Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx0a6dab5a-fa3c-1e4f-57c8-9301106180d5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0a6dab5a-fa3c-1e4f-57c8-9301106180d5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>XYowsUbUtxxX44NS2+SrxAPE78U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>U/WzE1cxfG2OJiG153gCr5Qhq0ctNLvK9JJ+m7ohXMEuzCYQGX4y5CArdy9RYRGqZd2C+Ntym9rnS9mwbnfQOiJtUZo3497t+VUAlp82caOpoFdYVai3I3On8n6sno8GWVEOWcRjUoCeruNzSQ7tHUvrZydDN06jE64CgrkZPiY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx939f0a8f-3c0a-dd60-2fc8-81c4bb8df0fe" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx939f0a8f-3c0a-dd60-2fc8-81c4bb8df0fe"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4B+smNP0NXFr8oPzGRfnLfMMptM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Ikre8S3F91A88hMUNKIb2BoGKPkO8rZvWSewtryNKKQlEMcbh10cc6Diz6k3IbLRChWKgGbhyBW8i1dozaaypK8awDutipmH/p/sZwaE9e1vh3B3oxIVlUFsUFbcaN5362M1YZ5gDV8xVQBT6z1cwnSqm+7r2nygpFSDOgOTmCM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd7e13ce5-3892-ed3c-8dd7-6b0b0aa6eff7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd7e13ce5-3892-ed3c-8dd7-6b0b0aa6eff7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xusNNKC1pEqMrZh/vEQIr11NkhM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CEJcjE+ExVqLOMvpBamggLvGt/2wzzh7ktaK+gmvf9WrY66Q81CS/Lj5JcjP4FeMUic0da0OAsmHdqSQCMIjIHY2tozHrtZ39nGqjlHEdRQMqEN2MaOF74F9hBiD01QxIfl53AgM8BWuzMzWQdPq4xK93ZZ2Y8CKvqHishRkhdM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx8831da7e-9bda-5ec5-b59d-42e5616a7bc0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8831da7e-9bda-5ec5-b59d-42e5616a7bc0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>acz3HSt7pEoZ1iomrI8xq7Ycfww=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zaZ/tuEPZ6hL6iRAUY/RH1w86es+BxJl94xeJRBIJdI1L8x2cJ6rV4BuGun/g6YPo+0Y9xZM555ckP85i3OOZ8PxkcPlOlMA67V+PIjo1YBQsdfoKqipXHoI9Lo6g3RvxCf+K3CpRiXuCAHq3s0ZdoMJL/6B0pkfnqsBzk43a5A=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WiJh3P074hCc9ya4ZslF4TbMfqnocmiJt8qIszBN2KeLiukX97C86WMRsMMutOeeJngCu3AQbitErjWmxGGG5YSzxjLzUfMGC+u6BW0dTomXQRgGDHhUgNeW1XqYnPnlmtWIBA9gsVJ4JGFtmWhIxUrkPTkDmqm/y6/5lQmVDuo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>LofSfpORqoCo2lsBH/cCvTXFlZZcmRpcaavUzCvww3yJTnshLY1yy80MRsUrO8Rln3QqWwHCr+HsJhWm/2tSBfh48l/bT9kswuOWplv+aF3dU4UI4/WhARDyVMUgmglTCDIzH/r/R5kM9L8303LlSjGhEZsZctsbIjTqBnZQ368=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>5R39yE14y1CAKu7a8JAcb0eJ4A86HgbpxS3IKyS3BI9YpStP5ckZEuspezzh/u78o2wGB73vpqMdxC0+9Gpla5ghQT48bs1AndQLMJ02qiCk23xObdmDNbpjbrs7usL/bhzkofSK6i33koY9JOZjLyz9znioI0DUAxHLYtv6HvdJstvUvPbXjEi3KM2JgDzPgFXvrtNUY3hCUSsEflFTPI/zg8I5oPAFPAHM4eqMncC6GxCQzIy+RL1MWB/FHqcu3vyggNAw8ctzsqg5s+Liu1kNkh4Rv/Rb+IwB4IJCVlB0rrkuGLyN5UYMDrvTjnG6tPz6rqinjp3Rp0j+g94s3fAh1O750lZnM6zNeSkZ6ZCOi4b5J3IrTt/6bIQqG9piSEWiY57yekJRF3vBf7w008ZKnTUIRrHfKYNewGUH58pJmP4eHaQuLD4xh0CRoaYGFWSHvgu7Z4HAWsvhjZ8lAQgMM+KwHyEwrh1aKy8j9CaYCeverC96OLxQh+7Bv8RY/otfP5VZHa9B5nZBK5RLjNGduOEq7pj2AqdM14l0i14pwwwoXXsgVEGj0IZHXnL+EKKO6HN/1x6DBkC1Yt/jcB3HkNwqp0sI+oj7OIzK+yygsfSx8I3DRnpdjFkJcxjbEiOqdJhHnYLHwRkPHI5JMnlNJYeuoFHYDY+FNYkpD2se9Ql3hZqxjuxmW/hY7sxSe9YxSgRhKszlDxW9FZTzYPMU/clY0F25Y+/qadChJvakemXLQEymCFjxHeluyqgw0aTyva3xYSXy7cS0uEa7ebht7JFKROH22zyd400wbi+1VcqlG/8qyGciI2x0ULiA7B78t39Y3Zh/JgKAj6CZ6OV7pwbHX4n8FZrqROVxjmaIu85gIFjuu/Vohq4k+PmnmKPloI6OEGmgpimn1bf4bIsYxsZlRcD8kkdK8R+Wjzg+82tCvkuTZ8QApMzDvsDHZPmBZIZu05u0UvbfwsBrQkBI4QsFQx5jaiVKYQZ/nx9cHJ5sQHTDxjQAx/nhGcHV2jhW0YfsyeH+KGPjOUbD6T1gSad5RAySTIqFUe4HL//Kjt+6Weu48boYxObl5Dr8dii2XRU9zbkvfgQx/87IxyfoPimABnrcSt8ZDU9FIG+R0PIGQTDDYtbOFy9Y0/E4kEvT+f5FYtriR8++TnqJLU0sYCW7Q2u6CR7YukyoMpf24vbIhmHXKr0a8I3pnFVsRtfjC4K+MScA81UHSAltIhJvZftYEXOoa6v/d4aCKm6stQXMUtbhyIVmkjjJwsWVaDySLCJSPAO6XBwg3yt7FXlMbnbiCD9rn/5AF6tnJIiu0vrW3SKGeQIxAeZv6x68HwKkaseoZR5DlJTlSUaGW+b29kgU4EExG9xu11BKpOdwGnm9Jdd/6hIm+jCrqya84Qk6o1Hu+Muup46b/G+co3t+TfUr18E35DDUIumKbFL7xDuJvoMmnJGJwX/mv7tp2iSm64HuI6jPo7e5WvMTDRMbHgV0HH9KgHhBLbggR5FZaFDlLwaqwZ9JcBnvboupwy+ZWRDDa4TO7SgW30NpyS6Ozo0CcG8zqtk83i3N9/iqzSmFrS1RUjBqJI+nrgBTRkLTP1TrzLtD+Ix6P/UJz79xuVpYwQM0kyYPMaYMSCLz8nc/vP50lA1+JMulzodXFexxUntarLXEwSkTuWN5tIq6NoKAvpDzDlHloetyGxfz5xDVwpmuvZsEi9U+prainYxB9qigX4sPDwZ4AzqRvCRwgYmnKgCPIg7Q4qVs7xoXvdgwXuk+0xBUnwMuPXKfNFIBUpzlsNSFvnuTK5ywJ+mmIZm4hYylCNbYpzPy7QgiUW5/Pwl3u4hipT9Pi6poRfz8B8Wziis44u9tElOs6VuG7tFtQrBZK6ODmvNqgvBlEFT9YdnXZxMskWQrg+IW4RagDw+CwLhpdAAGc7pyX9ZxB8vveGZVxuObiR81Z6Qd7DOopRnvkiDl+H/x+Fub3VbNRWfMYYz5jpq++S11Nv9RnD6KIkqSSt9rtHpil4V3ROAV69C3hr7hGSgzQVcslPA7uQr0ISFlOyS50FnY0Uidoeg+EcR8jDQLqVKhldN8JK3l0VdjN9pK//iC6oeDIg2b/8skwFYoRbUS8clnEjzS3TPHnsr9NiUYEkb+MBlLPpakmwkhRpB4xgmo/cnVuH7DoxRSPIa5E4U38j1UjIxwiCoC5JZy/y3J2wrU0czuD72mhyiX/Ww0z3xK+4w+aJSqXa310zC4iFiH4o5xxkr1RGhIbmmvHFKCftvVPbm/6KgaX5RQGNO2vWUXt5/0DMASxg4/YZNAPyDc/DAawiq+H3Vi2G3U8irOcqg5hh7p1oSFS7CpEIIiwp0MpcurakrJQjWig7Oa+ethkAjbfUJYH2tnrGtLFCY6KmUhXiK/xAeXRgE9NTAg+fHK217YAWvEhJf3du4X2qzSP94U/nsZuStfnpE3EgE5cxhcL+THYudFMl3b8TIU2R84hXMbTERAgihB+EFL+B4piQZWL+/0/Tbrivj3gbQ3wX/jUDg4OR3P7km8T79lfFhAzCW3JMTeLi/E476V0gO0An0Wz8HcU+8awruu7GzicWtmdTPxivRQW9yHkB/KokDx0nzY8+6HOsrhJUMiCRGoX052IxTUpqWtwgjbicjsszfI1nfBWLzVy6Rt+odDev3Bj2JsWyT70nQGz8ufeJlspDfEmbTp7QesKO98xn1m3d+nWbrTwJNJUByvgDbAYg1icV2AvI4Tq82awG4n2YyGtExHIF/pup4jUTzyV9ULS3aNHIjRfJ+Y5qeqx2NEZSZ6gYThvyzunS/pPj1PlTZfIKDGAyanu++i9K9E0L57PLlVN2Xf25F9oVcfb3r5g9VYh6FYvLCRAvzzmqDUxBh1dPkYo7x9K9MUTuQ93IkwuaZ5NUZJECnZ8LcYgMnqslYJFlsNAy1x17gGRiWsuejQYug7K1DMKIaKfthhiF/USRQ/pEm2P30VjENOAjmE0kACEnURj1o9+4r+TRPS8cqFBY/ogYhBFnZOpGV8cOH1CsJ7qAtFd7mpvRL0GBkI4gK2VcpmtmLxQu3kUWOm/6xwW8o/Ll13ucNv21j2wqmZ5pUG/hB6kCy6JrJkboRGvxQqD9UmxwwO+/0UimBsmk47gymu208oC61jvTbuByCxJnwJ6T3Akjy/7dUQMtsq59s46oDvx5D6aEHS9wIiWzofXbFs6mLSyjon/xA5cxWvcbgC/xch0DJmg/HwkLOk/EcPKJdgKNE2oMxsZMc1c8OMiaP/BDay7IwMvaNBXl/zC13UFkPxOvT2Cjd6OukUReC3UfQf1DMvzeJN45fQDIAa3OnrfhAY7pzDiHmqZcVI2cUhJOi1hE1uREj56048hyk1B2HiPoh4FCob9ksuaOc35OUgt9ZJXv5Wb6Nmm1s1XLtAUAPFo31nBoLD/snyHswoWKwouo2OjyjwRVyPEMYY+mNulvS+kO5+ueePdBpv21kC2Un75EEwt5a1hZ31WAvfZbOML69LRqQvHuT+L1f9v72LovBKn8r1nsvcHVvHhG3S7hxmamrbl1Zgbo6wLMZIlhsOs8k0e6RPn9jEXeBd5nR1kOXwCJCNdAYz68ldcd/wHKGKnd0oFBrYa1q7shGv1a2vbIjui93JRzHr6E6OcL1UjFeE+v00LHS0wpCo6d1djgcxTRvOM8Dpq0Ao+pE5JJh/ipRNBxJh40gITz7jyhqDzUhTzM9tRcyyBJUpCfDmOYpj7uraQrpYMGv1fW2hOROIRhXZVd7Pw8clCoF/8DJoNASk4gkggVhBjp+YtY5Kvh3JgT6zIscL2V8rU7VIcudw8K6qOO715mVh0kaRNR8ns0UowsFf2gcrNF7Gt7mxatTOBHwa3XVvtmVm0eWlduzpEIMMTbab4SlI6d5zMWU3C6LT4JLhRgVvZ7cOl1Bgz6aX/BYkYAFZNd5gB42dKBn5k5lY1oQ8euli5fNplfSccXxhHZWZdICbjKk3BC65uXYhyRaQcZ+1+gDcrSV/R3SomR2/urms2wY1a+yfzBz23jBbv1CkRAhD+hLhtsfH+qbsjPmZsez+pwPLlzNdE3I3C/HasbMNwVjQNLsPA23Js44bwlQI4GBB0dc4sQvHBdoEVWpGef2+Brlw+bNfYq+Jfohsx6USzlFhg1RNG28zvxDfD4ZSvhYSgLcrz2BxtqNAEdAMHja1tcVjU4dL8X6+eJdcYJ6Oz5L0wQRmzMEm/t2Sck3HycDzxi2EeLRhzFOpVUs3QfIlt2yiSdxnYhiGWlg3x3mCEd4Tkt/eY6JRct/pVxthII1jBZVsXMyTnZvPiHeMoRi/lQrEEf4/vVHS2djMrwQotawroxFXVsPb7GROZjVYEKBkLWsnoCChHgoFAlyzUNjRfee7z7F1YoTuhotcEngZsV//sNDBNW8gJRAVrmlwi7uzziOqFCLF8AENwyE1TYJNJBi+FoKDEf6d59qntOg2d8wy+Q2qfEoM4TQphgNLtzO0jqcJn6OAxOtFM/yqCbFDYfvdo5rNti9BOuS0LDc6CJpbJsD463sugfelCV4iFBqrcq/GA4F2eYqcqqTW9sxkj9U1CaoL/