Voorbeeldberichten

SAML Authn Request

eH 1.13

1
<S11:Envelope xmlns:S11="http://schemas.xmlsoap.org/soap/envelope/">
2
<S11:Body>
3
<samlp:ArtifactResponse xmlns="urn:oasis:names:tc:SAML:2.0:assertion"
4
xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" ID="xxx" InResponseTo="xxx" IssueInstant="2020-05-28T12:40:32Z" Version="2.0">
5
<Issuer>urn:etoegang:DV:xxx:entities:0098</Issuer>
6
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
7
<ds:SignedInfo>
8
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
9
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
10
<ds:Reference URI="#xxx">
11
<ds:Transforms>
12
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
13
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
14
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
15
</ds:Transform>
16
</ds:Transforms>
17
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
18
<ds:DigestValue>xxx</ds:DigestValue>
19
</ds:Reference>
20
</ds:SignedInfo>
21
<ds:SignatureValue>xxx
22
</ds:SignatureValue>
23
<ds:KeyInfo>
24
<ds:KeyName>xxx</ds:KeyName>
25
</ds:KeyInfo>
26
</ds:Signature>
27
<samlp:Status>
28
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
29
</samlp:Status>
30
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="xxx" AttributeConsumingServiceIndex="1" Destination="https://eh01.connectis.nl/broker/sso/1.13" ForceAuthn="true" ID="xxx" IsPassive="false" IssueInstant="2020-05-28T12:40:32Z" ProviderName="Kadaster" Version="2.0">
31
<saml:Issuer>urn:etoegang:DV:xxx:entities:0098</saml:Issuer>
32
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
33
<ds:SignedInfo>
34
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
35
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
36
<ds:Reference URI="#_xxx">
37
<ds:Transforms>
38
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
39
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
40
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
41
</ds:Transform>
42
</ds:Transforms>
43
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
44
<ds:DigestValue>xxx</ds:DigestValue>
45
</ds:Reference>
46
</ds:SignedInfo>
47
<ds:SignatureValue>xxx
48
</ds:SignatureValue>
49
<ds:KeyInfo>
50
<ds:KeyName>xxx</ds:KeyName>
51
</ds:KeyInfo>
52
</ds:Signature>
53
<samlp:RequestedAuthnContext Comparison="minimum">
54
<saml:AuthnContextClassRef>urn:etoegang:core:assurance-class:loa3</saml:AuthnContextClassRef>
55
</samlp:RequestedAuthnContext>
56
</samlp:AuthnRequest>
57
</samlp:ArtifactResponse>
58
</S11:Body>
59
</S11:Envelope>
Copied!

eH 1.11 (eIDAS)

1
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
2
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
3
ForceAuthn="True"
4
AssertionConsumerServiceURL="https://forms.xxxxx.nl/acs"
5
AttributeConsumingServiceIndex="3"
6
Destination="https://eh01.staging.connectis.nl/broker/sso/1.11"
7
ID="_xxxxxxxxxxxxxxxxxxxxx"
8
IssueInstant="2020-05-29T06:59:51.9038041Z"
9
Version="2.0">
10
<saml:Issuer>urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx</saml:Issuer>
11
<samlp:RequestedAuthnContext Comparison="minimum">
12
<saml:AuthnContextClassRef>urn:etoegang:core:assurance-class:loa2</saml:AuthnContextClassRef>
13
</samlp:RequestedAuthnContext>
14
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">xxxxx</Signature>
15
</samlp:AuthnRequest>
Copied!

eH 1.9

1
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
2
xmlns="urn:oasis:names:tc:SAML:2.0:assertion" AssertionConsumerServiceURL="https://xxxx.nl/auth//broker/eherkenning/endpoint" AttributeConsumingServiceIndex="1" Destination="https://eh01.connectis.nl/broker/sso/1.9" ForceAuthn="true" ID="_xxxxxxxxxxxxxxxxxxxxx" IsPassive="false" IssueInstant="2020-05-28T12:56:19.536Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Version="2.0">
3
<saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx</saml:Issuer>
4
<dsig:Signature xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
5
<dsig:SignedInfo>
6
<dsig:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
7
<dsig:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
8
<dsig:Reference URI="_xxxxxxxxxxxxxxxxxxxxx">
9
<dsig:Transforms>
10
<dsig:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
11
<dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
12
</dsig:Transforms>
13
<dsig:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
14
<dsig:DigestValue>xxxx=</dsig:DigestValue>
15
</dsig:Reference>
16
</dsig:SignedInfo>
17
<dsig:SignatureValue>xxxx</dsig:SignatureValue>
18
<dsig:KeyInfo>
19
<dsig:KeyValue>
20
<dsig:RSAKeyValue>
21
<dsig:Modulus>xxxx</dsig:Modulus>
22
<dsig:Exponent>xxxx</dsig:Exponent>
23
</dsig:RSAKeyValue>
24
</dsig:KeyValue>
25
</dsig:KeyInfo>
26
</dsig:Signature>
27
<samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent"/>
28
<samlp:RequestedAuthnContext Comparison="minimum">
29
<saml:AuthnContextClassRef xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">urn:etoegang:core:assurance-class:loa2plus</saml:AuthnContextClassRef>
30
</samlp:RequestedAuthnContext>
31
</samlp:AuthnRequest>
Copied!

eH Ketenmachtiging

1
<?xml version="1.0" encoding="UTF-8" standalone="no"?><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_a311f029-0cbd-4508-b56b-62eeca738ce4" entityID="staging-sso.connectis.nl-broker"><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
2
<ds:SignedInfo>
3
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
4
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
5
<ds:Reference URI="#_a311f029-0cbd-4508-b56b-62eeca738ce4">
6
<ds:Transforms>
7
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
8
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
9
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
10
</ds:Transform>
11
</ds:Transforms>
12
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
13
<ds:DigestValue>ntI/CmN+1HBtiGPeLU84V8A5rNhjfhyYfvoUTyTCYeM=</ds:DigestValue>
14
</ds:Reference>
15
</ds:SignedInfo>
Copied!

