Authentication

Smart-ID

109 views December 6, 2017 0

<Response xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol"
          xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
          xmlns="urn:oasis:names:tc:SAML:1.0:protocol" IssueInstant="2017-12-05T08:12:57.083Z" MajorVersion="1"
          MinorVersion="1" Recipient="https://id01.signicat.net:4443/james/response"
          ResponseID="_644ad10ea164023061b14847ed465304">
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"></ds:CanonicalizationMethod>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"></ds:SignatureMethod>
            <ds:Reference URI="#_644ad10ea164023061b14847ed465304">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"></ds:Transform>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"
                                                PrefixList="code ds kind rw saml samlp typens #default xsd xsi"></ec:InclusiveNamespaces>
                    </ds:Transform>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"></ds:DigestMethod>
                <ds:DigestValue>vq6lo/6UXvGUxXeXhRykCHNA1w8=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>E3qQPgoUZhK9Cq7fvllwhMu521mPe2ez44V9IXmNXtWzgLmZUqici3NBD6Xc6fN9+awKQkjmDOmD
            Z5m0E6Ht1/g6MCnEAzXrl5HQv1FbZtrcy5B8bvmQGVENgxeXe2gZfZA+1s0Plymucpv7u8Kif9oy
            +elB/2wtv7OjgaVei23X5h6Knp/tqhSh8UHw3FZbloZZMYinfZiaWyNXVh/XQ+vrtAA330JRg2K0
            vRFc6aFv/+mPWUjxZO5GUoSNAQ29bnDJLuODPcVG/ZmDR9aEopWAYmXm46LGoMLd+rXilBpxbxTZ
            iqr9q+vENCpSolOkpSqPE1nUgsYgf8cQal0PrQ==
        </ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>MIIDsTCCApmgAwIBAgIBFTANBgkqhkiG9w0BAQsFADBJMQswCQYDVQQGEwJOTzEUMBIGA1UEChML
                    U2lnbmljYXQgQVMxJDAiBgNVBAMTG1NpZ25pY2F0IEV4dGVybmFsIENBICgyMDQ4KTAeFw0xNzA5
                    MjUxMDEzNDBaFw0xOTA5MjUxMDEzNDBaMG4xCzAJBgNVBAYTAk5PMQ8wDQYDVQQIDAZOb3J3YXkx
                    EjAQBgNVBAcMCVRyb25kaGVpbTERMA8GA1UECgwIU2lnbmljYXQxETAPBgNVBAsMCFNpZ25pY2F0
                    MRQwEgYDVQQDDAtEZXZlbG9wbWVudDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANmg
                    RCDuwdwxyQ6nGtnaE2qC1ZWkLOj1M+YA+ojpbkdbolcHDCcxosdT8s6lkLlBRa+0XnNhQ4PVKOdi
                    vhqDQxKwlaXN+g8tHvTGPGWA2UVcweiwESTVQ+fhUhGVYcV11+P+U887h8EwER3RK1ziZmLKDCKT
                    6blzCy1gFD4da3a9CbZvYWCm7nvlIvC/4CrlqDhpQrSdsN2lxnhU4AI+awWAz3Awmug/gk8V+EoX
                    NbntHrKeMDVA/iBHxwyFfYGAz5JxYPO2JzgdPPic0esJ1/LinMjQf5ilvdmE7XlV0mq9eUMwZ2Ni
                    daUmtdeWw37M9gCvAVBwUVX+tbpGmzrorF8CAwEAAaN/MH0wCQYDVR0TBAIwADALBgNVHQ8EBAMC
                    BeAwIwYJYIZIAYb4QgENBBYWFFNpZ25pY2F0IENlcnRpZmljYXRlMB0GA1UdDgQWBBQo2Kh4ZtP1
                    Qd9gFLwBJcxXvr3ScTAfBgNVHSMEGDAWgBSy2X4NnrTk3BfduvrrVTjVIdFL9jANBgkqhkiG9w0B
                    AQsFAAOCAQEAGgocxS64OW4jQpylvxa+sPkxu+I82DxjaVk1rGlSNYL4Kar0R3gUpSgC703lB5z/
                    HN9hciTzlqOKVY9Qx1kVvyQwL0JQwzLWh6uTuFvYDcxJNo8S3JAENBRdk3GJqLFHG/G32QMZEBVv
                    U6cM8OOnPdHxkvacRpUqyzCES/0ttL9KodWIjZW166vu8JSukC3qcn+PJ46pJkFRAnFhQCMKU0sJ
                    481cx8mwiB5oAVFfTQyKxHZQ+aNdONaYfjHh6CRD6r3neh8ABZM5+1cUjPULdDTb7S5Q0QGgdC9t
                    pFlKAUrUblnJe3520InhvEEgIhzcGiW/YDDz79pUzwm4UQemMA==
                </ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
    <Status>
        <StatusCode Value="samlp:Success"></StatusCode>
    </Status>
    <Assertion xmlns="urn:oasis:names:tc:SAML:1.0:assertion" AssertionID="_d4c82fe03c19a26fd1dc624ae0e90333"
               IssueInstant="2017-12-05T08:12:57.083Z" Issuer="https://qa.loc/std" MajorVersion="1" MinorVersion="1">
        <Conditions NotBefore="2017-12-05T08:12:57.083Z" NotOnOrAfter="2017-12-05T08:13:27.083Z"></Conditions>
        <AttributeStatement>
            <Subject>
                <NameIdentifier Format="urn:kantega:ksi:3.0:nameid-format:etsi-pno">PNOEE-10101010005</NameIdentifier>
                <SubjectConfirmation>
                    <ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer</ConfirmationMethod>
                </SubjectConfirmation>
            </Subject>
            <Attribute AttributeName="friendly-name" AttributeNamespace="signicat">
                <AttributeValue>Smart ID</AttributeValue>
            </Attribute>
            <Attribute AttributeName="service-name" AttributeNamespace="signicat">
                <AttributeValue>acme</AttributeValue>
            </Attribute>
            <Attribute AttributeName="method-name" AttributeNamespace="signicat">
                <AttributeValue>smart-id</AttributeValue>
            </Attribute>
            <Attribute AttributeName="plain-name" AttributeNamespace="signicat">
                <AttributeValue>DEMO SMART-ID</AttributeValue>
            </Attribute>
            <Attribute AttributeName="first-name" AttributeNamespace="signicat">
                <AttributeValue>DEMO</AttributeValue>
            </Attribute>
            <Attribute AttributeName="last-name" AttributeNamespace="signicat">
                <AttributeValue>SMART-ID</AttributeValue>
            </Attribute>
            <Attribute AttributeName="security-level" AttributeNamespace="signicat">
                <AttributeValue>3</AttributeValue>
            </Attribute>
            <Attribute AttributeName="unique-id" AttributeNamespace="signicat">
                <AttributeValue>PNOEE-10101010005</AttributeValue>
            </Attribute>
            <Attribute AttributeName="national-id" AttributeNamespace="signicat">
                <AttributeValue>PNOEE-10101010005</AttributeValue>
            </Attribute>
            <Attribute AttributeName="identity-code" AttributeNamespace="smart-id">
                <AttributeValue>10101010005</AttributeValue>
            </Attribute>
            <Attribute AttributeName="nationality" AttributeNamespace="signicat">
                <AttributeValue>ee</AttributeValue>
            </Attribute>
            <Attribute AttributeName="ma" AttributeNamespace="sig">
                <AttributeValue>foobar</AttributeValue>
            </Attribute>
        </AttributeStatement>
    </Assertion>
</Response>

Was this helpful?