blob: 5d8be16114d8f50bc684a4cedf82348315736120 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://idp.rsmith.org.uk/idp/shibboleth">
<md:Extensions>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue>http://refeds.org/category/hide-from-discovery</saml:AttributeValue>
</saml:Attribute>
</mdattr:EntityAttributes>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://ukfederation.org.uk" registrationInstant="2015-09-07T10:42:01Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://ukfederation.org.uk/doc/mdrps-20130902</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
</md:Extensions>
<md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
<md:Extensions>
<shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">rsmith.org.uk</shibmd:Scope>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="en">Rhys Smith</mdui:DisplayName>
<mdui:Description xml:lang="en">Rhys Smith's development IdP</mdui:Description>
<mdui:Logo height="160" width="160">https://idp.rsmith.org.uk/me_160x160.png</mdui:Logo>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.rsmith.org.uk:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.rsmith.org.uk:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.rsmith.org.uk/idp/profile/SAML2/Redirect/SLO"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.rsmith.org.uk/idp/profile/SAML2/POST/SLO"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.rsmith.org.uk/idp/profile/SAML2/POST-SimpleSign/SLO"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.rsmith.org.uk:8443/idp/profile/SAML2/SOAP/SLO"/>
<md:NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</md:NameIDFormat>
<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
<md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idp.rsmith.org.uk/idp/profile/Shibboleth/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.rsmith.org.uk/idp/profile/SAML2/POST/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idp.rsmith.org.uk/idp/profile/SAML2/POST-SimpleSign/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.rsmith.org.uk/idp/profile/SAML2/Redirect/SSO"/>
</md:IDPSSODescriptor>
<md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol">
<md:Extensions>
<shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">rsmith.org.uk</shibmd:Scope>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>
MIIDLzCCAhegAwIBAgIUK9DEIGDv4Ff0Wi8/uvBeGd5eyBswDQYJKoZIhvcNAQEL
BQAwHDEaMBgGA1UEAwwRaWRwLnJzbWl0aC5vcmcudWswHhcNMTUwODI0MTQ1MTEy
WhcNMzUwODI0MTQ1MTEyWjAcMRowGAYDVQQDDBFpZHAucnNtaXRoLm9yZy51azCC
ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAI7VQekyk7mtK2+Q3bBT1yor
LI0EaCfn/iv/+WiLUb46AlbeJ63js5lxnpN13PkA499rmchz1BoZ3TCgY4PORnVq
c1tm4FMvEE8J9PGwtzLNjXZRRKcVGH9m+uZD2rKpxCDr7RvVdECXn+Ef4IZuBjfX
cf7Av31JhwBFg8klqEYtSrNVkPuLzsZANB7TL7wwvmcXmwg/sAewFuKqn9tzGiRZ
Ft6TZckeHiZlFyxu67DZPkI2d+itSRczMiKOLLj1Su+5VkeWXA8DQtB7wNhQH53o
tvbLnoAHcgtxAyNLd/edsaUr12cDSwHutnXN0tvUyGZ2NJTWDl9l2+eOZS9oMkUC
AwEAAaNpMGcwHQYDVR0OBBYEFCMGVfANgpH28R39mgFLHtIqv68ZMEYGA1UdEQQ/
MD2CEWlkcC5yc21pdGgub3JnLnVrhihodHRwczovL2lkcC5yc21pdGgub3JnLnVr
L2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQAOHbNUtEcdeh4abEI9
Ow8UorELXPMs8SMEh8uNfWyT5qe3qQ3KvRKt3T7qTAWwxkD3spnnfKAVCm/5BIPQ
9BOjlsD/M11CoE3AgGvLTrComFyCUWp9ONtgyN+vG0vWOStfwaNyNAepL/MVyccD
6ERiSKKcUrAh5n/+PkA4uLnZTbfxF8RVaQfEHe19JOJyUEF6q2xVyeGMi0UiWvdU
ycMpGziHHivS+fp17vBSEm8bxtThUybNf9o3P+xvBcEaoStNsfzjxKBo56OFAqyV
p10apvU7O4BFOqWg+8deIyCGZoAHpTm22MeyoLo9LlCvXNdzYRwURxGq36jRnuCL
He9a
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>
MIIDLzCCAhegAwIBAgIUYnvfoMBUueVONNjmaouAYnntwdUwDQYJKoZIhvcNAQEL
BQAwHDEaMBgGA1UEAwwRaWRwLnJzbWl0aC5vcmcudWswHhcNMTUwODI0MTQ1MTA4
WhcNMzUwODI0MTQ1MTA4WjAcMRowGAYDVQQDDBFpZHAucnNtaXRoLm9yZy51azCC
ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIGrUlYHovXJOZ98APwykmXr
J32JsQOzZGyc5CQ/ybyjdNwlmLDtxNcuqvXxaLPVQOKwx3v4lojTbwXTEUrqTev4
t/dUULCosCs2yAxM/qvVos2Eejc2HPpcRCK1RkEiM2Orfy2xtC72SG0/WYeG8XdJ
l8npWiUxWjRHAUhvKxqUQ65Yf7r4kN/kQd+IUAF85d3daIBBCt4Het2k8BDh9Oq3
bmMfn4QtPVJa006mLAFYu668atPcqQkw/M8vm8epMSWSeVJBJIznGKR+7Slhz7Za
qFtkBzp99Bf/IUF89TSuVC1TtVzTPBHu6Kq7Q0S1xtiz5TuWnzzDJJ5j4SzaXicC
AwEAAaNpMGcwHQYDVR0OBBYEFJdJhR6iLvVIYxNPBGvcGEMP0yg+MEYGA1UdEQQ/
MD2CEWlkcC5yc21pdGgub3JnLnVrhihodHRwczovL2lkcC5yc21pdGgub3JnLnVr
L2lkcC9zaGliYm9sZXRoMA0GCSqGSIb3DQEBCwUAA4IBAQBlY8o7Xxvx1X2A9hVq
a6pubECXMGoKwEKaKPRCg0/MjHxMfNp+W1qry1U4dksY+zkZDYSUyi734evLerzZ
ldUBGWBa+0uRQfDZZs6+TUHqwe0C76p4q7gOF20Jpo8EJ6BID52su3IlR2S3GjLH
AY36CZ3REpahIC3KBvRq53o9ZI7jLX5IcYAbccptqwOI7PlZDekt0HHRu61KpVZk
lZBzsSHZrm4KkpmiOece1xC400Zq8/GLJ2F1kZaih0ugsN5qA2zKqqTJaAhyXwf3
LwRivthQNpAmJNymJsAPIh1vJ4DK2NxzIbtDEVOawuPgtb8ACjcpBbeVMmKrBRpE
RVjJ
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idp.rsmith.org.uk:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
<md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idp.rsmith.org.uk:8443/idp/profile/SAML2/SOAP/AttributeQuery"/>
</md:AttributeAuthorityDescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">Rhys Smith</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">Rhys Smith</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">http://www.rsmith.org.uk/</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="support">
<md:GivenName>Rhys</md:GivenName>
<md:SurName>Smith</md:SurName>
<md:EmailAddress>mailto:rhys@rsmith.org.uk</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="technical">
<md:GivenName>Rhys</md:GivenName>
<md:SurName>Smith</md:SurName>
<md:EmailAddress>mailto:rhys@rsmith.org.uk</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
|