SAML Response

eH 1.13

1
<samlp:ArtifactResponse xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
2
xmlns="urn:oasis:names:tc:SAML:2.0:assertion" ID="xxx" InResponseTo="xxx" IssueInstant="2020-05-28T12:42:04Z" Version="2.0">
3
<Issuer>urn:etoegang:HM:00000003244440010000:entities:1135</Issuer>
4
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
5
<ds:SignedInfo>
6
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
7
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
8
<ds:Reference URI="#xxx">
9
<ds:Transforms>
10
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
11
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
12
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
13
</ds:Transform>
14
</ds:Transforms>
15
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
16
<ds:DigestValue>xxx</ds:DigestValue>
17
</ds:Reference>
18
</ds:SignedInfo>
19
<ds:SignatureValue>xxx
20
</ds:SignatureValue>
21
<ds:KeyInfo>
22
<ds:KeyName>xxx</ds:KeyName>
23
</ds:KeyInfo>
24
</ds:Signature>
25
<samlp:Status>
26
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
27
</samlp:Status>
28
<samlp:Response xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
29
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
30
xmlns:xs="http://www.w3.org/2001/XMLSchema"
31
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="xxx" ID="xxx" InResponseTo="xxx" IssueInstant="2020-05-28T12:42:03Z" Version="2.0">
32
<saml:Issuer>urn:etoegang:HM:00000003244440010000:entities:1135</saml:Issuer>
33
<ds:Signature>
34
<ds:SignedInfo>
35
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
36
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
37
<ds:Reference URI="#xxx">
38
<ds:Transforms>
39
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
40
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
41
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
42
</ds:Transform>
43
</ds:Transforms>
44
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
45
<ds:DigestValue>xxx</ds:DigestValue>
46
</ds:Reference>
47
</ds:SignedInfo>
48
<ds:SignatureValue>xxx
49
</ds:SignatureValue>
50
<ds:KeyInfo>
51
<ds:KeyName>xxx</ds:KeyName>
52
</ds:KeyInfo>
53
</ds:Signature>
54
<samlp:Status>
55
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
56
</samlp:Status>
57
<saml:Assertion xmlns:xacml-saml="urn:oasis:xacml:2.0:saml:assertion:schema:os" ID="xxx" IssueInstant="2020-05-28T12:42:03Z" Version="2.0">
58
<saml:Issuer>urn:etoegang:HM:00000003244440010000:entities:1135</saml:Issuer>
59
<ds:Signature>
60
<ds:SignedInfo>
61
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
62
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
63
<ds:Reference URI="#xxx">
64
<ds:Transforms>
65
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
66
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
67
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
68
</ds:Transform>
69
</ds:Transforms>
70
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
71
<ds:DigestValue>xxx</ds:DigestValue>
72
</ds:Reference>
73
</ds:SignedInfo>
74
<ds:SignatureValue>xxx
75
</ds:SignatureValue>
76
<ds:KeyInfo>
77
<ds:KeyName>xxx</ds:KeyName>
78
</ds:KeyInfo>
79
</ds:Signature>
80
<saml:Subject>
81
<saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" NameQualifier="urn:etoegang:MR:00000003341423870000:entities:0113">xxx</saml:NameID>
82
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
83
<saml:SubjectConfirmationData InResponseTo="xxx" NotOnOrAfter="2020-05-28T12:47:03Z" Recipient="xxx">
84
</saml:SubjectConfirmationData>
85
</saml:SubjectConfirmation>
86
</saml:Subject>
87
<saml:Conditions NotBefore="2020-05-28T12:42:03Z" NotOnOrAfter="2020-05-28T12:47:03Z">
88
<saml:AudienceRestriction>
89
<saml:Audience>urn:etoegang:DV:xxx:entities:0098</saml:Audience>
90
</saml:AudienceRestriction>
91
</saml:Conditions>
92
<saml:Advice>
93
<saml:Assertion ID="xxx" IssueInstant="2020-05-28T12:42:02Z" Version="2.0">
94
<saml:Issuer>urn:etoegang:AD:00000003341423870000:entities:0113</saml:Issuer>
95
<ds:Signature>
96
<ds:SignedInfo>
97
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
98
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
99
<ds:Reference URI="#xxx">
100
<ds:Transforms>
101
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
102
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
103
</ds:Transforms>
104
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
105
<ds:DigestValue>xxx</ds:DigestValue>
106
</ds:Reference>
107
</ds:SignedInfo>
108
<ds:SignatureValue>xxx
109
</ds:SignatureValue>
110
<ds:KeyInfo>
111
<ds:KeyName>xxx</ds:KeyName>
112
</ds:KeyInfo>
113
</ds:Signature>
114
<saml:Subject>
115
<saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">xxx</saml:NameID>
116
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
117
<saml:SubjectConfirmationData InResponseTo="xxx" NotOnOrAfter="2020-05-28T12:52:02Z" Recipient="https://eh01.connectis.nl/broker/acs/1.13"/>
118
