metadata-diff - [METADATA-DIFF] Production-Production Diff
Subject: InCommon Metadata Diff List
List archive
- From: InCommon Operations <>
- To:
- Subject: [METADATA-DIFF] Production-Production Diff
- Date: Fri, 26 Jul 2024 18:49:31 +0000 (UTC)
The following diff compares the current production metadata with the
previously issued version of the production metadata. It is also at
https://wayf.incommonfederation.org/metadata-diff/prod-prod/prod-prod-1722019764-validUntil.2024-08-09T18.37.00Z.diff
diff --git a/InCommon-metadata.xml b/InCommon-metadata.xml
index 6bce3e3..f965266 100644
--- a/InCommon-metadata.xml
+++ b/InCommon-metadata.xml
@@ -1,8 +1,8 @@
-<?xml version="1.0" encoding="UTF-8"?><EntitiesDescriptor
xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
xmlns:icmd="http://id.incommon.org/metadata"
xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"
xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi"
xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"
xmlns:remd="http://refeds.org/metadata"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="INC20240725T225230"
Name="urn:mace:incommon" validUntil="2024-08-08T22:52:30Z"><Signature
xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/
xml-exc-c14n#"/><SignatureMethod
Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><Reference
URI="#INC20240725T225230"><Transforms><Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><DigestValue>XblsDkRyBEQdRw6JEyIjcviuq4s1mQUoiNCYRcttJ0s=</DigestValue></Reference></SignedInfo><SignatureValue>V6V/WoRyM0F2ohX58wkBRptIbgvxmOT1Taou3lIRQpq9bn+qIXyrdTGY9g7MIfGu8RLi3Lswcxgy
-+1MPOFIUJL6E3X5hLZb15O0m9NZOpukq6quo37Cyizjxa+gdh/zjGaG0oHxt7fTOrljd1ArrhY7y
-cG7lebJhD71SipfzatMPDH15Gp6nohrc85IjTb8aXDWXs790a6KiTpDkuyu3uFZz0W+rhkC8ji4p
-7U+HVSKyWTU3OIUshMdsIxjxBssHyoTMi02sZ2XGYMP8d8ar0X5XHGHNYN9u5bFLRvqaEmHMXtQs
-e8qIQZJaL4R1bi+AdRh14HP50vwHrCT+Riw/rA==</SignatureValue><KeyInfo><X509Data><X509Certificate>MIIDgTCCAmmgAwIBAgIJAJRJzvdpkmNaMA0GCSqGSIb3DQEBCwUAMFcxCzAJBgNVBAYTAlVTMRUw
+<?xml version="1.0" encoding="UTF-8"?><EntitiesDescriptor
xmlns="urn:oasis:names:tc:SAML:2.0:metadata"
xmlns:alg="urn:oasis:names:tc:SAML:metadata:algsupport"
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
xmlns:icmd="http://id.incommon.org/metadata"
xmlns:idpdisc="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
xmlns:init="urn:oasis:names:tc:SAML:profiles:SSO:request-init"
xmlns:mdattr="urn:oasis:names:tc:SAML:metadata:attribute"
xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi"
xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui"
xmlns:remd="http://refeds.org/metadata"
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
xmlns:shibmd="urn:mace:shibboleth:metadata:1.0"
xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="INC20240726T183700"
Name="urn:mace:incommon" validUntil="2024-08-09T18:37:00Z"><Signature
xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/
xml-exc-c14n#"/><SignatureMethod
Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><Reference
URI="#INC20240726T183700"><Transforms><Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><DigestValue>QNZL/mJkdBIYUsTyX6Qo4T7u7AbCfgY/8ExGnQmcPlA=</DigestValue></Reference></SignedInfo><SignatureValue>IAh0DWxV04GiQs04bsARTPNuK0sHh7lOCNJDBbBS0fwzoG+FuraHRoUpIB5m3ZyN1d5o7oQXpl/b
+r4P7MgwzOYn3UxvKB4IxkqYwhJaR9vcp+GczOPz2TL7yUJwBvKKelZPG0MoG7tJOkMyNdlPU9Lgs
+F5nFk45ZrJSYOtiZP4BZ4N9reBcUsQl60McX1uv4hrAWzJnslEPpYc5i8rCezGf41DE9XyCwApRs
+cssjV31DRKXdnWmtZFqSjhfU+8KBAv92BzWypN0WDu7bO7RD0b9atvmKqshmCEbKbGKvRr+pOH69
