Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa82637ba-ad52-dba8-341b-ab10c9bf53cb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa82637ba-ad52-dba8-341b-ab10c9bf53cb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+SUJTP7/Xdwd3UL89pRpNtTyweo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>uYZwnh1vfJ4uz+gucZdCRXCqbbEUZu6B2hHv73g6lkOFBH2A8O5WRn554bjve5s9YPgIKBD8ac2/xPWPVT7vgkydqTXqIe0ocPvwEgBRzqhn9P2OUZEqLH6jqrpccR0EjYotDzIkmmkt3FH8JM7+pdBz4BY3DSk/TNvVGqJtQDs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx81cdb081-6686-17ee-66c7-681b9150cdc8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx81cdb081-6686-17ee-66c7-681b9150cdc8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3eGPMMvgoQfQqkGXQWeabjmU98g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bGNmeigtf32h1DDM8LTBX3lERWMHNymDwPtVj0hfrNr8vK0znkYlTf/Q2LJnAJ/heI/wv9eTKAaFa74iIu1c5cDzvJsPXIZLcrn+iVxDF6qoCKn6WO2hN8Eo9LSsLj8cOTGyTvMbE3e32FlFNdlsK72R0y3xBBd1KYR2qPGd/qU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7546de97-06f8-bcce-0072-61ccbe4c3f71" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7546de97-06f8-bcce-0072-61ccbe4c3f71"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Fq3o2gkNtfuJfmOnhbcAo3FnNWU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VFbprynOt150CmAkUlR0CAlp6Z2wJdnh5v/NcBryWl10OMrt3w7/iin8Pj5HxYFHlLxkyaumel5HHahAoBVyPfW7t//YFAh0009tgGm+or4aL981S5Jf+I0H7US1o9Vyx63EsTlvB1+514mdkUONhA5T7IWiQnvbHqUOdsiIx4c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx54e182af-30f9-00f9-1beb-2b6860abe0dd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx54e182af-30f9-00f9-1beb-2b6860abe0dd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>94Bk7YKxCqQ8MDlYrNe8+XVZgts=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>a5fL4eK8cFvJUQ7cnoaEVmNdndr/bPYRV2ooAG0hliSq/UwOliNiZz42L+EQSXWusRthcMUFtbZoULEmu6Okla2hro2412oCLYo+AREUFQcV4pXfMp+rI/IBDI6vxtVngB+R8peRH/ppQYojmqJidTJavkahMBC7Zmc2OZSRUzg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>T+AlZWhI6HFJDtPAD2VevsaLMgiBTXgvuwZK0YiZQAlOlN3DqDhe9pMudUIjMYQXbJcebnylBzP68FHVkzPbtUCdC7SPOZCC8J/xtXUDkDTGjoi5MyvUJQpUFi9kqC50BLQpuikChgHUqXTyFg+K5J5RZAOmPOrUl/J41RNOEUc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>b6IgtZdNmiCiTx4AEZ1sPsgGQrlE5uzYrUZnv8G+Vj8Qo6CpjOjnr5uZPj5CrkDdE9h1zQAchsvAB+ZPYSmNaevu1Eg1m1ilJe8t0+C1FfC36bXW26u/5ExIaDx/+eVIV0r70NPzUofkGROdErxdm6BXSuGABm+hXl73RkoB0HA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4683661f-88c2-6980-bca2-9be032d5bbae" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4683661f-88c2-6980-bca2-9be032d5bbae"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sOWB/nqUqVC+dCOgv8zT+WQUnXk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sYje1x5KARfCZS7+7541EbQOVC+cQIBMDG/ivTBDbrdBy6lbXH+0jAzsLn6ir2mLO7GgFRlNj5PSp1KAapIM9U5vrcdZrOShqbBdQ4TaDdPG1eVzBxMuSGF9o1zPDaodKXiDkqyMnr8bZDFZszx+dA/nnTbhl6SamaZMdcQybos=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>T+AlZWhI6HFJDtPAD2VevsaLMgiBTXgvuwZK0YiZQAlOlN3DqDhe9pMudUIjMYQXbJcebnylBzP68FHVkzPbtUCdC7SPOZCC8J/xtXUDkDTGjoi5MyvUJQpUFi9kqC50BLQpuikChgHUqXTyFg+K5J5RZAOmPOrUl/J41RNOEUc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxabc57f1a-f67e-89b6-aed6-2f39065f3d98" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxabc57f1a-f67e-89b6-aed6-2f39065f3d98"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lTPFKoG6Y7x8Isvx1yGnfFMNY44=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>S89ELwOj53d3nKBwiLkifyFveCHL3U51d5ObsaWmBvrQYXCc83PzgQRBbNB9rqKWFFJ/NBYG66cq5Ju9zndYOLP41qDPdKtT2uXkq2Q6o/7V8r9jeormPRFoBFdc0ZSM2Mbpq4ns66pci6WGwKfbRpOWzsLyfBRP6pg1/Bhx5xg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>b6IgtZdNmiCiTx4AEZ1sPsgGQrlE5uzYrUZnv8G+Vj8Qo6CpjOjnr5uZPj5CrkDdE9h1zQAchsvAB+ZPYSmNaevu1Eg1m1ilJe8t0+C1FfC36bXW26u/5ExIaDx/+eVIV0r70NPzUofkGROdErxdm6BXSuGABm+hXl73RkoB0HA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>