Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxda38fe8a-40c6-6523-35c4-bb0b87e2db70" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxda38fe8a-40c6-6523-35c4-bb0b87e2db70"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>2d6Du7VasYNYJny4bGtPT52ezBo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>k48gyZ1u6Y0B4FfwAeVnGer2Y1bYEbzlnsMuIOo/zmToH0Xd7BsgKTUQH4iSIg3XG4Xv/l+Ha01LtVQE/QgMulwWD04nkbLAgWiBJLVrO7YCGP8dlBuqfe/ouRetOAAGEN3TqsAP45vqP9b8d4IvD+V9odLK23Xph5+12U8+RmM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7071f278-f7f1-6241-2ee7-fd4038227e88" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7071f278-f7f1-6241-2ee7-fd4038227e88"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DtTgqMdrvypIHUY3MPi3QgEXATw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qmgZb7K4EW8iPBd+MHoGIehWsMKoG6OYqQOTueZD94hhKWXjvgyLVvORfLrJbTEl/b4ukFy6HMsUMqWBmLMhfbboQSYES2JWFPL2/9WvMtV+oKnjGz/xQs6LUs/B8+kAD+S7AG5DEqHw5co0Rm18KcxtXlG2QfvkZ5XTDCp0Maw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx474bd283-bf6d-f025-0b92-b7890abd3cac" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx474bd283-bf6d-f025-0b92-b7890abd3cac"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>A5wpN5WJn3qRaH2d6RIAKnxE73E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bUdY4SHmsTLbHOA3bRF2m2Nfh2sfMWcnXrYApobzkLECyIm1ByKXcpHUP6TNP1kFEXiO3se4ZMzRa7njM0RhVLC03BAZLUUO8tV/eHc7evKLZYol2OhU46d2mf29eo18Y/OtCaEtReA+On28vmQ9Xa8A04oGE0bO30WHk1SvQCA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx064a6f6e-82ab-4745-76e1-4d424d2da0e1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx064a6f6e-82ab-4745-76e1-4d424d2da0e1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WdlY2viOg9bd6vzF5bAqAvace1c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>QhTkYJJ3tfWPMUR9M7n4XcbzyoisoB8RZuAYyeN28ITA7QYgtGawdyk+M22Qg9jQ8IBHA0XVUyPG1sJ7f3SGWc5lNhAB6epa6+9ma5p9ZbfVraF1m24Ku+jSnEAWvLBGhcWPPUd+ZC1TTuw51fKwLorfJqn/+jVVrf0VxTxDMdQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Fz0RECKyeSFl4cUIZy8ghKJXlWdpkSLKa9y0bnbY3Ts2Dr1Xj8QP/OkHK8Q68OhcZYtdE3nt4pIyYp6q3AetQiXfGqT/VaPRXQjRr+yROm7mhWf0Zzu+BgTuDs3vcNKb67W8yUZZY9H9Ow816+J75SdO1oLZqRQaOsCrcGKEtek=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>CffCL/ZYm3DDS+FJxGzvjGjPwP30/HsFnmwXDbp/fZBw2kTlyJfKoQ0hS12MUKvvW5RumwE03c111jLL1k9cR/eeFjPTPkHZ702R6gGPyvT7iU5uvSKT+xq1G7ihyki8ob4/BPKKL+a8QqUz4Z0ltTWBO9Ji87PZ5+OLMg1YX6A=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx60855d21-d2c6-0cb9-9d72-82df2e5348f9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx60855d21-d2c6-0cb9-9d72-82df2e5348f9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0bvcqK8D3fIcDIebgUAty6OPqjA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IqePl2UqhCBiWp2PcSThv1jMMq+/rv5zwHrSro/Pwx00Ejxv3wHy+eSBQ3Y+4fdWthuOQ0fbgbU4Za/bwJ21mOvkE//j2g2v4vDyTrKHwAPR1ZzbQUqYwSowhYdRZ5ex1lJ0gIJET5WscsydMwm6qVrawl0jDdcb9ObvJQv/kws=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Fz0RECKyeSFl4cUIZy8ghKJXlWdpkSLKa9y0bnbY3Ts2Dr1Xj8QP/OkHK8Q68OhcZYtdE3nt4pIyYp6q3AetQiXfGqT/VaPRXQjRr+yROm7mhWf0Zzu+BgTuDs3vcNKb67W8yUZZY9H9Ow816+J75SdO1oLZqRQaOsCrcGKEtek=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx09ff2ec8-8941-8131-2bc2-b39ae7634062" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx09ff2ec8-8941-8131-2bc2-b39ae7634062"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IIvLiEa8SCP2DPLyeI6+f5InQGA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>QRS1SSUD1wvQ996CWhvAav948m1IDLtgBDB6myMJo3Fi6k1wO1DoqTb1NnYDFg6PsaMWQ/dtEJq3XCm4GnCngwmiWmQmSnKxW1JunzmNQIXtfxhRxdPC2h1HgMJnCY5Pdwn20GNwWvA82pPVNuQRKWEMsgwK0wZJXb570jlGW8c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>CffCL/ZYm3DDS+FJxGzvjGjPwP30/HsFnmwXDbp/fZBw2kTlyJfKoQ0hS12MUKvvW5RumwE03c111jLL1k9cR/eeFjPTPkHZ702R6gGPyvT7iU5uvSKT+xq1G7ihyki8ob4/BPKKL+a8QqUz4Z0ltTWBO9Ji87PZ5+OLMg1YX6A=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>