Skip to main content
FreeToolkit .ai

Decode SAML Assertions in Your Browser SAML Decoder tool for network operations.

SAML Decoder illustration
🌐

SAML Decoder

SAML Decoder tool for network operations.

1

Paste Your SAML Response

Paste your Base64-encoded SAML response or assertion.

2

Decode the Assertion

Click the decode button to parse the XML.

3

Copy the Decoded XML

Copy the decoded XML output.

Loading tool...

What Is SAML Decoder?

A SAML Decoder is a tool used to decode SAML responses, which are typically encoded in Base64 format, allowing users to inspect and analyze the contents of SAML assertions. Network engineers and developers use it to troubleshoot authentication issues, specifically when encountering problems with decoding SAML responses from identity providers. One specific problem it solves is handling different encoding modes, such as Base64 or URL-encoded Base64, which can be challenging to decode manually.

This tool stands out due to its ability to handle both Base64 and URL-encoded Base64 input formats, allowing users to easily switch between the two modes using a simple button interface. It also features an XML parser that formats the decoded SAML response into human-readable XML, making it easier to identify specific elements within the SAML assertion. For instance, when decoding a SAML response, it uses the `atob` function for Base64 decoding and `decodeURIComponent` for URL decoding.

The tool's implementation as a client-side JavaScript application ensures that all decoding operations are performed locally in the browser, without sending any sensitive data to external servers, making it a convenient option for developers looking for a base64 SAML decoder online or a SAML response parser. By using modern browser APIs and pure JavaScript, it provides instant results and a mobile-friendly interface, allowing users to quickly decode SAML responses and inspect the resulting SAML XML.

Why Use SAML Decoder?

  • Instant SAML decoding with no server round-trip
  • 100% client-side processing
  • Mobile-friendly interface for debugging on any device
  • No signup required

Common Use Cases

SSO Development

Debug SAML-based single sign-on integrations.

Identity Federation

Inspect identity provider and service provider exchanges.

Learning SAML

Study SAML assertion structure and attributes.

Security Auditing

Review SAML responses for misconfigurations.

Technical Guide

The tool uses the `atob` function to decode Base64-encoded input and `decodeURIComponent` to handle URL-encoded input, allowing it to support both encoding modes. When decoding, it first checks if the input is empty and sets an error message if so. If the input is valid, it attempts to parse the decoded string as XML using a `DOMParser`, which creates a document object that can be queried for specific elements. The tool then uses an `XMLSerializer` to serialize the parsed XML into a string, which is then formatted with indentation for readability.

The formatting process involves splitting the XML string into individual lines and adjusting the indentation based on the start and end tags, using regular expressions to match these tags. This results in a human-readable representation of the SAML assertion that can be easily inspected by users. The tool also uses React hooks, such as `useState` and `useCallback`, to manage its state and handle user interactions, including decoding and copying the output to the clipboard. Additionally, it utilizes the `copyToClipboard` function from a utility library to perform the actual copy operation.

The tool's implementation relies on modern browser APIs, including the `DOMParser` and `XMLSerializer` interfaces, as well as JavaScript features like ES6+ syntax and React hooks. This allows it to provide instant results and a mobile-friendly interface, making it suitable for use in a variety of environments. The use of client-side JavaScript also ensures that all decoding operations are performed locally, without sending any sensitive data to external servers. The tool's input validation is designed to handle edge cases, such as empty or malformed input, and provides informative error messages to help users troubleshoot any issues that may arise.

Tips & Best Practices

  • 1
    Choose 'URL + Base64' encoding mode when decoding SAML responses that contain URL-encoded characters
  • 2
    Paste the entire Base64-encoded SAML response into the input field
  • 3
    Select 'Base64' mode for standard Base64-encoded SAML responses without URL encoding
  • 4
    Decode SAML responses to view formatted XML output
  • 5
    Copy decoded SAML XML output using the 'Copy' button
  • 6
    Switch between encoding modes before decoding to ensure accurate results

Related Tools

SSL Certificate Decoder - free online tool

SSL Certificate Decoder

SSL Certificate Decoder tool for network operations.

🌐 Network & Web
URL Builder - free online tool

URL Builder

URL Builder tool for network operations.

🌐 Network & Web
DNS Record Types Reference - free online tool

DNS Record Types Reference

DNS Record Types Reference tool for network operations.

🌐 Network & Web
Browser Feature Detector - free online tool

Browser Feature Detector

Browser Feature Detector tool for network operations.

🌐 Network & Web

Frequently Asked Questions

Q Is the SAML Decoder free to use?
Yes.
Q Is it safe to decode SAML responses online?
Yes — all decoding runs entirely in your browser.
Q Does the SAML Decoder work on mobile devices?
Yes.
Q Can I use the SAML Decoder offline?
The page needs an initial load, but processing happens locally.
Q What browsers support the SAML Decoder?
All modern browsers are supported.

About This Tool

SAML Decoder is a free online tool by FreeToolkit.ai. All processing happens directly in your browser — your data never leaves your device. No registration or installation required.