Authentication

Norwegian BankID

395 views June 14, 2017 September 21, 2017 1

<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<Response xmlns="urn:oasis:names:tc:SAML:1.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" IssueInstant="2017-09-21T12:23:18.954Z" MajorVersion="1" MinorVersion="1" Recipient="https://demo.signicat.com/id/saml/connect?selectedMethod=nbid" ResponseID="_0a1ea8667c0dd7cf129754dfc2527170">
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
            <ds:Reference URI="#_0a1ea8667c0dd7cf129754dfc2527170">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="code ds kind rw saml samlp typens #default xsd xsi"/>
                    </ds:Transform>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                <ds:DigestValue>WKjb52bGUyJMn/YRjD9ekvBHd7g=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>
            hVWtXaBO4hsJYIGvYaupDzuM5UYxh6vJ6/BhsY/yINcyLNlpnfTJT84P0JgNi0fQiKXEV81iAENv
            BzK2MGcs61l/PGGWHIhVuARITWT/v/Gc9twCFI5sYmqOkydePCg4B2Pha1t510iuDy98pHVb+4ve
            B7ytcAKm2LxuUyrNyuMwEw4vMfbrgFwrfttz5GC6E/mMPUPJaNH6KiNNn+xzQUSmtgvPZQcd6f2o
            Dm83Zz0Jqaj7CPCxueWHjMuoskc3UIOEKdQ5tVVrllAJraI1zycaI+Qfb7rrlnaXYgsYdB2ozPsG
            N96i1t4+LqPfR+mjXeG69xsPMEK3L0HnO8LrPg==
        </ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>
                    MIIDuzCCAqOgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBJMQswCQYDVQQGEwJOTzEUMBIGA1UEChML
                    U2lnbmljYXQgQVMxJDAiBgNVBAMTG1NpZ25pY2F0IEV4dGVybmFsIENBICgyMDQ4KTAeFw0xNzA3
                    MDUwOTM3MzNaFw0xOTA3MDUwOTM3MzNaMHgxCzAJBgNVBAYTAk5PMQ8wDQYDVQQIDAZOb3J3YXkx
                    EjAQBgNVBAcMCVRyb25kaGVpbTERMA8GA1UECgwIU2lnbmljYXQxETAPBgNVBAsMCFNpZ25pY2F0
                    MR4wHAYDVQQDDBV0ZXN0LnNpZ25pY2F0LmNvbS9zdGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
                    ggEKAoIBAQCyBY8hhOJIEw9flwQXOe+Kc1yDLeZBIgiiToip1wXW2f0vlFgr+UA0CMZHkrimekbu
                    uLRR2QDw9+4EWs5TASgdeKfUkVrgpvpY7CE0PxvSDhMTE9dRlWd/fFQrnPFsu6UES9Mg1c0jGDci
                    S3doqOT0OlPM2E4FP06Sdkq9wBp90KEZPoM6uZYFw2iOg4NpXAbmgvdRLLJV7GZhwTqrJDKSovNl
                    SzojhCM6HGGeS4HsNR+UDkSqELCfy0yFI4KGlOVhftHBjqE3xny0yiPjekY37hUMiAUsvIkOCxZe
                    sNw8EcEmQ0LBgsgzWiRmc3cY4c+XmgsbJKhSwYhPVZIbj5HnAgMBAAGjfzB9MAkGA1UdEwQCMAAw
                    CwYDVR0PBAQDAgXgMCMGCWCGSAGG+EIBDQQWFhRTaWduaWNhdCBDZXJ0aWZpY2F0ZTAdBgNVHQ4E
                    FgQUYMQXySEJc9Q/zGqvkuPUQ6nySQAwHwYDVR0jBBgwFoAUstl+DZ605NwX3br661U41SHRS/Yw
                    DQYJKoZIhvcNAQELBQADggEBAIW91gTlnn3EduMtTX4JiwLEBbs4z57Tgf3Gp01VzV1DemK0BNuT
                    KlVl+jMXmJJAKwuyizoLEqTkOva1z9o3ozUxhwqIVdtu5N5XaXjqgMm3wUDQjD5199nopI8SeWf7
                    C17s70wNF8O2h2hyn/FSi8mn28Gm4Jqi/U+X/gGKEP3bOGqBrptsSqAi6U8yvdN7PNGqSSGKWeG+
                    7yX1u4BPW8mWy93Hi+cuEe0oIdOVrEbUKoFVy4bcE69sG6RxTmaELjCy0OmoW16UoHJwIDyJWXx9
                    qkS5sFcT/jb3kuSnZ17ZC99EgScO8NKuKrJgHei9k13xSwsUAmnI7mInW4CfJ0c=
                </ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
    <Status>
        <StatusCode Value="samlp:Success"/>
    </Status>
    <Assertion xmlns="urn:oasis:names:tc:SAML:1.0:assertion" AssertionID="_c849240d11e0ecac580a7a16cc9c3513" IssueInstant="2017-09-21T12:23:18.954Z" Issuer="test.signicat.com/std" MajorVersion="1" MinorVersion="1">
        <Conditions NotBefore="2017-09-21T12:23:18.954Z" NotOnOrAfter="2017-09-21T12:23:48.954Z"/>
        <AuthenticationStatement AuthenticationInstant="2017-09-21T12:23:18.801Z" AuthenticationMethod="urn:ksi:names:SAML:2.0:ac:BankID-NO">
            <Subject>
                <NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName">CN=Weasley\, Ginny,O=BankID - TestBank1,C=NO,SERIALNUMBER=9578-6000-4-877</NameIdentifier>
                <SubjectConfirmation>
                    <ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer</ConfirmationMethod>
                </SubjectConfirmation>
            </Subject>
        </AuthenticationStatement>
        <AttributeStatement>
            <Subject>
                <NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName">CN=Weasley\, Ginny,O=BankID - TestBank1,C=NO,SERIALNUMBER=9578-6000-4-877</NameIdentifier>
                <SubjectConfirmation>
                    <ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer</ConfirmationMethod>
                </SubjectConfirmation>
            </Subject>
            <Attribute AttributeName="service-name" AttributeNamespace="signicat">
                <AttributeValue>demo.signicat.com</AttributeValue>
            </Attribute>
            <Attribute AttributeName="method-name" AttributeNamespace="signicat">
                <AttributeValue>nbid</AttributeValue>
            </Attribute>
            <Attribute AttributeName="plain-name" AttributeNamespace="signicat">
