Test configuration

When validating an assertion checks will be made against replay-attacks and other threats. Using this configuration setting you enter the number of seconds that are "acceptable clock skew".

When validating an assertion the Service Provider may check if the IP address given in the assertion is what is expected. If no IP address is given, this check will be disabled.

This is the test Service Provider for eIDAS and the Swedish eID Framework. It will assist you in creating an SAML authentication request and to send it to an Identity Provider for user authentication and then assist in validating and analyzing the response message received.

Setup


Build Authentication Request










Issuer element

Element present:


Name ID Policy element

Element present:




Requested authentication context element

Element present:

Authentication context class reference URIs:


PrincipalSelection extension

Element present:

Note: More attributes will be added later.

Sign message extension

Element present:





SADRequest extension

Element present:


Authentication Request

Requesting SP
Request type Signed message sent over HTTP-Redirect
Requested IdP
RelayState
Request ID
Destination
Issue instant
Force Authentication
Is Passive
Issuer
Format:
NameID Policy Format:
Allow create:
Authentication Context URI (LoA)
Assertion Consumer URL
Principal Selection (pnr)
Sign message
Encrypted:
Encryption algorithm:
Key encryption algorithm:
Display entity:
Must show:
MIME type:
SAD request ID:
Requester ID:
Sign Request ID:
Document count:
Requested version:
RequesterID (Scoping)
IDPList (Scoping)

Response and Assertion

An error occurred during processing of the Response message

Response message

Status
Issuer
Response ID
In response to
Issue instant
Destination
Signed response
Assertion status
RelayState


Assertion

ID
Issue instant
Issuer
Signed?
Subject NameID
Value
Format
Name qualifier
SP Name qualifier
Subject Confirmation
Method
Address
In response to
Not before
Not on or after
Recipient
Conditions
Not before
Not after
Audience
Authentication statement
Authn instant
Subject locality
Authn context class (LoA)
Attribute statement (attributes)

Metadata information

Federation metadata URI
Opens in new tab
Time for download
Next download
Metadata validated by this application:
(The metadata that is displayed below)
Opens in new tab
https://eid.litsec.se/svelegtest-sp/federation-md

Metadata

              
            

Service Provider information

Service provider entityID
Display name
Description
Metadata publishing URL
Opens in new tab

Service Provider metadata