Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx57dd98ac-40a4-573a-1a4e-46b8e80f552f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx57dd98ac-40a4-573a-1a4e-46b8e80f552f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jOBN8jJjN+nC0YbuQtLaS5LVNSQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>nMF38krNHgi1S5LJepWli0claqwIYL3cj9eTdQhp/5CUdoND03sKXcATPTlD27L7usQJXDVrQM5GjqhmKFSSNIRj/ZJMscyrf1fGlvnCoP3/yzFpd+rJvhqeM5cQ4LkcsQ4602OB8298RH2v3YrFiEpT34p0+TPy9sn7n6RHcKs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2de0c8a8-b2cd-94cc-1073-7efa63e47711" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2de0c8a8-b2cd-94cc-1073-7efa63e47711"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tOZlYqmHBK3aKZb0OMLKKFcHzsU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iSmeQl7LWzhLDIA+Rpj7GC4+AH04yU1qjbRLullFlIyeeRwp/cqmG4XstDtFBdBWG7rOUOWz4lqbWFYlrfd/wErQiDsxpbnzfxbNOTxKMUzWj++mMx9bsn+h+XTpGoMBw+U/qxEs7Asm8dQxybrK5TrZMS9h8uQKh6THXwI+Sl0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2dc17947-3f47-eaec-76d8-e0ca61603098" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2dc17947-3f47-eaec-76d8-e0ca61603098"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bUK8sOgwykUXobb2GJKW1tceQIU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oUm4McoxrZJlR13J/eIquv6FwGKHdfBzqYx5lhb1v7qEHEVB1aPnx+Dw34TokfqUMA54zFYBxTyRbAT6Aqd8bTG9zDjDJO1ci/kGrqV/47u1BVGLgbucMWhRjm9XWKVtucZxYf8yLWqQNQA2b7v3zKaRERt+PlMtw3kNPJ6Mez4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx437fa0f6-df14-798c-e6c7-5f4ac1b65c20" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx437fa0f6-df14-798c-e6c7-5f4ac1b65c20"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WrWXUorv3SaNEQmZvnc/DAyJJ24=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>O3iuXakdAwiSsX4JkRDyBU6nwIN6KFM+N4NhfrEyCCum4feiuBXwrgzO6vXWixDGNuKPHKBGgi6zfPd2r89Ruqcl+HvGe7DfEazP54phYNahLhepBkR/EPPeVWNDoxs2YuMrFOS1sOCmZXvGsTaqB1EihSlOLdr8ACVXvf0ZjM8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>t0yry2c/ueeikOq4tNjx4hFFEvVe97yLktCk1WvNP3Kd0G14eDuCTW/eLK5zV2wTy/lEdj6d9azTLsdWI80e/ZImJ9/mOXJPfVODfGxq5ljrvgFNKtPjS3djMYl3y+xTIr8lJKdbmXF4jLKnapc4q077PuOklSeJ5K3mD5T7OYE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>vzBPXOFPuGi+r9vxeJ2VDJi65HR12j70UNje3s5QQNcJju98zW/tMFUAitCRjcuRWjSFtq+gI1xgu9Wn+e9r/wexZ7t1b2T8bCCHAHx5mUM9924so9FrIwusYlOhb45m/2RnEZ1bxY6555dMIC0/xvIVAYyCzbvDCS75qBJavNk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx65e7176b-14fb-cd18-604d-1739f69a43e2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx65e7176b-14fb-cd18-604d-1739f69a43e2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0EqmfGIF1qEPEAFuralViLH8yy0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Bf4B/Lr/Kco8sqqG6UXRo7nTc5abgK9uOiXgvKL6xmdb9ZAb5PogemdLts7+f00ezIU+Ljyzetk0PM9BsnsgS0V6yThH68E3FspczDajC4nhr79mH+OQF/FcuzCcnUs2+FzY7y47OknBhH5yQQlyug/rSE7nKd3NJBtkH5JkL6g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>t0yry2c/ueeikOq4tNjx4hFFEvVe97yLktCk1WvNP3Kd0G14eDuCTW/eLK5zV2wTy/lEdj6d9azTLsdWI80e/ZImJ9/mOXJPfVODfGxq5ljrvgFNKtPjS3djMYl3y+xTIr8lJKdbmXF4jLKnapc4q077PuOklSeJ5K3mD5T7OYE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx70d242f0-f1d6-8313-e127-0405331b08ef" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx70d242f0-f1d6-8313-e127-0405331b08ef"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ZpZH5qzF2lgPGEWaQ40OSe3Pk4w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cNAF8sfgEdS5YA/V2lpnRljdfRjcdw7JHTFUjlHO9twoKzg4ws79UlB9W3J4d17dxE88YX6FYFtRb10AZu6uDD/cpcLtBNpeZUL9MlaP9mOKAHP/wgjtFx0wjxXfCPfvoUWjxljXklV/hSia8D8EZNIp7Wm4AN0Ph30i9ystqjw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>vzBPXOFPuGi+r9vxeJ2VDJi65HR12j70UNje3s5QQNcJju98zW/tMFUAitCRjcuRWjSFtq+gI1xgu9Wn+e9r/wexZ7t1b2T8bCCHAHx5mUM9924so9FrIwusYlOhb45m/2RnEZ1bxY6555dMIC0/xvIVAYyCzbvDCS75qBJavNk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>