Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx98b6575e-0fd7-47a3-c346-f82ba232e40c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx98b6575e-0fd7-47a3-c346-f82ba232e40c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IH6UWT/B+5QKP71Rz7sGUqg1P1M=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qQzHnQxB/cdm8L7RMXiFX+Bt3NB3GOQ9OKtYUOMQK71hKEkC8n7chSs6fmkfTvEXDqJDWjZjeUEIDChaNKEUjMBd9tEE4BW4NXAXPvLWZwd5h0AKLk7BDE9S14jff6xt8loAnBb34Vfh8PmOs4ez2xbtuRWlCUUUMA8EPBnUqyo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx262b439f-f52d-9721-bb4f-9a0ca2496cbb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx262b439f-f52d-9721-bb4f-9a0ca2496cbb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lZl5X6iE2Br9yYsh7bWnNUZiuMg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ewglUihV7Jd4KalJ5feSbaS4Ie423BGTozjMpx+ivLKhLUzMvt7rWTYVsy9Ca2qRhNQzA6qj2OQbhYWq9UjfYPwnyMAMz9nrUn1P0ULLeuRakuu4adOnLOkfmfKBY56EDYyK4qwVMkx5Ja/5bhjNVSr+myoWnJmbFI1291nn5ds=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6ded80af-d201-1276-e6f5-b238ce68087b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6ded80af-d201-1276-e6f5-b238ce68087b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>T8J3zJ9+ueqNBI49JjPBzBitz7k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>xOVRMJ2UerWeYb/ywqstqRDnFbrjAdSZoVk611Ie8qXxRNA23QRvoOXOpzobj1yZK6qqLFZCHhg7rFpzZWezLqyVcW+JZyWdws2vd1A/6/HuxzVAgd5l/u5NQIYIkkLfwtUp/hjqoH/Yb9TzJZi3F6e/77INWcvI2r9G/JRHCus=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx14c37eb2-444e-0306-aa0c-561dd0be8857" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx14c37eb2-444e-0306-aa0c-561dd0be8857"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>15o7FGpDzQR4uWhXWdHPZOU8fH4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>XShSWvMcbEQw43sokX0QlDZng99UERhQs+YIyqQNJ5QlmEhT8VC1aOk5ES/wGt6grSSgfPm/Ko/znsHleCAY6Izw3/2Mp2RWUdIrvt1nqDRu9u5djtToImctNxjVOiXjVU/s0jt5SWmnOzFdsP4u2o1Dd63qZHPGPTCdn1iwrWU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YYBJxUIfywr4MR+ok2+Vk7+KkK7GUvXxlMY8vr5KER+SfD/zB0KRUds3qzZrj1q99OwM0jRiRQ2mLB3hxlALF5kZTJ7ns7Ef1FpZEhBHh/ADV0n88EQS0H8BAAYCjV3/zNGKK1sPq0UxnTP3U2cEBkKEU0sUygfZqp8fouSUdK4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>kiQmq3p6lZtlox9RgwpSFzN2L+LmJL4HN0i96kDOVPGLdb4mRM8TTdm/KFAGxWt0t3S075YAP7l9nw67tikQaLAo1ooYA3ReBlU2tyVRySZU0yIoGz9X4/xE9WPjIhpp2yNwrLq4D9yIhfXRH3CzXbii9JPMZZW0Pb0Vco8DiWqQ6f2ah7MMKvk/po6xsSTz+FqvopiMYFpQlVQhtITN0S9rHp+ZUGw5408rG2fbEGq/ORtgBpe3V5n6NhU/op+TaDmyrDAm9PqvbTwa6MUbiEu5pAn2m+qbl/Yzw1uhoBrbmgLlOHfohigTJYz4HZYvcV7Dxn+rIj/HPBPvI0s1L2OfUuRvTc6z9JxxAS0l57WpQnzCoKXAoR1etYsKINMNi9sxErJtvEyT0VSSRpBYaW2/JL5PHytHzZEkzsdG/uPezt4W+bifdfKrt/5PpgzYuML6TACoLxE8blGHpOIeLGSghHf9x+5L0NTvB4vKzrKncWcTr7Yq/ibI75D5wwSX/GCleBb9YB3JIQt47aG2Fa7NtzWkZrMUbnyXCK4ah4WzEZNfhIXI8UimSC1FtcCgvqmY0Klgh3bpKef5toc0IXx2c1UnRVlEY9lpi20iEkeVkmemzaSDVWQ26i1+v2gWEI9na9E/i3NV0nNByqLT0QMX2rhpfApAkI9+R7gDcCQ+HrSkcTJSt7DUENdKbEiCS1l4B7BlJYIcU+pGFQj7C33uP7NQbJKBRrBwMuBkNPggu9MXLTO0QS7UKsZZc0Srj47w84p/Rw8v5CSeFIPhzakjTEgon3zFIDQEQqTNLouRtDQBcrlWSaF4KV4KOO9FK5GfkRkQzFJUYqn10jr2YeCeOV/fcUmsT9Y6LsPL+OzUqzeQEJD5pOYPGgj1SboMgx0I2J7SJQpniTzylVhgHZ4YTi3+9L58D4QutuAqkaD0Vlap4B0lELpC2Kru//s2mk2PW0gCILI0mFF9upBZshuD+jowC0JfPhsWQLaQjQo3HbfH9/o/v98oXHv/kCmreuoo2Bab1ohdxmS8n0Torp/YSqdrh2J2kyqoOZVGiTHmqaE/MQijbd0uy8Sf8yj/QXtRpJ+6oML59aNT+NsIolaUW/yn8ch3nPAaABu0WSFtL0mBlDsVIlIDlGon2WtHfO281ZtCGz4Va4h11PFpJEgqBKPNbFjh1gKHEfMw3UtwzwJwqNk10RheV3Fjvppl3jehMdY26Ny+DL0LoXXCppgJ0AgAVWiYpgsQUSfJ6FGbPVubQ2f8AxA32YWg1Px+lCHWxmFb7Z1Y/0P79VNQ812w8V3LRHUvgsauUOiFK08WQCvNAbRpUy8ellUcDA/TNXenvBW6ERXTdQIsc71EA091cm/oS9UUNy3py7hD6dRjyykOGSOcXRU6nc+0A+3kh2rz2/ueG78Jxwm2UuMNcZm9uJ+Y2aVU/7dMlJ07Mztq2KB29TG89aOVZqh2z9EZ4XImyl9jugDT9r49rPSbG/uBnPz0ikGjFrYk88PMB0eIF4VgNbBKpapXdHsdiIn1ERL+Hkg2LSmTzIOhOgyc69/6VpOMdEDwVEKpCbug59CdO1Znm6J0fmtHrfMKH0iHcSactYGeb5/WEzygaEilPgF1XWDuvA7KxNp+RTOvrOyySNbhZkEbKRT+k8YkNuZeKxTayVLhZ5SoAczI/YlEVJTFV5pmqk4m5HtWujqx0D9N6dGAk8mP2W8HiKCjgceztY7Al6oQ46YirlnX7lw2PfVZNqOkQrf78TMps7hAKtTqlOY6pWC9NpuelJkOIwvUGwIdkmt2uHdtH8rFXLduVC2Zd0itt7XM07jnzBaGoe1pXLh6cAaMFfPGfDCdPeCzPfsVzqWARdfVxSPLzPWCWzoTrc9TWbJDHV7r+3mJfY/cmDFi+0nu5QVRG/04g6BY5L9Bros266MO3ZarI/9BAnaMz6o3jpEMHMJw6mCojvl7SB7qxkIEjsjhNp3sGkhLXo7/4HqSL1xUf74tSYpY8N/b4i9ce4Y8R0U6tIjmXuk1HeQMxzhrsaWomTyov2R4Ht+mNxz3Di6ks7TV4ijV4GZZ5dE/Jaqb0SQrnK+81HpzyWz4Nl0yTZRYYG8+eOQlSgeDCa7rasXG97aiaG+baTH24lCUcixOTnsJPa9ENH2a0tKTmOTFZW9ixt0k3tayfEvXtGOBbpQB2Z6FzpQXYDboYA5WfSQoo49Z6XFPyqm4VyFmGdSg3Jf1xgqJiINEVk1WOLUICveewrPdsr+UF6MO2qw7vChMYEx1nOSgWZmRe46hBxUWt/RDqR0AJy6xPV/UHs8xyEvzqo/3E2cKSJTJc/fbB9kqV2