Token SAML

<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
 <SignedInfo>
  <CanonicalizationMethod Algorithm="
http://www.w3.org/TR/2001/REC-xml-c14n-20010315" />
  <SignatureMethod Algorithm="
http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
  <Reference URI="#SignedXmlId">
   <DigestMethod Algorithm="
http://www.w3.org/2000/09/xmldsig#sha1" />
   <DigestValue>WRIKhzH4NC67yDGnQxEKqXHvBhI=</DigestValue>
  </Reference>
 </SignedInfo>
 <SignatureValue>...</SignatureValue>
 <KeyInfo>
  <X509Data>
   <X509Certificate>...</X509Certificate>
  </X509Data>
 </KeyInfo>
 <Object Id="SignedXmlId">
  <profile timestamp="Thu, 29 Sep 2016 10:35:39 GMT" xmlns="">
   <base>
    <fiscalNumber>TINIT-AAABBB72B19D451M</fiscalNumber>
    <codice_fiscale>AAABBB72B19D451M</codice_fiscale>
    <name>ANDREA</name>
    <nome>ANDREA</nome>
    <familyName>BABINI</familyName>
    <cognome>BABINI</cognome>
    <spidCode>MARE-AAABBB72B19D451M</spidCode>
    <gender>M</gender>
    <sesso>M</sesso>
    <placeOfBirth>D451</placeOfBirth>
    <localita_nascita>FABRIANO</localita_nascita>
    <countyOfBirth>AN</countyOfBirth>
    <provincia_nascita>AN</provincia_nascita>
    <dateOfBirth>1972-02-19</dateOfBirth>
    <data_nascita>19/02/1972</data_nascita>
    <email>mail@email.it</email>
    <address>VIA DEI FIORI 34</address>
    <indirizzo_residenza>VIA DEI FIORI 34</indirizzo_residenza>
    <digitalAddress>pec@pec.it</digitalAddress>
    <email_certificata>pec@pec.it</email_certificata>
    <tipo_autenticazione>DRM</tipo_autenticazione>
    <login>AAABBB72B19D451M</login>
    <samlResponseBase64>....</samlResponseBase64>
   </base>
  </profile>
 </Object>
</Signature>

 

Per visualizzare il token Saml decodificare il Base64 del tag <samResponseBase64>

Il risultato è il seguente:

