Onboard Welltrack Connect metadata

SP-provided metadata:

<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_0ba8d3488d597288c3710e30e8a086831a5642a9" entityID="https://identity-shib.protocallservices.com/tss">

  <md:Extensions xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport">
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha384"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#sha224"/>
    <alg:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha224"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2009/xmldsig11#dsa-sha256"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#ecdsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
    <alg:SigningMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
  </md:Extensions>

  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:1.0:protocol">
    <md:Extensions>
      <init:RequestInitiator xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Binding="urn:oasis:names:tc:SAML:profiles:SSO:request-init" Location="https://identity-shib.protocallservices.com/tss/Shibboleth.sso/Login"/>
    </md:Extensions>
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:KeyName>https://identity-shib.protocallservices.com/tss</ds:KeyName>
        <ds:KeyName>identity-shib.protocallservices.com</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=identity-shib.protocallservices.com</ds:X509SubjectName>
          <ds:X509Certificate>MIIEbjCCAtagAwIBAgIUbfWgoACYChlg5ZNQNrrlerOb4YQwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:KeyName>https://identity-shib.protocallservices.com/tss</ds:KeyName>
        <ds:KeyName>identity-shib.protocallservices.com</ds:KeyName>
        <ds:X509Data>
          <ds:X509SubjectName>CN=identity-shib.protocallservices.com</ds:X509SubjectName>
          <ds:X509Certificate>MIIEbjCCAtagAwIBAgIUE0yWVAZUzk4OJ01FDMPVPc8U+80wDQYJKoZIhvcNAQEL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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes128-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes192-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#aes256-gcm"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes192-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2009/xmlenc11#rsa-oaep"/>
      <md:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
    </md:KeyDescriptor>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity-shib.protocallservices.com/tss/Shibboleth.sso/SAML2/POST" index="1"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://identity-shib.protocallservices.com/tss/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://identity-shib.protocallservices.com/tss/Shibboleth.sso/SAML2/Artifact" index="3"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://identity-shib.protocallservices.com/tss/Shibboleth.sso/SAML2/ECP" index="4"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://identity-shib.protocallservices.com/tss/Shibboleth.sso/SAML/POST" index="5"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://identity-shib.protocallservices.com/tss/Shibboleth.sso/SAML/Artifact" index="6"/>


   <md:AttributeConsumingService index="1">
		    <md:ServiceName xml:lang="en">WellTrack Connect Authenticator</md:ServiceName>
		    <md:ServiceDescription xml:lang="en">WellTrack Connect Authenticator</md:ServiceDescription>
		    <md:RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
		    <md:RequestedAttribute FriendlyName="surname" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
		    <md:RequestedAttribute FriendlyName="mail" Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
		    <md:RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat=" urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/>
	</md:AttributeConsumingService>

  </md:SPSSODescriptor>

  <md:Organization>
      <md:OrganizationName xml:lang="en">WellTrack Connect</md:OrganizationName>
      <md:OrganizationDisplayName xml:lang="en">WellTrack Connect</md:OrganizationDisplayName>
      <md:OrganizationURL xml:lang="en">https://welltrack-connect.com</md:OrganizationURL>
  </md:Organization>

  <md:ContactPerson contactType="support">
      <md:GivenName>Jeremie</md:GivenName>
      <md:SurName>Bourque</md:SurName>
      <md:EmailAddress>jeremie.bourque@protocallservices.com</md:EmailAddress>
    </md:ContactPerson>

  <md:ContactPerson contactType="administrative">
    <md:GivenName>Aarti</md:GivenName>
    <md:SurName>Khullar</md:SurName>
    <md:EmailAddress>aarti.khullar@protocallservices.com</md:EmailAddress>
  </md:ContactPerson>

</md:EntityDescriptor>