{"type":"doc","content":[{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"table","attrs":{"layout":"default","width":1800.0,"localId":"a676f96d-87e3-4ee2-a5cd-7fc6fcf02027"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[90.0]},"content":[{"type":"paragraph","content":[{"text":"Version","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[174.0]},"content":[{"type":"paragraph","content":[{"text":"Datum","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[118.0]},"content":[{"type":"paragraph","content":[{"text":"Författare","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[376.0]},"content":[{"type":"paragraph","content":[{"text":"Kommentar","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[90.0]},"content":[{"type":"paragraph","content":[{"text":"0.1","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[174.0]},"content":[{"type":"paragraph","content":[{"type":"hardBreak"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[118.0]},"content":[{"type":"paragraph","content":[{"type":"mention","attrs":{"id":"712020:325644bf-0346-493b-8e17-e0a3b0ff0487","text":"@Former user (Deleted)"}}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[376.0]},"content":[{"type":"paragraph","content":[{"text":"Utkast","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[90.0]},"content":[{"type":"paragraph","content":[{"text":"0.2","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[174.0]},"content":[{"type":"paragraph","content":[{"type":"hardBreak"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[118.0]},"content":[{"type":"paragraph","content":[{"type":"mention","attrs":{"id":"712020:431fa071-e387-4287-8017-8712dddfd640","text":"@Former user (Deleted)"}}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[376.0]},"content":[{"type":"paragraph","content":[{"text":"Första granskning","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[90.0]},"content":[{"type":"paragraph","content":[{"text":"0.3","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[174.0]},"content":[{"type":"paragraph","content":[{"type":"date","attrs":{"timestamp":"1617753600000"}},{"text":" ","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[118.0]},"content":[{"type":"paragraph","content":[{"type":"mention","attrs":{"id":"712020:431fa071-e387-4287-8017-8712dddfd640","text":"@Former user (Deleted)"}}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[376.0]},"content":[{"type":"paragraph","content":[{"text":"Mindre korrigeringar","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[90.0]},"content":[{"type":"paragraph","content":[{"text":"0.9","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[174.0]},"content":[{"type":"paragraph","content":[{"type":"date","attrs":{"timestamp":"1621900800000"}},{"text":" ","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[118.0]},"content":[{"type":"paragraph","content":[{"type":"mention","attrs":{"id":"712020:431fa071-e387-4287-8017-8712dddfd640","text":"@Former user (Deleted)"}}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[376.0]},"content":[{"type":"paragraph","content":[{"text":"Brutit ut information. Omskrivningar.","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[90.0]},"content":[{"type":"paragraph","content":[{"text":"0.91","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[174.0]},"content":[{"type":"paragraph","content":[{"type":"date","attrs":{"timestamp":"1623024000000"}},{"text":" ","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[118.0]},"content":[{"type":"paragraph","content":[{"type":"mention","attrs":{"id":"712020:431fa071-e387-4287-8017-8712dddfd640","text":"@Former user (Deleted)"}},{"text":" ","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[376.0]},"content":[{"type":"paragraph","content":[{"text":"Förtydliganden","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[90.0]},"content":[{"type":"paragraph","content":[{"text":"1.0","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[174.0]},"content":[{"type":"paragraph","content":[{"type":"date","attrs":{"timestamp":"1623283200000"}},{"text":" ","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[118.0]},"content":[{"type":"paragraph","content":[{"type":"mention","attrs":{"id":"712020:431fa071-e387-4287-8017-8712dddfd640","text":"@Former user (Deleted)"}},{"text":" ","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[376.0]},"content":[{"type":"paragraph","content":[{"text":"Fastställd","type":"text"}]}]}]}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"extension","attrs":{"layout":"default","extensionType":"com.atlassian.confluence.macro.core","extensionKey":"toc","parameters":{"macroParams":{"_parentId":{"value":"3501785129"}},"macroMetadata":{"macroId":{"value":"7b3235ba-89bd-4571-875a-927b01f39bda"},"schemaVersion":{"value":"1"},"title":"Innehållsförteckning"}},"localId":"674f0edb-e008-42ee-9565-7554719b510c"}},{"type":"heading","attrs":{"level":1},"content":[{"text":"Introduktion","type":"text"}]},{"type":"paragraph","content":[{"text":"Underskriftstjänsten - Bas tillhandahåller funktioner för säker och standardiserad elektronisk underskrift i enlighet med Digitaliseringsmyndighetens (DIGGs) ","type":"text"},{"text":"Tekniskt ramverk","type":"text","marks":[{"type":"em"},{"type":"link","attrs":{"href":"https://github.com/swedenconnect/technical-framework"}}]},{"text":" för Sweden connect","type":"text","marks":[{"type":"link","attrs":{"href":"https://github.com/swedenconnect/technical-framework"}}]},{"text":". ","type":"text"},{"type":"hardBreak"},{"text":"Nuvarande version av Underskriftstjänsten stödjer undertecknande med SITHS e-legitimation, antingen med SITHS-kort i dator eller mobilt med Mobilt SITHS.","type":"text"}]},{"type":"paragraph","content":[{"text":"Denna guide har som syfte att stötta organisationer som avser att ansluta en eller flera e-tjänster till Underskriftstjänsten - Bas. Dokumentet innehåller bland annat vägledning i val av integrationsmönster, viktiga organisatoriska hänsynstaganden och förberedelser samt teknisk anslutningsinformation.","type":"text"}]},{"type":"paragraph","content":[{"text":"Se ","type":"text"},{"text":"huvudsidan för Underskriftstjänsten","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"spaceKey":"UTJ","isRenamedTitle":true,"linkType":"space"},"href":"https://inera.atlassian.net/wiki/spaces/UTJ"}}]},{"text":" för