summaryrefslogtreecommitdiff
path: root/swamid-2.0/graylog.sunet.se-shibboleth.xml
blob: 857c466caa67dda4cb14b3d3e4bcc1e17a87ca06 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
<?xml version="1.0" encoding="UTF-8"?>
<!--
This is example metadata only. Do *NOT* supply it as is without review,
and do *NOT* provide it in real time to your partners.
 -->
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://graylog.sunet.se/shibboleth">
  <md:Extensions>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2018-03-12T11:39:38Z">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
    <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
      <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
    <md:Extensions>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://graylog.sunet.se/Shibboleth.sso/Login"/>
      <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://graylog.sunet.se/Shibboleth.sso/Login" index="1"/>
      <mdui:UIInfo>
        <mdui:DisplayName xml:lang="sv">Graylog</mdui:DisplayName>
        <mdui:DisplayName xml:lang="en">Graylog</mdui:DisplayName>
        <mdui:Description xml:lang="sv">En loggtjänst hos SUNET</mdui:Description>
        <mdui:Description xml:lang="en">A logging service at SUNET</mdui:Description>
        <mdui:InformationURL xml:lang="en">https://wiki.sunet.se/display/SUNETCERT/Graylog</mdui:InformationURL>
        <mdui:InformationURL xml:lang="sv">https://wiki.sunet.se/display/SUNETCERT/Graylog</mdui:InformationURL>
        <mdui:PrivacyStatementURL xml:lang="en">https://wiki.sunet.se/display/CNaaS/Transfer+of+personal+data+to+CnaaS+Graylog+when+using+federated+login</mdui:PrivacyStatementURL>
        <mdui:PrivacyStatementURL xml:lang="sv">https://wiki.sunet.se/display/CNaaS/Transfer+of+personal+data+to+CnaaS+Graylog+when+using+federated+login</mdui:PrivacyStatementURL>
      </mdui:UIInfo>
    </md:Extensions>
    <md:KeyDescriptor>
      <ds:KeyInfo>
        <ds:KeyName>graylog.sunet.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=graylog.sunet.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIC9zCCAd+gAwIBAgIJAOjtMxI0lV6PMA0GCSqGSIb3DQEBBQUAMBsxGTAXBgNV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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://graylog.sunet.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://graylog.sunet.se/Shibboleth.sso/SLO/SOAP"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://graylog.sunet.se/Shibboleth.sso/SLO/Redirect"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://graylog.sunet.se/Shibboleth.sso/SLO/POST"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://graylog.sunet.se/Shibboleth.sso/SLO/Artifact"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://graylog.sunet.se/Shibboleth.sso/SAML2/POST" index="1"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://graylog.sunet.se/Shibboleth.sso/SAML2/Artifact" index="2"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://graylog.sunet.se/Shibboleth.sso/SAML2/ECP" index="3"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://graylog.sunet.se/Shibboleth.sso/SAML/POST" index="4"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://graylog.sunet.se/Shibboleth.sso/SAML/Artifact" index="5"/>
    <md:AttributeConsumingService index="1">
      <md:ServiceName xml:lang="en">Graylog Logservice</md:ServiceName>
      <md:ServiceName xml:lang="sv">Graylog Loggtjänst</md:ServiceName>
      <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">Swedish University Network</md:OrganizationName>
    <md:OrganizationName xml:lang="sv">Svenska Universitetsdatornätverket</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">SUNET</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="sv">SUNET</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://www.sunet.se</md:OrganizationURL>
    <md:OrganizationURL xml:lang="sv">https://www.sunet.se</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="administrative">
    <md:Company>SUNET</md:Company>
    <md:GivenName>Network</md:GivenName>
    <md:SurName>Operations</md:SurName>
    <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="technical">
    <md:Company>SUNET</md:Company>
    <md:GivenName>Network</md:GivenName>
    <md:SurName>Operations</md:SurName>
    <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="support">
    <md:Company>SUNET</md:Company>
    <md:GivenName>Network</md:GivenName>
    <md:SurName>Operations</md:SurName>
    <md:EmailAddress>mailto:noc@sunet.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
    <md:GivenName>Security Response Team</md:GivenName>
    <md:EmailAddress>mailto:abuse@sunet.se</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>