<!--
 This is example metadata only. Do *NOT* supply it as is without review,
and do *NOT* provide it in real time to your partners.
This metadata is not dynamic - it will not change as your configuration changes.
On Demand Metadata Generation available from the metadatagen plugin.
-->
<md:EntityDescriptor entityID="https://rakorium.iamo.de/idp/shibboleth" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
    <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
        <md:Extensions>
            <shibmd:Scope regexp="false">iamo.de</shibmd:Scope>
            <mdui:UIInfo>
                <mdui:DisplayName xml:lang="en">Leibniz-Institut für Agrarentwicklung in Transformationsökonomien (IAMO)</mdui:DisplayName>
                <mdui:DisplayName xml:lang="de">Leibniz-Institut für Agrarentwicklung in Transformationsökonomien (IAMO)</mdui:DisplayName>
                <mdui:Description xml:lang="en">Identity Provider of IAMO</mdui:Description>
                <mdui:Description xml:lang="de">Identity Provider des IAMO</mdui:Description>
                <mdui:Logo height="16" width="16">https://rakorium.iamo.de/idp/images/favicon.ico</mdui:Logo>
                <mdui:Logo height="80" width="80">https://rakorium.iamo.de/idp/images/logo.png</mdui:Logo>
            </mdui:UIInfo>
        </md:Extensions>
        <md:KeyDescriptor use="signing">
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>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==
                    </ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </md:KeyDescriptor>
        <md:KeyDescriptor use="signing">
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>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==
                    </ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </md:KeyDescriptor>
        <md:KeyDescriptor use="encryption">
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>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                    </ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </md:KeyDescriptor>

	<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://rakorium.iamo.de/idp/profile/SAML2/Redirect/SLO"/>
        <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://rakorium.iamo.de/idp/profile/SAML2/POST/SLO"/>
        <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://rakorium.iamo.de/idp/profile/SAML2/POST-SimpleSign/SLO"/>
        <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://rakorium.iamo.de:8443/idp/profile/SAML2/SOAP/SLO"/>

	<md:SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://rakorium.iamo.de/idp/profile/Shibboleth/SSO"/>
        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://rakorium.iamo.de/idp/profile/SAML2/POST/SSO"/>
        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-Simple-Sign" Location="https://rakorium.iamo.de/idp/profile/SAML2/POST-Simple-Sign/SSO"/>
        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://rakorium.iamo.de/idp/profile/SAML2/Redirect/SSO"/>

	<!-- <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://rakorium.iamo.de/idp/profile/SAML2/SOAP/ArtifactResolution" />
        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://rakorium.iamo.de/idp/profile/SAML2/POST-SimpleSign/SSO" />
        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://rakorium.iamo.de/idp/profile/SAML2/Redirect/SSO" />
        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://rakorium.iamo.de/idp/profile/SAML2/POST/SSO" />-->

	<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://rakorium.iamo.de/idp/profile/SAML2/SOAP/ECP"/>

	<md:AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
        	<!-- SAML2-Attribute-Service einkommentieren -->
        	<md:AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://rakorium.iamo.de:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> 
 	</md:AttributeAuthorityDescriptor>	

    </md:IDPSSODescriptor>

</md:EntityDescriptor>