Azure B2C SAML The service provider is not a valid audience of the assertion

Grossmann, Tobias 11 Reputation points
2022-09-13T08:07:40.21+00:00

Hi, we are stuck with the error: The service provider is not a valid audience of the assertion. The SAML Service Provide returns a vaild answer, its somewhere in Azure B2C.
Thanks for any help.

Correlation ID: feed9654-9385-4d76-bb5a-c8d986424b91
Correlation ID: 850711f0-5340-4e91-8fab-761e82d4d989

240433-valid-saml-response.xml240389-logscsv.log240427-accountpatient-strengthch-b2c-1a-trustframeworkbas.xml240428-accountpatient-strengthch-b2c-1a-trustframeworkext.xml

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,840 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Grossmann, Tobias 11 Reputation points
    2022-09-19T12:54:46.05+00:00

    242562-image.png

    Sure, no effect.

    [  
    {  
    "Kind": "Headers",  
    "Content": {  
    "UserJourneyRecorderEndpoint": "urn:journeyrecorder:applicationinsights",  
    "CorrelationId": "3ed5fcef-45e7-4d2c-a622-dab1931a71e4",  
    "EventInstance": "Event:ClaimsExchange",  
    "TenantId": "b2cpatientstrength.onmicrosoft.com",  
    "PolicyId": "B2C_1A_signup_signin"  
    }  
    },  
    {  
    "Kind": "Transition",  
    "Content": {  
    "EventName": "ClaimsExchange",  
    "StateName": "Initial"  
    }  
    },  
    {  
    "Kind": "Predicate",  
    "Content": "Web.TPEngine.StateMachineHandlers.ClaimsExchangeMessageValidationHandler"  
    },  
    {  
    "Kind": "HandlerResult",  
    "Content": {  
    "Result": false,  
    "RecorderRecord": {  
    "Values": [  
    {  
    "Key": "Validation",  
    "Value": {  
    "Values": [  
    {  
    "Key": "SubmittedBy",  
    "Value": "HINExchange"  
    },  
    {  
    "Key": "ProtocolProviderType",  
    "Value": "SamlProtocolProvider"  
    },  
    {  
    "Key": "Exception",  
    "Value": {  
    "Kind": "Handled",  
    "HResult": "80131500",  
    "Message": "The service provider is not a valid audience of the assertion.",  
    "Data": {  
    "IsPolicySpecificError": false  
    }  
    }  
    }  
    ]  
    }  
    }  
    ]  
    },  
    "Statebag": {  
    "MACHSTATE": {  
    "c": "2022-09-19T12:49:48.7045945Z",  
    "k": "MACHSTATE",  
    "v": "Initial",  
    "p": true  
    },  
    "JC": {  
    "c": "2022-09-19T12:49:48.4389656Z",  
    "k": "JC",  
    "v": "de",  
    "p": true  
    },  
    "ORCH_CS": {  
    "c": "2022-09-19T12:49:48.6108425Z",  
    "k": "ORCH_CS",  
    "v": "2",  
    "p": true  
    },  
    "ORCH_IDX": {  
    "c": "2022-09-19T12:49:48.6264717Z",  
    "k": "ORCH_IDX",  
    "v": "0",  
    "p": true  
    },  
    "RA": {  
    "c": "2022-09-19T12:49:48.6264717Z",  
    "k": "RA",  
    "v": "0",  
    "p": true  
    },  
    "RPP": {  
    "c": "2022-09-19T12:49:48.4389656Z",  
    "k": "RPP",  
    "v": "OAUTH2",  
    "p": true  
    },  
    "RPIPP": {  
    "c": "2022-09-19T12:49:48.4389656Z",  
    "k": "RPIPP",  
    "v": "OAuth2ProtocolProvider",  
    "p": true  
    },  
    "OTID": {  
    "c": "2022-09-19T12:49:48.4389656Z",  
    "k": "OTID",  
    "v": "account.patient-strength.ch",  
    "p": true  
    },  
    "APPMV": {  
    "c": "2022-09-19T12:49:48.4389656Z",  
    "k": "APPMV",  
    "v": "V2",  
    "p": true  
    },  
    "CT": {  
    "c": "2022-09-19T12:49:48.5640222Z",  
    "k": "CT",  
    "v": "Spa",  
    "p": true  
    },  
    "IC": {  
    "c": "2022-09-19T12:49:48.5795935Z",  
    "k": "IC",  
    "v": "False",  
    "p": true  
    },  
    "MSG(6a060ff3-ecca-4cb3-b79a-ee9293c966bc)": {  
    "c": "2022-09-19T12:49:48.5795935Z",  
    "k": "MSG(6a060ff3-ecca-4cb3-b79a-ee9293c966bc)",  
    "v": "{\"TenantId\":\"b2cpatientstrength.onmicrosoft.com\",\"PolicyId\":\"B2C_1A_signup_signin\",\"RedirectUri\":\"https://jwt.ms/\",\"AdditionalParameters\":{\"p\":\"B2C_1A_SIGNUP_SIGNIN\"},\"Nonce\":\"defaultNonce\",\"ClientId\":\"805b6fb9-92aa-4f34-8fb9-9ad2e251916d\",\"ResponseType\":\"id_token\",\"ResponseRedirector\":{\"URI\":\"https://jwt.ms\",\"D\":false,\"WF\":true,\"R\":false},\"Scope\":\"openid\",\"AppModelVersion\":1,\"ScopedProviders\":[]}",  
