blob: 277c5311dcfaa50a17ad9dbfbbcb283392fe54d0 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
|
<?xml version="1.0"?>
<md:EntityDescriptor xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="urn:mace:incommon:columbia.edu">
<md:Extensions>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="https://incommon.org"/>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category-support" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue>http://id.incommon.org/category/research-and-scholarship</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue>http://id.incommon.org/category/registered-by-incommon</saml:AttributeValue>
</saml:Attribute>
</mdattr:EntityAttributes>
</md:Extensions>
<md:IDPSSODescriptor protocolSupportEnumeration="urn:mace:shibboleth:1.0 urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
<md:Extensions>
<shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">columbia.edu</shibmd:Scope>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="en">Columbia University</mdui:DisplayName>
</mdui:UIInfo>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibboleth.columbia.edu:8443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
<md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibboleth.columbia.edu:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
<md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://shibboleth.columbia.edu/idp/profile/Shibboleth/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://shibboleth.columbia.edu/idp/profile/SAML2/POST/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://shibboleth.columbia.edu/idp/profile/SAML2/POST-SimpleSign/SSO"/>
<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://shibboleth.columbia.edu/idp/profile/SAML2/Redirect/SSO"/>
</md:IDPSSODescriptor>
<md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
<md:Extensions>
<shibmd:Scope xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" regexp="false">columbia.edu</shibmd:Scope>
</md:Extensions>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://shibboleth.columbia.edu:8443/idp/profile/SAML1/SOAP/AttributeQuery"/>
<md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://shibboleth.columbia.edu:8443/idp/profile/SAML2/SOAP/AttributeQuery"/>
</md:AttributeAuthorityDescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">Columbia University</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">Columbia University</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">http://www.columbia.edu/</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="technical">
<md:GivenName>Andrew Johnston</md:GivenName>
<md:EmailAddress>andrew@columbia.edu</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson contactType="administrative">
<md:GivenName>Identity and Access Management Group</md:GivenName>
<md:EmailAddress>iam-group@columbia.edu</md:EmailAddress>
</md:ContactPerson>
</md:EntityDescriptor>
|