blob: 0d8a7a8091769f251b9641198098a42b6321541b (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://idp.bc.cas.cz/idp/shibboleth">
<md:Extensions>
<eduidmd:RepublishRequest xmlns:eduidmd="http://eduid.cz/schema/metadata/1.0">
<eduidmd:RepublishTarget>http://edugain.org/</eduidmd:RepublishTarget>
</eduidmd:RepublishRequest>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://www.eduid.cz/" registrationInstant="2014-05-02T15:40:40Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://www.eduid.cz/wiki/_media/en/eduid/policy/policy_eduid_en-1_1.pdf</mdrpi:RegistrationPolicy>
<mdrpi:RegistrationPolicy xml:lang="cs">http://www.eduid.cz/wiki/_media/eduid/policy/policy_eduid_cz-1_1-3.pdf</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue>http://eduid.cz/uri/idp-group/avcr</saml:AttributeValue>
</saml:Attribute>
</mdattr:EntityAttributes>
</md:Extensions>
<md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
<md:Extensions>
<shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">bc.cas.cz</shibmd:Scope>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="en">Biology Centre AS CR</mdui:DisplayName>
<mdui:DisplayName xml:lang="cs">Biologické centrum AV ČR, AV ČR</mdui:DisplayName>
<mdui:Description xml:lang="en">Identity Provider BC AS CR employees.</mdui:Description>
<mdui:Description xml:lang="cs">Identity Provider pro zaměstnance BC AV ČR</mdui:Description>
<mdui:InformationURL xml:lang="en">http://www.bc.cas.cz/</mdui:InformationURL>
<mdui:InformationURL xml:lang="cs">http://www.bc.cas.cz/</mdui:InformationURL>
<mdui:Logo height="44" width="74">https://gedeon.cas.cz/loga/logo-bc-44.png</mdui:Logo>
<mdui:Logo height="411" width="960">https://gedeon.cas.cz/loga/logo-bc-255.png</mdui:Logo>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.bc.cas.cz:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.bc.cas.cz:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
<md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat>
<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
<md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.bc.cas.cz/idp/profile/Shibboleth/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.bc.cas.cz/idp/profile/SAML2/POST/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.bc.cas.cz/idp/profile/SAML2/POST-SimpleSign/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.bc.cas.cz/idp/profile/SAML2/Redirect/SSO"/>
</md:IDPSSODescriptor>
<md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
<md:Extensions>
<shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">bc.cas.cz</shibmd:Scope>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.bc.cas.cz:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
</md:AttributeAuthorityDescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">Biology Centre AS CR</md:OrganizationName>
<md:OrganizationName xml:lang="cs">Biologické centrum AV ČR</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">Biology Centre AS CR</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="cs">Biologické centrum AV ČR, v.v.i.</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">http://www.bc.cas.cz/</md:OrganizationURL>
<md:OrganizationURL xml:lang="cs">http://www.bc.cas.cz/</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="technical">
<md:GivenName>Petr</md:GivenName>
<md:SurName>Vaníček</md:SurName>
<md:EmailAddress>vanicekp@utia.cas.cz</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
|