[Tf-aai] check CPH SAML metadata

Mitchell Seaton seaton at hum.ku.dk
Mon Apr 3 04:19:01 CEST 2017 

Dear AAI-TF,


On 04/01/2017 02:04 AM, Jozef Misutka wrote:
>
>
> On 31 March 2017 at 16:49, Daan Broeder <daan.broeder at meertens.knaw.nl 
> <mailto:daan.broeder at meertens.knaw.nl>> wrote:
>
>     Dear AAI-TF
>     Could you please check if the CPH centre SAML metadata has a valid
>     link to a privacy policy statement.
>
Yes, the privacy link is valid.
>
> Yes.
>
>
> But it does not have a CoCo conforming saml:AttributeValue, see
> http://monitor.edugain.org/coc/?show=list_sps
> entityId -> https://infra.clarin.dk/shibboleth 
> <http://monitor.edugain.org/coc/?f_id_sp=1301&f_entityID=clarin.dk&page=1&f_order=ts+desc&show=list_sp_tests&f_is_changed=1>

This is incorrect the necessary entity SAML attributes are there in the 
metadata - see https://infra.clarin.eu/aai/prod_md_about_spf_sps.xml

<saml:AttributeName="http://macedir.org/entity-category"NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"> 

<saml:AttributeValue>
http://www.geant.net/uri/dataprotection-code-of-conduct/v1
</saml:AttributeValue>
</saml:Attribute>

>
> To see real xml metadata from various federations, see
> https://met.refeds.org/met/entity/https%253A%252F%252Finfra.clarin.dk%252Fshibboleth/
>
To me the problem seems to be AAI-DFN as the register - is using 
different SP metadata.
Does someone know what is going on here with AAI-DFN?

SP metadata is updated and valid within CLARIN SPF - pushed to eduGAIN 
and WAYF is currently pulling from eduGAIN as of this year.

> Best,
> Jozef
>
>     Please send me a copy of the metadata.
>
>     Thanks,
>     Daan
>
>     Daan Broeder
>     Tel. +31 20 4628625 <tel:+31%2020%20462%208625>
>     Daan.broeder at meertens.knaw.nl <mailto:Daan.broeder at meertens.knaw.nl>
>     Meertens Instituut (Afdeling Technische Ontwikkeling)
>     Oudezijds Achterburgwal 185
>     1012 DK Amsterdam
>
>     Postbus 10855
>     1001 EW Amsterdam
>     ----
>
>
>
>     _______________________________________________
>     Tf-aai mailing list
>     Tf-aai at lists.clarin.eu <mailto:Tf-aai at lists.clarin.eu>
>     https://lists.clarin.eu/cgi-bin/mailman/listinfo/tf-aai
>     <https://lists.clarin.eu/cgi-bin/mailman/listinfo/tf-aai>
>
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.clarin.eu/cgi-bin/mailman/private/tf-aai/attachments/20170403/ecb0c1ad/attachment.htm>

More information about the Tf-aai mailing list