User:Vladimir@bestgrid.org/Notes for Shibboleth seminar 2008-10-14
From BeSTGRID
Contents |
[edit] First demo
- Go to http://www.bestgrid.org/ and click 'Login via BeSTGRID Federation'
[edit] More demos
- JIRA: http://www.mams.org.au/jira
- GridSphere: http://gridsphere.test.bestgrid.org/
- Grid:
- Browse Autograph via https://idp.canterbury.ac.nz/Autograph/Login
[edit] Dissection of a Shibboleth assertion
[edit] HTML source of IdP redirect page
<body onload="document.forms[0].submit()"> <form id="shibboleth" action="https://www.bestgrid.org/Shibboleth.sso/SAML/POST" method="post"> <div> <input type="hidden" name="TARGET" value="cookie" /> <input type="hidden" name="SAMLResponse" value="PFJlc3BvbnNlIHhtbG5zPSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoxLjA6cHJvdG9jb2wiIHht bG5zOnNhbWw9InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjEuMDphc3NlcnRpb24iIHhtbG5zOnNh bWxwPSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoxLjA6cHJvdG9jb2wiIHhtbG5zOnhzZD0iaHR0 cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEiIHhtbG5zOnhzaT0iaHR0cDovL3d3dy53My5v cmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIElzc3VlSW5zdGFudD0iMjAwOC0xMC0xM1QwMjow Mjo1NS40MTVaIiBNYWpvclZlcnNpb249IjEiIE1pbm9yVmVyc2lvbj0iMSIgUmVjaXBpZW50PSJo dHRwczovL3d3dy5iZXN0Z3JpZC5vcmcvU2hpYmJvbGV0aC5zc28vU0FNTC9QT1NUIiBSZXNwb25z ZUlEPSJfYTFiZTMyNzdjZDI3ZTU2OWI3MGI0OGQxMzIyOTgwODciPjxkczpTaWduYXR1cmUgeG1s bnM6ZHM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvMDkveG1sZHNpZyMiPgo8ZHM6U2lnbmVkSW5m bz4KPGRzOkNhbm9uaWNhbGl6YXRpb25NZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9y Zy8yMDAxLzEwL3htbC1leGMtYzE0biMiPjwvZHM6Q2Fub25pY2FsaXphdGlvbk1ldGhvZD4KPGRz OlNpZ25hdHVyZU1ldGhvZCBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvMDkveG1s ZHNpZyNyc2Etc2hhMSI+PC9kczpTaWduYXR1cmVNZXRob2Q+CjxkczpSZWZlcmVuY2UgVVJJPSIj X2ExYmUzMjc3Y2QyN2U1NjliNzBiNDhkMTMyMjk4MDg3Ij4KPGRzOlRyYW5zZm9ybXM+CjxkczpU cmFuc2Zvcm0gQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjZW52 ZWxvcGVkLXNpZ25hdHVyZSI+PC9kczpUcmFuc2Zvcm0+CjxkczpUcmFuc2Zvcm0gQWxnb3JpdGht PSJodHRwOi8vd3d3LnczLm9yZy8yMDAxLzEwL3htbC1leGMtYzE0biMiPjxlYzpJbmNsdXNpdmVO YW1lc3BhY2VzIHhtbG5zOmVjPSJodHRwOi8vd3d3LnczLm9yZy8yMDAxLzEwL3htbC1leGMtYzE0 biMiIFByZWZpeExpc3Q9ImNvZGUgZHMga2luZCBydyBzYW1sIHNhbWxwIHR5cGVucyAjZGVmYXVs dCB4c2QgeHNpIj48L2VjOkluY2x1c2l2ZU5hbWVzcGFjZXM+PC9kczpUcmFuc2Zvcm0+CjwvZHM6 VHJhbnNmb3Jtcz4KPGRzOkRpZ2VzdE1ldGhvZCBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3Jn LzIwMDAvMDkveG1sZHNpZyNzaGExIj48L2RzOkRpZ2VzdE1ldGhvZD4KPGRzOkRpZ2VzdFZhbHVl Pm90S3dTMnRTNmFqWks0MUZsT0pGL1VFZXFaOD08L2RzOkRpZ2VzdFZhbHVlPgo8L2RzOlJlZmVy ZW5jZT4KPC9kczpTaWduZWRJbmZvPgo8ZHM6U2lnbmF0dXJlVmFsdWU+Ck5jMTdpTHIyUlBWYXRr ZStOMEVKcGtRZ1c4enhkVFhXNnQzNjBWeTRpYXQ0aW5GYUxjN01lc2pUdWhkTzdheThuT3ZTY3BE