Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa186060d-c6c8-529d-9bf8-81e1e2727328" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa186060d-c6c8-529d-9bf8-81e1e2727328"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>uDR8nvVlZ/RMM5gRk2bElSHw63c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Yio/mV5XJdyatik+P1kx2bst+FXwqsAQ1IQGF1ZW8Bh5gh8TnihW3a6yevQAMEVGxAzbGfBdaMQ+xjsdrhVVYV/Rjcu37jgewnY7X3NUuHV7wlaNjNJK2sHXlazJVobCsTnirOhmAFiUXWHe6TIVWPKzVBvmlkKfRYfXqkvP4aw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1989b9dd-0441-7757-e485-d53f5b27dad0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1989b9dd-0441-7757-e485-d53f5b27dad0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>qPAHBmCsM5L7QbYO8a0PnoGxKAs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>INfeDUR+/OEV0O/Q3/Zl7l9MTmjJ931JEDf4RnzvhefZiQiA50ZUFU/01H/iAkdn5kLP/T8+Mldv/1ae9W6LRau27APlogc3AggzDjXyHVL2b1qQXzchUNjqOKzipNA1cOw179CldY2tQds8lWJrOJsyfYxzpYrfRHog5VnxFF0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx79d4f419-ffa3-432f-a05a-9022f42f4546" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx79d4f419-ffa3-432f-a05a-9022f42f4546"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>S/TG8mxQKtdTY8QRd994TFTZQZM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SJ4MbfOnPHrSzJiiPgA1E0gh2EsMStiGls3nVulBKrdmgdY0W482lblSDge8duBY/NhMLwl3od/Kwc9M+az4DYedTJjMM7WEN1jPUWpnQ+Ob+j8bcrsb4oL0HE6kWda4E+aXKjsyJjNFYDWiTeY4/NVUMyVuGxQzMEa5fXLwXQs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx372f13e4-b09d-0db7-df15-f550ec43734f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx372f13e4-b09d-0db7-df15-f550ec43734f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>n/sp9G0rbP/4GiUNus9zcFUFFNY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>XwhmMlyu0QAkZC/fYHJorYPwtoPAlpMC0IG85uwAqZsDT13mddWxoKGSUfXhreMZNlGzwHPtTgMAWh9AFjCUCgntQ17Je2D/y+F1j6UemJTEqnr5AHC/eSoOLbttZSOh2TQeLzeu7GnwZVT4kPllz7EFWrnymzpNCXyc74yd9lk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yGV18vfCW1YyCnso8RAXGYQBb3h9/B+HKerZgf1qzM+cuf25VeISCoVe1hy7R1By+QvurHHWC94COERXrElBUyyU3SoG/Vn51e9uRe+05bh29d/KwX2pRVwuKvxBv892W2KH/qgPn698HcLQBr7twBoS63SwOFmw7nbjhjslvq0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>J7w0mrd6Now+6TUWkwMaylazjFwGlExK9ofcL9JLlMwYBkeJ4WtjXFQ186ikqcTEslg77vtrLEZg4r9Od7haJyh//fHJmv64yQiG2LhIMiboTP8lEDtiTzwAH7cPYFN81W