</saml:SubjectConfirmation>
119
</saml:Subject>
120
<saml:Conditions NotBefore="2020-05-28T12:32:02Z" NotOnOrAfter="2020-05-28T12:52:02Z">
121
<saml:AudienceRestriction>
122
<saml:Audience>urn:etoegang:HM:00000003244440010000:entities:1135</saml:Audience>
123
<saml:Audience>urn:etoegang:DV:xxx:entities:0098</saml:Audience>
124
<saml:Audience>urn:etoegang:MR:00000003341423870000:entities:0113</saml:Audience>
125
</saml:AudienceRestriction>
126
</saml:Conditions>
127
<saml:AuthnStatement AuthnInstant="2020-05-28T12:42:01Z">
128
<saml:AuthnContext>
129
<saml:AuthnContextClassRef>urn:etoegang:core:assurance-class:loa3</saml:AuthnContextClassRef>
130
<saml:AuthenticatingAuthority>00000003341423870000</saml:AuthenticatingAuthority>
131
</saml:AuthnContext>
132
</saml:AuthnStatement>
133
<saml:AttributeStatement>
134
<saml:Attribute Name="urn:etoegang:core:Representation">
135
<saml:AttributeValue xsi:type="xs:boolean">true</saml:AttributeValue>
136
</saml:Attribute>
137
<saml:Attribute Name="urn:etoegang:core:ServiceUUID">
138
<saml:AttributeValue xsi:type="xs:string">xxx</saml:AttributeValue>
139
</saml:Attribute>
140
<saml:Attribute Name="urn:etoegang:core:AuthorizationRegistryID">
141
<saml:AttributeValue xsi:type="xs:string">urn:etoegang:MR:00000003341423870000:entities:0113</saml:AttributeValue>
142
</saml:Attribute>
143
<saml:Attribute Name="urn:etoegang:core:ActingSubjectID">
144
<saml:AttributeValue>
145
<saml:EncryptedID>
146
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="xxx" Type="http://www.w3.org/2001/04/xmlenc#Element">
147
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
148
<ds:KeyInfo>
149
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey" URI="#xxx"/>
150
</ds:KeyInfo>
151
<xenc:CipherData>
152
<xenc:CipherValue>xxx=</xenc:CipherValue>
153
</xenc:CipherData>
154
</xenc:EncryptedData>
155
<xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="xxx" Recipient="urn:etoegang:MR:00000003341423870000:entities:0113">
156
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
157
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
158
</xenc:EncryptionMethod>
159
<ds:KeyInfo>
160
<ds:KeyName>xxx</ds:KeyName>
161
</ds:KeyInfo>
162
<xenc:CipherData>
163
<xenc:CipherValue>xxx</xenc:CipherValue>
164
</xenc:CipherData>
165
<xenc:ReferenceList>
166
<xenc:DataReference URI="#xxx"/>
167
</xenc:ReferenceList>
168
</xenc:EncryptedKey>
169
</saml:EncryptedID>
170
</saml:AttributeValue>
171
</saml:Attribute>
172
</saml:AttributeStatement>
173
</saml:Assertion>
174
<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="xxx" IssueInstant="2020-05-28T12:42:03Z" Version="2.0">
175
<saml2:Issuer>urn:etoegang:MR:00000003341423870000:entities:0113</saml2:Issuer>
176
<ds:Signature>
177
<ds:SignedInfo>
178
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
179
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
180
<ds:Reference URI="#xxx">
181
<ds:Transforms>
182
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
183
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
184
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
185
</ds:Transform>
186
</ds:Transforms>
187
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
188
<ds:DigestValue>xxx</ds:DigestValue>
189
</ds:Reference>
190
</ds:SignedInfo>
191
<ds:SignatureValue>xxx</ds:SignatureValue>
192
<ds:KeyInfo>
193
<ds:KeyName>xxx</ds:KeyName>
194
</ds:KeyInfo>
195
</ds:Signature>
196
<saml2:Subject>
197
<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" NameQualifier="urn:etoegang:MR:00000003341423870000:entities:0113">xxx</saml2:NameID>
198
</saml2:Subject>
199
<saml2:Conditions NotBefore="2020-05-28T12:42:03Z" NotOnOrAfter="2020-05-28T12:44:03Z"/>
200
<saml2:Advice>
201
<saml2:AssertionIDRef>xxx</saml2:AssertionIDRef>
202
</saml2:Advice>
203
<saml2:Statement xsi:type="xacml-saml:XACMLAuthzDecisionStatementType">
204
<xacml-context:Response xmlns:xacml-context="urn:oasis:names:tc:xacml:2.0:context:schema:os">
205
<xacml-context:Result>
206
<xacml-context:Decision>Permit</xacml-context:Decision>
207
<xacml-context:Status>
208
<xacml-context:StatusCode Value="urn:oasis:names:tc:xacml:1.0:status:ok"/>
209
</xacml-context:Status>
210
</xacml-context:Result>
211
</xacml-context:Response>
212
<xacml-context:Request xmlns:xacml-context="urn:oasis:names:tc:xacml:2.0:context:schema:os">
213
<xacml-context:Subject SubjectCategory="urn:oasis:names:tc:xacml:1.0:subject-category:access-subject">
214
<xacml-context:Attribute AttributeId="urn:etoegang:core:ActingEntityID" DataType="http://www.w3.org/2001/XMLSchema#string" Issuer="urn:etoegang:MR:00000003341423870000:entities:0113">
215
<xacml-context:AttributeValue>xxx</xacml-context:AttributeValue>
216
</xacml-context:Attribute>
217
<xacml-context:Attribute AttributeId="urn:etoegang:core:ActingSubjectID" DataType="urn:oasis:names:tc:SAML:2.0:assertion#EncryptedID" Issuer="urn:etoegang:MR:00000003341423870000:entities:0113">
218
<xacml-context:AttributeValue>
219
<saml2:EncryptedID>
220
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="xxx" Type="http://www.w3.org/2001/04/xmlenc#Element">
221
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
222
<ds:KeyInfo>
223
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey" URI="#xxx"/>
224
</ds:KeyInfo>
225
<xenc:CipherData>
226
<xenc:CipherValue>xxx</xenc:CipherValue>
227
</xenc:CipherData>
228
</xenc:EncryptedData>
229
<xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="xxx" Recipient="urn:etoegang:DV:xxx:entities:0098">
230
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
231
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
232
</xenc:EncryptionMethod>
233
<ds:KeyInfo>
234
<ds:KeyName>xxx</ds:KeyName>
235
</ds:KeyInfo>
236
<xenc:CipherData>
237
<xenc:CipherValue>xxx</xenc:CipherValue>
238
</xenc:CipherData>
239
<xenc:ReferenceList>
240
<xenc:DataReference URI="#xxx"/>
241
</xenc:ReferenceList>
242
</xenc:EncryptedKey>
243
</saml2:EncryptedID>
244
</xacml-context:AttributeValue>
245
</xacml-context:Attribute>
246
<xacml-context:Attribute AttributeId="urn:etoegang:core:LinkedDeclarationSignatureValue" DataType="http://www.w3.org/2001/XMLSchema#base64Binary" Issuer="urn:etoegang:MR:00000003341423870000:entities:0113">
247
<xacml-context:AttributeValue>xxx</xacml-context:AttributeValue>
248
</xacml-context:Attribute>
249
<xacml-context:Attribute AttributeId="urn:etoegang:core:LegalSubjectID" DataType="urn:oasis:names:tc:SAML:2.0:assertion#EncryptedID" Issuer="urn:etoegang:MR:00000003341423870000:entities:0113">
250
<xacml-context:AttributeValue>
251
<saml2:EncryptedID>
252
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="_xxx" Type="http://www.w3.org/2001/04/xmlenc#Element">
253
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
254
<ds:KeyInfo>
255
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey" URI="#xxx"/>
256
</ds:KeyInfo>
257
<xenc:CipherData>
258
<xenc:CipherValue>xxx</xenc:CipherValue>
259
</xenc:CipherData>
260
</xenc:EncryptedData>
261
<xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="xxx" Recipient="urn:etoegang:DV:xxx:entities:0098">
262
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
263
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
264
</xenc:EncryptionMethod>
265
<ds:KeyInfo>
266
<ds:KeyName>xxx</ds:KeyName>
267
</ds:KeyInfo>
268
<xenc:CipherData>
269
<xenc:CipherValue>xxx</xenc:CipherValue>
270
</xenc:CipherData>
271
<xenc:ReferenceList>
272
<xenc:DataReference URI="#_xxx"/>
273
</xenc:ReferenceList>
274
</xenc:EncryptedKey>
275
</saml2:EncryptedID>
276
</xacml-context:AttributeValue>
277
</xacml-context:Attribute>
278
</xacml-context:Subject>
279
<xacml-context:Resource>
280
<xacml-context:ResourceContent>
281
<saml2:EncryptedAttribute>
282
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="encrypted_urn_etoegang_1.11_attribute-represented_CompanyName" Type="http://www.w3.org/2001/04/xmlenc#Element">
283
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
284
<ds:KeyInfo>
285
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey" URI="#xxx"/>
286
</ds:KeyInfo>
287
<xenc:CipherData>
288
<xenc:CipherValue>xxx</xenc:CipherValue>
289
</xenc:CipherData>
290
</xenc:EncryptedData>
291
<xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Id="xxx" Recipient="urn:etoegang:DV:xxx:entities:0098">
292
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
293
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
294
</xenc:EncryptionMethod>
295
<ds:KeyInfo>
296
<ds:KeyName>xxx</ds:KeyName>
297
</ds:KeyInfo>
298
<xenc:CipherData>
299
<xenc:CipherValue>xxx</xenc:CipherValue>
300
</xenc:CipherData>
301
<xenc:ReferenceList>
302
<xenc:DataReference URI="#encrypted_urn_etoegang_1.11_attribute-represented_CompanyName"/>
303
</xenc:ReferenceList>
304
</xenc:EncryptedKey>
305
</saml2:EncryptedAttribute>
306
</xacml-context:ResourceContent>
307
<xacml-context:Attribute AttributeId="urn:etoegang:core:LevelOfAssurance" DataType="http://www.w3.org/2001/XMLSchema#string" Issuer="urn:etoegang:HM:00000003244440010000:entities:1135">
308
<xacml-context:AttributeValue>urn:etoegang:core:assurance-class:loa3</xacml-context:AttributeValue>
309
</xacml-context:Attribute>
310
<xacml-context:Attribute AttributeId="urn:etoegang:core:ServiceID" DataType="http://www.w3.org/2001/XMLSchema#string" Issuer="urn:etoegang:HM:00000003244440010000:entities:1135">
311
<xacml-context:AttributeValue>urn:etoegang:DV:xxx:services:0001</xacml-context:AttributeValue>
312
</xacml-context:Attribute>
313
<xacml-context:Attribute AttributeId="urn:etoegang:core:ServiceUUID" DataType="http://www.w3.org/2001/XMLSchema#string" Issuer="urn:etoegang:HM:00000003244440010000:entities:1135">
314
<xacml-context:AttributeValue>xxx</xacml-context:AttributeValue>
315
</xacml-context:Attribute>
316
<xacml-context:Attribute AttributeId="urn:etoegang:1.9:EntityConcernedID:KvKnr" DataType="http://www.w3.org/2001/XMLSchema#string" Issuer="urn:etoegang:MR:00000003341423870000:entities:0113">
