adal 1.0.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (98) hide show
  1. checksums.yaml +7 -0
  2. data/.gitignore +5 -0
  3. data/.rubocop.yml +7 -0
  4. data/.travis.yml +7 -0
  5. data/Gemfile +25 -0
  6. data/LICENSE.txt +21 -0
  7. data/README.md +97 -0
  8. data/Rakefile +39 -0
  9. data/adal.gemspec +52 -0
  10. data/contributing.md +127 -0
  11. data/lib/adal.rb +24 -0
  12. data/lib/adal/authentication_context.rb +202 -0
  13. data/lib/adal/authentication_parameters.rb +126 -0
  14. data/lib/adal/authority.rb +165 -0
  15. data/lib/adal/cache_driver.rb +171 -0
  16. data/lib/adal/cached_token_response.rb +190 -0
  17. data/lib/adal/client_assertion.rb +63 -0
  18. data/lib/adal/client_assertion_certificate.rb +89 -0
  19. data/lib/adal/client_credential.rb +46 -0
  20. data/lib/adal/core_ext.rb +26 -0
  21. data/lib/adal/core_ext/hash.rb +34 -0
  22. data/lib/adal/jwt_parameters.rb +39 -0
  23. data/lib/adal/logger.rb +90 -0
  24. data/lib/adal/logging.rb +98 -0
  25. data/lib/adal/memory_cache.rb +95 -0
  26. data/lib/adal/mex_request.rb +52 -0
  27. data/lib/adal/mex_response.rb +141 -0
  28. data/lib/adal/noop_cache.rb +38 -0
  29. data/lib/adal/oauth_request.rb +76 -0
  30. data/lib/adal/request_parameters.rb +48 -0
  31. data/lib/adal/self_signed_jwt_factory.rb +96 -0
  32. data/lib/adal/templates/rst.13.xml.erb +35 -0
  33. data/lib/adal/templates/rst.2005.xml.erb +32 -0
  34. data/lib/adal/token_request.rb +231 -0
  35. data/lib/adal/token_response.rb +144 -0
  36. data/lib/adal/user_assertion.rb +57 -0
  37. data/lib/adal/user_credential.rb +152 -0
  38. data/lib/adal/user_identifier.rb +83 -0
  39. data/lib/adal/user_information.rb +49 -0
  40. data/lib/adal/util.rb +49 -0
  41. data/lib/adal/version.rb +36 -0
  42. data/lib/adal/wstrust_request.rb +100 -0
  43. data/lib/adal/wstrust_response.rb +168 -0
  44. data/lib/adal/xml_namespaces.rb +64 -0
  45. data/samples/authorization_code_example/README.md +10 -0
  46. data/samples/authorization_code_example/web_app.rb +139 -0
  47. data/samples/client_assertion_certificate_example/README.md +42 -0
  48. data/samples/client_assertion_certificate_example/app.rb +55 -0
  49. data/samples/on_behalf_of_example/README.md +35 -0
  50. data/samples/on_behalf_of_example/native_app.rb +52 -0
  51. data/samples/on_behalf_of_example/web_api.rb +71 -0
  52. data/samples/user_credentials_example/README.md +7 -0
  53. data/samples/user_credentials_example/app.rb +52 -0
  54. data/spec/adal/authentication_context_spec.rb +186 -0
  55. data/spec/adal/authentication_parameters_spec.rb +107 -0
  56. data/spec/adal/authority_spec.rb +122 -0
  57. data/spec/adal/cache_driver_spec.rb +191 -0
  58. data/spec/adal/cached_token_response_spec.rb +148 -0
  59. data/spec/adal/client_assertion_certificate_spec.rb +113 -0
  60. data/spec/adal/client_assertion_spec.rb +38 -0
  61. data/spec/adal/core_ext/hash_spec.rb +47 -0
  62. data/spec/adal/logging_spec.rb +48 -0
  63. data/spec/adal/memory_cache_spec.rb +107 -0
  64. data/spec/adal/mex_request_spec.rb +57 -0
  65. data/spec/adal/mex_response_spec.rb +143 -0
  66. data/spec/adal/self_signed_jwt_factory_spec.rb +63 -0
  67. data/spec/adal/token_request_spec.rb +150 -0
  68. data/spec/adal/token_response_spec.rb +102 -0
  69. data/spec/adal/user_credential_spec.rb +125 -0
  70. data/spec/adal/user_identifier_spec.rb +115 -0
  71. data/spec/adal/wstrust_request_spec.rb +51 -0
  72. data/spec/adal/wstrust_response_spec.rb +152 -0
  73. data/spec/fixtures/mex/insecureaddress.xml +924 -0
  74. data/spec/fixtures/mex/invalid_namespaces.xml +916 -0
  75. data/spec/fixtures/mex/malformed.xml +914 -0
  76. data/spec/fixtures/mex/microsoft.xml +916 -0
  77. data/spec/fixtures/mex/multiple_endpoints.xml +922 -0
  78. data/spec/fixtures/mex/no_matching_bindings.xml +916 -0
  79. data/spec/fixtures/mex/no_username_token_policies.xml +914 -0
  80. data/spec/fixtures/mex/no_wstrust_endpoints.xml +838 -0
  81. data/spec/fixtures/mex/only_13.xml +842 -0
  82. data/spec/fixtures/mex/only_2005.xml +842 -0
  83. data/spec/fixtures/oauth/error.json +1 -0
  84. data/spec/fixtures/oauth/success.json +1 -0
  85. data/spec/fixtures/oauth/success_with_id_token.json +1 -0
  86. data/spec/fixtures/wstrust/error.xml +24 -0
  87. data/spec/fixtures/wstrust/invalid_namespaces.xml +136 -0
  88. data/spec/fixtures/wstrust/missing_security_tokens.xml +90 -0
  89. data/spec/fixtures/wstrust/success.xml +136 -0
  90. data/spec/fixtures/wstrust/token.xml +1 -0
  91. data/spec/fixtures/wstrust/too_many_security_tokens.xml +219 -0
  92. data/spec/fixtures/wstrust/unrecognized_token_type.xml +136 -0
  93. data/spec/fixtures/wstrust/wstrust.13.xml +1 -0
  94. data/spec/fixtures/wstrust/wstrust.2005.xml +89 -0
  95. data/spec/spec_helper.rb +53 -0
  96. data/spec/support/fake_data.rb +40 -0
  97. data/spec/support/fake_token_endpoint.rb +108 -0
  98. metadata +265 -0
@@ -0,0 +1 @@
1
