blob: ed3b81a832ced00ffb72aa65f6106dac183b521b (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
|
<?xml version="1.0"?>
<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://aai-viewer.switch.ch/interfederation-test/shibboleth">
<Extensions>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://rr.aai.switch.ch/" registrationInstant="2011-10-07T14:06:43Z">
<mdrpi:RegistrationPolicy xml:lang="en">https://www.switch.ch/aai/federation/switchaai/metadata-registration-practice-statement.txt</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
</Extensions>
<SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol">
<Extensions>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="en">AAI Viewer Interfederation Test</mdui:DisplayName>
<mdui:Description xml:lang="en">This service is used to test the interfederation readiness of SWITCHaai Identity Providers.</mdui:Description>
</mdui:UIInfo>
</Extensions>
<KeyDescriptor>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>
MIIFRzCCBC+gAwIBAgICMcUwDQYJKoZIhvcNAQEFBQAwazELMAkGA1UEBhMCQk0x
GTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxHzAdBgNVBAsTFnd3dy5xdW92YWRp
c2dsb2JhbC5jb20xIDAeBgNVBAMTF1F1b1ZhZGlzIEdsb2JhbCBTU0wgSUNBMB4X
DTEwMTIwNjA5MTIyNloXDTEyMTIwNTA5MTIyNlowgcYxEzARBgsrBgEEAYI3PAIB
AxMCQ0gxFTATBgsrBgEEAYI3PAIBAhMEQmVybjEaMBgGA1UEDxMRVjEuMCwgQ2xh
dXNlIDUoYikxGzAZBgNVBAUTEkNILTAzNS43LjAwMS4yNzgtOTELMAkGA1UEBhMC
Q0gxEDAOBgNVBAgTB1p1ZXJpY2gxEDAOBgNVBAcTB1p1ZXJpY2gxDzANBgNVBAoT
BlNXSVRDSDEdMBsGA1UEAxMUYWFpLXZpZXdlci5zd2l0Y2guY2gwggEiMA0GCSqG
SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPqA4rar73XfGfXe83c9R5E95DOR8haMTj
QRJYRMQvBkPlp0f2uemyuZKKpS67Ej3j8unWUGFrpn/8wN43BA7F8lNabKL0sniL
EJ8oyA1rumhHSWyeO4XRDX7UNK7ndfP0I9BZSuOyZSNYB+uRHd+TjqOKO3lyJasU
FQ/lD+LrGyB3WErkkiIv9gdBLSqCIwM9GSwGpK/RR5QTJup447A4bZUYhcKfEpdx
MfRCq2si3CRyyIHw3gFPvyA++aQhMke86gd8ykk9CknatGraY3vp9ZaOpt6r4qQT
SbytBJGwviitNucmfByPnZQUeCyQHYWMiXZnl1CHVljzmR7oAFpZAgMBAAGjggGX
MIIBkzB0BggrBgEFBQcBAQRoMGYwKgYIKwYBBQUHMAGGHmh0dHA6Ly9vY3NwLnF1
b3ZhZGlzZ2xvYmFsLmNvbTA4BggrBgEFBQcwAoYsaHR0cDovL3RydXN0LnF1b3Zh
ZGlzZ2xvYmFsLmNvbS9xdnNzbGljYS5jcnQwUQYDVR0gBEowSDBGBgwrBgEEAb5Y
AAJkAQIwNjA0BggrBgEFBQcCARYoaHR0cDovL3d3dy5xdW92YWRpc2dsb2JhbC5j
b20vcmVwb3NpdG9yeTAfBgNVHREEGDAWghRhYWktdmlld2VyLnN3aXRjaC5jaDAL
BgNVHQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1Ud
IwQYMBaAFDJNoU/q8K6Ztu6bByyECBFQi+J+MDsGA1UdHwQ0MDIwMKAuoCyGKmh0
dHA6Ly9jcmwucXVvdmFkaXNnbG9iYWwuY29tL3F2c3NsaWNhLmNybDAdBgNVHQ4E
FgQUhMvsrzpNCmteAPWKpoOH9qNslqowDQYJKoZIhvcNAQEFBQADggEBAEqBKPS7
ntxhX+24dS03DjytHR/Z8fKFmofRD6pzAM1ln/EXXm3xfIPwrKU/eW/46Q/8qVdR
Yxa9UguXNoMY4VWPycdsgo16LDDBs5Yrl/aoJGmnUr3ECuXuNiE0NsxkTWQVdIyv
VuBSFkisYlM/cGnhkYqMolekACJdRroKeWvxdTWOKXuh2V8YqeSBxjKByzJvAXbu
JTEstSpuAT8OldXKMIPdSB85VNP5yQSatX98A0Msv2lxbHqQHOCE6S0rqwi8bOnb
/pPzH4mnuov5iz3ZLfR5jAvgdHeiTmWNjEKHC3R7uccXko0QtYW1fmwhLZEcfNyl
85gvK0sAt3JJ+nA=
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SLO/Redirect"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SLO/POST"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SLO/Artifact"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SLO/SOAP"/>
<ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/NIM/Redirect"/>
<ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/NIM/POST"/>
<ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/NIM/Artifact"/>
<ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/NIM/SOAP"/>
<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SAML2/POST" index="1"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SAML2/Artifact" index="3"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SAML2/ECP" index="4"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SAML/POST" index="5"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://aai-viewer.switch.ch/interfederation-test/Shibboleth.sso/SAML/Artifact" index="6"/>
<AttributeConsumingService index="1">
<ServiceName xml:lang="en">AAI Viewer Interfederation Test</ServiceName>
<ServiceDescription xml:lang="en">This service is used to test the interfederation readiness of SWITCHaai Identity Providers.</ServiceDescription>
<RequestedAttribute FriendlyName="email" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<RequestedAttribute FriendlyName="eduPersonTargetedID" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<RequestedAttribute FriendlyName="commonName" Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<RequestedAttribute FriendlyName="schacHomeOrganization" Name="urn:oid:1.3.6.1.4.1.25178.1.2.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<RequestedAttribute FriendlyName="schacHomeOrganizationType" Name="urn:oid:1.3.6.1.4.1.25178.1.2.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
</AttributeConsumingService>
</SPSSODescriptor>
<Organization>
<OrganizationName xml:lang="en">switch.ch</OrganizationName>
<OrganizationDisplayName xml:lang="en">SWITCH</OrganizationDisplayName>
<OrganizationURL xml:lang="en">http://www.switch.ch/</OrganizationURL>
</Organization>
<ContactPerson contactType="technical">
<GivenName>AAI</GivenName>
<SurName>Team</SurName>
<EmailAddress>aai@switch.ch</EmailAddress>
<TelephoneNumber>+41 44 268 15 05</TelephoneNumber>
</ContactPerson>
</EntityDescriptor>
|
