metadata-diff - [METADATA-DIFF] Production-Production Diff
Subject: InCommon Metadata Diff List
List archive
- From: InCommon Operations <>
- To:
- Subject: [METADATA-DIFF] Production-Production Diff
- Date: Fri, 10 Nov 2023 19:47:32 +0000 (UTC)
The following diff compares the current production metadata with the
previously issued version of the production metadata. It is also at
https://wayf.incommonfederation.org/metadata-diff/prod-prod/prod-prod-1699645645-validUntil.2023-11-24T19.35.59Z.diff
diff --git a/InCommon-metadata.xml b/InCommon-metadata.xml
index b403aff..8b60c86 100644
--- a/InCommon-metadata.xml
+++ b/InCommon-metadata.xml
@@ -1,8 +1,8 @@
-<?xml version="1.0" encoding="UTF-8"?><EntitiesDescriptor
xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
xmlns:icmd="http://id.incommon.org/metadata"
xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"
xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi"
xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"
xmlns:remd="http://refeds.org/metadata"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="INC20231109T194039"
Name="urn:mace:incommon" validUntil="2023-11-23T19:40:39Z"><Signature
xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/
xml-exc-c14n#"/><SignatureMethod
Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><Reference
URI="#INC20231109T194039"><Transforms><Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><DigestValue>dFE1k114aDBdN/70Pknjplhu2QYpPjWEmjGw6GmFq0A=</DigestValue></Reference></SignedInfo><SignatureValue>muRPBJTmlGRQqOzqWsYmpdteWq8HLPU5wjdl8MXFBreU9DvPvtp4ILsEuQP0dg+ibDi0nt5WwRug
-fU1VdjDBtPdZyYlmZUZxcauKSPEMsKAK+n43/SHd96YFmqIgc1lre/SGl++4zTOb9geXJKS90MAX
-1rkbszUYLfkaQnkQyqAGrYobcXVW3ko7GbzgYI6oMoDOlEzvFbrTxjmjJSSwP9cnmcYmDD1Yn7NK
-K7qUczjqSQl90McZXATpZguKXdZfYznWD4CYZE+eO2fOgcTWKgUGf/Qwrp/Pl/f2EXWM/Ce5bddu
-7g8W1q4aQbVEAQNUi5LOwAai0xALylJ7EvqJOg==</SignatureValue><KeyInfo><X509Data><X509Certificate>MIIDgTCCAmmgAwIBAgIJAJRJzvdpkmNaMA0GCSqGSIb3DQEBCwUAMFcxCzAJBgNVBAYTAlVTMRUw
+<?xml version="1.0" encoding="UTF-8"?><EntitiesDescriptor
xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
xmlns:icmd="http://id.incommon.org/metadata"
xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"
xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi"
xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"
xmlns:remd="http://refeds.org/metadata"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="INC20231110T193559"
Name="urn:mace:incommon" validUntil="2023-11-24T19:35:59Z"><Signature
xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/
xml-exc-c14n#"/><SignatureMethod
Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><Reference
URI="#INC20231110T193559"><Transforms><Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><DigestValue>9ShsJUJFC4ffb/kMmkGCfhNSpzeEmJ3NnLVtxwvpO2A=</DigestValue></Reference></SignedInfo><SignatureValue>yslLNx047Et0gWAfalMOoRJWBFVCZxG5trNuCqNzHc24yJKYekKyQysNjUZ3HcmcBUUPqOluCeIH
+LXuJgyO3EmaEcv7zADAKW/ZlgQkqbLX5sGMn0LLXGVLFSGfUBvq852qVFSEJzblqPQ7Gk5J2kQX6
+zFB7dXvzUiFF9Y+bbXCWds9npKriA9bQyGAgaS/H0RL8dMb++YY+YPi3U/5gZeHy4w9uhnkUZret
+gb1QVcMd2Am2vYO9i2gqdAAU0NGqjd2m+/NyrXUQ9PLhMC5FpLDDy8n28g2AtKtZy4efvYunFSbP
+mZ7E7CLhOnF6ffLIHMAxXpWeBm1wHHQOnOrU+w==</SignatureValue><KeyInfo><X509Data><X509Certificate>MIIDgTCCAmmgAwIBAgIJAJRJzvdpkmNaMA0GCSqGSIb3DQEBCwUAMFcxCzAJBgNVBAYTAlVTMRUw
