metadata/swamid-2.0/www.nais.uhr.se-shibboleth.xml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161

<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://www.nais.uhr.se/shibboleth">
  <md:Extensions>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2015-09-09T14:55:49Z">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
    <mdattr:EntityAttributes>
      <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://www.nais.uhr.se/Shibboleth.sso/StudentLogin"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://www.nais.uhr.se/Shibboleth.sso/DS/ds.swamid.se" index="1"/>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://www.nais.uhr.se/Shibboleth.sso/StaffLogin"/>
      <mdui:UIInfo>
        <mdui:DisplayName xml:lang="sv">Nais</mdui:DisplayName>
        <mdui:DisplayName xml:lang="en">Nais</mdui:DisplayName>
        <mdui:Description xml:lang="sv">Nationellt ansökningssystem av pedagogiskt stöd för studenter med en varaktig funktionsnedsättning.</mdui:Description>
        <mdui:Description xml:lang="en">System through which students with a long-term disability can apply for study support during their studies at Swedish higher education institutions.</mdui:Description>
        <mdui:InformationURL xml:lang="sv">https://www.uhr.se/systemtjanster-for-larosaten/stodsystem-for-larosaten/nationellt-administrations--och-informationssystem-for-samordnare-nais/</mdui:InformationURL>
        <mdui:InformationURL xml:lang="en">https://www.uhr.se/systemtjanster-for-larosaten/stodsystem-for-larosaten/nationellt-administrations--och-informationssystem-for-samordnare-nais/</mdui:InformationURL>
        <mdui:PrivacyStatementURL xml:lang="sv">https://nais.uhr.se/About/PrivacyPolicy</mdui:PrivacyStatementURL>
        <mdui:PrivacyStatementURL xml:lang="en">https://nais.uhr.se/About/PrivacyPolicy</mdui:PrivacyStatementURL>
        <mdui:Logo xml:lang="sv" height="83" width="83">https://uhrporten.se/contentassets/709bda3867484b9fbbf51064ea8363b8/uhr-logo-rgb.svg</mdui:Logo>
        <mdui:Logo xml:lang="en" height="83" width="83">https://uhrporten.se/contentassets/709bda3867484b9fbbf51064ea8363b8/uhr-logo-rgb.svg</mdui:Logo>
      </mdui:UIInfo>
    </md:Extensions>
    <md:KeyDescriptor>
      <ds:KeyInfo>
        <ds:X509Data>
          <ds:X509Certificate>MIIE8zCCAtugAwIBAgIUQV5gsGIlXyxm6PYaiVtmKlRXbnMwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo>
        <ds:KeyName>sto-pola.sto.netlight.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=sto-pola.sto.netlight.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIDDzCCAfegAwIBAgIJAM8E1VkC2/D7MA0GCSqGSIb3DQEBBQUAMCMxITAfBgNV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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://www.nais.uhr.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://www.nais.uhr.se/Shibboleth.sso/SLO/SOAP"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://www.nais.uhr.se/Shibboleth.sso/SLO/Redirect"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.nais.uhr.se/Shibboleth.sso/SLO/POST"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://www.nais.uhr.se/Shibboleth.sso/SLO/Artifact"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://www.nais.uhr.se/Shibboleth.sso/NIM/SOAP"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://www.nais.uhr.se/Shibboleth.sso/NIM/Redirect"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.nais.uhr.se/Shibboleth.sso/NIM/POST"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://www.nais.uhr.se/Shibboleth.sso/NIM/Artifact"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.nais.uhr.se/Shibboleth.sso/SAML2/POST" index="1"/>
    <md:AttributeConsumingService index="1">
      <md:ServiceName xml:lang="en">Nais</md:ServiceName>
      <md:ServiceName xml:lang="sv">Nais</md:ServiceName>
      <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="personalIdentityNumber" Name="urn:oid:1.2.752.29.4.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">The Swedish Council for Higher Education</md:OrganizationName>
    <md:OrganizationName xml:lang="sv">Universitets- och högskolerådet</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="sv">Universitets- och högskolerådet</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="en">The Swedish Council for Higher Education</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="sv">https://www.uhr.se</md:OrganizationURL>
    <md:OrganizationURL xml:lang="en">https://www.uhr.se/en/start/</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="administrative">
    <md:Company>Universitets- och högskolerådet</md:Company>
    <md:EmailAddress>mailto:nais.support@uhr.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="technical">
    <md:Company>Universitets- och högskolerådet</md:Company>
    <md:EmailAddress>mailto:nais.support@uhr.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="support">
    <md:Company>Universitets- och högskolerådet</md:Company>
    <md:EmailAddress>mailto:nais.support@uhr.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
    <md:GivenName>Universitets- och högskolerådet</md:GivenName>
    <md:EmailAddress>mailto:nais.support@uhr.se</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>