+ {"error":"invalid_grant","error_description":"AADSTS70002: Error validating credentials. AADSTS50126: Invalid username or password\r\nTrace ID: 29bbd59a-664e-46ab-8c84-46eecf0cb89a\r\nCorrelation ID: 53532eb8-214a-4694-9bcf-dc51c29810a5\r\nTimestamp: 2015-07-09 22:11:48Z","error_codes":[70002,50126],"timestamp":"2015-07-09 22:11:48Z","trace_id":"92bbd59a-664e-46ab-8c84-46eecf0cb89a","correlation_id":"54532eb8-214a-4694-9bcf-dc51c29810a5","submit_url":null,"context":null}
@@ -0,0 +1 @@
1
+ {"expires_in":"3599","token_type":"Bearer","scope":"Calendars.Read Calendars.ReadWrite Directory.AccessAsUser.All Directory.Read Directory.Read.All Directory.ReadWrite.All Directory.Write Files.Read Files.Read.Selected Files.ReadWrite Files.ReadWrite.Selected Group.Read.All Group.ReadWrite.All Mail.Read Mail.ReadWrite Mail.Send offline_access openid recipient.manage Sites.Read.All Sites.ReadWrite.All Tasks.Read.All Tasks.ReadWrite.All User.Read User.Read.All User.ReadBasic.All User.ReadWrite User.ReadWrite.All user_impersonation UserProfile.Read","expires_on":"1436483416","not_before":"1436479516","resource":"https://graph.windows.net","access_token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Ik1uQ19WWmNBVGZNNXBPWWlKSE1iYTlnb0VLWSIsImtpZCI6Ik1uQ19WWmNBVGZNNXBPWWlKSE1iYTlnb0VWLSJ9.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.OCMNnlxh9KGWFcuUXvDLfamAAzVFjN7rWG3n6zcZXUNiNwRoLLttPxKvWAya_sz_qo3B8r6zlP-nb2gaXyQskJ5hJU3ddyo2fkUEwyj3jbs5ZcCTGq0guq2vK-8u-ue4BYsRfNvqCSaAwwKhgkU1rehtJr0Je9wSFA8QKXUeFNpzfGMqDHkpqZbqpeG3jUgqrnx3mj7KQjJfQoBASRjHeu0LdV7z5PTtuTitaUnxF8CLXkNup5kO22WRBu2iMGTtZhJ-87lvKGiVewWTd9iraWD8qc8FnFIw0givTNRCAo0_1XUz2ctJVuQUBiIuHq7nNAnkmStKgNs6tHOAeGVONQ","refresh_token":"AAABAAAAiL9Kn2Z27UubvWFPbm0gLQ4W9_efb2mUc9TlA7vSiuqu3drE5RTL-8l7x54O4vIYoOB6WiXF5DeQvURMjyQnlXs7AeRn9QmEkIdAJaCPMsboQCY3NCoHWNHumKPNXK3-AeB4HASaQp8ratyWYtjDiG9JXZvOEJfteGn62SMM1ujTyTmfIHQxe0MgYfDmgzdLS0Elfrxbt4zydKgMpT4I1YpxHD-cWsx-5CbmZtbqvhsUEFtUvTOd9ig0mp3lGpmyxOdCoVGlw667VLtNjZ6dnNu9xC3wf3ZrZAuR7tL9Xsn5aXfAB8mXwDueXKFbuk7A-QxXfwYiC9wi2e5MsRLt8KoF71kFVe2j26bis2ambtqeJUhuupFzP5K27e8B-4D5lZpAV0bt18Pa3Vj4wf8-KVqJmF1TjxP9P4_qRsXmc2uXrVA9VGqb-hxK2DgW1PmFZU3Eu_6oN2Z1lDROTGy9oRxJ8nP9DjeGzrY6hjomrsl3wtPAuKJ2bcu-ZE8Jic9HNCUAQjrynOvsbkWglr2AyqrU4mqu4dbB697O68Tuum2V0W5f6ZYp9zccARR_I9mcIAA"}
@@ -0,0 +1 @@
1
+ {"expires_in":"3599","token_type":"Bearer","scope":"Calendars.Read Calendars.ReadWrite Directory.AccessAsUser.All Directory.Read Directory.Read.All Directory.ReadWrite.All Directory.Write Files.Read Files.Read.Selected Files.ReadWrite Files.ReadWrite.Selected Group.Read.All Group.ReadWrite.All Mail.Read Mail.ReadWrite Mail.Send offline_access openid recipient.manage Sites.Read.All Sites.ReadWrite.All Tasks.Read.All Tasks.ReadWrite.All User.Read User.Read.All User.ReadBasic.All User.ReadWrite User.ReadWrite.All user_impersonation UserProfile.Read","expires_on":"1437537157","not_before":"1437533257","resource":"https://graph.windows.net","access_token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsIng1dCI6Ik1uQ19WWmNBVGZNNXBPWWlKSE1iYTlnb0VLWSIsImtpZCI6Ik1uQ19WWmNBVGZNNXBPWWlKSE1iYTlnb0VLWSJ9.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.js2r2-zmLVmHN9I-jRSTwzjXTxndlOrAv4FBekxrhtyghq_dml56okN3i4qC7MyOW_MiuXz4lTbNNDMZKwsC6Lg7tZBogfXj0wBIKI5BuM-x82E4-dDQ34PkNwaLs4X6HsTcqB_0cyDDL7j0QEnnSvkD5gZs35KhpXt_xkmlMG3d5w9ht54aOhGoLVHA5Kqr88-za9j41QpcRXqNESJN5UKvQP--l8Dty3pXzFaLPfHHJ3weQ8-9t7hNgYD-Knpn7J11xoW_WhLwdzZvXCM5P33sycvFvHcSheL47BsKip5w5QSSG0MbiFSpahW08Lb66iAxWseKz8BEon95szdN9w","refresh_token":"AAABAAAAiL9Kn2Z27UubvWFPbm0gLdRUkuB5MisMJPvgvcVrwu8dLv4PzCwxHqo-wV6rRz__od9BQGzBIEthNm9tZb65Gqxv2C9msJ26rNQRH7LAi4T7WSj1rZs1CrUgoH5SZdZE9EYWPnUcptz2B6-kvcc-dO744czVUKbIUCZslT65PxOllRjpd7aXCXfWCcQG4cR1MHg26QrPZYZskNwKnEGNKCc9PB8PoaHQmuoBHrf8GQbpLQ6mcyajyESWUday9FaY4nOCtRLdIiLPGVYuYzaxkj0AFy7hq6FUgJQVlJeWPddmvd1Y-hJUMX8MeV4r08ZfQ6Gj2saW4AbTMmm-KEqw8S-dw8Kr05_YhOHKW32rrFYR5hSouJXM_SleCLV9SGRTBisT4LxvzB-GdE502nQg2canmCsfYL5hHWhF-hIIyEPQksXQ8r2WZPAL8D0NEnesU7ng_FYrWEfZYQ1UhE7GY9Fce-qd0-zKvA9ifq0k8PIfNe8PvWNcJ9BOmr2IGLUcVyBA8AHeX8XffJYfYuFOTQw6Xz0i1r_Po1K7D0c23sZvPj2mArqDxte-xEY9SGitPd8FW4cn0XwIdRhLLBXwASAA","id_token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJub25lIiwia2lkIjpudWxsfQ.eyJhdWQiOiJkMDY0NDU4NC02MWRlLTRiY2EtOThhYi1lNzVhZjBmZjU1MjgiLCJpc3MiOiJodHRwczovL3N0cy53aW5kb3dzLm5ldC9kZGY3MzNiNi00YWMxLTQzYWMtYTNlZC1iZTc3YzEyOWUwZjgvIiwiaWF0IjoxNDM3NTMzMjU3LCJuYmYiOjE0Mzc1MzMyNTcsImV4cCI6MTE0Mzc1MzcxNTcsInZlciI6IjEuMCIsInRpZCI6ImRkZjczM2I2LTRhYzEtNDNhYy1hM2VkLWJlNzdjMTI5ZTBmOCIsIm9pZCI6ImUwMDlkOGQ2LTcxODAtNDc4Ni04ZDEwLWM2ZjFlYzM0OTc2YyIsInVwbiI6ImFhcm9uQGFqbWljaGFlbC5uZXQiLCJzdWIiOiJYUG9ELUc1cHlhU1V5eVRDQ29ka2xXeFU4dzV1ZnplcVVtMFpFYndnZ0prIiwiZ2l2ZW5fbmFtZSI6IkFhcm9uIiwiZmFtaWx5X25hbWUiOiJNaWNoYWVsIiwibmFtZSI6IkFhcm9uIE1pY2hhZWwiLCJhbXIiOlsicHdkIl0sInVuaXF1ZV9uYW1lIjoiYWFyb25AYWptaWNoYWVsLm5ldCIsIm9ucHJlbV9zaWQiOiJTLTEtNS0yMS05NTEwOTU5MzQtMzAwMTA0Mjg2My00MDA0MTY3MzQ3LTExMDYifQ."}
@@ -0,0 +1,24 @@
1
+ <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing" xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
