Note: SAML 1.1 will be deprecated soon. If you are working on a new integration, we strongly recommend that you use OIDC instead. |
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<Response xmlns="urn:oasis:names:tc:SAML:1.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" IssueInstant="2017-09-21T12:23:18.954Z" MajorVersion="1" MinorVersion="1" Recipient="https://demo.signicat.com/id/saml/connect?selectedMethod=nbid" ResponseID="_0a1ea8667c0dd7cf129754dfc2527170">
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:SignedInfo>
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<ds:Reference URI="#_0a1ea8667c0dd7cf129754dfc2527170">
<ds:Transforms>
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="code ds kind rw saml samlp typens #default xsd xsi"/>
</ds:Transform>
</ds:Transforms>
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<ds:DigestValue>WKjb52bGUyJMn/YRjD9ekvBHd7g=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>
hVWtXaBO4hsJYIGvYaupDzuM5UYxh6vJ6/BhsY/yINcyLNlpnfTJT84P0JgNi0fQiKXEV81iAENv
BzK2MGcs61l/PGGWHIhVuARITWT/v/Gc9twCFI5sYmqOkydePCg4B2Pha1t510iuDy98pHVb+4ve
B7ytcAKm2LxuUyrNyuMwEw4vMfbrgFwrfttz5GC6E/mMPUPJaNH6KiNNn+xzQUSmtgvPZQcd6f2o
Dm83Zz0Jqaj7CPCxueWHjMuoskc3UIOEKdQ5tVVrllAJraI1zycaI+Qfb7rrlnaXYgsYdB2ozPsG
N96i1t4+LqPfR+mjXeG69xsPMEK3L0HnO8LrPg==
</ds:SignatureValue>
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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=
</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</ds:Signature>
<Status>
<StatusCode Value="samlp:Success"/>
</Status>
<Assertion xmlns="urn:oasis:names:tc:SAML:1.0:assertion" AssertionID="_c849240d11e0ecac580a7a16cc9c3513" IssueInstant="2017-09-21T12:23:18.954Z" Issuer="test.signicat.com/std" MajorVersion="1" MinorVersion="1">
<Conditions NotBefore="2017-09-21T12:23:18.954Z" NotOnOrAfter="2017-09-21T12:23:48.954Z"/>
<AuthenticationStatement AuthenticationInstant="2017-09-21T12:23:18.801Z" AuthenticationMethod="urn:ksi:names:SAML:2.0:ac:BankID-NO">
<Subject>
<NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName">CN=Weasley\, Ginny,O=BankID - TestBank1,C=NO,SERIALNUMBER=9578-6000-4-877</NameIdentifier>
<SubjectConfirmation>
<ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer</ConfirmationMethod>
</SubjectConfirmation>
</Subject>
</AuthenticationStatement>
<AttributeStatement>
<Subject>
<NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName">CN=Weasley\, Ginny,O=BankID - TestBank1,C=NO,SERIALNUMBER=9578-6000-4-877</NameIdentifier>
<SubjectConfirmation>
<ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer</ConfirmationMethod>
</SubjectConfirmation>
</Subject>
<Attribute AttributeName="service-name" AttributeNamespace="signicat">
<AttributeValue>demo.signicat.com</AttributeValue>
</Attribute>
<Attribute AttributeName="method-name" AttributeNamespace="signicat">
<AttributeValue>nbid</AttributeValue>
</Attribute>
<Attribute AttributeName="plain-name" AttributeNamespace="signicat">
<AttributeValue>Weasley, Ginny</AttributeValue>
</Attribute>
<Attribute AttributeName="security-level" AttributeNamespace="signicat">
<AttributeValue>3</AttributeValue>
</Attribute>
<Attribute AttributeName="unique-id" AttributeNamespace="signicat">
<AttributeValue>9578-6000-4-877</AttributeValue>
</Attribute>
<Attribute AttributeName="national-id" AttributeNamespace="signicat">
<AttributeValue>10109001290</AttributeValue>
