---

SAML Sign Message

---

Sample SAML

AuthNRequest AuthNRequest-with-embedded-signature SAML-response SAML response With Signed Assertion SAML response with Signed Message SAML response with Signed Message/Assettion SAML response with Encrypted assertion SAML response with Signed/encrypted assertion Logout request Logout Request Embedded Signature Logout Response Logout Response Embedded Signature

XML Signature Algorithm

http://www.w3.org/2001/04/xmldsig-more#rsa-sha512 http://www.w3.org/2000/09/xmldsig#dsa-sha1 http://www.w3.org/2009/xmldsig11#dsa-sha256 http://www.w3.org/2000/09/xmldsig#rsa-sha1 http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 http://www.w3.org/2001/04/xmldsig-more#rsa-sha384

XML to Sign

X.509 Certs

-----BEGIN CERTIFICATE----- MIICwDCCAaigAwIBAgIEZ3cS4zANBgkqhkiG9w0BAQsFADAVMRMwEQYDVQQDDApJ bnRlcm1lZENBMB4XDTE4MTIwOTE0MTYxN1oXDTI1MTIzMDE4MzAwMFowEDEOMAwG A1UEAwwFaGVsbG8wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChGc3k 67vzhZh44oddqYHRse582kMYnBZS4I8ruQGZwYaaMr4uUYdxw09Mh+VoYF3x3G8Y ZqyoJ6Wvf0oVR9/JoerM7aV3PdRDvm3GoturpF0fHLRLbS7fBy/YkR66fIy/iqBZ j5FESLSymWiZ1LLcwwWJRgesZRftEE+QQhYccy+/IjKCXiRZgboUieY6Y3qfw01i mk55rRROylQE7U34j1AiVPJdHEgFBntVEEGASTBzLXYhiZzAHttf8tEO4l4wZzmQ MTvaU8E4Ro2wvLD7mU9P6VPz7g8f5KNGI8oGyKh2cZlwfRXe/NQuKCSA9hLyD7+y 5prC2X+PjybpQUXFAgMBAAGjHTAbMA4GA1UdDwEB/wQEAwIHgDAJBgNVHRMEAjAA MA0GCSqGSIb3DQEBCwUAA4IBAQA5AsCG0e2+5Y7KRqqJCr6u9KfDFIYWXFFAoBam bjiqmw1ZcK787jIPmMAVpTTycnZ6GoXXLdorpyDq4FPUKU47GHv0ByzThKBJpYNQ EW1fcRdxAnUf23XV/6U51SBbFuF4C2NKpzv6NPiQz8yIZeie3FOCjPGLlfrextqN hXBomt5C6HZ6LqG5cN/lvR1z+y8MgcgwBzBHGATYPUfQ7pt22BZ7nncHXCGhO2LB dx9hHaM3I2LFaC7YW+nQUrK8YcPnahGTxA7Nu9U1QfCH/3bwRU3iMwOaR/7ntWUn GvIBGiHQc2kA27aWPVfuYf+u7sTJ2Qh0syo9+Mqm7QXzcHyK -----END CERTIFICATE-----

