Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa2aca589-768a-474b-3480-d1cbc8e0db39" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa2aca589-768a-474b-3480-d1cbc8e0db39"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>H99hwazNxOHqTt9oZVS3SMtJglM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>LMkmOkpdm6ODAAcJ+pHXuXmGn4Fx8uJYkJe2VLqlSt9z7IUGShhSPxKAhuWEzAzpkUlk+7GyqxF2plA49Y2clNJSBB6qumiVOb2w5MPaYwa0Jcx2j2jV1e2KqMAYeozcfS9MuFgWV75XN62ngkpcK1jdNmxYGb6IbA/id5wrhUI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0a8dc6a7-b4ff-7d9c-5a29-3a72ed417003" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0a8dc6a7-b4ff-7d9c-5a29-3a72ed417003"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KpvfJWFqQ6n1m5W5gDqZKPGN96A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>QM80G6CML0oFE/1aNJrEq/mnb81rSaW5v7DPzfcjbSjgDqiJq5cCq2hDn0wVb6bAPIVvxqMTBoIUqoTUjQHNSkjN6ac4PX6+aDMHXaY9w8Y+y2S3FMMLmNhMXIBPqoL4meOH9CsOvd91RJGR5aX8GEDojGA+UeA8ZF+DpgGEw+k=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa7f08f85-2c43-2951-2520-f3bed32b2330" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa7f08f85-2c43-2951-2520-f3bed32b2330"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1e9QwiATs4edezmsN7016dqwGN0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tukbPu+zrLvfPL9xYwFJwJ14SLHwgoMMw2F/ORhyFptQ2E+KE7pgQ1oxFWuMCLMCruEfAZg38Oku8SEuc4Kajutn5fPvvdu87PyzgNJZYBK0pTRb1EjjGLYJnhtMYQ8Ji2WoizAdYDWQCFKSkDwafNg3pgRspb2J8BzIdpSwbL0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxfc22ef87-a4f3-86a1-ff58-904889b9165e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfc22ef87-a4f3-86a1-ff58-904889b9165e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jyQ+ILP5ZavavW4auN22eLi+Vk8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SytUhcMWtmxdFBcGZuy/xtS6orC7b4USjxYlHC+w3crM3IZz1DnO9EUFjcXYJ82PIB59MsnvEwNQeJkGUjrLQ2ng7SeZxv6XBgDaMu3qvKUvuI5ZC9v1lwG1aKmKqegpYKBwBB9P3Tmh+jxom6szL8nrukp4yCiZlKK4ylznxak=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>U72cFx03FbqPkV36TvoUMa7nnfucJdmimVlHpp0oLMhzDgJdgqRp9QZBwPeTzzmFOUaqOE0KTUYZT7T0sOB/6BqiMuQMvrepsQBMyzbiYHPCBrmf5hAYy4QanrlqZ+7Ooo1Hb4FCkgFE7pYKGTSRx5uRwKzA0S/50wuQ/eQzbVM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>n+g58HvhVazXw7t3sQjxCexaEu1AzbGXuv4YXmmYUlz5rKNHqcjCC4682+oQ7VT0hJSaHq1wVUDiKXPoiiRSQSn2nY5kruk93Iap2TB4JfMBz6LweX4cEb3gl1ZqbTpNTdhNiarXoCtdDSXC6v88j4cS1jp4s/U6nQbexcY/Szw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxad851c00-006e-6163-40fc-ea8b1ab238f3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxad851c00-006e-6163-40fc-ea8b1ab238f3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8WsQmu+JSmwDCzEbklKJJYENoOs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>noRP6AXBevI0Z/NX0ep9iUasFtvneA1ZyguJaIBFP0nXXf0eWe7LECKsSIf+bTEiPqd+MiI5DbAJkJQe6ZCu0LraDxBQoCRvZYm9+gbQH+/0A3MECsNVG8gdljfmoXNXfsuy0KWGJMg2Sux25+4Oimoy0CpvXDzblwQDQurP7oA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>U72cFx03FbqPkV36TvoUMa7nnfucJdmimVlHpp0oLMhzDgJdgqRp9QZBwPeTzzmFOUaqOE0KTUYZT7T0sOB/6BqiMuQMvrepsQBMyzbiYHPCBrmf5hAYy4QanrlqZ+7Ooo1Hb4FCkgFE7pYKGTSRx5uRwKzA0S/50wuQ/eQzbVM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf759bd08-e935-099d-b3e9-ff26e9af8784" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf759bd08-e935-099d-b3e9-ff26e9af8784"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>m7TStNj/R4g3M/auYXifBSbDV5Q=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dysnRMNpC30AZen2ISq1DEY/8ynYyKZL+rbw3RQMXsfcaVIMx3RvUKLLIftb5tw5SJiRpl+pXGIzfu2X8bv8Yrl5CR5YLtZ/GkNa3sYWZvnzlf/MXqLL+QeBvlTsD+KUSR6VYXha1Y4I8Dvd88IyqyraCyl+hayaGKrJjS2Y5LY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>n+g58HvhVazXw7t3sQjxCexaEu1AzbGXuv4YXmmYUlz5rKNHqcjCC4682+oQ7VT0hJSaHq1wVUDiKXPoiiRSQSn2nY5kruk93Iap2TB4JfMBz6LweX4cEb3gl1ZqbTpNTdhNiarXoCtdDSXC6v88j4cS1jp4s/U6nQbexcY/Szw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>