blob: c8b404d4292668d1b799cf242b586e70c0ff5f5d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://integratorsportal.ladok.se/shibboleth">
<md:Extensions>
<mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2021-12-20T13:24:12Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
</samla:Attribute>
</mdattr:EntityAttributes>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
<md:Extensions>
<init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://integratorsportal.ladok.se/Shibboleth.sso/Login"/>
<idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://integratorsportal.ladok.se/Shibboleth.sso/Login" index="1"/>
<mdui:UIInfo>
<mdui:Description xml:lang="en">Ladok is a central service for study administration aimed at students and study administrative staff at higher education institutions in Sweden.</mdui:Description>
<mdui:Description xml:lang="sv">Ladok är en central tjänst för studieadministration riktad till studenter och studieadministrativ personal på universitet och högskolor i Sverige.</mdui:Description>
<mdui:InformationURL xml:lang="en">https://ladok.se/</mdui:InformationURL>
<mdui:InformationURL xml:lang="sv">https://ladok.se/</mdui:InformationURL>
<mdui:Logo xml:lang="en" height="98" width="96">https://www.start.ladok.se/logo/ladok_en.png</mdui:Logo>
<mdui:Logo xml:lang="sv" height="98" width="96">https://www.start.ladok.se/logo/ladok_sv.png</mdui:Logo>
<mdui:PrivacyStatementURL xml:lang="en">https://ladok.se/transfer-of-personal-data-to-ladok-when-using-federated-login</mdui:PrivacyStatementURL>
<mdui:PrivacyStatementURL xml:lang="sv">https://ladok.se/overforing-av-personuppgifter-till-ladok-i-samband-med-federerad-inloggning</mdui:PrivacyStatementURL>
<mdui:DisplayName xml:lang="en">Ladok integrator's portal</mdui:DisplayName>
<mdui:DisplayName xml:lang="sv">Ladok integratörsportal</mdui:DisplayName>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:KeyName>integratorportal.utv.ladok.se</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=integratorportal.utv.ladok.se</ds:X509SubjectName>
<ds:X509Certificate>MIIEKTCCApGgAwIBAgIUDYi+9C4vCFEpX1JMG+r1H1BL7OcwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:KeyName>integratorportal.utv.ladok.se</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=integratorportal.utv.ladok.se</ds:X509SubjectName>
<ds:X509Certificate>MIIEKTCCApGgAwIBAgIUDYi+9C4vCFEpX1JMG+r1H1BL7OcwDQYJKoZIhvcNAQEL
BQAwKDEmMCQGA1UEAxMdaW50ZWdyYXRvcnBvcnRhbC51dHYubGFkb2suc2UwHhcN
MjEwOTE0MDkxMjAzWhcNMzEwOTEyMDkxMjAzWjAoMSYwJAYDVQQDEx1pbnRlZ3Jh
dG9ycG9ydGFsLnV0di5sYWRvay5zZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCC
AYoCggGBAMuvhOb3BxskvdbLZl0k+Q9KY71rBU6eecn1RZoMxBtXk96kk3I+7JFN
ErpOyWig61uy9nXQu6EmC1v3CWkzUB3Ipr9UvqjzrmixxZ1cqPeBp2PS29KgDIJR
dD7IH5nnNxodGmkk1BBuoQqVU2YG5PmiMPrFAtVywvb4i9nbZ4tXOI9mQ+/U2xJz
aJe2f90VDjrcPjLfugvjx2WBLmiWVANuHTWWfd9nvL16ZY5+JX5M+dbE+EJQzQ1W
3Slnd9pCSuJe2Pqugli9YX+l+qDonAkM90cbOVzQ17Ss4jcnkcGlVrvV7lrCVCQh
3NxA9zEysK6ai3f/VVI8wHB1Rq8hro6uI5caDxjN5fHa4F20r2D25PfBdvFTlORr
2XA6SpxCVIrb6+7gnOTDMjF1Sa1L2tweWi3o3XCdk4cftSOZcjtC5C6/EBxy1/9z
iLapAlGfcg8UQNyrN6xwbCL8BOeKhxO5B/vEfiTNk/ASGCswDHFCzOyHliX4omoT
p8+m3A3AnQIDAQABo0swSTAoBgNVHREEITAfgh1pbnRlZ3JhdG9ycG9ydGFsLnV0
di5sYWRvay5zZTAdBgNVHQ4EFgQUzAShK9nmkW5fm3v1hlk58et1d/4wDQYJKoZI
hvcNAQELBQADggGBADmttIfO9KlQd9ZH6jQ13KMnc5t/QenPiiSKzX2h+ipMlMNO
k7mm874RzcB1fEa9B2EJ1NK8BzfdszQxBm5EKtIM3P3h/kdri+p+d/u30hUaF+ST
jhPOvUHQYLLyCD3TqBD7llUlFopsIJ4Xoj3yzIyWDrFLDxGHdbE/vrpg5f8B81KN
