Changes between Version 3 and Version 4 of Faculty180

Timestamp:

11/01/12 14:18:39 (12 years ago)

Author:

dabantz@…

Comment:

--

Faculty180

@@ -1 +1 @@
 == [[https://iam.alaska.edu/|IAM]] / [[https://iam.alaska.edu/projects|Projects]] / [[https://iam.alaska.edu/shib|Shibboleth]] / [[ServiceCandidates|Service Candidates]] / Faculty 180 ==
 
-from http://www.data180.com/faculty180.php :
+UA sponsored Data180 as [[http://www.incommon.org/participants/|Partner in InCommon]]
+The Service Provider is [[http://www.incommon.org/federation/info/entity.html?entityID=https%3A%2F%2Fwww.faculty180.com%2Fshibboleth-sp|Faculty180]] thus metatdata is updated from [[http://wayf.incommonfederation.org/InCommon/InCommon-metadata.xml|InCommon federation metadata]]. 
+Faculty180 uses normal SP-initiated requests to the IdP from 
+http://www.data180.com/faculty180/uaf_dev
 
-Authentication — Allow login via any single sign-on system (e.g., LDAP, Shibboleth, CAS, WIND, faculty portals)
------------
+=== UA IdP Attribute-release for Faculty180 ===
 
-On Wed, 22 Aug 2012, at 07:19 , L K Williams <lk@data180.com> wrote:
+ePPN, givenName, surname, cn, email, employeeNumber (Banner ID #)
 
-David,
+{{{
+<AttributeFilterPolicy id="releaseToFaculty180">
+    <PolicyRequirementRule xsi:type="basic:AttributeRequesterString" value="https://www.faculty180.com/shibboleth-sp" />
 
-Thank you for the information.  We currently have client schools that use
-Shibboleth for authentication, so this should be an easy process for our
-setup with UAF.
+    <AttributeRule attributeID="eduPersonPrincipalName">
+        <PermitValueRule xsi:type="basic:ANY" />
+    </AttributeRule>
+    <AttributeRule attributeID="surname">
+        <PermitValueRule xsi:type="basic:ANY" />
+    </AttributeRule>
+    <AttributeRule attributeID="givenName">
+        <PermitValueRule xsi:type="basic:ANY" />
+    </AttributeRule>
+    <AttributeRule attributeID="email">
+        <PermitValueRule xsi:type="basic:ANY" />
+    </AttributeRule>
+    <AttributeRule attributeID="commonName">
+        <PermitValueRule xsi:type="basic:ANY" />
+    </AttributeRule>
+    <AttributeRule attributeID="employeeNumber">
+        <PermitValueRule xsi:type="basic:ANY" />
+    </AttributeRule>
 
-I have forwarded your email to Scott Wymer, our chief technology officer.
-He will be contacting you to see how we should to proceed.
 
