Onboard HathiTrust metadata

Issue Number REQ-21995

Name of Requester Kris Tuel

NUID 98411568

Email Address ktuel@unomaha.edu

Phone Number 402-554-2451

Campus this service will serve UNO

When do you need this ready for your project GoLive 23 August, 2021

Service Single Sign On Authentication

Service Name HathiTrust

Service Display Name

Is service an InCommon member? Yes

What attributes are required for release to the service (if known) eduPersonScopedAffiliation, eduPersonTargetedID (preferred) OR eduPersonPrincipalName (acceptable)

What Identifier is required for the service (if known)

Does the product support encrypted assertions/certificates Yes

What Identity Provider(s) does the service need for Authentication UNO

Administrative Contact Name HathiTrust Support

Administrative Contact Email Address feedback@issues.hathitrust.org

Technical Contact Name University of Michigan Library IT

Technical Contact Email Address lit-ae-systems@umich.edu

Support Contact Name HathiTrust Support

Support Contact Email Address feedback@issues.hathitrust.org

How is Service authorization managed Service Manages Authorization

If your Service is a third party vendor, please provide their privacy policy URL here https://www.hathitrust.org/privacy

If you would like to display a custom logo image during the sign on process, please provide the URL here

Description, including what, where, how, and when this service is utilized HathiTrust is a digital repository used for and by research libraries for access and digital preservation; one of the largest research library collections in the world.

Paste your service provider metadata below (SAML only)