en översiktlig beskrivning av tjänsten och olika anslutningsmönster.","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Teknisk översikt","type":"text"}]},{"type":"paragraph","content":[{"text":"Figuren nedan visar ett exempel på integration, med ingående system. Exemplet inkluderar en e-tjänst som använder Ineras IdP för inloggning samt Stödtjänsten för förberedelse av signeringsunderlag och validering av signatur.","type":"text"}]},{"type":"mediaSingle","attrs":{"layout":"align-start","width":85.0},"content":[{"type":"media","attrs":{"__fileSize":930742,"__fileMimeType":"image/png","width":1280,"id":"fd4ea6fa-6786-4718-ab9f-e055aaeb4dd7","collection":"contentId-3501785129","type":"file","__fileName":"image2024-1-9_13-43-2.png","height":859}}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"text":"Flödesdiagram med exempelflöde:","type":"text","marks":[{"type":"strong"}]}]},{"type":"mediaSingle","attrs":{"layout":"align-start","width":30.0},"content":[{"type":"media","attrs":{"__fileSize":307768,"__fileMimeType":"image/png","width":1055,"id":"3aa9247a-9994-49ad-a42b-e6bc074e3e7f","collection":"contentId-3501785129","type":"file","__fileName":"image-2024-1-8_12-20-35.png","height":1280}}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"heading","attrs":{"level":1},"content":[{"text":"Förutsättningar och förberedelser","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Juridik och informationssäkerhet","type":"text"}]},{"type":"paragraph","content":[{"text":"E-underskrifter är ett komplext område och vid införande av e-underskrift i en e-tjänst så måste den egna organisationen också förstå sitt juridiska ansvar för slutprodukten (det underskrivna dokumentet). En fristående underskriftstjänst så som definierad av Digitaliseringsmyndigheten innebär ett delat ansvar för den slutgiltiga e-underskriften.","type":"text"}]},{"type":"paragraph","content":[{"text":"En bra start för organisationen att börja läsa för att förstå är:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Digitaliseringsmyndighetens Normativ Specifikation","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.digg.se/dokument/diid/normativ-specifikation"}}]}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Policy","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.digg.se/dokument/diid/normativ-specifikation/policy"}}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Tjänstespecifikation","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.digg.se/dokument/diid/normativ-specifikation/tjanstespecifikation"}}]}]}]}]}]}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"e-SAM’s vägledning ”","type":"text"},{"text":"e-legitimation och e-underskrift 1.1","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.esamverka.se/download/18.1d126bc174ad1e6c39c8ca/1598467569167/eSam%20-%20V%C3%A4gledning%20E-legitimation%20och%20E-underskrift%201.1.pdf"}}]},{"text":"”","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"eIDAS","type":"text","marks":[{"type":"link","attrs":{"href":"https://eur-lex.europa.eu/legal-content/SV/TXT/HTML/?uri=CELEX:32014R0910&from=SV#d1e39-73-1"}}]},{"text":" förordningen","type":"text"}]}]}]},{"type":"paragraph","content":[{"text":"Med den utgångspunkten är det viktigt att också förstå relevanta svenska lagar. Notera att i det svenska lagrummet så tillämpas två nivåer, ","type":"text"},{"text":"Elektronisk Underskrift","type":"text","marks":[{"type":"em"}]},{"text":" eller ","type":"text"},{"text":"Avancerad Elektronisk Underskrift","type":"text","marks":[{"type":"em"}]},{"text":". Dessa två nivåer har definition i ","type":"text"},{"text":"eIDAS förordningen Artikel 3","type":"text","marks":[{"type":"link","attrs":{"href":"https://eur-lex.europa.eu/legal-content/SV/TXT/HTML/?uri=CELEX:32014R0910&from=SV#d1e770-73-1"}}]},{"text":". Den fristående e-underskriftstjänsten som Inera tillhandahåller är en tjänst som når upp till nivån ","type":"text"},{"text":"Avancerad Elektronisk Underskrift","type":"text","marks":[{"type":"em"}]},{"text":" om alla ingående komponenter lever upp till kraven i ","type":"text"},{"text":"eIDAS Artikel 26","type":"text","marks":[{"type":"link","attrs":{"href":"https://eur-lex.europa.eu/legal-content/SV/TXT/HTML/?uri=CELEX:32014R0910&from=SV#d1e2283-73-1"}}]},{"text":".","type":"text"}]},{"type":"paragraph","content":[{"text":"Dokumentet som skall undertecknas skall inte skickas till Underskriftstjänsten i sin helhet. E-tjänsten räknar istället ut en kontrollsumma av dokumentet (en hashsumma) som skickas till Underskriftstjänsten för signering, tillsammans med ett underskriftsmeddelande \"Sign Message\"","type":"text","marks":[{"type":"textColor","attrs":{"color":"#003366"}}]},{"text":" som visas för användaren i autentiseringsklienten vid underskriftstillfället. Detta meddelande skapas av e-tjänsten, och det är viktigt att organisationens verksamhet och jurister tillsammans kommer fram till hur detta meddelande skall utformas i de egna e-tjänsterna. Efter utförd signering så måste e-tjänsten kombinera resultatet med ursprungsdokumentet till en färdig undertecknad elektronisk handling. Kammarkollegiet har i ","type":"text"},{"text":"Vägledning avrop eID tjänster 2.0","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.avropa.se/globalassets/dokument/vagledning-avrop-eid-tjanster-2.0.pdf"}}]},{"text":" ritat upp ett rekommenderat arbetsflöde i en tjänst som kan följas.","type":"text"}]},{"type":"paragraph","content":[{"text":"Det viktigaste stycket som definierar relationen och ansvar mellan e-tjänst och underskriftstjänst finns i DIGG:s ","type":"text"},{"text":"Tjänstespecifikation","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.digg.se/dokument/diid/normativ-specifikation/tjanstespecifikation"}}]},{"text":" Kapitel 2.3 ","type":"text"},{"type":"hardBreak"},{"text":"”","type":"text"},{"text":"Underskriftstjänsten tillämpar en rollfördelning där e-tjänsten tillhandahåller funktioner gentemot användaren för att visa och hantera dokument samt sända och ta emot signeringsmeddelanden till underskriftstjänsten. Underskriftstjänsten agerar i detta avseende som underleverantör till e-tjänsten. Underskriftstjänsten ställer ut underskriftscertifikat och tillhandahålla bland annat funktioner för spärrinformation gentemot förlitande