blob: 2963594d87c330086e67c1f93395b576a8c80078 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://ls00002.ad.mah.se/idp/shibboleth">
<md:Extensions>
<mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2015-09-16T11:55:14Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue>http://www.swamid.se/policy/assurance/al1</saml:AttributeValue>
<saml:AttributeValue>http://www.swamid.se/policy/assurance/al2</saml:AttributeValue>
</saml:Attribute>
</mdattr:EntityAttributes>
</md:Extensions>
<IDPSSODescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://ls00002.ad.mah.se/idp/shibboleth">
<Extensions>
<shibmd:Scope regexp="false">ad.mah.se</shibmd:Scope>
<mdui:UIInfo>
<mdui:DisplayName xml:lang="en">Malmö Högskolan Shib 3 Test IdP ls00002.ad.mah.se</mdui:DisplayName>
<mdui:Description xml:lang="en">Malmö University Shib 3 Test IdP ls00002.ad.mah.se</mdui:Description>
</mdui:UIInfo>
</Extensions>
<KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>
MIIDLzCCAhegAwIBAgIUVNV40DAZB5mUHVKVe6tGY1I42hkwDQYJKoZIhvcNAQEL
BQAwHDEaMBgGA1UEAwwRbHMwMDAwMi5hZC5tYWguc2UwHhcNMTUwOTE1MTM0ODIx
WhcNMzUwOTE1MTM0ODIxWjAcMRowGAYDVQQDDBFsczAwMDAyLmFkLm1haC5zZTCC
ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJFxEzw0GeMNcOml3Nw3OIGB
MTNSGG9r6dDsDV5tSHR6Yr/klOSoVnNh6zA2Ll750WM40oWN9jOZGc9uu+SFsXxh
brkXcm1F78fVXV/h9G225sgux7g4/eMEC65gJncid566EF+ZJg1t0KIKxJq6j2W0
D5eDSaS6gUi7HF1Nk3047xYUQkN7NJdJfiWn2jHBMa0eEWzPDo2BhgZFkIUB0H0C
BN9t4RCtJeoj8sS7aDv5FShkTk7f40RLwH6Awr/oj8uRuDcNssRNO410QxRjtTov
iKsQxGRAd9fbxBounyR8Ug3uCSVIz/wcW99fj4MOluyjz3kV7P+gmfAJlBgRJCMC
AwEAAaNpMGcwHQYDVR0OBBYEFH7Ht/AR5jhuoXbez822ADbykyQIMEYGA1UdEQQ/
MD2CEWxzMDAwMDIuYWQubWFoLnNlhihodHRwczovL2xzMDAwMDIuYWQubWFoLnNl
L2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQAdqjtt6OkfZmFfITCY
vMuiid+scQo++NZVr/maC3GobCCqGEEb5biTaXT7u9Txd/gmc3Va0jp8a8zfg7xT
s3B4ptKQrSZdlEnBRjb1jEKjEwC/r5mrBw5zCkToZq2ZB4UnrvjqP26L0tJjIJcZ
tFPyUKph+Ra8kTudJR55h8cGNtrcacrrWYCgTuxOwvHI0kAbI9wf4nKJodi809/B
Jxk5G3+4FL1Bih22sNjCjyKhwzTZqeFO5nSEwHqHItc+wmWwXFrNlXorD9iR7AFX
D7P4t/ZEhlF/1zXOrZe9RHTruTRckpDu7hWcwcuQCJww+kmlw3GzNjRMMN6RvxX0
JV2n
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://ls00002.ad.mah.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://ls00002.ad.mah.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
<!--
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://ls00002.ad.mah.se/idp/profile/SAML2/Redirect/SLO"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://ls00002.ad.mah.se/idp/profile/SAML2/POST/SLO"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://ls00002.ad.mah.se:8443/idp/profile/SAML2/SOAP/SLO"/>
-->
<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://ls00002.ad.mah.se/idp/profile/Shibboleth/SSO"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://ls00002.ad.mah.se/idp/profile/SAML2/POST/SSO"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://ls00002.ad.mah.se/idp/profile/SAML2/Redirect/SSO"/>
</IDPSSODescriptor>
<AttributeAuthorityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
<Extensions>
<shibmd:Scope regexp="false">ad.mah.se</shibmd:Scope>
</Extensions>
<KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>
MIIDLzCCAhegAwIBAgIUVNV40DAZB5mUHVKVe6tGY1I42hkwDQYJKoZIhvcNAQEL
BQAwHDEaMBgGA1UEAwwRbHMwMDAwMi5hZC5tYWguc2UwHhcNMTUwOTE1MTM0ODIx
WhcNMzUwOTE1MTM0ODIxWjAcMRowGAYDVQQDDBFsczAwMDAyLmFkLm1haC5zZTCC
ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJFxEzw0GeMNcOml3Nw3OIGB
MTNSGG9r6dDsDV5tSHR6Yr/klOSoVnNh6zA2Ll750WM40oWN9jOZGc9uu+SFsXxh
brkXcm1F78fVXV/h9G225sgux7g4/eMEC65gJncid566EF+ZJg1t0KIKxJq6j2W0
D5eDSaS6gUi7HF1Nk3047xYUQkN7NJdJfiWn2jHBMa0eEWzPDo2BhgZFkIUB0H0C
BN9t4RCtJeoj8sS7aDv5FShkTk7f40RLwH6Awr/oj8uRuDcNssRNO410QxRjtTov
iKsQxGRAd9fbxBounyR8Ug3uCSVIz/wcW99fj4MOluyjz3kV7P+gmfAJlBgRJCMC
AwEAAaNpMGcwHQYDVR0OBBYEFH7Ht/AR5jhuoXbez822ADbykyQIMEYGA1UdEQQ/
MD2CEWxzMDAwMDIuYWQubWFoLnNlhihodHRwczovL2xzMDAwMDIuYWQubWFoLnNl
L2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQAdqjtt6OkfZmFfITCY
vMuiid+scQo++NZVr/maC3GobCCqGEEb5biTaXT7u9Txd/gmc3Va0jp8a8zfg7xT
s3B4ptKQrSZdlEnBRjb1jEKjEwC/r5mrBw5zCkToZq2ZB4UnrvjqP26L0tJjIJcZ
tFPyUKph+Ra8kTudJR55h8cGNtrcacrrWYCgTuxOwvHI0kAbI9wf4nKJodi809/B
Jxk5G3+4FL1Bih22sNjCjyKhwzTZqeFO5nSEwHqHItc+wmWwXFrNlXorD9iR7AFX
D7P4t/ZEhlF/1zXOrZe9RHTruTRckpDu7hWcwcuQCJww+kmlw3GzNjRMMN6RvxX0
JV2n
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://ls00002.ad.mah.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
<!-- <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://ls00002.ad.mah.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> -->
<!-- If you uncomment the above you should add urn:oasis:names:tc:SAML:2.0:protocol to the protocolSupportEnumeration above -->
</AttributeAuthorityDescriptor>
</md:EntityDescriptor>
|