    "p": true,  
    "t": "OAuth2"  
    },  
    "IMESSAGE": {  
    "c": "2022-09-19T12:49:50.9973127Z",  
    "k": "IMESSAGE",  
    "v": "6a060ff3-ecca-4cb3-b79a-ee9293c966bc",  
    "p": true  
    },  
    "TAGE": {  
    "c": "2022-09-19T12:49:50.9660629Z",  
    "k": "TAGE",  
    "v": "HINExchange",  
    "p": true  
    },  
    "MSG(_886ab8fd-bd0a-44c6-be05-77adc4367191)": {  
    "c": "2022-09-19T12:49:48.6889712Z",  
    "k": "MSG(_886ab8fd-bd0a-44c6-be05-77adc4367191)",  
    "v": "<AuthnRequest xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" ID=\"_886ab8fd-bd0a-44c6-be05-77adc4367191\" Version=\"2.0\" IssueInstant=\"2022-09-19T12:49:48.6420919Z\" Destination=\"https://fed.hin.ch/saml/2.0/idp/\" ForceAuthn=\"false\" IsPassive=\"false\" ProtocolBinding=\"urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST\" AssertionConsumerServiceURL=\"https://b2cpatientstrength.b2clogin.com/b2cpatientstrength.onmicrosoft.com/B2C_1A_TrustFrameworkBase/samlp/sso/assertionconsumer\" xmlns=\"urn:oasis:names:tc:SAML:2.0:protocol\"><Issuer Format=\"urn:oasis:names:tc:SAML:2.0:nameid-format:entity\" xmlns=\"urn:oasis:names:tc:SAML:2.0:assertion\">https://b2cpatientstrength.b2clogin.com/b2cpatientstrength.onmicrosoft.com/B2C_1A_TrustFrameworkBase</Issuer></AuthnRequest>",  
    "p": true  
    },  
    "SE": {  
    "c": "2022-09-19T12:49:48.7045945Z",  
    "k": "SE",  
    "v": "Social",  
    "p": true  
    },  
    "CMESSAGE": {  
    "c": "2022-09-19T12:49:50.9973127Z",  
    "k": "CMESSAGE",  
    "v": "Response_03d5b03b83f4bf1bb12c7d5faf13f8faac0d7df6",  
    "p": true  
    },  
    "MSG(SAMLResponse_step_2)": {  
    "c": "2022-09-19T12:49:50.8410596Z",  
    "k": "MSG(SAMLResponse_step_2)",  
    "v": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<saml2p:Response Destination=\"https://b2cpatientstrength.b2clogin.com/b2cpatientstrength.onmicrosoft.com/B2C_1A_TrustFrameworkBase/samlp/sso/assertionconsumer\" ID=\"Response_03d5b03b83f4bf1bb12c7d5faf13f8faac0d7df6\" InResponseTo=\"_886ab8fd-bd0a-44c6-be05-77adc4367191\" IssueInstant=\"2022-09-19T12:49:50.496Z\" Version=\"2.0\" xmlns:saml2p=\"urn:oasis:names:tc:SAML:2.0:protocol\"><saml2:Issuer xmlns:saml2=\"urn:oasis:names:tc:SAML:2.0:assertion\">https://fed.hin.ch/saml/2.0/idp/</saml2:Issuer><saml2p:Status><saml2p:StatusCode Value=\"urn:oasis:names:tc:SAML:2.0:status:Success\"/></saml2p:Status><saml2:Assertion ID=\"Assertion_86b608c31ffdf123f7d1f4929d61043a0f8fe8da\" IssueInstant=\"2022-09-19T12:49:50.496Z\" Version=\"2.0\" xmlns:saml2=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xs=\"http://www.w3.org/2001/XMLSchema\"><saml2:Issuer>https://fed.hin.ch/saml/2.0/idp/</saml2:Issuer><ds:Signature xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm=\"http://www.w3.org/2001/10/xml-exc-c14n#\"/><ds:SignatureMethod Algorithm=\"http://www.w3.org/2001/04/xmldsig-more#rsa-sha256\"/><ds:Reference URI=\"#Assertion_86b608c31ffdf123f7d1f4929d61043a0f8fe8da\"><ds:Transforms><ds:Transform Algorithm=\"http://www.w3.org/2000/09/xmldsig#enveloped-signature\"/><ds:Transform Algorithm=\"http://www.w3.org/2001/10/xml-exc-c14n#\"><ec:InclusiveNamespaces PrefixList=\"xs\" xmlns:ec=\"http://www.w3.org/2001/10/xml-exc-c14n#\"/></ds:Transform></ds:Transforms><ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/><ds:DigestValue>BUhaFQzEYV58hP6uHMrCMTlfHvVKm71N5Id+fJS+QL8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>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</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIJeDCCB2CgAwIBAgIUEvoAGmqco2hieccHg185uhbx+ZcwDQYJKoZIhvcNAQELBQAwVjELMAkG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\n7gxzKs/UhevMZvfmty2rBmCuPAy/ngcQStYlS0QkNENojQ==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml2:Subject><saml2:NameID