blob: cb1cebde1d9e08bbb7983b55d5f0bdbe81ef80e2 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
|
<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://wayf.nikhef.nl/wayf/sp">
<md:Extensions>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://www.surfconext.nl/" registrationInstant="2016-07-18T00:00:00Z">
<mdrpi:RegistrationPolicy xml:lang="en">https://wiki.surfnet.nl/display/eduGAIN/EduGAIN</mdrpi:RegistrationPolicy>
</mdrpi:RegistrationInfo>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:string">http://refeds.org/category/research-and-scholarship</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:string">https://refeds.org/sirtfi</saml:AttributeValue>
</saml:Attribute>
</mdattr:EntityAttributes>
</md:Extensions>
<md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="true">
<md:KeyDescriptor use="signing">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:KeyDescriptor use="encryption">
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</md:KeyDescriptor>
<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://wayf.nikhef.nl/sso/module.php/saml/sp/saml2-logout.php/default-sp"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://wayf.nikhef.nl/sso/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://wayf.nikhef.nl/sso/module.php/saml/sp/saml1-acs.php/default-sp" index="1"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://wayf.nikhef.nl/sso/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/>
<md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://wayf.nikhef.nl/sso/module.php/saml/sp/saml1-acs.php/default-sp/artifact" index="3"/>
<md:AttributeConsumingService index="0">
<md:ServiceName xml:lang="en">Nikhef Service Proxy</md:ServiceName>
<md:ServiceName xml:lang="nl">Nikhef schakelpunt voor diensten</md:ServiceName>
<md:ServiceDescription xml:lang="en">Proxy connecting services offer by Nikhef, the Dutch research institute for subatomic physics, to the global research and educational community. Services include collaboration tools, systems management, and access to compute and data services. This proxy request your identity information in order to grant you access to these services operated by or on behalf of Nikhef, its funding body, and partners.</md:ServiceDescription>
<md:ServiceDescription xml:lang="nl">Schakelpunt voor de diensten die Nikhef - het nationaal instituut voor subatomaire fysica - aanbied in de wereldwijde onderzoeks en onderwijsgemeenschap. Diensten omvatten samenwerkingstools (wikis en web sites), infrastructuurdiensten, en toegang tot rekencapaciteit en data opslag. Dit schakelpunt vraagt om persoonsgegevens om u toegang tot deze diensten te kunnen bieden. De diensten worden beheerd door of namens Nikhef, haar financiers, en samenwerkende instituten.</md:ServiceDescription>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.13" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonUniqueId"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonTargetedID"/>
<md:RequestedAttribute Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName"/>
<md:RequestedAttribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="mail"/>
<md:RequestedAttribute Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName"/>
<md:RequestedAttribute Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="sn"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.25178.1.2.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="schacHomeOrganization"/>
<md:RequestedAttribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.11" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonAssurance"/>
</md:AttributeConsumingService>
</md:SPSSODescriptor>
<md:Organization>
<md:OrganizationName xml:lang="en">Nikhef - Dutch National Institute for Subatomic Physics</md:OrganizationName>
<md:OrganizationName xml:lang="nl">Nikhef - Nationaal instituut voor subatomaire fysica</md:OrganizationName>
<md:OrganizationDisplayName xml:lang="en">Nikhef</md:OrganizationDisplayName>
<md:OrganizationDisplayName xml:lang="nl">Nikhef</md:OrganizationDisplayName>
<md:OrganizationURL xml:lang="en">http://www.nikhef.nl/en/</md:OrganizationURL>
<md:OrganizationURL xml:lang="nl">http://www.nikhef.nl/</md:OrganizationURL>
</md:Organization>
<md:ContactPerson contactType="technical">
<md:GivenName>Nikhef</md:GivenName>
<md:SurName>Helpdesk</md:SurName>
<md:EmailAddress>federation-admin@nikhef.nl</md:EmailAddress>
</md:ContactPerson>
<md:ContactPerson xmlns:icmd="http://refeds.org/metadata" contactType="other" icmd:contactType="http://refeds.org/metadata/contactType/security">
<md:GivenName>CSIRT</md:GivenName>
<md:SurName>Nikhef</md:SurName>
<md:EmailAddress>security@nikhef.nl</md:EmailAddress>
<md:TelephoneNumber>+31205925090</md:TelephoneNumber>
</md:ContactPerson>
<md:ContactPerson contactType="administrative">
<md:SurName>Nikhef</md:SurName>
<md:EmailAddress>nikidm-admin@nikhef.nl</md:EmailAddress>
<md:TelephoneNumber>+31205922000</md:TelephoneNumber>
</md:ContactPerson>
<md:ContactPerson contactType="support">
<md:SurName>Nikhef</md:SurName>
<md:EmailAddress>federation-support@nikhef.nl</md:EmailAddress>
<md:TelephoneNumber>+31205922200</md:TelephoneNumber>
</md:ContactPerson>
</md:EntityDescriptor>
|