ajFWNm4KdklVT216KzQ3TG44azUwZmxQSmgySFhwM2kyYmlFRG9CWTRlaS9lUy9ycXlJWU4xenZq R2kvVlp1UVFpVjhVZDNGZkFyLy9LTHRlUwpTYlkyVGdPU1RMZDlPYlZCRnZSU1VCVWNTOUJXUjl4 WnZnajlVK0wvUFgvMmxHeTliMDYzcFpySGg5MU9JYTlDRHNvTlE2aEpQK2xICnlLbkJNUDU4YjFQ RXd0bWs3aUpLK1cyemx2THUwbUxuZE16REZQWU1VSGFFcTExbzZLbm9GQmIrMVlpdENCR3hrT09C aVF5Z2dNQ0oKNkRUaWFXZFIwR0ZXc1ZDMzZ2VHFSODNYY203VVNpbGRwVDBtckE9PQo8L2RzOlNp Z25hdHVyZVZhbHVlPgo8ZHM6S2V5SW5mbz4KPGRzOlg1MDlEYXRhPgo8ZHM6WDUwOUNlcnRpZmlj YXRlPgpNSUlHY0RDQ0JGaWdBd0lCQWdJQmFEQU5CZ2txaGtpRzl3MEJBUVVGQURCc01Rc3dDUVlE VlFRR0V3SkJWVEVQTUEwR0ExVUVDaE1HClEwRlZSRWxVTVI0d0hBWURWUVFMRXhWVGFHbGlZbTlz WlhSb0lFWmxaR1Z5WVhScGIyNHhMREFxQmdOVkJBTVRJMUJwYkc5MElFTmwKY25ScFptbGpZWFJw YjI0Z1RHVjJaV3dnTXlCRFFTQjJNQzR5TUI0WERUQTRNRFV5TXpBek1EQXdNMW9YRFRFd01ERXhN ekF6TURBdwpNMW93Z2FreEN6QUpCZ05WQkFZVEFrNWFNU0V3SHdZRFZRUUtFeGhWYm1sMlpYSnph WFI1SUc5bUlFTmhiblJsY21KMWNua3hPakE0CkJnTlZCQXNUTVVsdVptOXliV0YwYVc5dUlHRnVa Q0JEYjIxdGRXNXBZMkYwYVc5dUlGUmxZMmh1YjJ4dloza2dVMlZ5ZG1salpYTXgKSERBYUJnTlZC QXNURTBGMGRISnBZblYwWlNCQmRYUm9iM0pwZEhreEhUQWJCZ05WQkFNVEZHbGtjQzVqWVc1MFpY SmlkWEo1TG1GagpMbTU2TUlJQklqQU5CZ2txaGtpRzl3MEJBUUVGQUFPQ0FROEFNSUlCQ2dLQ0FR RUFyeEVMcGVCYnV6T003NVFMajBmVmdZR3NqZm9SCnE2R0I3WmhSUGdSK2dSZ28yMVo1bVY0bjNj dEhQcXpGek9yZDlUR0hlclBnaUxXMk84YU4rYjI5dHNJYmZPM2dRRkhnLzIwd0phQ3oKSUcwQ3Zs SEIzc1RuK2Y0UXY1MzJ0UUxpejJ1TVdLZHoycW43T0x3dTJrOVR4dE40Wm1RNkJCbHJ5KzhkTUt4 RHJSWGNaeXhEb3R3Sgo2RkdoVTNHNUdzNUJraE1iMUlxclVyN1BuY2p4Y1h6dWtXSldzUHF2V1FQ UTh5K2hVbC8zaWdnb1V4MmUxMmxFbFR4eGQ4VmZKdHN5CkZJNjl4eGhSYzdaNVVXcitIai9xeWJL cEhuZzZONXZzQ1RhQVVBUm4yOVpPa20yNmxna0tsODNTSG5JNmFvbmJLaHZKSUVMNGdJQzYKSTBk M25uTzE0UUlEQVFBQm80SUIzVENDQWRrd0NRWURWUjBUQkFJd0FEQ0Jqd1lEVlIwZ0JJR0hNSUdF TUJFR0R5c0dBUVFCZ2FacwpDZ0VCQVFFQkFEQVJCZzhyQmdFRUFZR21iQW9CQVFJQkFRQXdYQVlQ S3dZQkJBR0JwbXdLQVFFREFRRUFNRWt3UndZSUt3WUJCUVVICkFnRVdPMmgwZEhCek9pOHZjR3Rw TG5SbGMzUXVZWFZ6WTJWeWRDNXZjbWN1WVhVdmMyaHBZbXgyYkRNdFkyRXZjSFZpTDNCdmJHbGoK ZVM1b2RHMXNNQXNHQTFVZER3UUVBd0lGb0RBVEJnTlZIU1VFRERBS0JnZ3JCZ0VGQlFjREFUQWRC Z05WSFE0RUZnUVVYYTdSemFaTQpGeEtPaHhIb04zSUlkcXlhUzJFd2ZRWURWUjBqQkhZd2RJQVVr Q3E2djcyNVBSMTd6bXpFVWRSNW11RUYxZ3loV2FSWE1GVXhDekFKCkJnTlZCQVlUQWtGVk1SQXdE Z1lEVlFRS0V3ZEJkWE5EUlZKVU1UUXdNZ1lEVlFRREV5dFFhV3h2ZENCQmRYTkRSVkpVSUVObGNu UnAKWm1sallYUnBiMjRnVEdWMlpXd2dNeUJEUVNCMk1DNHlnZ0VPTUNzR0ExVWRFZ1FrTUNLQklI QnBiRzkwTFhOb2FXSnNkbXd6TFdOaApRR0YxYzJObGNuUXViM0puTG1GMU1FMEdBMVVkSHdSR01F UXdRcUJBb0Q2R1BHaDBkSEE2THk5d2Eya3VkR1Z6ZEM1aGRYTmpaWEowCkxtOXlaeTVoZFM5emFH bGliSFpzTXkxallTOXdkV0l2WTNKc0wyTmxjblJ6TG1OeWJEQU5CZ2txaGtpRzl3MEJBUVVGQUFP Q0FnRUEKSmw0RllCVk4rNWlYcWxlWDZISVphVjA4RkVsV1ZWdVkvdURuRXliOThzejVtTnd1OGp1 RmdZYkp6Q2hyWHp2TmQ5ODNNZ0tFQnIxdgpxR2ZJMnd5RXlOK0VkQ1ZRaHpKaXZsbFc4WGF1QklI ZWpsWWc5cTgydEM0eXAxREhScUZ2MUpGVjdsTnFyUkM2eUlpZy9GeXZtVzhzClpRUDBWNGRJLy95 