metadata/swamid-edugain/dev.edusign.sunet.se-shibboleth.xml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158

<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://dev.edusign.sunet.se/shibboleth">
  <md:Extensions>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2021-06-18T15:55:50Z">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
    <mdattr:EntityAttributes>
      <samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
        <samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <mdui:UIInfo>
        <mdui:DisplayName xml:lang="sv">eduSign (Development)</mdui:DisplayName>
        <mdui:DisplayName xml:lang="en">eduSign (Development)</mdui:DisplayName>
        <mdui:Description xml:lang="sv">Testplats för eduSign (Development).</mdui:Description>
        <mdui:Description xml:lang="en">Test site for eduSign (Development).</mdui:Description>
        <mdui:InformationURL xml:lang="en">https://www.sunet.se/services/sakerhet/edusign/</mdui:InformationURL>
        <mdui:InformationURL xml:lang="sv">https://www.sunet.se/services/sakerhet/edusign/</mdui:InformationURL>
        <mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/info/eduSign+Privacy+Policy?showLanguage=sv_SE</mdui:PrivacyStatementURL>
        <mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/info/eduSign+Privacy+Policy?showLanguage=en_GB</mdui:PrivacyStatementURL>
      </mdui:UIInfo>
      <init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://dev.edusign.sunet.se/Shibboleth.sso/Login"/>
      <idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://dev.edusign.sunet.se/Shibboleth.sso/Login" index="1"/>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo>
        <ds:KeyName>dev.edusign.sunet.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=dev.edusign.sunet.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIEDjCCAnagAwIBAgIUHTtw0/TckaMT3p9b0yTl1MyI8k8wDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo>
        <ds:KeyName>dev.edusign.sunet.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=dev.edusign.sunet.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIEDjCCAnagAwIBAgIUHTtw0/TckaMT3p9b0yTl1MyI8k8wDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://dev.edusign.sunet.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://dev.edusign.sunet.se/Shibboleth.sso/SLO/SOAP"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://dev.edusign.sunet.se/Shibboleth.sso/SLO/Redirect"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://dev.edusign.sunet.se/Shibboleth.sso/SLO/POST"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://dev.edusign.sunet.se/Shibboleth.sso/SLO/Artifact"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://dev.edusign.sunet.se/Shibboleth.sso/SAML2/POST" index="1"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://dev.edusign.sunet.se/Shibboleth.sso/SAML2/Artifact" index="3"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://dev.edusign.sunet.se/Shibboleth.sso/SAML2/ECP" index="4"/>
    <md:AttributeConsumingService index="1">
      <md:ServiceName xml:lang="en">eduSign (Development)</md:ServiceName>
      <md:ServiceName xml:lang="sv">eduSign (Development)</md:ServiceName>
      <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="mailLocalAddress" Name="urn:oid:2.16.840.1.113730.3.1.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">The Swedish Research Council</md:OrganizationName>
    <md:OrganizationName xml:lang="sv">Vetenskapsrådet</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Sunet</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="sv">Sunet</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://sunet.se</md:OrganizationURL>
    <md:OrganizationURL xml:lang="sv">https://sunet.se</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Enrique</md:GivenName>
    <md:EmailAddress>mailto:enrique@cazalla.net</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="administrative">
    <md:GivenName>Enrique</md:GivenName>
    <md:EmailAddress>mailto:enrique@cazalla.net</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="support">
    <md:GivenName>Enrique</md:GivenName>
    <md:EmailAddress>mailto:mailto:enrique@cazalla.net</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
    <md:GivenName>Enrique</md:GivenName>
    <md:EmailAddress>mailto:enrique@cazalla.net</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>