From 607591fe27ffc8e145fc11066cc4aaf8b69f8cfd Mon Sep 17 00:00:00 2001
From: "andrew.costa" <andrew.costa@nebraska.edu>
Date: Wed, 1 Mar 2023 15:15:38 -0600
Subject: [PATCH] Draft: Resolve "Upload Metadata for UNL T2 Software"
---
nefed.xml | 161 ++++++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 161 insertions(+)
diff --git a/nefed.xml b/nefed.xml
index 437d606..a330aa4 100644
--- a/nefed.xml
+++ b/nefed.xml
@@ -27150,4 +27150,165 @@
<EmailAddress>security@nebraska.edu</EmailAddress>
</ContactPerson>
</EntityDescriptor>
+
+ <EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_73ae8a9ad3cfab7d10047bf1a92c12f2282a1af8" entityID="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso">
+ <Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport">
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512" />
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384" />
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
+ <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224" />
+ <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
+ <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1" />
+ <mdrpi:RegistrationInfo registrationAuthority="https://nebraska.edu/nefed" />
+ <mdattr:EntityAttributes>
+ <saml:Attribute Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+ <saml:AttributeValue>
+ https://nebraska.edu/category/registered-by-nefed</saml:AttributeValue>
+ </saml:Attribute>
+ </mdattr:EntityAttributes>
+ <mdui:UIInfo>
+ <mdui:DisplayName xml:lang="en">T2 Systems</mdui:DisplayName>
+ <mdui:Description xml:lang="en">T2 Systems</mdui:Description>
+ <mdui:InformationURL xml:lang="en"> https://www.t2systems.com/about/</mdui:InformationURL>
+ <mdui:PrivacyStatementURL xml:lang="en"> https://www.t2systems.com/privacy-policy/</mdui:PrivacyStatementURL>
+ </mdui:UIInfo>
+ </Extensions>
+ <SPSSODescriptor
+ protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
+ <Extensions>
+ <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
+ Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/Login" />
+ </Extensions>
+ <KeyDescriptor>
+ <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+ <ds:KeyName>flx-s-flxp201.t2hosted.com</ds:KeyName>
+ <ds:X509Data>
+ <ds:X509SubjectName>CN=flx-s-flxp201.t2hosted.com</ds:X509SubjectName>
+ <ds:X509Certificate>
+ MIIDFTCCAf2gAwIBAgIJAIQdrXUKtaZUMA0GCSqGSIb3DQEBBQUAMCUxIzAhBgNV
+ BAMTGmZseC1zLWZseHAyMDEudDJob3N0ZWQuY29tMB4XDTIyMDcxNDEyMTUwNFoX
+ DTMyMDcxMTEyMTUwNFowJTEjMCEGA1UEAxMaZmx4LXMtZmx4cDIwMS50Mmhvc3Rl
+ ZC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcD1o48dMy7ijr
+ rFa6obHFVfySzvMeICpqLRImsT2+598vWb06oyNz/QNw1dFE2/zTbOrBMEk6Kql0
+ XPwA6rz1GwdZlC4WSi4Zh709nWr0dGMZyyjLuev5iut2/sTZtI4fzO7VoFeBqaGZ
+ A3iJkA3Ho0/oz/C49uG4Qtw9+GmL7s2oBktutx6CpJZbAJOUvKvLz5BXFrhGB2O9
+ 1v4Z58+EifLq+eigQHP5wE3hsuXvRSPdXYbARIhDkt66MDPe+z1DRpsJNr++SIOd
+ HEgQucEkUQtNaKmW4Nn5rfQcwmTSVMJMrq7HP2FB5sSGldohevp2H8l+ltHzQy3h
+ c0jn2TnFAgMBAAGjSDBGMCUGA1UdEQQeMByCGmZseC1zLWZseHAyMDEudDJob3N0
+ ZWQuY29tMB0GA1UdDgQWBBTX2mItwdjPOz72oEHE29hYVVYjqzANBgkqhkiG9w0B
+ AQUFAAOCAQEAfgp4gVL3vj2xoYr2CZ1+TAr/82s7XFb3CBUUXvD7mfzqabFy6x67
+ abBkRgrR26Ov1fgPnofkGNjmOsR3adD25N7k45+e7DrYx5pAyJpzEkpbAHDQc6EQ
+ jc/Ay1n/sM8txN3P3BKFJQVOosy9snKB5k88B2ivcYFQL5XYgf4utRqx0dLYk4pD
+ ckAsunGlT8B2J5yj+56jF6wmqe3mgDbYNayveHI5YTW7gUelhH0cMDmZSW3MtzHu
+ kZwe/aMz+zYOo1V5IHAXMgD+gNK/t4tiU1Izx8RhjVjkkEDeKnBK+jx5X1XaMQuq
+ YNoIvcCluNnGPuopOjBpDNPfUGYADKC2eQ==
+ </ds:X509Certificate>
+ </ds:X509Data>
+ </ds:KeyInfo>
+ <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" />
