blob: 72c10d0ba2a8fd877165fbbcb2b2ddcfc5b31a30 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://solid-proxy.sunet.se/sp/metadata.xml">
<md:Extensions>
<mdattr:EntityAttributes>
<samla:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
</samla:Attribute>
</mdattr:EntityAttributes>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#md5"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#ripemd160"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-md5"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha224"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
<mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-02-18T08:30:19Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="false" WantAssertionsSigned="false">
<md:Extensions>
<idpdisc:DiscoveryResponse Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://solid-proxy.sunet.se/sp/disco" index="1"/>
<mdui:UIInfo>
<mdui:DisplayName xml:lang="en">Solid gateway (Test)</mdui:DisplayName>
<mdui:DisplayName xml:lang="sv">Solid gateway (Test)</mdui:DisplayName>
<mdui:Description xml:lang="en">Solid-OIDC-SAML bridge</mdui:Description>
<mdui:Description xml:lang="sv">Solid-OIDC-SAML bridge</mdui:Description>
<mdui:Logo height="720" width="600" xml:lang="en">https://solid-proxy.sunet.se/static/logo.png</mdui:Logo>
<mdui:Logo height="720" width="600" xml:lang="sv">https://solid-proxy.sunet.se/static/logo.png</mdui:Logo>
<mdui:InformationURL xml:lang="en">https://solid-proxy.sunet.se/index.html</mdui:InformationURL>
<mdui:InformationURL xml:lang="sv">https://solid-proxy.sunet.se/index.html</mdui:InformationURL>
<mdui:PrivacyStatementURL xml:lang="en">https://solid-proxy.sunet.se/privacy.html</mdui:PrivacyStatementURL>
<mdui:PrivacyStatementURL xml:lang="sv">https://solid-proxy.sunet.se/privacy.html</mdui:PrivacyStatementURL>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>MIIFazCCA1OgAwIBAgIUMafL5ktR8YfWJNZhBFlVxtBLLDkwDQYJKoZIhvcNAQEL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=
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>MIIFazCCA1OgAwIBAgIUMafL5ktR8YfWJNZhBFlVxtBLLDkwDQYJKoZIhvcNAQEL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=
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://solid-proxy.sunet.se/sp/acs/post" index="1"/>
<md:AttributeConsumingService index="1">
<md:ServiceName xml:lang="en">Solid-OIDC-SAML bridge</md:ServiceName>
<md:ServiceName xml:lang="sv">Solid-OIDC-SAML bridge</md:ServiceName>
<md:RequestedAttribute Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="cn" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonScopedAffiliation" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonTargetedID" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.7" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonEntitlement" isRequired="true"/>
<md:RequestedAttribute Name="urn:oasis:names:tc:SAML:attribute:subject-id" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="subject-id" isRequired="true"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonAssurance" isRequired="true"/>
</md:AttributeConsumingService>
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">The Swedish Research Council</md:OrganizationName>
<md:OrganizationName xml:lang="sv">Vetenskapsrådet</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">Sunet</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="sv">Sunet</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">https://sunet.se</md:OrganizationURL>
<md:OrganizationURL xml:lang="sv">https://sunet.se</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="administrative">
<md:GivenName>Administrative</md:GivenName>
<md:EmailAddress>mailto:ivan@sunet.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="technical">
<md:GivenName>Technical</md:GivenName>
<md:EmailAddress>mailto:ivan@sunet.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="support">
<md:GivenName>Support</md:GivenName>
<md:EmailAddress>mailto:ivan@sunet.se</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
|