Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd6ecf736-2472-1fb8-5310-45771750e128" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd6ecf736-2472-1fb8-5310-45771750e128"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>A46fZ+NCQU85BzHXApC6CEGSq3k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>knLWkNT6hUOd/lapjk3rVFXMbZsIE3J+pHvyMLCZlaVlg032TibpoajA++B1pxG8xfzILyJLlqluX9s0xfpAIYTf6gbT7iIIJqyVoJQUn+jwEH3Htdj72DDpxk8rMa66pXkaX/BP22UNar+J++fa5BoSU6PnQ06d0UGURf/0QwI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxdf2cddcc-5118-3188-6e91-0150bcf00d06" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdf2cddcc-5118-3188-6e91-0150bcf00d06"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yyPkkQGXAWlwe82+5xzCcS2FckE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>C+ImLeWSrNU7IAJyo8ik4xDCdKCikLoiv96KH3h+XcktEXx9lpUsIHR8R1pWX+lmooOhalLrS+pUfSFCkuv9PeN+pbFXszf1YKbbXWxJaNohDQnTVkz2OVp7jCKqFyvwdNTAdvsA7SsJ/NAzkXVyQE59HT103dLHt6D92iZ686E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2f463b8d-e8bc-bfe8-ecc3-39309b8e0e58" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2f463b8d-e8bc-bfe8-ecc3-39309b8e0e58"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vgjZPJuxYPKgcd8gt7N/QCA8Mq4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VoWk7kN57woXWiGT4ny2MsIKhP6en6A5tgKNtsiBR4BS68Qh/RXjCrnkbl6b2/Out+RIReX52Lg9b3R3QurkwolnlJTxhpd/Lx9CcWgAAuWRTexjxJJ75omjuIVDOFELnlkAzxZB2IkaLxGfF+HZLLre3Xt98FFsL5oY35ueBd4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx11f9e366-8d2d-fbcf-8bf2-7adee44232ad" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx11f9e366-8d2d-fbcf-8bf2-7adee44232ad"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>gnrXSwcsdOx3gHown/9qzf81D0A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MhXfajFJCX6xBgnHv3tBgKZJfwrzVYamoCu10iVDAmal8VLm9gngAy/n14I/MdJXLpxleb1MNVRrQlF2owFijkTyCQXDKNRsKef4TRg+AmGgBt+oOZjVKqxf7bsNjIij6PFVc1hAYDn1VlpCDuCdenRNfRstb4flmH55Ww0Jg94=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jeDzjnJx/Cl9JvN82UMEhvjwq/h0W5jh5Tw+3PaSVIOrd4oStk31dIa/zWsyxRb9FMPxq5/pnumgwhtg1M2oAsi8wKLDk9J/zJLIl8zwHwL0SsG3NlyP2URmMBgffF55pehmrFpsLAWv7Ppde9W8npMHI51Xm8Kd0dYDU4Gs+KQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>rB+NrGRgurQ9Kh0QQvAyZL2/Cn6WfvI3R/1gs0PFHgLubes2nQ15Qdw6bepKTMO+axjI8aX/OXooUMZCrO33ZHNhV3oW5qgPMfHSHa7lAfpl8s8LlNOcfjvNQRlno9yMsXj3wJZaY0O3bH0ILvWl9tWWhitGBfJFOraSOeEHESU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2fffb892-f41e-c48d-6aba-4dc1f8b8a1c1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2fffb892-f41e-c48d-6aba-4dc1f8b8a1c1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tDKmL+0FzWZOMnKy4abou1b5UYY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lew9j0IyEtnTZ27kG5i3TCHF29nGiV7nEd9OjUuoemwMAFoLlO+HTDWLPzudcBK+oGbBcuXmbBGHXGzZmDO2LJCVttlswgWi1Qxpt4yyDoywpbPQAvUCq4Aru7IvsDlFYEnaoIGalic3ofuWaVUMscQuJ1HqJ42AvQ/pGbwXuWA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jeDzjnJx/Cl9JvN82UMEhvjwq/h0W5jh5Tw+3PaSVIOrd4oStk31dIa/zWsyxRb9FMPxq5/pnumgwhtg1M2oAsi8wKLDk9J/zJLIl8zwHwL0SsG3NlyP2URmMBgffF55pehmrFpsLAWv7Ppde9W8npMHI51Xm8Kd0dYDU4Gs+KQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc8fb07a7-6763-aaa5-3ede-83bdd49d622e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc8fb07a7-6763-aaa5-3ede-83bdd49d622e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>MfCT3OSINc2NN7X+/1VIA2DCaB8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>h/mLMMgx4M1KAu07LagqEZhkA1eMKg7XHAIP3FWoiCbiVEW+9hQwdpBg/oHJqAU+K6NayqDOQ1Mqx26vDNIfjR0uoY90JRuOYiHw1j4asORHUDX4pDdRZNkRdwz0qBudgHm/6x3p4fdDuSt5QxXcseMfmdvvViP9xYQgwyWAk/M=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>rB+NrGRgurQ9Kh0QQvAyZL2/Cn6WfvI3R/1gs0PFHgLubes2nQ15Qdw6bepKTMO+axjI8aX/OXooUMZCrO33ZHNhV3oW5qgPMfHSHa7lAfpl8s8LlNOcfjvNQRlno9yMsXj3wJZaY0O3bH0ILvWl9tWWhitGBfJFOraSOeEHESU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>7LDtUlJcgg7seGFxIBRa1EZmnEk8Wk/WzhZ5PpmT9YpEr9OKYOXt+FC6iW+oE0GqV4L1/A0EcDnQfIPd7k78VELHvBdJ/pZIlwEqfHHqZwF+x4oBNnehP7h7JfzoVIHu292W9pN1xbvHvLH1ZwybJgOJR8NmDV5aHs9T1PHvpEK/2y6K4V76ds90myl6dTXKbiNcxHuvKh1muF4IbNp/qsOcgsx7d5aqL6CODxA9RVif+QyLdXzETEO5B5kCFrSsWQfmOhov95BtNrO8Nbfk76Hf3DfOv6c8f1g5U7YnIum/sct75OLZ0yz6QPRznbRC3l89FCmczRFH/51J20l88DPYqzT8VuR3ByR2SLa18UkFH5UfXXL1tmQmCCt+4ZimJ4IeQ/zndSrgiAgjlODMi73MJYcwRZmT0h6p5GBsfXXc7k8dnh/iRpiwesxtR1/uw4LCavCA0VeX99+l/LX5ux3meOftWrOPQYyFMOyMlcLZLaA+U2YFT7eQqDRaPjjulbeOfPCapOOerh/WSAbRAaxDEuwQujzzeKbhBCeNimcgeJpywf+uO6zTzeEaWNrEo9m04Tv2/mDy1BXKf77mn7mpmXwICp09YPp6MNeGHIS9A0BAciG+r0gqITySfII29zkQ7daZJVAgQ35GP8l7VUCk5eK8D9FKoelEduX1Vo0bK7JF8HovDH5GgsjDDVEWCmaRtap6gG/KyvYBu4QePfeyB0szOsmydXcoTl7spG8jG16sRpD2gBe1nZC0hULcz03YQEGNPM4Uca7oAAs3/6ROXxrePDQeczqrJLUcmr+4IAuWZuJSu46gpXgITPZRbei3VOhI3NBifIZAVXsNn7J9ZxNnJeA+D+BM8Py3twEshNUn4ElQJ33ydO+UIyZUyejPlKX0cI1DWgUw8caUwfkX7ANojNZbgLGMMHvkMUHOYNoM0Q/0xOmY5Zf+tk6JGrbNjnwKiw40GZTQtGJxSY3Ry1HHB9HEVSc3mIGusJgy9emGWSnmOUWN43NxmdhEYE0AEDg+pFZX7pfi2WE3BbGMClSEjE4oI1uhTTQq5ylDfOTAYsolKTCrBeNHcJq8OjNUOYdtg9z0edfo0guwyk4zlaXq+j2H+xYg6yD+tnEVM4EJjWBDvyxmFrt8/ej1mFaFWH7ymvIfF14LharFg2HLJ/6C25frBq6irWh1rGTgTL0O8i/skmsWu/MQud8Nd84aqV9nv6+/az6Pj0zGRi4O7/RxRgTHv0swpeEo5QpBivJ0cPcZ8wZ9rbMmiSf9anKTjKbuyNpYLOEbIg3NkWpD9Q4C6TCa9JqTEjmVxRneJkVAnbJFFuY4S6bcUtnjE82IZiadBzElVoDKAunxHXhs2CmEbz3NLhMjHTs0jaip17To2oZcEq4Ao27eybq9PPcPku4KpiVL6Fe+ewLgXeW5+vbfUOUltvMXzMZZTBiXnD4OFP2f4kmzLd7pLbms25jpNhjcX8iaMkBp4gjno+h1SXyq2bqALa4OrVIhC3u1Nw2Xrk4ocXp2Cx4f5GFqiXQxePK8KFTtmf6YPWZuTaTJTNCXEyyUtbWZFwm98hAFbCnfKbDe1wX6/WpuLMUzCiWRo3C0+7CnGi/iUWH0DHsiD6WD48HuaCX2fPBzYxcMuMID5kzte2YrSd/AqjWaJFOLIeXtiZGwufcRLAMRVEuH0JbDT/rRBxk4YFjpDa4b6WfZoDDPmyw/5ezl8qGyh56UnLiINYCbeyzEOklJ6yIyMul+As/c2Jb31zaoc/m7AxN1PM/iSRj0qvJtKSL5+2h4zcRUu2LVuthruj9vdLjG3HyaqAG8/G+6bcwM8NzgN2sqAibLL9cfuoCeLyNY5c439Dhc6A8ZnlCGwGB3n/8I0Hqq1RyJtrvy2ZuuThoM8tltkMjBteCtZ0rDIc4BlOIZcIxYlo70ZigjrcWLdQCdrfzdnlEZxvSy6j5+5TaHJBTrE4dLmiSM2KYXoncFtCTRvlvH7d1Iud3PAgVmrZNQhusPmzRFaTojxKHAPejNMa4UKzb1rCpurFgLCSPDU89JEjRltXWDzoauELmxU+GmqksTGUJW1qhW8d+QJVyBk0i6t1NaZRRJ/JlogXIxwGUivwpuHXSaZ0QsDyeiaV8gSjuhp6341/NaSFOxEHb8iIJ5pZUcUzZ29QkL3Tv3WueNT50GvEUZhB2a1pCqKmOSTDtVwWikNxLOMNC5FBR0YGzdPc9+aUGd6wrDCoGYDrvGtdO+lFP5/5/L4VQ+VLQQaktDe7dhbB7/AvGJBeIemcU7tJwbdgLXlvvk/3XYkLJ62zHX7JFO6Y8xYxSIpLllOujLhB/qVyJhE8HBcW1kSFglDReg5gfRgf5flvlamPF+7PWHXBBFDmPbwwq42SIIfXO2os6zwaxBy8NecBHeZ8naTLppAj1B3w1qV4NXLloBA4LLv+YK2uhBs6FUImuYxlzskiyvg1gDjl/82CIFCdpgM/X6H39FLIDtD7sMjKLRzB26vhPoZBB0GygxpiC5/Ne9vHyjXJ/zZf5r714nIlyXK3Iyj4GfuuterfU9dj2/KMVLOoa5Xf4We7gh/aUvov8tyo9hxmWarWCDBecB+IVStWXES1tjcvfEQZGbJa+COdNbkjD+3aGXid4S+Zz18hDK+vvjtMolu+R/tsfADh/VEm3fwKV9cbEyORftYel9sr/ekh46qiLNeJnEyqQZYbCmCGY7KVYrWjjLbwPZ6/Cr13Vy7IpG6A9Kc23ghLvTus2/kaqfMHs68CLAKTwA7+7nz9A/rpd8tnRUcHIX22XGF+qA2B3IdLT1NGmDKKpoHSgC1Pgd3VJbi+Un+SP9jHXj46acLReiRBZwXMA5bPTOvUzwQHlN71Sj3kqS7CPKNqNEOhAylFkzziL8W76UEg31mvr4DqifUxp/B7lGYjUw9bscfTb1zkQZK/Jdf7zCU4kJqPvDpQL7Pvj6Ei0VTTuSoT/FHb6B1wtHsZl92tmaX0LYb105r2CI5iNcwarg6plSp0rzKUT3f/89v3UYZqf4YLT0o5huJJGQj+JoXwSYx3zP+q+vkpCs/TkNQu4UWvcQLAoPipC3AU4S63U1Hd4hVBNAu1sjJyfiBkkXhbiQGHcZOQkL75DPFARgfVero59Y2t7pSEhKhe4XIkWfnFfrW7wTfDoU+1ffWtoe8HvcUNkib