1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
<md:EntityDescriptor entityID="https://testshib.portalverbund.at/idp/shibboleth"
     xmlns="urn:oasis:names:tc:SAML:2.0:metadata"              
    xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"           
    xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"   
    xmlns:disco="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" 
    xmlns:ds="http://www.w3.org/2000/09/xmldsig#"             
    xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute" 
    xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi"        
    xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"          
    xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"        
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
>
    <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
        <md:Extensions>
            <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
            <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
            <alg:SigningMethod MinKeySize="256" MaxKeySize="511" Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
            <alg:SigningMethod MinKeySize="2048" MaxKeySize="4096" Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
            <!-- blacklisted: http://www.w3.org/2000/09/xmldsig#rsa-sha1 -->
            <mdui:UIInfo>
                <mdui:DisplayName xml:lang="de">Portalverbund der Verwaltung</mdui:DisplayName>
                <mdui:Description xml:lang="de">
                    Der Portalverbund die die Identitätsfoederation der oesterreichischen Verwaltung
                </mdui:Description>
                <mdui:Logo xml:lang="en" height="70" width="79">https://www.portalverbund.at/sites/www.portalverbund.at/img/logo.png</mdui:Logo>
            </mdui:UIInfo>
            <mdui:DiscoHints>
                <mdui:DomainHint>portalverbund.at</mdui:DomainHint>
                <mdui:IPHint>85.124.213.180</mdui:IPHint>
                <mdui:GeolocationHint>geo:48.3308/16.0516</mdui:GeolocationHint>
            </mdui:DiscoHints>
        </md:Extensions>       
        <md:KeyDescriptor>
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>
                        MIIGdDCCBVygAwIBAgIDCwUIMA0GCSqGSIb3DQEBBQUAMIGMMQswCQYDVQQGEwJJ
                        TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0
                        YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg
                        MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTMwNzA2MDEwODAz
                        WhcNMTQwNzA3MTYyNzQ5WjB4MRkwFwYDVQQNExBYMW12cE5zM0M4N01TTkt3MQsw
                        CQYDVQQGEwJBVDEiMCAGA1UEAxMZdGVzdHNoaWIucG9ydGFsdmVyYnVuZC5hdDEq
                        MCgGCSqGSIb3DQEJARYbaG9zdG1hc3RlckBwb3J0YWx2ZXJidW5kLmF0MIIBIjAN
                        BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZU+0XJUOwwKzM8tpqGD0YyizD7B
                        oV/go8unz+z6l5OM+kr4lwlLXNgc1x/aENgSQ52OmGIvYvb1PXeQLE8z+XGppNIy
                        o5qUlsTsd9BXAgsrrKOs/7aRr5IuyMCZdn/dQLHqmGRcblX1bdjZUp7zVxq35vrP
                        CMDXRB9FL92mJ90B7BOFLRXhclcefPsXLjOxMh03sSYuGCL0PzJjZZx5WcqBS4MJ
                        ap1FBtPL5Ot/JXsYMI4GOPLmv8fp1luHX6E533QmGbSNMssrbHv7ZGp826keTZK0
                        iC0Ox4/1Gya/P4gJYk5c5MM8QH6TyG1Au/b3aaPVLPzDe2jeuoCJltkhrwIDAQAB
                        o4IC8DCCAuwwCQYDVR0TBAIwADALBgNVHQ8EBAMCA6gwEwYDVR0lBAwwCgYIKwYB
                        BQUHAwEwHQYDVR0OBBYEFNXA018J52PMiyc1buiwF2bOOJfFMB8GA1UdIwQYMBaA
                        FOtCNNCYsKuf9BtrCPfMZC7vDixFMDYGA1UdEQQvMC2CGXRlc3RzaGliLnBvcnRh