EwYDVQQKDAxJbkNvbW1vbiBMTEMxMTAvBgNVBAMMKEluQ29tbW9uIEZlZGVyYXRpb24gTWV0YWRh
dGEgU2lnbmluZyBLZXkwHhcNMTMxMjE2MTkzNDU1WhcNMzcxMjE4MTkzNDU1WjBXMQswCQYDVQQG
EwJVUzEVMBMGA1UECgwMSW5Db21tb24gTExDMTEwLwYDVQQDDChJbkNvbW1vbiBGZWRlcmF0aW9u
@@ -19,7 +19,7 @@
qEbjhBFh/utXaeyeSOtaX65GwD5svDHnJBclAGkzeRIXqxmYG+I2zMm/JYGzEnbwToyC7yF6Q8cQ
xOr37hEpqz+WN/x3qM2qyBLECQFjmlJrvRLkSL15PCZiu+xFNFd/zx6btDun5DBlfDS9DG+SHCNH
6Nq+NfP+ZQ8CGzP/3TaZPzMlKPDCjp0XOQfyQqFIXdwjPFTWjEusDBlm4qJAlQ==</X509Certificate></X509Data></KeyInfo></Signature>
<Extensions>
- <mdrpi:PublicationInfo creationInstant="2023-11-09T19:40:39Z"
publisher="https://incommon.org"/>
+ <mdrpi:PublicationInfo creationInstant="2023-11-10T19:35:59Z"
publisher="https://incommon.org"/>
</Extensions>
<EntityDescriptor entityID="https://authproxy.conity.com/saml2">
<Extensions>
@@ -16861,6 +16861,66 @@ cmiAwwPyqx5C7YWcLUlEQKuoEt48GntOSrBeMEVzH3fX3g==
<EmailAddress></EmailAddress>
</ContactPerson>
</EntityDescriptor>
+<EntityDescriptor entityID="https://uasd.ucop.edu/sp">
+ <Extensions>
+ <mdrpi:RegistrationInfo registrationAuthority="https://incommon.org"/>
+ <mdattr:EntityAttributes>
+ <saml:Attribute
Name="urn:oasis:names:tc:SAML:attribute:assurance-certification"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+ <saml:AttributeValue>https://refeds.org/sirtfi</saml:AttributeValue>
+ </saml:Attribute>
+ <saml:Attribute Name="http://macedir.org/entity-category"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+
<saml:AttributeValue>http://id.incommon.org/category/registered-by-incommon</saml:AttributeValue>
+ </saml:Attribute>
+ </mdattr:EntityAttributes>
+ </Extensions>
+ <SPSSODescriptor
protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+ <Extensions>
+ <mdui:UIInfo>
+ <mdui:DisplayName xml:lang="en">UASD Proxied Service
Provider</mdui:DisplayName>
+ <mdui:Description xml:lang="en">Proxied Service Provider for the
USAD Site</mdui:Description>
+ <mdui:PrivacyStatementURL
xml:lang="en">https://www.ucop.edu/ethics-compliance-audit-services/_files/compliance/privacy/statement-of-privacy-for-web-based-applications.pdf</mdui:PrivacyStatementURL>
+ <mdui:Logo height="60" width="80"
xml:lang="en">https://www.ucop.edu/_common/_images/sso/uc.png</mdui:Logo>
+ </mdui:UIInfo>
+ </Extensions>
+ <KeyDescriptor>
+ <ds:KeyInfo>
+ <ds:X509Data>
+ <!-- Serial No. 10238856492243265188, expires on Wed Mar 15
19:01:56 2028 GMT -->
+ <ds:X509Certificate>
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
ASEw6ZhABMoUgA+XxNkFc5rJDz6leNBCpPd3LtTsi0llCLoc//4AMxo+3zqnUFSh7rBCqjSiHxWFuZiM3vQSKGn/hD9H5Vm/5MfAiCpvmGmrSSbSZ3VZ09P5LifraNwfw66Lpm6JLtr84nC5fMksl1+0W6LJMCHHrVR3iDIOh4oc1rXkqg2HUVTBWcFZB5FPa6uVp4Rfjmn5SF5rAGSvjjHKHBg579PJGCFn/GAdgCyquXGzNRSNw/AiDekXjszH2F2CwIrpuwwbPCxOQ9EjH7nWsereXoKuJhDmBZ7guw2keo/i72mAdG8CYXwgX8LjZ7k1+JHDP/bEOWACU8bQA==
+ </ds:X509Certificate>
+ </ds:X509Data>
+ </ds:KeyInfo>
+ <EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+ </KeyDescriptor>
+ <AssertionConsumerService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Location="https://samlproxy.ucop.edu/simplesaml/module.php/saml/sp/saml2-acs.php/UASD"
index="1"/>
+ <AttributeConsumingService index="1">
+ <ServiceName xml:lang="en">UASD Proxied Service Provider</ServiceName>