UENxOXhvSmdkSWxDQlBEN3IzLzY5bFRSTXVBbnJJMThLSlBPeHp3RkQ4TkQxOGoxUndiSzN1eTND MzFsMkplS3gKb25UbWx3dXhBVS9FOWJobWdwalp0OUFlTms0SGkzdGFJTjBYeUF2cHd2ZWwyekQx enh6NElieHFMSnhaYWlHNk04ZG50aHl2U3J1Nwp3U1B2dlBjWkdkTmR0a1B6YjlwWTV0YzBSUjFM STJQaThVS3Rzb3ZoM2dISXNtb0ZIcjJZemtBcUFWdXR4TmtxTFQ5d0tZL3I2N1k3CktveFN1R1N2 RkNKd2NtYmNqYU9MNng1dnlwZE4xMVVmNUZqZWhHMkk5ZFNCTndQSStXZGtWYk5QckI4Z3hXVERn akNpcnRXakx2ZTcKMk0wMEovMXJuZ2c5Ull0MUxFMytlM2drYTBESy9HcWdBMk1BZjRDRkRSSmI2 cVh4NkV5MnJuOWc3eGdaVlBiZUxhRERveVJOOEVUQQpSZnNMQlZCdE4zWEV4K2tHVmVpQWw2WklG UFY1WGNEaExDZUJFSi9tZEdLcklwNFdNWjNVbERaMjRNTWN6RzdtWWlWR2VjYjRxS2x0CkNYQUlo Y2ZOKzkwQmxnbUY2NlhLUWJEdGh3MHRSdld5cWQyTGcxTmhnSjhFQjhyT2VSNm5pS0pDRGxCUm80 TlA3cG5hMUp6RnBqYz0KPC9kczpYNTA5Q2VydGlmaWNhdGU+CjxkczpYNTA5Q2VydGlmaWNhdGU+ Ck1JSU1TekNDQ3pPZ0F3SUJBZ0lCQ2pBTkJna3Foa2lHOXcwQkFRVUZBREJWTVFzd0NRWURWUVFH RXdKQlZURVFNQTRHQTFVRUNoTUgKUVhWelEwVlNWREUwTURJR0ExVUVBeE1yVUdsc2IzUWdRWFZ6 UTBWU1ZDQkRaWEowYVdacFkyRjBhVzl1SUV4bGRtVnNJRE1nUTBFZwpkakF1TWpBZUZ3MHdOakEy TWpBd056TXlNVFJhRncwd09EQTJNVGt3TnpNeU1UUmFNR3d4Q3pBSkJnTlZCQVlUQWtGVk1ROHdE UVlEClZRUUtFd1pEUVZWRVNWUXhIakFjQmdOVkJBc1RGVk5vYVdKaWIyeGxkR2dnUm1Wa1pYSmhk R2x2YmpFc01Db0dBMVVFQXhNalVHbHMKYjNRZ1EyVnlkR2xtYVdOaGRHbHZiaUJNWlhabGJDQXpJ RU5CSUhZd0xqSXdnZ0lpTUEwR0NTcUdTSWIzRFFFQkFRVUFBNElDRHdBdwpnZ0lLQW9JQ0FRQ2lB NVhPZEpXeTFWWCtyeENZazJVSDFQcUNsOG1BZGg5M2pGeDNsSGtweEhWNXZuaVp5SlFWenhCR3Nt dDdseXVlCkZ1VWwvNXZWY2o3dXV4T0podERScThSQVRySHludE56eE8xTjlKVmFUWStKSVZsK1NB YnBvNm9HdkRXeEFOTWUyVnBCRjhKdktCQWkKdDVRSkY4dEorUFJrV08zMjF6TlNmblpldzNNVGs5 c3YzeGpKeTR4UGRkYTRBcy9ZMmV6ZVpoeGsrcWpSaXFMclB5WkN3Nks5M2QrNQozZyt5b0hzUUNm OWJlWVJBRkVnd0xNazlHS3NScTVjZElUbEN3LzNuZHJRL0M2Q1dVSElPc3hRWGdwWlJjYTRWYXZO UDhzSEVLRGcrCmNBLzUzVzd1Y2dtV0Eyck9GRFZSZDlBVmlEaHB4NHdTZlloZWgwUXpKeUduTGVp b29yVGlDYnZrME95ZjljQmhXYkp4eTRlTmh4V0MKeUNqaHRxclZBUDNFemppRnozaGdmUno4cDNT eWVDcC9lSWh4MUV0VVlxVTd2ZVNvUEw2dHRKbTY4RkZmd1JPdFhMS1Y5K25zNVg2dQpwZG9UY3gw Sm1WeHFobmp5QURqUlFTMVBlYk81ZEg1alg2RXUxWkMzOTF6c0pUWlNyVER4NW9HMEJ5dVgxUGdR V2laTWFlYlVFSUUrCk45emtpMGtqM0VmUnFxQ1B0M05wYUhqbnhzZkdrNFhmc1NCcDNQTnA2TitT ZjBWRFN5RmFqWEpCNURKUFVDemNvRTVuWUVDRHF1N1QKVWZqRlA5RVQ4UFpxOWdsOUc0ZTZXRGpx VEcrVW51N3h1K05lOGQ1WFRXcTQxVVE0OUZ4dFZlbE9BbjJiY2JHOTJVZGJwRTlwQW8wVApTWVVz Z0tNRkJRSURBUUFCbzRJSURUQ0NDQWt3RWdZRFZSMFRBUUgvQkFnd0JnRUIvd0lCQURBTEJnTlZI UThFQkFNQ0FRWXdnYzBHCkNXQ0dTQUdHK0VJQkRRU0J2eGFCdkVsdWMzUnBkSFYwYVc5dUlFTkJJ RU5sY25ScFptbGpZWFJsSUdsemMzVmxaQ0JpZVNCMGFHVWcKUVhWelEwVlNWQ0JEWlhKMGFXWnBZ MkYwYVc5dUlFeGxkbVZzSURNZ1EwRWdabTl5SUhSb1pTQkRRVlZFU1ZRZ1VFdEpJRkJwYkc5MApJ RkJ5YjJwbFkzUXVJRXhwYldsMFpXUWdUR2xoWW1sc2FYUjVMaUJUWldVZ2FIUjBjRG92TDNCcmFT NTBaWE4wTG1GMWMyTmxjblF1CmIzSm5MbUYxTDJ4bGRtVnNNeTFqWVM5d2RXSXZjRzlzYVdONUxt aDBiV3d1TUVjR0NXQ0dTQUdHK0VJQkNBUTZGamhvZEhSd09pOHYKY0d0cExuUmxjM1F1WVhWelky