+vy1PcwYHbHIRFDpN7g6o0CyuMnHlrLc8nk7lUA==</SignatureValue><KeyInfo><X509Data><X509Certificate>MIIDgTCCAmmgAwIBAgIJAJRJzvdpkmNaMA0GCSqGSIb3DQEBCwUAMFcxCzAJBgNVBAYTAlVTMRUw
EwYDVQQKDAxJbkNvbW1vbiBMTEMxMTAvBgNVBAMMKEluQ29tbW9uIEZlZGVyYXRpb24gTWV0YWRh
dGEgU2lnbmluZyBLZXkwHhcNMTMxMjE2MTkzNDU1WhcNMzcxMjE4MTkzNDU1WjBXMQswCQYDVQQG
EwJVUzEVMBMGA1UECgwMSW5Db21tb24gTExDMTEwLwYDVQQDDChJbkNvbW1vbiBGZWRlcmF0aW9u
@@ -19,7 +19,7 @@
qEbjhBFh/utXaeyeSOtaX65GwD5svDHnJBclAGkzeRIXqxmYG+I2zMm/JYGzEnbwToyC7yF6Q8cQ
xOr37hEpqz+WN/x3qM2qyBLECQFjmlJrvRLkSL15PCZiu+xFNFd/zx6btDun5DBlfDS9DG+SHCNH
6Nq+NfP+ZQ8CGzP/3TaZPzMlKPDCjp0XOQfyQqFIXdwjPFTWjEusDBlm4qJAlQ==</X509Certificate></X509Data></KeyInfo></Signature>
<Extensions>
- <mdrpi:PublicationInfo creationInstant="2024-07-25T22:52:30Z"
publisher="https://incommon.org"/>
+ <mdrpi:PublicationInfo creationInstant="2024-07-26T18:37:00Z"
publisher="https://incommon.org"/>
</Extensions>
<EntityDescriptor entityID="https://authproxy.conity.com/saml2">
<Extensions>
@@ -15496,6 +15496,77 @@ ENCdqMy/Lg==
<EmailAddress></EmailAddress>
</ContactPerson>
</EntityDescriptor>
+<EntityDescriptor entityID="https://roots.regg.rwd.aws.ucop.edu/shibboleth">
+ <Extensions>
+ <mdrpi:RegistrationInfo registrationAuthority="https://incommon.org"/>
+ <mdattr:EntityAttributes>
+ <saml:Attribute
Name="urn:oasis:names:tc:SAML:attribute:assurance-certification"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+ <saml:AttributeValue>https://refeds.org/sirtfi</saml:AttributeValue>
+ </saml:Attribute>
+ <saml:Attribute Name="http://macedir.org/entity-category"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+
<saml:AttributeValue>http://id.incommon.org/category/registered-by-incommon</saml:AttributeValue>
+ </saml:Attribute>
+ </mdattr:EntityAttributes>
+ </Extensions>
+ <SPSSODescriptor
protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+ <Extensions>
+ <idpdisc:DiscoveryResponse
Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol"
Location="https://roots.regg.rwd.aws.ucop.edu/Shibboleth.sso/Login"
index="1"/>
+ <mdui:UIInfo>
+ <mdui:DisplayName xml:lang="en">Redwood Roots
Reg-G</mdui:DisplayName>
+ <mdui:Description xml:lang="en">ROOTS site for REG-G
environment</mdui:Description>
+ <mdui:PrivacyStatementURL
xml:lang="en">https://www.ucop.edu/ethics-compliance-audit-services/_files/compliance/privacy/statement-of-privacy-for-web-based-applications.pdf</mdui:PrivacyStatementURL>
+ <mdui:Logo height="60" width="80"
xml:lang="en">https://www.ucop.edu/_common/_images/sso/uc.png</mdui:Logo>
+ </mdui:UIInfo>
+ </Extensions>
+ <KeyDescriptor use="signing">
+ <ds:KeyInfo>
+ <ds:X509Data>
+ <!-- Serial No. 140193005818437321819967157377134385247935947379,
expires on Sun Jan 2 20:37:38 2033 GMT -->
+ <ds:X509Certificate>
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
bRc6il8Ub0VbwSwZN9tf0ZrV/b954+nnBAB9s+RSsmtF+dwVI6RZzbcvSkl1Fu17OZo6VYQdCqCbAmef8NNFlIi3ODbtoMZTOqasBbGW6vXXf4aHBFz0/AByODXJtJDVqzi3QaCpDABjVw9uQK7v6alraARj49ZEEbtutt+UZhPzL118RW/0u1tVgMDiRG19Vh6OXJPBqa/mOH7pogeSQgpNbOkyjPiOC5k6bRjag9uGf4X3DUP/qTkfidJnfCCRoKzI/LpULSTS1deG2UYwu6+cEq8xt4hmmXcuYgLY4NoQqpWoh94WmUsJYwdm8MCaVmTDiQmMqHcoWK3Cg6FkN4W1S73vw4CYHgJ32Jd9O0LKWsJ5wdE0QF5NM2Ov4gq9kSYyimoiqWjr3RiGaBEyF6TtrbzLVTHGZCYPAfDpbBcsQ==
+ </ds:X509Certificate>
+ </ds:X509Data>
+ </ds:KeyInfo>
+ </KeyDescriptor>
+ <KeyDescriptor use="encryption">
+ <ds:KeyInfo>
+ <ds:X509Data>
+ <!-- Serial No. 410547186185905016328350414024828942061339816796,
expires on Sun Jan 2 20:37:35 2033 GMT -->
+ <ds:X509Certificate>
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
