Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4a615385-28e6-b6b8-c994-7a891c42b53d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4a615385-28e6-b6b8-c994-7a891c42b53d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>NLxFSzU17sgh4RTSdCy9YS7kswA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>J6mVnZmLerNr4K3HhWuiHiVywS51D1evGpEeSg/eM9RClFa3jEJOYfoud7ukJ+VldDnV3OI9K6AXY9ux8bcd8zsmbsTdOoQQBRSv+LSFQ63yTfo8bL1S2DmM0UHX058SdTd1F7RfZ+voOT2VWWOqQmCqXO/6Rmz3hUbJktVSTQ0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx36b379ba-c702-b41c-3dcc-63cbb4c996dc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx36b379ba-c702-b41c-3dcc-63cbb4c996dc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LDkxZbBOSDJjCrFr3JjjvnRgBLI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YFR8ussj1YrrPsnn3FmJvPdoGnKHZ7xhZq7Tqx84WZWunTR6V4dwypCWaK8SytQkTCuwuB6ofB1y1MgTmOMlqGVDfWhJRrGQnDyVT7bNNJSvMnhEJw3z8m+SZttCijNP1eyjngwBXXHJQF/zelZGVjKE6zf5niCIi32SWdMDW3Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx39f94692-9258-a580-2664-c86c3dc27102" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx39f94692-9258-a580-2664-c86c3dc27102"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zeE08Otlr7GPt8enuYIrwejPp+s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lHuE6nr2oBcc8C+zLv2iD9FTBYLhIp2Rx085cNvyx/PD6oDgFiMXb0Q6hFEtg8Su3ghc+iFvUHF8x5YSGy6y+r+F83Vk0ozdQw/pnymhC9TISEoSA3HDFz2plc65FhdPTTShfT/GYD1B3GsKEcxRN5VZB+JTXsZpmuSpqcriJH8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdb9114c2-c4f1-5124-8590-11f7ec120176" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdb9114c2-c4f1-5124-8590-11f7ec120176"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>gY1MHoF8yZkzZBfz00OE6mLqmeI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>W4sFpFrdmzTIDk6vbigvQr8ZTd+5nYDQ4+9E542m848WBVGIxrpitv7hISiI5wTge00dyeCFE2YtE+3WJHH7QwowsTpu0foQSQJ0hCJTYKqJHVIL+rV+3NJTK3PR4calQKnuF0HLp8v2a/ybfsJGRCwczLl8BDSeOcd/qbN5kWQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>fOs7VgA6u17GLF3HKLRFdfnLBQE7WuNxB9VNoAGZ+igAzXNm4L6SXxwUdyaonaajS20f5MxcXcZYUXL79mLXiEfU9ZLlq4P8J8dOPZWA/7GDG/NWGTYXyHKC0/blYWuox/h4sA7hslHkkoXFzDONSxSr/G9hW35V/N03MPowGa8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>BKacYIsj5TWNQg6myq1CLOrdlynZj9AWVxfTTfr1+zlmYEwSGFXl0eELyTdhn2BZ8bobXNBif02cN/SwR/gkMOpZdDk1L9hG4N50xVebhOoHmLQAO02Es4CHW8jNVYTLgwyx5