Projet

Général

Profil

Télécharger (7,31 ko)

Bug #25640 » authn-context-bug.xml

Paul Meurer, 12 août 2018 15:01

 
1 
<?xml version="1.0"?>
2 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="CORTO018d2df00933588f0fab864f042051a64e080ec6" Version="2.0" IssueInstant="2018-08-09T10:00:16Z" Destination="https://clarino.uib.no/feide/assertion-consumer" InResponseTo="_24232D76C3F3CB03044AA639456E532F">
3 
  <saml:Issuer>https://namidp.services.uu.nl/nidp/saml2/metadata</saml:Issuer>
4 
  <samlp:Status>
5 
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
6 
  </samlp:Status>
7 
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="CORTOe4306a507599620c4a2fc129821e8d8cd2526cc0" Version="2.0" IssueInstant="2018-08-09T10:00:16Z">
8 
    <saml:Issuer>https://namidp.services.uu.nl/nidp/saml2/metadata</saml:Issuer>
9 
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
10 
      <ds:SignedInfo>
11 
        <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
12 
        <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
13 
        <ds:Reference URI="#CORTOe4306a507599620c4a2fc129821e8d8cd2526cc0">
14 
          <ds:Transforms>
15 
            <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
16 
            <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
17 
          </ds:Transforms>
18 
          <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
19 
          <ds:DigestValue>NTUI4LMUX4B+QFSnJXyhjK1U6UUFTor7A2K06TH4TBg=</ds:DigestValue>
20 
        </ds:Reference>
21 
      </ds:SignedInfo>
22 
      <ds:SignatureValue>Cc5olFclTwvTH2Gudr7cw9Fjw0tGfggzJEmFHJPY1epJEqV++MYksf+Q/94tdQUPV3MnL1Jrc7lpWvRqAKe9ZK5bfWATEoJBVFUtfQ6Eh5Jf1KexL1gFuaZamlIe0rPC5V4iFai2s0UbNdKRb1Ja1JWoeZzIhMXuK6ykn+FeqIttcM3QIY/Ca4gpDwo4U8lnmJFZZJnsg07lqD+DvxxwACLeBY8tksMNbgtE8sTubmwFBJ/5/DM8bTp2JJLMxXw57cfvbBBTizdUFYTq7jvAaJiArDmM5Ra2rggeMDvW9fNOoTU8VV7a1wltLUQAFbfM2VN3OLsLTSibjW+uz2/mAw==</ds:SignatureValue>
23 
      <ds:KeyInfo>
24 
        <ds:X509Data>
25 
          <ds:X509Certificate>MIID3zCCAsegAwIBAgIJAMVC9xn1ZfsuMA0GCSqGSIb3DQEBCwUAMIGFMQswCQYDVQQGEwJOTDEQMA4GA1UECAwHVXRyZWNodDEQMA4GA1UEBwwHVXRyZWNodDEVMBMGA1UECgwMU1VSRm5ldCBCLlYuMRMwEQYDVQQLDApTVVJGY29uZXh0MSYwJAYDVQQDDB1lbmdpbmUuc3VyZmNvbmV4dC5ubCAyMDE0MDUwNTAeFw0xNDA1MDUxNDIyMzVaFw0xOTA1MDUxNDIyMzVaMIGFMQswCQYDVQQGEwJOTDEQMA4GA1UECAwHVXRyZWNodDEQMA4GA1UEBwwHVXRyZWNodDEVMBMGA1UECgwMU1VSRm5ldCBCLlYuMRMwEQYDVQQLDApTVVJGY29uZXh0MSYwJAYDVQQDDB1lbmdpbmUuc3VyZmNvbmV4dC5ubCAyMDE0MDUwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKthMDbB0jKHefPzmRu9t2h7iLP4wAXr42bHpjzTEk6gttHFb4l/hFiz1YBI88TjiH6hVjnozo/YHA2c51us+Y7g0XoS7653lbUN/EHzvDMuyis4Xi2Ijf1A/OUQfH1iFUWttIgtWK9+fatXoGUS6tirQvrzVh6ZstEp1xbpo1SF6UoVl+fh7tM81qz+Crr/Kroan0UjpZOFTwxPoK6fdLgMAieKSCRmBGpbJHbQ2xxbdykBBrBbdfzIX4CDepfjE9h/40ldw5jRn3e392jrS6htk23N9BWWrpBT5QCk0kH3h/6F1Dm6TkyG9CDtt73/anuRkvXbeygI4wml9bL3rE8CAwEAAaNQME4wHQYDVR0OBBYEFD+Ac7akFxaMhBQAjVfvgGfY8hNKMB8GA1UdIwQYMBaAFD+Ac7akFxaMhBQAjVfvgGfY8hNKMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAC8L9D67CxIhGo5aGVu63WqRHBNOdo/FAGI7LURDFeRmG5nRw/VXzJLGJksh4FSkx7aPrxNWF1uFiDZ80EuYQuIv7bDLblK31ZEbdg1R9LgiZCdYSr464I7yXQY9o6FiNtSKZkQO8EsscJPPy/Zp4uHAnADWACkOUHiCbcKiUUFu66dX0Wr/v53Gekz487GgVRs8HEeT9MU1reBKRgdENR8PNg4rbQfLc3YQKLWK7yWnn/RenjDpuCiePj8N8/80tGgrNgK/6fzM3zI18sSywnXLswxqDb/J+jgVxnQ6MrsTf1urM8MnfcxG/82oHIwfMh/sXPCZpo+DTLkhQxctJ3M=</ds:X509Certificate>
26 
        </ds:X509Data>
27 
      </ds:KeyInfo>
28 
    </ds:Signature>
29 
    <saml:Subject>
30 
      <saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">5483f2a02edaa2d4457b5aa46655b4eca4b7e798</saml:NameID>
31 