part.”","type":"text","marks":[{"type":"em"}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Teknik","type":"text"}]},{"type":"paragraph","content":[{"text":"Alla användare måste ha SITHS e-legitimation och SITHS eID-klienter (appar) på Windows eller Mobiltelefon.","type":"text"}]},{"type":"paragraph","content":[{"text":"E-tjänsten måste anpassas/utvecklas för att kunna ansluta till Underskriftstjänsten.","type":"text"}]},{"type":"paragraph","content":[{"text":"Antingen måste e-tjänsten själv hålla funktionalitet för att skapa SignRequest, ta emot och kombinera signaturen med orginaldokumentet till en undertecknad elektronisk handling samt validera signaturer, eller så delegeras dessa funktioner till en lokalt driftsatt instans av ","type":"text"},{"text":"Stödtjänsten","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"isRenamedTitle":true,"linkType":"page","contentTitle":"Stödtjänsten","versionAtSave":"1"},"href":"https://inera.atlassian.net/wiki/spaces/UTJ/pages/3501785155"}}]},{"text":".","type":"text"}]},{"type":"paragraph","content":[{"text":"Underskriftstjänsten har inga användarflöden eller komponenter för användargränssnitt, annat än felsidor som i undantagsfall visas för användaren (i de fall Underskriftstjänsten av någon anledning inte kan returnera ett felmeddelande till e-tjänsten). Alla användarflöden för att förbereda och presentera dokument för underskrift måste byggas i e-tjänsten. Själva autentiseringen och presentation av ","type":"text"},{"text":"underskriftsmeddelandet","type":"text","marks":[{"type":"textColor","attrs":{"color":"#003366"}}]},{"text":" (\"Sign Message\") sköts av IdP-tjänsten och eID-klienterna.","type":"text"}]},{"type":"paragraph","content":[{"text":"Underskriftstjänsten utfärdar vid varje underskrift ett underskriftscertifikat utifrån begärd ","type":"text"},{"text":"underskriftsprofil","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"isRenamedTitle":true,"linkType":"page","contentTitle":"Profilhantering","versionAtSave":"1"},"href":"https://inera.atlassian.net/wiki/spaces/UTJ/pages/3501787166"}}]},{"text":". Vilken profil som begärs bör styras av verksamhetens behov. Vissa underskriftsprofiler - de som innehåller organisationsinformation - kan kräva att användaren väljer vårdmedarbetaruppdrag i IdP. För att undvika detta användarval så kan e-tjänsten välja en underskriftsprofil utan organisationsinformation och istället inkludera organisationsinformationen i själva dokumentet som skall signeras.","type":"text"}]},{"type":"paragraph","content":[{"text":"I anslutningen av e-tjänst till Underskriftstjänsten anges ett \"Display Name\" som motsvarar ett namn på e-tjänsten. Detta namn kommer visas för användarna vid elektronisk underskrift i eID-klienten och bör därför väljas med omsorg. T.ex. \"Jag skriver under hos ","type":"text"},{"text":"Acme AB dokumenttjänst","type":"text","marks":[{"type":"em"}]},{"text":".\" Om e-tjänsten använder Ineras IdP för inloggning så kan det vara pedagogiskt att använda samma \"Display Name\" för inloggning och underskrift.","type":"text"}]},{"type":"paragraph","content":[{"text":"Vid anslutningen utbyts metadata mellan e-tjänsten och Underskriftstjänsten. Detta metadata skall livscykelhanteras. E-tjänstens förvaltning måste ha rutiner för att läsa in uppdaterat metadata från Underskriftstjänsten, samt distribuera uppdaterat metadata för e-tjänsten, t.ex. vid certifikatsbyte.","type":"text"}]},{"type":"paragraph","content":[{"text":"Metadatautbyte mellan Underskriftstjänsten och IdP sköts internt av Inera.","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Checklista","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Är organisationens juridiska ansvar analyserat, utifrån den tänkta lösningen?","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finns färdig utformning av ","type":"text"},{"text":"underskriftsmeddelanden","type":"text","marks":[{"type":"textColor","attrs":{"color":"#003366"}}]},{"text":" (\"Sign Message\") som skall visas för användarna?","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Är anslutningsmönster beslutat?","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Skall e-tjänsten ansvara för skapandet av underskriftsbegäran samt hantering och validering av resultatet eller delegera detta till en Stödtjänst?","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Skall e-tjänsten använda Ineras IdP för inloggning?","type":"text"}]}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finns beslut om namn på e-tjänsten i form av \"Display Name\" som skall visas för användarna?","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Är behovet av användarattribut i underskriftscertifikatet analyserat?","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Vilken/vilka underskriftsprofiler skall e-tjänsten använda sig av?","type":"text"}]}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Är det klart hur användardialoger och arbetsflöden i e-tjänsten skall se ut vid förberedelse av dokument för elektronisk underskrift?","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Är det beslutat hur arkivering av underskrivna dokument skall gå till?","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Är SITHS eID-klienter distribuerade till användarna, eller finns det en plan för distribution?","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finns kompetens och resurser att implementera eventuella ändringar i e-tjänsten?","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Finns kompetens och resurser att installera, konfigurera och drifta en eventuell Stödtjänst lokalt?","type":"text"}]}]}]},{"type":"heading","attrs":{"level":1},"content":[{"text":"Underskriftsbegäran","type":"text"}]},{"type":"paragraph","content":[{"text":"Kommunikation mellan e-tjänst och Underskriftstjänsten sker enligt version 1.5 av DIGG:s ","type":"text"},{"text":"Implementation Profile for using OASIS DSS in Central Signing Services","type":"text","marks":[{"type":"link","attrs":{"href":"https://github.com/swedenconnect/technical-framework/blob/master/07%20-%20Implementation%20Profile%20for%20using%20DSS%20in%20Central%20Signing%20Services.md"}}]},{"text":".","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":" SignRequest","type":"text"}]},{"type":"paragraph","content":[{"text":"Skapandet av underskriftsbegäran - SignRequest - kan skötas av e-tjänsten själv, alternativt delegeras