• pm100
  • NEWBIE
  • 0 Points
  • Member since 2008

  • Chatter
    Feed
  • 0
    Best Answers
  • 0
    Likes Received
  • 0
    Likes Given
  • 2
    Questions
  • 0
    Replies
i get assertion invalid in login history. The login history entry is associated with the correct user, so its roughly correct
 
<?xml version="1.0" encoding="utf-8"?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" IssueInstant="2008-09-10T22:17:41.6221441Z" MajorVersion="1" MinorVersion="1" Recipient="http://localhost:9000" ResponseID="7a2adffa-fb5b-470e-8ca9-aae4206f465e" xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol">
  <samlp:Status>
    <samlp:StatusCode Value="samlp:Success" />
  </samlp:Status>
  <saml:Assertion AssertionID="1f22e43a-3299-46d4-9510-ba6ebe6235b4" IssueInstant="2008-09-10T22:17:41.6221441Z" MajorVersion="1" MinorVersion="1" Issuer="ent2k3">
    <saml:AuthenticationStatement AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password" AuthenticationInstant="2008-09-10T22:17:41.6221441Z">
      <saml:Subject>
        <saml:NameIdentifier>paulmoore100@hotmail.com</saml:NameIdentifier>
      </saml:Subject>
    </saml:AuthenticationStatement>
  </saml:Assertion>
</samlp:Response>
  • September 10, 2008
  • Like
  • 0
I must have it basically correct becuase I get 'Assertion Invalid" in logon history with the correct user name
 
Can somebody say whats missing or incorrect (having a complete response in the help would be really useful)
 

<?xml version="1.0" encoding="utf-8"?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" IssueInstant="2008-08-28T21:58:46.3779416Z" MajorVersion="1" MinorVersion="1" ResponseID="e3aec38b-35fe-46b7-a147-9aba99466e81" xmlns:samlp="urn:oasis:names:tc:SAML:1.0:protocol">
  <Status>
    <StatusCode Value="saml:Success" />
  </Status>
  <saml:Assertion AssertionID="41745196-73a8-4d0d-a900-102f620d2462" IssueInstant="2008-08-28T21:58:46.3779416Z" MajorVersion="1" MinorVersion="1" Issuer="foo.com">
    <saml:Conditions NotBefore="2008-08-28T20:58:46.3779416Z" NotOnOrAfter="2008-08-29T21:58:46.3779416Z">
      <AudienceRestrictionCondition>
        <Audience>https://saml.salesforce.com</Audience>
      </AudienceRestrictionCondition>
    </saml:Conditions>
    <AuthenticationStatement AuthenticationMethod="urn:oasis:names:tc:SAML:1.0:am:password">
      <Subject>
        <NameIdentifier>jane.doe@foo.com</NameIdentifier>
      </Subject>
    </AuthenticationStatement>
  </saml:Assertion>
</samlp:Response>

  • August 28, 2008
  • Like
  • 0