VnlkQzV2Y21jdVlYVXZiR1YyWld3ekxXTmhMM0IxWWk5d2IyeHBZM2t1YUhSdGJEQThCZ2xnaGtn QgpodmhDQVFJRUx4WXRhSFIwY0RvdkwzQnJhUzUwWlhOMExtRjFjMk5sY25RdWIzSm5MbUYxTDJ4 bGRtVnNNeTFqWVM5d2RXSXZNQjBHCkExVWREZ1FXQkJTUUtycS92Yms5SFh2T2JNUlIxSG1hNFFY V0REQnNCZ05WSFNNRVpUQmpnQlJTcFQzZ1A3UEsrK21ja1ZIU1JQdXUKb2o1VVA2RklwRVl3UkRF TE1Ba0dBMVVFQmhNQ1FWVXhFREFPQmdOVkJBb1RCMEYxYzBORlVsUXhJekFoQmdOVkJBTVRHbEJw Ykc5MApJRUYxYzBORlVsUWdVbTl2ZENCRFFTQjJNQzR5Z2dFR01Dc0dBMVVkRVFRa01DS0JJSEJw Ykc5MExYTm9hV0pzZG13ekxXTmhRR0YxCmMyTmxjblF1YjNKbkxtRjFNQ2tHQTFVZEVnUWlNQ0NC SG5CcGJHOTBMV3hsZG1Wc015MWpZVUJoZFhOalpYSjBMbTl5Wnk1aGRUQW0KQmdsZ2hrZ0JodmhD QVFRRUdSWVhZMmRwTFdKcGJpOWphR1ZqYTJOaExYSmxkaTV3YkQ4d0pBWUpZSVpJQVliNFFnRURC QmNXRldObgphUzFpYVc0dlkyaGxZMnN0Y21WMkxuQnNQekNDQWI4R0ExVWRId1NDQWJZd2dnR3lN RUdnUDZBOWhqdG9kSFJ3T2k4dmNHdHBNUzUwClpYTjBMbUYxYzJObGNuUXViM0puTG1GMUwyeGxk bVZzTXkxallTOXdkV0l2WTNKc0wyTmxjblJ6TG1OeWJEQkJvRCtnUFlZN2FIUjAKY0RvdkwzQnJh VEl1ZEdWemRDNWhkWE5qWlhKMExtOXlaeTVoZFM5c1pYWmxiRE10WTJFdmNIVmlMMk55YkM5alpY SjBjeTVqY213dwpnWk9nZ1pDZ2dZMkdnWXBzWkdGd09pOHZjR3RwTVM1MFpYTjBMbUYxYzJObGNu UXViM0puTG1GMUwwTk9QVkJwYkc5MEpUSXdRWFZ6ClEwVlNWQ1V5TUVObGNuUnBabWxqWVhScGIy NGxNakJNWlhabGJDVXlNRE1sTWpCRFFTVXlNSFl3TGpJc2J6MUJkWE5EUlZKVUxHTTkKUVZVL1ky VnlkR2xtYVdOaGRHVlNaWFp2WTJGMGFXOXVUR2x6ZER0aWFXNWhjbmt3Z1pPZ2daQ2dnWTJHZ1lw c1pHRndPaTh2Y0d0cApNaTUwWlhOMExtRjFjMk5sY25RdWIzSm5MbUYxTDBOT1BWQnBiRzkwSlRJ d1FYVnpRMFZTVkNVeU1FTmxjblJwWm1sallYUnBiMjRsCk1qQk1aWFpsYkNVeU1ETWxNakJEUVNV eU1IWXdMaklzYnoxQmRYTkRSVkpVTEdNOVFWVS9ZMlZ5ZEdsbWFXTmhkR1ZTWlhadlkyRjAKYVc5 dVRHbHpkRHRpYVc1aGNua3dnZ0pZQmdnckJnRUZCUWNCQVFTQ0Frb3dnZ0pHTUV3R0NDc0dBUVVG QnpBQ2hrQm9kSFJ3T2k4dgpjR3RwTVM1MFpYTjBMbUYxYzJObGNuUXViM0puTG1GMUwyeGxkbVZz TXkxallTOXdkV0l2WTJWeWRITXZZMkV0WTJWeWRITXVjRGRpCk1Fd0dDQ3NHQVFVRkJ6QUNoa0Jv ZEhSd09pOHZjR3RwTWk1MFpYTjBMbUYxYzJObGNuUXViM0puTG1GMUwyeGxkbVZzTXkxallTOXcK ZFdJdlkyVnlkSE12WTJFdFkyVnlkSE11Y0RkaU1JR1NCZ2dyQmdFRkJRY3dBb2FCaFd4a1lYQTZM eTl3YTJreExuUmxjM1F1WVhWegpZMlZ5ZEM1dmNtY3VZWFV2UTA0OVVHbHNiM1FsTWpCQmRYTkRS VkpVSlRJd1EyVnlkR2xtYVdOaGRHbHZiaVV5TUV4bGRtVnNKVEl3Ck15VXlNRU5CSlRJd2RqQXVN aXh2UFVGMWMwTkZVbFFzWXoxQlZUOWpjbTl6YzBObGNuUnBabWxqWVhSbFVHRnBjanRpYVc1aGNu a3cKZ1pJR0NDc0dBUVVGQnpBQ2hvR0ZiR1JoY0RvdkwzQnJhVEl1ZEdWemRDNWhkWE5qWlhKMExt OXlaeTVoZFM5RFRqMVFhV3h2ZENVeQpNRUYxYzBORlVsUWxNakJEWlhKMGFXWnBZMkYwYVc5dUpU SXdUR1YyWld3bE1qQXpKVEl3UTBFbE1qQjJNQzR5TEc4OVFYVnpRMFZTClZDeGpQVUZWUDJOeWIz TnpRMlZ5ZEdsbWFXTmhkR1ZRWVdseU8ySnBibUZ5ZVRBK0JnZ3JCZ0VGQlFjd0FZWXlhSFIwY0Rv dkwzQnIKYVRFdWRHVnpkQzVoZFhOalpYSjBMbTl5Wnk1aGRTOXNaWFpsYkRNdFkyRXZjSFZpTDI5 amMzQXdQZ1lJS3dZQkJRVUhNQUdHTW1oMApkSEE2THk5d2Eya3lMblJsYzNRdVlYVnpZMlZ5ZEM1 dmNtY3VZWFV2YkdWMlpXd3pMV05oTDNCMVlpOXZZM053TUlJQk93WURWUjBnCkJJSUJNakNDQVM0 d2dnRXFCZzhyQmdFRUFZR21iQW9CQVFNQkFRQXdnZ0VWTUVRR0NDc0dBUVVGQndJQkZqaG9kSFJ3 