till ","type":"text"},{"text":"Stödtjänsten","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"isRenamedTitle":true,"linkType":"page","contentTitle":"Stödtjänsten","versionAtSave":"1"},"href":"https://inera.atlassian.net/wiki/spaces/UTJ/pages/3501785155"}}]},{"text":" eller annan motsvarande support-funktion.","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"SignRequestExtension","type":"text"}]},{"type":"paragraph","content":[{"text":"Versionen av ","type":"text"},{"text":"SignRequestExtension-protokollet","type":"text","marks":[{"type":"link","attrs":{"href":"https://github.com/swedenconnect/technical-framework/blob/master/09%20-%20DSS%20Extension%20for%20Federated%20Signing%20Services.md"}}]},{"text":" är 1.4 vilket MÅSTE anges i SignRequest.","type":"text"}]},{"type":"codeBlock","content":[{"text":"","type":"text"}]},{"type":"heading","attrs":{"level":4},"content":[{"text":"IdentityProvider (IdP)","type":"text"}]},{"type":"paragraph","content":[{"text":"Fältet IdentityProvider anger vilken IdP som skall utföra autentiseringen.","type":"text"}]},{"type":"paragraph","content":[{"text":"Ineras IdP tillhandahåller tre logiskt separerade instanser för e-legitimering vid elektronisk underskrift, motsvarande olika autentiseringsmetoder. Detta möjliggör för e-tjänsten att specificera i anropet vilken autentiseringsmetod som skall användas, för att undvika att användaren ställs inför ett metodval. De tre logiska IdP:erna tillhandahåller autentiseringsmetoderna:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Autentisering med SITHS eID på samma enhet","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Autentisering med SITHS eID på annan enhet","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Ospecificerat (Användaren får välja metod själv hos IdP)","type":"text"}]}]}]},{"type":"paragraph","content":[{"text":"E-tjänster som använder Ineras IdP för inloggning kan från IdP begära attributet ","type":"text"},{"text":"urn:identityProviderForSign","type":"text","marks":[{"type":"code"}]},{"text":" som pekar ut vilken logisk IdP för underskrift som korresponderar mot samma autentiseringsmetod som användes vid inloggning. Tanken är att användaren ","type":"text"},{"text":"antagligen","type":"text","marks":[{"type":"em"}]},{"text":" vill använda samma metod vid inloggning och vid underskrift, och genom att direkt ange motsvarande IdP i SignRequest så kan e-tjänsten bespara användaren den interaktionen hos IdP.","type":"text"}]},{"type":"paragraph","content":[{"text":"Se ","type":"text"},{"text":"Anslutningsguide till Underskriftstjänsten - Bas#Underskriftstjänstens Miljöer","type":"text","marks":[{"type":"link","attrs":{"href":"/wiki/pages/resumedraft.action?draftId=3501785129#AnslutningsguidetillUnderskriftstjänsten-Bas-UnderskriftstjänstensMiljöer"}}]},{"text":" nedan för specifika entityID för logiska IdP:er per miljö.","type":"text"}]},{"type":"heading","attrs":{"level":4},"content":[{"text":"Underskriftsprofil","type":"text"}]},{"type":"paragraph","content":[{"text":"De underskriftsprofiler som Underskriftstjänsten stödjer är definierade enligt ","type":"text"},{"text":"Profilhantering","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"isRenamedTitle":true,"linkType":"page","contentTitle":"Profilhantering","versionAtSave":"1"},"href":"https://inera.atlassian.net/wiki/spaces/UTJ/pages/3501787166"}}]},{"text":". Vald underskriftsprofil styr vilka attribut som inkluderas i underskriftscertifikatet och därmed även vilka attribut Underskriftstjänsten begär från IdP.","type":"text"}]},{"type":"paragraph","content":[{"text":"Begärd underskriftsprofil anges i fältet AuthnProfile.","type":"text"}]},{"type":"codeBlock","content":[{"text":"...","type":"text"}]},{"type":"heading","attrs":{"level":4},"content":[{"text":"Signer","type":"text"}]},{"type":"paragraph","content":[{"text":"Fältet Signer används för att identifiera vilken användare som skall utföra underskriften. Attributen som inkluderas är styrande vid autentisering av användaren för underskrift, och måste exakt matcha de attribut som returneras från IdP efter autentiseringen. Se exempel nedan.","type":"text"}]},{"type":"paragraph","content":[{"text":"För e-tjänster som använder sig av Ineras IdP för inloggning är det enkelt att populera attributen i Signer utifrån användarattribut i inloggningsbiljetten från IdP. ","type":"text"}]},{"type":"heading","attrs":{"level":4},"content":[{"text":"RequestedCertAttributes","type":"text"}]},{"type":"paragraph","content":[{"text":"Fältet RequestedCertAttributes anger attribut som skall ingå i underskriftscertifikatet. Sätts till samma attribut som är definierade i den begärda underskriftsprofilen. Se exempel nedan.","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Tillitsnivå (LoA)","type":"text"}]},{"type":"paragraph","content":[{"text":"Accepterade tillitsnivåer för den e-legitimering som utförs i samband med den elektroniska underskriften anges som AuthnContextClassRef-fält. Möjliga fältvärden är de som levereras från IdP, se ","type":"text"},{"text":"Tillitsnivå (LoA)","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"isRenamedTitle":true,"linkType":"page","contentTitle":"Tillitsnivå (LoA)"},"href":"https://inera.atlassian.net/wiki/pages/createpage.action?spaceKey=UTJ&title=Tillitsniv%C3%A5%20%28LoA%29&linkCreation=true&fromPageId=3501785129"}}]},{"text":" för information om hur IdP tolkar LoA.","type":"text"}]},{"type":"paragraph","content":[{"text":"Möjliga värden är:","type":"text"}]},{"type":"codeBlock","content":[{"text":"http://id.sambi.se/loa/loa2\nhttp://id.sambi.se/loa/loa3","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"RequestID","type":"text"}]},{"type":"paragraph","content":[{"text":"Fältet RequestID SKALL genereras enligt ","type":"text"},{"text":"Anslutningsguide till Underskriftstjänsten - Bas#TransactionID (RelayState)","type":"text","marks":[{"type":"link","attrs":{"href":"#"}}]},{"text":" nedan.","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Exempel","type":"text"}]},{"type":"paragraph","content":[{"text":"Nedanstående tabell visar exempel på hur ovanstående fält i SignRequest kan se ut, för varje underskriftsprofil.","type":"text"}]},{"type":"paragraph","content":[{"text":"Fullständiga exempel på SignRequest och övriga meddelanden i flödet tillgängliggörs efter