3SSFrKCY5hU8Pyx0e62lpEs/7PWyN6yhDSwR0tZ2U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa592ed3b-cd2b-7d85-10bd-56a7d38bad59" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa592ed3b-cd2b-7d85-10bd-56a7d38bad59"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KxU6LNLPd92DJp27vPwAH4uDkhk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>A3qmF6aU9VRqZ6xdV0BEhzHvJEQHCegtqLg7QmdXLpt+qMt9GsjmF3Thkv2QSRwHe11mdRMv5mTsV4geF2DNF2j8v7gP8jjfrrjj6Ey8w3ccU5w/lBjvvxzBT4szOOvT/erBZbSyGSMxZE2peiS834pDDmLEU0I5oPIlM0/DzXw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yGV18vfCW1YyCnso8RAXGYQBb3h9/B+HKerZgf1qzM+cuf25VeISCoVe1hy7R1By+QvurHHWC94COERXrElBUyyU3SoG/Vn51e9uRe+05bh29d/KwX2pRVwuKvxBv892W2KH/qgPn698HcLQBr7twBoS63SwOFmw7nbjhjslvq0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx937fd6b3-bd02-9653-816c-7abddd2b9edc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx937fd6b3-bd02-9653-816c-7abddd2b9edc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tW0EKt0IjoFRD4/G3xmvKHiajew=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mBdeyYoClkIjdOZAsF4sI+s68cA5s4/nQpGGq4fjQcpFZFxtuq7BAd/qh8Au6+zh+VOzZqqGn9OqFNYE69+zw7kKNlbdPdm/8pB+5SdQTem0RUNR+7HZphe+Jc26s9k6WDwTrvz+DPkZYzPnC4k9ri2AywEgoCGCI9D3wiSdk6c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>J7w0mrd6Now+6TUWkwMaylazjFwGlExK9ofcL9JLlMwYBkeJ4WtjXFQ186ikqcTEslg77vtrLEZg4r9Od7haJyh//fHJmv64yQiG2LhIMiboTP8lEDtiTzwAH7cPYFN81W3SSFrKCY5hU8Pyx0e62lpEs/7PWyN6yhDSwR0tZ2U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>YAXUp2KTWuSbxoBTYSQ6zG6Jj/ryGC0aVQcaWIq+52R3WL5bHo3NY6uhgjNEwOeDO0+Hy3W8CAFlSRgobDfnBslhEDx1TS0+uaFBhbPdpumtj+ud26Ml6Lz8f6wjMhXBZLw+KzHypO4uw0V3LG5dgTbM7x7yL7A6jqz/02yJIwF22pbNj+tS/BWyAYwmzpYTZsQZyGI09+cRlU5lH7RYo25IcniLCqD1UOc1Rxv10mTUnA3djTyb8xG4JVjabG0Ni+lZ/IsTmLUMcaxl3c3r8EeEfWti8V1oW4oOBX7JRRivP9in8sR+JyM4NCPBYPHvr0APmwXlAOQyPd4CcyeXZX1ZkpPlCEiCxwA0yadV4VFEs649aO7esCjApYuJkPzoHyKRGcA81kGudhUjUcMkfAuks4ZzdBmKyp10CuGjpWYqHv7p5eVUfgdFrfUXUh77jQNB6cK2hrL3G9RDZq1AAje8QTE2SexagU8KD1SYC8iDjL7QWxT7fVaujeF68E4oF20y/+IIbMm6mAgkQBxrqJiYlD+vLUgjsXqkvsvABzAJN5/g6i82WQHha0ClTAnTajZZICrS7VQinGcH0OKgCfhz9A+1XyZTUQkARtFet19AxBflgLRpMIMBTjlMfO2dUx4aQEkOhF2Q7ToLnENvaOwMWMmqZyX1itjZcxYnUnhPz9oj/8tw9JLq9MW1wIAhA7FG6yIntYyX2hKMjo6D54VEqpejlEp7+C3EY5tRrkaLx+aK7t1gAV5vsyWGbEJbm5U3VL7ZYTYGb+TljGMRYhh1hadOr5okbbvBwX8hsBtSvF/dF9yV/Oe0x+MGzth5wlKIz