Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdb6019d6-174d-ac86-cece-5f843466c3bd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdb6019d6-174d-ac86-cece-5f843466c3bd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>eyvFdlGNlWfgOZEiJPwdtzK0xts=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VGy1Ncby3wtbn/Lgvxs7niWcu0Qu4BnD3cnthBqwwnTfTz4bfUJzh0y0STapIHbCGMM6bxygVuffwVSDyp1cetwc+57DlCpRUGnIgJlzVqFAHpWqaZzWvZQcJ7OhbpXpv+h9Z/m9MqRx/aF09nHi9LUHyVOGpMbOwk96vMZWOV4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd5d417eb-917e-3796-9158-f525d24bfbee" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd5d417eb-917e-3796-9158-f525d24bfbee"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>NNqscG+eCQKg8JQxQzbYmxfqLYA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KU3rXjXaeG2CZ63M0IpbL2n3+JRWq6ywUZmA1DwD/UvRSNZhtr8O0fkh/mrSnO9GUygTDs9WaDts5DYxcF7i+MHraAP/h11jKaKbY0vv+jC+j33lEJPagk8A8kulMkT5BImfTa++HF9DJH+9LhNKq3svqF1pOMsBJ82WKx0tyl8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9bfd78cb-b910-84f0-2d69-a655fe918ae8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9bfd78cb-b910-84f0-2d69-a655fe918ae8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5WViMSl+fSmXRZ5tvbpfEiuKK5M=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zYiCWm3GY1OsdTbonCH7JBWg4umXRDYaADwLBEQloPJWlAwZn/R9ZrCFJvpikinu11LMtUazNRTekvnw2BBXnOR72NGVhNuVqd5pObIv6hWGWHy/qpLXJPZdqfNdRWJWC7V4hRqYSIfC5h7nkagcd9BXBfOGKGfPZBNJ+outIkA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx5e68e7e7-8646-14fd-c3e1-8c32b085e0b0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5e68e7e7-8646-14fd-c3e1-8c32b085e0b0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>VyDnLVSrEI0cBB5Y6ZlUACed+Ww=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>toEHGCV19Rq0hDsyWzTF/oYiNq7BeyCB4ocoUX5u7rHyTwEdOOzML4fscyYx0q5LrTnvCp7ML0vxuQMaCiVc25vVoxVYtGhQjqp/HF7U/9GIyPUwqjWo7bBFczD6NyysXIutjEukZnbfB2gayBhHUxp4v46rRccU3AZc4pJOsN8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>o0LPD1HboB2dtM7KXQrfpm/khawXusiS1TzvcRLGwy/idUP0xrajcc75xHAPuZAq7E8dMDc+sZtU4Tgo3XuPpUq3J7MDIy76bw/fvjaNPfNsNHRCxzvT7gMn9QDL1DsCtHEVWSgl7IGC2FavoB+hHBwm+6zSb6toXaS9EM0ScuE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>LDHomZ9ZM6D7QIKCVmzHR+Yb6TjQkbVZS8eH1PmMCP7OaY6qmzDfh8Vn+U3xJiyrrRfHLSTaKQh9fdD5m+KWsjtElgKZgL03TAC9zcSunUl5cBlGpVknh3FsbjD1TBKpVSyp1T0cTsOuAYMxOhvELBgR8qqtH3ZQBPIe9Fju8rc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0872c383-1a11-13df-ad7a-583af924ad3a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0872c383-1a11-13df-ad7a-583af924ad3a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>uwERgWGUmufnrd5q3WZDJSK7SBw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IU8j7ZM7coRFFXgAxEK1sKIktT7pw8j2J31VRlbpNS6TJ8Wj1XPdAad1Gjg/mil56p7xIAZHQoNTeCNM5U8cwnI9H44S/MvJYn8vlRQNUUWCoNcEZYvO09tlwyMtwlUQglUocuumWq9C7HUuTQO7qzz+FKhzGyDftzdbH8GlD4Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>o0LPD1HboB2dtM7KXQrfpm/khawXusiS1TzvcRLGwy/idUP0xrajcc75xHAPuZAq7E8dMDc+sZtU4Tgo3XuPpUq3J7MDIy76bw/fvjaNPfNsNHRCxzvT7gMn9QDL1DsCtHEVWSgl7IGC2FavoB+hHBwm+6zSb6toXaS9EM0ScuE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>KUDSLND4QG3SVeJCFymvSwcKKFYPhx90d28GphMzDj6n7Isv3wyC2sdpURCjcCyRfZYqgo87e7e8oWFcJmhOKxXvukZ754N3lyhBIFM7TZE7RxXXVbEH7yz2L+cCOKU5DHxlFvZRn310WD/x9CS7YpvLhrpgYmyulw6WCDvb/QAdqtm+s4b+Tcmk/RIqkhjUdM1K8KFj6Emeytkmwrz9zokJ9lxE5e857C24XFzdEpu1KUHimcmGydQ6s/8hKi/Uy0e/oHEodcfKHP8fmfr9W/tt8WD8jBYdXxwQUr0pP51exSS3SRWIZ4TuYOHTt2qpDEh3Y1uDY5cpwLD7A+ITWcX7tUG8bPK73YEtXswAYav7tn4Fkq6qeVxhAawivwomMsxQa8kuXzfBU81emJnZV6ZvhHmOrMX5pnIStNFd5c715aFQjtbFdSdT7B9nEsddR3Etiwa5sVa0PvorRJeTn48Hjud5IxoF4eN8ZiJVlV5iEB48yuFPojCfQrItVxXBnBwOjcREr/19iWOubvye2m5vVPWeHcNYPcKQ+uQACmaS33ST7+iRj97Qmut6wBnuXGRaxdrfez2fjM9hjox8NJKVZHvwFqRpr2NGmXeeTIUQ5yjNscSXpOz4NBnodhs1vvgXndJTyGt6NPE3zQNoaBFkk02y60h/Eg4e6fjz5MxinbK++4zw3XpdP1F8SfKbOM1V4/mQhgPu4RoP3Qiw+3K7clScKdRKRp3P1T/p+TvyDrESLo3sUkedOnboAAj5kcq04grkiwNb9ZRb20BOYFpvl0/sairSULsA6YHEfPTNn3XUJJCj7aRxgYG49IH12f3U8O/FHWp3jlEWIv1oW2ZcK+EyV5je5NF75SSBvGVLL2BmvCovLyLljpNoojYYd5JSTtEvta46ZDBkvnl3vy7reg/zJ5UJKv+1nxLDflTu+03Fn0OgvTyre2eomArfb8+bfzuSGzfV5By+vkt5/l9SHGTDoNNIf7B8IXp/BDcK6fjIoIZMTUoELe02BYuIQ2tbhRLutxKTqekkZYF30dEMOSeJRtG+gXnRSuYQkBowzb17MsEA74tEQdOqyQhCzWy/qB/+5lO2ayjT+JXmrToP8O3KAwz/WGkbZQFWjsSoyg3yoST3tnngUjmma8iqJlmRVEf6jSxLY4Op/MuwRMMYP0EjRbd6egk5a+VAsdI4GQGqjdO627aVOaWQQxmfry6zInK81mNzINSk7btYkGjdhtZj4a0eeXDC48PJuglsLreQxnmOn7GQW95tsrIG3s8hyMpmRopQdtZcaJfhDkgcm6iC7ghaIv3dYNa8zRWCMwprgy7eqbcGOQZV515058op5k43ABFXsTTZDOMlOP6eSr8iEgx16ThGxkBgOqlWg3Ltg+OqnwNDdkkZHCyTyNcgCxuBobqda4IupQuD9qr3+UpvCw3iOG9gGF64TE4/BcMwspGof40s8fUH2h1UK1Hmuq0nf0M9Jlj04xAR32HrGB+rA9a0CHu+yokLXu3BzEhQomKzO3tlHXPf0Uk9J93zNf2fcR4W76QfoixtPG0xl1w8cBdAG492T/k5a696bMnIccLTx2HsPzyQgz7+BH/fspm9eytHVOaHGitTZLuz2Bd9fpiy5BCnDfmbvJEBOPrKwCsXf/r9iK2sLK82RxWhWHMM999hwqMKPnsb1WI3eoxT/AQmq1gZv3nYQUJ/CaxeAWoGOjv2UFrt/ZCVnMNJ5N7E+Kr+cyA4UJPAjLPZWtofhfJNiHwuczwee/I76Kp0wk01byp9bRpP8KVWHhBRH+KT2FKjHD74AFYrJHDSsCoDcy/AFi7A7rnJ6MOtzJplOO6VonnN/scyUw82+GsDivDOJw+BLpG0YdepUdieUBu1yxu3dzWXh3pdZzTX7LqSJ51MW0U0VFjv8k5l0jSRCw99J+BOVvEiZYmmDEQ1Qg5TuBFRPNnvM0aw6TAW4D7mTZJ7xJkKJ6bIAfY5C38nFsB+XC+fm/x1dhEnRv251dA2fPUJQbripmv/N/wZ9/pBdDWNKgeZHYY3qBnqwURsR5+lLxjxCTRNWHwIlghm/vHAwr7KZijoPgN4GXxQDYySx/2YSghCqthyZoWCn4ytd2LISqpEAazKTAJbr/JiqyHjkz0qUkA2KhQD3gjy/WDUKSiE7JXrol0GBRhWWc9zIo1Ib79FAF6mOo6UzRqx30CGHrefrmCiFJ64X2tiBIxgS2e+BGvZQw9C/X3oymwmi/BwEMpKe1NmO6qSAjyjhBMzp0PUOtyz+ODHpsg+mfnZQxGGZ5fYQ0DIzkG/nPJ9lGNueXe6hZGC5GRZgJyUcyzaofG/YJjvvnRE/AvTn6M3Op9RO04iKdUqbn5kMllNI5q/XT1Bxjcp8JdwQb11+W70VEFOwtx41826ZT3iKiws6rGN5Zq7C1Vuv4GeQFz2vJH9YjodzLPgYlfkMo0pssar4YlBfOVBJwfop44I0Dg46FSa0JnmMp6qJcSdm3F9vNPkynK/OvStxAXxYR8g5fYr3b5DJ2DZGmKEBo0noEZByZGURg0kTh+uD4312b2CVNyiBORQS7sQzjkwKbbYfkKWyGEsAMFErg8UrCJKyNJ9P68UvBqXRke+IGVWQGnGNom/zqb0lK74QmmXMiCXmnw5fsurYd+dSVah3neuju2pnvs9270bUG+7tyPv4Qc0a8GqJima56+caXXVp3C7K99tyNkTZcTF320x0sdeRrA+BxbcoNQ/tnajYSSdZeGTakpA6DLjC9AP189VITniI2tWDwCrNDwXthHw6zOtOV7+DqEHpLFN1k8QgfL2FSxSLeoNYgDa34h8vykj3h9OcvIEXYRRSbvxqzrgT0BrGzV4hzFandn2o37H8h3j1ypPMrdxE+RTkI01pnrXcRMk48gsFt7CLp0dfOgTwUc=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxff80a5aa-88c0-d067-5ae0-4400cc4fbe39" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxff80a5aa-88c0-d067-5ae0-4400cc4fbe39"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3lQUSdMCpqJYU2DZNr8sKRC/tOI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lOdT1aO8sPBByQBq/NXREuFVkM0411Cy37ZLSV8F2VK3xSK+qIIUZn85kvSdQ0329faeZlM3k0By/+WKJ2oRu+FDtDp28JlslVklIAp3CXQe6xsLwEA85VMwXzL6Y0a6bggindnREH+QIMyj/mfPTSdGTYSnZgH6apNJ+XbtSU8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>LDHomZ9ZM6D7QIKCVmzHR+Yb6TjQkbVZS8eH1PmMCP7OaY6qmzDfh8Vn+U3xJiyrrRfHLSTaKQh9fdD5m+KWsjtElgKZgL03TAC9zcSunUl5cBlGpVknh3FsbjD1TBKpVSyp1T0cTsOuAYMxOhvELBgR8qqtH3ZQBPIe9Fju8rc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>