Topic
IC4NOTICE: developerWorks Community will be offline May 29-30, 2015 while we upgrade to the latest version of IBM Connections. For more information, read our upgrade FAQ.
4 replies Latest Post - ‏2012-10-29T12:39:01Z by SystemAdmin
SystemAdmin
SystemAdmin
6772 Posts
ACCEPTED ANSWER

Pinned topic transform encoded http request header with saml asssertion and do AAA

‏2009-03-31T14:02:02Z |
I want to transform a http request with saml assertion in the header or body and do AAA. This is what I am trying to do , but having trouble.

1) covert query param to xml ( using advanced option in policy).

2) I could see the xml representation of the request in probe.
<request>
<url>/</url>
<base-url>/</base-url>
<args src="url" />
<args src="body">
<arg name="SAMLResponse">PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0iVVRGLTgiPz4NCjxzYW1scDpSZXNwb25zZSBJc3N1ZUluc3RhbnQ9IjIwMDktMDMtMzFUMTM6Mjc6NDZaIiBNYWpvclZlcnNpb249IjEiIE1pbm9yVmVyc2lvbj0iMCIgUmVzcG9uc2VJRD0iYjhkNTU1OTEtMWRmNy0xMWRlLTg1OGItZjFmOWFlYjIzNDM0IiB4bWxuczpzYW1scD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6MS4wOnByb3RvY29sIj48ZHM6U2lnbmF0dXJlIHhtbG5zOmRzPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj48ZHM6U2lnbmVkSW5mbz48ZHM6Q2Fub25pY2FsaXphdGlvbk1ldGhvZCBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnL1RSLzIwMDEvUkVDLXhtbC1jMTRuLTIwMDEwMzE1Ii8+PGRzOlNpZ25hdHVyZU1ldGhvZCBBbGdvcml0aG09Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvMDkveG1sZHNpZyNyc2Etc2hhMSIvPjxkczpSZWZlcmVuY2UgVVJJPSIiPjxkczpUcmFuc2Zvcm1zPjxkczpUcmFuc2Zvcm0gQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjZW52ZWxvcGVkLXNpZ25hdHVyZSIvPjxkczpUcmFuc2Zvcm0gQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtYzE0bi0yMDAxMDMxNSIvPjwvZHM6VHJhbnNmb3Jtcz48ZHM6RGlnZXN0TWV0aG9kIEFsZ29yaXRobT0iaHR0cDovL3d3dy53My5vcmcvMjAwMC8wOS94bWxkc2lnI3NoYTEiLz48ZHM6RGlnZXN0VmFsdWU+YVlNS2RaYkRDRXhpUDlpZVFhWk9rb2pHL29zPTwvZHM6RGlnZXN0VmFsdWU+PC9kczpSZWZlcmVuY2U+PC9kczpTaWduZWRJbmZvPjxkczpTaWduYXR1cmVWYWx1ZT5ZWm4zaldFWFltNng5byswU3dTb2tjYWVvb2RyZ1Y2alRoeU5rMlRWTnE2MTZBTVlNSDVhVzl5SkVqbU14QWVrSXZsNUZCSEoKWFNsV0JSeFdFUkhwVDkvc1ZLaFcwME0zd3BjL0gzOVBYVk8rZ2JnRStlbHljTXMwNms1aFpuYkNCdTgyVFRDRFNrTG15Mm1XCkJ5WHlMVlZlK3R0Q2czRzhWMlFSSHpNTVVZWT08L2RzOlNpZ25hdHVyZVZhbHVlPjxkczpLZXlJbmZvPjxkczpLZXlOYW1lPlB1YmxpYyBrZXkgb2YgY2VydGlmaWNhdGU8L2RzOktleU5hbWU+PGRzOktleVZhbHVlPjxkczpSU0FLZXlWYWx1ZT48ZHM6TW9kdWx1cz5qSlNOOHIxT2NCdno5TVhTdFVyR2hrdHRkc2FzUC9YazZVZkt2VERCcWd2UWZrOWdJTmE5OXlxZmE0aHc4dXdiZzF1WkUwZmcKUUhjNFdvNjA4dGh0TExHaUdqc3p1WFpIVlJLNTQxdjViU1JRVlJtQmYxT1FrMmtsMFB5MDdRZTNJZnM4VnV5RmFqNG9sdFd0CkRXck1DNnBTcEM1STg5WUVPMW90SHlyY1JVYz08L2RzOk1vZHVsdXM+PGRzOkV4cG9uZW50PkFRQUI8L2RzOkV4cG9uZW50PjwvZHM6UlNBS2V5VmFsdWU+PC9kczpLZXlWYWx1ZT48ZHM6WDUwOURhdGE+PGRzOlg1MDlDZXJ0aWZpY2F0ZT5NSUlDUXpDQ0FheWdBd0lCQWdJRVNjb2RVekFOQmdrcWhraUc5dzBCQVFRRkFEQm1NUXN3Q1FZRFZRUUdFd0pWVXpFTE1Ba0cKQTFVRUNCTUNUbGt4RHpBTkJnTlZCQWNUQmtGc1ltRnVlVEVNTUFvR0ExVUVDaE1EUkU5TU1Rd3dDZ1lEVlFRTEV3TlFKbFF4CkhUQWJCZ05WQkFNVEZFUlVSaUJUWVcxc0lFTmxjblJwWm1sallYUmxNQjRYRFRBNU1ETXlOVEV5TURJeU4xb1hEVEV3TURNeQpOVEV5TURJeU4xb3daakVMTUFrR0ExVUVCaE1DVlZNeEN6QUpCZ05WQkFnVEFrNVpNUTh3RFFZRFZRUUhFd1pCYkdKaGJua3gKRERBS0JnTlZCQW9UQTBSUFRERU1NQW9HQTFVRUN4TURVQ1pVTVIwd0d3WURWUVFERXhSRVZFWWdVMkZ0YkNCRFpYSjBhV1pwClkyRjBaVENCbnpBTkJna3Foa2lHOXcwQkFRRUZBQU9CalFBd2dZa0NnWUVBakpTTjhyMU9jQnZ6OU1YU3RVckdoa3R0ZHNhcwpQL1hrNlVmS3ZUREJxZ3ZRZms5Z0lOYTk5eXFmYTRodzh1d2JnMXVaRTBmZ1FIYzRXbzYwOHRodExMR2lHanN6dVhaSFZSSzUKNDF2NWJTUlFWUm1CZjFPUWsya2wwUHkwN1FlM0lmczhWdXlGYWo0b2x0V3REV3JNQzZwU3BDNUk4OVlFTzFvdEh5cmNSVWNDCkF3RUFBVEFOQmdrcWhraUc5dzBCQVFRRkFBT0JnUUNFN2pWSUhjdmFKTGYwQmVUQ25SZTQxYkMvQ3ZNLzdTaDRCd0s4clloMwpBU2tIUTlBRkRWU1Vubms2cGhUbHIvVXFXb1B0TG9ZWTh2VnF3RlJVYkZLY01jWHM0eFE3cEYxeGxJRERlc2dxSm0vY05CMUwKSjZsTzF6aytCTmswMmIwM3lsWCtSeVg3M2NkaU9UazVnOWc4NkxmbmphVWVIUXpqbC9jK1hLT0ZWUT09PC9kczpYNTA5Q2VydGlmaWNhdGU+PC9kczpYNTA5RGF0YT48L2RzOktleUluZm8+PC9kczpTaWduYXR1cmU+PHNhbWxwOlN0YXR1cz48c2FtbHA6U3RhdHVzQ29kZSBWYWx1ZT0ic2FtbHA6U3VjY2VzcyIvPjwvc2FtbHA6U3RhdHVzPjxzYW1sOkFzc2VydGlvbiBBc3NlcnRpb25JRD0iYjhkNTU1OTAtMWRmNy0xMWRlLTg1OGItZjFmOWFlYjIzNDM0IiBJc3N1ZUluc3RhbnQ9IjIwMDktMDMtMzFUMTM6Mjc6NDZaIiBJc3N1ZXI9Imh0dHA6Ly9sYWJvci5ueS5nb3YiIE1ham9yVmVyc2lvbj0iMSIgTWlub3JWZXJzaW9uPSIwIiB4bWxuczpzYW1sPSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoxLjA6YXNzZXJ0aW9uIj48c2FtbDpDb25kaXRpb25zIE5vdEJlZm9yZT0iMjAwOS0wMy0zMVQxMzoyNzo0NloiIE5vdE9uT3JBZnRlcj0iMjAwOS0wNC0wMVQxMzoyNzo0NloiLz48c2FtbDpBdXRoZW50aWNhdGlvblN0YXRlbWVudCBBdXRoZW50aWNhdGlvbkluc3RhbnQ9IjIwMDktMDMtMzFUMTM6Mjc6NDZaIiBBdXRoZW50aWNhdGlvbk1ldGhvZD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6MS4wOmFtOnBhc3N3b3JkIj48c2FtbDpTdWJqZWN0PjxzYW1sOk5hbWVJZGVudGlmaWVyPm5kcGFyMzwvc2FtbDpOYW1lSWRlbnRpZmllcj48c2FtbDpTdWJqZWN0Q29uZmlybWF0aW9uPjxzYW1sOkNvbmZpcm1hdGlvbk1ldGhvZD51cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoxLjA6Y206YmVhcmVyPC9zYW1sOkNvbmZpcm1hdGlvbk1ldGhvZD48L3NhbWw6U3ViamVjdENvbmZpcm1hdGlvbj48L3NhbWw6U3ViamVjdD48c2FtbDpTdWJqZWN0TG9jYWxpdHkgSVBBZGRyZXNzPSIxMC43Mi45Mi4yNSIvPjwvc2FtbDpBdXRoZW50aWNhdGlvblN0YXRlbWVudD48c2FtbDpBdHRyaWJ1dGVTdGF0ZW1lbnQ+PHNhbWw6U3ViamVjdD48c2FtbDpOYW1lSWRlbnRpZmllcj5uZHBhcjM8L3NhbWw6TmFtZUlkZW50aWZpZXI+PHNhbWw6U3ViamVjdENvbmZpcm1hdGlvbj48c2FtbDpDb25maXJtYXRpb25NZXRob2Q+dXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6MS4wOmNtOmJlYXJlcjwvc2FtbDpDb25maXJtYXRpb25NZXRob2Q+PC9zYW1sOlN1YmplY3RDb25maXJtYXRpb24+PC9zYW1sOlN1YmplY3Q+PHNhbWw6QXR0cmlidXRlIEF0dHJpYnV0ZU5hbWU9IlBob25lTnVtYmVyIiBBdHRyaWJ1dGVOYW1lc3BhY2U9Imh0dHA6Ly9sYWJvci5ueS5nb3YiPjxzYW1sOkF0dHJpYnV0ZVZhbHVlPjUxODU1NTU1NTU8L3NhbWw6QXR0cmlidXRlVmFsdWU+PC9zYW1sOkF0dHJpYnV0ZT48c2FtbDpBdHRyaWJ1dGUgQXR0cmlidXRlTmFtZT0iVXNlck1pZGRsZU5hbWUiIEF0dHJpYnV0ZU5hbWVzcGFjZT0iaHR0cDovL2xhYm9yLm55LmdvdiI+PHNhbWw6QXR0cmlidXRlVmFsdWU+Rzwvc2FtbDpBdHRyaWJ1dGVWYWx1ZT48L3NhbWw6QXR0cmlidXRlPjxzYW1sOkF0dHJpYnV0ZSBBdHRyaWJ1dGVOYW1lPSJVc2VyTGFzdE5hbWUiIEF0dHJpYnV0ZU5hbWVzcGFjZT0iaHR0cDovL2xhYm9yLm55LmdvdiI+PHNhbWw6QXR0cmlidXRlVmFsdWU+WVlZWTwvc2FtbDpBdHRyaWJ1dGVWYWx1ZT48L3NhbWw6QXR0cmlidXRlPjxzYW1sOkF0dHJpYnV0ZSBBdHRyaWJ1dGVOYW1lPSJFbWFpbEFkZHJlc3MiIEF0dHJpYnV0ZU5hbWVzcGFjZT0iaHR0cDovL2xhYm9yLm55LmdvdiI+PHNhbWw6QXR0cmlidXRlVmFsdWU+VGVzdEB0ZXN0LmNvbTwvc2FtbDpBdHRyaWJ1dGVWYWx1ZT48L3NhbWw6QXR0cmlidXRlPjxzYW1sOkF0dHJpYnV0ZSBBdHRyaWJ1dGVOYW1lPSJVc2VyRmlyc3ROYW1lIiBBdHRyaWJ1dGVOYW1lc3BhY2U9Imh0dHA6Ly9sYWJvci5ueS5nb3YiPjxzYW1sOkF0dHJpYnV0ZVZhbHVlPlhYWDwvc2FtbDpBdHRyaWJ1dGVWYWx1ZT48L3NhbWw6QXR0cmlidXRlPjxzYW1sOkF0dHJpYnV0ZSBBdHRyaWJ1dGVOYW1lPSJFeHRlcm5hbEN1c3RvbWVySWQiIEF0dHJpYnV0ZU5hbWVzcGFjZT0iaHR0cDovL2xhYm9yLm55LmdvdiI+PHNhbWw6QXR0cmlidXRlVmFsdWU+MDEwMDkzNDU2PC9zYW1sOkF0dHJpYnV0ZVZhbHVlPjwvc2FtbDpBdHRyaWJ1dGU+PHNhbWw6QXR0cmlidXRlIEF0dHJpYnV0ZU5hbWU9IlVzZXJSb2xlIiBBdHRyaWJ1dGVOYW1lc3BhY2U9Imh0dHA6Ly9sYWJvci5ueS5nb3YiPjxzYW1sOkF0dHJpYnV0ZVZhbHVlPkJ1c2luZXNzPC9zYW1sOkF0dHJpYnV0ZVZhbHVlPjwvc2FtbDpBdHRyaWJ1dGU+PHNhbWw6QXR0cmlidXRlIEF0dHJpYnV0ZU5hbWU9IkV4dGVybmFsQ3VzdG9tZXJUeXBlIiBBdHRyaWJ1dGVOYW1lc3BhY2U9Imh0dHA6Ly9sYWJvci5ueS5nb3YiPjxzYW1sOkF0dHJpYnV0ZVZhbHVlPkJ1c2luZXNzPC9zYW1sOkF0dHJpYnV0ZVZhbHVlPjwvc2FtbDpBdHRyaWJ1dGU+PHNhbWw6QXR0cmlidXRlIEF0dHJpYnV0ZU5hbWU9IkZFSU4iIEF0dHJpYnV0ZU5hbWVzcGFjZT0iaHR0cDovL2xhYm9yLm55LmdvdiI+PHNhbWw6QXR0cmlidXRlVmFsdWU+MTIzNDU2Nzwvc2FtbDpBdHRyaWJ1dGVWYWx1ZT48L3NhbWw6QXR0cmlidXRlPjxzYW1sOkF0dHJpYnV0ZSBBdHRyaWJ1dGVOYW1lPSJMZWdhbE5hbWUiIEF0dHJpYnV0ZU5hbWVzcGFjZT0iaHR0cDovL2xhYm9yLm55LmdvdiI+PHNhbWw6QXR0cmlidXRlVmFsdWU+QUJDIEluYzwvc2FtbDpBdHRyaWJ1dGVWYWx1ZT48L3NhbWw6QXR0cmlidXRlPjwvc2FtbDpBdHRyaWJ1dGVTdGF0ZW1lbnQ+PGRzOlNpZ25hdHVyZSB4bWxuczpkcz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC8wOS94bWxkc2lnIyI+PGRzOlNpZ25lZEluZm8+PGRzOkNhbm9uaWNhbGl6YXRpb25NZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtYzE0bi0yMDAxMDMxNSIvPjxkczpTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjcnNhLXNoYTEiLz48ZHM6UmVmZXJlbmNlIFVSST0iI3hwb2ludGVyKC9zYW1scDpSZXNwb25zZVsxXS9zYW1sOkFzc2VydGlvblsxXSkiPjxkczpUcmFuc2Zvcm1zPjxkczpUcmFuc2Zvcm0gQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjZW52ZWxvcGVkLXNpZ25hdHVyZSIvPjxkczpUcmFuc2Zvcm0gQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy9UUi8yMDAxL1JFQy14bWwtYzE0bi0yMDAxMDMxNSIvPjwvZHM6VHJhbnNmb3Jtcz48ZHM6RGlnZXN0TWV0aG9kIEFsZ29yaXRobT0iaHR0cDovL3d3dy53My5vcmcvMjAwMC8wOS94bWxkc2lnI3NoYTEiLz48ZHM6RGlnZXN0VmFsdWU+a09pZjJ1emlFa0ZBVFNXRnB6SjVjdDdJdnVBPTwvZHM6RGlnZXN0VmFsdWU+PC9kczpSZWZlcmVuY2U+PC9kczpTaWduZWRJbmZvPjxkczpTaWduYXR1cmVWYWx1ZT5lbVVDcm45Q2dQd3REQnZVNE02dlcrWlJ4aisxdDcvT3RaZnFBblRlSlh5ZDF4bk1XMkYvU0FYSjA1YzZNVFd3ZGdiNUtKOUUKQksvWTJpTGMvam12OVdtQ2dwSlRDYTVUOWFMR3VOaEIxc3RFNWpvelJmS1ZmUldOa3pob3lYT3ZEa2xkbE5IM1BqQlFwazB2Cm5yVEhJci9uYnMzUk95c0h1eWJPWFB1Z2o5OD08L2RzOlNpZ25hdHVyZVZhbHVlPjxkczpLZXlJbmZvPjxkczpLZXlOYW1lPlB1YmxpYyBrZXkgb2YgY2VydGlmaWNhdGU8L2RzOktleU5hbWU+PGRzOktleVZhbHVlPjxkczpSU0FLZXlWYWx1ZT48ZHM6TW9kdWx1cz5qSlNOOHIxT2NCdno5TVhTdFVyR2hrdHRkc2FzUC9YazZVZkt2VERCcWd2UWZrOWdJTmE5OXlxZmE0aHc4dXdiZzF1WkUwZmcKUUhjNFdvNjA4dGh0TExHaUdqc3p1WFpIVlJLNTQxdjViU1JRVlJtQmYxT1FrMmtsMFB5MDdRZTNJZnM4VnV5RmFqNG9sdFd0CkRXck1DNnBTcEM1STg5WUVPMW90SHlyY1JVYz08L2RzOk1vZHVsdXM+PGRzOkV4cG9uZW50PkFRQUI8L2RzOkV4cG9uZW50PjwvZHM6UlNBS2V5VmFsdWU+PC9kczpLZXlWYWx1ZT48ZHM6WDUwOURhdGE+PGRzOlg1MDlDZXJ0aWZpY2F0ZT5NSUlDUXpDQ0FheWdBd0lCQWdJRVNjb2RVekFOQmdrcWhraUc5dzBCQVFRRkFEQm1NUXN3Q1FZRFZRUUdFd0pWVXpFTE1Ba0cKQTFVRUNCTUNUbGt4RHpBTkJnTlZCQWNUQmtGc1ltRnVlVEVNTUFvR0ExVUVDaE1EUkU5TU1Rd3dDZ1lEVlFRTEV3TlFKbFF4CkhUQWJCZ05WQkFNVEZFUlVSaUJUWVcxc0lFTmxjblJwWm1sallYUmxNQjRYRFRBNU1ETXlOVEV5TURJeU4xb1hEVEV3TURNeQpOVEV5TURJeU4xb3daakVMTUFrR0ExVUVCaE1DVlZNeEN6QUpCZ05WQkFnVEFrNVpNUTh3RFFZRFZRUUhFd1pCYkdKaGJua3gKRERBS0JnTlZCQW9UQTBSUFRERU1NQW9HQTFVRUN4TURVQ1pVTVIwd0d3WURWUVFERXhSRVZFWWdVMkZ0YkNCRFpYSjBhV1pwClkyRjBaVENCbnpBTkJna3Foa2lHOXcwQkFRRUZBQU9CalFBd2dZa0NnWUVBakpTTjhyMU9jQnZ6OU1YU3RVckdoa3R0ZHNhcwpQL1hrNlVmS3ZUREJxZ3ZRZms5Z0lOYTk5eXFmYTRodzh1d2JnMXVaRTBmZ1FIYzRXbzYwOHRodExMR2lHanN6dVhaSFZSSzUKNDF2NWJTUlFWUm1CZjFPUWsya2wwUHkwN1FlM0lmczhWdXlGYWo0b2x0V3REV3JNQzZwU3BDNUk4OVlFTzFvdEh5cmNSVWNDCkF3RUFBVEFOQmdrcWhraUc5dzBCQVFRRkFBT0JnUUNFN2pWSUhjdmFKTGYwQmVUQ25SZTQxYkMvQ3ZNLzdTaDRCd0s4clloMwpBU2tIUTlBRkRWU1Vubms2cGhUbHIvVXFXb1B0TG9ZWTh2VnF3RlJVYkZLY01jWHM0eFE3cEYxeGxJRERlc2dxSm0vY05CMUwKSjZsTzF6aytCTmswMmIwM3lsWCtSeVg3M2NkaU9UazVnOWc4NkxmbmphVWVIUXpqbC9jK1hLT0ZWUT09PC9kczpYNTA5Q2VydGlmaWNhdGU+PC9kczpYNTA5RGF0YT48L2RzOktleUluZm8+PC9kczpTaWduYXR1cmU+PC9zYW1sOkFzc2VydGlvbj48L3NhbWxwOlJlc3BvbnNlPgo=</arg>
<arg name="TARGET_TO_USE_WITH_SAML">http://64.132.182.143:8080</arg>
</args>
</request>