beställning.","type":"text"}]},{"type":"table","attrs":{"layout":"full-width","width":1800.0,"localId":"f1bfc1c4-146b-442a-ba0d-c335c1ebe166"},"content":[{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[164.0]},"content":[{"type":"paragraph","content":[{"text":"Profilnamn (","type":"text","marks":[{"type":"strong"}]},{"text":"AuthnProfile)","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[1150.0]},"content":[{"type":"paragraph","content":[{"text":"Signer","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[711.0]},"content":[{"type":"paragraph","content":[{"text":"LOA","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[690.0]},"content":[{"type":"paragraph","content":[{"text":"Requested Cert Attributes","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[164.0]},"content":[{"type":"paragraph","content":[{"text":"eln_ap_pnr_01","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[1150.0]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"199101192384","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[711.0]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa2","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa2"}}]},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa3","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa3"}}]},{"text":"","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"ELLER om enbart LOA 3 ska få användas.","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa3","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa3"}}]},{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[690.0]},"content":[{"type":"paragraph","content":[{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/surname","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/givenName","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" urn:name","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/personalIdentityNumber","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/organizationIdentifier","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[164.0]},"content":[{"type":"paragraph","content":[{"text":"digg_ap_hsaid_01","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[1150.0]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"TST5565594230-12R7","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[711.0]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa2","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa2"}}]},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa3","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa3"}}]},{"text":"","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"ELLER om enbart LOA 3 ska få användas.","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa3","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa3"}}]},{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[690.0]},"content":[{"type":"paragraph","content":[{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/givenName","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/surname","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/personalIdentityNumber","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" urn:name","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[164.0]},"content":[{"type":"paragraph","content":[{"text":"eln_ap_orgperson_01","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[1150.0]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"TST5565594230-12R7","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"TST5565594230-12R7@559085-8584","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[711.0]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa2","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa2"}}]},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa3","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa3"}}]},{"text":"","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"ELLER om enbart LOA 3 ska få användas.","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa3","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa3"}}]},{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[690.0]},"content":[{"type":"paragraph","content":[{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/surname","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/givenName","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" urn:name","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/employeeHsaId","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" urn:orgAffiliation","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/organizationName","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[164.0]},"content":[{"type":"paragraph","content":[{"text":"eln_ap_pnr_01_orgid","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[1150.0]},"content":[{"type":"paragraph","content":[{"text":" ","type":"text"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" 199101192384","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" 559085-8584","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[711.0]},"content":[{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa2","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa2"}}]},{"text":"","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"type":"hardBreak"},{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa3","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa3"}}]},{"text":"","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"ELLER om enbart LOA 3 ska få användas.","type":"text","marks":[{"type":"code"}]}]},{"type":"paragraph","content":[{"text":"","type":"text","marks":[{"type":"code"}]},{"text":"http://id.sambi.se/loa/loa3","type":"text","marks":[{"type":"link","attrs":{"href":"http://id.sambi.se/loa/loa3"}}]},{"text":"","type":"text","marks":[{"type":"code"}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[690.0]},"content":[{"type":"paragraph","content":[{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/surname","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/givenName","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" urn:name","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/personalIdentityNumber","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"text":"http://sambi.se/attributes/1/organizationIdentifier","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]},{"type":"hardBreak"},{"text":" ","type":"text","marks":[{"type":"code"}]}]}]}]}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"TransactionID (RelayState)","type":"text"}]},{"type":"paragraph","content":[{"text":"Underskriftstjänsten använder ett transaktionsid, TransactionID, för att kunna följa ett underskriftsflöde i loggarna. TransactionID SKALL genereras av e-tjänsten och ","type":"text"},{"text":"skickas dels som RequestID i SignRequest, och dels som RelayState i HTTP POST-anropet till Underskriftstjänsten","type":"text","marks":[{"type":"textColor","attrs":{"color":"#172b4d"}}]},{"text":".","type":"text"}]},{"type":"paragraph","content":[{"text":"Detta id inkluderas i alla efterföljande protokollmeddelanden i underskriftsflödet, och används i loggar för att identifiera det specifika underskriftsförsöket. TransactionID visas också för användarna i eventuella felsidor hos Underskriftstjänsten. Att ha detta id tillgängligt vid supportärenden underlättar felsökning avsevärt, särskilt om felsökningen löper över flera involverade tjänster.","type":"text"}]},{"type":"paragraph","content":[{"text":"E-tjänster som använder Stödtjänsten för generering av SignRequest skickar samma TransactionID i anropet till Stödtjänsten.","type":"text"}]},{"type":"paragraph","content":[{"text":"E-tjänsten SKALL generera TransactionID enligt följande policy:","type":"text"}]},{"type":"paragraph","content":[{"text":"{customerId}-${applicationId}-${timestamp}-${uuid}","type":"text"}]},{"type":"table","attrs":{"layout":"full-width","width":978.0,"localId":"d10dd9a1-0ac6-40fc-8dcc-5933ea1d80af"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[978.0]},"content":[{"type":"paragraph","content":[{"text":"${customerId}-${applicationId}-${timestamp}-${uuid}","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"Where $ {customerId} and $ {applicationId} are normalized according to:","type":"text","marks":[{"type":"strong"}]}]},{"type":"orderedList","attrs":{"order":1},"content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Remove all non-alphanumeric characters.","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Convert all characters to lower case.","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Verify that the result is at least 3 characters, and use only the first 12 characters if the result is longer than that.","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"paragraph","content":[{"text":"$ {customerId} is a 11 character name provided by CGI that represent the client name (same that exist in your Metadata and request URL).","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"$ {timestamp} is the number of milliseconds since January 1, 1970, 00:00:00 GMT in hexadecimal format.","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"$ {applicationId}, You can use the context section of the consumer URL (ex: ","type":"text","marks":[{"type":"strong"}]},{"text":"java.net","type":"text","marks":[{"type":"strong"},{"type":"link","attrs":{"href":"http://java.net"}}]},{"text":".URL: getPath (...))","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"Ex. if consumerURL is \"","type":"text","marks":[{"type":"strong"}]},{"text":"https://app.company.com/app1/process/resp?id=123&ttl=1","type":"text","marks":[{"type":"strong"},{"type":"link","attrs":{"href":"https://app.company.com/app1/process/resp?id=123&ttl=1"}}]},{"text":"\" then ApplicationID becomes: \"app1processr\" (12 characters)","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"$ {uuid} is 128-bit unique ID according to RFC 4122.","type":"text","marks":[{"type":"strong"}]}]},{"type":"paragraph","content":[{"text":"The length of a transactionID will be between 56 and 83 characters.","type":"text","marks":[{"type":"strong"}]}]}]}]}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"heading","attrs":{"level":1},"content":[{"text":"Anslutning","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Beställning","type":"text"}]},{"type":"paragraph","content":[{"text":"Se ","type":"text"},{"text":"Ineras hemsida","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.inera.se/underskriftstjansten"}}]},{"text":" för övergripande information om beställning.","type":"text"}]},{"type":"paragraph","content":[{"text":"Följande information inkluderas vid den ","type":"text"},{"text":"tekniska anslutningen","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.inera.se/underskriftstjansten"}}]},{"text":" till Underskriftstjänsten i en förstudie:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Organisationsnamn (Legal identity)","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"\"Display name\" - namn per e-tjänst","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Önskade underskriftsprofiler (samt i förekommande fall, stödtjänstsprofil(-er), se ","type":"text"},{"text":"Profilhantering","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"isRenamedTitle":true,"linkType":"page","contentTitle":"Profilhantering","versionAtSave":"1"},"href":"https://inera.atlassian.net/wiki/spaces/UTJ/pages/3501787166"}}]},{"text":")","type":"text"},{"type":"hardBreak"}]},{"type":"taskList","attrs":{"localId":""},"content":[{"type":"taskItem","attrs":{"state":"TODO","localId":"13"},"content":[{"text":"eln_ap_pnr_01","type":"text"}]},{"type":"taskItem","attrs":{"state":"TODO","localId":"14"},"content":[{"text":"digg_ap_hsaid_01","type":"text"}]},{"type":"taskItem","attrs":{"state":"TODO","localId":"15"},"content":[{"text":"eln_ap_orgperson_01","type":"text"}]},{"type":"taskItem","attrs":{"state":"TODO","localId":"16"},"content":[{"text":"eln_ap_pnr_01_orgid","type":"text"}]}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Metadata för e-tjänst/Stödtjänst: Ange en URL varifrån metadata kan hämtas, alternativt bifoga metadata som XML i ärendet eller ange en annan väg att föra över metadata.","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Testresultat vid produktionsanslutning","type":"text"}]}]}]},{"type":"paragraph","content":[{"text":"Efter beställning tillgängliggörs:","type":"text"}]},{"type":"bulletList","content":[{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"URL:er för hämtning av Underskriftstjänstens metadata","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"URL:er för anrop till Underskriftstjänsten","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Fullständig dokumentation för