Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx703e6e2d-dbc7-6fcd-80cf-131d7395229c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx703e6e2d-dbc7-6fcd-80cf-131d7395229c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>2YA74gMC88BCbbo6NytgzUb7bS8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oUJu0r2tACseIm09AsAJgkZLPnRXSmWWEDHHzAuqQwGZw501JIq9AfW8ukxpIRNvRf+g9TQ/aGG26MvG9AhAbGa3XVi6qhcuO9mueDdpj/+E0rKMLJT/qKx1PvGj5lxqnt4hI+BISa8UnwET7GaY0n8AmKiE7+2+Qe5sYlWyyGc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx40b1b0f8-a051-d2e0-7529-1d0f6b5a58c6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx40b1b0f8-a051-d2e0-7529-1d0f6b5a58c6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>P/uFxd+uSpoj3+KswbhhB4Qq60Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hfUaLpu2MV0qLtqEM+blV6beWDMBqJE+QWdfarR0GoxR1N8rtEmo9eZPY7DTjlOnBtf7j42Re3R24xpgk0uHjEhAwg4zbQ6iSKDm27+CnZVdsO49DbzLxe1s1hwaqmcHkp6bBre6Oxfh0lMN6rEa0N7tATiRrIRa4IV0Dzy1BG0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2706819e-a355-d95c-4f32-e9b3dcab67a8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2706819e-a355-d95c-4f32-e9b3dcab67a8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cCRUz694rZ0NIecu2LrLH80m7X0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mSmM/9EDhLw8p8A3bT7VxTRvReOsuQXi18kaAJ7hlHqab1xRFURFDGou8P4WaK7lmQFiDTiWlaZyiDNGwt5v2lFE6oSGE04N1JSi0/sv3fjFlNwJIZI9Oyu2W1F13Bq7LS9NhfiidURwUX+FiaF0r6uFLeswqt0HXCAQIyVb1ww=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7d82a355-de52-427a-9bac-0f53bdfd6e38" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7d82a355-de52-427a-9bac-0f53bdfd6e38"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7Cn6HDCQRhlJgEKwt0lRgXjHC9c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iT0Qvak9hvuXCnEvH5QW6JtSPlokBIHpqLkFnqRQjymgPTgEPmu4B4BowBO1a2dAXDeWXLoqx+pSIe1ONlrI+iEcsYQhjZ0WCInVUjjIHzYoU1AkR71L12TvIUx50G3+x4tEbZtdmtgl/iUn/1F8/R1RY609cSm1vVuO0Vu3tSc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>1QjrhXHx1MZrgtuR8ZpcJPeguOXENRpQtQhk2maStbkGF3IckU8X9L2bM73Zu4QgVWQ0FYxZS6//KJNRlqG6qQU/ABQJRe/NdfsA/32iN+eQpkzVUj+rFwPgHIkIAuIk/8iSBpgTP+Ft9Za/IZ1PZyJHH1Y1dJg7jpKxvOnejHo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>viu/8M7mz+fXw2xMJ6TZ8gYjBZeXgxQN8FM8juV9ZoflJuRSVhhnFmiED78En3c0kfhmeWho1uyk6ug/+4++arS3FgIkhx7cUN1Z5VogdAFtXMvEQ1j9tJgfjF2HZQ6npY2C4mXCmetmfGAYUNzBP8e1VQTvkuFsSb16c+4hl5c=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx43f858db-7e54-7ada-339d-551c2f00bd50" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx43f858db-7e54-7ada-339d-551c2f00bd50"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>rEjtFuAsB3T91M918LwVlWYDhLA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>n4ShP6ocYpm762oEXI63wGKoYi7Rxdm/OuhzRtnzwOQXsMstK3lwMRCopZSjG/zhDzWma5A975R26MPeEtkcpSpAL6TqE+jKIw5DUb3L4RtSmnCFRLHhWIb5oB1EzIrNbKZgjr/ap/j9ehj9mY7o/rvZXoVsj1b5L10fUVBkzPU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>1QjrhXHx1MZrgtuR8ZpcJPeguOXENRpQtQhk2maStbkGF3IckU8X9L2bM73Zu4QgVWQ0FYxZS6//KJNRlqG6qQU/ABQJRe/NdfsA/32iN+eQpkzVUj+rFwPgHIkIAuIk/8iSBpgTP+Ft9Za/IZ1PZyJHH1Y1dJg7jpKxvOnejHo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>FntXBeZfoXrTrd0oMTwFAQdq6s49iGE+8rCRRnXJnTKuY+zfzyU0MVagNZjTZHY5UO3WtSvg7nfIIEGJjqmAxkIYgu2zIkCkVWBoNym2i4WzhKlS87ly7hmDnlWPUpC09kx/Omd/T4Jb5EZykGmEwVswdCoCtNQQqj2RlvWxSMcX42qMPOHSYM/f97xZcgg5IVbII7OMDMLj/Rkdg/+G/Av5XA8qZwg9EJb9tRnEq3Zw0J2EcudRrAdH7z5VB9Xo4jmE/5ukngdr4KCpIWdKGQH6Gni0TI7UMY8iUfTyV9B9NZoSm55+q8Z6hNuQm+8h4fXPH1h/5Sfk/bo5inASqK4dsKeJ84SIIC26pnP4cnrf7J40NT9PyFcIxTSwp9+SzJ5n+5YdzWhAXHawKI35/mo1yBpSKHIIhcco+RjlI+ovTDRSXHSAHSZMFdvDURTV/fQRAzGxSfgTcH5yAEUlE+c6E9174BTFvTYbi+VwJutAN3I57WlTHGWwO2ULiTtLKgTnDpqs1SIwy/Sxsh7Pde2Keb/tilzpgYSyDTfJYY51bf/u/oZeKqicv4C2iSXvDITdwuyo/kK6I5tHZkr7csvo+L828hnCmrlOF5fDFpd9HLPorq3gev065xHbBjBsNtSzi8Ucp8TDlgpqEUlAao3ySqhxkxKE3iIUo28FJAJCUzonoXOU/v4//FqDFieAXR33nLA5BcMsB/JbIUCS6eukLIzL/zrDmrUC9w6f+ddIq5bB4pNjpRPEtH4UZ/VZuGhyHCY4wpZ3F98PkG666XwewSeTtW7a5Dui9gvL1sTNU7btRSl1PHOWwy99fgv5WjrSXda6O+V4WBI+TZmgTs4bavztAZqVITUfPijQuW3Eqw5CyO3OwTh6miMu7q3ihC4abDCIbfaJ2K3kgYnaP/81Csq8p64mk+rvJTgxq8ow67Oj4nKOisi8aWidSzulDA2x3F5jmL/PI9jnTYdUJFDVaGNAtx21J9NobN+MsnezKmwyfqSMooqZUhOz3ALBGVixHeVjar4ZeKKUXymDWHJE+NAUf4oroWeP4TlQrihFfoedoYEkDwhaA+cTtHuXR7mxnWDBMtvHKqWkmNTMIzOyLCu/pv1dn0RGBwcyn15Aeq5zFwDPzLklLQM20YkYtj5/5HuUjyLKlptw6ql4DcrVOU5kBSqjgukn9YJks07UDZhTRbVHIM+etKzLS/AUTBI/OZYZLE3M+ecS2XqksDZi6ZNsMFPwIBupGnL1shx6/GbvI1sCqJFevkm8Ec3AyTe71QzLAEcPp7VQfRycSvI1zK3X36ncLfe3srhh/UJ9LbpDja+nnJGrWzCYjy1wCN7IOyjIaq8sxbL6+rml2t+k2pwzBNQsWDLv8IgAqJ59ZlXmvjms/6A9VD0NZpLfuIZEDZGKv6gRcV6U/Z+lWXmLy/v727ZK4zqyoFDDDwdf2xQuyvDx+ZJdfIA8i21/QUaM8hvC+HWnYA7rqRSjUynmvaP7oitgdpMpgcFlkMVvL4FsNDIv6AAMaw+MQHw3wYu8p6BWt8zc8vV2TdUYbxXKnQSgzmTwJ6xUsh+w0LD0JSxE1ZafgSdxq3sbY47Uhhxbr/4TuaFynwL1puUoJMkV6mNpJN1uBAevil7sPV6P8nYD5EkvOdEP/k2rNZgrQ/LKoFGT43ski/SuH7LUHCsWJmqiaXaoArQcLW34K2vtKV7RCw0jn/5QbfLZ+6deJOSTDPpE3aOXJPvrOo68+pGKbqIdORtt8dTMTtJ2ci+3mHc7r13zkAQqEXX0qA8kPkUCk2aGJq/MYr56i/SUyTFiPL/JsWW1YL50iAaqImEFdbSW5whzYaioiCRY/c2DdlHSslmqStW/DxnaGukHnd9z9tQt75N8znP05i6txtRLX2m2k7fhrCZqXWWA6K/QbXfudlT60UV7fubsAXGjLNuto4aTnHX4eflw4gkhNauLuJS/OTlV08wPY5ZcgphZTKleuxedfWRGwldDdmCcbLldSUVvApV3SjGnQPQl6DSXwm+BegmIQUR7p9IJC1FsX9v0t+3reTbPzWYaxmKYSLZ2D0mKII4xZF46s32PXJfOZxkyVmp2uCG6cpdD1scxG/zkwLGZPc1z8ZJCT9swjlj5dkXyrzb7+JUrZvzZepj3YXONDFR5q3pmapMjDnmQOvA0X0ZeF+WPTIKKTEtDhv/JPjE+AH5JpeCnVkbWMWNiFzOPCRbXWB/2pExwVQIdjOkXD6k/+6wrF6AjYwDh4igwXGgU5GHf+S6HYA463U8N2ZqyfWZ+3nbS7YQsLAL30f7oNPzVfgKOdlYOl6T6jG/oBkFZK5NJNS9m4eNKu65esNageTkJMxwg4LQm9fsVNBpNRMfSHgzJ5nz4e1slHuXYqQA0Pi/KAUJ6aWftC+VrKH8SWZ73bBRT1xdZ2rGP9ei4guzxT9SUlhe0HqbS5BHFYk1/avG0sOnTZSA2skRx5lX6deh6Kuigwr7pDk2NOOKCgqejbUzqiXpwUfrxt9/qkGwtomou9h9TXUJTK4+6hYA+6TP3dDopolLKEaf7uuo2u4dDzlm5sesG3DG/ZXfS823jM+vu5B85zXA6NSwnbzx20qfuPUX0uJcwLKRPM6lEuNdYw850Zr+e0YnPM1hUGQG7a0dGGa65w2SHXX2CNdHvOqnZ0JucnK55yFg1cwoWL0aPtqdd82SoHC4OYqGzBMo9kCyUsI69hq8a+MZ6zbSrvoKIs2tkbqT9LPljKdLIW9XK5louIuNVRkR4HVp2CNhR/wMWUJzJHNylZF8V0d/MiSnVZ/cSrTYOhtbeHSeF294FzlFvcGvnax2WbM9Jeai/xlqG6a18UyapdGYmxdTwu6dgN7024PM4soh6CF6dn53yxKL9/8/M/hs2E4ou8jqOuBNxUuYM3x83ffU=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx64b2d9f1-e262-27f5-65aa-3e2ede40430d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx64b2d9f1-e262-27f5-65aa-3e2ede40430d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>iZY0YnLXdm3HYeeSdN2G63lxoug=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ok38uCNf3jaENRdkNlSv2YLM6xr6vLxbCocRQUFywjBhgxQQMhfiqs/ntXKltp7zZSWCsSy+fsSqVZG+dSNAc1LaGGUbpFiC8kCWlfZxvoS+3Uwi7Tn1t3Zf3rXU2Nq+Qa2aKIFezXlaJLWLy3sdM/vu6XJBAE7ubsrHR1YKskE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>viu/8M7mz+fXw2xMJ6TZ8gYjBZeXgxQN8FM8juV9ZoflJuRSVhhnFmiED78En3c0kfhmeWho1uyk6ug/+4++arS3FgIkhx7cUN1Z5VogdAFtXMvEQ1j9tJgfjF2HZQ6npY2C4mXCmetmfGAYUNzBP8e1VQTvkuFsSb16c+4hl5c=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>