Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx74f80862-0ab9-f94a-5a8e-d568493d3fba" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx74f80862-0ab9-f94a-5a8e-d568493d3fba"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>TozT+p9C4GqCZkbIZHXYy/jreZU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>a0fRQJmUJ61N5SH/EOGPlB+glUsqi+qOdEay2TZ3vwyfDNEK929VtoJp5jg8lNXAq2pmYaFdLUfuDQl6CZQVmseIXoOd1QdI1tmY86pYY6X+pf3eQQxTYoScZZ7BBa/bnIt3Uq5nuPRBJKMMre/MmGsacZYIsCfSisJKwAOUdBs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx24d14e08-01b6-e770-0f2d-8c2175efaad2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx24d14e08-01b6-e770-0f2d-8c2175efaad2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xaZG1H8DEmO18MvNVP3KldOCc38=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jYskDbi+ApiV2+ss9ATrjYtO1gfpf35Mu4Sfk71H48Tt2jSHEOzWw20zaOZoPVQWM7NCxoow8v2OQSezebVoSbme7N3YBR9wlyDKIg8Dc1YVpb7mbJF4Noft4VmI6Mc/a8UQRDqwyXWiBwI8zqUklyS858ON81jooOWAOLJEgaU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7d13d712-7a3e-20cf-2c25-e2896ec0a5e4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7d13d712-7a3e-20cf-2c25-e2896ec0a5e4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3xXZtdv4ATqiCIUFJHbKQdGGthc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IdUSc6CIR9lwVun000QRqTz51QE+4C3WESp8ZVVRGPLls0II+ke5BDJQtB/s0ashLtwsvXp/t/GhDTW39EfWUjQScjiNxQ8KZZE09IsH5kEuWp6DjiMBjC0zzYL6RkfwkoCjfl36e+H7bDiLXdEGbXHtTpIxQvxspkJTre3pXzE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe1133376-62dd-25b2-ef96-c13beabc4bf1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe1133376-62dd-25b2-ef96-c13beabc4bf1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>/EjSoSWP1vvbso4MZ/fe362n6iM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dPNH7gjw6bNNbiVdYWvZlJgQnRkaHIoXsTOkPySl7Rxms0nDHIkal6a1z8jrW1mJzqS8xaGjCXk/o6gU8f5DbOGCHJUzq3T+6MeevdNTfhUaRcSp49k0ZgJ+qx2IUGVHjb6Wk41FJe420awIofNDO9ty+JyeG8lK0h1Ot3tS62o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>POKvCoUTP9PFE937I5dvf/b2/f/DdGCL2zHyXUfPIeJrCUlcUNtgg91eaTkZ5mmhSTEmxEIWMtI5Xkl2oY4JgGIrPSYmRxi1pUGzoDUmmcBtK1zO5okG69yRK6jg46fFCqlAvaviHtzr1Dq6wzahkg/S+V6CfobCnCEYjW9F9u8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>AWIkPWS/2gB/m9c+cl44GozOtiKnjIhZNZCbR5ruQLnjnUOosILU2atSO/m1Mmg0CiZ8vZAJ7HjwYNBvLLf/NgAE/3C+6i59lYNgtTx4ZP5e03nToINa7cFr1JQqBBr4yziFU/RH4oPlPXv4dGJniz8hqOp7A3O1Pd5D+cMkScw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Mah+OIneo1ZNkS/Cc6SQ3d9VKzuRWtWwX9/9EFGebSZc5WZ1EBbfQYZEAYksRgfo4Nt/wMUdkJxs50aTimpjRnaXqTGZCx0m7W9OoPUXDJ+Ja+bio+7qZE2/1MVxdwZ9hxFe7xKtZF5uaDmuT3qKDt6vYzxj/j3mW0IQtePHvdzBhf5wH4rynu7G2JKGE3O5OtxkE150JM9XTj0nqd34tZMItBNf0u1Zq0W+e7WO5KNCeqLap9PP9aYk0RqDIhTh0Gl6AfCo56GGRyzkJNPJGx9QjfWg3A+f6gyCJn648waJktFBjgSj/WYC/F0Ogv5tYdc0ndfDv7CpsRGuUsL6uto25ibVa9sSXxYeRaBY253Sg+0WTMCcwERrCXrHutkmBJ20mo23MwsW2tAwDU7odSX3jI3CJnbsDwurkjFzLNmSFQvm44oNZBRMisms0B15If1kwIv8JG+EwSx044TgnbtDAv+NGhFfasu5wz8uE7T0koSSPViBwfJQPN4yhCq20yH93Y2cf+XkYuOURKb0cTagZST2rUff/9Rs81DMHHRV6PqTk8IfNp0Ctb4+POjt39kFCmWBVBNiBVgON4m3PVhZGtCx18KFCusywlIP4ZpA0uwvWE/oBiWJIVvYv7zm4/jTtCE/T38KJHe+epVssbtgoJGO6rP8hn2lJVewXO08I4yyQPAZoZjQPDz/tA7tnBXw0OUbKhMDlbMSXHHVkQkxBOECLWmlrp3Iep0uarhSrNZpqu4Oz9/FbbXkQyXAt0gxJYatJSMzz3YqJDbt/n+93I1SIufcipbRYPKUfkhPzlvuk6kStqBmZoIeYYjQ7nfNhCvtzy8MoHhvLShYUbAvXJJH6fPpYwRIdBCGTiRAZ8WU9K4vs+9VuzNpDjiF013IiPLyw18VmUNYcfZ5s9oXGQxp9nFVR4QSCJu2Y28amWWxeuXP85278rWBTIN8hMF4KZkpnEKinWDrmz1zokUx55hU348fPg47MxVLlcDyrImetEfTs0SJURHrqh9kdbZSP8xgtbEUK8gWoJm0VTt5wGCBHEuXAWBI7kaQdlAlFmfRIwqfsAy+2AqxSg1cEKooqvRTqtjP1RWKi51IaQu9kAYtj2Ikp/jIiaY4vkz8Iz6L46GJkeTXRrUFidE+s4CJc5b1aHzqsaDChlEq5fCZ47I8Gh19RXILtk+KM6ZeOmUWLUCfoGMjTPBdw6PqeyRRRpWgDV8BOT1a0b1P5751mBIIfBqhYK2g/w20njc/CHFOz6XxFdgM8GPHYzWjR+QViVWku2TBTlEpxZld08W48zggXk0TEiR2EdoRvwfk1BTpGp0Of55vs5kZEF/D6Mj09iEaYmzd91Zt4CcZmdenc6uWxJOZCPTygq6nCZ7DPNvmKvOOEArcMVbAHV5Uy2dSZoeDLPPGDaFnhOak3KNCAwiopzy1z8SC5DXv2Kh3qM/AmHGbL/zvF0zKM0Jsg7r3cUwqUe6pGRWGZ+C0sqRJJZZJtjnDbmD5Dm9WaeI9VFF8YYhzcbJJzcuOT1PxK8qTgRoU6UzyPl6Yeg+m05BQUBOWhiubjt97x2bP3iC2WsxjzflrWxPnJmjO8G3RS+qetDqxmNPRakQPngWwK5tovx2cWeQY4BH4sfB53ORgL6GZhUVavbz+2g2oWGEr79Cq7k1Keelgvj0jkUCGxlNTB4wLiWcS0aXGMcIqc23y9pJAfdYtLXDubZeLW1Gg3QTxWlxEkl/BcTDsEXD3/qjn0EJJw6WtQtf2euSCqBRuRjisjmybvgKNZU7E1wrH9ct3mXc/p3gHTMugaCpdCfZlRDa/KELIJ7oIDGSPnsZofOa99meI1OM2zA5tchpyLf1WWO5AbyuQQz33zKhQ/pxoT9TgkojlJrVR+bGBZ0m3sp2f6/1WxKwbizywI+ZR6FsaqtxZVVK0qShK9yKXMkOXrXLJUdVgKtBd1KSzGPnAjXrv4LAglsZkhsD+KD//2viC1HJszH7naqu/iDVYoO+7HWENqToPYG6gcKAzPfl3unjEmeIkFsznnkEm9SFc8NLF/RcjHmuZ2+IzHAYDa3ZgJBweJGm/McPL+4s2ji9QRqk/0I7DnZRXAsJs7ds4fr8EIXAsZNboTQO1Ch6n9eLc/tOKYU64n93lbKqGPK8uufZpi0DYZFUo6xIlasB+GgXwfDEeX8Ahn4+n6qTXvVglDYeAJIhgafTTijcfgSx1R5hpBpwVQ+hIsDAtAzS9zNZL8ea656ffOHcSZ7X/BsJbNGBWjZWfmVTscDVhRO3Z2KTZgnuZq+uHXxqxquit2nBmz6vAzECIlYB72k1CaIx3Gw4e51uS5d9ywyBBNPmmKqPE4yRCNd3p9f8srIrB0DViwv0PzWAC0fOt/FHF9f5D44k/zdOH1m2ZQGMr9aaCM29G5mo9iPcaNXxNWD/k/E7sjEoSYnFuR18efzN6mexJCtCtibUe2DoMVw5uzdeGcOabcfXHIMjIMANhbq0nqnUEg9jDSaKh4KFP36t1/DOeh1HxgA71ls9X7PFEJufRnZC39+cnP+BdTjFO+OqoXQhiwzusy/f5AURjLTVHowYs5TwFnXmcTqc+GpSxNPg+Y02CJUJ5lLO0D+kruOEc0f7sjGj3AG8DLCJlAfTst9OskTgZ8C0jw4TdhGyXbdJ9vEqPc0lR3JZzRdy8HwJuYjivWDh91lNKb+gf8BiBqd18R5z1oixP/GxsfdTKL1oEdFFvjpXTFdGY2xQFU3MPptvulO13jwCqbASMLTYMgfOsrj6l1c7/NlNHMsGiDEK2MCakQRIiR++61gld3jTXo5hYp4euU01OkE8W19DlTl51c/dTwPd9IIWBwcwS+ucuPBD6RJLUNaLng2ymliMzZV+Z6wL3YMe7zKYah5OkdWPnIsOFLoGuDTOrlihLi573ioyT3vhZ1uW7ydiNNiedOf8qgpLLl9FvwzWoRkmC2zRjsNtN0XL7zQevywupuwJELbT3/VNO7JwnqSjiOklrMOL7XGxZKEA3jSfjXQZBT6Tk/PrsK/xdkXiSCYepjZ70dhVMNYuWZg4FbDBuvBtHreiVtRme9DR8H3r/JlGccfFiK36nh3FGtHf//pHkjRJJefKeZbEuSdpxhK6L9Z1rtnDM1KCuR8JL03CjBiGyjlt8VFirAliPCvY4Ea6VSC+Q0duCUZ6nWkJfG4yHjTjCxkxQmBa5B2po0EFH3yq0Y7F7+QXjPv5y6rOLdxla8Va1rlw73tv8Ax7Hi/VMGsLko466guE51dOR3UCHbvQHIEzIcuW9U/UDoDTdeQe+1h5JIQ3sm/egnz/2ITFlSTO1Fi7XS0p/O+11LrP9Ixh6xG3PX1M4QZFENfho9O2NV3xwCYvqOhcn4FhLTbr0eoX7vjvIrYvLGAVux5VZvbid5qAuoS/Gau0hq77RwmDAlsrxkusjnk3BSq3NOMc/0vAYpuvgKmmC0/RDRl7Dqcd4JJvUADeq3Exj0+QTbN5/dfZpZ14gUYP//f95iYp1Yt2R21ohBQReDDxDMk8Jer7BaeENfyjDbpYWyQ6D4Od0OdGar6b8DUEMWbIk1f9JBHQin95u63j0ZacoXicbxMW9ux+eAJRorw6r1+PUwWbbqenAUh7rrK2zAbmV0eVJKzJSgC7pd5sywTgdTCBSb+dSqxsIcGbxvmbML595MLxfDQH/XoMkfnXoz6J+EAhZA2f6iZqGKVn2uuzjOkggPoLvG3iEPThM7VwUByvBGW+ZVz6x9Y+Z+TSvUYuQcothxGO5dNufMGqLx/eWfIk1r+EsYq4X59XVZY9SrnMf6xZw/9lY+YGN4gSXMp5PWUhilOIpzbqi8gXBO1vLsPyaoE8I645a2jm1Q1u/VnKktGytMgrM9g6aO0V+R9HcdJ+MclLAEjADqFNhhFDDJSLquwc3ndgw4Z6px8rPlk/juLWpw61KdhOEmHGPieFdXbzgDa2pYHLSGilNUqIFEcYH45faGIfJvHhAXCrvaWGixCSCMrLubKGucPfaOMrALLuw3w3sMpxsnFyLtkikBipNRdWqMxPRdUzI3wP26XK2nCQjVykTXp0pYKcyfRyOb5FxGp2ap87EGLgldLfUkH7LiVUt0vU9n8eLrwme/MY7IBOvFNbbX6mjde5SuTldBsGpRukMC9VnaCY5C4V/EE+2W5gWREL9yF/skn2BSbhjs4oZntAOJ2ceWs5U6ZtXbysvWhQw33GeNelsVKFozu+UBkfPNcPSFqokydYZSPy6a4My39gJ+Ap4iQGDZrrjmD0/wjC/+C55DG/m2jz1fkzY348v9leM9c+oZIj2ljcp/uAny/nm3zWVfu5j7ijFLmJU+DZYFW7+1r6OrkFbAY0NmVcdMxsdCu+9Cu+IxdJcR/b1phjvVQXdIOPHYdB3zSMhyKLNK+Xfloe6QOXQI6WjyumlHLotqINRDXjpBmCq5/czsp6x/BpDlxHC0cqZshHRFEgzbe7ukm/Oxh7CEt0lT7AR0FuuWZoCM939/pw936/dBzwGTWz276Gw1nQjOeYg+nB7uyTreWeKOz3XI7i+0Shrh4lf0Yv/nJ925Jbd+4ibR/x4Rosum8l880omJdFE4