317
<xacml-context:AttributeValue>xxx</xacml-context:AttributeValue>
318
</xacml-context:Attribute>
319
<xacml-context:Attribute AttributeId="urn:etoegang:core:LevelOfAssuranceUsed" DataType="http://www.w3.org/2001/XMLSchema#string" Issuer="urn:etoegang:MR:00000003341423870000:entities:0113">
320
<xacml-context:AttributeValue>urn:etoegang:core:assurance-class:loa3</xacml-context:AttributeValue>
321
</xacml-context:Attribute>
322
</xacml-context:Resource>
323
<xacml-context:Action>
324
<xacml-context:Attribute AttributeId="urn:oasis:names:tc:xacml:1.0:action:action-id" DataType="http://www.w3.org/2001/XMLSchema#string">
325
<xacml-context:AttributeValue>Authenticate</xacml-context:AttributeValue>
326
</xacml-context:Attribute>
327
</xacml-context:Action>
328
<xacml-context:Environment/>
329
</xacml-context:Request>
330
</saml2:Statement>
331
</saml2:Assertion>
332
</saml:Advice>
333
<saml:AuthnStatement AuthnInstant="2020-05-28T12:42:03Z">
334
<saml:AuthnContext>
335
<saml:AuthnContextClassRef>urn:etoegang:core:assurance-class:loa3</saml:AuthnContextClassRef>
336
<saml:AuthenticatingAuthority>urn:etoegang:AD:00000003341423870000:entities:0113</saml:AuthenticatingAuthority>
337
</saml:AuthnContext>
338
</saml:AuthnStatement>
339
<saml:AttributeStatement>
340
<saml:Attribute Name="urn:etoegang:core:ServiceUUID">
341
<saml:AttributeValue xsi:type="xs:string">xxx</saml:AttributeValue>
342
</saml:Attribute>
343
<saml:Attribute Name="urn:etoegang:core:ActingSubjectID">
344
<saml:AttributeValue>
345
<saml:EncryptedID xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
346
<xenc:EncryptedData Id="_xxx" Type="http://www.w3.org/2001/04/xmlenc#Element">
347
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
348
<ds:KeyInfo>
349
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey" URI="xxx"/>
350
</ds:KeyInfo>
351
<xenc:CipherData>
352
<xenc:CipherValue>xxx</xenc:CipherValue>
353
</xenc:CipherData>
354
</xenc:EncryptedData>
355
<xenc:EncryptedKey Id="xxx" Recipient="urn:etoegang:DV:xxx:entities:0098">
356
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
357
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
358
</xenc:EncryptionMethod>
359
<ds:KeyInfo>
360
<ds:KeyName>xxx</ds:KeyName>
361
</ds:KeyInfo>
362
<xenc:CipherData>
363
<xenc:CipherValue>xxx</xenc:CipherValue>
364
</xenc:CipherData>
365
<xenc:ReferenceList>
366
<xenc:DataReference URI="#_xxx"/>
367
</xenc:ReferenceList>
368
</xenc:EncryptedKey>
369
</saml:EncryptedID>
370
</saml:AttributeValue>
371
</saml:Attribute>
372
<saml:Attribute Name="urn:etoegang:core:LegalSubjectID">
373
<saml:AttributeValue>
374
<saml:EncryptedID xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
375
<xenc:EncryptedData Id="_xxx" Type="http://www.w3.org/2001/04/xmlenc#Element">
376
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
377
<ds:KeyInfo>
378
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey" URI="#_xxx"/>
379
</ds:KeyInfo>
380
<xenc:CipherData>
381
<xenc:CipherValue>xxx</xenc:CipherValue>
382
</xenc:CipherData>
383
</xenc:EncryptedData>
384
<xenc:EncryptedKey Id="_xxx" Recipient="urn:etoegang:DV:xxx:entities:0098">
385
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
386
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
387
</xenc:EncryptionMethod>
388
<ds:KeyInfo>
389
<ds:KeyName>xxx</ds:KeyName>
390
</ds:KeyInfo>
391
<xenc:CipherData>
392
<xenc:CipherValue>xxx</xenc:CipherValue>
393
</xenc:CipherData>
394
<xenc:ReferenceList>
395
<xenc:DataReference URI="#_xxx"/>
396
</xenc:ReferenceList>
397
</xenc:EncryptedKey>
398
</saml:EncryptedID>
399
</saml:AttributeValue>
400
</saml:Attribute>
401
<saml:Attribute Name="urn:etoegang:core:ServiceID">
402
<saml:AttributeValue xsi:type="xs:string">urn:etoegang:DV:xxx:services:0001</saml:AttributeValue>
403
</saml:Attribute>
404
<saml:EncryptedAttribute xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
405
<xenc:EncryptedData Id="_xxx" Type="http://www.w3.org/2001/04/xmlenc#Element">
406
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
407
<ds:KeyInfo>
408
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey" URI="#_xxx"/>
409
</ds:KeyInfo>
410
<xenc:CipherData>
411
<xenc:CipherValue>xxx</xenc:CipherValue>
412
</xenc:CipherData>
413
</xenc:EncryptedData>
414
<xenc:EncryptedKey Id="_xxx" Recipient="urn:etoegang:DV:xxx:entities:0098">
415
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
416
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
417
</xenc:EncryptionMethod>
418
<ds:KeyInfo>
419
<ds:KeyName>xxx</ds:KeyName>
420
</ds:KeyInfo>
421
<xenc:CipherData>
422
<xenc:CipherValue>xxx</xenc:CipherValue>
423
</xenc:CipherData>
424
<xenc:ReferenceList>
425
<xenc:DataReference URI="#_xxx"/>
426
</xenc:ReferenceList>
427
</xenc:EncryptedKey>
428
</saml:EncryptedAttribute>
429
</saml:AttributeStatement>
430
</saml:Assertion>
431
</samlp:Response>
432
</samlp:ArtifactResponse>
Copied!

