4

13693261870

2022-09-16 15d10b06cda4819c40ebb77cdc7e9abf348c0979

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
<?xml version="1.0" encoding="UTF-8"?>
<!--
     This is example metadata only. Do *NOT* supply it as is without review,
     and do *NOT* provide it in real time to your partners.
 
     This metadata is not dynamic - it will not change as your configuration changes.
-->
<EntityDescriptor  xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:xml="http://www.w3.org/XML/1998/namespace" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" entityID="http://localhost:8088/cas/idp">
 
    <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
 
        <Extensions>
            <shibmd:Scope regexp="false">localhost</shibmd:Scope>
<!--
    Fill in the details for your IdP here 
 
            <mdui:UIInfo>
                <mdui:DisplayName xml:lang="en">A Name for the IdP at cas.example.org</mdui:DisplayName>
                <mdui:Description xml:lang="en">Enter a description of your IdP at cas.example.org</mdui:Description>
                <mdui:Logo height="80" width="80">https://cas.example.org/Path/To/Logo.png</mdui:Logo>
            </mdui:UIInfo>
-->
        </Extensions>
 
        <KeyDescriptor use="signing">
            <ds:KeyInfo>
                    <ds:X509Data>
                        <ds:X509Certificate>
MIIDHTCCAgWgAwIBAgIVAN+lwLmZGlp+5yY4Hc+dFbSsUeajMA0GCSqGSIb3DQEB
CwUAMBoxGDAWBgNVBAMMD2Nhcy5leGFtcGxlLm9yZzAeFw0xODA3MDkxMTM0MTFa
Fw0zODA3MDkxMTM0MTFaMBoxGDAWBgNVBAMMD2Nhcy5leGFtcGxlLm9yZzCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANL7RAjIh0/hs7k7QwlDO7ucRxxu
7UjiD1rKwQn6ZVnqwEGDPtAwq8j7jdNYyj0OzMaZ/4/KWkWk6+DpV2Bw/dEv+Irb
BKKIZxJk7Hyx5QY9KwV3/9MY/KbqPmEwAfCe5ivaMQ2kPUwqUImko0j16rnrwq9P
Tq6M5WCBapVonIrgFG+w7JRwXoQJVRr/GHxyEG2DPQ2ySqcDcgQGL4rgMsy937BM
qouBtU28bvsY0OhlmP5lHi8escQjhxqLm8FD0Y8wWeYkeg7hbBZXv0ZeBDx5CeAY
HqrIUErjnSqddVA9lGx32Jv06nqyGrVe4gIcR3nF7Es7IWfrC8zM9xmmIZcCAwEA
AaNaMFgwHQYDVR0OBBYEFATUgMD13TZfLwWjiXm+Sq3rJGrIMDcGA1UdEQQwMC6C
D2Nhcy5leGFtcGxlLm9yZ4YbY2FzLmV4YW1wbGUub3JnaWRwL21ldGFkYXRhMA0G
CSqGSIb3DQEBCwUAA4IBAQCHO/jwZlzQd4ByQxg6znv5ohQ0UYgDkyB2/z5/l+8c
D7JvMahClOIr8qJ80aIJl7D4gCakcpTp47cWC/qClLJWqBwMDpVEGbPvZ9OB6Loq
C1KPI+KytUNExZD8VdPWlXKQE92fNJ0Bbyi0gx0UfX4dpw4UsM0hGHCr2WwRZR3B
A/rkk8b1hRVjXVh2C3S/skMlMUNfw4MjFuvcIBOW+Dyk42hXS5ve+NI9+gXM1IAT
1qlk09ond5F2PuIlDkK0xeyvVnFvPLWaTYSiJ2NFMQni5YLbMDVjyt29y5WPiO1a
8XOLiGLaTCJQ2sJKRu43Au9JJUTYZak2SVrqPSQ6EYHM
                        </ds:X509Certificate>
                    </ds:X509Data>
            </ds:KeyInfo>
 
        </KeyDescriptor>
        <KeyDescriptor use="encryption">
            <ds:KeyInfo>
                    <ds:X509Data>
                        <ds:X509Certificate>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                        </ds:X509Certificate>
                    </ds:X509Data>
            </ds:KeyInfo>
 
        </KeyDescriptor>
 
        <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="http://localhost:8088/cas/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
        <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://localhost:8088/cas/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
 
        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://localhost:8088/cas/idp/profile/SAML2/Redirect/SLO"/>
        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://localhost:8088/cas/idp/profile/SAML2/POST/SLO"/>
        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="http://localhost:8088/cas/idp/profile/SAML2/POST-SimpleSign/SLO"/>
        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://localhost:8088/cas/idp/profile/SAML2/SOAP/SLO"/>
 
        <NameIDFormat>urn:mace:shibboleth:1.0:nameIdentifier</NameIDFormat>
        <NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</NameIDFormat>
 
        <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="http://localhost:8088/cas/idp/profile/Shibboleth/SSO"/>
        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://localhost:8088/cas/idp/profile/SAML2/POST/SSO"/>
        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="http://localhost:8088/cas/idp/profile/SAML2/POST-SimpleSign/SSO"/>
        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://localhost:8088/cas/idp/profile/SAML2/Redirect/SSO"/>
 
    </IDPSSODescriptor>
 
 
    <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
 
        <Extensions>
            <shibmd:Scope regexp="false">cas.nmsmp.com</shibmd:Scope>
        </Extensions>
 
        <KeyDescriptor use="signing">
            <ds:KeyInfo>
                    <ds:X509Data>
                        <ds:X509Certificate>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                        </ds:X509Certificate>
                    </ds:X509Data>
            </ds:KeyInfo>
 
        </KeyDescriptor>
        <KeyDescriptor use="encryption">
            <ds:KeyInfo>
                    <ds:X509Data>
                        <ds:X509Certificate>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                        </ds:X509Certificate>
                    </ds:X509Data>
            </ds:KeyInfo>
 
        </KeyDescriptor>
 
        <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="http://localhost:8088/cas/idp/profile/SAML1/SOAP/AttributeQuery"/>
        <!-- <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="http://localhost:8088:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> -->
        <!-- If you uncomment the above you should add urn:oasis:names:tc:SAML:2.0:protocol to the protocolSupportEnumeration above -->
 
    </AttributeAuthorityDescriptor>
 
</EntityDescriptor>