summaryrefslogtreecommitdiff
path: root/swamid-2.0/vfu.su.se-shibboleth.sso.xml
blob: 28317d6dfefc41eed31ff624f04bef85c5dbecfe (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" entityID="https://vfu.su.se/Shibboleth.sso">
  <md:Extensions>
    <mdrpi:RegistrationInfo registrationAuthority="http://www.swamid.se/" registrationInstant="2014-03-20T07:41:53Z">
      <mdrpi:RegistrationPolicy xml:lang="en">http://swamid.se/policy/mdrps</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
    <mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
      <samla:Attribute xmlns:samla="urn:oasis:names:tc:SAML:2.0:assertion" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" Name="http://macedir.org/entity-category">
        <samla:AttributeValue>http://www.geant.net/uri/dataprotection-code-of-conduct/v1</samla:AttributeValue>
      </samla:Attribute>
    </mdattr:EntityAttributes>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol urn:oasis:names:tc:SAML:2.0:protocol">
    <md:Extensions>
      <mdui:UIInfo>
        <mdui:DisplayName xml:lang="sv">Verksamhetsförlagd utbildning Stockholms universitet</mdui:DisplayName>
        <mdui:DisplayName xml:lang="en">Workplace Situated Education at Stockholm University</mdui:DisplayName>
        <mdui:Description xml:lang="sv">VFU är verksamhetsfölagd utbildning där utbildningen sker på en arbetsplats</mdui:Description>
        <mdui:Description xml:lang="en">VFU is workplace situated education where the education takes place at a work place</mdui:Description>
        <mdui:PrivacyStatementURL xml:lang="en">https://serviceportalen.su.se/sv-se/article/1366077</mdui:PrivacyStatementURL>
      </mdui:UIInfo>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://vfu.su.se/Shibboleth.sso/WAYF"/>
      <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://vfu.su.se/Shibboleth.sso/WAYF" index="1"/>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://vfu.su.se/Shibboleth.sso/WAYF/wavelan"/>
      <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://vfu.su.se/Shibboleth.sso/WAYF/wavelan" index="2"/>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://vfu.su.se/Shibboleth.sso/WAYF/idp.it.su.se"/>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://vfu.su.se/Shibboleth.sso/WAYF/guest-idp.it.su.se"/>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://vfu.su.se/Shibboleth.sso/SWAMID"/>
      <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://vfu.su.se/Shibboleth.sso/SWAMID" index="3"/>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://vfu.su.se/Shibboleth.sso/WAYF/eduid.se"/>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://vfu.su.se/Shibboleth.sso/WAYF/skolfederation-prod-ds"/>
      <idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://vfu.su.se/Shibboleth.sso/WAYF/skolfederation-prod-ds" index="4"/>
    </md:Extensions>
    <md:KeyDescriptor>
      <ds:KeyInfo>
        <ds:KeyName>vfu-prod-sp01</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=vfu-prod-sp01</ds:X509SubjectName>
          <ds:X509Certificate>MIIC7jCCAdagAwIBAgIJALmMhVR9S5weMA0GCSqGSIb3DQEBBQUAMBgxFjAUBgNV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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:KeyDescriptor>
      <ds:KeyInfo>
        <ds:KeyName>vfu-prod-app05.it.su.se</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=vfu-prod-app05.it.su.se</ds:X509SubjectName>
          <ds:X509Certificate>MIIEDDCCAnSgAwIBAgIJAPC59dnuvAHaMA0GCSqGSIb3DQEBCwUAMCIxIDAeBgNV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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://vfu.su.se/Shibboleth.sso/Artifact/SOAP" index="1"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://vfu.su.se/Shibboleth.sso/SLO/SOAP"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://vfu.su.se/Shibboleth.sso/SLO/Redirect"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vfu.su.se/Shibboleth.sso/SLO/POST"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://vfu.su.se/Shibboleth.sso/SLO/Artifact"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://vfu.su.se/Shibboleth.sso/NIM/SOAP"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://vfu.su.se/Shibboleth.sso/NIM/Redirect"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vfu.su.se/Shibboleth.sso/NIM/POST"/>
    <md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://vfu.su.se/Shibboleth.sso/NIM/Artifact"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://vfu.su.se/Shibboleth.sso/SAML/POST" index="5"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vfu.su.se/Shibboleth.sso/SAML2/POST" index="6"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://vfu.su.se/Shibboleth.sso/SAML2/Artifact" index="7"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://vfu.su.se/Shibboleth.sso/SAML2/ECP" index="8"/>
    <md:AttributeConsumingService index="1" isDefault="true">
      <md:ServiceName xml:lang="en">VFU-portalen</md:ServiceName>
      <md:RequestedAttribute FriendlyName="email" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="surName" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
      <md:RequestedAttribute FriendlyName="norEduPersonNIN" Name="urn:oid:1.3.6.1.4.1.2428.90.1.5" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">SU</md:OrganizationName>
    <md:OrganizationName xml:lang="sv">SU</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">Stockholm University</md:OrganizationDisplayName>
    <md:OrganizationDisplayName xml:lang="sv">Stockholms universitet</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">https://www.su.se/english</md:OrganizationURL>
    <md:OrganizationURL xml:lang="sv">https://www.su.se</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="technical">
    <md:SurName>IT-avdelningen</md:SurName>
    <md:EmailAddress>mailto:helpdesk@su.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="support">
    <md:SurName>IT-avdelningen</md:SurName>
    <md:EmailAddress>mailto:helpdesk@su.se</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="administrative">
    <md:SurName>IT-avdelningen</md:SurName>
    <md:EmailAddress>mailto:helpdesk@su.se</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>