blob: 4df6a2def03a551ec7d9e1ab48cc2aacf4d044f2 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://meta.cesnet.cz/sp/shibboleth">
<md:Extensions>
<eduidmd:RepublishRequest xmlns:eduidmd="http://eduid.cz/schema/metadata/1.0">
<eduidmd:RepublishTarget>http://edugain.org/</eduidmd:RepublishTarget>
</eduidmd:RepublishRequest>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue>http://refeds.org/category/research-and-scholarship</saml:AttributeValue>
<saml:AttributeValue>http://eduid.cz/uri/sp-group/aa.cesnet.cz</saml:AttributeValue>
</saml:Attribute>
</mdattr:EntityAttributes>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://www.eduid.cz/" registrationInstant="2010-09-15T11:47:38Z">
<mdrpi:RegistrationPolicy xml:lang="en">http://www.eduid.cz/wiki/_media/en/eduid/policy/policy_eduid_en-1_1.pdf</mdrpi:RegistrationPolicy>
<mdrpi:RegistrationPolicy xml:lang="cs">http://www.eduid.cz/wiki/_media/eduid/policy/policy_eduid_cz-1_1-3.pdf</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
<md:Extensions>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="en">Perun</mdui:DisplayName>
<mdui:DisplayName xml:lang="cs">Perun</mdui:DisplayName>
<mdui:Description xml:lang="en">Perun is a system for managing user accounts, user groups and access to computational resources and services in cloud, grid and other e-infrastructures. This Perun instance manages e-infrastructure of CESNET, which is an association of Czech public universities and the Czech Academy of Sciences.</mdui:Description>
<mdui:Description xml:lang="cs">Perun je systém pro správu uživatelských účtů, skupin uživatelů a práv přístupu k výpočetním prostředkům a službám v cloudových, gridových a dalších e-infrastrukturách. Tato instance Peruna spravuje e-infrastrukturu organizace CESNET, která je sdružením českých veřejných vysokých škol a ústavů Akademie věd.</mdui:Description>
<mdui:InformationURL xml:lang="en">http://perun.cesnet.cz/</mdui:InformationURL>
<mdui:InformationURL xml:lang="cs">http://perun.cesnet.cz/</mdui:InformationURL>
<mdui:Logo height="40" width="128">https://perun.cesnet.cz/img/perun_logo+name.png</mdui:Logo>
</mdui:UIInfo>
<DiscoveryResponse xmlns="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://www.metacentrum.cz/Shibboleth.sso/WAYF" index="1"/>
<DiscoveryResponse xmlns="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://www.metacentrum.cz/Shibboleth.sso/WAYF/eduid" index="2"/>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:KeyName>https://meta.cesnet.cz/sp/shibboleth</ds:KeyName>
<ds:KeyName>meta.cesnet.cz</ds:KeyName>
<ds:KeyName>selfsigned</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=meta.cesnet.cz</ds:X509SubjectName>
<ds:X509Certificate>MIIDFzCCAf+gAwIBAgIJAItJ0DlrFWWSMA0GCSqGSIb3DQEBBQUAMBkxFzAVBgNV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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:KeyName>https://meta.cesnet.cz/sp/shibboleth</ds:KeyName>
<ds:KeyName>meta.cesnet.cz</ds:KeyName>
<ds:KeyName>selfsigned</ds:KeyName>
<ds:X509Data>
<ds:X509SubjectName>CN=meta.cesnet.cz</ds:X509SubjectName>
<ds:X509Certificate>MIIDFzCCAf+gAwIBAgIJAItJ0DlrFWWSMA0GCSqGSIb3DQEBBQUAMBkxFzAVBgNV
BAMTDm1ldGEuY2VzbmV0LmN6MB4XDTE2MTAxOTEwNTY0M1oXDTM2MTAxNDEwNTY0
M1owGTEXMBUGA1UEAxMObWV0YS5jZXNuZXQuY3owggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCtaUribY9Y6IGWClH4Ppd5X7S9mYALRdSzWCK4o9mEtkOv
QguyHpBq56JWrnBuNeP52psaY448ENFpaPNO7CudpzaUzcyvWJGzkPnVugUvqErw
rnHLtoa41gtHR5udhRjd/FSG6tK+FCVKLbN+JNTCvht4vo7qPnKpDYo4oM23J9oo
oFGZFoy3LEotrU2h27frTTK15chmW38SUeHw7arsAxC1PpVP7Y5GuJ1zBNDjoNjl
b51Ox/QlK45HxflNafGT25FF95FlLa60lHVBHxR/U0dQS7JSGo/R2bcZuCECstKt
pKgMsVcAg27RIpQuRBJlOy+XlPoJrebZj9qKcRXpAgMBAAGjYjBgMD8GA1UdEQQ4
MDaCDm1ldGEuY2VzbmV0LmN6hiRodHRwczovL21ldGEuY2VzbmV0LmN6L3NwL3No
aWJib2xldGgwHQYDVR0OBBYEFAGg7In7TgkGzrtTnNy1BxBuIuRUMA0GCSqGSIb3
DQEBBQUAA4IBAQBh/QDVDbsxbnTSaiJK5SZyij/sZK+97c53bVyZDUB0Yqefnwg6
pi8ycb4R5ybg0nbne7+73mOYJ9PaAEf9/fvZekTmFxGBH66Rdf1VUTHwkGDtv2PP
Ce8gFzqYoAQ/AsEVSQlsr1JxbVV9UZ1bmFt4sm5vCJ2gYfvKeeZD5L9m0+2yI0Wp
/8qNCqXYzGz5alyOb2WbkpFbiQpGpP48OGeSyuGWpzBS0uqz6ppeHt42ymwCOp8F