riACfmIK9S6h7bt6+FCxTMHzJ0GZMLCiNh658NzNutNvckjmt3BOTiatQkvm/2Pg
WgItxanMkjkZuvsL47c2ZXNFGUWcW20BXuoERPzCX0bnxfQG0xe76nVjS6hWuL63
BJA7e4OG+6IftGwnbts3dWjvW/3RRXVBk5MUIyQ6cbwtU7bjGMDCCTxb0opl64kn
tVLSku307WjhTw/v/CCU5eJIlvHczThyZcahj6ZMDE5mnCka3l+Ji6xK7tq3U2ra
bfbajbzCKZHuDqQ8/ma4SJ7IIFBJCosG1mxsWT7tUmyXc4NhOPhpNQg1ZkpiOzi2
imI7fKJp6ilQ9FahRA==
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://integratorsportal.ladok.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SLO/SOAP"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SLO/Redirect"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SLO/POST"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SLO/Artifact"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://integratorsportal.ladok.se/Shibboleth.sso/NIM/SOAP"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://integratorsportal.ladok.se/Shibboleth.sso/NIM/Redirect"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://integratorsportal.ladok.se/Shibboleth.sso/NIM/POST"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://integratorsportal.ladok.se/Shibboleth.sso/NIM/Artifact"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SAML2/POST" index="1"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SAML2/Artifact" index="3"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SAML2/ECP" index="4"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SAML/POST" index="5"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://integratorsportal.ladok.se/Shibboleth.sso/SAML/Artifact" index="6"/>
<md:AttributeConsumingService index="1">
<md:ServiceName xml:lang="sv">Ladok integratörsportal</md:ServiceName>
<md:ServiceName xml:lang="en">Ladok integrator's portal</md:ServiceName>
<md:RequestedAttribute FriendlyName="eduPersonAssurance" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
</md:AttributeConsumingService>
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="sv">Ladokkonsortiet</md:OrganizationName>
<md:OrganizationName xml:lang="en">Ladok Consortium</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">Ladok Consortium</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="sv">Ladokkonsortiet</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">https://ladok.se/</md:OrganizationURL>
<md:OrganizationURL xml:lang="sv">https://ladok.se/</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="administrative">
<md:Company>ITS, Umeå universitet</md:Company>
<md:SurName>Ladok-supporten</md:SurName>
<md:EmailAddress>mailto:ladoksupport@its.umu.se</md:EmailAddress>
<md:TelephoneNumber>+46907866600</md:TelephoneNumber>
</md:ContactPerson>
<md:ContactPerson contactType="technical">
<md:Company>ITS, Umeå universitet</md:Company>
<md:SurName>Ladok-supporten</md:SurName>
<md:EmailAddress>mailto:ladoksupport@its.umu.se</md:EmailAddress>
<md:TelephoneNumber>+46907866600</md:TelephoneNumber>
</md:ContactPerson>
<md:ContactPerson contactType="support">
<md:Company>ITS, Umeå universitet</md:Company>
<md:SurName>Ladok-supporten</md:SurName>
<md:EmailAddress>mailto:ladoksupport@its.umu.se</md:EmailAddress>
<md:TelephoneNumber>+46907866600</md:TelephoneNumber>
</md:ContactPerson>
<md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
<md:Company>ITS, Umeå universitet</md:Company>
<md:SurName>Ladok-supporten</md:SurName>
<md:EmailAddress>mailto:ladokincident@its.umu.se</md:EmailAddress>
<md:TelephoneNumber>+46907866600</md:TelephoneNumber>
</md:ContactPerson>
</md:EntityDescriptor>
|
