Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4859a893-409d-ba5f-f378-f02b1f2f88b4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4859a893-409d-ba5f-f378-f02b1f2f88b4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Gx+7GUf450SmW5/iTFrqI8tT9nk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>O4IgfaedXcvCecPSM7V0yZwjfPoHJi/yvMnT8JTSoE5VqWmpdNemFie0YZEShtra6tYfyBxaHW3PBSqRnCBv+6UJlRaTddr7b9Yk/OfgvmqxD45FWNs4tDNY2+FcWn3pvqQ/PisOS4BpF23qKu4qjJcKwCEw8ay1PKQYce3zTSg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2f849be9-279b-7a32-7a25-d0ec7c5f2532" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2f849be9-279b-7a32-7a25-d0ec7c5f2532"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cNWPdVEQDX9/6KA2peyaWaItRq8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>LbCmv2D5XOv5kjN2dwQFLK0EIX/YiwPTR1LvLgvUitR0c9uh0s3ec7VPG0WatRZzo/apvqLxOAbzHJ4YfbCnQMYBjoHceAdHT+vabegXvM6iT0aYcWlz6LLEqhpgkomrLdoSTE85BFCk9wDO/42XKi450ERLexLiSw8tYyNMLRI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx647e0e78-6a94-5d7c-c0ed-74a24a3c113a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx647e0e78-6a94-5d7c-c0ed-74a24a3c113a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>77L3pcPpKLOfKLrCerYtM8FCENg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>w493VmUPC561F4/q5g0w9Wx9j9mqYi++vFO4VmDFNCvuwIm9SydcL23AA8A8C1eHvX+uylwDHkmkT293Rrq+PiYYsRwfcBEGI/nkjLYs+CqPg3WoxRE2jylkLonwsGal7PmtQuHOfrZhNXbQExOQdjbUTeSZs2XOVKRfyt5/Nuk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9e10e2ce-e8ec-fe79-8a94-f0c99a2ed868" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9e10e2ce-e8ec-fe79-8a94-f0c99a2ed868"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cX6NGXRkLlQ8xMW2jHHTX+qB1aQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>OqFg8u70QitYOO1J3DHEvnumJLfDVZwNusWrYPgyEkVXoNOBDPYKVCpO/0X+2ZoAoEPBeOJqa8I43peByHS4CAdoG3uy796Ja5dVu+vwNyoDwYiBlEnhgCCURNdk5JkIdDJu+qTtScHIOiqh1KFN4sMmB6T80jGSthnCEAoQAD0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>SmvcGs5RodDSjQXG9D05ZjNdLoMbLKtGs0sWTSKnFAmM0A2QOzDrwWUQNMctUsMtVmafrnVfI7gFUIW2BNeYaC7oRYbEh7TKYL3ZjPiRvWGu+v6FtCoQ0NiDHgkiD8r5JpdKkPjt+kX+qul+x2sciaK2alrWdmJdQXLD/ldAEnQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HwXlSREMXeYa/3rocGwL5KxbYKEq3FkLAXbvSurFKEbU1NZqGC99nCJxR/vsXTj/silUgc2AuWu34imbL4mA+oserYwBeoZ6xzdT822OVcl62oeoiZ6ovPYBdeBwqYMv2xvmsUAKq+/kgmqoHD+uOw/CTbSfHiZ2tZqJYDzQNV0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx46311c09-122e-a94a-aab1-6053c43ea93d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx46311c09-122e-a94a-aab1-6053c43ea93d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jvHachAVFqGcVwszgZOpn7jH5Z8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zTVWoa5+sbTf2mRSJsvY5Au+D+V7JcNaWlreWgTAKkF7Cit6ruhPaqbqNJ0iagv+apTTfteJs/lRYj8gSgTpq9+Y5BE/1tu4pT/Oa37Om/zAZWyPOb22i2A3jmu5VwTnPHdQpLnzWJmMKUQL0wuzkRDD0ZsEhOQcql3BLTyVYQI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>SmvcGs5RodDSjQXG9D05ZjNdLoMbLKtGs0sWTSKnFAmM0A2QOzDrwWUQNMctUsMtVmafrnVfI7gFUIW2BNeYaC7oRYbEh7TKYL3ZjPiRvWGu+v6FtCoQ0NiDHgkiD8r5JpdKkPjt+kX+qul+x2sciaK2alrWdmJdQXLD/ldAEnQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxff6b2ee7-2f28-8550-b5dd-ac13de34d4a3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxff6b2ee7-2f28-8550-b5dd-ac13de34d4a3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QFAiIf2Ga5HzOAVjO6g1828yAwI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AuIOgGEMzfW8/SlZ0sTj0FYXJonWw3V16GIACynPI2JvoZ6g6FfSg1WJm400JBhqrdwPSY/aPS1hK1TOL1ayQTeNK4Xo9kc7ffq5ny4f4YvozoLhfQHqxZYuY2QCGFu02vIGP/tECWQOCuLoWhIjXqvgr6I7sxzzyWYCZq0hCFw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HwXlSREMXeYa/3rocGwL5KxbYKEq3FkLAXbvSurFKEbU1NZqGC99nCJxR/vsXTj/silUgc2AuWu34imbL4mA+oserYwBeoZ6xzdT822OVcl62oeoiZ6ovPYBdeBwqYMv2xvmsUAKq+/kgmqoHD+uOw/CTbSfHiZ2tZqJYDzQNV0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>