Stödjtänsten","type":"text"}]}]},{"type":"listItem","content":[{"type":"paragraph","content":[{"text":"Nerladdning av Stödtjänsten för installation","type":"text"}]}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Metadata","type":"text"}]},{"type":"paragraph","content":[{"text":"Vid anslutning behöver e-tjänstens SAML2-metadata förmedlas, antingen via en URL där metadata kan hämtas, eller direkt bifogat i anslutningsbegäran. Metadata behöver innehålla e-tjänstens publika cert.","type":"text"}]},{"type":"paragraph","content":[{"text":"För de organisationer som använder sig av ","type":"text"},{"text":"Stödtjänsten","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"isRenamedTitle":true,"linkType":"page","contentTitle":"Stödtjänsten","versionAtSave":"1"},"href":"https://inera.atlassian.net/wiki/spaces/UTJ/pages/3501785155"}}]},{"text":" så genererar Stödtjänsten upp SAML2-metadata utifrån tjänstens konfiguration.","type":"text"}]},{"type":"paragraph","content":[{"text":"Anslutande systems signeringscertifikat (det certifikat som bifogas i t.ex. SAML metadata) för produktionsmiljö kan ställas ut av valfri utfärdare men nyckelhanteringen förutsätts följa de instruktioner och rekommendationer som anges i \"","type":"text"},{"text":"Instruktion, nyckelhantering för lagrade krypterade data","type":"text","marks":[{"type":"link","attrs":{"href":"/wiki/download/attachments/3501785129/InstruktionNyckelhanteringForLagradeDataKryptering_v1.0.pdf?version=1&modificationDate=1704807157721&cacheVersion=1&api=v2"}}]},{"text":"\".","type":"text"}]},{"type":"paragraph","content":[{"text":"Inera rekommenderar välrenommerade och robusta utfärdare med följsamhet mot principerna i ","type":"text"},{"text":"ISO-27002","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.iso27001security.com/html/27002.html"}}]},{"text":" (","type":"text"},{"text":"wikipedia","type":"text","marks":[{"type":"link","attrs":{"href":"https://en.wikipedia.org/wiki/ISO/IEC_27002"}}]},{"text":", riktlinjer till ISO-27001). Väljs \"SITHS e-id Function CA v1\" (utfärdare, SITHS e-id Root CA v2) kan mer information ges på ","type":"text"},{"text":"SITHS på inera.se","type":"text","marks":[{"type":"link","attrs":{"href":"https://www.inera.se/tjanster/identifieringstjanst-siths"}}]},{"text":". Se ","type":"text"},{"text":"SITHS CA repository","type":"text","marks":[{"type":"link","attrs":{"href":"https://inera.atlassian.net/wiki/spaces/IAM/pages/289082989/Rot-+och+utf+rdarcertifikat"}}]},{"text":" för de utfärdande certifikaten. Den anslutande e-tjänsten ansvarar för att hantera sina privata nycklar på ett säkert sätt. Osäker hantering av e-tjänstens privata nyckelmaterial kan leda till att e-tjänstens åtkomst till Underskriftstjänsten missbrukas .","type":"text"}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"CA-struktur för underskriftscertifikat","type":"text"}]},{"type":"paragraph","content":[{"text":"Underskriftstjänsten har en struktur för certifikatutfärdare (CA) som är uppdelad i tre separata c","type":"text"},{"text":"ertifikatkedjor","type":"text","marks":[{"type":"textColor","attrs":{"color":"#172b4d"}}]},{"text":" (CA-kedjor) enligt nedan:","type":"text"}]},{"type":"paragraph","content":[{"type":"inlineExtension","attrs":{"extensionType":"com.atlassian.confluence.migration","extensionKey":"inline-media-image","parameters":{"width":"384","id":"c23278a1-c9fa-4611-83a5-ce3ed0cea3ef","collection":"contentId-3501785129","height":"250"}}},{"text":" ","type":"text"}]},{"type":"paragraph","content":[{"text":"Vilken CA-kedja som den digitala signaturen skapas från bestäms utifrån vilken ","type":"text"},{"text":" tillitsnivå ","type":"text","marks":[{"type":"link","attrs":{"__confluenceMetadata":{"isRenamedTitle":true,"linkType":"page","contentTitle":"Tillitsnivå (LoA)"},"href":"https://inera.atlassian.net/wiki/pages/createpage.action?spaceKey=UTJ&title=Tillitsniv%C3%A5%20%28LoA%29&linkCreation=true&fromPageId=3501785129"}}]},{"text":"som IdP anger för den e-legitimation (användarcertifikat) som används vid autentiseringen.","type":"text"}]},{"type":"table","attrs":{"layout":"default","width":1800.0,"localId":"f052e7ce-f7ab-4aa7-91d4-9cd48a127138"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[247.0]},"content":[{"type":"paragraph","content":[{"text":"LoA","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[512.0]},"content":[{"type":"paragraph","content":[{"text":"CA","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[247.0]},"content":[{"type":"paragraph","content":[{"text":"LoA 2","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[512.0]},"content":[{"type":"paragraph","content":[{"text":"Low DSS","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[247.0]},"content":[{"type":"paragraph","content":[{"text":"LoA 3","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[512.0]},"content":[{"type":"paragraph","content":[{"text":"Substantial DSS","type":"text"}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[247.0]},"content":[{"type":"paragraph","content":[{"text":"LoA 4 ","type":"text","marks":[{"type":"textColor","attrs":{"color":"#a5adba"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[512.0]},"content":[{"type":"paragraph","content":[{"text":"High DSS","type":"text","marks":[{"type":"textColor","attrs":{"color":"#a5adba"}}]}]}]}]}]},{"type":"paragraph","content":[{"text":"Tillitsnivå hög (LoA 4) används i dagsläget inte i SITHS.","type":"text"}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"URL:er för nerladdning av CA-kedjor","type":"text"}]},{"type":"paragraph","content":[{"text":"Certifikatkedjorna finns tillgängliga enligt nedan. De kan behövas för att t.ex. lägga till lokal \"trust\" i t.ex Adobe reader:","type":"text"}]},{"type":"paragraph","content":[{"text":"Produktion: ","type":"text"},{"text":"https://crl.signatureservice.se/rootCA/","type":"text","marks":[{"type":"link","attrs":{"href":"https://crl.signatureservice.se/rootCA/"}}]}]},{"type":"paragraph","content":[{"text":"QA/AT: ","type":"text"},{"text":"https://crl.at.signatureservice.se/rootCA/","type":"text","marks":[{"type":"link","attrs":{"href":"https://crl.at.signatureservice.se/rootCA/"}}]}]},{"type":"paragraph","content":[{"text":"SIT/Test: ","type":"text"},{"text":"https://crl.st.signatureservice.se/rootCA/","type":"text","marks":[{"type":"link","attrs":{"href":"https://crl.st.signatureservice.se/rootCA/"}}]}]},{"type":"heading","attrs":{"level":2},"content":[{"text":"Underskriftstjänstens