1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
--- 0a6090d1610c3c46e1695cdac24a5b46805455d0

+++ ad30e4bcb3be00a93205e7716350c7a57df57d50

@@ -1,26 +1,26 @@

 <EntityDescriptor entityID="https://fed-interop-wg.ligo.org/shibboleth-sp"
-                      xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
-                      xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
-                      xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
-                      xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
-                      xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+                  xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
+                  xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
+                  xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
+                  xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
+                  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
 
-        <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <Extensions>
-                <idpdisc:DiscoveryResponse index="1" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://fed-interop-wg/Shibboleth.sso/Login" />
-                <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
-                    <mdui:DisplayName xml:lang="en">I2 Fed Op WG GitLab hosted by LIGO</mdui:DisplayName>
-                    <mdui:Description xml:lang="en">GitLab service for the Internet2 Federation Interoperability Working Group hosted by LIGO</mdui:Description>
-                    <mdui:InformationURL xml:lang="en">https://fed-interop-wg.ligo.org</mdui:InformationURL>
-                    <mdui:PrivacyStatementURL xml:lang="en">https://dcc.ligo.org/cgi-bin/DocDB/ShowDocument?docid=89243</mdui:PrivacyStatementURL>
-                    <mdui:Logo height="60" width="80" xml:lang="en">https://login.ligo.org/SAML2/metadata/ui/ligologo80x60.png</mdui:Logo>
-                </mdui:UIInfo>
-            </Extensions>
+    <SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+        <Extensions>
+            <idpdisc:DiscoveryResponse index="1" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://fed-interop-wg/Shibboleth.sso/Login" />
+            <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
+                <mdui:DisplayName xml:lang="en">I2 Fed Op WG GitLab hosted by LIGO</mdui:DisplayName>
+                <mdui:Description xml:lang="en">GitLab service for the Internet2 Federation Interoperability Working Group hosted by LIGO</mdui:Description>
+                <mdui:InformationURL xml:lang="en">https://fed-interop-wg.ligo.org</mdui:InformationURL>
+                <mdui:PrivacyStatementURL xml:lang="en">https://dcc.ligo.org/cgi-bin/DocDB/ShowDocument?docid=89243</mdui:PrivacyStatementURL>
+                <mdui:Logo height="60" width="80" xml:lang="en">https://login.ligo.org/SAML2/metadata/ui/ligologo80x60.png</mdui:Logo>
+            </mdui:UIInfo>
+        </Extensions>
 
-            <KeyDescriptor>
-                <ds:KeyInfo>
-                    <ds:X509Data>
-                        <ds:X509Certificate>
+        <KeyDescriptor>
+            <ds:KeyInfo>
+                <ds:X509Data>
+                    <ds:X509Certificate>
 MIIDODCCAiCgAwIBAgIJAO4GMlBzog5QMA0GCSqGSIb3DQEBBQUAMCIxIDAeBgNV
 BAMTF2ZlZC1pbnRlcm9wLXdnLmxpZ28ub3JnMB4XDTE1MDgyOTE4NTYzOFoXDTE4
 MDgyODE4NTYzOFowIjEgMB4GA1UEAxMXZmVkLWludGVyb3Atd2cubGlnby5vcmcw
@@ -39,40 +39,49 @@

 ncePo7O6V1anNgFJD78E+bNjd9KlY/YJkzOyL/M52HhM6IjDvBRgfhwUxf9HkdEb
 APc4VR5gYD4DBiUTINX+Ex3yinxQ4AHx09FlvKXu2MKGmiCH3AozhjvR4vNFivqi
 dD7nKurLpav8RpR+
-                        </ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </KeyDescriptor>
+                    </ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+        </KeyDescriptor>
 
-            <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
+        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
 
-            <AssertionConsumerService
-                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
-                Location="https://fed-interop-wg.ligo.org/Shibboleth.sso/SAML2/POST" index="1"/>
+        <AssertionConsumerService
+            Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+            Location="https://fed-interop-wg.ligo.org/Shibboleth.sso/SAML2/POST" index="1"/>
 
-            <AssertionConsumerService
-                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign"
-                Location="https://fed-interop-wg.ligo.org/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
+        <AssertionConsumerService
+            Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign"
+            Location="https://fed-interop-wg.ligo.org/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
 
-            <AssertionConsumerService
-                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
-                Location="https://fed-interop-wg.ligo.org/Shibboleth.sso/SAML2/Artifact" index="3"/>
+        <AssertionConsumerService
+            Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+            Location="https://fed-interop-wg.ligo.org/Shibboleth.sso/SAML2/Artifact" index="3"/>
 
-            <AssertionConsumerService
-                Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS"
-                Location="https://fed-interop-wg.ligo.org/Shibboleth.sso/SAML2/ECP" index="4"/>
-        </SPSSODescriptor>
+        <AssertionConsumerService
+            Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS"
+            Location="https://fed-interop-wg.ligo.org/Shibboleth.sso/SAML2/ECP" index="4"/>
 
-        <Organization>
-            <OrganizationName xml:lang="en">Laser Interferometer Gravitational-Wave Observatory</OrganizationName>
-            <OrganizationDisplayName xml:lang="en">LIGO</OrganizationDisplayName>
-            <OrganizationURL xml:lang="en">http://www.ligo.org</OrganizationURL>
-        </Organization>
+        <AttributeConsumingService xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" index="1">
+            <ServiceName xml:lang="en">I2 Fed Op WG GitLab hosted by LIGO</ServiceName>
+            <ServiceDescription xml:lang="en">GitLab service for the Internet2 Federation Interoperability Working Group hosted by LIGO</ServiceDescription>
+            <RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true" />
+            <RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true" />
+            <RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false" />
+        </AttributeConsumingService>
 
-        <ContactPerson contactType="technical">
-            <GivenName>Scott</GivenName>
-            <SurName>Koranda</SurName>
-            <EmailAddress>scott.koranda@ligo.org</EmailAddress>
-        </ContactPerson>
+    </SPSSODescriptor>
 
-    </EntityDescriptor>
+    <Organization>
+        <OrganizationName xml:lang="en">Laser Interferometer Gravitational-Wave Observatory</OrganizationName>
+        <OrganizationDisplayName xml:lang="en">LIGO</OrganizationDisplayName>
+        <OrganizationURL xml:lang="en">http://www.ligo.org</OrganizationURL>
+    </Organization>
+
+    <ContactPerson contactType="technical">
+        <GivenName>Scott</GivenName>
+        <SurName>Koranda</SurName>
+        <EmailAddress>scott.koranda@ligo.org</EmailAddress>
+    </ContactPerson>
+
+</EntityDescriptor>