<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_abc" InResponseTo="_eee" Version="2.0" IssueInstant="2016-09-29T08:35:38.8625366Z" Destination="https://cohesion2.regione.marche.it/SPManager/SAMLConsumer.aspx" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
 <saml:Issuer>cohesion2.regione.marche.it:idp</saml:Issuer>
 <Signature xmlns="
http://www.w3.org/2000/09/xmldsig#">
  <SignedInfo>
   <CanonicalizationMethod Algorithm="
http://www.w3.org/2001/10/xml-exc-c14n#" />
   <SignatureMethod Algorithm="
http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
   <Reference URI="#_abc">
    <Transforms>
     <Transform Algorithm="
http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
     <Transform Algorithm="
http://www.w3.org/2001/10/xml-exc-c14n#" />
    </Transforms>
    <DigestMethod Algorithm="
http://www.w3.org/2000/09/xmldsig#sha1" />
    <DigestValue>...</DigestValue>
   </Reference>
  </SignedInfo>
  <SignatureValue>...</SignatureValue>
  <KeyInfo>
   <X509Data>
    <X509Certificate>...</X509Certificate>
   </X509Data>
  </KeyInfo>
 </Signature>
 <samlp:Status>
  <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" />
 </samlp:Status>
 <saml:Assertion Version="2.0" ID="_xxxy" IssueInstant="2016-09-29T08:35:38.8625366Z">
  <saml:Issuer>cohesion2.regione.marche.it:idp</saml:Issuer>
  <Signature xmlns="
http://www.w3.org/2000/09/xmldsig#">
   <SignedInfo>
    <CanonicalizationMethod Algorithm="
http://www.w3.org/2001/10/xml-exc-c14n#" />
    <SignatureMethod Algorithm="
http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
    <Reference URI="#_xxxy">
     <Transforms>
      <Transform Algorithm="
http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
      <Transform Algorithm="
http://www.w3.org/2001/10/xml-exc-c14n#" />
     </Transforms>
     <DigestMethod Algorithm="
http://www.w3.org/2000/09/xmldsig#sha1" />
     <DigestValue>...</DigestValue>
    </Reference>
   </SignedInfo>
   <SignatureValue>...</SignatureValue>
   <KeyInfo>
    <X509Data>
     <X509Certificate>....</X509Certificate>
    </X509Data>
   </KeyInfo>
  </Signature>
  <saml:Subject>
   <saml:NameID NameQualifier="cohesion.regione.marche.it">AAABBB72B19D451M</saml:NameID>
   <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
    <saml:SubjectConfirmationData NotOnOrAfter="2016-09-29T09:35:38.8625366Z" Recipient="
https://cohesion2.regione.marche.it/SPManager/SAMLConsumer.aspx" InResponseTo="_eee" />
   </saml:SubjectConfirmation>
  </saml:Subject>
  <saml:Conditions NotBefore="2016-09-29T08:35:38.8625366Z" NotOnOrAfter="2016-09-29T09:35:38.8625366Z">
   <saml:AudienceRestriction>
    <saml:Audience>cohesion2.regione.marche.it:sp</saml:Audience>
   </saml:AudienceRestriction>
  </saml:Conditions>
  <saml:AuthnStatement AuthnInstant="2016-09-29T08:35:38.8625366Z" SessionIndex="0000">
   <saml:AuthnContext>
    <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Kerberos</saml:AuthnContextClassRef>
   </saml:AuthnContext>
  </saml:AuthnStatement>
  <saml:AttributeStatement>
   <saml:Attribute Name="fiscalNumber" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="codice_fiscale">
    <saml:AttributeValue xmlns:q1="
http://www.w3.org/2001/XMLSchema" d5p1:type="q1:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">TINIT-AAABBB72B19D451M</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="name" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="nome">
    <saml:AttributeValue xmlns:q2="
http://www.w3.org/2001/XMLSchema" d5p1:type="q2:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">ANDREA</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="familyName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="cognome">
    <saml:AttributeValue xmlns:q3="
http://www.w3.org/2001/XMLSchema" d5p1:type="q3:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">BABINI</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="spidCode" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="spidCode">
    <saml:AttributeValue xmlns:q4="
http://www.w3.org/2001/XMLSchema" d5p1:type="q4:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">MARE-AAABBB72B19D451M</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="gender" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="sesso">
    <saml:AttributeValue xmlns:q5="
http://www.w3.org/2001/XMLSchema" d5p1:type="q5:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">M</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="placeOfBirth" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="localita_nascita">
    <saml:AttributeValue xmlns:q6="
http://www.w3.org/2001/XMLSchema" d5p1:type="q6:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">D451</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="countyOfBirth" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="provincia_nascita">
    <saml:AttributeValue xmlns:q7="
http://www.w3.org/2001/XMLSchema" d5p1:type="q7:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">AN</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="dateOfBirth" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="data_nascita">
    <saml:AttributeValue xmlns:q8="
http://www.w3.org/2001/XMLSchema" d5p1:type="q8:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">1972-02-19</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="email" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="email">
    <saml:AttributeValue xmlns:q9="
http://www.w3.org/2001/XMLSchema" d5p1:type="q9:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">mail@email.it</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="address" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="indirizzo_residenza">
    <saml:AttributeValue xmlns:q10="
http://www.w3.org/2001/XMLSchema" d5p1:type="q10:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">VIA DEI FIORI 34</saml:AttributeValue>
   </saml:Attribute>
   <saml:Attribute Name="digitalAddress" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="email_certificata">
    <saml:AttributeValue xmlns:q11="
http://www.w3.org/2001/XMLSchema" d5p1:type="q11:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">pec@pec.it</saml:AttributeValue>
   </saml:Attribute>
  </saml:AttributeStatement>
 </saml:Assertion>
</samlp:Response>