blob: bfc19d93aa4f3a181a2b0996e25f638a2255b491 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
|
<?xml version="1.0" encoding="UTF-8"?>
<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://idp.painless-security.com/idp/shibboleth">
<!--
This is a Shibboleth IdP for Painless Security, LLC.
-->
<Extensions>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://ukfederation.org.uk" registrationInstant="2015-07-07T13:46:22Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://ukfederation.org.uk/doc/mdrps-20130902</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
</Extensions>
<IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
<Extensions>
<shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">painless-security.com</shibmd:Scope>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="en">Painless Security, LLC</mdui:DisplayName>
<mdui:Description xml:lang="en">Single sign-on for staff, contractors and guests of Painless Security, LLC.
</mdui:Description>
</mdui:UIInfo>
</Extensions>
<KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.painless-security.com:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.painless-security.com:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
<NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
<SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.painless-security.com/idp/profile/Shibboleth/SSO"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.painless-security.com/idp/profile/SAML2/POST/SSO"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.painless-security.com/idp/profile/SAML2/POST-SimpleSign/SSO"/>
<SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.painless-security.com/idp/profile/SAML2/Redirect/SSO"/>
</IDPSSODescriptor>
<AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
<Extensions>
<shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">painless-security.com</shibmd:Scope>
</Extensions>
<KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>
MIIDTzCCAjegAwIBAgIUQynxnQARWSAiT433dOEy4rgUWoswDQYJKoZIhvcNAQEL
BQAwJDEiMCAGA1UEAwwZaWRwLnBhaW5sZXNzLXNlY3VyaXR5LmNvbTAeFw0xNTA2
MDkxOTUyNTlaFw0zNTA2MDkxOTUyNTlaMCQxIjAgBgNVBAMMGWlkcC5wYWlubGVz
cy1zZWN1cml0eS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl
yldHUHv/seFmWguFN28U6c/zLp6+caSZ2GCC84uP0ffvHbd6TV/JUeo6h5RVjjPB
beWDCUFbxpQEOtNokdOAdrmMu11AtW0u0oyppmbVhfd9uIXJxnAUmq/AHtpqngUj
yKl8ddJEVTqeX3iBiBZSXRBGjed4ZLqh1wmWfgZDxJS44sK3panId4NdV5SzjgJ8
UtKuwtH9P84xvMMQjgLcmBtnRU+3Fwi50f5Q56tkJYJXC0rp8GMJkuX20aKrk9Xx
R3E2g3m++A1Flai3k0YK7m4sEK7LMWIby7ALzzXgRyboZVYtYpYRILY/K0lXh9BL
3amhcIYQXRalaNYLqX8RAgMBAAGjeTB3MB0GA1UdDgQWBBRrLqZ+Xuc7a8no4h3R
KqK0MCyXTzBWBgNVHREETzBNghlpZHAucGFpbmxlc3Mtc2VjdXJpdHkuY29thjBo
dHRwczovL2lkcC5wYWlubGVzcy1zZWN1cml0eS5jb20vaWRwL3NoaWJib2xldGgw
DQYJKoZIhvcNAQELBQADggEBADnukeJJTy53hb7t2zGznoX8RVJPUXU+YO47ZTnu
fq1K6XRqN76baq0Xrie5sgbmryC9OQz087B5PRTD9e7Rb+87JaMfQzfLApb6D2I3
nWCI/CaywJ8T2J3+2MY78gjLcWezgigkt1KNDc4nkhSWrMdNlqQ7JbGHWSWiN89P
TTe6Z8/NNhCjizcNqZcvmySgRlvIiTdhgLqXxmDAArizrLVq7HElbNoc0IW03LBX
QTRNrAggfvMGf32MdIPPCfX9odu63lwZfx17sqPxvdQ2xq2ZL6iAXbC65rtlKTjW
gcWNbUNwBO9L972+8/PKLZD/V0mGrrlgDpwI6rKuIlaQTzk=
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</KeyDescriptor>
<AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.painless-security.com:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
</AttributeAuthorityDescriptor>
<Organization>
<OrganizationName xml:lang="en">Painless Security, LLC</OrganizationName>
<OrganizationDisplayName xml:lang="en">Painless Security, LLC</OrganizationDisplayName>
<OrganizationURL xml:lang="en">http://www.painless-security.com/</OrganizationURL>
</Organization>
<ContactPerson contactType="support">
<GivenName>Sam</GivenName>
<SurName>Hartman</SurName>
<EmailAddress>mailto:hartmans@painless-security.com</EmailAddress>
</ContactPerson>
<ContactPerson contactType="support">
<GivenName>Mark</GivenName>
<SurName>Donnelly</SurName>
<EmailAddress>mailto:mark@painless-security.com</EmailAddress>
</ContactPerson>
<ContactPerson contactType="technical">
<GivenName>Sam</GivenName>
<SurName>Hartman</SurName>
<EmailAddress>mailto:hartmans@painless-security.com</EmailAddress>
</ContactPerson>
<ContactPerson contactType="technical">
<GivenName>Mark</GivenName>
<SurName>Donnelly</SurName>
<EmailAddress>mailto:mark@painless-security.com</EmailAddress>
</ContactPerson>
</EntityDescriptor>
|