YVIS9nf6ppdlkXygSp1YYNZU/62KKSJzpS92EpL5Qhf2efN2tz+fvrtUWxvlBP9l
F/tYIBaveztr0WH48LK8C8oImfu8o1nhmyFn
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://www.metacentrum.cz/Shibboleth.sso/Artifact/SOAP" index="1"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://www.metacentrum.cz/Shibboleth.sso/SLO/SOAP"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://www.metacentrum.cz/Shibboleth.sso/SLO/Redirect"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.metacentrum.cz/Shibboleth.sso/SLO/POST"/>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://www.metacentrum.cz/Shibboleth.sso/SLO/Artifact"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://www.metacentrum.cz/Shibboleth.sso/NIM/SOAP"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://www.metacentrum.cz/Shibboleth.sso/NIM/Redirect"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.metacentrum.cz/Shibboleth.sso/NIM/POST"/>
<md:ManageNameIDService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://www.metacentrum.cz/Shibboleth.sso/NIM/Artifact"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://metacentrum.cz/Shibboleth.sso/SAML2/POST" index="1"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://metavo.metacentrum.cz/Shibboleth.sso/SAML2/POST" index="2"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://meta.cesnet.cz/Shibboleth.sso/SAML2/POST" index="3"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://einfra.cesnet.cz/Shibboleth.sso/SAML2/POST" index="4"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://perun.cesnet.cz/Shibboleth.sso/SAML2/POST" index="5"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://perun.metacentrum.cz/Shibboleth.sso/SAML2/POST" index="6"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://wiki.metacentrum.cz/Shibboleth.sso/SAML2/POST" index="7"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://alcor.ics.muni.cz/Shibboleth.sso/SAML2/POST" index="8"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.metacentrum.cz/Shibboleth.sso/SAML2/POST" index="9"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://www.metacentrum.cz/Shibboleth.sso/SAML2/POST-SimpleSign" index="10"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://www.metacentrum.cz/Shibboleth.sso/SAML2/Artifact" index="11"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://www.metacentrum.cz/Shibboleth.sso/SAML2/ECP" index="12"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://www.metacentrum.cz/Shibboleth.sso/SAML/POST" index="13"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://www.metacentrum.cz/Shibboleth.sso/SAML/Artifact" index="14"/>
<md:AttributeConsumingService index="1">
<md:ServiceName xml:lang="en">Perun</md:ServiceName>
<md:ServiceName xml:lang="cs">Perun</md:ServiceName>
<md:ServiceDescription xml:lang="en">Perun is a system for managing user accounts, user groups and access to the computational resources and services in cloud, grid and other e-infrastructures.</md:ServiceDescription>
<md:ServiceDescription xml:lang="cs">Perun je systém pro správu uživatelských účtů, skupin uživatelů a práv přístupu k výpočetním prostředkům a službám v cloudových, gridových a dalších e-infrastrukturách. </md:ServiceDescription>
<md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="cn" Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<md:RequestedAttribute FriendlyName="o" Name="urn:oid:2.5.4.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
</md:AttributeConsumingService>
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">CESNET</md:OrganizationName>
<md:OrganizationName xml:lang="cs">CESNET</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">CESNET</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="cs">CESNET</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">http://perun.cesnet.cz/</md:OrganizationURL>
<md:OrganizationURL xml:lang="cs">http://perun.cesnet.cz/</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="technical">
<md:GivenName>Martin</md:GivenName>
<md:SurName>Kuba</md:SurName>
<md:EmailAddress>makub@cesnet.cz</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
|