T2k4dmNHdHAKTG5SbGMzUXVZWFZ6WTJWeWRDNXZjbWN1WVhVdmJHVjJaV3d6TFdOaEwzQjFZaTl3 YjJ4cFkza3VhSFJ0YkRDQnpBWUlLd1lCQlFVSApBZ0l3Z2I4YWdieEpibk4wYVhSMWRHbHZiaUJE UVNCRFpYSjBhV1pwWTJGMFpTQnBjM04xWldRZ1lua2dkR2hsSUVGMWMwTkZVbFFnClEyVnlkR2xt YVdOaGRHbHZiaUJNWlhabGJDQXpJRU5CSUdadmNpQjBhR1VnUTBGVlJFbFVJRkJMU1NCUWFXeHZk Q0JRY205cVpXTjAKTGlCTWFXMXBkR1ZrSUV4cFlXSnBiR2wwZVM0Z1UyVmxJR2gwZEhBNkx5OXdh Mmt1ZEdWemRDNWhkWE5qWlhKMExtOXlaeTVoZFM5cwpaWFpsYkRNdFkyRXZjSFZpTDNCdmJHbGpl UzVvZEcxc0xqQU5CZ2txaGtpRzl3MEJBUVVGQUFPQ0FRRUF5UWxXbXVDM2dSTWsyRWU3Ci9oTzVz THlYQk9OczMycWIxdVhZZ2tvMTZLWU9TUS9zY3o3R1lzT1pENERuSURMbkVBc0VtM2FFNzVONEN4 VGNBRUluTy9vS0FRREgKak1sWmVteE9KQzFISmNXSW12REVEMGFIcXcrSXhCSlRFVW1mL1c1Q1RM NkVMUm5RVDU4WFRPbklVdlloMk9QVm54T1QxUHpEYXBMOAord081UXFRYmxnM3BLaXpicW1HaXNu QkxQSW9LM3JGKzErVUIrUUNWWjZjaGJscCtobXFCU1dNQmplcXpkWGF3Rk9SUVNpaUtVOVdLCmxN YlhaTENqL3FSSkdWcGhKcVVOVTlXSU1aTEtiWnd3ZERkTlhFeDZDK1BtcFhIZ2RNamp2c2dnOWRI elM0RGtWS1ZUSHZEVDIwVzQKMnZvMlNxVW5SbFl5TmFlbGw0SnBtdz09CjwvZHM6WDUwOUNlcnRp ZmljYXRlPgo8ZHM6WDUwOUNlcnRpZmljYXRlPgpNSUlLaERDQ0NXeWdBd0lCQWdJQkJqQU5CZ2tx aGtpRzl3MEJBUVVGQURCRU1Rc3dDUVlEVlFRR0V3SkJWVEVRTUE0R0ExVUVDaE1IClFYVnpRMFZT VkRFak1DRUdBMVVFQXhNYVVHbHNiM1FnUVhWelEwVlNWQ0JTYjI5MElFTkJJSFl3TGpJd0hoY05N RFV3T0RJeU1EWXcKTmpFeFdoY05NVEF3T0RJeE1EWXdOakV4V2pCVk1Rc3dDUVlEVlFRR0V3SkJW VEVRTUE0R0ExVUVDaE1IUVhWelEwVlNWREUwTURJRwpBMVVFQXhNclVHbHNiM1FnUVhWelEwVlNW Q0JEWlhKMGFXWnBZMkYwYVc5dUlFeGxkbVZzSURNZ1EwRWdkakF1TWpDQ0FTSXdEUVlKCktvWklo dmNOQVFFQkJRQURnZ0VQQURDQ0FRb0NnZ0VCQU91N2NKYlhyNWdONkwzdFJrMlBqdHc4c1BTN0hV TXAxS0hnNlVWYUdnaUYKOEdHcnNPN1VRb3BidnlsLzg5MFZqNGNaOWdOMm9IQzIwSHRYYzVPVm80 d04vaFk2Q3J0V0R6OUNtNjF0c3hjMDA2aFdFZlM2MWh4WQpzeFU4cTh3MUJzVmdvZFhFRFRqVG4y YjFRZzZ3ZUdoWWo3aDd6ak9rZXJ0Z04ra2xaUWVzWEF1NDM4UFpVUXdQZUxXMGwxQ2hyQWVvCmFT cVljOHg5NXdJUkFMaFlsWnBCSEFWNnJHRGlRUGJJLzRjaUs4R3JZVjdzd2NTZ05kNHpzRXdrek9E QTl6WWFRempnOXJQRFJMRlAKcUw5R1JiZ1lJVDdrTUZabkd6VnVEajBUb01CNEk0SllBb285aW5q dS9IZUk5Vnc1a0pzTnI0eVFVQ21OUFAxS0xWenQ5Sk1DQXdFQQpBYU9DQjI0d2dnZHFNQThHQTFV ZEV3RUIvd1FGTUFNQkFmOHdDd1lEVlIwUEJBUURBZ0VHTUlHNkJnbGdoa2dCaHZoQ0FRMEVnYXdX CmdhbFRkV0p2Y21ScGJtRjBaU0JEUVNCRFpYSjBhV1pwWTJGMFpTQnBjM04xWldRZ1lua2dkR2hs SUVGMWMwTkZVbFFnVW05dmRDQkQKUVNCbWIzSWdkR2hsSUVOQlZVUkpWQ0JRUzBrZ1VHbHNiM1Fn VUhKdmFtVmpkQzRnVEdsdGFYUmxaQ0JNYVdGaWFXeHBkSGt1SUZObApaU0JvZEhSd09pOHZjR3Rw TG5SbGMzUXVZWFZ6WTJWeWRDNXZjbWN1WVhVdmNtOXZkQzFqWVM5d2RXSXZjRzlzYVdONUxtaDBi V3d1Ck1FVUdDV0NHU0FHRytFSUJDQVE0Rmpab2RIUndPaTh2Y0d0cExuUmxjM1F1WVhWelkyVnlk QzV2Y21jdVlYVXZjbTl2ZEMxallTOXcKZFdJdmNHOXNhV041TG1oMGJXd3dPZ1lKWUlaSUFZYjRR Z0VDQkMwV0syaDBkSEE2THk5d2Eya3VkR1Z6ZEM1aGRYTmpaWEowTG05eQpaeTVoZFM5eWIyOTBM V05oTDNCMVlpOHdIUVlEVlIwT0JCWUVGRktsUGVBL3M4cjc2WnlSVWRKRSs2NmlQbFEvTUd3R0Ex VWRJd1JsCk1HT0FGSEZuSDdRLzdLT2xQTWtCaDlXZHZVOGVvVFR1b1Vpa1JqQkVNUXN3Q1FZRFZR