2
+ <s:Header>
3
+ <a:Action s:mustUnderstand="1">http://www.w3.org/2005/08/addressing/soap/fault</a:Action>
4
+ <o:Security s:mustUnderstand="1" xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
5
+ <u:Timestamp u:Id="_0">
6
+ <u:Created>2013-07-30T00:32:21.989Z</u:Created>
7
+ <u:Expires>2013-07-30T00:37:21.989Z</u:Expires>
8
+ </u:Timestamp>
9
+ </o:Security>
10
+ </s:Header>
11
+ <s:Body>
12
+ <s:Fault>
13
+ <s:Code>
14
+ <s:Value>s:Sender</s:Value>
15
+ <s:Subcode>
16
+ <s:Value xmlns:a="http://docs.oasis-open.org/ws-sx/ws-trust/200512">a:RequestFailed</s:Value>
17
+ </s:Subcode>
18
+ </s:Code>
19
+ <s:Reason>
20
+ <s:Text xml:lang="en-US">MSIS3127: The specified request failed.</s:Text>
21
+ </s:Reason>
22
+ </s:Fault>
23
+ </s:Body>
24
+ </s:Envelope>
@@ -0,0 +1,136 @@
1
+ <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
2
+ xmlns:a="http://www.w3.org/2005/08/addressing"
3
+ xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
4
+ <s:Header>
5
+ <a:Action s:mustUnderstand="1">http://docs.oasis-open.org/ws-sx/ws-trust/200512/RSTRC/IssueFinal</a:Action>
6
+ <o:Security s:mustUnderstand="1"
7
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
8
+ <u:Timestamp u:Id="_0">
9
+ <u:Created>2014-10-11T01:57:52.927Z</u:Created>
10
+ <u:Expires>2014-10-11T02:02:52.927Z</u:Expires>
11
+ </u:Timestamp>
12
+ </o:Security>
13
+ </s:Header>
14
+ <s:Body>
15
+ <trust:RequestSecurityTokenResponseCollection
16
+ xmlns:trust="http://somemaliciousprotocol.net">
17
+ <trust:RequestSecurityTokenResponse>
18
+ <trust:Lifetime>
19
+ <wsu:Created
20
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T01:57:52.802Z</wsu:Created>
21
+ <wsu:Expires
22
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T02:57:52.802Z</wsu:Expires>
23
+ </trust:Lifetime>
24
+ <wsp:AppliesTo xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
25
+ <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
26
+ <wsa:Address>urn:federation:MicrosoftOnline</wsa:Address>
27
+ </wsa:EndpointReference>
28
+ </wsp:AppliesTo>
29
+ <trust:RequestedSecurityToken>
30
+ <saml:Assertion MajorVersion="1" MinorVersion="1"
31
+ AssertionID="_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e" Issuer="urn:federation:MSFT"
32
+ IssueInstant="2014-10-11T01:57:52.927Z" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion">
33
+ <saml:Conditions NotBefore="2014-10-11T01:57:52.802Z"
34
+ NotOnOrAfter="2014-10-11T02:57:52.802Z">
35
+ <saml:AudienceRestrictionCondition>
36
+ <saml:Audience>urn:federation:MicrosoftOnline</saml:Audience>
37
+ </saml:AudienceRestrictionCondition>
38
+ </saml:Conditions>
39
+ <saml:AttributeStatement>
40
+ <saml:Subject>
41
+ <saml:NameIdentifier
42
+ Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier>
43
+ <saml:SubjectConfirmation>
44
+ <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer
45
+ </saml:ConfirmationMethod>
46
+ </saml:SubjectConfirmation>
47
+ </saml:Subject>
48
+ <saml:Attribute AttributeName="UPN"
49
+ AttributeNamespace="http://schemas.xmlsoap.org/claims">
50
+ <saml:AttributeValue>sdfb4@vsfdbs.com</saml:AttributeValue>
51
+ </saml:Attribute>
52
+ <saml:Attribute AttributeName="objectGUID"
53
+ AttributeNamespace="http://tempuri.com">
54
+ <saml:AttributeValue>sefgbw4w4tbwrtb==
55
+ </saml:AttributeValue>
56
+ </saml:Attribute>
57
+ <saml:Attribute AttributeName="PersonnelNumber"
58
+ AttributeNamespace="http://schemas.xmlsoap.org/claims">
59
+ <saml:AttributeValue>11111</saml:AttributeValue>
60
+ </saml:Attribute>
61
+ <saml:Attribute AttributeName="ImmutableID"
62
+ AttributeNamespace="http://schemas.microsoft.com/LiveID/Federation/2008/05">
63
+ <saml:AttributeValue>11111</saml:AttributeValue>
64
+ </saml:Attribute>
65
+ <saml:Attribute AttributeName="insidecorporatenetwork"
66
+ AttributeNamespace="http://schemas.microsoft.com/ws/2012/01">
67
+ <saml:AttributeValue>true</saml:AttributeValue>
68
+ </saml:Attribute>
69
+ <saml:Attribute AttributeName="psso"
70
+ AttributeNamespace="http://schemas.microsoft.com/2014/03">
71
+ <saml:AttributeValue>true</saml:AttributeValue>
72
+ </saml:Attribute>
73
+ </saml:AttributeStatement>
74
+ <saml:AuthenticationStatement
75
+ AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password"
76
+ AuthenticationInstant="2014-10-11T01:57:52.786Z">
77
+ <saml:Subject>
78
+ <saml:NameIdentifier
79
+ Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier>
80
+ <saml:SubjectConfirmation>
81
+ <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer
82
+ </saml:ConfirmationMethod>
83
+ </saml:SubjectConfirmation>
84
+ </saml:Subject>
85
+ </saml:AuthenticationStatement>
86
+ <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
87
+ <ds:SignedInfo>
88
+ <ds:CanonicalizationMethod
89
+ Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
90
+ <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
91
+ <ds:Reference URI="#_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e">
92
+ <ds:Transforms>
93
+ <ds:Transform
94
+ Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
95
+ <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
96
+ </ds:Transforms>
97
+ <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
98
+ <ds:DigestValue>11112412434fgvwefb24rb=</ds:DigestValue>
99
+ </ds:Reference>
100
+ </ds:SignedInfo>
101
+ <ds:SignatureValue>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
102
+ </ds:SignatureValue>
103
+ <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
104
+ <X509Data>
105
+ <X509Certificate>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
106
+ </X509Certificate>
107
+ </X509Data>
108
+ </KeyInfo>
109
+ </ds:Signature>
110
+ </saml:Assertion>
111
+ </trust:RequestedSecurityToken>
112
+ <trust:RequestedAttachedReference>
113
+ <o:SecurityTokenReference
114
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
115
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
116
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
117
+ <o:KeyIdentifier
118
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
119
+ </o:SecurityTokenReference>
120
+ </trust:RequestedAttachedReference>
121
+ <trust:RequestedUnattachedReference>
122
+ <o:SecurityTokenReference
123
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
124
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
125
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
126
+ <o:KeyIdentifier
127
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
128
+ </o:SecurityTokenReference>
129
+ </trust:RequestedUnattachedReference>
130
+ <trust:TokenType>urn:oasis:names:tc:SAML:1.0:assertion</trust:TokenType>
131
+ <trust:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</trust:RequestType>
132
+ <trust:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Bearer</trust:KeyType>
133
+ </trust:RequestSecurityTokenResponse>
134
+ </trust:RequestSecurityTokenResponseCollection>
135
+ </s:Body>
136
+ </s:Envelope>
@@ -0,0 +1,90 @@
1
+ <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
2
+ xmlns:a="http://www.w3.org/2005/08/addressing"
3
+ xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
4
+ <s:Header>
5
+ <a:Action s:mustUnderstand="1">http://docs.oasis-open.org/ws-sx/ws-trust/200512/RSTRC/IssueFinal</a:Action>
6
+ <o:Security s:mustUnderstand="1"
7
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
8
+ <u:Timestamp u:Id="_0">
9
+ <u:Created>2014-10-11T01:57:52.927Z</u:Created>
10
+ <u:Expires>2014-10-11T02:02:52.927Z</u:Expires>
11
+ </u:Timestamp>
12
+ </o:Security>
13
+ </s:Header>
14
+ <s:Body>
15
+ <trust:RequestSecurityTokenResponseCollection
16
+ xmlns:trust="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
17
+ <trust:RequestSecurityTokenResponse>
18
+ <trust:Lifetime>
19
+ <wsu:Created
20
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T01:57:52.802Z</wsu:Created>
21
+ <wsu:Expires
22
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T02:57:52.802Z</wsu:Expires>
23
+ </trust:Lifetime>
24
+ <wsp:AppliesTo xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
25
+ <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
26
+ <wsa:Address>urn:federation:MicrosoftOnline</wsa:Address>
27
+ </wsa:EndpointReference>
28
+ </wsp:AppliesTo>
29
+ <trust:RequestedAttachedReference>
30
+ <o:SecurityTokenReference
31
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
32
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
33
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
34
+ <o:KeyIdentifier
35
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
36
+ </o:SecurityTokenReference>
37
+ </trust:RequestedAttachedReference>
38
+ <trust:RequestedUnattachedReference>
39
+ <o:SecurityTokenReference
40
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
41
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
42
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
43
+ <o:KeyIdentifier
44
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
45
+ </o:SecurityTokenReference>
46
+ </trust:RequestedUnattachedReference>
47
+ <trust:TokenType>urn:oasis:names:tc:SAML:1.0:assertion</trust:TokenType>
48
+ <trust:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</trust:RequestType>
49
+ <trust:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Bearer</trust:KeyType>
50
+ </trust:RequestSecurityTokenResponse>
51
+ <trust:RequestSecurityTokenResponse>
52
+ <trust:Lifetime>
53
+ <wsu:Created
54
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T01:57:52.802Z</wsu:Created>
55
+ <wsu:Expires
56
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T02:57:52.802Z</wsu:Expires>
57
+ </trust:Lifetime>
58
+ <wsp:AppliesTo xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
59
+ <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
60
+ <wsa:Address>urn:federation:MicrosoftOnline</wsa:Address>
61
+ </wsa:EndpointReference>
62
+ </wsp:AppliesTo>
63
+ <trust:RequestedSecurityToken>
64
+ <foo:Assertion xmlns:foo="bar"></foo:Assertion>
65
+ </trust:RequestedSecurityToken>
66
+ <trust:RequestedAttachedReference>