-Best,
+</AttributeFilterPolicy>
 
-L. K. Williams
-Data180
-www.data180.com
-(888)328-2180
+}}}
 
-On 8/21/12 6:46 PM, "David Bantz" <dabantz@alaska.edu> wrote:
+=== Data180 / Faculty180 metadata as of 2012-11-01 ===
+{{{
+<!-- Data 180,LLC -->
+<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://www.faculty180.com/shibboleth-sp">
+<SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+<md:Extensions xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata">
+<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
+<mdui:DisplayName xml:lang="en">Faculty180</mdui:DisplayName>
+<mdui:InformationURL xml:lang="en">http://www.data180.com/</mdui:InformationURL>
+<mdui:Logo height="40" width="188" xml:lang="en">
+https://www.faculty180.com/pix/Faculty180-LOGO_40Hi.gif
+</mdui:Logo>
+</mdui:UIInfo>
+</md:Extensions>
+<md:KeyDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata">
+<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+<ds:X509Data>
+<!--
+Serial No. 15863846389512568700, expires on Mon Apr 5 20:57:32 2021 GMT
+-->
+<ds:X509Certificate>
+MIIC/TCCAeWgAwIBAgIJANwntD2yQn98MA0GCSqGSIb3DQEBBQUAMB0xGzAZBgNV BAMTEmFjYWRpZGIxLmluZXR1Lm5ldDAeFw0xMTA0MDgyMDU3MzJaFw0yMTA0MDUy MDU3MzJaMB0xGzAZBgNVBAMTEmFjYWRpZGIxLmluZXR1Lm5ldDCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAKWwODdeo6pUaWof8lhGaSRHwtsfe5tSOp3b 2eZBlW0FanQS9s/f3vOWvc+BQWgmt9GYeKCntK4WZlLDTd6dfFEA1v7XJazJJCoO pZ0cp2oPHAzG3IoulP+/DejqL+dMWPlpLnzhDijD2gyXUfOzrWoRwYxWjYgA8keu DZsbLbXQcVf+cc0FbbQw+dFhHURJYTMHUrtkqpHUz4T0kSvmiK0iek8gyiFyEjlt 7ANbhUK0j2bLanGVRD8800EhT1VowPjRmpI9GpiB9Xn8iDAm/0vHdRiRFwjGidDP 4cmeVJZnnJipUGK115wGhh+WnjDfvumd3azI3CuE0VrmUDASxTUCAwEAAaNAMD4w HQYDVR0RBBYwFIISYWNhZGlkYjEuaW5ldHUubmV0MB0GA1UdDgQWBBR9LXkYg5X9 jEU1hIIxrXmEa0/QZjANBgkqhkiG9w0BAQUFAAOCAQEATJHTlxxjxQpZ+Av8maZL 5Q0sHVnoYPS+qvSy9CwHteAPK/TFrw2teRfMxAIiGFo3DuznkdZTH/o2RFaPjrqj byf8LP1w16ZpFEWCkhxJmBXDcRTa3P/fBJVqG9yPHlqB1xitrch4lUa0mwueCfqP stIr9d5Sw5MOvhIOqqr81Y9FTJAzlTBgolKGFlNtusLEv5mDovVmDNTfYuv+xn9j vYDFMsHlzzrf8ftP18yprqbZpOZM/lbAaB2NQF4zcUWoD86Wig4NZLbVwR8OzEr1 2i+kdOKCYjRoTLz+doABVwDdJ9/vZ/pnlGtIIE/WV34g1oP4Pu6TsXg/D3qq1Xn7 eQ==
+</ds:X509Certificate>
+</ds:X509Data>
+</ds:KeyInfo>
+</md:KeyDescriptor>
+<md:AssertionConsumerService xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.faculty180.com/Shibboleth.sso/SAML2/POST" index="1"/>
+<md:AssertionConsumerService xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://www.faculty180.com/Shibboleth.sso/SAML/POST" index="2"/>
+</SPSSODescriptor>
+<Organization>
+<OrganizationName xml:lang="en">Data 180,LLC</OrganizationName>
+<OrganizationDisplayName xml:lang="en">Data 180,LLC</OrganizationDisplayName>
+<OrganizationURL xml:lang="en">http://www.data180.com/</OrganizationURL>
+</Organization>
+<ContactPerson contactType="administrative">
+<GivenName>Dr. L.K. Williams</GivenName>
+<EmailAddress>lk@data180.com</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="technical">
+<GivenName>Dr. Scott Wymer</GivenName>
+<EmailAddress>scott@data180.com</EmailAddress>
+</ContactPerson>
+</EntityDescriptor>
+<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://www.folio180.com/shibboleth-sp">
+<SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol urn:oasis:names:tc:SAML:2.0:protocol">
+<md:Extensions xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata">
+<DiscoveryResponse xmlns="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Binding="urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol" Location="https://my.folio180.com/Shibboleth.sso/Login" index="1"/>
+<mdui:UIInfo xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui">
+<mdui:DisplayName xml:lang="en">Folio180</mdui:DisplayName>