4COuDC/1YA5n0kijNc13YhQG+PbsgfS6jYgiFG7ToILzE351KNbXl3xtiEkPRyP9hASK288i6YlMgxCzElWkd+Tr0tTpW8MgooIyOgS7zDCjheAvuRGjxVBLBG3iLhz+kQLDRo/9uCeX77R9Xz78bH6/66G0x3K9kx7+Till1Cxst3dKrg2BQK1++PK9vyp4VBGRNqtZD3A2e7gi8+XdNL/J1XqJlK2ltZ5CcxtYF8JEkZe7x+qGTI+IlUpv1Tw+9+ig1IZjQZVUimfVwBrLzxYEA5oDc7pmKlekh9XU1bM9tNsFXsThVIqBHZ/xy8PZOFtPetPCmvgceVIqx8vB1XnPs6uMJ0Nr0wpop3QEJQT4j7xyAAxhV7Gj8gx7AKqrVphzmgZQJ7CvYDEEQX6rMgPieaOlAQ95rGi84BzqrgKgqmynx6orypW3Qmm4DGqa+NQUVfwVSwCJFGSe4bAZVrlsgPL/JFs9/vF0GaxIfX5nJXJjaBjSEqz4MSOgmgEPMz4c20pxtVgBgjiNqx5nrkpSOKyDnnq7+m0K4+RJvw7OWrpZb6Ee9fTmZk/zttaURFFFrZkILGm4NUiQn2Nhae36MS61Yi4KEAFLbAq4kzRvWmezvYf0RpirWFA3pcOmuxNIGxlm4aOoCdroS/hOG8QIQKQIqy57xO+39+t/vGbfWkSTiBE4sBksAtX/ymRuNRioQymuFLXHeOnOPj7PHo5/WsVKaIyeR9/Z7jl67mYke3UfT3dW6PKDBau8MbmnzINx5/E8Wqq8JYH9c2RdPNeGuCfbn7HzWu6nTnEBbJGgQSOKLjt6qhhESDwRBiq+EWawYfq/5yJlsimJ+UZNXryZl4LbhAthDhSvzX8/+Mz2Rf7gJV9nLC11/BkZ0gUsMDza4sHwl2QSS/Xf3R96TushbWOnWNrEYu2CXZ7szQDMktZ3lp5+2cDAM/so2sQ/hVTCdiJxSo4SiOwmCH9GigAaGkduX4E1rqhK4UKTGTDF8gwkNWhnERSCYxOhEaTc0GH+pt2kaoRWjDihiw1Lzi8OLcs4A7OwM0Lp4WBPDDjmvk74or2/dm4SK4iRGyyBO/8K4X3pLEM+dypfDn0dk1zhqFNUbs+cx1E7Go66Eb4FBk36cs3o3OFYiomt1AwYB9KVzUUliJth13EVOLHIx8p1iB5Oysh0YpNMG5HFfXrww0rKk+9BH1FYAouRhLgEniJ7Fh7ANtuCwbAHwvEDNMFjfNGVGKX0wNk2Ixp3qpZLcuH0uN7ZiMezUlvJaNAwLJxGd3uBD7Oj3ont6+ecXCdwfIiVtU8lv5s13nNsif/cpArs3wqFCqJv/7bxmzDLBCMo3PyYuqg3oxRDX+yvTZQC5ETNVB9WBMk9kynamlxWvb/Sk0c6YmcgTNVceLLpPvNP1hiq1FWLRqzfVZwYhFvfeIpoo76ZSzsuwpnlYpWtBpBVlsZ5xXHJJqSCjm95O+nqDoTaMJ1m879o9/j6x3/bCKSczhm9Fqz/GhKGtOTEo4WR3WZ1tJqgCCYkKjiZki/bU0USHRJK7b66IMt7fF4gz8o1u2vMU1rwMnM77mfyltzerBEPnJp0wRdxD/UNrqUDjV3mMmT3kSwjgDGhDDqgUlMa7ctAr65TI6M5LKylGVK3owSj/4NO7cumWIprpqY4vk2pexYfSXlNANTrkVFrIS/KMAI/22341PBpR3tv0DgmFTflpsbn5eo7uUFAhRqs5E9+lKzZhbqi30fYAZP/ZXk+2HCv8NSg2f2w0it29JFIL9qEoXA7yHyxdhjn463y8o+APnpHHiCiEK/L2RJpDLAxwLJeuiUWCMi0h7lQ1Sm8y5K5D1Zr9vn3dkAlVD6GKsJ5ydZGrTgrAD9tIwMdZ3U7rc0ce/ShYKVvOQeW4Gk2ftPotOkmuuLU4Z+HLtseXcE5hToon9+SHfK8m9z+cWfPUyhbtxdZJn75OgWn0JySYzlgxnr6mJgZtoJomaatuU1P+PzHw+KfWI0HWw47XGK17pOU5AIKnAndYTcgVqKjzIw72DfRIFeSnufsH9Qfx9YPUr2VKfCC2efRKJO7/K6l/gY+oZxu2AwiPjfBOwEabh+bSbK/GgM2VqUFUQ4zoXYEvSsUw0jWHU2ZjmAH6k0zmSOIeGSnR07BOBdWcqoEy/FCBeEDhj0IxCp9Hp3c+hQFi1rOHlGjfeCUovGH5p/S88oiaVbKPY4xRacOKvhB5zofuhiPshe+31i7ER8l7UU2QU5nkgrEv0CtJLqCsqXrweIxj4H16tdjiwVhUDWG0BWF2I=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>