Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx36bd0e8e-d986-1994-a592-9eb444b0d2a5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx36bd0e8e-d986-1994-a592-9eb444b0d2a5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>HV/Yuh8j2RiGJI6mbarxcv3sQOw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mEPxQYrc48UdxhI8YVNAUvvSfeLT+qdYRi7bCQ2x20P0UnlGE/kcetqNk4KiT1urRC3dJd5Z5oaQH9c5lRlfDXMEDMsvcSEaHwfuf8jeVy7IYG6x3RFriMNa3N0vsthBrew1ZmauiLEvNXoINouUYi2VzEG0lZIi2WHtsUyZ4uM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxbcc67d78-4791-ebe2-f609-2385ed948983" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbcc67d78-4791-ebe2-f609-2385ed948983"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YZWlC4ryM80pl9SApolIrA7CAhE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>p+yWFBGIBwtEV9nb+1QNzODR6AuNcdfnZ/Y019AYUA/y7DkRaL44ePhint5tfmLBDZYuF7ymyP6egy03XyaJrwhj8c73jatVA+YdAiSQky0jNQKHWBSVK59oI48GelqghndU5ciK9+Xz5O7K33ZWKqXPMOe07lJsKJ4KrJ0dNaU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8d89ba85-5fdd-61a2-35f4-035773fb0bec" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8d89ba85-5fdd-61a2-35f4-035773fb0bec"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>fMKZCpOTiFkmMGCxOpD+q27ZL0w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AL5ymM/aZo6fotkxD8i4HLCO+F4q/ZNyD6kZbkgYBxUqe3FleGkvcXa2Qrx51creZNx9q/6QucGnLTAXy0Hs5RaBxZkUcKSws2ViVezP4m3R1Nkyx7dWfXT3PWKaA+WYH5emWMVAgHPXF1UU4TUu1dq73WbQ6TmyPya53JnroKc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx941b347b-3fa9-bc5d-fe05-c2cb74755200" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx941b347b-3fa9-bc5d-fe05-c2cb74755200"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3OWLSQuvUF9ZvOpyBNoqRQi8e+8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TlelypwXBUjyPymhFLjjrvv7ZTEHt33NFCZvD/oHkoBnSoXJvgr6cR4vzNoYUnazc9YPLvy2WwYknNdIGrcVAkJfi8mL+uygUbamjW/9YgSljlaPSKxm+5S3iSdJpIIPOYjHP4FfeXB1PRln3f2GDlUV9Hqgv+RwxtZr+A5ihj4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oWefzJfqlf1+5iMiKhsAJOPiSV7z8O5ON/wE6wL88wW4wE3CrihyMDFX7FwNpAdWTBTPHj6SF+tzz++pKRSuUetcqIACzn+YfZB7Gtr2OscmM3iMU/HLpSYqjwW3SabzZCvLB8XYOcAVJjeKwl2AbRw+PsQNlXU83RZ/VDFH69w=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>SOIoljUPBUksbdysZd9AsBpYxL66+DJylY5f9sSj0AwYt+iRh21F1H6am84EuQPi849rpecP+XFLC3HTyZwuVCdA9LMdsk/6z0Aro4kl14fAiWORm4BradFRTfXdxswQh2JYzHyxil6oxnwKwJfUSSbhv40o2vTQ4MTuZ2dtNNY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf64a4483-5b27-b620-4b19-f86b1b29b3ac" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf64a4483-5b27-b620-4b19-f86b1b29b3ac"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>kI9/uC/CDIsqD++AxNTqSwiHj7M=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>1JgEl98tIElxLeslCTGbzKRsLMVP4ix2EeoqQSTzEO9T4RV3Z2JzaZA+clm+BEttKQ+ng5on1+CqVvRxPifR2E12I/MNWkLUgZjbMPmnvkDV7BoniQxO0Ow1rQU6MlaRTJ97S6nu09TgHAtwn3MySz13FpIal2n4q9uiX1WDOaw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oWefzJfqlf1+5iMiKhsAJOPiSV7z8O5ON/wE6wL88wW4wE3CrihyMDFX7FwNpAdWTBTPHj6SF+tzz++pKRSuUetcqIACzn+YfZB7Gtr2OscmM3iMU/HLpSYqjwW3SabzZCvLB8XYOcAVJjeKwl2AbRw+PsQNlXU83RZ/VDFH69w=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxdb6790c8-3a7f-f69f-09e4-b01390983e9b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdb6790c8-3a7f-f69f-09e4-b01390983e9b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lmWlHSAvcr93iAIwpT043YbztAg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zl2njL6FF00T/wV6BUeMtvDgFqjz2faMUZN0fArrJvPclGKhXJH52FA3YxeoSoBde64uE44RCDtc13M6I7++BVY4jmi3vY+862Hq2q5OQvybKBj25F1cHRraZhQW2jTri6iiIpVs9VUSDj1Iq2vtVWftn6OCr/8RbQfkW0I2H4Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>SOIoljUPBUksbdysZd9AsBpYxL66+DJylY5f9sSj0AwYt+iRh21F1H6am84EuQPi849rpecP+XFLC3HTyZwuVCdA9LMdsk/6z0Aro4kl14fAiWORm4BradFRTfXdxswQh2JYzHyxil6oxnwKwJfUSSbhv40o2vTQ4MTuZ2dtNNY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>