67
+ <o:SecurityTokenReference
68
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
69
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
70
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
71
+ <o:KeyIdentifier
72
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
73
+ </o:SecurityTokenReference>
74
+ </trust:RequestedAttachedReference>
75
+ <trust:RequestedUnattachedReference>
76
+ <o:SecurityTokenReference
77
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
78
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
79
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
80
+ <o:KeyIdentifier
81
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
82
+ </o:SecurityTokenReference>
83
+ </trust:RequestedUnattachedReference>
84
+ <trust:TokenType>urn:oasis:names:tc:SAML:1.0:assertion</trust:TokenType>
85
+ <trust:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</trust:RequestType>
86
+ <trust:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Bearer</trust:KeyType>
87
+ </trust:RequestSecurityTokenResponse>
88
+ </trust:RequestSecurityTokenResponseCollection>
89
+ </s:Body>
90
+ </s:Envelope>
@@ -0,0 +1,136 @@
1
+ <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
2
+ xmlns:a="http://www.w3.org/2005/08/addressing"
3
+ xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
4
+ <s:Header>
5
+ <a:Action s:mustUnderstand="1">http://docs.oasis-open.org/ws-sx/ws-trust/200512/RSTRC/IssueFinal</a:Action>
6
+ <o:Security s:mustUnderstand="1"
7
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
8
+ <u:Timestamp u:Id="_0">
9
+ <u:Created>2014-10-11T01:57:52.927Z</u:Created>
10
+ <u:Expires>2014-10-11T02:02:52.927Z</u:Expires>
11
+ </u:Timestamp>
12
+ </o:Security>
13
+ </s:Header>
14
+ <s:Body>
15
+ <trust:RequestSecurityTokenResponseCollection
16
+ xmlns:trust="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
17
+ <trust:RequestSecurityTokenResponse>
18
+ <trust:Lifetime>
19
+ <wsu:Created
20
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T01:57:52.802Z</wsu:Created>
21
+ <wsu:Expires
22
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T02:57:52.802Z</wsu:Expires>
23
+ </trust:Lifetime>
24
+ <wsp:AppliesTo xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
25
+ <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
26
+ <wsa:Address>urn:federation:MicrosoftOnline</wsa:Address>
27
+ </wsa:EndpointReference>
28
+ </wsp:AppliesTo>
29
+ <trust:RequestedSecurityToken>
30
+ <saml:Assertion MajorVersion="1" MinorVersion="1"
31
+ AssertionID="_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e" Issuer="urn:federation:MSFT"
32
+ IssueInstant="2014-10-11T01:57:52.927Z" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion">
33
+ <saml:Conditions NotBefore="2014-10-11T01:57:52.802Z"
34
+ NotOnOrAfter="2014-10-11T02:57:52.802Z">
35
+ <saml:AudienceRestrictionCondition>
36
+ <saml:Audience>urn:federation:MicrosoftOnline</saml:Audience>
37
+ </saml:AudienceRestrictionCondition>
38
+ </saml:Conditions>
39
+ <saml:AttributeStatement>
40
+ <saml:Subject>
41
+ <saml:NameIdentifier
42
+ Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier>
43
+ <saml:SubjectConfirmation>
44
+ <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer
45
+ </saml:ConfirmationMethod>
46
+ </saml:SubjectConfirmation>
47
+ </saml:Subject>
48
+ <saml:Attribute AttributeName="UPN"
49
+ AttributeNamespace="http://schemas.xmlsoap.org/claims">
50
+ <saml:AttributeValue>sdfb4@vsfdbs.com</saml:AttributeValue>
51
+ </saml:Attribute>
52
+ <saml:Attribute AttributeName="objectGUID"
53
+ AttributeNamespace="http://tempuri.com">
54
+ <saml:AttributeValue>sefgbw4w4tbwrtb==
55
+ </saml:AttributeValue>
56
+ </saml:Attribute>
57
+ <saml:Attribute AttributeName="PersonnelNumber"
58
+ AttributeNamespace="http://schemas.xmlsoap.org/claims">
59
+ <saml:AttributeValue>11111</saml:AttributeValue>
60
+ </saml:Attribute>
61
+ <saml:Attribute AttributeName="ImmutableID"
62
+ AttributeNamespace="http://schemas.microsoft.com/LiveID/Federation/2008/05">
63
+ <saml:AttributeValue>11111</saml:AttributeValue>
64
+ </saml:Attribute>
65
+ <saml:Attribute AttributeName="insidecorporatenetwork"
66
+ AttributeNamespace="http://schemas.microsoft.com/ws/2012/01">
67
+ <saml:AttributeValue>true</saml:AttributeValue>
68
+ </saml:Attribute>
69
+ <saml:Attribute AttributeName="psso"
70
+ AttributeNamespace="http://schemas.microsoft.com/2014/03">
71
+ <saml:AttributeValue>true</saml:AttributeValue>
72
+ </saml:Attribute>
73
+ </saml:AttributeStatement>
74
+ <saml:AuthenticationStatement
75
+ AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password"
76
+ AuthenticationInstant="2014-10-11T01:57:52.786Z">
77
+ <saml:Subject>
78
+ <saml:NameIdentifier
79
+ Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier>
80
+ <saml:SubjectConfirmation>
81
+ <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer
82
+ </saml:ConfirmationMethod>
83
+ </saml:SubjectConfirmation>
84
+ </saml:Subject>
85
+ </saml:AuthenticationStatement>