<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" ID="_a1a3d568-fbf1-4d02-85f6-e4a3fefece5f" entityID="http://www.hathitrust.org/shibboleth-sp" validUntil="2021-09-01T18:32:19.760Z"><Signature xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><Reference URI="#_a1a3d568-fbf1-4d02-85f6-e4a3fefece5f"><Transforms><Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><DigestValue>oqBbo4tl8B35xm4eFnq22FNduVCuQ8tlKLiWSuLbVHU=</DigestValue></Reference></SignedInfo><SignatureValue>HRxurnnM1aHKSCZ9xQGjXZOOLE7J+jO2JfRNsCwv1CCfzQ7bhdWD/hN+yXeol1oR4Kwej0sIGuyl
A8tUsChmhrt+kZU7oNrzkSYwlIol7st5lxLI6Uyb2QBhkHmkN8g6vMaloOQqhhcid2sU/soRbPcQ
lp8dgW4N5LFgeLiqhmIrkpzEebMT8VH7DtIGDLfnc43TuQvDOnfHSe4wDGE0wxHvxg/kNJKIb/W7
tLmUJGfKzKB4/OcWWY14LosZQYk80wRE7SROtScaUxqCKQVslyxtvWOc65NJ/lctacZR72iLSDO2
KTXXGbuZceCoXKRd6QyHGBiJv7gAIQBDp233LdExZdCOgCqfzVXsVJlXqZMrU4kcAaIYIaRzVvl8
pxYuzXnQEPHp/uIVTTrAda7WfcwFcEU+pj7nTAzlpIPT22ap2RRa/Eytg8Q3Y5k9EXwxecMmbO0f
AUKxFGMA25/7sFxFVJe0bEclddGgaI2b8XQWf9Mr6EoKVF7d867dXynZ</SignatureValue></Signature>
<Extensions>
<mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="https://incommon.org"/>
<mdattr:EntityAttributes xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute">
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="urn:oasis:names:tc:SAML:attribute:assurance-certification" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue>https://refeds.org/sirtfi</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="http://macedir.org/entity-category" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
<saml:AttributeValue>http://refeds.org/category/research-and-scholarship</saml:AttributeValue>
<saml:AttributeValue>http://id.incommon.org/category/registered-by-incommon</saml:AttributeValue>
</saml:Attribute>
</mdattr:EntityAttributes>
</Extensions>
<SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
<Extensions>
<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
<mdui:DisplayName xml:lang="en">HathiTrust</mdui:DisplayName>
<mdui:Description xml:lang="en">HathiTrust is an international partnership of academic and research institutions working together to ensure the long-term preservation and accessibility of the cultural record.</mdui:Description>
<mdui:InformationURL xml:lang="en">https://www.hathitrust.org/about</mdui:InformationURL>
<mdui:PrivacyStatementURL xml:lang="en">https://www.hathitrust.org/privacy</mdui:PrivacyStatementURL>
<mdui:Logo height="47" width="321" xml:lang="en">https://babel.hathitrust.org/common/HathiTrustDL_logo.png</mdui:Logo>
</mdui:UIInfo>
</Extensions>
<KeyDescriptor>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:X509Data>
<!-- Serial No. 13145134791721112597, expires on Fri Apr 21 19:46:28 2034 GMT -->
<ds:X509Certificate>
MIIEjjCCA3agAwIBAgIJALZs5nJ5KlQVMA0GCSqGSIb3DQEBBQUAMIHHMQswCQYD
VQQGEwJVUzERMA8GA1UECAwITWljaGlnYW4xEjAQBgNVBAcMCUFubiBBcmJvcjEf
MB0GA1UECgwWVW5pdmVyc2l0eSBvZiBNaWNoaWdhbjEnMCUGA1UECwweTGlicmFy
eSBJbmZvcm1hdGlvbiBUZWNobm9sb2d5MR0wGwYDVQQDDBRiYWJlbC5oYXRoaXRy
dXN0Lm9yZzEoMCYGCSqGSIb3DQEJARYZbGl0LWNzLXN5c2FkbWluQHVtaWNoLmVk
dTAeFw0xNDA0MjExOTQ2MjhaFw0zNDA0MjExOTQ2MjhaMIHHMQswCQYDVQQGEwJV
UzERMA8GA1UECAwITWljaGlnYW4xEjAQBgNVBAcMCUFubiBBcmJvcjEfMB0GA1UE
CgwWVW5pdmVyc2l0eSBvZiBNaWNoaWdhbjEnMCUGA1UECwweTGlicmFyeSBJbmZv
cm1hdGlvbiBUZWNobm9sb2d5MR0wGwYDVQQDDBRiYWJlbC5oYXRoaXRydXN0Lm9y
ZzEoMCYGCSqGSIb3DQEJARYZbGl0LWNzLXN5c2FkbWluQHVtaWNoLmVkdTCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM76TgIPfAn3iL7VkPSiDnMMOdvl
bHzK7Zd2CobbmimTji8zhc3vDd9S9Euxj+WDPnTHzyD9jcM2W/+Telq2ZokJ1U8Y
f7OaPzzpW5fUR089D6omD3WX6ibRbv7hfUlwoMBIVxo9wiw/itBJAfYm33zLxNUd
IfVeOmhAmF0reu1efOa1Bf+Ca+yJ4dqsi9wBiguPLj1J4pKD80jDtkXahVxJqFgs
PR0Ac2N9AiNt/BCPSVhL5tCxZ8Bbru79bWiPIxLv1DM/bxWirW+KJthoW9uK8d1k
5YAn8qghCBmzOuqthjwT+sdVO1rALF1YocdzB32JzpO/82qjomoWLT6yuMECAwEA
AaN7MHkwCQYDVR0TBAIwADAsBglghkgBhvhCAQ0EHxYdT3BlblNTTCBHZW5lcmF0
ZWQgQ2VydGlmaWNhdGUwHQYDVR0OBBYEFGz6QCNdJr6vOBfq4QVgGcDTJf/wMB8G
A1UdIwQYMBaAFGz6QCNdJr6vOBfq4QVgGcDTJf/wMA0GCSqGSIb3DQEBBQUAA4IB
AQAvDy2ZejhnWqaBt3KksjX6ctoALVOTT3tWOmFOM5HTj/CPzblJ5cTAmG00inOx
H4qGKXbPRxK3w6WsYckrnEp9j0kM77VH4Dlrm+nMcGTnFDcjf02UcgroCczZ+fbY
PusJOC3rh0AiBrx9P8lSzAFxYKawtW+d4yQsP2ng+zAz/VwhUIoyrYxNSqTklknc
j0vyPq9qZ4hzXHTr6r/ykFiZLWrtjKCSxbXGmdYJsl1JwudC40pfs7EWDPEGpsj2
EFh4nYP5mxGPRkGTXqcwiQirAw/snRB08YBvn218+ddR4a3wpkBWdJlMMRy6jjjK
Rm4qMV5UuXQtJqIPByNqD0zj
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
<EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
</KeyDescriptor>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="1"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://babel.hathitrust.org/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://babel.hathitrust.org/Shibboleth.sso/SAML2/Artifact" index="3"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://babel.hathitrust.org/Shibboleth.sso/SAML2/ECP" index="4"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://babel.hathitrust.org/Shibboleth.sso/SAML/POST" index="5"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://babel.hathitrust.org/Shibboleth.sso/SAML/Artifact" index="6"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://beta-1.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="7"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://beta-2.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="8"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://beta-3.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="9"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="10"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://roger-full.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="12"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://dueberb-full.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="13"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://moseshll-full.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="16"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://crms-training.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="17"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://aelkiss-full.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="18"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://preview.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="19"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://beta-4.babel.hathitrust.org/Shibboleth.sso/SAML2/POST" index="21"/>
<AttributeConsumingService index="1">
<ServiceName xml:lang="en">HathiTrust</ServiceName>
<ServiceDescription xml:lang="en">HathiTrust is an international partnership of academic and research institutions working together to ensure the long-term preservation and accessibility of the cultural record.</ServiceDescription>
<RequestedAttribute FriendlyName="displayName" Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
<RequestedAttribute FriendlyName="eduPersonPrincipalName" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
<RequestedAttribute FriendlyName="eduPersonScopedAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.9" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
<RequestedAttribute FriendlyName="eduPersonTargetedID" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
</AttributeConsumingService>
</SPSSODescriptor>
<Organization>
<OrganizationName xml:lang="en">University of Michigan</OrganizationName>
<OrganizationDisplayName xml:lang="en">University of Michigan</OrganizationDisplayName>
<OrganizationURL xml:lang="en">http://www.umich.edu/</OrganizationURL>
</Organization>
<ContactPerson contactType="technical">
<GivenName>University of Michigan Library IT</GivenName>
<EmailAddress>mailto:lit-ae-systems@umich.edu</EmailAddress>
</ContactPerson>
<ContactPerson contactType="support">
<GivenName>HathiTrust Support</GivenName>
<EmailAddress>mailto:feedback@issues.hathitrust.org</EmailAddress>
</ContactPerson>
<ContactPerson xmlns:remd="http://refeds.org/metadata" contactType="other" remd:contactType="http://refeds.org/metadata/contactType/security">
<GivenName>ITS Security</GivenName>
<EmailAddress>mailto:security@umich.edu</EmailAddress>
</ContactPerson>
<ContactPerson contactType="administrative">
<GivenName>HathiTrust Support</GivenName>
<EmailAddress>mailto:feedback@issues.hathitrust.org</EmailAddress>
</ContactPerson>
</EntityDescriptor>

Login URL https://serviceprovider.example.com/login

Service Documentation https://www.hathitrust.org/authentication