SAML response example

1. <?xml version="1.0" encoding="UTF-8"?>
2. <Response Destination="https://example.com/home/" ID="_44bf7ba9-9337-4ae1-8e70-a737dcb585cc" IssueInstant="2014-01-18T11:10:44.9568516Z" Version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
3.     <Issuer xmlns="urn:oasis:names:tc:SAML:2.0:assertion">Islyklar</Issuer>
4.     <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
5.         <SignedInfo>
6.             <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
7.             <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
8.             <Reference URI="#_44bf7ba9-9337-4ae1-8e70-a737dcb585cc">
9.                 <Transforms>
10.                     <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
11.                     <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
12.                 </Transforms>
13.                 <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
14.                 <DigestValue>digestvalue(base64encoded)</DigestValue>
15.             </Reference>
16.         </SignedInfo>
17.         <SignatureValue>signaturevalue(base64encoded)</SignatureValue>
18.         <KeyInfo>
19.             <X509Data>
20.                 <X509Certificate>certvalue(base64encoded)</X509Certificate>
21.             </X509Data>
22.         </KeyInfo>
23.     </Signature>
24.     <Status>
25.         <StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
26.     </Status>
27.     <Assertion ID="_804d90d1-8376-49c6-b604-d11c13be4207" IssueInstant="2014-01-18T11:10:44.9568516Z" Version="2.0" xmlns="urn:oasis:names:tc:SAML:2.0:assertion">
28.         <Issuer>Islyklar</Issuer>
29.         <Subject>
30.             <NameID NameQualifier="island.is"/>
31.             <SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
32.                 <SubjectConfirmationData Address="123.456.789.123" NotOnOrAfter="2014-01-18T11:15:44.9568516Z" Recipient="https://example.com/home/"/>
33.             </SubjectConfirmation>
34.         </Subject>
35.         <Conditions NotBefore="2014-01-18T11:10:44.9568516Z" NotOnOrAfter="2014-01-18T11:15:44.9568516Z">
36.             <AudienceRestriction>
37.                 <Audience>example.com</Audience>
38.             </AudienceRestriction>
39.         </Conditions>
40.         <AuthnStatement AuthnInstant="2014-01-18T11:10:44.9568516Z">
41.             <SubjectLocality Address="789.456.123.789"/>
42.             <AuthnContext>
43.                 <AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</AuthnContextClassRef>
44.             </AuthnContext>
45.         </AuthnStatement>
46.         <AttributeStatement>
47.             <Attribute FriendlyName="Kennitala" Name="UserSSN" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
48.                 <AttributeValue xsi:type="xsd:string">1234567890</AttributeValue>
49.             </Attribute>
50.             <Attribute FriendlyName="Nafn" Name="Name" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
51.                 <AttributeValue xsi:type="xsd:string">John Johnson</AttributeValue>
52.             </Attribute>
53.             <Attribute FriendlyName="IPTala" Name="IPAddress" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
54.                 <AttributeValue xsi:type="xsd:string">123.456.789.123</AttributeValue>
55.             </Attribute>
56.         </AttributeStatement>
57.     </Assertion>
58. </Response>