Format=\"urn:oasis:names:tc:SAML:2.0:nameid-format:persistent\">71747</saml2:NameID><saml2:SubjectConfirmation Method=\"urn:oasis:names:tc:SAML:2.0:cm:bearer\"><saml2:SubjectConfirmationData InResponseTo=\"_886ab8fd-bd0a-44c6-be05-77adc4367191\" NotOnOrAfter=\"2022-09-19T12:50:00.497Z\" Recipient=\"https://b2cpatientstrength.b2clogin.com/b2cpatientstrength.onmicrosoft.com/B2C_1A_TrustFrameworkBase/samlp/sso/assertionconsumer\"/></saml2:SubjectConfirmation></saml2:Subject><saml2:Conditions NotBefore=\"2022-09-19T12:49:50.496Z\" NotOnOrAfter=\"2022-09-19T12:50:20.496Z\"><saml2:AudienceRestriction><saml2:Audience>https://b2cpatientstrength.b2clogin.com/b2cpatientstrength.onmicrosoft.com/B2C_1A_TrustFrameworkBase/samlp/sso/assertionconsumer</saml2:Audience></saml2:AudienceRestriction></saml2:Conditions><saml2:AuthnStatement AuthnInstant=\"2022-09-19T12:49:50.496Z\" SessionNotOnOrAfter=\"2022-09-19T14:49:50.496Z\"><saml2:AuthnContext><saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml2:AuthnContextClassRef></saml2:AuthnContext></saml2:AuthnStatement><saml2:AttributeStatement><saml2:Attribute Name=\"X-HIN-ASAS-UserId\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">71747</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-USERTYPE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">Team</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-POSTALCODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">8048</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-LOGIN-NAME\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">patstren1</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-POSTAL-CODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">8048</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-ADDRESS-1\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">Hohlstrasse 614</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-ORGANIZATION\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">PatientStrength</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-MAIL\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">test-patientstrength@hin.ch</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-ASAS-UserId\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">71747</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-ORGANISATION-TYPE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">(110,2.16.756.5.30.1.165.1.3)</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-COUNTRY\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">ch</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-PERSON-CODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">0</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-TEST-CODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">1</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-LOCATION\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">Zürich</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-COMMON-NAME\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">PatientStrength</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-HARDENCODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">PLUS</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-INSTITUTION-CODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">1</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-LANGUAGE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">de</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-SURNAME\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">PatientStrength</saml2:AttributeValue></saml2:Attribute></saml2:AttributeStatement></saml2:Assertion></saml2p:Response>",  
    "p": true,  
    "t": "Saml2"  
    },  
    "MSG(Response_03d5b03b83f4bf1bb12c7d5faf13f8faac0d7df6)": {  
    "c": "2022-09-19T12:49:50.9816888Z",  
    "k": "MSG(Response_03d5b03b83f4bf1bb12c7d5faf13f8faac0d7df6)",  
