blob: 3e617c7d5d2a8b480374d6b16362f279ed331014 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
|
<?xml version="1.0" encoding="UTF-8"?>
<!--
This is example metadata only. Do *NOT* supply it as is without review,
and do *NOT* provide it in real time to your partners.
This metadata is not dynamic - it will not change as your configuration changes.
-->
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://shibbo3test.ltu.se/idp/shibboleth">
<md:Extensions>
<mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/">
<mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
</md:Extensions>
<IDPSSODescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0" errorURL="https://error.swamid.se/?errorurl_code=ERRORURL_CODE&errorurl_ts=ERRORURL_TS&errorurl_rp=ERRORURL_RP&errorurl_tid=ERRORURL_TID&errorurl_ctx=ERRORURL_CTX&entityid=https://shibbo3test.ltu.se/idp/shibboleth">
<Extensions>
<shibmd:Scope regexp="false">ltu.se</shibmd:Scope>
<mdui:UIInfo>
<mdui:DisplayName xml:lang="en">A Name for the IdP at shibbo3test.ltu.se</mdui:DisplayName>
<mdui:Description xml:lang="en">Enter a description of your IdP at shibbo3test.ltu.se</mdui:Description>
</mdui:UIInfo>
</Extensions>
<KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibbo3test.ltu.se:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibbo3test.ltu.se:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
<!--
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shibbo3test.ltu.se/idp/profile/SAML2/Redirect/SLO"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibbo3test.ltu.se/idp/profile/SAML2/POST/SLO"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibbo3test.ltu.se:8443/idp/profile/SAML2/SOAP/SLO"/>
-->
<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://shibbo3test.ltu.se/idp/profile/Shibboleth/SSO"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibbo3test.ltu.se/idp/profile/SAML2/POST/SSO"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shibbo3test.ltu.se/idp/profile/SAML2/Redirect/SSO"/>
</IDPSSODescriptor>
<AttributeAuthorityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
<Extensions>
<shibmd:Scope regexp="false">ltu.se</shibmd:Scope>
</Extensions>
<KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibbo3test.ltu.se:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
<!-- <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibbo3test.ltu.se:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> -->
<!-- If you uncomment the above you should add urn:oasis:names:tc:SAML:2.0:protocol to the protocolSupportEnumeration above -->
</AttributeAuthorityDescriptor>
</md:EntityDescriptor>
|