86
+ <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
87
+ <ds:SignedInfo>
88
+ <ds:CanonicalizationMethod
89
+ Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
90
+ <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
91
+ <ds:Reference URI="#_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e">
92
+ <ds:Transforms>
93
+ <ds:Transform
94
+ Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
95
+ <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
96
+ </ds:Transforms>
97
+ <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
98
+ <ds:DigestValue>11112412434fgvwefb24rb=</ds:DigestValue>
99
+ </ds:Reference>
100
+ </ds:SignedInfo>
101
+ <ds:SignatureValue>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
102
+ </ds:SignatureValue>
103
+ <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
104
+ <X509Data>
105
+ <X509Certificate>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
106
+ </X509Certificate>
107
+ </X509Data>
108
+ </KeyInfo>
109
+ </ds:Signature>
110
+ </saml:Assertion>
111
+ </trust:RequestedSecurityToken>
112
+ <trust:RequestedAttachedReference>
113
+ <o:SecurityTokenReference
114
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
115
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
116
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
117
+ <o:KeyIdentifier
118
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
119
+ </o:SecurityTokenReference>
120
+ </trust:RequestedAttachedReference>
121
+ <trust:RequestedUnattachedReference>
122
+ <o:SecurityTokenReference
123
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
124
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
125
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
126
+ <o:KeyIdentifier
127
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
128
+ </o:SecurityTokenReference>
129
+ </trust:RequestedUnattachedReference>
130
+ <trust:TokenType>urn:oasis:names:tc:SAML:1.0:assertion</trust:TokenType>
131
+ <trust:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</trust:RequestType>
132
+ <trust:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Bearer</trust:KeyType>
133
+ </trust:RequestSecurityTokenResponse>
134
+ </trust:RequestSecurityTokenResponseCollection>
135
+ </s:Body>
136
+ </s:Envelope>
@@ -0,0 +1 @@
1
+ <saml:Assertion xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" MajorVersion="1" MinorVersion="1" AssertionID="_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e" Issuer="urn:federation:MSFT" IssueInstant="2014-10-11T01:57:52.927Z"><saml:Conditions NotBefore="2014-10-11T01:57:52.802Z" NotOnOrAfter="2014-10-11T02:57:52.802Z"><saml:AudienceRestrictionCondition><saml:Audience>urn:federation:MicrosoftOnline</saml:Audience></saml:AudienceRestrictionCondition></saml:Conditions><saml:AttributeStatement><saml:Subject><saml:NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier><saml:SubjectConfirmation><saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer</saml:ConfirmationMethod></saml:SubjectConfirmation></saml:Subject><saml:Attribute AttributeName="UPN" AttributeNamespace="http://schemas.xmlsoap.org/claims"><saml:AttributeValue>sdfb4@vsfdbs.com</saml:AttributeValue></saml:Attribute><saml:Attribute AttributeName="objectGUID" AttributeNamespace="http://tempuri.com"><saml:AttributeValue>sefgbw4w4tbwrtb==</saml:AttributeValue></saml:Attribute><saml:Attribute AttributeName="PersonnelNumber" AttributeNamespace="http://schemas.xmlsoap.org/claims"><saml:AttributeValue>11111</saml:AttributeValue></saml:Attribute><saml:Attribute AttributeName="ImmutableID" AttributeNamespace="http://schemas.microsoft.com/LiveID/Federation/2008/05"><saml:AttributeValue>11111</saml:AttributeValue></saml:Attribute><saml:Attribute AttributeName="insidecorporatenetwork" AttributeNamespace="http://schemas.microsoft.com/ws/2012/01"><saml:AttributeValue>true</saml:AttributeValue></saml:Attribute><saml:Attribute AttributeName="psso" AttributeNamespace="http://schemas.microsoft.com/2014/03"><saml:AttributeValue>true</saml:AttributeValue></saml:Attribute></saml:AttributeStatement><saml:AuthenticationStatement AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password" AuthenticationInstant="2014-10-11T01:57:52.786Z"><saml:Subject><saml:NameIdentifier Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier><saml:SubjectConfirmation><saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer</saml:ConfirmationMethod></saml:SubjectConfirmation></saml:Subject></saml:AuthenticationStatement><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/><ds:Reference URI="#_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>11112412434fgvwefb24rb=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>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</ds:SignatureValue><KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#"><X509Data><X509Certificate>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</X509Certificate></X509Data></KeyInfo></ds:Signature></saml:Assertion>
