Skip to content

Instantly share code, notes, and snippets.

@hisashiyamaguchi

hisashiyamaguchi/oktaIdPSAMLResponse.xml

Created September 7, 2021 01:07
Show Gist options
  • Save hisashiyamaguchi/f1838518c1278a87b4ee113487ac548a to your computer and use it in GitHub Desktop.
Save hisashiyamaguchi/f1838518c1278a87b4ee113487ac548a to your computer and use it in GitHub Desktop.
Download ZIP
Raw
oktaIdPSAMLResponse.xml
<?xml
version="1.0"
encoding="UTF-8"?>
<saml2p:Response
Destination="https://nriokta.login.go.akamai-access.com/saml/sp/response"
ID="id1663368879221708679411174"
InResponseTo="_D86B5A6619EEAF442EA0B21EBBC48BA1"
IssueInstant="2021-09-07T01:04:56.721Z"
Version="2.0"
xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
<saml2:Issuer
Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity"
xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://www.okta.com/exk4dzo87vrgwSuWn4x7
</saml2:Issuer>
<ds:Signature
xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:SignedInfo>
<ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<ds:SignatureMethod
Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<ds:Reference
URI="#id1663368879221708679411174">
<ds:Transforms>
<ds:Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
<ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</ds:Transforms>
<ds:DigestMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<ds:DigestValue>o1/RUSNtzaKHKapN38nxZ3PRc+
89zj5xT1utIedIgjw=
</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>fpuXDMjPEnDzUI0o771tmte/3185S1UQmKyF5Tt/mJ4Xa76mqLNjYsoftu2sN2jCz3AQDvcpYR2vDDvvNXBbMUj9khDPTBwFXvbh8HzMhueYn/QNnnmKd5hThTYH/JIZ2oyhXajeEVPpcO52/gM8t8lBmeDV21NZug0befOfd/FfXvyFVcMl7Ek5Wde28AYRiyFEb6O0KK0BFHUIg7yPJjTN/eqn1+gU3kNbyOhnGAMkUx6PJDNZJ6aLS6v0AEt5u7MmeF+/rLmhLbmbMJODXW+
DstgFoiZkiuLTHnexnEsA9hEXE0qdqKAojJw3aegZf0EkYKr8rhjQnwXFKYcZDA==
</ds:SignatureValue>
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>MIIDpDCCAoygAwIBAgIGAXEzH45CMA0GCSqGSIb3DQEBCwUAMIGSMQswCQYDVQQGEwJVUzETMBEG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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</ds:Signature>
<saml2p:Status
xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
<saml2p:StatusCode
Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
</saml2p:Status>
<saml2:Assertion
ID="id16633688792912801869475468"
IssueInstant="2021-09-07T01:04:56.721Z"
Version="2.0"
xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">
<saml2:Issuer
Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity"
xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://www.okta.com/exk4dzo87vrgwSuWn4x7
</saml2:Issuer>
<ds:Signature
xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:SignedInfo>
<ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<ds:SignatureMethod
Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
<ds:Reference
URI="#id16633688792912801869475468">
<ds:Transforms>
<ds:Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
<ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</ds:Transforms>
<ds:DigestMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
<ds:DigestValue>mC8bwbo2fq1oA1XGL9Igq53VbGENEnG4iQ+
74JpvVxs=
</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>hQnK8/4CZWvaQmAz29sRVaA03yOTlXu6OZbqbWjF1QMuaESR6YINWVbBurrV7+6gzVBMbC+qzMl2LXhCc4pHEd3LJF7D99V27ym6EVgUv+FzES5dI2ld6WVImaH/GR0xm0/2Ac8ruo3VoYErT89Bl3YiA8cKth/9CwzLmc8qtpDV5xlMkgyu3HdsM6Qy84kT5UWqUu/E9ZScBhDL6l9ZcSOdVxiIe/IsCPrAYc9ENrlMiJOEZoWEQ+6PIYp96PHYsAlclzF1JbKyEkny9zd4BDFhjwja/2hDN4vkn/9JbXytAyeedvn6GSBeXrIIuf5/
5XtSubkKEeWhTdq0s8FxYQ==
</ds:SignatureValue>
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>MIIDpDCCAoygAwIBAgIGAXEzH45CMA0GCSqGSIb3DQEBCwUAMIGSMQswCQYDVQQGEwJVUzETMBEG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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</ds:Signature>
<saml2:Subject
xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">
<saml2:NameID
Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">[email protected]
</saml2:NameID>
<saml2:SubjectConfirmation
Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
<saml2:SubjectConfirmationData
InResponseTo="_D86B5A6619EEAF442EA0B21EBBC48BA1"
NotOnOrAfter="2021-09-07T01:09:56.722Z"
Recipient="https://nriokta.login.go.akamai-access.com/saml/sp/response"/>
</saml2:SubjectConfirmation>
</saml2:Subject>
<saml2:Conditions
NotBefore="2021-09-07T00:59:56.722Z"
NotOnOrAfter="2021-09-07T01:09:56.722Z"
xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">
<saml2:AudienceRestriction>
<saml2:Audience>https://nriokta.login.go.akamai-access.com/saml/sp/response</saml2:Audience>
</saml2:AudienceRestriction>
</saml2:Conditions>
<saml2:AuthnStatement
AuthnInstant="2021-09-07T01:04:56.721Z"
SessionIndex="_D86B5A6619EEAF442EA0B21EBBC48BA1"
xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">
<saml2:AuthnContext>
<saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml2:AuthnContextClassRef>
</saml2:AuthnContext>
</saml2:AuthnStatement>
</saml2:Assertion>
</saml2p:Response>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment