Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxcb613927-986e-ec81-5abb-de41a805edf5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcb613927-986e-ec81-5abb-de41a805edf5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YO3Bf5s0naXTVq/gY/VH1LpWahU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mBvBPVgYKA6f1lDo1QT1p+FxlG9bXYbzQ4LhLH2FPQL4kXx902SOBjdefm5vEea4pHMiiFoEjkFDcNhEeHlI3vajQlsUWSCsN+9eIE7GGjb+ckqVeL+kTs1l9jw5dFbj2WETrgfA6h/mMZ2ha/QAyKFwhQUqOmvzlSPp4KMHUcM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx664d79bd-7751-630b-3a83-c2f35250568c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx664d79bd-7751-630b-3a83-c2f35250568c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>AFmfc8Mams+/X+QTxK4MYuMdkPY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MQDCZ6VSrdKM8V7jVt5vUpdrNhnYcFXdr6V+jXxvepfaJDBaj8Hb6EugV/KcEn617jNB9kLjWIKyzf6qd8ULl84UYkFmAxkru6YTM8SwOmC6RP1dtu2wMyTBsJ/ReBsTtevykDp0rVr21PuORd4+7vARenn5dDQDQOsB4cgOsHo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8899ef33-ce9c-d116-ab9d-f2c96db2c0f6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8899ef33-ce9c-d116-ab9d-f2c96db2c0f6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1kuvNpwMaMpt9rLWVlRyKCXTf3c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>N9SJy6foFuMVCi4+mtPwas1ZTx2mzSHvqJtV4Ny2SpsjthymelmiJLVWCo2rvUpAFgcKRPmDTKCYs1shULU2zcZgUQN8Iyy2rViCbQ3M2ygYSy/UKcRP2iXJ6DPlYtoNPPXEPBhAbNOve7YI7GM5DMDc019lZyMMRJHeOcpX6hA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx31d16194-0749-cddf-dbe6-b20592c817d2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx31d16194-0749-cddf-dbe6-b20592c817d2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>RKNMl3+oDHmrcOiY1fkFKoTk1e8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>eUQrKwJ1yERwhKQdOCb03cKVbMPv8FRjFHYJ9vctZjqDAD5iimVKn6Mk2tfedeuvC6KPXS0UPMqmSzCeJN5EPCuwFe+BcJOxQuSXLqlHZ+I1PDwPCJyY0uU+OzDR873KahhKwfZQuhsTn+j8nKkn+dZqaX+tbtB3T054xrOAWJY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>FSU/o4knDv88h1apuEQeA9mpEQMNb/P9qaC5Ni4fvmCMxCO9/TLv3o4zoShPJ4M1ltSX0gm8Kf9g9v8Z+nfNjWduFV+YiXhKIp1K7c5AskvnQjIF8ouVm/DIDs7xWdxlr1t3U+AlgZqpRulKZSLY+kxu/62dQyjSLQfWu7Rn+CU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bhRbk2e0mCQupJmClGbjbaqPul+EDo+nDXsazbixVC+wSGjVbxs70gIFieJlYQ1WvAqKNyakGSCzZxo1s29YVC61CoaHY5D4R9QXOa4YofaW+p24UvcMLjOokmAJk71khjNvRp9ReJ2Bgc6JivH2qMKW9gxNKR1hp+3xWD0dX+A=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf7b7d8c6-2a8c-549d-4eed-37e5992774ca" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf7b7d8c6-2a8c-549d-4eed-37e5992774ca"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>RZaQUfY6FfiqFFoaUol0aBnIHJI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JFoM0x7HBn11f1K6cZBdJiGwh1g+kTJJksi4wCpBZBSJyeFUrKLHc8HOLEVWZ573K1Xi5s55HK97tfiTfiRHaptVFIMKs0Vuf3zEfUBtoaiCeI5O6VvWvVTaUYpAZlExmu0iiU/F3mToFue4D/CAaWo8QSgAAKDCLqnWucMF6w0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>FSU/o4knDv88h1apuEQeA9mpEQMNb/P9qaC5Ni4fvmCMxCO9/TLv3o4zoShPJ4M1ltSX0gm8Kf9g9v8Z+nfNjWduFV+YiXhKIp1K7c5AskvnQjIF8ouVm/DIDs7xWdxlr1t3U+AlgZqpRulKZSLY+kxu/62dQyjSLQfWu7Rn+CU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3f4a51b7-1311-591d-19e3-e0c95d020511" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3f4a51b7-1311-591d-19e3-e0c95d020511"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>GQ3SBDI0EyKirDfI1LgM0IzgPpA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jcqMwdk5AECw54t8LYb9su6TtNT4Mye66T4Jg5rm2UOZWmHlSIKIbo5c/wbj1PRiEbPWtK4XXtvajTkKy+FjPzAnMdtJYm4V6+9KcstAyaFEaGWlefHiJJKAxKbNqeGBmAOhCYAj8OObb0HS/aRq+Ho7acgbCWNTyAMw1jIhyi4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bhRbk2e0mCQupJmClGbjbaqPul+EDo+nDXsazbixVC+wSGjVbxs70gIFieJlYQ1WvAqKNyakGSCzZxo1s29YVC61CoaHY5D4R9QXOa4YofaW+p24UvcMLjOokmAJk71khjNvRp9ReJ2Bgc6JivH2qMKW9gxNKR1hp+3xWD0dX+A=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>