3) But now, I want to extract the encoded assertion from the xml and decode it and send to AAA. I am trying to use a custom xsl for that.
But the xsl doesn't seem to produce any output.
<?xml version="1.0" encoding="UTF-8"?>
<xsl:stylesheet xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:xsl="http://www.w3.org/1999/XSL/Transform"
version="1.0"
xmlns:dp="http://www.datapower.com/extensions"
extension-element-prefixes="dp"
xmlns:str="http://exslt.org/strings">
<xsl:variable name="xmlBase64">
<xsl:value-of select="/request/args/arg"/>
</xsl:variable>
<xsl:variable name="decodedxml">
<dp:parse select="$xmlBase64" encoding="base-64"/>
<xsl:message>
<xsl:value-of select="concat('xmlBase64 node text=', $xmlBase64/doc/node/text())"/>
</xsl:message>
</xsl:variable>

</xsl:stylesheet>

Any help would be appreciated. I am new to xsl and datapower.
Updated on 2012-10-29T12:39:01Z at 2012-10-29T12:39:01Z by SystemAdmin
  • DaveHubbard
    DaveHubbard
    135 Posts
    ACCEPTED ANSWER

    Re: transform encoded http request header with saml asssertion and do AAA

    ‏2009-04-01T15:14:03Z  in response to SystemAdmin
    I'm not quite sure from your post what elements you have/haven't got working, but a few observations;

    1) Your xpath might need to include the attributes (as you have two args and two arg nodes), something like:

    
    <xsl:value-of select=
    "/request/args[@src='body']/arg[@name='SAMLResponse']"/>
    


    although it's possible the forum view gobbled up the "at" symbols

    2) I might also be tempted to:

    • output the content of this to log
    
    <xsl:message dp:priority=
    "debug">SAML [<xsl:value-of select
    "$xmlBase64" />]</xsl:message>
    

    • after the parse check the var://local/_extension/error variable (as per the Extension guide)
    • output the decoded node set as another message
    
    <xsl:message dp:priority=
    "debug">Decoded [<xsl:value-of select
    "$decodedxml" />]</xsl:message>
    


    3) Your final xsl:message may need be reset as above i.e. remove the text bit before the $xmlBase64/doc/node/text()
    It's possible that, as select may be looking for an xpath this won't work
    
    <xsl:message dp:priority=
    "debug">Text [<xsl:value-of select
    "$xmlBase64/doc/node/text()" />]</xsl:message>
    


    Note - as I've put in the dp:priority above you'll need to make sure that level is set on your logging for these to come out in the log.

    Regards
    Dave
  • SystemAdmin
    SystemAdmin
    6772 Posts
    ACCEPTED ANSWER

    Re: transform encoded http request header with saml asssertion and do AAA

    ‏2009-04-01T20:31:19Z  in response to SystemAdmin
    I didn't notice it, that the editor had removed all that. I had it right
    <xsl:value-of select="/request/args/arg" />
    • SystemAdmin
      SystemAdmin
      6772 Posts
      ACCEPTED ANSWER

      Re: transform encoded http request header with saml asssertion and do AAA

      ‏2012-10-29T12:39:01Z  in response to SystemAdmin
      > anigirish wrote:
      > I didn't notice it, that the editor had removed all that. I had it right
      > <xsl:value-of select="/request/args/arg" />

      Anigirish, were you able to get this to work? I'm doing something very similar, and I am also not getting any results in the probe. I tried the debug statements that David suggested, and I'm able to see the decode in the log, but I'm getting anything in the probe.
  • SystemAdmin
    SystemAdmin
    6772 Posts
    ACCEPTED ANSWER

    Re: transform encoded http request header with saml asssertion and do AAA

    ‏2009-04-01T20:39:25Z  in response to SystemAdmin
    The custom stylesheet does decode the assertion fine .But now I have a problem with the AAA step. It fails in au and az. I use Extract token from message option for AU (with * in xpath). I accept an assertion with valid signature. My decoded saml assetion from transform step looks like the attached file..Should I be passing only the assertion and not the saml response with assertion?