THE SIGNED TOKEN

 <saml:Assertion MajorVersion="1" MinorVersion="1"          AssertionID="uuid:a5ca5dd2-f2b1-47c9-b3be-c9aa6e47d37f"          Issuer="http://schemas.microsoft.com/ws/2005/05/identity/issuer/self"          IssueInstant="2006-03-05T17:51:18.473Z"          xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion">      <saml:Conditions NotBefore="2006-03-05T17:51:18.473Z"              NotOnOrAfter="2006-03-05T18:51:18.473Z" />      <saml:AttributeStatement>          <saml:Subject>              <saml:SubjectConfirmation>                  <saml:ConfirmationMethod>                      urn:oasis:names:tc:SAML:1.0:cm:holder-of-key                  </saml:ConfirmationMethod>                  <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">                      <e:EncryptedKey xmlns:e="http://www.w3.org/2001/04/xmlenc#">                          <e:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">                              <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />                          </e:EncryptionMethod>                          <KeyInfo>                              <o:SecurityTokenReference xmlns:o="http://docs.oasis-open.org/                                      wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">                                  <o:KeyIdentifier ValueType="http://docs.oasis-open.org/wss/                                      oasis-wss-soap-message-security-1.1#ThumbprintSHA1"                                      EncodingType="http://docs.oasis-open.org/wss/2004                                      /01/oasis-200401-wss-soap-message-security-1.0#Base64Binary">                                          +PYbznDaB/dlhjIfqCQ458E72wA=                                  </o:KeyIdentifier>                              </o:SecurityTokenReference>                          </KeyInfo>                          <e:CipherData>                              <e:CipherValue>Zp9GQJBEuo4UZYxVh/QM3y8LzqVh2aium82nCsozh4                                  HwSK5NDIRfK/qKInUL8J7f+IrIQS1jpVkwlztUpoP4dkdaAAu9                                  A/EBzEuCGL/uz9wcD4HxxVAGrvV71H9gaAhgmvR561yaBLjaJC                                  rrnSNaji/4pAGUq23oIDxHF3IhHfk=                              </e:CipherValue>                          </e:CipherData>                      </e:EncryptedKey>                  </KeyInfo>              </saml:SubjectConfirmation>          </saml:Subject>          <saml:Attribute AttributeName="GivenName"                  AttributeNamespace="http://schemas.microsoft.com/ws/2005/05/identity/claims">              <saml:AttributeValue>William</saml:AttributeValue>          </saml:Attribute>          <saml:Attribute AttributeName="Surname"                  AttributeNamespace="http://schemas.microsoft.com/ws/2005/05/identity/claims">              <saml:AttributeValue>Shakespeare</saml:AttributeValue>          </saml:Attribute>          <saml:Attribute AttributeName="EmailAddress"                  AttributeNamespace="http://schemas.microsoft.com/ws/2005/05/identity/claims">              <saml:AttributeValue>william@avon.org</saml:AttributeValue>          </saml:Attribute>       </saml:AttributeStatement>       <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">           <SignedInfo>               <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />               <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />               <Reference URI="#uuid:a5ca5dd2-f2b1-47c9-b3be-c9aa6e47d37f">                   <Transforms>                       <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />                       <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />                   </Transforms>                   <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />                   <DigestValue>E8fLZ1moCpnDYlLlX39Ooc2n+ec=</DigestValue>              </Reference>           </SignedInfo>           <SignatureValue>nmRwWM/WjYlMK8v/bVBHOQeS+hBj603lxCcAcoD0GmxCKhm+c5O7X7X+iTj3qb                     DGQrFQSu/zqRadJRlFGS3N0O5hapGuDXrmP85ac7KeDVBQ90PrDDigeYZQU5Lw6NK1iG                     .                     .                     .                     pXlT1vAG7Snvu6DAJQpAL+gqeO2afJg==           </SignatureValue>           <KeyInfo>               <KeyValue>                   <RSAKeyValue>                       <Modulus>xmJx9eJQYln5r8eR7X2XPcwcSS5C8fBjlLdv/rBsgfNA+KeAKx6Z7speFJp                           CmeNOe8v3nUldfYlvN9jWcKFn3AF4ddgMHw5e1M0TpPzQlBtcMTm12Uslg3ANFw0zM0h                           .                           .                           IqNDrzJGDU1fuLRSkNT/Q==                       </Modulus>                       <Exponent>AQAB</Exponent>                   </RSAKeyValue>               </KeyValue>           </KeyInfo>       </Signature>  </saml:Assertion>

Published by

Kim Cameron

Work on identity.