                        bHZlcmJ1bmQuYXSCEHBvcnRhbHZlcmJ1bmQuYXQwggFWBgNVHSAEggFNMIIBSTAI
                        BgZngQwBAgEwggE7BgsrBgEEAYG1NwECAzCCASowLgYIKwYBBQUHAgEWImh0dHA6
                        Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeS5wZGYwgfcGCCsGAQUFBwICMIHqMCcW
                        IFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MAMCAQEagb5UaGlzIGNl
                        cnRpZmljYXRlIHdhcyBpc3N1ZWQgYWNjb3JkaW5nIHRvIHRoZSBDbGFzcyAxIFZh
                        bGlkYXRpb24gcmVxdWlyZW1lbnRzIG9mIHRoZSBTdGFydENvbSBDQSBwb2xpY3ks
                        IHJlbGlhbmNlIG9ubHkgZm9yIHRoZSBpbnRlbmRlZCBwdXJwb3NlIGluIGNvbXBs
                        aWFuY2Ugb2YgdGhlIHJlbHlpbmcgcGFydHkgb2JsaWdhdGlvbnMuMDUGA1UdHwQu
                        MCwwKqAooCaGJGh0dHA6Ly9jcmwuc3RhcnRzc2wuY29tL2NydDEtY3JsLmNybDCB
                        jgYIKwYBBQUHAQEEgYEwfzA5BggrBgEFBQcwAYYtaHR0cDovL29jc3Auc3RhcnRz
                        c2wuY29tL3N1Yi9jbGFzczEvc2VydmVyL2NhMEIGCCsGAQUFBzAChjZodHRwOi8v
                        YWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9zdWIuY2xhc3MxLnNlcnZlci5jYS5jcnQw
                        IwYDVR0SBBwwGoYYaHR0cDovL3d3dy5zdGFydHNzbC5jb20vMA0GCSqGSIb3DQEB
                        BQUAA4IBAQCrgF1QO/H4yiC8B3CpVdN3Hi9Xu8sQVwq15Hnx/eMAhbkUodVQK+iM
                        Ma1qztWekUlikWUtj9ByZntooHJLRV1pYxe+ptHcmAJ/pLL1NKZtrUGQjH4LSbo9
                        4aK7DbO6t7Wr0J2fVvmmj3lLemmC4ubivq5Mvp4Dqrw2hqHpndfsFW+Kz9hERhcO
                        Hc3BujmmHl9GCf7EPugHKNiKeQ5+oT1fpgzFhMmK0yiztxCyPUwj6aVqOdrwV1BR
                        q4qgG4VKhd475ReYcNPMzobb1MPFs6BMpKyVReiYuF6FhFeGHKLHLPcvI1vBRtM/
                        0f9WF/FNNfefMLfNVxu3A0XZYXdjYNf7
                        <!--
                        Certificate:
                            Data:
                                Version: 3 (0x2)
                                Serial Number: 722184 (0xb0508)
                                Signature Algorithm: sha1WithRSAEncryption
                                Issuer: C=IL, O=StartCom Ltd., OU=Secure Digital Certificate Signing, CN=StartCom Class 1 Primary Intermediate Server CA
                                Validity
                                    Not Before: Jul  6 01:08:03 2013 GMT
                                    Not After : Jul  7 16:27:49 2014 GMT
                                Subject: description=X1mvpNs3C87MSNKw, C=AT, CN=testshib.portalverbund.at/emailAddress=hostmaster@portalverbund.at
                        -->
                    </ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </md:KeyDescriptor>
        <md:ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://testshib.portalverbund.at:8443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://testshib.portalverbund.at/idp/profile/SAML2/POST/SSO"/>
        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://testshib.portalverbund.at/idp/profile/SAML2/Redirect/SSO"/>
    </md:IDPSSODescriptor>
    <md:Organization>
        <md:OrganizationName xml:lang="de">AG-IZ PVP2 SAML Test</md:OrganizationName>
        <md:OrganizationDisplayName xml:lang="de">AG-IZ PVP2 SAML Test</md:OrganizationDisplayName>
        <md:OrganizationURL xml:lang="de">http://www.portalverbund.at</md:OrganizationURL>
    </md:Organization>
    <md:ContactPerson contactType="technical">
        <md:GivenName>Rainer</md:GivenName>
        <md:SurName>Hoerbe</md:SurName>
        <md:EmailAddress>rainer@hoerbe.at</md:EmailAddress>
        <md:TelephoneNumber>+43 000 9999 0000</md:TelephoneNumber>
    </md:ContactPerson>
 </md:EntityDescriptor>