F/sFQFJZXJR8/Y76CTvXYN3lr8ifs1PUd+kx6WE6vhqAieY5S4FyDBa6y6guJ512LVt+vI/P8kX+nr0pli3+npleEoYOvUjp9qW8UoJbz05VVMrCzrYUCE7mWx0vWIhQqZoO0d607bUdQuBQHDFYfCx1karhFizD7NZHuNARI51nNDdFLQCAoYbK1X+c7NxjkQNcX7QYqQVQ5pPDx0vDO5nwJT7/b5piSd/eDke+l/kiEKON19cB4c1kVXteDipBejRNfklCnZKwqUfQTpNrbQLW8SsbEQflUJoJvDyEjAO3jnoZLc2SfuVmulZhYWW7Z2ZiKOQTkJ0in8i0osAuKDujC5Xt+voI7SyBXT4PxlElSzX44A/AW6Nh1k6oO7Ll48OvI+KjqdKqbDqDvNwGRk9xvDHIcjQaa5uC7YUP4XyxhBts4x6WNRyFrESq8qeDjwWDASXC9tZQKfSYFOh8y+TecSUQYfKuqcv46AhwvNIqV4KksnWFY9vhaVMgPG3J/V2+ESj3HGbkMPS7adAGfTQfY8IHUdS0iABSwvIu8GIvS1qrC3GDAn+ltOzyn564xnpPIm/rXSeSL8yBNitb90XCa0emBSiUOD0f7p4/UitWn2nKuhUhqwRN7DMdv+VFzEHhPXGdTpLbZpE6Ow5HH0pRYRhG+h7kv/hUWw+eBXVDFYESXN5grztG4CzSgRPKc+MsADcmUQmlIbC5h9Au11tO1CPJKJaSC942RRqClUhjWCE9py3XxpTpfSot/ojXokBVNzysLbDE+NSM8/OlguLJlw1LKaQsfGaYGQlu7iX+OpQWug7Q9ltNrVnlNs/Kku0yJEDIrx1wdXuU30lYJ3WIddQpooM88b8Hkqx/XWR9Ck=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7000325d-de7c-9883-3069-19e886cf11c7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7000325d-de7c-9883-3069-19e886cf11c7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EVN+CYbnaWMw6IiTuwVJy5B37A8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YSwIg3quhpyKoIwJyrpr7RdIgP0e3vLZ1nCdfIXam1tRhJHG2OZttEYQy5JqUpUkNvGL2jPoVjn0/omlQ98n3HCicqj2fdll7YqBAvAUgQf2luJnl0y/xDvospa+j/VZicF1/Ueq0u8s2NwEExSGdcZ3oonXCGxqkQLnceswaRs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WiJh3P074hCc9ya4ZslF4TbMfqnocmiJt8qIszBN2KeLiukX97C86WMRsMMutOeeJngCu3AQbitErjWmxGGG5YSzxjLzUfMGC+u6BW0dTomXQRgGDHhUgNeW1XqYnPnlmtWIBA9gsVJ4JGFtmWhIxUrkPTkDmqm/y6/5lQmVDuo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa91ca715-8133-379f-1ca3-210cae627b84" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa91ca715-8133-379f-1ca3-210cae627b84"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+vaEY2oFg+QVI8ASfh3z3CqL9g0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MEnt86GxCe5XL9ZhoB7rmYDFo0mTrLbX4pbbZZItWT3AbpzawTV0tb+WkboHlXLU0MKJFCmx5Vtsi5N24ajgPprgTOZ2ttud/gRF4T3xEG96Ha0KwZ/APw0IBFlKKOf7PcL8atdtiMbUJBuxASkeiaPQLgjraeG93M3fWWSl6dQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>LofSfpORqoCo2lsBH/cCvTXFlZZcmRpcaavUzCvww3yJTnshLY1yy80MRsUrO8Rln3QqWwHCr+HsJhWm/2tSBfh48l/bT9kswuOWplv+aF3dU4UI4/WhARDyVMUgmglTCDIzH/r/R5kM9L8303LlSjGhEZsZctsbIjTqBnZQ368=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>