Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa21f23f1-ac4c-9207-4d58-d4b06df8a504" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa21f23f1-ac4c-9207-4d58-d4b06df8a504"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>z5UqYZdSZXlDLpCfHhWxqwk7GOM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Ob1ssrb6hYpuv1wZSdkv5pQtRCoXUxw+EVQp2ZzsPVD2SsICASAiUBHJzwRD+pFQ7zjAbmfXTVlA670M07lAnmVIP5dII5SFRkW0MuP4OVjJhlY+CV84FBIO942fqUxd/FiuARefsw8vnVYCky1EwV7gbKyNKqAA8t3l3fB3X70=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx49be8233-e058-0d28-4fae-77f28f8fc4b9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx49be8233-e058-0d28-4fae-77f28f8fc4b9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>MO92cyA2FQJOl4hx7MBf8c4qchM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>y3Z6E1DJcRzm9ira8uJfljuzN/BuWzlOsxvRAAF6qmxtpHQ8iTr+w6Ztb+aIukqGSoqEF2ZHsQZq2oimOExq2tuEBtwy9j+FRTW9+PIg4HULET5SD1BGs2UI4DFUbXHkrasqq5TBtl4nnA2oDhgXqL4/qzKtGltjQw/SDk9NI8E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx85115281-c3a9-0707-7cc8-d7d6343d8799" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx85115281-c3a9-0707-7cc8-d7d6343d8799"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>I4gkzHBPahsB4eDPREsVS1DbP5o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>azHzR/F3Acm35bXjPzcLMz8q6Fms0BbSH5X/Sq+DrsJ2Gc/q2y59zVS5dycu9mMftFGwoHynYREzMeF9jtDBYJVYl7oGbV0xmQkhwwrtB/7I9jyLFYGuv1ie+/BQqnO64sPDE/z88jK79Z4TDwmIHMtAj/Ln+2q8QfEbdIR1xVY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx22b22bac-943c-fcd5-0fb0-c1bebfe9f312" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx22b22bac-943c-fcd5-0fb0-c1bebfe9f312"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7uD2i/g1MPOzho4qUwEvvpJXuO0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>I7SrozwsZZ1D22ascBjpy2zsLeWbiv7ksmQcQZgLJibOQZoOamLq0PrWMbbUwvPA1rRkoKelbdUJMqnkCuYGFLGyc2GhaM4+kVb4Jf/ScWCTyaF2EQRgqfyaa9VGhtAiopatZZ1RMv/bfWDFhTqFAuE1B6Yn/hII3oI+Ebmf1WA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>PzLKTjLwCne0dirjrG04F4Lec/MoCmAK+Z08va1uOBIGehkEfTNDl1aoPd52+xTLBIZwywKHrzweqHf55kTJ/RZaniO8WvGyofNBUxCcvw+qbSz9csQrXfB7Re97vdFBPO2eJFnqMEYFqnFhLAwA2T4N3PK7IBaxMOAtqVnhCuU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>U6kYHeQ9Szaji69kIm1nchdql31WMFteL4SfKM5hmZTegzB5nnoacJ9vVt+XVBglfTpx69PiZQQ4pTgrmw3tKynw54lLOvyxlomIfRJ7qjGJBMbl+Ed3zVDnwGdYt8nXr4iVxy6D5wK6kStkjdTmakixOeuK48KjyHLRWb80dVCZVSw9euyvupvG8WXfTwHhS6ajjny/Wneh4Est4XkZWkyKBQ+RJ87SEUkohaZvx896dfLU0aZPLoQE3mY8L3bcgcoeevGxHtPSJmUCFMGG3PVMYNvqqJiiOShJcpx+Dt5v52nATmD38h7so9ChA2eHcmV+hflukrrjIfCuvDRrdE5FRcdL1xWuzkiCEtyvNfHObHRhGOqGXhlOBt2mz3LYIJbqjHUkCdQ3aHVn1jicV/VyNBbrF06cPYFW2b17+UiIzVStHkeHD56se4rmHbgZ98rSrvaKiI9B5D1LyOx1M2q+jnU/CZn5hJw/Q5gPwvjd8jplhRneJqn/YOtA++S52nKx3jc3N5Oxdpii3deAaa1jNZhqKEJfKHaNHW28NRV6OcPZ5/fpWyIabOySsoTR6dBhR0TTsLnWjOuTxxveWsnTfrieMpGKOUFKzV95r3TQ4LKmAYa8ux7vGjdDWGwPeKJ0BCath0vuQOi+mFs6ZdIJ+uK8ir7JMxPvAXeYWA6KN2b9FAs6IhVKnZqgYJ8TLXsVjYRyCbNKgbDLZdpgdbNA50mmS4Dyb6XVk41BSWQAlJ7jQALXooPR9FBc4syWYe8zULvRtEpWOHQ30w1vSQcA/lb81sPiDX3TztPuTyQ1rDTm12p4FnVN2FcMwCOKlZhHkjjlpHglx63UIVNt3gIGDLNYEfJ7PNUWdxe2oAlS2sacAUfM7DQLIaqHtGp9mlTPUOAPG2z8NP6TwZjo3tA167X1Q1xdpnqza5DjASKyL7ARK4Jl28CK6OuYl1lr5EvW5BgamzD7RyFtVxocNH21Lu2OL/Fb0hQi3aTvOgGVjcqzjvDceBE/uQJ8EER8EngWCZbreETVXL7SvQ2A17ahDmBbTmk9D7mTs64jwkAgpARluUfDWm8+07rkVqUG9abBNWPfw8b7LLpn4XUsHWs5qBXQeAAdFN3qVZhyHqRQyvefRazY9R6bbG83SoLDpAgLTQ4XK6CZyhtKXLAsSijzzH85N+xZkCa5WNbmviSOdsJCh6razkamRGrJJuAM2IlmZkkix7ATGVT7C3jNhfu12fbP3aGcOo09lwvGnPqB2aeR8uUCRQlHRp5nXVIHDcMN19V57P0qEFc4KY8CQuFWs5fIdvMdLbCwN0bAH81rzE9qmOx18F2xMMCEhjYP4ImPf9Z2ivkC1+hIQswiSSCh/6ALYIH1KWwL3FC6KEehQ5/0qnP9b0kd8/H4Eme28b4fE6zv/m+eTtsIWiikpOZo+tu0vtg/DPaxL5P01W8UaTcRrVn/4sGRFO2LJ42dZ1HfouzI12wX669qVUfB41UDcBNhEtiCdd97oXTssgZeKrhfygTBOH/mByNKXpVnZjtmhKrgvj0cvxba6S3IaJKqggsIZHfHz3tVCKkDtW715LTipoeqzks/sifo+//qM2CQ+NeUAYp4Qlbyoy8GWdXnB5plWKVf+ZG1U/AwcQNM61Tv0B9FH4b9rzXq4JN08xQL9ChffRlBh6IUhvqbjGIwqfwyzpwm7aBNUUrhdlr9KKmS/rPTbwd98rrA9k2Pea8CvnnNwtvuZGMBUYVIurDT/Kb+z+5M4KblsNDg7YfgOqJNn+fl9ygIT9Tm+r0Ta5hp5Hius1GJCy7ea8bciCgWOT5rE1ALO1LEw0Gkad7bR3xucKxoTTgRfbQwFD8ARmnO3Ct7QPFgbFBF8hMccFnO7axuQWvKy4jH80PDkFrX0+5yzT1RiApEVAOtqhxW+Tdas5F/+dybQv4Zcbhnlxd3yOwDS/QmuunYcIuxWQSXGJH48dLZ+511Al+gWuvdV3j00w9/k1wBQyShfQzfbBO+ytA+x5E7KiMKfJmphSwrPtaMBuDfj5afg1t1SNIhhYSozHKfA7pBnYRvuPKEkJjLXAN5tFVnt2WMD1Oo/y7/UiYJVVPYJgbFSjiwRNbWgDHeYdfMUv18lROK3iqvm3QAFaazn/ly/MUuJfcDIYnCenqKV/6lTUOCIvRSAelWJCgIiRcqWRC6j+7Hwdx25+9idUg/9Z18AJ4BRbaXQvSnWk+AfYkDNv5vlc3GqefvH7CrYlj/rsu6NqzJidjnHIbL1D691xsLDxqkO9nRiQw9XguX2jmIRS5ceUOoTrcOfxqEZTjCGLlmBciJITC7veII6VmguXn3Owq