Skip to main content

Examples

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://sso.synxis.com/shs-security-services/v1/auth/sso" ID="_a5fa9f8f03a86b99f752e7e25a7bd0de1645028690729" InResponseTo="_00f9b53cb59cc4e1f12751dbdf11739b" IssueInstant="2022-02-16T16:24:50.729Z" Version="2.0">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://brand.my.crm.com</saml:Issuer>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
            <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
            <ds:Reference URI="#_a5fa9f8f03a86b99f752e7e25a7bd0de1645028690729">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                        <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ds saml samlp xs xsi" />
                    </ds:Transform>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
                <ds:DigestValue>IbzymTXFlYnH2mfmEI7eEcigk78=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue> 
            cgvuAxu5iUp...... 
        </ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate> 
                    MIIHWTCCBkGgAwIBAgIRANQIw3rWB0NN7/b0ICqAyeMwDQYJKoZIhvcNAQELBQAwgZExCzAJBgNV 
                    BAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGDAW 
                    BgNVBAoTD1NlY3RpZ28gTGltaXRlZDE5MDcGA1UEAxMwU2VjdGlnbyBSU0EgRXh0ZW5kZWQgVmFs 
                    aWRhdGlvbiBTZWN1cmUgU2VydmVyIENBMB4XDTIxMDUzMTAwMDAwMFoXDTIyMDUzMTIzNTk1OVow 
                    gcoxHDAaBgNVBAUTE0hQTS0zMDUwNi9UMTYwNi9GNjIxEzARBgsrBgEEAYI3PAIBAxMCRVMxHTAb 
                    BgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMQswCQYDVQQGEwJFUzERMA8GA1UECBMIQmFsZWFy 
                    ZXMxDjAMBgNVBAcTBVBhbG1hMSQwIgYDVQQKExtCYXJjZWxvIEdlc3Rpb24gSG90ZWxlcmEgU0wx 
                    ...... 
                </ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
    <samlp:Status>
        <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" />
    </samlp:Status>
    <saml:Assertion xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_a81dbcd861df853edc30bf5e38c2f6b31645028690729" IssueInstant="2022-02-16T16:24:50.729Z" Version="2.0">
        <saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://brand.my.crm.com</saml:Issuer>
        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
                <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
                <ds:Reference URI="#_a81dbcd861df853edc30bf5e38c2f6b31645028690729">
                    <ds:Transforms>
                        <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                            <ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="ds saml xs xsi" />
                        </ds:Transform>
                    </ds:Transforms>
                    <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
                    <ds:DigestValue>XaFNt3qDyrRmLHM75jQLmfa5fu4=</ds:DigestValue>
                </ds:Reference>
            </ds:SignedInfo>
            <ds:SignatureValue> 
                kRGzP17ylWyl0zRr4f....... 
            </ds:SignatureValue>
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate> 
                        MIIHWTCCBkGgAwIBAgIRANQIw3rWB0NN7/b0ICqAyeMwDQYJKoZIhvcNAQELBQAwgZExCzAJBgNV 
                        BAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGDAW 
                        BgNVBAoTD1NlY3RpZ28gTGltaXRlZDE5MDcGA1UEAxMwU2VjdGlnbyBSU0EgRXh0ZW5kZWQgVmFs 
                        aWRhdGlvbiBTZWN1cmUgU2VydmVyIENBMB4XDTIxMDUzMTAwMDAwMFoXDTIyMDUzMTIzNTk1OVow 
                        gcoxHDAaBgNVBAUTE0hQTS0zMDUwNi9UMTYwNi9GNjIxEzARBgsrBgEEAYI3PAIBAxMCRVMxHTAb 
                        BgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMQswCQYDVQQGEwJFUzERMA8GA1UECBMIQmFsZWFy 
                        ZXMxDjAMBgNVBAcTBVBhbG1hMSQwIgYDVQQKExtCYXJjZWxvIEdlc3Rpb24gSG90ZWxlcmEgU0wx 
                        ...... 
                    </ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </ds:Signature>
        <saml:Subject>
            <saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">00507000001ebIgAAI</saml:NameID>
            <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml:SubjectConfirmationData InResponseTo="_00f9b53cb59cc4e1f12751dbdf11739b" NotOnOrAfter="2022-02-16T16:29:50.729Z" Recipient="https://sso.synxis.com/shs-security-services/v1/auth/sso" />
            </saml:SubjectConfirmation>
        </saml:Subject>
        <saml:Conditions NotBefore="2022-02-16T16:24:20.729Z" NotOnOrAfter="2022-02-16T16:29:50.729Z">
            <saml:AudienceRestriction>
                <saml:Audience>https://sso.synxis.com/shs-security-services/v1/auth/sso</saml:Audience>
            </saml:AudienceRestriction>
        </saml:Conditions>
        <saml:AuthnStatement AuthnInstant="2022-02-16T16:24:50.729Z">
            <saml:AuthnContext>
                <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml:AuthnContextClassRef>
            </saml:AuthnContext>
        </saml:AuthnStatement>
        <saml:AttributeStatement>
            <saml:Attribute Name="BusinessContext" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">BE</saml:AttributeValue>
            </saml:Attribute>
            <saml:Attribute Name="Context" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">Profile</saml:AttributeValue>
            </saml:Attribute>
            <saml:Attribute Name="ProfileID" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">12345C0004775537</saml:AttributeValue>
            </saml:Attribute>
            <saml:Attribute Name="LogoutUrl" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">https://brand.com</saml:AttributeValue>
            </saml:Attribute>
            <saml:Attribute Name="IDContext" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">CRS</saml:AttributeValue>
            </saml:Attribute>
            <saml:Attribute Name="ChainId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">12345</saml:AttributeValue>
            </saml:Attribute>
            <saml:Attribute Name="ProfileType" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
                <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">Guest</saml:AttributeValue>
            </saml:Attribute>
        </saml:AttributeStatement>
    </saml:Assertion>
</samlp:Response>