+<mdui:InformationURL xml:lang="en">http://www.data180.com/</mdui:InformationURL>
+<mdui:Logo height="51" width="210" xml:lang="en">https://www.folio180.com/images/Folio180_Logo.png</mdui:Logo>
+</mdui:UIInfo>
+</md:Extensions>
+<md:KeyDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata">
+<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+<ds:X509Data>
+<!--
+Serial No. 15863846389512568700, expires on Mon Apr 5 20:57:32 2021 GMT
+-->
+<ds:X509Certificate>
+MIIC/TCCAeWgAwIBAgIJANwntD2yQn98MA0GCSqGSIb3DQEBBQUAMB0xGzAZBgNV BAMTEmFjYWRpZGIxLmluZXR1Lm5ldDAeFw0xMTA0MDgyMDU3MzJaFw0yMTA0MDUy MDU3MzJaMB0xGzAZBgNVBAMTEmFjYWRpZGIxLmluZXR1Lm5ldDCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAKWwODdeo6pUaWof8lhGaSRHwtsfe5tSOp3b 2eZBlW0FanQS9s/f3vOWvc+BQWgmt9GYeKCntK4WZlLDTd6dfFEA1v7XJazJJCoO pZ0cp2oPHAzG3IoulP+/DejqL+dMWPlpLnzhDijD2gyXUfOzrWoRwYxWjYgA8keu DZsbLbXQcVf+cc0FbbQw+dFhHURJYTMHUrtkqpHUz4T0kSvmiK0iek8gyiFyEjlt 7ANbhUK0j2bLanGVRD8800EhT1VowPjRmpI9GpiB9Xn8iDAm/0vHdRiRFwjGidDP 4cmeVJZnnJipUGK115wGhh+WnjDfvumd3azI3CuE0VrmUDASxTUCAwEAAaNAMD4w HQYDVR0RBBYwFIISYWNhZGlkYjEuaW5ldHUubmV0MB0GA1UdDgQWBBR9LXkYg5X9 jEU1hIIxrXmEa0/QZjANBgkqhkiG9w0BAQUFAAOCAQEATJHTlxxjxQpZ+Av8maZL 5Q0sHVnoYPS+qvSy9CwHteAPK/TFrw2teRfMxAIiGFo3DuznkdZTH/o2RFaPjrqj byf8LP1w16ZpFEWCkhxJmBXDcRTa3P/fBJVqG9yPHlqB1xitrch4lUa0mwueCfqP stIr9d5Sw5MOvhIOqqr81Y9FTJAzlTBgolKGFlNtusLEv5mDovVmDNTfYuv+xn9j vYDFMsHlzzrf8ftP18yprqbZpOZM/lbAaB2NQF4zcUWoD86Wig4NZLbVwR8OzEr1 2i+kdOKCYjRoTLz+doABVwDdJ9/vZ/pnlGtIIE/WV34g1oP4Pu6TsXg/D3qq1Xn7 eQ==
+</ds:X509Certificate>
+</ds:X509Data>
+</ds:KeyInfo>
+</md:KeyDescriptor>
+<md:AssertionConsumerService xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://my.folio180.com/Shibboleth.sso/SAML2/POST" index="1"/>
+<md:AssertionConsumerService xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://my.folio180.com/Shibboleth.sso/SAML2/POST-SimpleSign" index="2"/>
+<md:AssertionConsumerService xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://my.folio180.com/Shibboleth.sso/SAML2/Artifact" index="3"/>
+<md:AssertionConsumerService xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" Binding="urn:oasis:names:tc:SAML:2.0:bindings:PAOS" Location="https://my.folio180.com/Shibboleth.sso/SAML2/ECP" index="4"/>
+<md:AssertionConsumerService xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" Binding="urn:oasis:names:tc:SAML:1.0:profiles:browser-post" Location="https://my.folio180.com/Shibboleth.sso/SAML/POST" index="5"/>
+<md:AssertionConsumerService xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" Binding="urn:oasis:names:tc:SAML:1.0:profiles:artifact-01" Location="https://my.folio180.com/Shibboleth.sso/SAML/Artifact" index="6"/>
+</SPSSODescriptor>
+<Organization>
+<OrganizationName xml:lang="en">Data 180,LLC</OrganizationName>
+<OrganizationDisplayName xml:lang="en">Data 180,LLC</OrganizationDisplayName>
+<OrganizationURL xml:lang="en">http://www.data180.com/</OrganizationURL>
+</Organization>
+<ContactPerson contactType="administrative">
+<GivenName>Dr. L.K. Williams</GivenName>
+<EmailAddress>lk@data180.com</EmailAddress>
+</ContactPerson>
+<ContactPerson contactType="technical">
+<GivenName>Dr. Scott Wymer</GivenName>
+<EmailAddress>scott@data180.com</EmailAddress>
+</ContactPerson>
+</EntityDescriptor>
 
-University of Alaska - Fairbanks has, I am informed, licensed Faculty 180. 
-
-I am responsible for identity & access management at UA and have been
-asked to facilitate integration of this application with our SAML/Shibboleth infrastructure for SSO.  Your web site states that Faculty 180 supports authentication via Shibboleth, so I am seeking more technical details of what needs to be done on our side to achieve this integration.
+}}}