    "v": "<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<saml2p:Response Destination=\"https://b2cpatientstrength.b2clogin.com/b2cpatientstrength.onmicrosoft.com/B2C_1A_TrustFrameworkBase/samlp/sso/assertionconsumer\" ID=\"Response_03d5b03b83f4bf1bb12c7d5faf13f8faac0d7df6\" InResponseTo=\"_886ab8fd-bd0a-44c6-be05-77adc4367191\" IssueInstant=\"2022-09-19T12:49:50.496Z\" Version=\"2.0\" xmlns:saml2p=\"urn:oasis:names:tc:SAML:2.0:protocol\"><saml2:Issuer xmlns:saml2=\"urn:oasis:names:tc:SAML:2.0:assertion\">https://fed.hin.ch/saml/2.0/idp/</saml2:Issuer><saml2p:Status><saml2p:StatusCode Value=\"urn:oasis:names:tc:SAML:2.0:status:Success\"/></saml2p:Status><saml2:Assertion ID=\"Assertion_86b608c31ffdf123f7d1f4929d61043a0f8fe8da\" IssueInstant=\"2022-09-19T12:49:50.496Z\" Version=\"2.0\" xmlns:saml2=\"urn:oasis:names:tc:SAML:2.0:assertion\" xmlns:xs=\"http://www.w3.org/2001/XMLSchema\"><saml2:Issuer>https://fed.hin.ch/saml/2.0/idp/</saml2:Issuer><ds:Signature xmlns:ds=\"http://www.w3.org/2000/09/xmldsig#\"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm=\"http://www.w3.org/2001/10/xml-exc-c14n#\"/><ds:SignatureMethod Algorithm=\"http://www.w3.org/2001/04/xmldsig-more#rsa-sha256\"/><ds:Reference URI=\"#Assertion_86b608c31ffdf123f7d1f4929d61043a0f8fe8da\"><ds:Transforms><ds:Transform Algorithm=\"http://www.w3.org/2000/09/xmldsig#enveloped-signature\"/><ds:Transform Algorithm=\"http://www.w3.org/2001/10/xml-exc-c14n#\"><ec:InclusiveNamespaces PrefixList=\"xs\" xmlns:ec=\"http://www.w3.org/2001/10/xml-exc-c14n#\"/></ds:Transform></ds:Transforms><ds:DigestMethod Algorithm=\"http://www.w3.org/2001/04/xmlenc#sha256\"/><ds:DigestValue>BUhaFQzEYV58hP6uHMrCMTlfHvVKm71N5Id+fJS+QL8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lW0pzYtgyhEJHsmvpb1DVazolvxVYSft0XajtEHHGjJd1VnAr1rVeVNiNycTGlXzTy7c1Pgs4Wdd2MV90n6B+O1bSrvQzxhKhFZ0xWwOpcbum/tnHut1KB9uOZ2qqa5trb2WeA/NgsS+hfKLbQ6v8sfMQLN257cdHi7AFSmkZkLkK/opMiuq2E0lQPtu7A6xd3hbHUfI1MW/26vorrIQNHuPBNftmqXGs978EDtPOQ1muIA+mYq5/fA13Mv8azpHC6L/LA3v9XoWKhbkjXY3CY2YHFRftXY14ADgbXj205TUv4Zv1yUpuNBD95pHFKHC25DiJ5mVvLvhfJj3ms8RUVmx6IYYga/09WD/TiWilYyBBxgNNvrpX5BU+mqJR0fUsG2NQPBBTnJnb3Cl6GNa8qKc4IVBnkM5qWQvJUV0xpnCQdiQUCjxYu/RNCXXb7vyE9S2jvtYvjjpIyQMx8uv38yEtLPAx1HaOvfY8N1C1iepBDuIbA60IhuleYqWRxVjRe8EQtZJn2cI4fz2helU14CPD4DCIn5nYe/eE1VCYYFHHLPhvzTuUbkIMd1YFy+sVmndB2cQOmRv4b7glJH4InIWBA/LuJDta5Fm2v/bLHPMQ3l2m0jZwRWiJNjzoOndjTpW1J8PlWSEhagzWtp7niJXJWewY/p+WdawshXbpw0=</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIJeDCCB2CgAwIBAgIUEvoAGmqco2hieccHg185uhbx+ZcwDQYJKoZIhvcNAQELBQAwVjELMAkG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\n7gxzKs/UhevMZvfmty2rBmCuPAy/ngcQStYlS0QkNENojQ==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><saml2:Subject><saml2:NameID Format=\"urn:oasis:names:tc:SAML:2.0:nameid-format:persistent\">71747</saml2:NameID><saml2:SubjectConfirmation Method=\"urn:oasis:names:tc:SAML:2.0:cm:bearer\"><saml2:SubjectConfirmationData InResponseTo=\"_886ab8fd-bd0a-44c6-be05-77adc4367191\" NotOnOrAfter=\"2022-09-19T12:50:00.497Z\" Recipient=\"https://b2cpatientstrength.b2clogin.com/b2cpatientstrength.onmicrosoft.com/B2C_1A_TrustFrameworkBase/samlp/sso/assertionconsumer\"/></saml2:SubjectConfirmation></saml2:Subject><saml2:Conditions NotBefore=\"2022-09-19T12:49:50.496Z\" NotOnOrAfter=\"2022-09-19T12:50:20.496Z\"><saml2:AudienceRestriction><saml2:Audience>https://b2cpatientstrength.b2clogin.com/b2cpatientstrength.onmicrosoft.com/B2C_1A_TrustFrameworkBase/samlp/sso/assertionconsumer</saml2:Audience></saml2:AudienceRestriction></saml2:Conditions><saml2:AuthnStatement AuthnInstant=\"2022-09-19T12:49:50.496Z\" SessionNotOnOrAfter=\"2022-09-19T14:49:50.496Z\"><saml2:AuthnContext><saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml2:AuthnContextClassRef></saml2:AuthnContext></saml2:AuthnStatement><saml2:AttributeStatement><saml2:Attribute