blob: b58d123c011146cd03b868024306998f19bd8b2b (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
|
<?xml version="1.0" encoding="UTF-8"?>
<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://isls-shibsp1.wmin.ac.uk/shibboleth">
<!--
This is a Shibboleth SP for the University of Westminster.
-->
<Extensions>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://ukfederation.org.uk"/>
<DigestMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
<DigestMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
<DigestMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<DigestMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
<DigestMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<SigningMethod xmlns="urn:oasis:names:tc:SAML:metadata:algsupport" Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
</Extensions>
<SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
<Extensions>
<idpdisc:DiscoveryResponse xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/DS" index="1"/>
</Extensions>
<KeyDescriptor>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>
MIIEfDCCA2SgAwIBAgIRAKcKlpWKeiQ2JgZOpQd7r2EwDQYJKoZIhvcNAQEFBQAw
NjELMAkGA1UEBhMCTkwxDzANBgNVBAoTBlRFUkVOQTEWMBQGA1UEAxMNVEVSRU5B
IFNTTCBDQTAeFw0xMzAzMDQwMDAwMDBaFw0xNjAzMDMyMzU5NTlaMEUxITAfBgNV
BAsTGERvbWFpbiBDb250cm9sIFZhbGlkYXRlZDEgMB4GA1UEAxMXaXNscy1zaGli
c3AxLndtaW4uYWMudWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq
Sxx+9Zm7n7ts0gcLBL/GQZP56I05X3MvQlwpUBuA9yklTUwj0pqHoFA52djvPQ0B
qQQHkIfn9oasbC5W9RoDWfLYgFKYTx3Hat8eXz+qBYBUBvjRSVbCvwcIuKPwkOYd
jLhbwhzBKQjJ2IRWFt7/+fapP5pD1GH0ONYi8CGGYl2GDq3PR5q0vY1138k929Qf
5/usrmB8gS+dWP3YDFtZHVSKAPJPRTAYdxrXu0oNljNoCe1qYzwjCQ8PaFiblrD5
XwdDgzpVTIsIcNvCqlzSQLdonuL/PNsyX1zp6ZVE0YK+MwHY2PHuLAvAelmJuev7
Rv6RvrK9/aqow00uvGjzAgMBAAGjggF0MIIBcDAfBgNVHSMEGDAWgBQMvZNoDPPe
q6NJays3V0fqkOO57TAdBgNVHQ4EFgQUlraHm+YFRDr0FiNFsq5kX8EU4ZYwDgYD
VR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG
CCsGAQUFBwMCMCIGA1UdIAQbMBkwDQYLKwYBBAGyMQECAh0wCAYGZ4EMAQIBMDoG
A1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9jcmwudGNzLnRlcmVuYS5vcmcvVEVSRU5B
U1NMQ0EuY3JsMG0GCCsGAQUFBwEBBGEwXzA1BggrBgEFBQcwAoYpaHR0cDovL2Ny
dC50Y3MudGVyZW5hLm9yZy9URVJFTkFTU0xDQS5jcnQwJgYIKwYBBQUHMAGGGmh0
dHA6Ly9vY3NwLnRjcy50ZXJlbmEub3JnMCIGA1UdEQQbMBmCF2lzbHMtc2hpYnNw
MS53bWluLmFjLnVrMA0GCSqGSIb3DQEBBQUAA4IBAQAlJVMwZfnCbDGZ6tRoWcv/
9SsLIpuq3Qqz0h0Yj0UdsIQ8PN9XSf1XIQj4pcNA1l1vktjPtPj6NKihliOIyZse
shUfTdaZW03i6lEGiluEUptYKDnIOx37EPJjzv/LqLNGK9Pc6RaPn3tsWF7SXMxw
7w749ND4CQlVRFyrH5eYy9RhrKWjr+dA/wvnx+Zd+6+KtsqrAA3nn+LHyrGKpx1o
8lNuCyzYaYjhVk66P94RHX24e+pNbKMB8rgrY3yDCduz+RTpfpei2zdyQ7ozhrsC
axbN6Uoxykqr5+rRKWbZi38xg9VP+mnAXiGvl5s+v2hjV6Gq2/orQwDLhV+b40U4
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
</KeyDescriptor>
<KeyDescriptor>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
</KeyDescriptor>
<ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/Artifact/SOAP" index="1"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SLO/SOAP"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SLO/Redirect"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SLO/POST"/>
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SLO/Artifact"/>
<ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/NIM/SOAP"/>
<ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/NIM/Redirect"/>
<ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/NIM/POST"/>
<ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/NIM/Artifact"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SAML2/POST" index="1"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SAML2/Artifact" index="3"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SAML2/ECP" index="4"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SAML/POST" index="5"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://isls-shibsp1.wmin.ac.uk/Shibboleth.sso/SAML/Artifact" index="6"/>
</SPSSODescriptor>
<Organization>
<OrganizationName xml:lang="en">University of Westminster</OrganizationName>
<OrganizationDisplayName xml:lang="en">University of Westminster: Shibboleth Service Provider</OrganizationDisplayName>
<OrganizationURL xml:lang="en">http://www.wmin.ac.uk/</OrganizationURL>
</Organization>
<ContactPerson contactType="support">
<GivenName>Ann</GivenName>
<SurName>Munn</SurName>
<EmailAddress>mailto:a.e.munn@westminster.ac.uk</EmailAddress>
</ContactPerson>
<ContactPerson contactType="technical">
<GivenName>Dave</GivenName>
<SurName>Marriott</SurName>
<EmailAddress>mailto:d.marriott@westminster.ac.uk</EmailAddress>
</ContactPerson>
</EntityDescriptor>
|
