1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:fed="http://docs.oasis-open.org/wsfed/federation/200706" xmlns:privacy="http://docs.oasis-open.org/wsfed/privacy/200706" xmlns:remd="http://refeds.org/metadata" entityID="https://proxy.mwatelescope.org/sp">
    <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
      <Extensions>
        <mdui:UIInfo>
          <mdui:DisplayName xml:lang="en">MWA Telescope Collaboration Proxy</mdui:DisplayName>
          <mdui:Description xml:lang="en">The MWA Telescope Collaboration Proxy service provider is a SAML proxy enabling federation between eduGAIN identity servers and service providers that support collaboration services for the Murchison Widefield Array Telescope project.</mdui:Description>
        </mdui:UIInfo>
        <idpdisc:DiscoveryResponse index="0" isDefault="true" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://proxy.mwatelescope.org/Saml2/disco"/>
      </Extensions>
      <KeyDescriptor use="signing">
        <ds:KeyInfo>
          <ds:X509Data>
            <ds:X509SubjectName>CN=proxy.mwatelescope.org</ds:X509SubjectName>
            <ds:X509Certificate>MIIELDCCApSgAwIBAgIJAOD8zeBqpypbMA0GCSqGSIb3DQEBCwUAMCExHzAdBgNV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</ds:X509Certificate>
          </ds:X509Data>
        </ds:KeyInfo>
      </KeyDescriptor>
      <KeyDescriptor use="encryption">
        <ds:KeyInfo>
          <ds:X509Data>
            <ds:X509SubjectName>CN=proxy.mwatelescope.org</ds:X509SubjectName>
            <ds:X509Certificate>MIIELDCCApSgAwIBAgIJAOD8zeBqpypbMA0GCSqGSIb3DQEBCwUAMCExHzAdBgNV
BAMTFnByb3h5Lm13YXRlbGVzY29wZS5vcmcwHhcNMTcwOTEwMTcyNjQ3WhcNMjcw
OTA4MTcyNjQ3WjAhMR8wHQYDVQQDExZwcm94eS5td2F0ZWxlc2NvcGUub3JnMIIB
ojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAokaGH9PlufdGz3yq+FDelKlJ
4ZXqj23HjmF5awxMFWxMHooLXQwTuW6GghmN2cjRDacZymL3qkxZAzk+H3dKEgVT
l5kToeE4YAmmjiniwDqwViu710jFoYoSCcgAZfCYN40t+YrQFM0gdcUdXJAfRGJQ
M2ABDOdJ8bzniEM1UjOJWZmYtbSY0sxpgQ1fuDbu4CT7UHYbnr8j2/bQl8Ov/3rl
SNHJKjIq5Eif7qNxtqozsWYMzVH0SH/R7EN3kvB21rhipYA6veU/u5jE+A7k8PHJ
yiveqq5hrH1lX0A9IobijvP8FyaMpnbycT8jWs4VrCBDcDV3GCD3KY8Q1RuLfZ90
KQRakgf767uR2GCBX2cxfS6Pc+uxzsH3x0Jy6H2wPukwbrRshXViI6/Ma8WjN2vL
SEFJ5BcZr9ruNxTbg/0LQYzric3o/ncUPiYgMIFl3QoxQdEvkf6BoMnJuw7PuJY/
etaOlsrE+Nzj6u/fA6wqfk5D6fFIhnCYfyb6SqxjAgMBAAGjZzBlMEQGA1UdEQQ9
MDuCFnByb3h5Lm13YXRlbGVzY29wZS5vcmeGIWh0dHBzOi8vcHJveHkubXdhdGVs
ZXNjb3BlLm9yZy9zcDAdBgNVHQ4EFgQUxs55E0AYxWaYrEw9faQgbOCCOmAwDQYJ
KoZIhvcNAQELBQADggGBAD8z7/87STuNk2mVhz4DuwPeCH+23B3PlrKzEvcLBcCw
mT6Hdea0AqWpVL+r5tj1xAn2c3jWRFUGXrW5joM59gHLS93hpLI2+izt3wCsMmys
eWnlCZV02sbeedkhBvi2b2L24IZ6FB5MVnh7ExanOsWgDr8TsVew0kkeSz9jBIcm
o3QOraHFktbrnUQrMo436I1N1vn9zGvWiPqUGeK6p3lwuz9CHlITv+YpUEJPr2Ea
1wyRrWotcSEwbDKNsrB6qJpZgOvKt5116cLYEdm8QuXn3JwhtZ2SslFN5QmmOQbO
D29RJMKIzKWhc9HhXSXpe5EgckxzBWhvpu0utzWZemxEOvm+74dqrRjR6TwpHcXn
8enqqe0dgK0QR8kgeFW3iHZRFNpIK+0c8udFqJ3so4kbjrdbjEcVeyAiZyO1YIfi
Do82vVmvU5aTgexfoFXWJBSWVrXwUbI1v62ZTod6H/6FhuSF9TZRmLa9l17j43Wz
T17P+Ir8V1ro0WFo2kHipA==</ds:X509Certificate>
          </ds:X509Data>
        </ds:KeyInfo>
      </KeyDescriptor>
      <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
      <AssertionConsumerService index="1" isDefault="true" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://proxy.mwatelescope.org/Saml2/acs/post"/>
      <AssertionConsumerService index="2" isDefault="false" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://proxy.mwatelescope.org/Saml2/acs/artifact"/>
      <AttributeConsumingService index="1" isDefault="false">
        <ServiceName xml:lang="en">MWA Telescope Collaboration Proxy</ServiceName>
        <RequestedAttribute isRequired="false" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="email"/>
        <RequestedAttribute isRequired="true" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonTargetedID"/>
        <RequestedAttribute isRequired="false" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.16" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonOrcid"/>
        <RequestedAttribute isRequired="false" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="eduPersonPrincipalName"/>
        <RequestedAttribute isRequired="false" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="displayName"/>
        <RequestedAttribute isRequired="false" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="surname"/>
        <RequestedAttribute isRequired="false" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" FriendlyName="givenName"/>
      </AttributeConsumingService>
    </SPSSODescriptor>
    <Organization>
      <OrganizationName xml:lang="en">curtin.edu.au</OrganizationName>
      <OrganizationDisplayName xml:lang="en">Curtin University</OrganizationDisplayName>
      <OrganizationURL xml:lang="en">http://curtin.edu.au</OrganizationURL>
    </Organization>
    <ContactPerson contactType="technical">
      <Company>Curtin University</Company>
      <GivenName>Greg</GivenName>
      <SurName>Sleap</SurName>
      <EmailAddress>mailto:greg.sleap@curtin.edu.au</EmailAddress>
    </ContactPerson>
  </EntityDescriptor>