UUdFd0pCVlRFUU1BNEdBMVVFQ2hNSFFYVnoKUTBWU1ZERWpNQ0VHQTFVRUF4TWFVR2xzYjNRZ1FY VnpRMFZTVkNCU2IyOTBJRU5CSUhZd0xqS0NBUUF3S1FZRFZSMFJCQ0l3SUlFZQpjR2xzYjNRdGJH VjJaV3d6TFdOaFFHRjFjMk5sY25RdWIzSm5MbUYxTUNjR0ExVWRFZ1FnTUI2QkhIQnBiRzkwTFhK dmIzUXRZMkZBCllYVnpZMlZ5ZEM1dmNtY3VZWFV3SmdZSllJWklBWWI0UWdFRUJCa1dGMk5uYVMx aWFXNHZZMmhsWTJ0allTMXlaWFl1Y0d3L01DUUcKQ1dDR1NBR0crRUlCQXdRWEZoVmpaMmt0WW1s dUwyTm9aV05yTFhKbGRpNXdiRDh3Z2dHSkJnTlZIUjhFZ2dHQU1JSUJmREEvb0QyZwpPNFk1YUhS MGNEb3ZMM0JyYVRFdWRHVnpkQzVoZFhOalpYSjBMbTl5Wnk1aGRTOXliMjkwTFdOaEwzQjFZaTlq Y213dlkyVnlkSE11ClkzSnNNRCtnUGFBN2hqbG9kSFJ3T2k4dmNHdHBNaTUwWlhOMExtRjFjMk5s Y25RdWIzSm5MbUYxTDNKdmIzUXRZMkV2Y0hWaUwyTnkKYkM5alpYSjBjeTVqY213d2U2QjVvSGVH ZFd4a1lYQTZMeTl3YTJreExuUmxjM1F1WVhWelkyVnlkQzV2Y21jdVlYVXZRMDQ5VUdscwpiM1Fs TWpCQmRYTkRSVkpVSlRJd1VtOXZkQ1V5TUVOQkpUSXdkakF1TWl4dlBVRjFjME5GVWxRc1l6MUJW VDlqWlhKMGFXWnBZMkYwClpWSmxkbTlqWVhScGIyNU1hWE4wTzJKcGJtRnllVEI3b0htZ2Q0WjFi R1JoY0RvdkwzQnJhVEl1ZEdWemRDNWhkWE5qWlhKMExtOXkKWnk1aGRTOURUajFRYVd4dmRDVXlN RUYxYzBORlVsUWxNakJTYjI5MEpUSXdRMEVsTWpCMk1DNHlMRzg5UVhWelEwVlNWQ3hqUFVGVgpQ Mk5sY25ScFptbGpZWFJsVW1WMmIyTmhkR2x2Ymt4cGMzUTdZbWx1WVhKNU1JSUNJZ1lJS3dZQkJR VUhBUUVFZ2dJVU1JSUNFREJLCkJnZ3JCZ0VGQlFjd0FvWSthSFIwY0RvdkwzQnJhVEV1ZEdWemRD NWhkWE5qWlhKMExtOXlaeTVoZFM5eWIyOTBMV05oTDNCMVlpOWoKWlhKMGN5OWpZUzFqWlhKMGN5 NXdOMkl3U2dZSUt3WUJCUVVITUFLR1BtaDBkSEE2THk5d2Eya3lMblJsYzNRdVlYVnpZMlZ5ZEM1 dgpjbWN1WVhVdmNtOXZkQzFqWVM5d2RXSXZZMlZ5ZEhNdlkyRXRZMlZ5ZEhNdWNEZGlNSHdHQ0Nz R0FRVUZCekFDaG5Cc1pHRndPaTh2CmNHdHBNUzUwWlhOMExtRjFjMk5sY25RdWIzSm5MbUYxTDBO T1BWQnBiRzkwSlRJd1FYVnpRMFZTVkNVeU1GSnZiM1FsTWpCRFFTVXkKTUhZd0xqSXNiejFCZFhO RFJWSlVMR005UVZVL1kzSnZjM05EWlhKMGFXWnBZMkYwWlZCaGFYSTdZbWx1WVhKNU1Id0dDQ3NH QVFVRgpCekFDaG5Cc1pHRndPaTh2Y0d0cE1pNTBaWE4wTG1GMWMyTmxjblF1YjNKbkxtRjFMME5P UFZCcGJHOTBKVEl3UVhWelEwVlNWQ1V5Ck1GSnZiM1FsTWpCRFFTVXlNSFl3TGpJc2J6MUJkWE5E UlZKVUxHTTlRVlUvWTNKdmMzTkRaWEowYVdacFkyRjBaVkJoYVhJN1ltbHUKWVhKNU1Ed0dDQ3NH QVFVRkJ6QUJoakJvZEhSd09pOHZjR3RwTVM1MFpYTjBMbUYxYzJObGNuUXViM0puTG1GMUwzSnZi M1F0WTJFdgpjSFZpTDI5amMzQXdQQVlJS3dZQkJRVUhNQUdHTUdoMGRIQTZMeTl3YTJreUxuUmxj M1F1WVhWelkyVnlkQzV2Y21jdVlYVXZjbTl2CmRDMWpZUzl3ZFdJdmIyTnpjRENDQVNZR0ExVWRJ QVNDQVIwd2dnRVpNSUlCRlFZUEt3WUJCQUdCcG13S0FRRUFBUUVBTUlJQkFEQkMKQmdnckJnRUZC UWNDQVJZMmFIUjBjRG92TDNCcmFTNTBaWE4wTG1GMWMyTmxjblF1YjNKbkxtRjFMM0p2YjNRdFky RXZjSFZpTDNCdgpiR2xqZVM1b2RHMXNNSUc1QmdnckJnRUZCUWNDQWpDQnJCcUJxVk4xWW05eVpH bHVZWFJsSUVOQklFTmxjblJwWm1sallYUmxJR2x6CmMzVmxaQ0JpZVNCMGFHVWdRWFZ6UTBWU1ZD QlNiMjkwSUVOQklHWnZjaUIwYUdVZ1EwRlZSRWxVSUZCTFNTQlFhV3h2ZENCUWNtOXEKWldOMExp Qk1hVzFwZEdWa0lFeHBZV0pwYkdsMGVTNGdVMlZsSUdoMGRIQTZMeTl3YTJrdWRHVnpkQzVoZFhO alpYSjBMbTl5Wnk1aApkUzl5YjI5MExXTmhMM0IxWWk5d2IyeHBZM2t1YUhSdGJDNHdEUVlKS29a SWh2Y05BUUVGQlFBRGdnRUJBS1RQazQ3bzRCSDRmclhxCmd1SnBDZWJZRXROcXpQYUFXaXpleDBo