1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
--- 7e247c00639360b3d746b30ff7fea4c76b003a0c

+++ dade13ee76087457f929bb49005fe6e88434454f

@@ -25,30 +25,32 @@

 
   <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
     <md:Extensions>
-      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://kaasvat.nikhef.nl/Shibboleth.sso/Login"/>
+      <mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
+                   <mdui:DisplayName xml:lang="en">RCAuth Pilot Delegation Service</mdui:DisplayName>
+                   <mdui:Description xml:lang="en">RCAuth Pilot Delegation Service</mdui:Description>
+              </mdui:UIInfo><init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://kaasvat.nikhef.nl/Shibboleth.sso/Login"/>
     </md:Extensions>
     <md:KeyDescriptor>
       <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-        <ds:KeyName>localhost.localdomain</ds:KeyName>
+        <ds:KeyName>kaasvat.nikhef.nl</ds:KeyName>
         <ds:X509Data>
-          <ds:X509SubjectName>CN=localhost.localdomain</ds:X509SubjectName>
-          <ds:X509Certificate>MIIDBjCCAe6gAwIBAgIJAKRtg2BYKwwDMA0GCSqGSIb3DQEBBQUAMCAxHjAcBgNV
-BAMTFWxvY2FsaG9zdC5sb2NhbGRvbWFpbjAeFw0xNjAzMTAxNTQ0MThaFw0yNjAz
-MDgxNTQ0MThaMCAxHjAcBgNVBAMTFWxvY2FsaG9zdC5sb2NhbGRvbWFpbjCCASIw
-DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKA+rsACVH9BJFPH7QLjaaKDBDtZ
-NuTnKI1VHzZZwubS6Axfl1QGWkKBV1iLIBdk3kxnWHw1Hj4deSHNuT0+lKKpZECD
-jDUT4Uzm6y6DKAxxsmyZeDRDIDDcIFPDWpJTuDUdGHTbO003kkAqGcTWHzblPQvw
-BLBHZkRrImUSD/i2pHep26Mo8oL0PfZMtsyjjIj4AF+4hh9171YoOROinLEI2ts+
-g9zYSNp0n7xfDD03lFMFD/CQHlF4Kg9bUAPD5ANo4b2ZWZsiVUnypghQ1PpAO2Ko
-Tp/AxaPqdfWm6TJ9gP0Hv9ZAw0LotTberHrv21ZPc/8Mkg2HvoNT0kIE/BcCAwEA
-AaNDMEEwIAYDVR0RBBkwF4IVbG9jYWxob3N0LmxvY2FsZG9tYWluMB0GA1UdDgQW
-BBQtbn+GCiKIfjSddqDzhUYe5iXJXTANBgkqhkiG9w0BAQUFAAOCAQEAPPI+tA5t
-4CWiAogn8/PULcbXZ+4jpsOCrDeW23lgaTIiNxyHl+FajmejghSLp3eJ9fqi/Gx4
-cFOL5rv61wrwj+DB0IABZg8j6/Y1CZgntHSpTy7SpZYRdl6IfRy+9yC3yFTrofNE
-0F8ktkZPebOYmhpoL8jjfAWCkj83EYCIsJkaQXLVlKdjBDZmX2o6pNZpgHoxAqP1
-HdwvZ4vqr+Hj5iwAKRB1eKcZtO5xenIrhYgBbBRvfvhF/pqa7hty2w/uIJ+zdCRw
-FpXMFF+cBpc3L0g6/56ok+DnHRgHUOmCikXPFLlrQPfK/AHmxTwZhfEpxd7hpeqh
-SwYZkpq6YNEiDQ==
+          <ds:X509SubjectName>CN=kaasvat.nikhef.nl</ds:X509SubjectName>
+          <ds:X509Certificate>MIIC+jCCAeKgAwIBAgIJANGao98L/NjCMA0GCSqGSIb3DQEBBQUAMBwxGjAYBgNV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==
 </ds:X509Certificate>
         </ds:X509Data>
       </ds:KeyInfo>
@@ -73,4 +75,13 @@

     <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://kaasvat.nikhef.nl/Shibboleth.sso/SAML2/ECP" index="4"/>
   </md:SPSSODescriptor>
 
+  <md:Organization>
+                   <md:OrganizationName xml:lang="en">Nikhef</md:OrganizationName>
+                   <md:OrganizationDisplayName xml:lang="en">Nikhef</md:OrganizationDisplayName>
+                   <md:OrganizationURL xml:lang="en">http://www.nikhef.nl</md:OrganizationURL>
+              </md:Organization><md:ContactPerson contactType="support">
+                   <md:GivenName>Tamas</md:GivenName>
+                   <md:SurName>Balogh</md:SurName>
+                   <md:EmailAddress>tamasb@nikhef.nl</md:EmailAddress>
+              </md:ContactPerson>
 </md:EntityDescriptor>