SHARE
TWEET

abstract

a guest Sep 18th, 2019 68 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. This XML file does not appear to have any style information associated with it. The document tree is shown below.
  2. <EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" ID="_fb62b9a0-5ccc-4e1e-9e2f-5ee298da1995" entityID="https://sts.windows.net/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/">
  3. <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
  4. <SignedInfo>
  5. <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
  6. <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
  7. <Reference URI="#_fb62b9a0-5ccc-4e1e-9e2f-5ee298da1995">
  8. <Transforms>
  9. <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
  10. <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
  11. </Transforms>
  12. <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
  13. <DigestValue>wWSS77EXjLPmYP7D0SAH6jcaosMvrVNjbub+TSrI/h8=</DigestValue>
  14. </Reference>
  15. </SignedInfo>
  16. <SignatureValue>
  17. U/Sti7yCyu7Ui69scgSydzVVBNMry7NMKq8gRsev3UNWbenBPQ8UKPkZKqcUqDctNcweKd7Urr6JlP3Whue7RbHv8kLzOHnzFTcSdvU1Y1Mk6yldDHRKyyigiX2kL5nfTv2JPctT4YiYVqbFLgFXBI0BHKzzxI4S+5CtQYNTdnApThPIkpRp6th9zBmrOLHrZfXvryXfg3IArVtzlD8HEW9D1o9bBXgkcd2hEL5xf6E+1PxjMX6A0OGhz2TsmQvQI//gmPYNIFHd4UF1DOPnV/5mcnC+hSZ89OSVhPEZ5A7Q9lB8MDDwDJI/UKi0MjOxqybVgFh0lflcLXcaSv7rWg==
  18. </SignatureValue>
  19. <KeyInfo>
  20. <X509Data>
  21. <X509Certificate>
  22. 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
  23. </X509Certificate>
  24. </X509Data>
  25. </KeyInfo>
  26. </Signature>
  27. <RoleDescriptor xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:fed="http://docs.oasis-open.org/wsfed/federation/200706" xsi:type="fed:SecurityTokenServiceType" protocolSupportEnumeration="http://docs.oasis-open.org/wsfed/federation/200706">
  28. <KeyDescriptor use="signing">
  29. <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
  30. <X509Data>
  31. <X509Certificate>
  32. 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
  33. </X509Certificate>
  34. </X509Data>
  35. </KeyInfo>
  36. </KeyDescriptor>
  37. <fed:ClaimTypesOffered>
  38. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name">
  39. <auth:DisplayName>Name</auth:DisplayName>
  40. <auth:Description>The mutable display name of the user.</auth:Description>
  41. </auth:ClaimType>
  42. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier">
  43. <auth:DisplayName>Subject</auth:DisplayName>
  44. <auth:Description>
  45. An immutable, globally unique, non-reusable identifier of the user that is unique to the application for which a token is issued.
  46. </auth:Description>
  47. </auth:ClaimType>
  48. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname">
  49. <auth:DisplayName>Given Name</auth:DisplayName>
  50. <auth:Description>First name of the user.</auth:Description>
  51. </auth:ClaimType>
  52. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname">
  53. <auth:DisplayName>Surname</auth:DisplayName>
  54. <auth:Description>Last name of the user.</auth:Description>
  55. </auth:ClaimType>
  56. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/identity/claims/displayname">
  57. <auth:DisplayName>Display Name</auth:DisplayName>
  58. <auth:Description>Display name of the user.</auth:Description>
  59. </auth:ClaimType>
  60. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/identity/claims/nickname">
  61. <auth:DisplayName>Nick Name</auth:DisplayName>
  62. <auth:Description>Nick name of the user.</auth:Description>
  63. </auth:ClaimType>
  64. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationinstant">
  65. <auth:DisplayName>Authentication Instant</auth:DisplayName>
  66. <auth:Description>
  67. The time (UTC) when the user is authenticated to Windows Azure Active Directory.
  68. </auth:Description>
  69. </auth:ClaimType>
  70. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationmethod">
  71. <auth:DisplayName>Authentication Method</auth:DisplayName>
  72. <auth:Description>
  73. The method that Windows Azure Active Directory uses to authenticate users.
  74. </auth:Description>
  75. </auth:ClaimType>
  76. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/identity/claims/objectidentifier">