cDIzS2x5V1dlMlFyQ2RsL3QzYlREcm9JUzV3THhSUmxTL3J0OFhOVTZkbGlGdGNIT3hOcVIKdnFU Ni9Lb3g3QVQrYkxHM3FnMUZvcmVad1NDM0FGVUQ3OEliOWhxaUlhT1RWS1hPakFtSjBPTUE2Um0r WE1DdXpZUjh3YlhZblV4RgpYT3JYQnRjREdhZVExM3RPbXlZQlRZNE4zdER4Z0MvZ3VscW5qK1Vz cksrMkRWd28zcGdhZi9vejJXdEUrMXU4cCszdVZOVmEyektZCk92Q0dCdVo3Rkh5YmVoSmt3bHRZ c3lIbjhxREI2L1M4Mnk1MTEwYlFkdlVWdmdIZGJVellqNEphdWlnZWU1SkwvUEF3SUd1Y1lIdHEK RWtWdDEyMmVBWVRCNlFsYUhuOGRyOVU9CjwvZHM6WDUwOUNlcnRpZmljYXRlPgo8L2RzOlg1MDlE YXRhPgo8L2RzOktleUluZm8+PC9kczpTaWduYXR1cmU+PFN0YXR1cz48U3RhdHVzQ29kZSBWYWx1 ZT0ic2FtbHA6U3VjY2VzcyI+PC9TdGF0dXNDb2RlPjwvU3RhdHVzPjxBc3NlcnRpb24geG1sbnM9 InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjEuMDphc3NlcnRpb24iIEFzc2VydGlvbklEPSJfYzdl ODNjYTNiN2RhN2ExYTE5ZDBhZjljNTVkOWFmMmUiIElzc3VlSW5zdGFudD0iMjAwOC0xMC0xM1Qw MjowMjo1NS40MTRaIiBJc3N1ZXI9InVybjptYWNlOmZlZGVyYXRpb24ub3JnLmF1OnRlc3RmZWQ6 Y2FudGVyYnVyeS5hYy5ueiIgTWFqb3JWZXJzaW9uPSIxIiBNaW5vclZlcnNpb249IjEiPjxDb25k aXRpb25zIE5vdEJlZm9yZT0iMjAwOC0xMC0xM1QwMjowMjo1NS40MTRaIiBOb3RPbk9yQWZ0ZXI9 IjIwMDgtMTAtMTNUMDI6MDc6NTUuNDE0WiI+PEF1ZGllbmNlUmVzdHJpY3Rpb25Db25kaXRpb24+ PEF1ZGllbmNlPnVybjptYWNlOmZlZGVyYXRpb24ub3JnLmF1OmJlc3RncmlkLm9yZzwvQXVkaWVu Y2U+PEF1ZGllbmNlPnVybjptYWNlOmZlZGVyYXRpb24ub3JnLmF1OnRlc3RmZWQ8L0F1ZGllbmNl PjwvQXVkaWVuY2VSZXN0cmljdGlvbkNvbmRpdGlvbj48L0NvbmRpdGlvbnM+PEF1dGhlbnRpY2F0 aW9uU3RhdGVtZW50IEF1dGhlbnRpY2F0aW9uSW5zdGFudD0iMjAwOC0xMC0xM1QwMjowMjo1NS40 MTRaIiBBdXRoZW50aWNhdGlvbk1ldGhvZD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6MS4wOmFt OnVuc3BlY2lmaWVkIj48U3ViamVjdD48TmFtZUlkZW50aWZpZXIgRm9ybWF0PSJ1cm46bWFjZTpz aGliYm9sZXRoOjEuMDpuYW1lSWRlbnRpZmllciIgTmFtZVF1YWxpZmllcj0idXJuOm1hY2U6ZmVk ZXJhdGlvbi5vcmcuYXU6dGVzdGZlZDpjYW50ZXJidXJ5LmFjLm56Ij5fZGJmNGYyZmZjMjkzYWQ2 YjViNGU1ZjU5NTYxODlhOGM8L05hbWVJZGVudGlmaWVyPjxTdWJqZWN0Q29uZmlybWF0aW9uPjxD b25maXJtYXRpb25NZXRob2Q+dXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6MS4wOmNtOmJlYXJlcjwv Q29uZmlybWF0aW9uTWV0aG9kPjwvU3ViamVjdENvbmZpcm1hdGlvbj48L1N1YmplY3Q+PFN1Ympl Y3RMb2NhbGl0eSBJUEFkZHJlc3M9IjEzMi4xODEuNC4xMzIiPjwvU3ViamVjdExvY2FsaXR5Pjwv QXV0aGVudGljYXRpb25TdGF0ZW1lbnQ+PC9Bc3NlcnRpb24+PC9SZXNwb25zZT4= " /> <input type="submit" value="Continue" /> </form>
[edit] Base 64 decoded SAMLResponse
After decoding the SAMLResponse value with base64 -d (and some manual pretty-printing)
<Response xmlns="urn:oasis:names:tc:SAML:1.0:protocol"
xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion"
xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
IssueInstant="2008-10-13T02:02:55.415Z"
MajorVersion="1"
MinorVersion="1"
Recipient="https://www.bestgrid.org/Shibboleth.sso/SAML/POST"
ResponseID="_a1be3277cd27e569b70b48d132298087">
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<ds:SignedInfo>
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"></ds:CanonicalizationMethod>
