Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx8e84d9c2-454c-04ff-34e8-a2fc076bc338" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8e84d9c2-454c-04ff-34e8-a2fc076bc338"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>kkcQhLBAfUtoCUccNN1P3iBDyc8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oisx8WB4+kvEL+aQnBOHVel3OSAh5J9l0mO3/qlwX0x1ETwowLvOAuTlOjirtHZSUYD2mysGsoMTADAMgDBGyshPoxenRCrxjOO25AI/o5osrPkOw3je+WZCd6ItDeOSR4AgtAE8R8cEZe4w9lq3Lx9+NQYuEAo29JfzzqrPK1M=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxdbb88cad-554d-b70a-ef52-cdd293b772bf" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdbb88cad-554d-b70a-ef52-cdd293b772bf"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>c61mDKha45l1jukm4RQPUi0VUP8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rKNxwcxcyMiPTpJ7/ZsjTVGlbYhEVmzhvhVYIxldMrPp9UCQYCAT0jR76MTcAGMLw/bZYi6I1tOt5mh5sSczCkhTI9+eWMow5kJQwEgwqzQHraatTPis8IG3Iz7mGfZkA6/eUa/EeGAQkrT49U9M60w8eZJMteJq5aC9sbvqPAQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa7be22cc-1429-4670-0f9f-a3cafd60a75e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa7be22cc-1429-4670-0f9f-a3cafd60a75e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ouYNHk3wBbHp5Gnzy4eiES3OQNc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JTrotBDeCYiRR3X1/HrMnFShFyiJzQrxGn5EAx6ivtny6DMzl9SEXrf9T71F44QeSHklnewfmSh/iaRFMNivhdula8mSTv39GBjCvKavPWimq5F+kcjVNIpASIuCjapA9iEdB3evavJICPNAeyePNMA6M17VYXRBUTM++5vRMHM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd6669f2e-7672-eb34-5071-969ac1f21518" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd6669f2e-7672-eb34-5071-969ac1f21518"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1OjmfFQfjUAQjvrNC78g5R3WPe8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cNfpdpYF+Sv6jnZLo6GYulp1ceEDS2M7zuhqUar9m2xZ/sk3Kjkp4tkNZZKdDUvZR07McaJMoKrG4Sy7r3xQVfSazFwMh1HARU61NQw474n46QIpxy63QT0nLCSs6cAfAna+xSv8cLsCJArVauV+zCbxiKCr7RpXFNKcdm1oxHw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>G5Y9TU3ZsuBZZN4LKu4mPTUiaatK6fS2l7p40OLts7gO/kNjl6SU5Bt0BPkXqm7DwSKR8em07mBxmTSqyPodOps5PFmrAKQw65+M1pCOeiXQtwva2Xkch00kgjy0WjeuMMt09isWXcchDbWV5yyhhaawLCFkaeZCkPRaahN7E6I=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>RncK6lFccW9jDwv82VsWZoAkoPXl5ljqb5G5EZJsMF2Ik79PDnow1HjxOotTF7ZQKOgnelezn6TOMUQGTUFObNKLWib8kREUqVGTog3ogDm1kABj2cbzlB5+sU7FnjDktniVNV9cmnDWvgZAZQA5ECXGP2orESiiJu4EcxKiDxs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx76d83315-96cd-c9ae-6990-a6f58d60ed5b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx76d83315-96cd-c9ae-6990-a6f58d60ed5b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Eg5F9fdpilxtXRi5WtUW4U5m0ww=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jd/Gu3+9V2cT5iudplSvYpwqBfX4dPNR92QjhQmZJdHGJ9b28vwEFY9nwaMxtzZN/4mlxZBYW3+3WTQVFcnBjHCj9emACXjuVcjgLV9FOIj7eG+5Njj5rMCiW92Cslkm/PV+FIMbdshS4CNswdUyYCZTAkqiGjrjmRtYLD0F7YE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>G5Y9TU3ZsuBZZN4LKu4mPTUiaatK6fS2l7p40OLts7gO/kNjl6SU5Bt0BPkXqm7DwSKR8em07mBxmTSqyPodOps5PFmrAKQw65+M1pCOeiXQtwva2Xkch00kgjy0WjeuMMt09isWXcchDbWV5yyhhaawLCFkaeZCkPRaahN7E6I=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx38ecf31c-3aa6-ff89-5008-99174f2f70da" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx38ecf31c-3aa6-ff89-5008-99174f2f70da"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1fMhP+zDh3tMngMT/IkWI0cgYbA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AgPVXOUu6QMnumeqZEFN4xh4/IEqLnNeAgKE7eSQLB4Od6hNktMRxzRQjBW4OVHtXa33S5+c7tEnVXnpZo+aCGjtbZBMoPLX6QeUilx3dbpP82NHFeB3D6bn/49w7fBxVyp5Jfu+Btq3Pii5dUMTsHkjxZT/8t8U5p2UETej0tE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>RncK6lFccW9jDwv82VsWZoAkoPXl5ljqb5G5EZJsMF2Ik79PDnow1HjxOotTF7ZQKOgnelezn6TOMUQGTUFObNKLWib8kREUqVGTog3ogDm1kABj2cbzlB5+sU7FnjDktniVNV9cmnDWvgZAZQA5ECXGP2orESiiJu4EcxKiDxs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>