  77. <auth:DisplayName>ObjectIdentifier</auth:DisplayName>
  78. <auth:Description>
  79. Primary identifier for the user in the directory. Immutable, globally unique, non-reusable.
  80. </auth:Description>
  81. </auth:ClaimType>
  82. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/identity/claims/tenantid">
  83. <auth:DisplayName>TenantId</auth:DisplayName>
  84. <auth:Description>Identifier for the user's tenant.</auth:Description>
  85. </auth:ClaimType>
  86. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/identity/claims/identityprovider">
  87. <auth:DisplayName>IdentityProvider</auth:DisplayName>
  88. <auth:Description>Identity provider for the user.</auth:Description>
  89. </auth:ClaimType>
  90. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress">
  91. <auth:DisplayName>Email</auth:DisplayName>
  92. <auth:Description>Email address of the user.</auth:Description>
  93. </auth:ClaimType>
  94. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/groups">
  95. <auth:DisplayName>Groups</auth:DisplayName>
  96. <auth:Description>Groups of the user.</auth:Description>
  97. </auth:ClaimType>
  98. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/identity/claims/accesstoken">
  99. <auth:DisplayName>External Access Token</auth:DisplayName>
  100. <auth:Description>Access token issued by external identity provider.</auth:Description>
  101. </auth:ClaimType>
  102. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/expiration">
  103. <auth:DisplayName>External Access Token Expiration</auth:DisplayName>
  104. <auth:Description>
  105. UTC expiration time of access token issued by external identity provider.
  106. </auth:Description>
  107. </auth:ClaimType>
  108. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/identity/claims/openid2_id">
  109. <auth:DisplayName>External OpenID 2.0 Identifier</auth:DisplayName>
  110. <auth:Description>
  111. OpenID 2.0 identifier issued by external identity provider.
  112. </auth:Description>
  113. </auth:ClaimType>
  114. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/claims/groups.link">
  115. <auth:DisplayName>GroupsOverageClaim</auth:DisplayName>
  116. <auth:Description>
  117. Issued when number of user's group claims exceeds return limit.
  118. </auth:Description>
  119. </auth:ClaimType>
  120. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/role">
  121. <auth:DisplayName>Role Claim</auth:DisplayName>
  122. <auth:Description>
  123. Roles that the user or Service Principal is attached to
  124. </auth:Description>
  125. </auth:ClaimType>
  126. <auth:ClaimType xmlns:auth="http://docs.oasis-open.org/wsfed/authorization/200706" Uri="http://schemas.microsoft.com/ws/2008/06/identity/claims/wids">
  127. <auth:DisplayName>RoleTemplate Id Claim</auth:DisplayName>
  128. <auth:Description>
  129. Role template id of the Built-in Directory Roles that the user is a member of
  130. </auth:Description>
  131. </auth:ClaimType>
  132. </fed:ClaimTypesOffered>
  133. <fed:SecurityTokenServiceEndpoint>
  134. <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
  135. <wsa:Address>
  136. https://login.microsoftonline.com/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/wsfed
  137. </wsa:Address>
  138. </wsa:EndpointReference>
  139. </fed:SecurityTokenServiceEndpoint>
  140. <fed:PassiveRequestorEndpoint>
  141. <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
  142. <wsa:Address>
  143. https://login.microsoftonline.com/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/wsfed
  144. </wsa:Address>
  145. </wsa:EndpointReference>
  146. </fed:PassiveRequestorEndpoint>
  147. </RoleDescriptor>
  148. <RoleDescriptor xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:fed="http://docs.oasis-open.org/wsfed/federation/200706" xsi:type="fed:ApplicationServiceType" protocolSupportEnumeration="http://docs.oasis-open.org/wsfed/federation/200706">
  149. <KeyDescriptor use="signing">
  150. <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
  151. <X509Data>
  152. <X509Certificate>
  153. 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
  154. </X509Certificate>
  155. </X509Data>
  156. </KeyInfo>
  157. </KeyDescriptor>
  158. <fed:TargetScopes>
  159. <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
  160. <wsa:Address>
  161. https://sts.windows.net/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/
  162. </wsa:Address>
  163. </wsa:EndpointReference>
  164. </fed:TargetScopes>
  165. <fed:ApplicationServiceEndpoint>
  166. <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
  167. <wsa:Address>
  168. https://login.microsoftonline.com/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/wsfed
  169. </wsa:Address>
  170. </wsa:EndpointReference>
  171. </fed:ApplicationServiceEndpoint>
  172. <fed:PassiveRequestorEndpoint>
  173. <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
  174. <wsa:Address>
  175. https://login.microsoftonline.com/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/wsfed
  176. </wsa:Address>
  177. </wsa:EndpointReference>
  178. </fed:PassiveRequestorEndpoint>
  179. </RoleDescriptor>
  180. <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
  181. <KeyDescriptor use="signing">
  182. <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
  183. <X509Data>
  184. <X509Certificate>
  185. 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
  186. </X509Certificate>
  187. </X509Data>
  188. </KeyInfo>
  189. </KeyDescriptor>
  190. <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.microsoftonline.com/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/saml2"/>
  191. <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.microsoftonline.com/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/saml2"/>
  192. <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.microsoftonline.com/0ab4cbbf-4bc7-4826-b52c-a14fed5286b9/saml2"/>
  193. </IDPSSODescriptor>
  194. </EntityDescriptor>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top