Name=\"X-HIN-ASAS-UserId\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">71747</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-USERTYPE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">Team</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-POSTALCODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">8048</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-LOGIN-NAME\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">patstren1</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-POSTAL-CODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">8048</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-ADDRESS-1\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">Hohlstrasse 614</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-ORGANIZATION\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">PatientStrength</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-MAIL\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">test-patientstrength@hin.ch</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-ASAS-UserId\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">71747</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-ORGANISATION-TYPE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">(110,2.16.756.5.30.1.165.1.3)</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-COUNTRY\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">ch</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-PERSON-CODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">0</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-TEST-CODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">1</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-LOCATION\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">Zürich</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-COMMON-NAME\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">PatientStrength</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-HARDENCODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">PLUS</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-INSTITUTION-CODE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">1</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-LANGUAGE\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">de</saml2:AttributeValue></saml2:Attribute><saml2:Attribute Name=\"X-HIN-SURNAME\"><saml2:AttributeValue xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xsi:type=\"xs:string\">PatientStrength</saml2:AttributeValue></saml2:Attribute></saml2:AttributeStatement></saml2:Assertion></saml2p:Response>",  
    "p": true  
    },  
    "ComplexItems": "_MachineEventQ, REPRM, TCTX, M_EXCP"  
    },  
    "Exception": {  
    "Kind": "Handled",  
    "HResult": "80131500",  
    "Message": "The service provider is not a valid audience of the assertion.",  
    "Data": {  
    "IsPolicySpecificError": false  
    }  
    },  
    "PredicateResult": "False"  
    }  
    },  
    {  
    "Kind": "Action",  
    "Content": "Web.TPEngine.SSO.SSOSessionEndHandler"  
    },  
    {  
    "Kind": "HandlerResult",  
    "Content": {  
    "Result": true  
    }  
    },  
    {  
    "Kind": "Action",  
    "Content": "Web.TPEngine.StateMachineHandlers.SendErrorHandler"  
    },  
    {  
    "Kind": "HandlerResult",  
    "Content": {  
    "Result": true,  
    "RecorderRecord": {  
    "Values": [  
    {  
    "Key": "SendErrorTechnicalProfile",  
    "Value": "OpenIdConnectProtocolProvider"  
    },  
    {  
    "Key": "Exception",  
    "Value": {  
    "Kind": "Handled",  
    "HResult": "80131500",  
    "Message": "The service provider is not a valid audience of the assertion.",  
    "Data": {  
    "IsPolicySpecificError": false  
    }  
    }  
    }  
    ]  
    },  
    "Statebag": {  
    "SE": {  
    "c": "2022-09-19T12:49:50.9973127Z",  
    "k": "SE",  
    "v": "",  
    "p": true  
    }  
    }  
    }  
    },  
    {  
    "Kind": "Action",  
    "Content": "Web.TPEngine.StateMachineHandlers.TransactionEndHandler"  
    },  
    {  
    "Kind": "HandlerResult",  
    "Content": {  
    "Result": true  
    }  
    }  
    ]  
    
    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.