eGi1OTKNRQqemkJ5C/YQB2xKpbBbFwSf3SO4M3JymuoIIV5fRSj9Q6hV4KYYKBZq2CKHgZErC/UKqfCyv6p7yeucCd85YrlLP6nAPXyWnb6q2mc3H4gKXeC0EC802E4kpaQbJ7Evv1O1ffpgtZtZVlU6IT4foIklpgVqUzOBmbcXEGJCK4ntR5Wzq/bmMheqIwGaU6MyO7dlhyZFJj6/RCgxhEqhONP90s4YOmnDXMR6ygFSKeC+q+PJL8szfZDL2b5zaujwy3AFGbiyISSD6TVTqE8Lk6Curdl9ELCIiwtUd30ZE86UcrknFk9kToocgtz7LZMkUWE+gYUE/4TzZpT7uRsUomr6dnzM0f8Yyrn481K/zkmIz60hflAPTW8NM8ih3TVERBeAqKM7/aTJeii+OaYj2e82KR1zqpHmp/Rim/0FvZ5Z0T/+WqDFZpCqcpzf4zEZ4tcyfMDiSWOpwYglewSqkRRzi+0vf4UTS8tHWujoXfuw2zy0RUXAe3ujnCGz5C5JIbwhyPreUu+xn9Nq1UwEsn6UmROkMtYOMJrukGQj0qwZlQlIY/4JcnDxy4s3xNS2cRBI5xAY/YXski7kuEAJm7NbRkBOzBS1wO0vCNtcbZ0jSONRkpQyh9CBsas3tH8O0jVOb5KfW+xXvAjp/6lC9udbIODQB2HqzqnAf5eRZqC+ixhyi+UxqFhuhK+7bHNRHBYVx+Hf5J6eapZJPKqH7aQa9kIDuCRWKWTKquhrBX8v3leU+7cKK30x+ME0Xf/6VJNehyN9eLEMhnpvozKNkXmNWd3kB1urSGoItgf4eu6eb5jD+ZRQmPkQ77X1FhRd0eOyVC6RP0AoOKFX3npDOOBzrDES+cBrZUMZmQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa87d1716-3f5d-d5fb-9721-59b10c6a433d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa87d1716-3f5d-d5fb-9721-59b10c6a433d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wirFPj+kzDZLH1FBtHPXtk2U2YA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>av5z/ocQC1/s9G9Dr21CE8FaY9TrxmkGNVCvybKwB7nVwOTVTTHpdLhfs7KxKyawC4UsdQ7Vhu/DN67ud1UM4f6RxgAgsskQVzlJ2XDMdhFyZEoU14vHHzk5+QUwJnxpzCiQ7v/qEdVFfTwQhQhjsn17klvP+8BRAKFcsnee0HI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>POKvCoUTP9PFE937I5dvf/b2/f/DdGCL2zHyXUfPIeJrCUlcUNtgg91eaTkZ5mmhSTEmxEIWMtI5Xkl2oY4JgGIrPSYmRxi1pUGzoDUmmcBtK1zO5okG69yRK6jg46fFCqlAvaviHtzr1Dq6wzahkg/S+V6CfobCnCEYjW9F9u8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4566cdfe-8d77-a64b-15a8-73c0310f5944" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4566cdfe-8d77-a64b-15a8-73c0310f5944"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8FwRn67qK5Z/4rfqb8BC64+regA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Hq7MQfRgpNHAgztMoCbKrh2hWiYrPVtyN2LsKMe9Cs0MytxjpaFGchpa0uJAFz75e61UupbYL/jI8r2XIK7xXvPydnF00TDjuMnx+daOl/0IZIW9+c5IQMzlU/STtklTuADqkL9doOv8z4DKRjk6AlsUmzJ4njw9DcctmKXvkqs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>AWIkPWS/2gB/m9c+cl44GozOtiKnjIhZNZCbR5ruQLnjnUOosILU2atSO/m1Mmg0CiZ8vZAJ7HjwYNBvLLf/NgAE/3C+6i59lYNgtTx4ZP5e03nToINa7cFr1JQqBBr4yziFU/RH4oPlPXv4dGJniz8hqOp7A3O1Pd5D+cMkScw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>