z23lyiKOLTcM2jKi0HjwA6+BMxNrLK6QtgocXE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9d34655c-f1d6-b0af-4ad5-0d64bd8bc2db" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9d34655c-f1d6-b0af-4ad5-0d64bd8bc2db"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4yRSXGh3ktRxEtBOVh09LAK0m2U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>UwTD8YWskIgZx10kFQvQv8/VTG1u8ANG6xq76pLMxPCUFRIa9U1+gyDID3a3gI5dEw4bVoX9jKLSsChqVK02VLyW7btDARkoI5mN/0GIexZQS6HtU2l5SJi6CS3FbONq4yMBcl3IDx7lU9cda9ZHx6IHJMXRti7NsXs8fEM2J04=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>fOs7VgA6u17GLF3HKLRFdfnLBQE7WuNxB9VNoAGZ+igAzXNm4L6SXxwUdyaonaajS20f5MxcXcZYUXL79mLXiEfU9ZLlq4P8J8dOPZWA/7GDG/NWGTYXyHKC0/blYWuox/h4sA7hslHkkoXFzDONSxSr/G9hW35V/N03MPowGa8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7cfb8c4b-e601-e879-ac2e-ae292dc24b68" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7cfb8c4b-e601-e879-ac2e-ae292dc24b68"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>npMKZAcUtu0zl7eqG6JmCOfSGn0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>yQUec2Anat0fF5XjUZQzeaGYYl47O116eMkcUaEM+1Q9NKWjQNFupNWKsjU9uI0PRRGklEE/BR0COOYG4uSrebEOhNS0OOquHf5ssQwmnJ2KU2XE4F9xWrXiim+IsAfUAXf5opktUiM2yyk4p2Zma3javjltPCgZvq8To5USNqw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>BKacYIsj5TWNQg6myq1CLOrdlynZj9AWVxfTTfr1+zlmYEwSGFXl0eELyTdhn2BZ8bobXNBif02cN/SwR/gkMOpZdDk1L9hG4N50xVebhOoHmLQAO02Es4CHW8jNVYTLgwyx5z23lyiKOLTcM2jKi0HjwA6+BMxNrLK6QtgocXE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>necQjmZAdhn6JGh6eE9lEwDCMDsH/01aTHNj74eDHlmLDGcsz7K3LRPshYvjBSxJtyVJI5J4ywzzhLM9gMb914DSR5QT04to2KB4SrDCziX7BL328HK/xArK/atPUvr0STvnZXNZTy6DfPUTQqPnEGAEU5QOhpbE/YwziKYNZ/qgwYvoLggSQ5bbk4MTHy2w2uHeWyOwE75aSfceiVgOodC5iLi/EGLt0lZUeyhv+/mUr9C1GwTyJP2mf+lAM8AORTiNLuS/ARY8iMY6j3rGoBzDIuLCIZz2r80/tK0AcqBpRyVWlFiwuuqi8pjSoW5HeeLhLjWXTZOkU7nt4E9Hos5ay9atKzw0sRfV496RBk9tkxCEBW7pwWSir0Yu50PZMlrmoWe0Eew+HA6jAOxrMvWWdhlJH8jIF1voXGCLZtbbtjGhje2ge4GDmoh+X6+2UfhwJubeC+IWiUnOO+ncJOWRlf4M/FNQIQSPfaRb2zdZAootOb0KqWmNlfy1fn8/IThLYi2SAoa62Kzq1PTUF7kygGDX6pqDUjOzAk2JB/y8w/lQt+YlmgIKm+AvztUxLwRS2AfpThDqYUP0Jan3YFP/1mREaKK0Fn7vK6mUpRuuDyBcHnniVIdHS+ECxgOrUPip701TyM92SEfZJyvvMaqMWAw+8cRyEROKjND/mWTPZyqQKPHGiPFXFT3XCEl+MO1vMPM8kHnRFj3GuGlo2CGGBiZhQgBTt7XfL6AoCc+/mPWwj7CdDkmDNGkeegqv1yyf/YN0dU1GncLFDtMib2xXyQeMrJUVs4tX5lERnmvWo9/vYGTE7TU2iu+YNqsZnuudl