You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -174,6 +174,14 @@ A proofed identity request at AAL2, with phishing resistent MFA, for email, phon
<p markdown="1">After the user authenticates, Login.gov will redirect and POST a form back to your registered Assertion Consumer Service URL with a hidden form control named `SAMLResponse`.</p>
<p markdown="1">`SAMLResponse` contains a base64-encoded XML payload that contains data that is encrypted with the service provider's public key.</p>
<p markdown="1"> The decrypted `SAMLResponse` contains a `<saml:Assertion>` element, which in turn contains elements like `<saml:Subject>`, `<saml:AttributeStatement>` and `<saml:AuthnStatement>`. </p>
<dl>
<dt markdown="1">`Subject`</dt>
<dd>Contains the NameID, the Recipient of this information and the validity period.</dd>
<dt markdown="1">`AttributeStatement`</dt>
<dd>All the requested attributes.</dd>
<dt markdown="1">`AuthnStatement`</dt>
<dd>Contains the AAL that was used.</dd>
</dl>
<p>For example, {{ decrypted_response | markdownify }}</p>
