blob: e1629bd774ee6e561039a0d654627ec754fc023b (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://test.edusign.geant.org/shibboleth">
<md:Extensions>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
<mdattr:EntityAttributes>
<samla:Attribute NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
<samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
<samla:AttributeValue>https://refeds.org/category/code-of-conduct/v2</samla:AttributeValue>
<samla:AttributeValue>http://refeds.org/category/research-and-scholarship</samla:AttributeValue>
</samla:Attribute>
</mdattr:EntityAttributes>
<mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2024-11-13T11:35:26Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<md:Extensions>
<mdui:UIInfo>
<mdui:DisplayName xml:lang="sv">SUNET eduSIGN - tjänst för e-signaturer</mdui:DisplayName>
<mdui:DisplayName xml:lang="en">SUNET eduSIGN Service</mdui:DisplayName>
<mdui:Description xml:lang="sv">SUNET eduSIGN gör det enkelt att arbeta med e-signaturer</mdui:Description>
<mdui:Description xml:lang="en">SUNET eduSIGN Service makes it easy to electronically sign documents</mdui:Description>
<mdui:InformationURL xml:lang="sv">https://www.sunet.se/services/sakerhet/edusign/</mdui:InformationURL>
<mdui:InformationURL xml:lang="en">https://www.sunet.se/services/sakerhet/edusign/</mdui:InformationURL>
<mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/info/eduSign+Privacy+Policy?showLanguage=sv_SE</mdui:PrivacyStatementURL>
<mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/info/eduSign+Privacy+Policy?showLanguage=en_GB</mdui:PrivacyStatementURL>
</mdui:UIInfo>
<init:RequestInitiator Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://test.edusign.geant.org/Shibboleth.sso/Login"/>
<idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://test.edusign.geant.org/Shibboleth.sso/Login" index="1"/>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:KeyName>test.edusign.geant.org</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=test.edusign.geant.org</ds:X509SubjectName>
<ds:X509Certificate>MIIEFDCCAnygAwIBAgIUBWAjKHtRKIJ0uHWGnSg94Gv20TwwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:KeyName>test.edusign.geant.org</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=test.edusign.geant.org</ds:X509SubjectName>
<ds:X509Certificate>MIIEFDCCAnygAwIBAgIUBWAjKHtRKIJ0uHWGnSg94Gv20TwwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.edusign.geant.org/Shibboleth.sso/Artifact/SOAP" index="1"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.edusign.geant.org/Shibboleth.sso/SLO/SOAP"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://test.edusign.geant.org/Shibboleth.sso/SLO/Redirect"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.edusign.geant.org/Shibboleth.sso/SLO/POST"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test.edusign.geant.org/Shibboleth.sso/SLO/Artifact"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.edusign.geant.org/Shibboleth.sso/SAML2/POST" index="1"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test.edusign.geant.org/Shibboleth.sso/SAML2/Artifact" index="3"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://test.edusign.geant.org/Shibboleth.sso/SAML2/ECP" index="4"/>
<md:AttributeConsumingService index="1">
<md:ServiceName xml:lang="sv">SUNET eduSIGN - tjänst för e-signaturer</md:ServiceName>
<md:ServiceName xml:lang="en">SUNET eduSIGN Service</md:ServiceName>
<md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="mailLocalAddress" Name="urn:oid:2.16.840.1.113730.3.1.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
</md:AttributeConsumingService>
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="sv">Vetenskapsrådet</md:OrganizationName>
<md:OrganizationName xml:lang="en">The Swedish Research Council</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="sv">Sunet</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="en">Sunet</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="sv">https://www.sunet.se</md:OrganizationURL>
<md:OrganizationURL xml:lang="en">https://www.sunet.se</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="technical">
<md:GivenName>SUNET</md:GivenName>
<md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="administrative">
<md:GivenName>SUNET</md:GivenName>
<md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="support">
<md:GivenName>SUNET</md:GivenName>
<md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
<md:GivenName>SUNET</md:GivenName>
<md:EmailAddress>mailto:cert@cert.sunet.se</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
|