eH 1.11 (eIDAS)

1
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
2
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
3
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
4
xmlns:xs="http://www.w3.org/2001/XMLSchema"
5
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
6
Destination="https://forms.toverijs7.nl/acs"
7
ID="_xxxxxxxxxxxxxxxxxxxxx"
8
InResponseTo="_xxxxxxxxxxxxxxxxxxxxx"
9
IssueInstant="2020-05-29T07:00:13Z"
10
Version="2.0">
11
<saml:Issuer>urn:etoegang:HM:0000000xxxxxxxxx000:entities:xxxx</saml:Issuer>
12
<ds:Signature>xxxx</ds:Signature>
13
<samlp:Status>
14
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
15
</samlp:Status>
16
<saml:Assertion
17
ID="_xxxxxxxxxxxxxxxxxxxxx"
18
IssueInstant="2020-05-29T07:00:13Z"
19
Version="2.0">
20
<saml:Issuer>urn:etoegang:HM:0000000xxxxxxxxx000:entities:xxxx</saml:Issuer>
21
<ds:Signature>xxxx</ds:Signature>
22
<saml:Subject>
23
<saml:EncryptedID xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
24
<xenc:EncryptedData Id="_xxxxxxxxxxxxxxxxxxxxx"
25
Type="http://www.w3.org/2001/04/xmlenc#Element">
26
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
27
<ds:KeyInfo>
28
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey"
29
URI="#_xxxxxxxxxxxxxxxxxxxxx"/>
30
</ds:KeyInfo>
31
<xenc:CipherData>
32
<xenc:CipherValue>xxxx</xenc:CipherValue>
33
</xenc:CipherData>
34
</xenc:EncryptedData>
35
<xenc:EncryptedKey Id="_xxxxxxxxxxxxxxxxxxxxx"
36
Recipient="urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx">
37
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
38
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
39
</xenc:EncryptionMethod>
40
<ds:KeyInfo>
41
<ds:KeyName>xxxx</ds:KeyName>
42
</ds:KeyInfo>
43
<xenc:CipherData>
44
<xenc:CipherValue>xxxx</xenc:CipherValue>
45
</xenc:CipherData>
46
<xenc:ReferenceList>
47
<xenc:DataReference URI="_xxxxxxxxxxxxxxxxxxxxx"/>
48
</xenc:ReferenceList>
49
</xenc:EncryptedKey>
50
</saml:EncryptedID>
51
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
52
<saml:SubjectConfirmationData InResponseTo="_xxxxxxxxxxxxxxxxxxxxx"
53
NotOnOrAfter="2020-05-29T07:05:13Z"
54
Recipient="https://forms.xxxxxx.nl/acs"/>
55
</saml:SubjectConfirmation>
56
</saml:Subject>
57
<saml:Conditions NotBefore="2020-05-29T07:00:13Z"
58
NotOnOrAfter="2020-05-29T07:05:13Z">
59
<saml:AudienceRestriction>
60
<saml:Audience>urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx</saml:Audience>
61
</saml:AudienceRestriction>
62
</saml:Conditions>
63
<saml:Advice>
64
<saml:Assertion ID="sxxxxxxxxxxxxxxxxxxxxx"
65
IssueInstant="2020-05-29T07:00:12Z"
66
Version="2.0">
67
<saml:Issuer>urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx</saml:Issuer>
68
<ds:Signature>
69
<ds:SignedInfo>
70
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
71
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
72
<ds:Reference URI="_xxxxxxxxxxxxxxxxxxxxx">
73
<ds:Transforms>
74
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
75
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
76
</ds:Transforms>
77
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
78
<ds:DigestValue>xxxx=</ds:DigestValue>
79
</ds:Reference>
80
</ds:SignedInfo>
81
<ds:SignatureValue>xxxx</ds:SignatureValue>
82
<ds:KeyInfo>
83
<ds:KeyName>xxxx</ds:KeyName>
84
</ds:KeyInfo>
85
</ds:Signature>
86
<saml:Subject>
87
<saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">xxxx</saml:NameID>
88
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
89
<saml:SubjectConfirmationData InResponseTo="_xxxxxxxxxxxxxxxxxxxxx"
90
NotOnOrAfter="2020-05-29T07:10:12Z"
91
Recipient="https://eh01.staging.connectis.nl/broker/acs/1.13"/>
92
</saml:SubjectConfirmation>
93
</saml:Subject>
94
<saml:Conditions NotBefore="2020-05-29T06:50:12Z"
95
NotOnOrAfter="2020-05-29T07:10:12Z">
96
<saml:AudienceRestriction>
97
<saml:Audience>urn:etoegang:HM:0000000xxxxxxxxx000:entities:xxxx</saml:Audience>
98
<saml:Audience>urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx</saml:Audience>
99
</saml:AudienceRestriction>
100
</saml:Conditions>
101
<saml:AuthnStatement AuthnInstant="2020-05-29T07:00:07Z">
102
<saml:AuthnContext>
103
<saml:AuthnContextClassRef>urn:etoegang:core:assurance-class:loa2</saml:AuthnContextClassRef>
104
<saml:AuthenticatingAuthority>xxxx</saml:AuthenticatingAuthority>
105
</saml:AuthnContext>
106
</saml:AuthnStatement>
107
<saml:AttributeStatement>
108
<saml:Attribute Name="urn:etoegang:core:Representation">
109
<saml:AttributeValue xsi:type="xs:boolean">false</saml:AttributeValue>
110
</saml:Attribute>
111
<saml:Attribute Name="urn:etoegang:core:ServiceUUID">
112
<saml:AttributeValue xsi:type="xs:string">xxxx</saml:AttributeValue>
113
</saml:Attribute>
114
<saml:Attribute Name="urn:etoegang:core:ActingSubjectID">
115
<saml:AttributeValue>
116
<saml:EncryptedID>
117
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
118
Id="_xxxxxxxxxxxxxxxxxxxxx"
119
Type="http://www.w3.org/2001/04/xmlenc#Element">
120
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
121
<ds:KeyInfo>
122
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey"
123
URI="_xxxxxxxxxxxxxxxxxxxxx"/>
124
</ds:KeyInfo>
125
<xenc:CipherData>
126
<xenc:CipherValue>xxxx</xenc:CipherValue>
127
</xenc:CipherData>
128
</xenc:EncryptedData>
129
<xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
130
Id="_xxxxxxxxxxxxxxxxxxxxx"
131
Recipient="urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx">
132
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
133
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
134
</xenc:EncryptionMethod>
135
<ds:KeyInfo>
136
<ds:KeyName>xxxx</ds:KeyName>
137
</ds:KeyInfo>