                <AttributeValue>Weasley, Ginny</AttributeValue>
            </Attribute>
            <Attribute AttributeName="security-level" AttributeNamespace="signicat">
                <AttributeValue>3</AttributeValue>
            </Attribute>
            <Attribute AttributeName="unique-id" AttributeNamespace="signicat">
                <AttributeValue>9578-6000-4-877</AttributeValue>
            </Attribute>
            <Attribute AttributeName="national-id" AttributeNamespace="signicat">
                <AttributeValue>10109001290</AttributeValue>
            </Attribute>
            <Attribute AttributeName="date-of-birth" AttributeNamespace="signicat">
                <AttributeValue>1990-10-10</AttributeValue>
            </Attribute>
            <Attribute AttributeName="action" AttributeNamespace="bankid">
                <AttributeValue>auth</AttributeValue>
            </Attribute>
            <Attribute AttributeName="bankid-no" AttributeNamespace="unique-id">
                <AttributeValue>9578-6000-4-877</AttributeValue>
            </Attribute>
            <Attribute AttributeName="no.fnr" AttributeNamespace="national-id">
                <AttributeValue>10109001290</AttributeValue>
            </Attribute>
            <Attribute AttributeName="firstname" AttributeNamespace="bankid.certificate">
                <AttributeValue>Ginny</AttributeValue>
            </Attribute>
            <Attribute AttributeName="lastname" AttributeNamespace="bankid.certificate">
                <AttributeValue>Weasley</AttributeValue>
            </Attribute>
            <Attribute AttributeName="issuer-dn" AttributeNamespace="bankid.certificate">
                <AttributeValue>CN=BankID TestBank1 Bank CA 2,OU=123456789,O=TestBank1 AS,C=NO</AttributeValue>
            </Attribute>
            <Attribute AttributeName="subject-dn" AttributeNamespace="bankid.certificate">
                <AttributeValue>CN=Weasley\, Ginny,O=BankID - TestBank1,C=NO,SERIALNUMBER=9578-6000-4-877</AttributeValue>
            </Attribute>
            <Attribute AttributeName="plain-name" AttributeNamespace="bankid.certificate">
                <AttributeValue>Weasley, Ginny</AttributeValue>
            </Attribute>
            <Attribute AttributeName="serialnumber" AttributeNamespace="bankid.certificate">
                <AttributeValue>685521</AttributeValue>
            </Attribute>
            <Attribute AttributeName="unique-id" AttributeNamespace="bankid.certificate">
                <AttributeValue>9578-6000-4-877</AttributeValue>
            </Attribute>
            <Attribute AttributeName="valid-from" AttributeNamespace="bankid.certificate">
                <AttributeValue>2017-06-13</AttributeValue>
            </Attribute>
            <Attribute AttributeName="valid-to" AttributeNamespace="bankid.certificate">
                <AttributeValue>2019-06-13</AttributeValue>
            </Attribute>
            <Attribute AttributeName="date-of-birth" AttributeNamespace="bankid.certificate">
                <AttributeValue>1990-10-10</AttributeValue>
            </Attribute>
            <Attribute AttributeName="version-number" AttributeNamespace="bankid.certificate">
                <AttributeValue>3</AttributeValue>
            </Attribute>
            <Attribute AttributeName="key-algorithm" AttributeNamespace="bankid.certificate">
                <AttributeValue>RSA</AttributeValue>
            </Attribute>
            <Attribute AttributeName="key-size" AttributeNamespace="bankid.certificate">
                <AttributeValue>2048</AttributeValue>
            </Attribute>
            <Attribute AttributeName="policy-oid" AttributeNamespace="bankid.certificate">
                <AttributeValue>2.16.578.1.16.1.12.1.1</AttributeValue>
            </Attribute>
            <Attribute AttributeName="originator" AttributeNamespace="bankid.certificate">
                <AttributeValue>9980</AttributeValue>
            </Attribute>
            <Attribute AttributeName="bank" AttributeNamespace="bankid.certificate">
                <AttributeValue>BINAS</AttributeValue>
            </Attribute>
            <Attribute AttributeName="qualified" AttributeNamespace="bankid.certificate">
                <AttributeValue>true</AttributeValue>
            </Attribute>
            <Attribute AttributeName="monetary-limit-amount" AttributeNamespace="bankid.certificate">
                <AttributeValue>100000</AttributeValue>
            </Attribute>
            <Attribute AttributeName="monetary-limit-currency" AttributeNamespace="bankid.certificate">
                <AttributeValue>NOK</AttributeValue>
            </Attribute>
            <Attribute AttributeName="fnr" AttributeNamespace="bankid.va">
                <AttributeValue>10109001290</AttributeValue>
            </Attribute>
        </AttributeStatement>
    </Assertion>
</Response>

Was this helpful?