{"id":403,"date":"2006-03-10T14:31:30","date_gmt":"2006-03-10T22:31:30","guid":{"rendered":"\/?p=403"},"modified":"2006-03-10T14:31:30","modified_gmt":"2006-03-10T22:31:30","slug":"the-encrypted-token","status":"publish","type":"post","link":"https:\/\/www.identityblog.com\/?p=403","title":{"rendered":"THE ENCRYPTED TOKEN"},"content":{"rendered":"<p>If you have a single web server that uses html pages, like most bloggers do, the easiest way to take advantage of  infocard identities is to get the Identity Selector to post tokens directly to your web server.  Normally, you might get the contents of a form in the post.  When using InfoCards you get a &#8220;token&#8221;.  Various types of token are possible, but SAML tokens are most common.  The built-in self-asserted identity provider uses the SAML format.<\/p>\n<pre>\r\n&lt;enc:EncryptedData Type=&quot;http:\/\/www.w3.org\/2001\/04\/xmlenc#Element&quot;\r\n               xmlns:enc=&quot;http:\/\/www.w3.org\/2001\/04\/xmlenc#&quot;&gt;\r\n  &lt;enc:EncryptionMethod Algorithm=&quot;http:\/\/www.w3.org\/2001\/04\/xmlenc#aes256-cbc&quot; \/&gt; \r\n  &lt;KeyInfo xmlns=&quot;http:\/\/www.w3.org\/2000\/09\/xmldsig#&quot;&gt;\r\n      &lt;e:EncryptedKey xmlns:e=&quot;http:\/\/www.w3.org\/2001\/04\/xmlenc#&quot;&gt;\r\n          &lt;e:EncryptionMethod Algorithm=&quot;http:\/\/www.w3.org\/2001\/04\/xmlenc#rsa-oaep-mgf1p&quot;&gt;\r\n              &lt;DigestMethod Algorithm=&quot;http:\/\/www.w3.org\/2000\/09\/xmldsig#sha1&quot; \/&gt; \r\n          &lt;\/e:EncryptionMethod&gt;\r\n          &lt;KeyInfo&gt;\r\n              &lt;o:SecurityTokenReference xmlns:o=&quot;http:\/\/docs.oasis-open.org\/wss\/2004\/01\/\r\n                        oasis-200401-wss-wssecurity-secext-1.0.xsd&quot;&gt;\r\n                  &lt;o:KeyIdentifier ValueType=&quot;http:\/\/docs.oasis-open.org\/wss\/\r\n                        oasis-wss-soap-message-security-1.1#ThumbprintSHA1&quot; \r\n                          EncodingType=&quot;http:\/\/docs.oasis-open.org\/wss\/2004\/01\/\r\n                        oasis-200401-wss-soap-message-security-1.0#Base64Binary&quot;&gt;\r\n                      +PYbznDaB\/dlhjIfqCQ458E72wA=\r\n                  &lt;\/o:KeyIdentifier&gt; \r\n              &lt;\/o:SecurityTokenReference&gt;\r\n          &lt;\/KeyInfo&gt;\r\n          &lt;e:CipherData&gt;\r\n              &lt;e:CipherValue&gt;\r\n                   <span style=\"background-color: #FFFF66\">1dYJm11Qw2UDKuS7OsjY23k+vX4l5nHkKUC71ev7<\/span>\r\n                   <span style=\"background-color: #FFFF66\">jtDUC0dFn1mcWunmGV272bpXGHeyWIviv2Salkxj<\/span>\r\n                   <span style=\"background-color: #FFFF66\">XErXBwO3hq9\/dNyDfY7VvLRi5rOvn1Szgb71d0Xg<\/span>\r\n                   <span style=\"background-color: #FFFF66\">rKCvnUljhy9bSssSxtYgr4YOTkUV894z0yXS9omK<\/span>\r\n                   <span style=\"background-color: #FFFF66\">S0XNtm\/dzr4=<\/span>\r\n              &lt;\/e:CipherValue&gt; \r\n          &lt;\/e:CipherData&gt;\r\n      &lt;\/e:EncryptedKey&gt;\r\n  &lt;\/KeyInfo&gt;\r\n  &lt;enc:CipherData&gt;\r\n      &lt;enc:CipherValue&gt;\r\n          <span style=\"background-color: #FFFF66\">77Ybo3C32JckPMD+lxm9t7KKxfQjMT8ojczrDs0i<\/span>\r\n          <span style=\"background-color: #FFFF66\">HsxJ3Q6i3B04RAGrOivLfqMYzYP4lZXsM2lF8cUs<\/span>\r\n          <span style=\"background-color: #FFFF66\">aVOTY9KqsJjpOBwyk37n9tw7pV6E3SXkHtXx92xl<\/span>\r\n          <span style=\"background-color: #FFFF66\">5AqmjPeBdDI\/syrIjgE1bpbn5sX5PpNoOmAbYSV2<\/span>\r\n          <span style=\"background-color: #FFFF66\">dQRBnImKJBAfKQFFmMk0mcUb\/Bv11w9aCAgimPy7<\/span>\r\n          <span style=\"background-color: #FFFF66\">UfwqQPhkPp0DbCoINFZsmbgppelTHTh6Bnpe\/it9<\/span>\r\n          <span style=\"background-color: #FFFF66\">OPDqBeUaILVBA7vMVvgDA0vmklb9g3mEzo1va5GG<\/span>\r\n          <span style=\"background-color: #FFFF66\">4GP\/u0xuCG7x9glozdDVtsBsohJiGj0UnFS2QI0o<\/span>\r\n          <span style=\"background-color: #FFFF66\">ZbfbMS9rtWCiHRbp0TIhcykn70PUooVJrU\/HcKDh<\/span>\r\n          <span style=\"background-color: #FFFF66\">baKnoC3dd0Y73gqTogwvruYZ3Fg9mqhlYMSoLmsR<\/span>\r\n          <span style=\"background-color: #FFFF66\">sz+W8a935WQM1OAcNz6VEjxaKn7QDRZn\/OfQhW1r<\/span>\r\n          <span style=\"background-color: #FFFF66\">XsWh+oazVKHdxpa9vvj6UeV3w8DaJsmZDO5SRTep<\/span>\r\n          <span style=\"background-color: #FFFF66\">LjZzfMENc52XG8CJfDrVHEuPmals92NoTN+BwIc6<\/span>\r\n          <span style=\"background-color: #FFFF66\">R4WpHPxr+P7GPfpb24apOfgBmfN\/snq+Jy37PLjV<\/span>\r\n          <span style=\"background-color: #FFFF66\">4yivz9NmP6EKEpDI7u7b+evytYRmQrh04T\/aL6gi<\/span>\r\n          <span style=\"background-color: #FFFF66\">NHzgfHo7PxiNU6hvCKNQ0vtKgMp1R6QjkMV93FvS<\/span>\r\n          <span style=\"background-color: #FFFF66\">1I6eknbHLjbUJaJuuGI3eH83RN\/Gx7bsuDvfTvDL<\/span>\r\n          <span style=\"background-color: #FFFF66\">WiTTsG2zD5UPWeEjx+ROCkhLpb8Ojm8h6fI3s+Qv<\/span>\r\n          <span style=\"background-color: #FFFF66\">qUuzAbzH8cHiyfWGAt8HPe1BwKWcU25XbVfQTOnG<\/span>\r\n          <span style=\"background-color: #FFFF66\">jP2+NXt2AUtDYimUjydSlyMzk0Bi3GPr19aav2UV<\/span>\r\n          <span style=\"background-color: #FFFF66\">N1gr2ldVotma4lpNonhLjk+liHTrrO7P51\/vkc4k<\/span>\r\n          <span style=\"background-color: #FFFF66\">P7koLTLBmmNooOQrJ1w70MelRjZnFbCdoadyzH8j<\/span>\r\n          <span style=\"background-color: #FFFF66\">z\/vR\/zzvO62z4ycFyn\/S9OxqFqrufKpyijnopVS3<\/span>\r\n          <span style=\"background-color: #FFFF66\">bf4JGazumScIutKfUUpWOtRELXnCpv4S9JB4FIkr<\/span>\r\n          <span style=\"background-color: #FFFF66\">Kqqgi\/3rh06QMByWK6DU7cf94dI3jIzx336A1a\/r<\/span>\r\n          <span style=\"background-color: #FFFF66\">.                                       <\/span>\r\n          <span style=\"background-color: #FFFF66\">.                                       <\/span>\r\n          <span style=\"background-color: #FFFF66\">.                                       <\/span>\r\n          <span style=\"background-color: #FFFF66\">Wvl2o5ABIqvToMV1bp16Ns1ImSgxuB074kmAvAUx<\/span>\r\n          <span style=\"background-color: #FFFF66\">b\/LXPXq1Gwcz2YtyaHMYSUvzzzYRuDH9qu0R6748<\/span>\r\n          <span style=\"background-color: #FFFF66\">B\/C1if4MeXHUqMPYaEQ+dhuzoVUMuy7\/kQVP5ckb<\/span>\r\n          <span style=\"background-color: #FFFF66\">B0asMSqIiJp5B4vecBe\/aGQo9AYNEwPv4xAB5cvr<\/span>\r\n          <span style=\"background-color: #FFFF66\">PBEG4TCFtSVyJkn2LcdwNzqmNqIewGMxawwUPgxe<\/span>\r\n          <span style=\"background-color: #FFFF66\">D2w==<\/span>\r\n      &lt;\/enc:CipherValue&gt; \r\n  &lt;\/enc:CipherData&gt;\r\n&lt;\/enc:EncryptedData&gt;\r\n<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>If you have a single web server that uses html pages, like most bloggers do, the easiest way to take advantage of infocard identities is to get the Identity Selector to post tokens directly to your web server. Normally, you might get the contents of a form in the post. When using InfoCards you get &hellip; <a href=\"https:\/\/www.identityblog.com\/?p=403\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">THE ENCRYPTED TOKEN<\/span><\/a><\/p>\n","protected":false},"author":68,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[2],"tags":[],"_links":{"self":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts\/403"}],"collection":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/users\/68"}],"replies":[{"embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=403"}],"version-history":[{"count":0,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=\/wp\/v2\/posts\/403\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=403"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=403"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.identityblog.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=403"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}