138
<xenc:CipherData>
139
<xenc:CipherValue>xxxx</xenc:CipherValue>
140
</xenc:CipherData>
141
<xenc:ReferenceList>
142
<xenc:DataReference URI="_xxxxxxxxxxxxxxxxxxxxx"/>
143
</xenc:ReferenceList>
144
</xenc:EncryptedKey>
145
</saml:EncryptedID>
146
</saml:AttributeValue>
147
</saml:Attribute>
148
<saml:EncryptedAttribute>
149
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
150
Id="encrypted_urn_etoegang_1.9_attribute_DateOfBirth"
151
Type="http://www.w3.org/2001/04/xmlenc#Element">
152
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
153
<ds:KeyInfo>
154
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey"
155
URI="_xxxxxxxxxxxxxxxxxxxxx"/>
156
</ds:KeyInfo>
157
<xenc:CipherData>
158
<xenc:CipherValue>xxxx</xenc:CipherValue>
159
</xenc:CipherData>
160
</xenc:EncryptedData>
161
<xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
162
Id="_xxxxxxxxxxxxxxxxxxxxx"
163
Recipient="urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx">
164
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
165
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
166
</xenc:EncryptionMethod>
167
<ds:KeyInfo>
168
<ds:KeyName>xxxx</ds:KeyName>
169
</ds:KeyInfo>
170
<xenc:CipherData>
171
<xenc:CipherValue>xxxx</xenc:CipherValue>
172
</xenc:CipherData>
173
<xenc:ReferenceList>
174
<xenc:DataReference URI="#encrypted_urn_etoegang_1.9_attribute_DateOfBirth"/>
175
</xenc:ReferenceList>
176
</xenc:EncryptedKey>
177
</saml:EncryptedAttribute>
178
<saml:EncryptedAttribute>
179
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
180
Id="encrypted_urn_etoegang_1.9_attribute_FamilyName"
181
Type="http://www.w3.org/2001/04/xmlenc#Element">
182
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
183
<ds:KeyInfo>
184
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey"
185
URI="_xxxxxxxxxxxxxxxxxxxxx"/>
186
</ds:KeyInfo>
187
<xenc:CipherData>
188
<xenc:CipherValue>xxxx</xenc:CipherValue>
189
</xenc:CipherData>
190
</xenc:EncryptedData>
191
<xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
192
Id="_xxxxxxxxxxxxxxxxxxxxx"
193
Recipient="urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx"
194
>
195
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
196
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
197
</xenc:EncryptionMethod>
198
<ds:KeyInfo>
199
<ds:KeyName>xxxxx</ds:KeyName>
200
</ds:KeyInfo>
201
<xenc:CipherData>
202
<xenc:CipherValue>xxxxx</xenc:CipherValue>
203
</xenc:CipherData>
204
<xenc:ReferenceList>
205
<xenc:DataReference URI="#encrypted_urn_etoegang_1.9_attribute_FamilyName"/>
206
</xenc:ReferenceList>
207
</xenc:EncryptedKey>
208
</saml:EncryptedAttribute>
209
<saml:EncryptedAttribute>
210
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
211
Id="encrypted_urn_etoegang_1.9_attribute_FirstName"
212
Type="http://www.w3.org/2001/04/xmlenc#Element">
213
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
214
<ds:KeyInfo>
215
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey"
216
URI="_xxxxxxxxxxxxxxxxxxxxx"/>
217
</ds:KeyInfo>
218
<xenc:CipherData>
219
<xenc:CipherValue>xxx</xenc:CipherValue>
220
</xenc:CipherData>
221
</xenc:EncryptedData>
222
<xenc:EncryptedKey xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
223
Id="_1c10d90e8b53461cb794fa23b1f72f55"
224
Recipient="urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx">
225
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
226
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
227
</xenc:EncryptionMethod>
228
<ds:KeyInfo>
229
<ds:KeyName>xxxx</ds:KeyName>
230
</ds:KeyInfo>
231
<xenc:CipherData>
232
<xenc:CipherValue>xxxx</xenc:CipherValue>
233
</xenc:CipherData>
234
<xenc:ReferenceList>
235
<xenc:DataReference URI="#encrypted_urn_etoegang_1.9_attribute_FirstName"/>
236
</xenc:ReferenceList>
237
</xenc:EncryptedKey>
238
</saml:EncryptedAttribute>
239
</saml:AttributeStatement>
240
</saml:Assertion>
241
</saml:Advice>
242
<saml:AuthnStatement AuthnInstant="2020-05-29T07:00:13Z">
243
<saml:AuthnContext>
244
<saml:AuthnContextClassRef>urn:etoegang:core:assurance-class:loa2</saml:AuthnContextClassRef>
245
<saml:AuthenticatingAuthority>urn:etoegang:AD:0000000xxxxxxxxx000:entities:xxxx</saml:AuthenticatingAuthority>
246
</saml:AuthnContext>
247
</saml:AuthnStatement>
248
<saml:AttributeStatement>
249
<saml:Attribute Name="urn:etoegang:core:ServiceUUID">
250
<saml:AttributeValue xsi:type="xs:string">xxxx</saml:AttributeValue>
251
</saml:Attribute>
252
<saml:EncryptedAttribute xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
253
<xenc:EncryptedData Id="_07151871-ab7d-337d-a4c2-aa6f0c23148d"
254
Type="http://www.w3.org/2001/04/xmlenc#Element">
255
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
256
<ds:KeyInfo>
257
<ds:RetrievalMethod Type="http://www.w3.org/2001/04/xmlenc#EncryptedKey"
258
URI="_xxxxxxxxxxxxxxxxxxxxx"/>
259
</ds:KeyInfo>
260
<xenc:CipherData>
261
<xenc:CipherValue>xxxx</xenc:CipherValue>
262
</xenc:CipherData>
263
</xenc:EncryptedData>
264
<xenc:EncryptedKey Id="_xxxxxxxxxxxxxxxxxxxxx"
265
Recipient="urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx">
266
<xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
267
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
268
</xenc:EncryptionMethod>
269
<ds:KeyInfo>
270
<ds:KeyName>xxxx</ds:KeyName>
271
</ds:KeyInfo>
272
<xenc:CipherData>
273
<xenc:CipherValue>xxxx</xenc:CipherValue>
274
</xenc:CipherData>
275
<xenc:ReferenceList>
276
<xenc:DataReference URI="_xxxxxxxxxxxxxxxxxxxxx"/>
277
</xenc:ReferenceList>
278
</xenc:EncryptedKey>
279
</saml:EncryptedAttribute>
280
</saml:AttributeStatement>
281
</saml:Assertion>
282
</samlp:Response>
283
Copied!