@@ -0,0 +1,219 @@
1
+ <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
2
+ xmlns:a="http://www.w3.org/2005/08/addressing"
3
+ xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
4
+ <s:Header>
5
+ <a:Action s:mustUnderstand="1">http://docs.oasis-open.org/ws-sx/ws-trust/200512/RSTRC/IssueFinal</a:Action>
6
+ <o:Security s:mustUnderstand="1"
7
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd">
8
+ <u:Timestamp u:Id="_0">
9
+ <u:Created>2014-10-11T01:57:52.927Z</u:Created>
10
+ <u:Expires>2014-10-11T02:02:52.927Z</u:Expires>
11
+ </u:Timestamp>
12
+ </o:Security>
13
+ </s:Header>
14
+ <s:Body>
15
+ <trust:RequestSecurityTokenResponseCollection
16
+ xmlns:trust="http://docs.oasis-open.org/ws-sx/ws-trust/200512">
17
+ <trust:RequestSecurityTokenResponse>
18
+ <trust:Lifetime>
19
+ <wsu:Created
20
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T01:57:52.802Z</wsu:Created>
21
+ <wsu:Expires
22
+ xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">2014-10-11T02:57:52.802Z</wsu:Expires>
23
+ </trust:Lifetime>
24
+ <wsp:AppliesTo xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
25
+ <wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
26
+ <wsa:Address>urn:federation:MicrosoftOnline</wsa:Address>
27
+ </wsa:EndpointReference>
28
+ </wsp:AppliesTo>
29
+ <trust:RequestedSecurityToken>
30
+ <saml:Assertion MajorVersion="1" MinorVersion="1"
31
+ AssertionID="_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e" Issuer="urn:federation:MSFT"
32
+ IssueInstant="2014-10-11T01:57:52.927Z" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion">
33
+ <saml:Conditions NotBefore="2014-10-11T01:57:52.802Z"
34
+ NotOnOrAfter="2014-10-11T02:57:52.802Z">
35
+ <saml:AudienceRestrictionCondition>
36
+ <saml:Audience>urn:federation:MicrosoftOnline</saml:Audience>
37
+ </saml:AudienceRestrictionCondition>
38
+ </saml:Conditions>
39
+ <saml:AttributeStatement>
40
+ <saml:Subject>
41
+ <saml:NameIdentifier
42
+ Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier>
43
+ <saml:SubjectConfirmation>
44
+ <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer
45
+ </saml:ConfirmationMethod>
46
+ </saml:SubjectConfirmation>
47
+ </saml:Subject>
48
+ <saml:Attribute AttributeName="UPN"
49
+ AttributeNamespace="http://schemas.xmlsoap.org/claims">
50
+ <saml:AttributeValue>sdfb4@vsfdbs.com</saml:AttributeValue>
51
+ </saml:Attribute>
52
+ <saml:Attribute AttributeName="objectGUID"
53
+ AttributeNamespace="http://tempuri.com">
54
+ <saml:AttributeValue>sefgbw4w4tbwrtb==
55
+ </saml:AttributeValue>
56
+ </saml:Attribute>
57
+ <saml:Attribute AttributeName="PersonnelNumber"
58
+ AttributeNamespace="http://schemas.xmlsoap.org/claims">
59
+ <saml:AttributeValue>11111</saml:AttributeValue>
60
+ </saml:Attribute>
61
+ <saml:Attribute AttributeName="ImmutableID"
62
+ AttributeNamespace="http://schemas.microsoft.com/LiveID/Federation/2008/05">
63
+ <saml:AttributeValue>11111</saml:AttributeValue>
64
+ </saml:Attribute>
65
+ <saml:Attribute AttributeName="insidecorporatenetwork"
66
+ AttributeNamespace="http://schemas.microsoft.com/ws/2012/01">
67
+ <saml:AttributeValue>true</saml:AttributeValue>
68
+ </saml:Attribute>
69
+ <saml:Attribute AttributeName="psso"
70
+ AttributeNamespace="http://schemas.microsoft.com/2014/03">
71
+ <saml:AttributeValue>true</saml:AttributeValue>
72
+ </saml:Attribute>
73
+ </saml:AttributeStatement>
74
+ <saml:AuthenticationStatement
75
+ AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password"
76
+ AuthenticationInstant="2014-10-11T01:57:52.786Z">
77
+ <saml:Subject>
78
+ <saml:NameIdentifier
79
+ Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier>
80
+ <saml:SubjectConfirmation>
81
+ <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer
82
+ </saml:ConfirmationMethod>
83
+ </saml:SubjectConfirmation>
84
+ </saml:Subject>
85
+ </saml:AuthenticationStatement>
86
+ <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
87
+ <ds:SignedInfo>
88
+ <ds:CanonicalizationMethod
89
+ Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
90
+ <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
91
+ <ds:Reference URI="#_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e">
92
+ <ds:Transforms>
93
+ <ds:Transform
94
+ Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
95
+ <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
96
+ </ds:Transforms>
97
+ <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
98
+ <ds:DigestValue>11112412434fgvwefb24rb=</ds:DigestValue>
99
+ </ds:Reference>
100
+ </ds:SignedInfo>
101
+ <ds:SignatureValue>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
102
+ </ds:SignatureValue>
103
+ <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
104
+ <X509Data>
105
+ <X509Certificate>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
106
+ </X509Certificate>
107
+ </X509Data>
108
+ </KeyInfo>
109
+ </ds:Signature>
110
+ </saml:Assertion>
111
+ </trust:RequestedSecurityToken>
112
+ <trust:RequestedSecurityToken>
113