+ </KeyDescriptor>
+ <KeyDescriptor>
+ <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+ <ds:KeyName>t2pebiz41a.t2hosted.com</ds:KeyName>
+ <ds:X509Data>
+ <ds:X509SubjectName>CN=t2pebiz41a.t2hosted.com</ds:X509SubjectName>
+ <ds:X509Certificate>
+ MIIDDDCCAfSgAwIBAgIJAL4kQLa6bOYHMA0GCSqGSIb3DQEBBQUAMCIxIDAeBgNV
+ BAMTF3QycGViaXo0MWEudDJob3N0ZWQuY29tMB4XDTEzMDMwNTEzNTc1MloXDTIz
+ MDMwMzEzNTc1MlowIjEgMB4GA1UEAxMXdDJwZWJpejQxYS50Mmhvc3RlZC5jb20w
+ ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDopWw9epXGGDZ/SgyODMbX
+ J0C3xcM0a+YYqkNUaQ4ghuB2K3M366o5zCqbFORqROA417ZHhx3lBdb/9aJDCQjS
+ AfJXBpxdALfm0FR1MQRw6fVq5KVwefWfg3cv20fJHMeHPn6oynWx1mo8Vg9mS0Nz
+ jHHV/UIKywgiAXa7GPDuzt8DGqfQ0YxV3unxbLsagOmquzCe7D8yHiQZjpwfOYvl
+ KJmCsK8PBSx1ol1PvXca6LU5i/5Y3uogVXbffr8D/5VyBGHbIryKXEimTjq8aVJf
+ feBshepfL9yDuBrkkceQRfWnWp9oKRYMZdr+SeR7L7S9Qf23cxXdn5BYYsvrFm2B
+ AgMBAAGjRTBDMCIGA1UdEQQbMBmCF3QycGViaXo0MWEudDJob3N0ZWQuY29tMB0G
+ A1UdDgQWBBQelSFcmsEoNIdO4/jEgSejI53I0TANBgkqhkiG9w0BAQUFAAOCAQEA
+ MMc/rj6ji18BgVz25tywd1+Uv/7k/HBZKUvgFEDESTJxQ526UeSzake6tV37v6e2
+ j4IqXzOhhwHJ12UdujiDh120Uwk8iyN0vhnV+lbJTXB+pBCv2pIp96vx4e+ybGHS
+ 2Gj9PSQ/7AiloyiRLBBYmBUqmzef3kdNWHFXHhJIMJBz3NW4LA75vv5HyUKN+G7l
+ x714siqKMGrvpeWdBxuZN0/T7o1qUlmcVZTm8qhgzdKxDHGC03meTRaNohdENFMe
+ h9EBErJ5lAKCQVQMHNajcF2BDJ/njmsyRR1BEc0P6vMXPng8EdXn+2jBEQkMZKWL
+ Dhyw1X7JmF4XdjbYveV5gA==
+ </ds:X509Certificate>
+ </ds:X509Data>
+ </ds:KeyInfo>
+ <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep" />
+ <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" />
+ </KeyDescriptor>
+ <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/Artifact/SOAP" index="1" />
+ <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SLO/Artifact" />
+ <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SLO/POST" />
+ <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SLO/Redirect" />
+ <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SLO/SOAP" />
+ <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SAML2/POST" index="1" />
+ <AssertionConsumerService
+ Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SAML2/POST-SimpleSign"
+ index="2" />
+ <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SAML2/Artifact" index="3" />
+ <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SAML2/ECP" index="4" />
+ <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SAML/POST" index="5" />
+ <AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01"
+ Location="https://unlpts.t2hosted.com/UNLPTS/Shibboleth.sso/SAML/Artifact" index="6" />
+ </SPSSODescriptor>
+ <Organization>
+ <OrganizationName xml:lang="en">T2 Systems</OrganizationName>
+ <OrganizationDisplayName xml:lang="en">T2 Systems</OrganizationDisplayName>
+ <OrganizationURL xml:lang="en">https://www.t2systems.com/</OrganizationURL>
+ </Organization>
+ <ContactPerson contactType="technical">
+ <GivenName>Jacob Olson</GivenName>
+ <EmailAddress>jco@unl.edu</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="support">
+ <GivenName>NuPark Support</GivenName>
+ <EmailAddress>nupark.support@t2systems.com</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="administrative">
+ <GivenName>Nate Benes</GivenName>
+ <EmailAddress>nate@unl.edu</EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="other"
+ recontactType="http://refeds.org/metadata/contactType/security">
+ <GivenName>ITS Security</GivenName>
+ <EmailAddress>security@nebraska.edu</EmailAddress>
+ </ContactPerson>
+</EntityDescriptor>
+
</EntitiesDescriptor>
\ No newline at end of file
--
GitLab