metadata-diff - [METADATA-DIFF] Production-Production Diff
Subject: InCommon Metadata Diff List
List archive
- From: InCommon Operations <>
- To:
- Subject: [METADATA-DIFF] Production-Production Diff
- Date: Tue, 30 Apr 2019 19:14:06 +0000 (UTC)
The following diff compares the current production metadata with the
previously issued version of the production metadata. It is also at
https://wayf.incommonfederation.org/metadata-diff/prod-prod/prod-prod-1556651452-validUntil.2019-05-14T18.42.52Z.diff
--- /opt/incommon/backup_metadata/InCommon-metadata.xml 2019/04/29 19:10:36
1.2825
+++ /opt/incommon/backup_metadata/InCommon-metadata.xml 2019/04/30 19:10:04
@@ -1,22 +1,22 @@
-<?xml version="1.0" encoding="UTF-8" standalone="no"?><EntitiesDescriptor
xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
xmlns:icmd="http://id.incommon.org/metadata"
xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"
xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi"
xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"
xmlns:remd="http://refeds.org/metadata"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="INC20190429T183811"
Name="urn:mace:incommon" validUntil="2019-05-13T18:38:11Z"><ds:Signature>
+<?xml version="1.0" encoding="UTF-8" standalone="no"?><EntitiesDescriptor
xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
xmlns:icmd="http://id.incommon.org/metadata"
xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"
xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi"
xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"
xmlns:remd="http://refeds.org/metadata"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="INC20190430T184252"
Name="urn:mace:incommon" validUntil="2019-05-14T18:42:52Z"><ds:Signature>
<ds:SignedInfo>
<ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<ds:SignatureMethod
Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
-<ds:Reference URI="#INC20190429T183811">
+<ds:Reference URI="#INC20190430T184252">
<ds:Transforms>
<ds:Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</ds:Transforms>
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
-<ds:DigestValue>gU3hsssHSqyiYbJjJrbV7FRuwtJCtI5scfCbpBwd8IA=</ds:DigestValue>
+<ds:DigestValue>Xj46r8fXYgmOspzij9YHUTGFP7Y9gsgDRS7MKDOMUbk=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>
-gT2d33Q3G8fSoNVQe8nCCvdtqE7jpGzQFq7SBLTy72tL2c7f1LsvFRAa80EQxdi0tl9LCrB8ugQQ
-sjxzQDmTZzhV9mAjf87BEoftglZ6/gv9rMB1AXDlgU5r8i6ru4FTm/9CnjAqpsno4tB1uyYAucSu
-KwmLqEAwlSLIE5XAeEyLPh/NbNceDET1uRbF3iX9ztebfKQHK9hG/fM9xxsad3n6Bys0WGaDtApV
-2quw2R4LsReanG5WWFG9V4qTINkt4OjErBN4daOkyzGmzEWgRcF190mde6gIA++MiE0opCtveZh9
-gTM+T6ejvGpOvDt3xq7Aqz1UTqj0yOvBxN86Ew==
+ddTr0ZmYpai43hIEyrNBRUOJ3FlJtcsNUfcBHTSKAn65eFmuEbUVybHtkpLGhSgEf3BV4uik9lqW
+SZ+RkIT4YD3/IF9K1kPia4AosbI7EDGZeG+dpkodc02b+ZLnmGBdJY/tE0gXpZpr2XAFh1y9ZUBh
+tNzSElkl4Lp6Qzax4mhQ/Kugk/yW4TZe9NrqjN9DG9zjK+tZRz0J/2VXcRghHwmufUVkeCKJv5at
+t2rf2jQec8V4+XSemCP4TMqO1Fkas8NjzrCUq7fnfZbfnGMX0RxrwT1UbA0yI5Kv84myZwkQo1Ck
+EAXmaRK+reYatKejImbZRUY2Xf2YXGnNLxMUnA==
</ds:SignatureValue>
<ds:KeyInfo>
<ds:KeyValue>
@@ -54,7 +54,7 @@
</ds:KeyInfo>
</ds:Signature>
<Extensions>
- <mdrpi:PublicationInfo creationInstant="2019-04-29T18:38:11Z"
publisher="https://incommon.org"/>
+ <mdrpi:PublicationInfo creationInstant="2019-04-30T18:42:52Z"
publisher="https://incommon.org"/>
</Extensions>
<EntityDescriptor entityID="https://issues.shibboleth.net/shibboleth">
<Extensions>
@@ -10709,6 +10709,66 @@
<EmailAddress></EmailAddress>
</ContactPerson>
</EntityDescriptor>
+<EntityDescriptor entityID="https://ventiv-qa.ucop.edu">
+ <Extensions>
+ <mdrpi:RegistrationInfo registrationAuthority="https://incommon.org"/>
+ <mdattr:EntityAttributes>
+ <saml:Attribute Name="http://macedir.org/entity-category"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+
<saml:AttributeValue>http://id.incommon.org/category/registered-by-incommon</saml:AttributeValue>
+ </saml:Attribute>
+ </mdattr:EntityAttributes>
+ </Extensions>
+ <SPSSODescriptor
protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol
urn:oasis:names:tc:SAML:2.0:protocol">
+ <Extensions>
+ <mdui:UIInfo>
+ <mdui:DisplayName
xml:lang="en">https://ventiv-qa.ucop.edu</mdui:DisplayName>
+ <mdui:Description xml:lang="en">Risk Services the document is to
outline the approach being proposed to authenticate and authorize user-
identity for RCA SSO.</mdui:Description>
+ <mdui:PrivacyStatementURL