+ <ServiceDescription xml:lang="en">Proxied Service Provider for the
USAD Site</ServiceDescription>
+ <RequestedAttribute FriendlyName="eduPersonPrincipalName"
Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ <RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ <RequestedAttribute FriendlyName="mail"
Name="urn:oid:0.9.2342.19200300.100.1.3"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ <RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ </AttributeConsumingService>
+ </SPSSODescriptor>
+ <Organization>
+ <OrganizationName xml:lang="en">University of California - Office of the
President</OrganizationName>
+ <OrganizationDisplayName xml:lang="en">University of California - Office
of the President</OrganizationDisplayName>
+ <OrganizationURL
xml:lang="en">http://www.ucop.edu/welcome.html</OrganizationURL>
+ </Organization>
+ <ContactPerson contactType="administrative">
+ <GivenName>IT Service Desk</GivenName>
+ <EmailAddress></EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="technical">
+ <GivenName>IAM Group</GivenName>
+ <EmailAddress></EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="other"
remd:contactType="http://refeds.org/metadata/contactType/security">
+ <GivenName>Security Operations</GivenName>
+ <EmailAddress></EmailAddress>
+ </ContactPerson>
+</EntityDescriptor>
<EntityDescriptor entityID="https://uat.roots.ucop.edu/shibboleth">
<Extensions>
<mdrpi:RegistrationInfo registrationAuthority="https://incommon.org"/>
@@ -129905,211 +129965,7 @@
r/6LDyVoCPHKEFh7+dlOh1cU4T8i67mr81oMeXo2PCFQ5b6KLp+FWmzbUNHvVZc4
<EmailAddress></EmailAddress>
</ContactPerson>
</EntityDescriptor>
-<EntityDescriptor entityID="https://pa2327.peopleadmin.com/shibboleth">
- <Extensions>
.
.
.
The complete diff is available here:
https://wayf.incommonfederation.org/metadata-diff/prod-prod/prod-prod-1699645645-validUntil.2023-11-24T19.35.59Z.diff
An archive of this and past prod-prod diffs is available here:
https://wayf.incommonfederation.org/metadata-diff/prod-prod/?C=M;O=D
This is a one-way, notification only email list. If you have questions,
please email . You can also discuss related issues
with the community on .
- InCommon Federation Operations
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/01/2023
- <Possible follow-up(s)>
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/02/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/03/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/06/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/07/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/08/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/09/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/10/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/13/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/14/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/15/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/16/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/17/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/20/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/21/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/22/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/27/2023
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 11/28/2023
Archive powered by MHonArc 2.6.24.