Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx6421bf6e-8f87-ead8-1255-05b71d1dc630" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6421bf6e-8f87-ead8-1255-05b71d1dc630"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Wq7bR1vyVtQSHcgt4Sk6PIe6w5g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>NIoe89HhoeK5YchqJqLr72YGBU3qaGyCLTr5Umk4DZcOMQ5uORCPjhqLOyjng4PxuGZmv9bWduGVH2PWrB1sNuBAyLR0nZAkPHxi/oUxlmPzYnGY+8IPiejxHDl6agDTB51v7lo9TxLIFYtVIjhcSJ6G7mXEUPrYr5xWMQ2IhEo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfe4d84a7-4313-33f2-4a0f-51070e38c495" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfe4d84a7-4313-33f2-4a0f-51070e38c495"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ac5mbqvhOCX2xMitG9kB6aqCWiM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ewVwE7kIOIifb1U1R93BcVX9iCHgGEpG4kg3XmnuU3dSc/Q4kSu6RE2nG88PPrPsZMP5GSTJYMEXEddqJaB91dvO3F/ShNJIfJepen9FV/RhUE6o3R81OWHeKFWveE4C+5Me5OzOuLaBPXoUBqPX2Az9ko0+WLKNJz11lQWRahk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa8a604df-a3c8-798c-0e7b-ae083ad80d72" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa8a604df-a3c8-798c-0e7b-ae083ad80d72"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4U7JpU8TUyHsCooQPqz79V4mbvY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vkln4IJoZehJtbmEngyTZ0AoS5SW4C6AasIo6eoCiuEDAOo0vlSLpqOl+7V99Gd6hUtxAQ3xFd3mbI/kTkpsMGTiU1yx3erq69uQcOif5fMweoJTj0tx7Sk/HMfJr6kqc8bhrjt3rAJvfSV4ijfsZfwRLxiGIACjw46SedKk0YY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe2efb1e1-d345-f5a0-24a3-f026cd883996" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe2efb1e1-d345-f5a0-24a3-f026cd883996"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EK1rX8YF7gDqL7VIMZyzwYUFG2Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>fv+hhcDLlHHULMt6I3o12MOtkHsYNDU3h2Gs322PDtY25xDW9udV4myEz5B7XCkK70BWR4BDvwvwln6fqyMg1x7FC3EKfxE9m60XwLRZU9teDSxzirB/txZbTAwku+YqXqgEB0bW9Q5HM49NRoKRLKOTOMOnn5N9l2pfwTYzkWg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UmA9kwFgQ3LfhEp+Ym60byMi2MvTTpru4lYS1at2/JBOhLzCh1SIqUa+0B36tGqOpVE2Q4qBLW/PP+qMCciX7PbnG1yFqJqcXRrw6QwZNES7Y02LFwYcB1Qv6/b28BsKepyhBWqZrHrVM0JDwEBye9xkcRP89NksXGWEgEZ8DTk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>ANdFW68SWCSAFWqbiXgcycn/ThNwZ0niUEGpQygNrkL+NbvF/2cMIBcdrdMn7LEt5ewax4jop/FR7DAnevphX5VTgSWSUo4tbgW2dGeAvVDgeYw4TdeDZN8vb95sHFGd7sH4m8I92T+4yElXIE/tSpy5NtFK1StcJdhyjB02fhGah/3xJRFYv012gopvi9/t5jaWYV2BrqJGEYICdxO9qs5mHfDlRuiLHeSmO3lC5h92wu+OcvFq3ANr7w83/ARfYr1IfF1Q3Senda9YGJYzdRDOKztTjeW7XIG6ZGddPCpjQtfb0umzUIPMlGmU2WF4VUevEVOzZYgLhf1nc0IOjmzyJeoKla8aKnMcjFRV/8Eb4ROi+u1T+1AhrJHOnwcWbulnuXorlG2c6DDN5mzQte/iNvFBEKI6qAfphK7ma2DugDszVGrbteb5wsTVYKgBTZMPyzKi08fIdl7NGs5g9HWb+JDH6aNw4DZPPr26ybb1s4Bi6pKjO4bSrJLRbqJ5QpXKEZkCNCvQqLG+ZFvQUPPEVBxi2bNpsieKynmuhWgeJbYVVH14hKEmIBmboLeH28vCi5KBI64oJGKQP39TmjujnjZCYfZq/avR5CysTlSQH1aZ6xy4p1gbPGCrd8QNaiEjk5Z68/nlk3+EKM7e309IAKvaMRNxnETfdzWP3jj0Je57Q+VwrETnh7S4fbGtyAWKkDCYyHxkEB3NdzyVLfW0G6F3cmXcOdwCKnN5HL+YhPMh3s6yJCkPVOgR2JTuJLHD1Oc4mQNB7rckoOx2udx/yXVfUYCysPPrY83IxwTUYvXKlyWL+fIMLiE8EF+6V8xM8siRT9VVfb590tjQ2+OfYSwUsmTUQmUXfwPGjOgzri6Bc3F37yVzLK2BSOIFI11ePox8o8HOpNuTHMC5gq8yCGTux5j/GBopT/m98nojR58Xp6bRDL0DW3d92Y8Gu8Ojc6Z5ZoQBIWneTtOV+kBog53g/WenOOMsHJzvZAJ4mlhM93R0gZUYlsinLbegOWmtVWrkxmxG0UeOdYBEv5CxS9E649d7bKXgQT7KQZLvpZWQOxb+frGvklvWnyu4Rls4HkZJ3iGEwIav3YUwWhO6IG7EIHPn7bTXe1tR3oLYeQ9Lnpfbj0anlwBUqnyaIEh79EeFQ6ci5Fn7sxCuYeLH+IMIHBATJO0MNW5NgiJBdN/OfiOGwUs2b8PxghIXTRhy5HqBJEk9K6Mg8eAHo34Zshmi6VcX8AVWUMzPJJ6zxkRHYP2C3ka4R6J74ERkW3cxtKYhd3XFzZaozkxy2t3uy6pdJVULXLG7njOOWYxK9f1a4avfMLRi5hAEPSX0eXriQVHqJMieBhEj8aQo6YwI3eRTUlu2FSrDwRo3zVb8HusVxkmmMnxm9gasQc7IPXg9FoX6esuwBRYSSJMR8iGrQ4izseJrJhhDfkb7YdQUrgZWhlpDjg2sMxE22bI33XnTcrZN5A8F0a3b1XM4Mfo/Gs+C7dGHSL2v2NFToUKVvXuX3VjgNbjMJZsRK5C3Em722P9uzk2cKleIfJ5zl+jlN6kv8HJdqtwUR1+618Ugy+nHeyTP7SQeWS92YpwO3dKidNUyJdSkz9RS9rUJRtHMuvMmZG7oM85orFpKwjdYSVN6wuBs+B9ljy5i8/l0vg+Q2AjVYgjhzKzEyZ+lHI4rTl+yQYdLxY4gEpIcMGQW2l01AA2nPMbYkFxxogindYiTabmV5MVTnkN3pUD/mHHEejztcdgFhCnMX0XnCTm0Bjld5ykNj2z6Zi8P8BsYyyX9qDUi5zcj5OOgthHhWaJcKtcoURCZdqo909pWLJuC6yQgy/wbBXGaKAMHumZYWEnvcPROeonrCvdbaZ6k5nSpHI6PH4h/rbTKWif4QU6OmXkhLpC2ZytohbvbGQgBj5osxaP8ch7KwUP7cdS2YRLbhIeWM9/QXPo2quVoWp2qhedYVibf5Vn1EiguPet/wIquEroTCvZZ3gOzcmkR1Hkpma+HqnrqopidQxAOqpsu+LTk9iOgmeZKss5yOV96vwrtFYg0CHMkaXNIAO3CjVPFCFAJRfTu/x6PgOvNX/DHGGWRAVPMVZHXZ1I2cTNn4MdxAPJ3dAzeIrjIDOw6i7ud0uUe7JjpG9L/vxynfT3arCSFZsWrOTtyPTnm87BG2YQZlLYHIsbqTO8hy+hmKknW8EoiDwJTIa0OuEfcizxkJAOF3kxdGzbFfeNQFu9718WayJgEzJeIW9qS347fPbUE9Y4/PcJHAKP4b9kc8IjVMThWmu0Lq6Jnt7eb/qFGDlmjyjwzBKyi7pZPr9t0pbCtiQeCD1HUAlQIkm2fAzvShG0LMb0ax9mp92qIu2sp9HnoE7fJyeAjl6WcclGHTl/hLrlbwFEEDkGIoslfaTb7mptVdp4DuNmiEJaW2lsFsjrxhIOMvDA9RlWtBbJ6eNTd3ZUlHvPLXv9h7UYo8UGDJFEB0k7HV9nccpkFHXL7rtWhx4IqBGocPuNNX4toWx9YAOo+IQG+vg30QPAC+L4Hy05ZjxcIsUdAUBzAsfXwjllgyXF763Z/Drky1MMZPXRfY/1tKnvn4fUuGETZiSAieds1Vkcwi9ioGfPmrxAUGociH8xdjnwKG3qXmASejhWl/G0yanlWxJum8JwtanmXQlY4e0dONx1MiBlq85wx3vJ4c9ZByykhZzKokwfq0bUBNkl1XAgVyaweoQlFq0sE9dthNiMm29jR22HK8lTP6h067yMp3PsbuQgNbKYG0szyfvogSZw+V+HS9teez7pVIjc7x1Z1ZX3S1AwCPGiyaQa/UFnZrG4IC3wb6OXRh75vlTeIkUfAc7xkwBrpkXOr+rnbjB6v93zxx+OaZFIzOApEWNau7yup36jn0NXy3Xgvw2Bob0UC0GUlaQQDdZ4=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>AKUfKAUL587W7CjICS7mDfW8tY9Vlkn2lM78fh0mAT8hBtxyhRW8jOc8HT4NUA4zo8WUOAy/liZrFzVMouXeHmaU7Gia1XrOxF3BVgYvsjxdt6p2G+JKk24AJMYrFv9knuxLUsQQRU1dknPKkbXWQ10aDxjhEDl0L8iKOab2ZIo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx16b6d0c1-4c60-a454-a32a-5bb01e8f6512" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx16b6d0c1-4c60-a454-a32a-5bb01e8f6512"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6VnoonNtq/t1P0AjpmSBGu/K60E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AD8WOP070YeKjtUOyeR8BdYfE9tXOp1a2KmM9G5utLTpBeJIA1lmMEiaJ6d4pDfAxR/sisW7FBdhlKxzFVb2XwdK/2yaaY2V0B0N1AIuFylTrHybuRot39XTup/c1jgtyCeANV8Qlzp+K9EfCogEDUK9+6xrRIyToKf7USydt0s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UmA9kwFgQ3LfhEp+Ym60byMi2MvTTpru4lYS1at2/JBOhLzCh1SIqUa+0B36tGqOpVE2Q4qBLW/PP+qMCciX7PbnG1yFqJqcXRrw6QwZNES7Y02LFwYcB1Qv6/b28BsKepyhBWqZrHrVM0JDwEBye9xkcRP89NksXGWEgEZ8DTk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6e7d966f-3710-1a28-a771-90804dd63ca0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6e7d966f-3710-1a28-a771-90804dd63ca0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6hiqx6GicbY/2CQsOR17eMJD6tw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ObyxxWOMI8X3o14phqPaoW9c+DX0EkiTdjHuyaM3J4/jxFwKla+CwrIKFwMujvPBzQmVUB7SyBExuvQh8Zl3Fmk719a2Em40lBnfP2chfkunFoS7ioLy22bUwLNc+uKGLsweSM3kF4IteAwwd11NPKrVvBWYkqyuaZhgW+brTVo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>AKUfKAUL587W7CjICS7mDfW8tY9Vlkn2lM78fh0mAT8hBtxyhRW8jOc8HT4NUA4zo8WUOAy/liZrFzVMouXeHmaU7Gia1XrOxF3BVgYvsjxdt6p2G+JKk24AJMYrFv9knuxLUsQQRU1dknPKkbXWQ10aDxjhEDl0L8iKOab2ZIo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>