7k8rfEGlb21jdgBI5S845X6ezlkjQZfHusHjmuSySH1cKBa3qxTF850f1wvlKYCYIEWJzYaDI9WEwAKqGOMI9Vp+MiPW4Tbhgoq5BFmWACsUhHcSWa5FbEh4RqyX6iyYz++QSw2+KKfCOQSs82GP8hZ8TRrEvEanI4nfalzVWP6rcTezEBI1Kl+lEFPWfK2c1BuVoSIs2o9ih2JfKJAtG7mO62jWOOFRKQvNXidb/4DOTZLWJx9A8QeKIlIbARwt83tulIWczjXZm4iatpizxdpDoG7pI6XiY2sGuvpiHLLjrz2i2zWaCzPygACOjJdyy/2BWf92rQzmO7y2AEJ4kIDdRsj3RFd32RrS8pmyxaTv8dIPHX3oQYNANYp1qHkfbrPCfUB4DDVDz8EJNV3Ob8ewiD8kilCX7buGt6cdzanHNjhr/G3HTwxaT2+hsPLjiFLM8rd93wqyiTa+qcXisPRdl5XWrqG0oD1N52H+VGjm/ln2+BSfYf+WyKcAP+5+owGmwpGHWC0DaTrQBZk7Bg7RyIjCkE1VhcVmIAteAd5320uhjgeSXtpb1UC2xBK3PcC7LdtTJ02WukiaoBLGkFsYjuTa+uexW8sKlhFyE0aLpXoBoH2Dg7BRkPnpmMa1z5WEdKqXiAIsFRL+ByZPiTETwIENZoNwRFQfsBNxczHiHDdNYrqkkR6pzdJwPllD5qtwePGs200fplQc2RN19oScGNr9ISCxzZa2sf/YwTA7QD4ZsZia0/x9Vaidfgvrng5PNcTtgsbWeALIx66lS8Oa1cQCnvaLv3/jF7tncRh/F/hLhjVsdlXYrOjMqhKMF0zCg3pVKZfXWe9uF5P0injWBNVdn4Kn11Vbz8q+u9WrxfJY5ZtYjr1PYsQ6JIgOx9GizoeYEgMSRg67Wo1UGmL2aTls+hTJBSBu96cUUZgiWL82F6TT/usgEtXj4rvhqI1Tj+2EBf3lRR7uuYMA/jRzprK/HeLqDbgxXZeU3kLYsnmYZUPJYP1Mr6i8aA2ueA34peQMMnkVOn19XOb0nd/hl0E3mEowAzQ/j/VMNItS/Qk24r6VQ3bjJdIbAfF0PbcCbDqYi2vycSRX/3BYTJphBxBLnHvJI6Pc7+yCLMpeo4M/9Ocf1jN2GwrArT12UMedWjGarwu1LE1/eyQvQAISEgHxN9hnN4HqIE3M7FIEZmefYbwUKYobQze86h2Nip8J27QMG/9pdiq2v8pGECtDMBEQcCeKNvQR43JC7HAg9oxCSfaX04qwQiEgggt7sgHPwzZ2EWc4ydkJOYSXpSWfq0XgdjiJKF47JYo46RoY5ThA1PCzqxlyaXn6Xvx2CFAWMBwKGeIkelvkgApMAg7doCUtLKvRAfvH0bPlk/ldatnxO3iTQHRdlfw6qidlkX/Bkb/u37VV1xeBknFTw9ZRL0+KsSxt5uQuZ8ZfZOeerW8kfGiQEMvGZc9kNGg58VzMdtW46K9lbkrKW1NR3Vl8Oy0AvpgcYYyOnHQVkE16jIh/oHR62osYi+083DrG+QZgcT8Yjlxie0OLJWOhOzOj54CE41+eoqXivPKl8hg+NSTbJp4Gly57w7mGAwnNNyJQgMYlizfg4wb4d6jngr8DlhSNO9U10FksdXxL8i9BnnnxsiI5y0LIaCUWl/a6Al8/NKWMKVBvfwHaGJMz0f4+IasU2LUSwS8jA0XULPkbVaq8u+3GiWuTfheEoAjHuVD2XG2vcPldqKQljJYSGQJffi0rw/hj77c1i/KoyLPM4j2A7sa3LflomRqoRS473oSse3NFZz07t4m/NORGCd3wHTNE0wr8caCwgkY5Dig+1YPCcZaF4kC1K8uvEFjpyhSQGtrRrToRKTQLcyKRbO9lFddsVajV6caIicV8K/2ORXkOGR5+JHiJ0ny9mZQOimxNKVDb4LBxYLqoILlENLqzyn0du49OSeeB+iKCnuKW6eZ5H17xZiCKS6Tc9/xJNxK7oOe1co9v80+8ks4TLBi/i3+KvcbTOAVxAhlE6PvFr9KFDE8YxPlxJUL8qin0G/F99o55QCDF09CjrauO6SVHc7JraNh3UjhfwOZr3WB+ZxL6/+3nUut+bWvc+oqHgJnm8NrZCRjqpT+/XpZWdE9fCsL0WWEjjwXPlYQpN15Yl2FGx62xS92o4CIXaj62TxnpKyWyHPay0QEXY6hKG/65llD8njSbU6+QHH8NlqW8uQk2tvQ3iMOjqLaEsqIF371cZ9mLWlNeVBeKwQHZAhy7oLW1HundcTmk1FLW3aa0WmAJeT/+u/Nn41bc4GoJF1ngeIuZrTC46pXUlzx8B5eZOC4Sl14UbVamTbcOdUEZnUzROH1iSL3Da2zcNYS+v37W1EaTD8Lpfz91DSTcVaLixfNaQe7ajWQPicIsF3J3u6pn9jp5oUP5Jpb6h+MwMEWK3GI9OlU/nxy+njD8QGBgPdoygSqRuzJ1yHDDi6Qcz5vy/MIG23kgii33PvYMB7P8gm8f4d9QMJLGAHPsrWXcbzCSuhvBB2oy35plwnB5J0mF0gK6OwbeZq0juIwPdPMq2inlecYQsVhcA1AxJu2qweOehsfUQSG87L8ob+eEPBjMGpY8yTcpcU/mGhgflhtprRLBi3mLtEzi16k64MKIlZzs1cTqI1zaMLhLlDScCb0iTa7v955wYAxEjEhr4zUc53RCOKBGvr4BsHWb3lG5YxQi4zBceeZeFqgmnkzg5T7Jc/dQmNmqf07XlPTYQEo1mEb3G58OfXmN6fuSU2Md/s/l1BI6eir4r1PI16vj8B7drVPapqOuY74J1mmwFJCRxSPmaLGf2bd6KHd44UbRJ5+lH45UD54ZZUl9Nv7hU0RlU1TbFxSdXewn/ta4sJFW1YoGpOO8M48H9HvUoAG+gpUSr+Omydb8TQ6yOq+vjuv57F1USqRP3MN91iUhHLLgVscyQ86AuIVdPgyiM8UflNnDJg2c+JLhEkebqeKgp3+cwpvK+iT9hkVFACrvYGXsxULWHI6KvMeFawb53Ex4HSzLTlEbG2OLrAB9wX+TzIO3jSVA6YHt0eIyTIHC8isRiCquz104S1b5T37zZ3ZqGM0ruskFoUxpEAPureRctf2HkchKTrYFk3Q17tpemxcwFjdxc97lx7JH7iSNCk1SiJ0xfewnFp66llCTgXRElVQTHxTos7PzNXlDvcYwQ+asHuSLYqf8j1AdGMNK4hV4mJbDSv7kR5RFXO47oGC2w/wat+asVTgRXGf/x95NUd1z1tGKSQMuZjQyol2dt1sqafT/5KkA1C18EPauXcR0zkyFN645NWWVlO2yR1Ap8Jc1LAkEuR6LMNEIm4z3p2cBhe9fmtXc7bMfVqx7GbKqQOlLLOwNl0CqZP0g58a6VO2SXmSRk2rk0kOsI/pJa8OW6/8EN4L3+eE7KZ/qWfozyBKZtdDtsdRuZibTiPsUakglaenHSTaVWVHTTXet0+Z9NsPOpjAPsuh30neRxMAievihEjgZxSUEQfdhjF17Cd80/62UWGYHnN+7zS8BT7S8YhN0xS0qGgI9TnQj4o9sY0jq1j/xSmC9Zd/7ekDlreVpQdK05dZ2f82DOs18klDZcBF1eFjDAmNlZvaZRF+ouVavt/SL4xYeNblMaOjkpvtpHYiKkGUh9L/4clvkVnnxW4bgMee7yOxTKtnAwDdMEiBp4vw3pC/6PrjvpQ8auLKxoaAL5mFEnbFhUaU1X7snZXBHFuZ30CN9r/W3EIOO3mn1E8JifxZ8zOaNKJokVfS6IJOB1uksY0ZFiaHTEor3pBnP+ca9dtv2cDNWya3CTjkuqIknvHqrcVMopUb0cOSrUXwmkAdS8E61J1pluGwt/4CBm95BX55CRduXlUM0+pzxQa7OUy0BTEDjp2/i/vkyFKgRPS2gO52uTp68bPS3BFOQqKL7OHLemZo5zIsWgbclp8vC0rLGfSRlIBnBkCpzZ46ZQspFtS5UpLKcrmcWVcIINdjT/D+Vie02ho42SOMTG3/5C8j/qtEemjdfOmqzIljBzRczvGJhLM8DYAGTdcAx6g6markNCTnFRuUFYIzGeyaIMl22u+FhBCW5bnjcK1gKYan9hnyxWrvh+01vKu0Io8z2zmx3mUmgqUIrnWtqKZy3KBZvBWX6d575M0fg4b3iM8URK8S4767uoOwPNkj1vzBYXHoU8lv/qSkW14UY/7XfjjDkYZ2eSfuE16ItjQ8O+sa8ar6ko3XQDqPo4YNO6CT5vta3WxdTkpVCSALYIaSfvaGQYi9lLhI2tCNBa77HMtiPrsYYbMBeQdvc+brJMySZa3GeCjGbOzDPP9p1P8nEDQT5t6iXiDNZKVDn/aOz0blB9oaWxge7BgIM1coMd/tEFGwSQKuZK6OQFPtWXEuwxKF+eNfXWQmgy30hfT476IJBjeDvARC2yOzj0ZpsO7YV1I3hibnHGgTDVCSgcPxLzxhERiPykz1IBeNRXqYqP4z6ZXHkTpvSpKYrFOE99DuUIKM92i0HgAGkYXOXjO9QDvfI2bHEbeY0eUFusODAIQ8OFW2L0gP3oE7BHl8NZCxxpc1rWWK6XWGW0qu24ySCa6oNDqNjegTqO0ioVMUltxanRjxfgsrbE0uJX5dIlzNEa5EGHY=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>