eH 1.9

1
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="https://xxxx.nl/auth/broker/eherkenning/endpoint" ID="_xxxxxxxxxxxxxxxxxxxxx" InResponseTo="_xxxxxxxxxxxxxxxxxxxxx" IssueInstant="2020-05-28T13:02:33Z"
2
Version="2.0">
3
<saml:Issuer>urn:etoegang:HM:0000000xxxxxxxxx000:entities:xxxx</saml:Issuer>
4
<ds:Signature>
5
<ds:SignedInfo>
6
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
7
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
8
<ds:Reference URI="_xxxxxxxxxxxxxxxxxxxxx">
9
<ds:Transforms>
10
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
11
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
12
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
13
</ds:Transform>
14
</ds:Transforms>
15
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
16
<ds:DigestValue>xxxx=</ds:DigestValue>
17
</ds:Reference>
18
</ds:SignedInfo>
19
<ds:SignatureValue>xxxx</ds:SignatureValue>
20
</ds:Signature>
21
<samlp:Status>
22
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
23
</samlp:Status>
24
<saml:Assertion ID="_xxxxxxxxxxxxxxxxxxxxx" IssueInstant="2020-05-28T13:02:33Z" Version="2.0">
25
<saml:Issuer>urn:etoegang:HM:0000000xxxxxxxxx000:entities:xxxx</saml:Issuer>
26
<ds:Signature>
27
<ds:SignedInfo>
28
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
29
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
30
<ds:Reference URI="_xxxxxxxxxxxxxxxxxxxxx">
31
<ds:Transforms>
32
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
33
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
34
<ec:InclusiveNamespaces xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
35
</ds:Transform>
36
</ds:Transforms>
37
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
38
<ds:DigestValue>xxxx=</ds:DigestValue>
39
</ds:Reference>
40
</ds:SignedInfo>
41
<ds:SignatureValue>xxxx</ds:SignatureValue>
42
</ds:Signature>
43
<saml:Subject>
44
<saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:etoegang:MR:0000000xxxxxxxxx000:entities:xxxx">xxxx</saml:NameID>
45
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
46
<saml:SubjectConfirmationData InResponseTo="_xxxxxxxxxxxxxxxxxxxxx" NotOnOrAfter="2020-05-28T13:07:33Z" Recipient="https://xxxx.nl/auth//broker/eherkenning/endpoint">
47
</saml:SubjectConfirmationData>
48
</saml:SubjectConfirmation>
49
</saml:Subject>
50
<saml:Conditions NotBefore="2020-05-28T13:02:33Z" NotOnOrAfter="2020-05-28T13:07:33Z">
51
<saml:AudienceRestriction>
52
<saml:Audience>urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx</saml:Audience>
53
</saml:AudienceRestriction>
54
</saml:Conditions>
55
<saml:AuthnStatement AuthnInstant="2020-05-28T13:02:33Z">
56
<saml:AuthnContext>
57
<saml:AuthnContextClassRef>urn:etoegang:core:assurance-class:loa2plus</saml:AuthnContextClassRef>
58
<saml:AuthenticatingAuthority>urn:etoegang:HM:0000000xxxxxxxxx000:entities:xxxx</saml:AuthenticatingAuthority>
59
</saml:AuthnContext>
60
</saml:AuthnStatement>
61
<saml:AttributeStatement>
62
<saml:Attribute Name="urn:etoegang:1.9:EntityConcernedID:KvKnr">
63
<saml:AttributeValue xsi:type="xs:string">xxxx</saml:AttributeValue>
64
</saml:Attribute>
65
<saml:Attribute Name="urn:etoegang:core:ServiceID">
66
<saml:AttributeValue xsi:type="xs:string">urn:etoegang:DV:0000000xxxxxxxxx000:entities:xxxx</saml:AttributeValue>
67
</saml:Attribute>
68
</saml:AttributeStatement>
69
</saml:Assertion>
70
</samlp:Response>
71
Copied!

eH Ketenmachtiging

1
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
2
<samlp:Response
3
xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
4
xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
5
xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
6
xmlns:xs="http://www.w3.org/2001/XMLSchema"
7
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="xxx" ID="xxx" InResponseTo="xxx" IssueInstant="2020-05-20T12:30:40Z" Version="2.0">
8
<saml:Issuer>xxx</saml:Issuer>
9
<ds:Signature>
10
<ds:SignedInfo>
11
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
12
<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
13
<ds:Reference URI="#xxx">
14
<ds:Transforms>
15
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
16
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
17
<ec:InclusiveNamespaces
18
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="xacml-saml"/>
19
</ds:Transform>
20
</ds:Transforms>
21
<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
22
<ds:DigestValue>xxx</ds:DigestValue>
23
</ds:Reference>
24
</ds:SignedInfo>
25
<ds:SignatureValue>xxx
26
</ds:SignatureValue>
27
<ds:KeyInfo>
28
<ds:KeyName>xxx</ds:KeyName>
29
</ds:KeyInfo>
30
</ds:Signature>
31
<samlp:Status>
32
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
33
</samlp:Status>
34
<saml:Assertion
35
xmlns:xacml-saml="urn:oasis:xacml:2.0:saml:assertion:schema:os" ID="xxx" IssueInstant="2020-05-20T12:30:40Z" Version="2.0">
36
<saml:Issuer>xxx</saml:Issuer>
37
<saml:Subject>
38
<saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified" NameQualifier="urn:etoegang:HM:00000003244440010000:entities:9632">xxx</saml:NameID>
39
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
40
<saml:SubjectConfirmationData InResponseTo="xxx" NotOnOrAfter="2020-05-20T12:35:40Z" Recipient="xxx"></saml:SubjectConfirmationData>
41
</saml:SubjectConfirmation>
42
</saml:Subject>
43
<saml:Conditions NotBefore="2020-05-20T12:30:40Z" NotOnOrAfter="2020-05-20T12:35:40Z">
44
<saml:AudienceRestriction>
45
<saml:Audience>xxx</saml:Audience>
46
</saml:AudienceRestriction>
47
</saml:Conditions>
48
<saml:AuthnStatement AuthnInstant="2020-05-20T12:30:40Z">
49
<saml:AuthnContext>
50
<saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml:AuthnContextClassRef>
51
<saml:AuthenticatingAuthority>urn:etoegang:HM:00000003244440010000:entities:9632</saml:AuthenticatingAuthority>
52
</saml:AuthnContext>
53
</saml:AuthnStatement>
54
<saml:AttributeStatement>
55
<saml:Attribute Name="urn:etoegang:core:ServiceID">
56
<saml:AttributeValue xsi:type="xs:string">urn:etoegang:DV:xxx:services:1990</saml:AttributeValue>
57
</saml:Attribute>
58
<saml:Attribute Name="urn:etoegang:core:ServiceUUID">
59
<saml:AttributeValue xsi:type="xs:string">xxx</saml:AttributeValue>
60
</saml:Attribute>
61
<saml:Attribute Name="urn:etoegang:1.9:EntityConcernedID:KvKnr">
62
<saml:AttributeValue xsi:type="xs:string">11----118</saml:AttributeValue>
63
</saml:Attribute>
64
<saml:Attribute Name="urn:etoegang:1.9:IntermediateEntityID:KvKnr">
65
<saml:AttributeValue xsi:type="xs:string">271---01</saml:AttributeValue>
66
</saml:Attribute>
67
<saml:Attribute FriendlyName="urn:etoegang:1.13:EntityConcernedID:Pseudo" Name="urn:etoegang:1.13:EntityConcernedID:Pseudo">
68
<saml:AttributeValue xsi:type="xs:string">xxx</saml:AttributeValue>
69
</saml:Attribute>
70
</saml:AttributeStatement>
71
</saml:Assertion>
72
</samlp:Response>
73
Copied!
Last modified 1yr ago