--
You received this message because you are subscribed to the Google Groups "SimpleSAMLphp" group.
To unsubscribe from this group and stop receiving emails from it, send an email to simplesamlph...@googlegroups.com.
To post to this group, send email to simple...@googlegroups.com.
Visit this group at http://groups.google.com/group/simplesamlphp.
For more options, visit https://groups.google.com/d/optout.
I'm brand new to SAML 2.0 and simpleSAMLphp but I thought I had it all figured out because I've provided the XML exactly as they have requested. I'm being told that it does not validate. If someone could help me with this I would greatly appreciate it.This is the document that is being sent to the SP. Can someone tell me how I can validate this or help me understand why it is not validating?<?xml version="1.0" encoding="UTF-8"?><samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://den-signoff09.whitedout.com/sessions/assertion_consumer_service" ID="_8bfe87b2d9324c08761f514748a6cff56882000516" IssueInstant="2015-11-10T14:00:46Z" Version="2.0"><saml:Issuer>https://den-signoff09.whitedout.com/sessions/assertion_consumer_service</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/></samlp:Status><saml:Assertion xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="_bed29332b96243f30796107ee826cf7c3bc735216a" IssueInstant="2015-11-10T14:00:46Z" Version="2.0"><saml:Issuer>https://den-signoff09.whitedout.com/sessions/assertion_consumer_service</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/><ds:Reference URI="#_bed29332b96243f30796107ee826cf7c3bc735216a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LvGrytBUNawUj64Irctwm0rs4Lo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Rbk8eEmkcvgL5azqn8Jlm5ZMGy0V3xdLWbcZCkMDcsik9FNb230YJpntjNwJZ1SYYkmTrsu3qT46vbEw6ZSTX/VW090fIqSp6QoOo1+NxQ2di48Fi7MVVXgqGjE3MQzHuIZwLXYDNY0NoQ3jHsq8lhvPEjtIXnmDKLVcDC6XtmhjUsWttZTtHUdbc+Jsbbu5aOsRNX0GW5Uue9UgyJuMuCg7gBJOZPhgokzxG/ZenelIJ73tWeS2i0nzMwDPnjm/3Bb9vmRpk2XJdtJV12XjoUuSybVjO3atsSXycq3VVD7roiqx8x9SHk32GDlnfRoBnJkN+nVyc7rrPXrvCNzJuw==</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="den-signoff09.whitedout.com:saml2.0">_9d6e7acad08753bbe0701175ee34b0fa77ccc69616</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData NotOnOrAfter="2015-11-10T14:05:46Z" Recipient="https://den-signoff09.whitedout.com/sessions/assertion_consumer_service"/></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2015-11-10T14:00:16Z" NotOnOrAfter="2015-11-10T14:05:46Z"><saml:AudienceRestriction><saml:Audience>den-signoff09.whitedout.com:saml2.0</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2015-11-10T14:00:46Z" SessionIndex="_aa23865583499b6a1c934e21f0388cd304bc08b722" SessionNotOnOrAfter="2015-11-10T22:00:46Z"><saml:AuthnContext><saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef></saml:AuthnContext></saml:AuthnStatement><saml:AttributeStatement><saml:Attribute Name="CLIENTID" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"><saml:AttributeValue xsi:type="xs:string">dXByZWhz</saml:AttributeValue></saml:Attribute><saml:Attribute Name="FIRSTNAME" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"><saml:AttributeValue xsi:type="xs:string">RnJlZA==</saml:AttributeValue></saml:Attribute><saml:Attribute Name="LASTNAME" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"><saml:AttributeValue xsi:type="xs:string">RmxpbnRzdG9uZQ==</saml:AttributeValue></saml:Attribute><saml:Attribute Name="DATEOFBIRTH" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"><saml:AttributeValue xsi:type="xs:string">MTk2MDAyMjg=</saml:AttributeValue></saml:Attribute><saml:Attribute Name="ZIPCODE" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"><saml:AttributeValue xsi:type="xs:string">ODQxMTY=</saml:AttributeValue></saml:Attribute><saml:Attribute Name="GUID" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"><saml:AttributeValue xsi:type="xs:string">VFNUOTk5OTk5OTk5</saml:AttributeValue></saml:Attribute><saml:Attribute Name="preferredLanguage" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic"><saml:AttributeValue xsi:type="xs:string">ZW4=</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>