <mdui:Description xml:lang="sv">Detta är en tjänst för att hantera metadata för entiteter i SWAMID.</mdui:Description>
        <mdui:DisplayName xml:lang="en">SWAMID Metadata admin tool</mdui:DisplayName>
        <mdui:DisplayName xml:lang="sv">SWAMID Metadatahanterare</mdui:DisplayName>
        <mdui:InformationURL xml:lang="en">https://metadata.swamid.se/</mdui:InformationURL>
        <mdui:InformationURL xml:lang="sv">https://metadata.swamid.se/</mdui:InformationURL>
        <mdui:Logo xml:lang="en" height="115" width="100">https://metadata.swamid.se/swamid-logo-2-100x115.png</mdui:Logo>
        <mdui:Logo xml:lang="sv" height="115" width="100">https://metadata.swamid.se/swamid-logo-2-100x115.png</mdui:Logo>
        <mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/SWAMID/SWAMID+Metadata+admin+tool+-+Privacy+Policy?showLanguage=en_GB</mdui:PrivacyStatementURL>
        <mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/SWAMID/SWAMID+Metadata+admin+tool+-+Privacy+Policy?showLanguage=sv_SE</mdui:PrivacyStatementURL>
      </mdui:UIInfo>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo>
        <ds:KeyName>metadata.qa.swamid.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=metadata.qa.swamid.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIFETCCAvmgAwIBAgIUORTJ4BsM6d679JacfOI0H4HH578wDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo>
        <ds:KeyName>metadata.qa.swamid.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=metadata.qa.swamid.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIFETCCAvmgAwIBAgIUMLz2dIN4TmZbED4cg6zkXIAh1CMwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://metadata.qa.swamid.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://metadata.qa.swamid.se/Shibboleth.sso/SLO/SOAP"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://metadata.qa.swamid.se/Shibboleth.sso/SLO/Redirect"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://metadata.qa.swamid.se/Shibboleth.sso/SLO/POST"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://metadata.qa.swamid.se/Shibboleth.sso/SLO/Artifact"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://metadata.qa.swamid.se/Shibboleth.sso/SAML2/POST" index="1"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://metadata.qa.swamid.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://metadata.qa.swamid.se/Shibboleth.sso/SAML2/Artifact" index="3"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://metadata.qa.swamid.se/Shibboleth.sso/SAML2/ECP" index="4"/>
    <md:AttributeConsumingService index="1">
      <md:ServiceName xml:lang="en">Metadata for SWAMID</md:ServiceName>
      <md:ServiceName xml:lang="sv">Metadata for SWAMID</md:ServiceName>
      <md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">The Swedish Research Council</md:OrganizationName>
    <md:OrganizationName xml:lang="sv">Vetenskapsrådet</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Swedish Academic Identity Federation (SWAMID)</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="sv">Swedish Academic Identity Federation (SWAMID)</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://www.swamid.se/</md:OrganizationURL>
    <md:OrganizationURL xml:lang="sv">https://www.swamid.se/</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="administrative">
    <md:GivenName>SWAMID Operations</md:GivenName>
    <md:EmailAddress>mailto:operations@swamid.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="support">
    <md:GivenName>SWAMID Operations</md:GivenName>
    <md:EmailAddress>mailto:operations@swamid.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="technical">
    <md:GivenName>SWAMID Operations</md:GivenName>
    <md:EmailAddress>mailto:operations@swamid.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
    <md:GivenName>Security Response Team</md:GivenName>
    <md:EmailAddress>mailto:abuse@sunet.se</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>