<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"></ds:SignatureMethod>
<ds:Reference URI="#_a1be3277cd27e569b70b48d132298087">
<ds:Transforms>
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"></ds:Transform>
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="code ds kind rw saml samlp typens #default xsd xsi"></ec:InclusiveNamespaces>
</ds:Transform>
</ds:Transforms>
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"></ds:DigestMethod>
<ds:DigestValue>otKwS2tS6ajZK41FlOJF/UEeqZ8=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>
Nc17iLr2RPVatke+N0EJpkQgW8zxdTXW6t360Vy4iat4inFaLc7MesjTuhdO7ay8nOvScpDj1V6n
vIUOmz+47Ln8k50flPJh2HXp3i2biEDoBY4ei/eS/rqyIYN1zvjGi/VZuQQiV8Ud3FfAr//KLteS
SbY2TgOSTLd9ObVBFvRSUBUcS9BWR9xZvgj9U+L/PX/2lGy9b063pZrHh91OIa9CDsoNQ6hJP+lH
yKnBMP58b1PEwtmk7iJK+W2zlvLu0mLndMzDFPYMUHaEq11o6KnoFBb+1YitCBGxkOOBiQyggMCJ
6DTiaWdR0GFWsVC36vTqR83Xcm7USildpT0mrA==
</ds:SignatureValue>
<ds:KeyInfo>
<ds:X509Data>
<ds:X509Certificate>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=
</ds:X509Certificate>
<ds:X509Certificate>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</ds:X509Certificate>
<ds:X509Certificate>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</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo></ds:Signature>
<Status><StatusCode Value="samlp:Success"></StatusCode></Status>
<Assertion xmlns="urn:oasis:names:tc:SAML:1.0:assertion" AssertionID="_c7e83ca3b7da7a1a19d0af9c55d9af2e"
IssueInstant="2008-10-13T02:02:55.414Z" Issuer="urn:mace:federation.org.au:testfed:canterbury.ac.nz" MajorVersion="1" MinorVersion="1">
<Conditions NotBefore="2008-10-13T02:02:55.414Z" NotOnOrAfter="2008-10-13T02:07:55.414Z">
<AudienceRestrictionCondition>
<Audience>urn:mace:federation.org.au:bestgrid.org</Audience>
<Audience>urn:mace:federation.org.au:testfed</Audience>
</AudienceRestrictionCondition>
</Conditions>
<AuthenticationStatement AuthenticationInstant="2008-10-13T02:02:55.414Z" AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:unspecified">
<Subject>
<NameIdentifier Format="urn:mace:shibboleth:1.0:nameIdentifier"
NameQualifier="urn:mace:federation.org.au:testfed:canterbury.ac.nz">_dbf4f2ffc293ad6b5b4e5f5956189a8c</NameIdentifier>
<SubjectConfirmation><ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer</ConfirmationMethod></SubjectConfirmation>
</Subject>
<SubjectLocality IPAddress="132.181.4.132"></SubjectLocality>
</AuthenticationStatement>
</Assertion>
</Response>
[edit] Links
- Autralian Access Federation: http://www.aaf.edu.au/
- (Documents, Attribute Recommendations)
- MAMS Testbed Federation: http://www.federation.org.au/
- Federation registration, wiki+howtos
- Shibboleth project: http://shibboleth.internet2.edu/
- Shibboleth software
