Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9a53d509-1998-a1a8-2058-28de3f4acc51" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9a53d509-1998-a1a8-2058-28de3f4acc51"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xO5M7mN5m92XQm8iW5qxNbHZAYw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CA0612EmxHUk+jgM0L8vAzMjEF/fWm8ovA9RXqwJbjHJJjndwd56xBZvh0ueqMI55M+psjkiz4AsSPVaOgBDpZuCNtjKL1Sk6RGsxW+969mT+ZVloQw647COPN0XAkWpnp5XmS9xnMSETTRf2LehG1+wKTdlp2Tle+/7TZ21ew0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx506b0489-10df-80c6-5ad0-413841fe6aea" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx506b0489-10df-80c6-5ad0-413841fe6aea"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>JFl/WgO/EOEWHTyRTZIlF6PwFyU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KB55ffjGLVXCPxoCpUZ+E6M4xgmDuK+Zr+J1WHYjQKUNzB1RVv8XUPDDoR3hSeCB0DJEqUrSOjOf+6IMJwW/4/lth2bRnQq74iX1mSDkMPYxLg10WfHCYDDk3eE3WKZQyhxV2PR5OU48m+Hh9kuSSahzco/7hQ7dEHV8DRrTnXI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb472af4f-c736-f3a2-c1df-9b2665c8b531" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb472af4f-c736-f3a2-c1df-9b2665c8b531"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dhe1iqhUUYsClgBc7c4GVOcIQ6s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Ei4deXmD4eGRpORzNz5fQbWi3ojTNEsN+nc6p1PXWeZux+VlFjdoqUJLuKaF793PFN39tScRMnDXfSnFczq+blAZiV+TRtB3FYGGCqPTkcgHwWY9Wxd84zZvtV7zpWVJRQmAToOD+V/xSq2ZO2TkdoMNtf69Kp/9M4ARqPi3jQY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx29aa4ac0-94fa-4ef8-e9d1-572bc29954ed" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx29aa4ac0-94fa-4ef8-e9d1-572bc29954ed"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>HY2PZ5dd9CdWzaWxsvP7HqVaR7c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dIAAnGMxHcRumLOoHhLxtECPvEZsi6gM9Vb9IwKkC7gnRPJ8BPptuteHgd6tJ3bSaI3FCZnGl1CNTxIGojPnebx/7BQnNu0fCEWqpAsLEvk6LE0tNv8lwr8TYB42cv+dnt+xC1sglQ7tS2I6RSNhq3djeQYc4TTJ7tg9RmxbvSg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UTqItyz5q4rBLKuPodZmyC2I54fq64httei0FUmTVIPYBqW5qJvTjos3htaDEvFOSjdxR/4wvLYO77PrVEKeApEs8HKVNWzKG0COt5Wnzyak2o/Fn72hMBDW49qJIk+jcHCkD/JFtOh4jDH5OBIpICDjhBaE4cOz6rOAzb2h1cI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>kuXK5BHmdHDANsm9CQDY5SLXoNBob8PqDCn6w/c/XEVxWiEHdk91jtCDhZJVrl4CIy9BWXMfFE+96AX8IjEDa4EqS79ollJhK/XNkNqcoJXt9L4VdnyJ7jzFoffZQJNk7moxcq4CgzOC64lDxPSleSGFTNTJ5n99AjnL4uOm8Zwd2NpPXYrcBdcOO4L6+Rn+JxtPheHCfyXuKL6D9usEG9+2SbLtfjUcNGlrpB0ggnu+GpNw+Fpi13QMv1ywNF+e2Hu7EkNGDTqzzqIAQe04NdfW5ueIGUKZEq8xczzAxkd5JjENQkxJknXzfX0f+/F71o8v0Ys0tIViSv2NXuMsZhHjXFa9kazoP6H1oygRb9tMlVIqVYjQCJ2tnjexbdLzU9MkOVqvhryru9qzMWlQ4ppAONLvGJ8W2GmCgM8s1jtF8dMVmNFl+ILVQyj68RIGZGi9/aaMgURvafhSMq6YrZ9aGjagUGaHwyoRauqMLxn5B7f1Fu6YtAAa23bYobBZNB33zV0p1aZDq0QvF01H+4Mfe7RpQkRuu4KDimYwd9NivoJ0CQCr7ZjhGuE1oeiyIc0CAL3PZE9JUWJqf4RGMBO8aV1Ly1rh5RQXbExFUuXskHMGpcatHSYZIDWCj10VrM8eCJlAJfaesf945r6PkG048zBukyJXc1SET1TyCyaMlwHhO1neKkvPvKiSimW+gZZb4YdP2ktjVF7UUpVnBeYyg+FDLOjPtrraBzhxM60061kWJaPUHlKVQNhU0J12AFfuj9nF3eLM+Acptu47dMbPKs2yuV2s5bQRuKxq22Y0Ll16MiFPUkt2lhYGmgHeoxTQ9amBkU6lUhsw9NZ77pA+QGS5XqC4CvkQv5pqyV/iNZqJhFKMH+C6p+D5WxS6Vj3o+iHaOL7wPNe4bWcNghx+3zAnv50gf0REd3ApDKrdwQaipIhftyRs9crhOSb8vJ1uYCkB33KUp1L0ZVPefKuu+Ry/tsRt7/3xM4pGq8M4jWvTzzD2m7ND5vmHYHd8LdXJi+Lk+kihK0vfCnxxlUSz/Z7lpGirlNd8D26WZy7jnqyRf8wEMaoHcygAAiUl55C9qR2g/rJdmG7wdb6VP1KBaxsYn8ODRn1SJRkrryQJf3qPQxc37/LRAt326/PayFoFAFDwFUQKQ2+tTFyAn9BAjCylS0emc9+FZwf2/OJnupBC1qkJcCZzcYssR1TnGUe0/IIzdHOOQwt+aQbS9VN0wB9V+nfiBo4qK/TbdQLESJo8NNqG3rbZZ80tc9ilEOyPjYUjcyYFtXLoH19ukAREwYtSqy92JKsKAZRP0UKW6WYM2qZyuv4YX/VAyte/2xUsugJmn2ggdZkiZsneywv+MI36pguUNCb/dJ0rfPxpezPz3s6sEDIyY3F/5o50R+HdktW3tMi9n/AjLZm3qPDI1UrxOiUHVAR609z/igI1nQNIubITq4hPSZS8uSKQhbl/534HxGfnT9h8onYHA2rfG1SwvWg1k3G3Fi91uPAvjDTArsrzxhjh5S+N+cqHQQs0VQaZcKqct72QlD1uOkks9Jx1WrX13mvWQ9/etVIB4mYSU6mrMBwuaUM3TaTOgau9y6sLUefAoBMZFj5BmUHGCuvg2FQlM5Mk8xocsvyBkOeBKe675x1QBhsezE//QhbdVs0Nc71W0whdr7m4cMuZkL7ZAN4J0joxvwrur66DNE9mLL6ncJQhiN7bD0ypYylPVgy6HncwJt1Jeq8/xbYpaTtJTy+r+H4Nv0QljCY6CssWUocCA/w4A8TtrV5apUvE5CudHS80rSyiMy3mABuMllEbXAylvlja15dzTuOHodlIz7qCtCF9XCvYAnNCwnwksW7jwfrB9ARVWX1KtbjlHOKAd9u8Z4i8r/CoYPTsSt+PUrxGX4TcXi8xfKLYw3a1APCSyKOT8Y+zey3ADo2Ok41VYLZ4lEZtXNpD2wHzIfz2WdnMBF99U/l4FslrHyXNC2Qr743M7kBmO4f6wT4IceZxqCLRYJaPQCIFMdm63r90xkUzqVcfVOZmXvmaslNU7xz8yaropN+DL+U6o8mOiR+8AklFsKcD/hTZ9iRJP2anLhcym0tH69tOXIWuaegHjQ9tyVBPRY2h55lAIcl8XZrv10sDX7Q4YnR3D9htzWNZEyhVvWcKWBJYGOuIrY2vskypPSVgOKd3j8olUMoADHUMzLHZO9MkPTMTYM+FMDBPEbD9GVLbQWxQSb6bOIskNgHKmJBSTluVuW0N1wYfkpdNbiM6UF5PuKm4PXC8URpVp3XmY84SVpxCNH9jFV7V4I/HN5NgXcux8R0Nlh69TU/ExldpzysBtez7uUz4wK/5EDUh1qFinOQ0vOJlnifFVy7YWHX8Mt5cIvLDuypechBk1boAH+MMbuibIBL87HpnozBiysOM8yG13R+J1dwKu2YEXs18mPo6n1c2kyk/m4Jsqj4fqkNGvB1iXcg3jrPqRP7tsNai2zjbBA/+GUlEj87gDxvGNN50wqsdGmwVOrOi0sB0R+XFDutigcYVYmJL0U79ZToo9gBXhsqlLGG+1qzhQ62hviLIDIBkoxjEYTWW1ngnpEUhWaUJmm+k+b7w+5t7/ikIaGLUZBMZNC7ByYFg4tZ/Jm3RdX0XbYmQce630Vdpun7+P1Io2XVqszZoCFXkmZSu9tAXZARwpM/U+UPu4Ta/GVER/QYdZxrpvVuqC/MxZJsJzx3QgkSQiktIFaKN5Hi3QaWVCA62si8vGPiWoF6VptupFj1+WgwYgpxpaO2XNfur0yZXsOMBR+SApO14fhH9BZkwuIUfFgI79v2jXpn7G8SovY1QHxPETX9/WcPJ0Qp7WcxLlcN/aUOFGhhjgavG4zIsBFn2bs31WocPNUYGK5vir8EXq6CGizSHAwSmdXIVk03U33I=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jDNcm7x6gqVjKzpDnEHHKXQ3Hq6ym9a6GJpNaeppRiNTKb2GmgGVxKPdGTWbXTSM2lui1E3MsaQQXtFJuqbtGDTFQA+xGg1bE+VCkq+upfiBGT0zEhqv0oFMYjINydObc8eIlZoffMXRiapp9CeEiTof+JkEbdSeKm5Q+OWIQso=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx985f373b-1cbc-5528-11b0-7522d78959e1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx985f373b-1cbc-5528-11b0-7522d78959e1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YOV98/HOqThQNpERW7AyWR23g1o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>D1Vr/Pez1Qw4/nDjMe3mg+wYMAwvgH8wkOSmsO67V9ht4QyN4SoliC48RMZs3XdfbAl1jxX0bSpy22i5COx7Tb/tHF+78UDWRMnUDYb6phaokpKzYEgmXR+KW8uWww0UCclXdWOYG9z3pw8QfeqCC/Ktuuoub2AL6GTiYlYxgP4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UTqItyz5q4rBLKuPodZmyC2I54fq64httei0FUmTVIPYBqW5qJvTjos3htaDEvFOSjdxR/4wvLYO77PrVEKeApEs8HKVNWzKG0COt5Wnzyak2o/Fn72hMBDW49qJIk+jcHCkD/JFtOh4jDH5OBIpICDjhBaE4cOz6rOAzb2h1cI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf41cef62-446d-5aa0-a6a5-721403874a36" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf41cef62-446d-5aa0-a6a5-721403874a36"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wyes7xAuyBvL+0iuXkIo6W5eEYw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>f6Y3utq+mszmrEpIbw+qGD5nMoKCdtT/eNi7+AxAkAqXvL5lIJnPGPVu6jl6ZU+AxGgXYfaLSJsc0CxvqlSSDt2Z2Yv5adXMdYajU+Km6b0uZDOh2ZsW8WQUgToUr1up9vrJ1FmM4FQEN2gyP0u/iOVGegghP+517i2Mw1dukKw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jDNcm7x6gqVjKzpDnEHHKXQ3Hq6ym9a6GJpNaeppRiNTKb2GmgGVxKPdGTWbXTSM2lui1E3MsaQQXtFJuqbtGDTFQA+xGg1bE+VCkq+upfiBGT0zEhqv0oFMYjINydObc8eIlZoffMXRiapp9CeEiTof+JkEbdSeKm5Q+OWIQso=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>