Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxc7509f8c-db0f-bdea-9e5b-926729a8df55" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc7509f8c-db0f-bdea-9e5b-926729a8df55"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sxneQS6CFpAzmxlpA+VX9fFDwb4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Uc7cJEKr8zTv/CCIK06uOt+GJ9Kk9z9+M/TemC82qx5rjXZoSpXFYnNcFjJLLRK2aV60rlJhRVi+ez6KxlxCvHqvqq5FIwB45dfQjEQUyUTdf+tCN3WyY/XgEr0pvWHPwoUsccrUNNIs9bsTs0dGESLbjanGPhWzHMcCbtqj/x4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx882f5add-c7bb-2722-aa6c-9739d32c09cd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx882f5add-c7bb-2722-aa6c-9739d32c09cd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3UDmBqcurC4opPPNRtL3LvCWiWA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ndGadi6rZuD4T+hbsuU6FwxjzhpUkhU+eXKpbbFI8sGoEOAXNi3bEkJvSsLON2ck5OtYNokD35VDo+NTgljHWca4z8xeJenUwcNmXb9uLYZddKRrYEZAp2xSMo3dlG2rWDWVEmDgAGM0K+TeZ+QY2bosvFC+knyIgHBL7ufwUao=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb53e7ebe-329d-6d2a-fd75-70794468fc7d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb53e7ebe-329d-6d2a-fd75-70794468fc7d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>39jMlJAaGMccLuwJQhWNQ7ENDwg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>xNv41utU0fCPeZjE6UOhAPsFnorsUsqCvppzfK0+7FQhR7B1dtAgpj2xhEejWpyTTz8GL3jw3P02A0UOsYhONPc7JvBT7YsG8RupFFCofuosIpKQkldu7lcIO1q2Q2nkipdVHJATCLBX9rCbZVubF+CPfLFswznRiHuglbPQuRY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx118db5a5-a1b5-5f13-4aeb-cf6050a17495" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx118db5a5-a1b5-5f13-4aeb-cf6050a17495"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5k1sgtq7jkOHN3OOY9oJxia1axk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>nGQW7eEvpVD3IBXj6+BbeOsLZz0SJzI6tG1KaWW9Lo4axGJI08etBhpOaWtywmMY2eYwlVu7u2/tosm98mOtSA93gMfcteRHv7mMsCKFJnQoWOqY2wG6dexw81VnFTh6N2n0oLEVL/0x1U3F+ygQxHrz1T3GV0Ob2wUZf0owxJE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>GuG4BtZtVFZnlhGZQYAbq9y8Z87QiFewcHPabU4sVQ2oUMVLtMHA2pH8TNVMcJGLmcxs52lwx60cJcUd9A9lLo/jXViCz9PYZEAi3wSDKUd/vfOHKX2aOYFcPMKyKZQMlOPm23EDwENkM3scaFsEneDlaFfsnVCg6R5rDzyRFy8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HEm1JI2NS1VjdgYokc6HcERSEGmqNgoQST5Jgg7o5RAF3G7rI8EX2l/vXLDKvNxD6wbifprivYJ9+4/WUj9yPIbHCTyHPCVX8G40c0jo31giI1eBfxFZYV7TAQjjkqQTBF5FJBYHC1FpuT3Kxz/CgAFflvrMBIXQT6XRr7hLPWM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1e5aeb9b-0e6f-57df-22ae-e4c85eadbd2d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1e5aeb9b-0e6f-57df-22ae-e4c85eadbd2d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>u6UQGz9SJVKAeeW1WOtnad6+wq8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>niAwQkeRJrsPWTr5RVGs0tD79SbdaJWVuNNLE++I0xQvRqTKtarAoeLTQN1aa3q0K8lEzSDL1nFCu9OqABToNIM0bj/VyuAOI76kOFBMcfS8Cw8YGYG1mfZJLoGXKrT4QwlNpDGdpokDxyJS7ut3TYtmYFCOphXowYdxNySUNIk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>GuG4BtZtVFZnlhGZQYAbq9y8Z87QiFewcHPabU4sVQ2oUMVLtMHA2pH8TNVMcJGLmcxs52lwx60cJcUd9A9lLo/jXViCz9PYZEAi3wSDKUd/vfOHKX2aOYFcPMKyKZQMlOPm23EDwENkM3scaFsEneDlaFfsnVCg6R5rDzyRFy8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5de0e7d3-3515-70de-9179-53b608a0c66d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5de0e7d3-3515-70de-9179-53b608a0c66d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DLohz3BjkeWpaTJ42ICHYT8mS5I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>NLsBP5y8+324Qkk4RkniuA8nrOdJ1t63sopDWnXhHS8KObxcojMqDJv1bColfMLXy7ewHskPnesDind+v7K5ofLJbqy8JVstS0+TLL4SuR93Qh23IBwH1IVf70dddSB7zjEJwz7h71GhOHCYBQRyrsqjXnFnzYzmRVtW+VhVyoI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HEm1JI2NS1VjdgYokc6HcERSEGmqNgoQST5Jgg7o5RAF3G7rI8EX2l/vXLDKvNxD6wbifprivYJ9+4/WUj9yPIbHCTyHPCVX8G40c0jo31giI1eBfxFZYV7TAQjjkqQTBF5FJBYHC1FpuT3Kxz/CgAFflvrMBIXQT6XRr7hLPWM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>