Miljöer","type":"text"}]},{"type":"paragraph","content":[{"text":"Underskriftstjänsten är driftsatt i tre publika miljöer kopplade mot motsvarande IdP-miljöer.","type":"text"}]},{"type":"table","attrs":{"layout":"default","width":1800.0,"localId":"3f388bcc-8c2f-4d2b-96a9-f86d296dc15c"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[194.0]},"content":[{"type":"paragraph","content":[{"text":"Miljö","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[339.0]},"content":[{"type":"paragraph","content":[{"text":"URL-suffix","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[225.0]},"content":[{"type":"paragraph","content":[{"text":"Kopplad IdP","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[194.0]},"content":[{"type":"paragraph","content":[{"text":"Systemtest","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[339.0]},"content":[{"type":"paragraph","content":[{"text":"*.","type":"text"},{"text":"st.signatureservice.se","type":"text","marks":[{"type":"link","attrs":{"href":"http://st.signatureservice.se"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[225.0]},"content":[{"type":"paragraph","content":[{"text":"idp.ineratest.org","type":"text","marks":[{"type":"link","attrs":{"href":"http://idp.ineratest.org"}}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[194.0]},"content":[{"type":"paragraph","content":[{"text":"Acceptanstest","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[339.0]},"content":[{"type":"paragraph","content":[{"text":"*.","type":"text"},{"text":"at.signatureservice.se","type":"text","marks":[{"type":"link","attrs":{"href":"http://at.signatureservice.se"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[225.0]},"content":[{"type":"paragraph","content":[{"text":"idp.ineraqa.org","type":"text","marks":[{"type":"link","attrs":{"href":"http://idp.ineraqa.org"}}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[194.0]},"content":[{"type":"paragraph","content":[{"text":"Produktion","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[339.0]},"content":[{"type":"paragraph","content":[{"text":"*.","type":"text"},{"text":"signatureservice.se","type":"text","marks":[{"type":"link","attrs":{"href":"http://signatureservice.se"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[225.0]},"content":[{"type":"paragraph","content":[{"text":"idp.inera.se","type":"text","marks":[{"type":"link","attrs":{"href":"http://idp.inera.se"}}]}]}]}]}]},{"type":"heading","attrs":{"level":3},"content":[{"text":"Logiska IdP:er per autentiseringsmetod","type":"text"}]},{"type":"table","attrs":{"layout":"full-width","width":1800.0,"localId":"12635f5a-efc8-4d11-8d06-009570928217"},"content":[{"type":"tableRow","content":[{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[200.0]},"content":[{"type":"paragraph","content":[{"text":"Autentiseringsmetod","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[309.0]},"content":[{"type":"paragraph","content":[{"text":"Produktion","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[330.0]},"content":[{"type":"paragraph","content":[{"text":"Acceptanstest","type":"text","marks":[{"type":"strong"}]}]}]},{"type":"tableHeader","attrs":{"colspan":1,"rowspan":1,"colwidth":[337.0]},"content":[{"type":"paragraph","content":[{"text":"Systemtest","type":"text","marks":[{"type":"strong"}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[200.0]},"content":[{"type":"paragraph","content":[{"text":"Ospecificerat (Användaren får välja)","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[309.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.inera.se:443/saml/sign","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.inera.se:443/saml/sign"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[330.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.ineraqa.org:443/saml/sign","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.ineraqa.org:443/saml/sign"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[337.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.ineratest.org:443/saml/sign","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.ineratest.org:443/saml/sign"}}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[200.0]},"content":[{"type":"paragraph","content":[{"text":"SITHS eID på annan enhet","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[309.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.inera.se:443/saml/sign/sithseid-other-device","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.inera.se:443/saml/sign/sithseid-other-device"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[330.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.ineraqa.org:443/saml/sign/sithseid-other-device","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.ineraqa.org:443/saml/sign/sithseid-other-device"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[337.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.ineratest.org:443/saml/sign/sithseid-other-device","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.ineratest.org:443/saml/sign/sithseid-other-device"}}]}]}]}]},{"type":"tableRow","content":[{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[200.0]},"content":[{"type":"paragraph","content":[{"text":"SITHS eID på samma enhet","type":"text"}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[309.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.inera.se:443/saml/sign/sithseid-same-device","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.inera.se:443/saml/sign/sithseid-same-device"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[330.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.ineraqa.org:443/saml/sign/sithseid-same-device","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.ineraqa.org:443/saml/sign/sithseid-same-device"}}]}]}]},{"type":"tableCell","attrs":{"colspan":1,"rowspan":1,"colwidth":[337.0]},"content":[{"type":"paragraph","content":[{"text":"https://idp.ineratest.org:443/saml/sign/sithseid-same-device","type":"text","marks":[{"type":"link","attrs":{"href":"https://idp.ineratest.org:443/saml/sign/sithseid-same-device"}}]}]}]}]}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]},{"type":"paragraph","content":[{"type":"hardBreak"}]}],"version":1}

Webbläsaren stöds inte