+ <saml:Assertion MajorVersion="1" MinorVersion="1"
114
+ AssertionID="_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e" Issuer="urn:federation:MSFT"
115
+ IssueInstant="2014-10-11T01:57:52.927Z" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion">
116
+ <saml:Conditions NotBefore="2014-10-11T01:57:52.802Z"
117
+ NotOnOrAfter="2014-10-11T02:57:52.802Z">
118
+ <saml:AudienceRestrictionCondition>
119
+ <saml:Audience>urn:federation:MicrosoftOnline</saml:Audience>
120
+ </saml:AudienceRestrictionCondition>
121
+ </saml:Conditions>
122
+ <saml:AttributeStatement>
123
+ <saml:Subject>
124
+ <saml:NameIdentifier
125
+ Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier>
126
+ <saml:SubjectConfirmation>
127
+ <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer
128
+ </saml:ConfirmationMethod>
129
+ </saml:SubjectConfirmation>
130
+ </saml:Subject>
131
+ <saml:Attribute AttributeName="UPN"
132
+ AttributeNamespace="http://schemas.xmlsoap.org/claims">
133
+ <saml:AttributeValue>sdfb4@vsfdbs.com</saml:AttributeValue>
134
+ </saml:Attribute>
135
+ <saml:Attribute AttributeName="objectGUID"
136
+ AttributeNamespace="http://tempuri.com">
137
+ <saml:AttributeValue>sefgbw4w4tbwrtb==
138
+ </saml:AttributeValue>
139
+ </saml:Attribute>
140
+ <saml:Attribute AttributeName="PersonnelNumber"
141
+ AttributeNamespace="http://schemas.xmlsoap.org/claims">
142
+ <saml:AttributeValue>11111</saml:AttributeValue>
143
+ </saml:Attribute>
144
+ <saml:Attribute AttributeName="ImmutableID"
145
+ AttributeNamespace="http://schemas.microsoft.com/LiveID/Federation/2008/05">
146
+ <saml:AttributeValue>11111</saml:AttributeValue>
147
+ </saml:Attribute>
148
+ <saml:Attribute AttributeName="insidecorporatenetwork"
149
+ AttributeNamespace="http://schemas.microsoft.com/ws/2012/01">
150
+ <saml:AttributeValue>true</saml:AttributeValue>
151
+ </saml:Attribute>
152
+ <saml:Attribute AttributeName="psso"
153
+ AttributeNamespace="http://schemas.microsoft.com/2014/03">
154
+ <saml:AttributeValue>true</saml:AttributeValue>
155
+ </saml:Attribute>
156
+ </saml:AttributeStatement>
157
+ <saml:AuthenticationStatement
158
+ AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password"
159
+ AuthenticationInstant="2014-10-11T01:57:52.786Z">
160
+ <saml:Subject>
161
+ <saml:NameIdentifier
162
+ Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">11111</saml:NameIdentifier>
163
+ <saml:SubjectConfirmation>
164
+ <saml:ConfirmationMethod>urn:oasis:names:tc:SAML:1.0:cm:bearer
165
+ </saml:ConfirmationMethod>
166
+ </saml:SubjectConfirmation>
167
+ </saml:Subject>
168
+ </saml:AuthenticationStatement>
169
+ <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
170
+ <ds:SignedInfo>
171
+ <ds:CanonicalizationMethod
172
+ Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
173
+ <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
174
+ <ds:Reference URI="#_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e">
175
+ <ds:Transforms>
176
+ <ds:Transform
177
+ Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
178
+ <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
179
+ </ds:Transforms>
180
+ <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
181
+ <ds:DigestValue>11112412434fgvwefb24rb=</ds:DigestValue>
182
+ </ds:Reference>
183
+ </ds:SignedInfo>
184
+ <ds:SignatureValue>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
185
+ </ds:SignatureValue>
186
+ <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
187
+ <X509Data>
188
+ <X509Certificate>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
189
+ </X509Certificate>
190
+ </X509Data>
191
+ </KeyInfo>
192
+ </ds:Signature>
193
+ </saml:Assertion>
194
+ </trust:RequestedSecurityToken>
195
+ <trust:RequestedAttachedReference>
196
+ <o:SecurityTokenReference
197
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
198
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
199
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
200
+ <o:KeyIdentifier
201
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
202
+ </o:SecurityTokenReference>
203
+ </trust:RequestedAttachedReference>
204
+ <trust:RequestedUnattachedReference>
205
+ <o:SecurityTokenReference
206
+ k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV1.1"
207
+ xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"
208
+ xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd">
209
+ <o:KeyIdentifier
210
+ ValueType="http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID">_3ad77714-87a7-4ec5-b3e8-dfd2ef68a49e</o:KeyIdentifier>
211
+ </o:SecurityTokenReference>
212
+ </trust:RequestedUnattachedReference>
213
+ <trust:TokenType>urn:oasis:names:tc:SAML:1.0:assertion</trust:TokenType>
214
+ <trust:RequestType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Issue</trust:RequestType>
215
+ <trust:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/Bearer</trust:KeyType>
216
+ </trust:RequestSecurityTokenResponse>
217
+ </trust:RequestSecurityTokenResponseCollection>
218
+ </s:Body>
219
+ </s:Envelope>