xml:lang="en">https://www.ucop.edu/ethics-compliance-audit-services/_files/compliance/privacy/statement-of-privacy-for-web-based-applications.pdf</mdui:PrivacyStatementURL>
+ <mdui:Logo height="60" width="80"
xml:lang="en">https://www.ucop.edu/_common/_images/sso/uc.png</mdui:Logo>
+ </mdui:UIInfo>
+ </Extensions>
+ <KeyDescriptor>
+ <ds:KeyInfo>
+ <ds:X509Data>
+ <!-- Serial No. 10100846949428596419, expires on Tue Mar 14
20:30:53 2028 GMT -->
+ <ds:X509Certificate>
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
QAFx0zPayZVTCRjlGGNuYdSoT43OtHF/sCT47kBo4Wane6JazB6mst7W3dcYN4JLKBXMU4vg30KU7IxfxHrELDqOu2QNJ9QSRVBCqA0EiGcIjw1eA/1KdhJ/IkaQ5HjgwLQAEZov+bHvNHnJeqVt2W1kB4D5u8jreaB9VeG4p3IVh0aGL/mOD5Z5E3d6K2DKkGjx6k2DiTnjFm16T9ew+PVT0TXRusTVuQPSssNx7BE9sXQjNRd5l7tLVGwFAC04MAhoF0t1JskYDdqhbAuCG//+lluVcbVBnzWtdpWw9oCSPjwOnb8rH0QkFW/Bl58KKpg68Y8DNnhbLeNQ5z3v/SG
+ </ds:X509Certificate>
+ </ds:X509Data>
+ </ds:KeyInfo>
+ </KeyDescriptor>
+ <SingleLogoutService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
Location="https://samlproxy-qa.ucop.edu/simplesaml/module.php/saml/sp/saml2-logout.php/VENTIVTECH"/>
+ <AssertionConsumerService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Location="https://samlproxy-qa.ucop.edu/simplesaml/module.php/saml/sp/saml2-acs.php/VENTIVTECH"
index="1"/>
+ <AssertionConsumerService
Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post"
Location="https://samlproxy-qa.ucop.edu/simplesaml/module.php/saml/sp/saml1-acs.php/VENTIVTECH"
index="2"/>
+ <AssertionConsumerService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact"
Location="https://samlproxy-qa.ucop.edu/simplesaml/module.php/saml/sp/saml2-acs.php/VENTIVTECH"
index="3"/>
+ <AssertionConsumerService
Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01"
Location="https://samlproxy-qa.ucop.edu/simplesaml/module.php/saml/sp/saml1-acs.php/VENTIVTECH/artifact"
index="4"/>
+ <AttributeConsumingService index="1">
+ <ServiceName xml:lang="en">https://ventiv-qa.ucop.edu</ServiceName>
+ <ServiceDescription xml:lang="en">Risk Services the document is to
outline the approach being proposed to authenticate and authorize user-
identity for RCA SSO.</ServiceDescription>
+ <RequestedAttribute FriendlyName="mail"
Name="urn:oid:0.9.2342.19200300.100.1.3"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"
isRequired="true"/>
+ <RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ <RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ <RequestedAttribute FriendlyName="eduPersonPrincipalName"
Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ </AttributeConsumingService>
+ </SPSSODescriptor>
+ <Organization>
+ <OrganizationName xml:lang="en">University of California - Office of the
President</OrganizationName>
+ <OrganizationDisplayName xml:lang="en">University of California - Office
of the President</OrganizationDisplayName>
+ <OrganizationURL
xml:lang="en">http://www.ucop.edu/welcome.html</OrganizationURL>
+ </Organization>
+ <ContactPerson contactType="administrative">
+ <GivenName>IAM Group</GivenName>
+ <EmailAddress></EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="technical">
+ <GivenName>Administrator</GivenName>
+ <EmailAddress></EmailAddress>
.
.
.
The complete diff is available here:
https://wayf.incommonfederation.org/metadata-diff/prod-prod/prod-prod-1556651452-validUntil.2019-05-14T18.42.52Z.diff
An archive of this and past prod-prod diffs is available here:
https://wayf.incommonfederation.org/metadata-diff/prod-prod/?C=M;O=D
This is a one-way, notification only email list. If you have questions,
please email . You can also discuss related issues
with the community on .
- InCommon Federation Operations
- [METADATA-DIFF] Production-Production Diff, (continued)
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/16/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/17/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/18/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/19/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/22/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/23/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/24/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/25/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/26/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/29/2019
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 04/30/2019
Archive powered by MHonArc 2.6.19.