Private Key

-----BEGIN RSA PRIVATE KEY----- MIIEowIBAAKCAQEAoRnN5Ou784WYeOKHXamB0bHufNpDGJwWUuCPK7kBmcGGmjK+ LlGHccNPTIflaGBd8dxvGGasqCelr39KFUffyaHqzO2ldz3UQ75txqLbq6RdHxy0 S20u3wcv2JEeunyMv4qgWY+RREi0splomdSy3MMFiUYHrGUX7RBPkEIWHHMvvyIy gl4kWYG6FInmOmN6n8NNYppOea0UTspUBO1N+I9QIlTyXRxIBQZ7VRBBgEkwcy12 IYmcwB7bX/LRDuJeMGc5kDE72lPBOEaNsLyw+5lPT+lT8+4PH+SjRiPKBsiodnGZ cH0V3vzULigkgPYS8g+/suaawtl/j48m6UFFxQIDAQABAoIBAAZFomn4sYsUFvER 5LJFUKwQ0NekibsyDH5yhrBtlf3d9ncXZacY/nxz3aj9m3VaVx389ohNKwiq7nzs KD622yQW/TS4RdpkGlj+13hFy+adUhDNhclv+USum3LDh548DiDA7Wg/Oikd6YcQ iO2ARexpXVRQWSkhkHJm0aosoH6//2T9cM9LAqyvTsOhFf80ecBy2U/um1vu6zb0 g2i4I03Rm8QD0ty0/xw70A5DD+PG3U50uXnoZThgmUlwDVOxGoIFWAFTlp9VTezJ AY+TPxoyzqiS6DTh4BrXDFHhVpLlejC5I3EI2JFSWoysdH2tZ9oBAqlPcrkazrab vZWXm8sCgYEA4P1X/PS6QNQAM1Lk6cyMRwaTj2ftjaUHHY+8Btptx3oUzwcYFM43 Vw6/2khrlEmLDO32ke2ydTsN14/RywWM3QCAQ8xOOpuboHiEfkp3S377OqZft+z+ pyh47HTy3l/1fMt02D123vfAoQVyBecRwRbt1k9+1g+aYP4pEe/rlzcCgYEAt04s J4iKjtIcsluFN8wOY52Kd54TUI3JA/PolvzkW5sh5tTyB36N3tQrnEaslnRSX2MZ GWp8FtZN5o/ulGJ8qiklA3GN08B1FFlTKEYiNjxDSyezK1/FnmAnOIFCiJls30tW PD2UoImIKjoEtssQw7FoYQ21uU6b/viyQ/8vUOMCgYBH3sXnqSmCIfa6bmVvhgbd fW1PpwxMbgYa3Fpc+hONYCMbixGXO9STu8NvcCjlYqTHiZB1Ry/1oNqoHGoQ54H6 6vkOL0piEGkjVrxEN3dqJ3MLZjA3ab5jGVufdTBL9u1NYxS9Ks05Jn1jMoEc/5Y9 TxzEk/pZWPygtS/baf+g+wKBgQCG1ioEqpvBky0oxcmo0aGEBU7lzpHGn4VOMwzU hBI2kFbPxbSDbsRNNSUfP52UztwI7ox39axx4BJNl3KYFBo/0SQ49D6vlNKKtWpG JdDktE+L6RgSv9BOP8yZ8/tNIA7F8lTs2x+JN6HB7gupqpYaXVW6jqsuNHTriWUY P44+oQKBgG8g1fE/A2f17B0trZdYGVAc5cwkiZbUjHdxAjD53AGItrtnS3rjQwe0 TOzBp9BY2Mf/6eDhTNcWSjlAqUNPJ2PdWUbcVfEdEoJGhzQO1tbpePIOUCFvShxB ZbT5EXjFautmGROwWOoDrLHBnL2q/befzKbnat33Oe3IKupehqzy -----END RSA PRIVATE KEY-----

Relay State

Private Key Password(if ANy)

---

Click Here to Verify SAML Signature

---

Thanks for using this software, for Cofee/Beer/Amazon bill and further development of this project please Share.

Any private key value that you enter or we generate is not stored on this site, this tool is provided via an HTTPS URL to ensure that private keys cannot be stolen, for extra security run this software on your network, no cloud dependency

Asking for donation sound bad to me, so i'm raising fund from by offering all my Nine book for just $9

---

---

About SAML

• AuthNRequest: The value of the SAMLRequest parameter is the Base64 encoding of a deflated <samlp:AuthnRequest> element.

• SAMLResponse: The value of the SAMLResponse parameter is the base64 encoding of a <samlp:Response> element.

• SAML Assertions SAML assertions are usually made about a subject, represented by the <Subject> element

• SAML Protocols:: SAML Further reading

• XML Signature Syntax and Processing : SAML assertions and SAML protocol request and response messages may be signed, if the signature is based on the SAML authority’s publicprivate key pair, non-repudiation of origin,the <ds:Signature> elements found directly within SAML assertions, requests, and responses

• SAML and XML Encryption Syntax and Processing:: A <SubjectConfirmation> secret can be protected through the use of the <ds:KeyInfo> element within <SubjectConfirmationData>, which permits keys or other secrets to be encrypted.

  • An entire <Assertion> element may be encrypted
  • The <BaseID> or <NameID> element may be encrypted
  • An <Attribute> element may be encrypted

SAML Useful Tools

• Firefox SAML Tracer plugin: decode and view SAML messages
• SAML Developer Tools (Limited to RSA Key Only)
• Schema Central: XML schema reference for SAML messages