blob: 549e1d5bb4d3987a08d63c78d93dff48ac3986f2 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://stark.kau.se/shibboleth">
<md:Extensions>
<mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2022-05-09T09:23:39Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
<alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
</samla:Attribute>
</mdattr:EntityAttributes>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
<md:Extensions>
<init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://stark.kau.se/Shibboleth.sso/Login/mufasa"/>
<mdui:UIInfo>
<mdui:DisplayName xml:lang="en">Activate my Organisation eID</mdui:DisplayName>
<mdui:DisplayName xml:lang="sv">Aktivera min tjänstelegitimation</mdui:DisplayName>
<mdui:PrivacyStatementURL xml:lang="sv">https://stark.kau.se/privacy/sv</mdui:PrivacyStatementURL>
<mdui:PrivacyStatementURL xml:lang="en">https://stark.kau.se/privacy/en</mdui:PrivacyStatementURL>
<mdui:InformationURL xml:lang="en">https://stark.kau.se/information/en</mdui:InformationURL>
<mdui:InformationURL xml:lang="sv">https://stark.kau.se/information/sv</mdui:InformationURL>
<mdui:Description xml:lang="sv">Med den här tjänsten kan du skapa eller uppdatera din tjänstelegitimation ovanpå ditt privat Freja+</mdui:Description>
<mdui:Description xml:lang="en">This service enables you to create or update your organisation eID alongside your private Freja+</mdui:Description>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo>
<ds:KeyName>https://mufasa.sae.kau.se/shibboleth</ds:KeyName>
<ds:KeyName>mufasa.sae.kau.se</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=mufasa.sae.kau.se</ds:X509SubjectName>
<ds:X509Certificate>MIIFKzCCAxOgAwIBAgIUAZ/hG0i3tITtVlrU5613vzeU0LUwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo>
<ds:KeyName>https://mufasa.sae.kau.se/shibboleth</ds:KeyName>
<ds:KeyName>mufasa.sae.kau.se</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=mufasa.sae.kau.se</ds:X509SubjectName>
<ds:X509Certificate>MIIFKzCCAxOgAwIBAgIUJ5RQgl/QUSpzXBJs1OB4tqsaZzQwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
<md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://stark.kau.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://stark.kau.se/Shibboleth.sso/SLO/SOAP"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://stark.kau.se/Shibboleth.sso/SLO/Redirect"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stark.kau.se/Shibboleth.sso/SLO/POST"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://stark.kau.se/Shibboleth.sso/SLO/Artifact"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://stark.kau.se/Shibboleth.sso/SAML2/POST" index="1"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://stark.kau.se/Shibboleth.sso/SAML2/Artifact" index="2"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://stark.kau.se/Shibboleth.sso/SAML2/ECP" index="3"/>
<md:AttributeConsumingService index="1">
<md:ServiceName xml:lang="en">Activate my Organisation eID</md:ServiceName>
<md:ServiceName xml:lang="sv">Aktivera min tjänstelegitimation</md:ServiceName>
<md:RequestedAttribute FriendlyName="personalIdentityNumber" Name="urn:oid:1.2.752.29.4.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
</md:AttributeConsumingService>
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">KAU</md:OrganizationName>
<md:OrganizationName xml:lang="sv">KAU</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="sv">Karlstads universitet</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="en">Karlstad University</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">https://www.kau.se/en</md:OrganizationURL>
<md:OrganizationURL xml:lang="sv">https://www.kau.se</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="administrative">
<md:SurName>IT-avdelningen</md:SurName>
<md:EmailAddress>mailto:webbteknik@kau.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="technical">
<md:SurName>IT-avdelningen</md:SurName>
<md:EmailAddress>mailto:webbteknik@kau.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="support">
<md:SurName>IT-avdelningen</md:SurName>
<md:EmailAddress>mailto:2525@kau.se</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
<md:GivenName>Incident Response Team, IT department</md:GivenName>
<md:EmailAddress>mailto:irt@kau.se</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
|