0nwMZkU8gt7dwYi0uRJRfQzraTad0APoN9b6PP3OP9uH1jN58yAHDZaWKA/I9Bj4HvYYHt5xc5MYQQT1fz1eWYjg/3nDUZFnes2RIkj+AIokwm7RzJ/AhSUvWC+IWddcjfgykPcWde75yWy5WJ3se1E3f8mUfBsXvqGOK4h4mxU+pa3WZNIFNm2WW2tquP1yGSbnvV5ev8/PQn20R9OusRwlaHY67ZcymMZbo7v10KWYXawyKX0sfp27LAw40Zfc2E63YXSx3vVEATg1ievLFHBy9LO7FVJ1vNungRoJ0PZ8A3zX7VppbvDf7/uwTOtZ8Mi2zhz5Kn1ZdmLVqhSs1mUknUh04he0nUDh6vMmmIGKito4aI+GEJMoVgz/krOzTujKv3LT2ybv0w84idqH1Axh8+HmPJiLnSqXGDhMxj7Ymc7H3t3II3x9RMwYEdma7np466HU2IIl0KOqIcHUTJvwW5yPWbxkhI8GneSeqrJrIkid1qmCFyXFJl1mDbRuj/HTZlLq42KpI0JnvwrssGvhY42O39Kt+W9YF5wzFfrlL5197YYYUahYtbMjRcIhB4JNhHZw=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Qf9kFZ/88ha43d8o2Gw4qXgjjtZpbSlCWL/f/5GWH7ulMTRyfgjI9XCcOPgYXgG99GjhkOHTky1Fs6rXic1GPtoUZmllZN7EFqQNHd5EU0cLmEOaG4rSKYAIB7aDHX56qitbThYepVAE6O2/kVayRdR95tni2FSjqu5fbG/GtVs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8e3855d4-491a-ebff-e0e1-1f6d7674ae41" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8e3855d4-491a-ebff-e0e1-1f6d7674ae41"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>o5PTA3sl+f28l8aBxbmIez9LWPI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>03ojQuVuhy9g5vMP07xIj0+cenoTVU2k+P63GZzFlhb7CrSsQXYIStWtcYAaKd6B9kyGDo4lkM38kc3rY5LAsWTRT8DmEmhjpukTBW3FVS8ole5u8Zlncm0d9y9MOdbxZxUi0PM6FAWuRKyEzvQr6AjEmRwhfRSzqgv4CgD7FPs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>PzLKTjLwCne0dirjrG04F4Lec/MoCmAK+Z08va1uOBIGehkEfTNDl1aoPd52+xTLBIZwywKHrzweqHf55kTJ/RZaniO8WvGyofNBUxCcvw+qbSz9csQrXfB7Re97vdFBPO2eJFnqMEYFqnFhLAwA2T4N3PK7IBaxMOAtqVnhCuU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx90d6f001-6a17-65c2-3329-46c1ff5d3135" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx90d6f001-6a17-65c2-3329-46c1ff5d3135"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0VvnGuLmGyvwc1FIV6PGrXL4P9Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rUXyni+rFe4x7fNo3q4o7IO0uLJdcNFQohtKkJeCbPqmFXf3JqAiQAGosZzsBuN2wWBq9yFlvUtLPHsGQ+DueMasB4Rl37r+zJ5nhKFbiAYaBUttK61jzVaLu7bscgZ4WcN8bN37tPT61PaVCO8GIyX0d4BfLhMZXhXEEiwv+N8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Qf9kFZ/88ha43d8o2Gw4qXgjjtZpbSlCWL/f/5GWH7ulMTRyfgjI9XCcOPgYXgG99GjhkOHTky1Fs6rXic1GPtoUZmllZN7EFqQNHd5EU0cLmEOaG4rSKYAIB7aDHX56qitbThYepVAE6O2/kVayRdR95tni2FSjqu5fbG/GtVs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>