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
32 
        <saml:SubjectConfirmationData NotOnOrAfter="2018-08-09T10:05:16Z" Recipient="https://clarino.uib.no/feide/assertion-consumer" InResponseTo="_24232D76C3F3CB03044AA639456E532F"/>
33 
      </saml:SubjectConfirmation>
34 
    </saml:Subject>
35 
    <saml:Conditions NotBefore="2018-08-09T10:00:15Z" NotOnOrAfter="2018-08-09T10:05:16Z">
36 
      <saml:AudienceRestriction>
37 
        <saml:Audience>https://clarino.uib.no/</saml:Audience>
38 
      </saml:AudienceRestriction>
39 
    </saml:Conditions>
40 
    <saml:AuthnStatement AuthnInstant="2018-08-09T09:37:26Z" SessionIndex="idhQDMGUq4yp8CUKimuJ3NN5Zl4gU">
41 
      <saml:AuthnContext>
42 
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml:AuthnContextClassRef>
43 
        <saml:AuthnContextDeclRef>http://surfconext.uu.nl</saml:AuthnContextDeclRef>
44 
        <saml:AuthenticatingAuthority>https://namidp.services.uu.nl/nidp/saml2/metadata</saml:AuthenticatingAuthority>
45 
      </saml:AuthnContext>
46 
    </saml:AuthnStatement>
47 
    <saml:AttributeStatement>
48 
      <saml:Attribute Name="urn:mace:dir:attribute-def:eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
49 
        <saml:AttributeValue xsi:type="xs:string">employee</saml:AttributeValue>
50 
      </saml:Attribute>
51 
      <saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
52 
        <saml:AttributeValue xsi:type="xs:string">employee</saml:AttributeValue>
53 
      </saml:Attribute>
54 
      <saml:Attribute Name="urn:mace:dir:attribute-def:cn" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
55 
        <saml:AttributeValue xsi:type="xs:string">A.R. Ara&#xFA;jo Moreira</saml:AttributeValue>
56 
      </saml:Attribute>
57 
      <saml:Attribute Name="urn:oid:2.5.4.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
58 
        <saml:AttributeValue xsi:type="xs:string">A.R. Ara&#xFA;jo Moreira</saml:AttributeValue>
59 
      </saml:Attribute>
60 
      <saml:Attribute Name="urn:mace:dir:attribute-def:mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
61 
        <saml:AttributeValue xsi:type="xs:string">a.r.araujomoreira@uu.nl</saml:AttributeValue>
62 
      </saml:Attribute>
63 
      <saml:Attribute Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
64 
        <saml:AttributeValue xsi:type="xs:string">a.r.araujomoreira@uu.nl</saml:AttributeValue>
65 
      </saml:Attribute>
66 
      <saml:Attribute Name="urn:mace:dir:attribute-def:eduPersonPrincipalName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
67 
        <saml:AttributeValue xsi:type="xs:string">Arauj002@soliscom.uu.nl</saml:AttributeValue>
68 
      </saml:Attribute>
69 
      <saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
70 
        <saml:AttributeValue xsi:type="xs:string">Arauj002@soliscom.uu.nl</saml:AttributeValue>
71 
      </saml:Attribute>
72 
      <saml:Attribute Name="urn:mace:dir:attribute-def:eduPersonTargetedID" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
73 
        <saml:AttributeValue>
74 
          <saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">5483f2a02edaa2d4457b5aa46655b4eca4b7e798</saml:NameID>
75 
        </saml:AttributeValue>
76 
      </saml:Attribute>
77 
      <saml:Attribute Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
78 
        <saml:AttributeValue>
79 
          <saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">5483f2a02edaa2d4457b5aa46655b4eca4b7e798</saml:NameID>
80 
        </saml:AttributeValue>
81 
      </saml:Attribute>
82 
    </saml:AttributeStatement>
83 
  </saml:Assertion>
84 
</samlp:Response>