RyJ+MNXG4TCUAbG7diyxkKJvgISdHEJySwFFFCqheZyNWQE2aWTYYrDz7iyLNK10zCxnXn9jLxK9mQjHSIDyD2eF36o3646H7S8h955ZA1cmryXnjfeFrTCWmZfUEcjxL9jJtVjyLygmcRgJpn5ziSkbUpPk5tTSKCPJQF/isNiRcBzecL1Cw3x6VZpjGx5XCHW3zb77RsB8vs8zkk528ccGBvZEcPtR1Z79oeBWvk10GbPCFKvuxErDmaoUdSlmxcOBaxLPAoiVH54JHL68GKDPhw2zuhLaVfwluWcKb/6NXj6LE2Rp+DYVUAjFkvegQ0DRMGYF1p/UllY4eJZ2kWaws+UfZjopsiddDNHb6/+wwQytzmHg4zXw9l8bN3B9fihVKepx5izKzb09w+oiy7kbIq3dd+H5se1h40AhKuAqGSesxgEVreFWguKqBnyn8L7EXX8xuZFS/hf5mXPp4xcCTZ9ENN2QPkeALQolHd/ErcSCbiB39t4IuzqMBbncy/SlrfW0OSTJ/vAoiYowxYN1RWjyiOG3JfwcHeFEFqDwQ4tcOd+X+ZDfagJgDf5aVFJAqx5ZI=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>zyk4uoQ7cIZ1Fcat+M8+5lMH07rdS9lOu3mVUinMynOhXfX5AMKorJop9fjeHQ9eS+JYBquw4nGBuo3/aqoRnlMXYDESsVgwvRehWCeZEyyzmUs+IiNb5wRjg4oS99K2Q0vfeTPLhPqfyk9jDT/YVodgzJEcfs4eNLJZqWe0xKs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5a24b1f5-6fc4-39a3-bb2a-861d82c8ffc8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5a24b1f5-6fc4-39a3-bb2a-861d82c8ffc8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WqQUHkT9+5sCyL4oOAeJajmON1I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tbnCB82CXboXs4m/dyk9VLHESDGWiJrvtm5RVWL3zEW6earL7Oy9+TtT5irfFn4jEXhoww++ChF0Ov1GXZ+9CFar/IxAQ/HZFxBqcQHN+JVD7w0jwuhuWY1eqYUNrWJojKwBfWcEWZWz2+gwkhfSpd29tOERt9ahn3Gs11mSNN4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YYBJxUIfywr4MR+ok2+Vk7+KkK7GUvXxlMY8vr5KER+SfD/zB0KRUds3qzZrj1q99OwM0jRiRQ2mLB3hxlALF5kZTJ7ns7Ef1FpZEhBHh/ADV0n88EQS0H8BAAYCjV3/zNGKK1sPq0UxnTP3U2cEBkKEU0sUygfZqp8fouSUdK4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7cf31142-46b2-7fc9-9396-268df7bc5120" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7cf31142-46b2-7fc9-9396-268df7bc5120"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EwaIceWcwoGiaeQzWrW6Na2TqRI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vkAj+1FGD+aWda82os9E126qVwBlNQpyoYvQx39nwUDGWkTs3rQLNuMkpFEsG7S7ebdtlrBTnf9ExZK11jo8cD6SdMEQtQErZcDyOseHRbj7mngctD19mbhThbSAvvlPaOm2/GoRQBP3NH5BWySoooGFoR7GL8FcQHZI/yAxLiM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>zyk4uoQ7cIZ1Fcat+M8+5lMH07rdS9lOu3mVUinMynOhXfX5AMKorJop9fjeHQ9eS+JYBquw4nGBuo3/aqoRnlMXYDESsVgwvRehWCeZEyyzmUs+IiNb5wRjg4oS99K2Q0vfeTPLhPqfyk9jDT/YVodgzJEcfs4eNLJZqWe0xKs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>