</Attribute>
<Attribute AttributeName="date-of-birth" AttributeNamespace="signicat">
<AttributeValue>1990-10-10</AttributeValue>
</Attribute>
<Attribute AttributeName="action" AttributeNamespace="bankid">
<AttributeValue>auth</AttributeValue>
</Attribute>
<Attribute AttributeName="bankid-no" AttributeNamespace="unique-id">
<AttributeValue>9578-6000-4-877</AttributeValue>
</Attribute>
<Attribute AttributeName="no.fnr" AttributeNamespace="national-id">
<AttributeValue>10109001290</AttributeValue>
</Attribute>
<Attribute AttributeName="firstname" AttributeNamespace="bankid.certificate">
<AttributeValue>Ginny</AttributeValue>
</Attribute>
<Attribute AttributeName="lastname" AttributeNamespace="bankid.certificate">
<AttributeValue>Weasley</AttributeValue>
</Attribute>
<Attribute AttributeName="issuer-dn" AttributeNamespace="bankid.certificate">
<AttributeValue>CN=BankID TestBank1 Bank CA 2,OU=123456789,O=TestBank1 AS,C=NO</AttributeValue>
</Attribute>
<Attribute AttributeName="subject-dn" AttributeNamespace="bankid.certificate">
<AttributeValue>CN=Weasley\, Ginny,O=BankID - TestBank1,C=NO,SERIALNUMBER=9578-6000-4-877</AttributeValue>
</Attribute>
<Attribute AttributeName="plain-name" AttributeNamespace="bankid.certificate">
<AttributeValue>Weasley, Ginny</AttributeValue>
</Attribute>
<Attribute AttributeName="serialnumber" AttributeNamespace="bankid.certificate">
<AttributeValue>685521</AttributeValue>
</Attribute>
<Attribute AttributeName="unique-id" AttributeNamespace="bankid.certificate">
<AttributeValue>9578-6000-4-877</AttributeValue>
</Attribute>
<Attribute AttributeName="valid-from" AttributeNamespace="bankid.certificate">
<AttributeValue>2017-06-13</AttributeValue>
</Attribute>
<Attribute AttributeName="valid-to" AttributeNamespace="bankid.certificate">
<AttributeValue>2019-06-13</AttributeValue>
</Attribute>
<Attribute AttributeName="date-of-birth" AttributeNamespace="bankid.certificate">
<AttributeValue>1990-10-10</AttributeValue>
</Attribute>
<Attribute AttributeName="version-number" AttributeNamespace="bankid.certificate">
<AttributeValue>3</AttributeValue>
</Attribute>
<Attribute AttributeName="key-algorithm" AttributeNamespace="bankid.certificate">
<AttributeValue>RSA</AttributeValue>
</Attribute>
<Attribute AttributeName="key-size" AttributeNamespace="bankid.certificate">
<AttributeValue>2048</AttributeValue>
</Attribute>
<Attribute AttributeName="policy-oid" AttributeNamespace="bankid.certificate">
<AttributeValue>2.16.578.1.16.1.12.1.1</AttributeValue>
</Attribute>
<Attribute AttributeName="originator" AttributeNamespace="bankid.certificate">
<AttributeValue>9980</AttributeValue>
</Attribute>
<Attribute AttributeName="bank" AttributeNamespace="bankid.certificate">
<AttributeValue>BINAS</AttributeValue>
</Attribute>
<Attribute AttributeName="qualified" AttributeNamespace="bankid.certificate">
<AttributeValue>true</AttributeValue>
</Attribute>
<Attribute AttributeName="monetary-limit-amount" AttributeNamespace="bankid.certificate">
<AttributeValue>100000</AttributeValue>
</Attribute>
<Attribute AttributeName="monetary-limit-currency" AttributeNamespace="bankid.certificate">
<AttributeValue>NOK</AttributeValue>
</Attribute>
<Attribute AttributeName="fnr" AttributeNamespace="bankid.va">
<AttributeValue>10109001290</AttributeValue>
</Attribute>
</AttributeStatement>
</Assertion>
</Response>