metadata/swamid-2.0/reset.hig.se-shibboleth.xml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182

<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://reset.hig.se/shibboleth">
  <md:Extensions>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-09-21T12:18:49Z">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
    <mdattr:EntityAttributes>
      <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
      </samla:Attribute>
      <samla:Attribute Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
        <samla:AttributeValue>https://refeds.org/sirtfi</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <mdui:UIInfo>
        <mdui:DisplayName xml:lang="en">Högskolan i Gävle password reset service</mdui:DisplayName>
        <mdui:DisplayName xml:lang="sv">Högskolan i Gävle lösenordsåterställningtjänst</mdui:DisplayName>
        <mdui:Description xml:lang="en">You can use this service to reset your password for your user account after the account activation.</mdui:Description>
        <mdui:Description xml:lang="sv">Denna tjänst används för sätta ett nytt lösenord om du glömt bort det.</mdui:Description>
        <mdui:Logo xml:lang="en" height="45" width="50">https://reset.hig.se/img/cencolor-50.gif</mdui:Logo>
        <mdui:Logo xml:lang="sv" height="44" width="50">https://reset.hig.se/img/cenfarg-50.gif</mdui:Logo>
        <mdui:InformationURL xml:lang="en">https://reset.hig.se</mdui:InformationURL>
        <mdui:InformationURL xml:lang="sv">https://reset.hig.se</mdui:InformationURL>
        <mdui:PrivacyStatementURL xml:lang="en">https://reset.hig.se/privacy.policy.php?lang=en</mdui:PrivacyStatementURL>
        <mdui:PrivacyStatementURL xml:lang="sv">https://reset.hig.se/privacy.policy.php?lang=sv</mdui:PrivacyStatementURL>
      </mdui:UIInfo>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://reset.hig.se/Shibboleth.sso/DS/ds.swamid.se"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://reset.hig.se/Shibboleth.sso/DS/ds.swamid.se" index="1"/>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo>
        <ds:KeyName>https://reset.hig.se/shibboleth</ds:KeyName>
        <ds:KeyName>reset.hig.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=reset.hig.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIFFzCCAv+gAwIBAgIUMEOFBn80zTBuyN1+IqonA/bVmU4wDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo>
        <ds:KeyName>https://reset.hig.se/shibboleth</ds:KeyName>
        <ds:KeyName>reset.hig.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=reset.hig.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIFFzCCAv+gAwIBAgIUAXNBkF5eSI93Hg2TWSrRzUG7Cb8wDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://reset.hig.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://reset.hig.se/Shibboleth.sso/SLO/SOAP"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://reset.hig.se/Shibboleth.sso/SLO/Redirect"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://reset.hig.se/Shibboleth.sso/SLO/POST"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://reset.hig.se/Shibboleth.sso/SLO/Artifact"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://reset.hig.se/Shibboleth.sso/NIM/SOAP"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://reset.hig.se/Shibboleth.sso/NIM/Redirect"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://reset.hig.se/Shibboleth.sso/NIM/POST"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://reset.hig.se/Shibboleth.sso/NIM/Artifact"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://reset.hig.se/Shibboleth.sso/SAML2/POST" index="1"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://reset.hig.se/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://reset.hig.se/Shibboleth.sso/SAML2/Artifact" index="3"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://reset.hig.se/Shibboleth.sso/SAML2/ECP" index="4"/>
    <md:AttributeConsumingService index="1">
      <md:ServiceName xml:lang="en">Högskolan i Gävle user account password reset</md:ServiceName>
      <md:ServiceName xml:lang="sv">Högskolan i Gävle lösenordsåterställning</md:ServiceName>
      <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">University of Gävle</md:OrganizationName>
    <md:OrganizationName xml:lang="sv">Högskolan i Gävle</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">University of Gävle</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="sv">Högskolan i Gävle</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://www.hig.se</md:OrganizationURL>
    <md:OrganizationURL xml:lang="sv">https://www.hig.se</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="support">
    <md:Company>University of Gävle</md:Company>
    <md:SurName>ITsupport</md:SurName>
    <md:EmailAddress>mailto:itsupport@hig.se</md:EmailAddress>
    <md:TelephoneNumber>+46 26 648800</md:TelephoneNumber>
  </md:ContactPerson>
  <md:ContactPerson contactType="administrative">
    <md:Company>University of Gävle</md:Company>
    <md:SurName>Network Operations</md:SurName>
    <md:EmailAddress>mailto:nat@hig.se</md:EmailAddress>
    <md:TelephoneNumber>+46 26 648500</md:TelephoneNumber>
  </md:ContactPerson>
  <md:ContactPerson contactType="technical">
    <md:Company>University of Gävle</md:Company>
    <md:SurName>Operations</md:SurName>
    <md:EmailAddress>mailto:nat@hig.se</md:EmailAddress>
    <md:TelephoneNumber>+46 26 648500</md:TelephoneNumber>
  </md:ContactPerson>
  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
    <md:GivenName>Security Response Team</md:GivenName>
    <md:EmailAddress>mailto:nat@hig.se</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>