github.com/versent/saml2aws@v2.17.0+incompatible/testdata/assertion_pingfed.xml (about) 1 <Response Version="2.0" ID="XXX" IssueInstant="2016-09-23T23:29:25.308Z" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"> 2 <Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"> 3 id:example:com:au:saml2 4 </Issuer> 5 <Status> 6 <StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /> 7 </Status> 8 <Assertion ID="n1yLpXwUNeNB6UuM0f5qOrRGxKX" IssueInstant="2016-09-23T23:29:25.315Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"> 9 <Issuer> 10 id:example:com:au:saml2 11 </Issuer> 12 <Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> 13 <SignedInfo> 14 <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /> 15 <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" /> 16 <Reference URI="#n1yLpXwUNeNB6UuM0f5qOrRGxKX"> 17 <Transforms> 18 <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /> 19 <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /> 20 </Transforms> 21 <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" /> 22 <DigestValue> 23 xxx 24 </DigestValue> 25 </Reference> 26 </SignedInfo> 27 <SignatureValue> 28 xxx 29 </SignatureValue> 30 <KeyInfo> 31 <X509Data> 32 <X509Certificate> 33 xxx 34 </X509Certificate> 35 </X509Data> 36 </KeyInfo> 37 </Signature> 38 <Subject> 39 <NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified"> 40 evan.mclean@example.com.au 41 </NameID> 42 <SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"> 43 <SubjectConfirmationData Recipient="https://signin.aws.amazon.com/saml" NotOnOrAfter="2016-09-23T23:34:25.315Z" /> 44 </SubjectConfirmation> 45 </Subject> 46 <Conditions NotBefore="2016-09-23T23:24:25.315Z" NotOnOrAfter="2016-09-23T23:34:25.315Z"> 47 <AudienceRestriction> 48 <Audience> 49 urn:amazon:webservices 50 </Audience> 51 </AudienceRestriction> 52 </Conditions> 53 <AuthnStatement SessionIndex="n1yLpXwUNeNB6UuM0f5qOrRGxKX" AuthnInstant="2016-09-23T23:29:25.315Z"> 54 <AuthnContext> 55 <AuthnContextClassRef> 56 urn:oasis:names:tc:SAML:2.0:ac:classes:Telephony 57 </AuthnContextClassRef> 58 </AuthnContext> 59 </AuthnStatement> 60 <AttributeStatement> 61 <Attribute Name="http://schemas.xmlsoap.org/claims/CommonName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"> 62 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 63 Evan McLean 64 </AttributeValue> 65 </Attribute> 66 <Attribute Name="https://aws.amazon.com/SAML/Attributes/RoleSessionName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"> 67 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 68 evan.mclean 69 </AttributeValue> 70 </Attribute> 71 <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"> 72 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 73 Evan 74 </AttributeValue> 75 </Attribute> 76 <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"> 77 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 78 evan.mclean 79 </AttributeValue> 80 </Attribute> 81 <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"> 82 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 83 McLean 84 </AttributeValue> 85 </Attribute> 86 <Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"> 87 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 88 evan.mclean@example.com.au 89 </AttributeValue> 90 </Attribute> 91 <Attribute Name="https://aws.amazon.com/SAML/Attributes/Role" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"> 92 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 93 arn:aws:iam::456456456456:role/admin,arn:aws:iam::456456456456:saml-provider/example-idp 94 </AttributeValue> 95 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 96 arn:aws:iam::456456456456:role/developer,arn:aws:iam::456456456456:saml-provider/example-idp 97 </AttributeValue> 98 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 99 arn:aws:iam::789789789789:role/admin,arn:aws:iam::789789789789:saml-provider/example-idp 100 </AttributeValue> 101 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 102 arn:aws:iam::123123123123:role/developer,arn:aws:iam::123123123123:saml-provider/example-idp 103 </AttributeValue> 104 <AttributeValue xsi:type="xs:string" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> 105 arn:aws:iam::123123123123:role/admin,arn:aws:iam::123123123123:saml-provider/example-idp 106 </AttributeValue> 107 </Attribute> 108 </AttributeStatement> 109 </Assertion> 110 </Response>