76uZ8NgL4pnreNHJDj6pNswluxoNQg6RzfGu4kehBsZk2ChWYPGptbaLefpea/Gc1FnsQ55/SU3T66Il2HQXYAV2fxBszhWPozjgAKT/+Qo8zV42FujrNu4XShanLuW48w0FQXH6LoRNzY150K7AFMuRdakD2jPrh0l0THkfBx+jqBCJu0BgdOfVEwxDTgsn5PEWSkftLPIJwelpjgz2LInIMYHEeHv5yGUzSjHZHYkDZFLts/NMtWqD8jq7j3SdUXprQt0QYgUag3LqRCnW3qu8f7UW/+3/9XSSzP717Mw+5wVDVHhabpcMTtOdmv5CJmYk9jIZc3efUOC8gjwxFEYmNx2HynfRN887EX+Y7D2k4IS8QQJ4sShiTI/FmjivjgyOzex2I943qlRUWXhsto3/4ZT+BTnKPFWylaazYplBWXb+4TmoX6KYNvXK58uZagKlAmZlDDT8B3ZOmf5h5nozRaem8yglrUIAWWbYxO68sQwkkqV1o2XnLJtFMhOYglmf8LeOnyzsdRvO7oJ60Yj711rvgEEKofN33/ZOWfYnPhwfBPCIQfatJSSUNrf0LIqISN0H4ALTh8pAw4/OGqpZc9bH87+6gcmcxUlmCkdeDt+BhXn91emc6whW2o40aTT6Hlq2upOs5TbY29Tk+TZNI5PzpcaM0PBVG6npLKvIsJIqKJF23T+b9nOaBNnD1c9jv+G1vG2S4cRvLhbIQ4mtbzSMrF04NZ016gMEZPQbcjIk8sbKE2ZZCDWZpmtBD6M7OTdLiaDBvv5HtH7LXKcIzQYgWZX4fY13kq4FXCMYtxW+sKqjz+7svKZOHfH5fGQDARs6RTqLti2JprOAd1T+bcXeXSrtJFTfag8KIUdNHk2aZmC1W33aRCUtijULQKtIHGqKYakLC9o+Dq2i/0Q84b/8XBsmHWDo1Tbzo3ogE8IVDnXeVeWYNQWgPzz/V7/lQb0mfzUB83mdIXfkV/T44huATOov8D/5EbN1F/foBdyRkHItYcENMtzor1UV8//O5JY3AvQXNH2K9Cb0W2hz7tbOMf6jFXV9xlIXxstna46cCyOzFr4bpyBPARxr2KQb2Ev7T9f6rs1CrvPEh1ae+hhWIOSzlCrZlkKjW9yMZ5k+UILTqbdfbZZa6gzWIcKDldieKWZDkLhqBdGcTmK7TtG5IKAuw5VgTXcGKJBpUYFAXu45zuCZ+nhRR38IopAiYRPmaoOE+iewAJhThSU55Gb2V/hVeXsDo3ScWTUtnQeJ9fdPPZ0hEPaOWrd7KEChDMGn/MZYWwGgHuMhcmP6uLq5rzVI+B+caNmX3bs4NYtMbvhmvzf4MTojp7ibKE/BG5yu93GIfMGw3mt8dK4GtBOlxUw70a6QZbeL5NY1yZQiUH7xUUcEEkGktLlAnEpYcwSAOmCnFcrqOfHrjkc2rJdggq4yNsUIZkbvgp0Gj2EQYrqnNfWmcY2IMRhWBJnxx1Xj8RMijwTLXCx3Vl/iB3iSikrVgNVmEQEUVnt17/stXbpLHeai7Bj6naT3tZR7trt8LrE7jFlOn3bdHg3NhpI0KvEn+sZ9eKdBBwXdqKNxawsERSfh/ZI5fzyk+IciR3QZ2a6FCmyzu72ylYJ6ASxdJE9eOnSRonZW2tyB5quE041DtWpJ1m02ZHDrLkL3TK3rHx3ZVs4EcC/8dUlDP0uRYEcjY2d/eBjOZTnm20ovInbpGuSAVzSoB4Pi471XMSGRYU8CvS0I3p+tSQZ4I/9yq4ufSHz2t6F5+8HfqTC+EgG/II7lUNLuTTiscN+Wku2aBQKxC41qcTzv8+BZnwDlrUPCKjKw4C0ewoHHnoW5majFapxsBj6ck0KRhKZO0a9EqwSDX55E99z1cw+3uvhbICdgVI/Li7Eh6c0OYWB6BPYLZtgOb7G97BH0Wi7Oxup9NJZloGUv38Rn6xSc5v4z8VQo5DAoFBJ60OAihWLWRRe9f1/Hb2TeKGogJ2DvNPp+l6dB/aSZmcmm7sVegj0jwOAbmlrg9qZ3zLE4hwDJRIBUxSH2MiMqo5ub4OPW8XJKrsDTUBZfYXFnfY9A1kBCudD4cTfX+UtH4/vjiAwspABv72AwSOXLV9TdB2SWet08TY0K/DZon8g/JjlVEASOXH3pZIi0Xi78vLra+e+Vuztlmb+p29IYxk9U4koD4ACPk73ESgpaze/cxZCw1Pkg8USBSqnlGYsRirY5py3dRcqvH5y6AUrk7rFL2yQmh0fILN4u9OpXz7tAIF38tmczEi/kZiw9YnjIo6ncuNlqaR84TvSE/AqwXSFL2x0CisYQnY/Q1GZ9uzUGTzOzaBHOZ8l5r0hrTUj/jwUBvRzk4s8s76vPNb4YNI+vfUGa5ZOk5v9oPT6Yt/g3gnd5S50547hKW4P/gjL+LFzG8SCvDa7upClS9/FeJokNjqBzXHP+VO/u9y4CBQJt42+eB1psRw7GjytKz48Cx9rHsq015B+1sBsvmarfGuxL9VH5lRs+j1QVu66KfvLOB1Uc562MVBvjwQYoES0ksxgpg7OAbThPe0Vgn4+EavXAP4MBU3VbNWOGjmlWpH5dxlojXVkEx9l/jhMwHEk+D0X8aGmYrBSyabTfkA0uGQontrD0cglstKBvQLxfVbh/O93665UOtWSINGmxpfo3eSImPTAotAezAZaZmpr/fnsA94rwlrawuSFGVALHP6+pT8sleQuEw+9UmZAYZIqCpmn4OuMYeiZLJgWoty3yR7Y76tSQkLQoO8zZkxRBGVlIy2SBaIQPtbPMr8n+SPQtIWcDB73NC6tcPMrDLYMRRS5GIl9xXsqRBpm+DXrrDe+0ZHa4BGefLMS7+txAOyBRDjAjlMOII4PjdYkMkSioZ5VOxxZtOuHKMCmytdz4EtU4MI1mlGDesJteMrUgQFqMdb23FD9AmQVx6tfoieuFQknGgMhakBe6oQ3SeJrM3zuYC9uoXQEdVZIdqIKswh6SHqmyJHwwRZdvTyy2SuIryZdg8EUINIOZC/IoDN2gXPm2faRfY+g+XCDXwbtsMowxFTUVQzL2PpV9ol6Xk7o9FrKO8h3GZYriemNlceK/qCsMlbtJ+3gbZcUzK7JeN8Nu3Y14026vUxqyFMD6zHyO5zXlJ4Eadu8yUSye27oXrzE2/Weaay/hXiNGkSFSdFFFjDD5kIJm7fIaS7JwpBsmRVCs5QXaumPb7fI0awem/S8qm8QillOwFkeCnXhgsEuzyfZyFcg1SVyrIBgxgn6jEWOLrynyhDHnOrb+ByvkgS7JQbs6eczDh1VaRQYCIj1gXUcLrOIC6JAuVvrKQU7gMpikFeuwldUNIJE8QlnW/7qyPx2skdW9fSvWr8C8xEXqmoEfgqLzlr6cd0IXGLu4rEuIMVq4+xMkeaXrSF6M05OSwFuMN7ZKc+X6VWCi+XZ9jQBeBbPvzmVT7uKBmEPvscGgfFQxQa4aUfbbmxrJqGna5o0vx7MDmv6HzdqKEeBj2A2uSknvA1Ki7JgBTt/Q/KiP3HyUCfa4nUquWr6RFO3rKCvpHP9/UXdStTyjJM4tbD+zHIROUF6xqtsSxfA5WCbZ+/p4irZl005Ppb4b86SpM5N/Z7t4x1r7iH9eMOteP1D2puB9HnWuswV0pArW8/nrph+5c2J8Suf9Vj3PHhwLnR2JPC2Y+SxleeH+l11Uz7XWRje3+Aa8eZxHbsF1dq4929lgww2OQ0JQaai3sogDXI7w04WC8+FNX4BVH4ih0RIqmeh54tNlUKoVlptqLW3usmYyjCGKEAdLuBdz2SMxBwNjLtoDkCJvEpCi7fAKmQyAElDsFW0z8K687dEWD3EAsqcTtWZd1Cu8Ue7R6ejf7QDWwAjwL89bveaJHNYjyRezzd3bxPSm7G3/7ItYKhm9rEaDDKzf7XLESEAATcdenCCXFDyjZjU2m3lZYR41F3KXUllQXY1r9axs5E57MqTboLfWzXGXJ7Drc3JPXajpxWnExdA1GujPqyFEHWfj/+3o40f+hjRvBigN0+a9lhNSJZmrQ4lpgUPDLb5j/pbXmzKwt/dCnkbo94eAd4rwiotaqAFAUuW3e5BIhZfw4pCUztLR5k06hi/ab8O6csrTQBnf/7DF2ANzWnN7BGDSDlO44rzmIaxITikuFvKVKkMqYTFQoL1fatBRq1rcVxuzo3NZPaj1Y2bySHWzKaGqFMtpijssTVVs9rzWbEFk4pLB2Cznc6W1yqgXpjAfcpy88zSVt2eheTEOsGL/qp/cZtcoDpSLlf7ZdD4Q0EAIhSr2CJG0UN25fkGJQDNVtYNL44oidqaPc/acQvj4/UZH/FebPDFXl+yYhZsi+uEU5fZw5roKrsq1K5wXhB2tNYMW/6Gw0tvhWs2YE/57IACKWJMZNn0XGxXWV5neqYK0tfaTMXlqvjWRfx07ycP8rG+yZl8umOqiSMDJ4lB0R1zbgVz3w482HJxzEya+otRw/rm9g8ONAhJjevtSzhtJAgPVfm1RsltP9vOueqh76LsQWGYhtO2Pz2qsleMqJMuy+cgIUhdn1gowT9ekTt/keVZ145+q9TRQuB6mLxixW2Yf7Gk9/0yu+EjNVKvLstIMTWuSOS7+ImG8hMxHrdEAjH/gYB/d8S+mT8dz51z2v0=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>