GK0HLxMbwwtonqxf1jSBKFKTOwA29LMkRNVy2VxWUeSKkQCe261rgeSFTVEtlT2nNta1Y0z1rhZThlmUUn4ZpNrTi2vzhh+f7pmpDvuS7uBDZYts0ZBOpbh2VzKUkobra7cAJlFNjibPMOJK+BY2C39SCXNuxUpMrgMQeQH5g6gGiWuzW5DLkEK2myi6wCfyU7ASLSdB0nLyFICF5Zyx081qIOXSvVRGJkvshSEXk6UyVEbF91CZanVNAVsy9dZVlsO350Wm3HTTCKcBOdSCKaw1XLq8vnjdwJNWhGUV0kXhEYklDcHmSNmJbtm/Mq7QRWs/77bQMBgvSdsJcOCze8Wq/TguT+d1Dsi1ojBGZGz+OZeLZ8H57OT+EjMIxGsN8NcUbJXXQsNx2LTqTDOqNvzEw6rUh2p31alGx8pAdZeBw==
+ </ds:X509Certificate>
+ </ds:X509Data>
+ </ds:KeyInfo>
+ <EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+ </KeyDescriptor>
+ <AssertionConsumerService
Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
Location="https://roots.regg.rwd.aws.ucop.edu/Shibboleth.sso/SAML2/POST"
index="1"/>
+ <AttributeConsumingService index="1">
+ <ServiceName xml:lang="en">Redwood Roots Reg-G</ServiceName>
+ <ServiceDescription xml:lang="en">ROOTS site for REG-G
environment</ServiceDescription>
+ <RequestedAttribute FriendlyName="eduPersonPrincipalName"
Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ <RequestedAttribute FriendlyName="givenName" Name="urn:oid:2.5.4.42"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ <RequestedAttribute FriendlyName="mail"
Name="urn:oid:0.9.2342.19200300.100.1.3"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ <RequestedAttribute FriendlyName="sn" Name="urn:oid:2.5.4.4"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+ </AttributeConsumingService>
+ </SPSSODescriptor>
+ <Organization>
+ <OrganizationName xml:lang="en">University of California - Office of the
President</OrganizationName>
+ <OrganizationDisplayName xml:lang="en">University of California - Office
of the President</OrganizationDisplayName>
+ <OrganizationURL
xml:lang="en">http://www.ucop.edu/welcome.html</OrganizationURL>
+ </Organization>
+ <ContactPerson contactType="administrative">
+ <GivenName>IT Service Desk</GivenName>
+ <EmailAddress></EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="technical">
+ <GivenName>Identity and Access Management</GivenName>
+ <EmailAddress></EmailAddress>
+ </ContactPerson>
+ <ContactPerson contactType="other"
remd:contactType="http://refeds.org/metadata/contactType/security">
+ <GivenName>Security Operations</GivenName>
+ <EmailAddress></EmailAddress>
.
.
.
The complete diff is available here:
https://wayf.incommonfederation.org/metadata-diff/prod-prod/prod-prod-1722019764-validUntil.2024-08-09T18.37.00Z.diff
An archive of this and past prod-prod diffs is available here:
https://wayf.incommonfederation.org/metadata-diff/prod-prod/?C=M;O=D
This is a one-way, notification only email list. If you have questions,
please email . You can also discuss related issues
with the community on .
- InCommon Federation Operations
- [METADATA-DIFF] Production-Production Diff, (continued)
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/17/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/18/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/19/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/22/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/23/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/24/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/25/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/25/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/25/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/25/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/26/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/29/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/30/2024
- [METADATA-DIFF] Production-Production Diff, InCommon Operations, 07/31/2024
Archive powered by MHonArc 2.6.24.