Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx206fd8f1-5bc4-184d-2dd0-1de3243d9969" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx206fd8f1-5bc4-184d-2dd0-1de3243d9969"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>o1iTjZD2KkuR6NpORL4Ee3jEAiI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dvCN4uH4jbiRd5V2MYS5+8Bc4v54E+b4S+4WommV19ZmQPBsdeN+M1F6N0by8atwK0Uft4j1iZ/wFhksfLeTt5FfiZE2+NbcqkQMZ3rJBPhncJnORiXoXktlIsXR7KM8OqYlQIkXuOf5RJYB8wecjER5iSrpqiKogi6280q+9I8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc22c21a2-c009-3437-9643-714cebdb039c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc22c21a2-c009-3437-9643-714cebdb039c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ccj7e+wRSYLoLh20Tw8QB3X8YCs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zSFcj8IEpvQvtKingnmKrVsnXkIqM6n/Js3ETBX3klfq2bLpEK2D2pmv1uBgneCnqk2vB5UO69aYHVx6qF0+HlkHFpsPOsT4HlqS02Z+9WkiS72wNVO6p+K5+UaO6TidGALB1NNAS5YADkheWFhcnd1RTssP3c+kEcJjHgjWmxk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx285e9703-1d95-b7f5-47da-105944e9c35c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx285e9703-1d95-b7f5-47da-105944e9c35c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0gxykNvgd0mqdPT5RZyl78EcPSs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sGuvT1EJhMNnwL3Ave2PfKM1XXtlPL7i0457jZv3Mtbm0FdrQFyQqzxsgMLbD7+S0BDyQIDylz0EzCNRub2986Z4T5t0nlQr4nIIqWxh64rmuICT+c2YF95TSQvKf4fwXjVXNEw71xvSuerv0XSYTQdj2NwBZQ2GG+TH94/o+mk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx52a8c97e-65dc-c6fc-3891-66dd675e2971" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx52a8c97e-65dc-c6fc-3891-66dd675e2971"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PHPI09ZnyFoPeL2IVmoZsX7FxyQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qtyD3ArLbLk+SI5GlQOMP0MUCnmPCFMMPVr1KDbkrON0pKwmwG3Le4gDuAGdam7qJWS9PFE5Xj9NeXa4rwwK1/R5dcpb1gV+DweClStqRHIEXFFOwzv127+ANfM5EMEZ+bQJL7BIic2do74p73BHz8mIif7U3mI2c0lRHeP1//o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UXIuUrEgg6bvxfKI45KdF4YodZfwleHVYGGe/Jkr7wUanjYhmzoDUsgx0cMfIvAfA+lD8t0T0xBNuIcrI+HS9AouUXPsA0Oz6n2RaU3J6+wBEqzilp9tL+RGfZZcp3niTJImX/yTLhqaqc55RTh8H9IvIcVJQy1zrEr5fBC/Sxg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>wv6iR5lGkpHwkYNn5pNWNm8obCDmjtnRxsBv6GjrDL6Y4ULNJHgf2kkWtdoS1OX4IaLytVfCPocEmpXkR/TxfVeqSpQahc5WtTvlALizufLjDUBKtWk7O+uNwXJXoUL1m6rtClWV1szSM5qg/+0HyKoC97Hm5XdCDry746WVl0iHRqWU4QO9EpURZ/p0giD03jnL3lzFxOTG7jq+dH71o2XCKhp1x2l5MyRfjc1Y/VDlcNuJeZD9cirLSgGVA4bapAbpE+OJt5PFtksOuiTppj8A7boHKqdsN04hnURlZyyHC/ApLPk8OZeHPa74rofXKTAMgjnWKDsGZuE6q1uAy9d3CEm4ALMqUztNfS2liF9+uTnzMkROFtAJVFrB7DgYQ6YH63/OEt7oXy37l3G8lMVotvpzMu9R1lyLRKAYgU9vdbu9PZJQLpGeaK4uIX4+SukW87DQ8cu5OEgOSBAYKBOCLeE5ms+AatK/qhsnQHPUyvcjSSL9gokEd+tQv4O63OZkdCM9IstF8IDBcye2KQ9XeJBGmWkSr/WGNeMEEnKFQceIfZUPLw1IzYzQ6cvqSZrUZMO+4mpxJzgSoh4gcRvICF5ksrAtZA13GvFovafFEwS/Qfjx6T9+Tc7VApZtyqZ0HPxEUJS5zp7n7y3TAYPEFlFAHH9xwWhX/+PAkkt2y8jA8+ag+qZfmYgI8e9tkiwbsvo/z4exv4i/nUG9DbpAW+KiYPNqgKRPQA4WRRsWDASo4ZND1KGCUBbofz+vgxzJSwQgOuRk25xaD/HioGARcUEDQpXFEbLMzUQae7JKLI2mz2b1dQqS4mu0GQ7rMMHjT+7W1or10kga6kycki3PXxyIIVcJNdsmekR519b6jwZuHTCcmAGxNv4NcwimiPsTT1SY/i1ZXER/PSBnERxOyhJMuzSkBgx4ydEDLSisZmokVVPIPFVW+A5kYpMd5D6qsvDW0lAHw/3LZX68+8wK62bysUoaR2I+TD8cU3oEYErTRf+RV5aC45aYmxHKFky0bduJ3pgZtrU8rJJxRSlFRp5FjAeXYWYunwCLoz+RdMAPzdL8gNnvjinDy/58OD95HJ8T8+4wtEkOxLHnPGi16pxmKQag2JuErvVbxomSTeymkcVivWl4/CVHbV7BPCjHAoeIO1E7PU8CyzUCH6t5veca6Fj3bzw3SvKaeca5U35P5zGrAoOTNf6KF65AJ5mXwhdchCWlnjbaLhwWl0uP0ozmyE16RQGlNGRb6TgaFkSs70P396x5OjCI4bXT54swJ8Is4XjA1Bv6X/VXxMbz8pohikrgFw8Du2I6V+hT68r7O3l8iioLSFQp4imffblrqbIr9MU4oKd1qvJ7Cfn1A1cVHuN6U2TQob+UP2tl4kv9ZxjKIQ2OD546awKmT1qHEzxpehFZ1yTWXjA5ony45i+oCU+lfPh6ojxoNPnUQbHaWYPPYL9utanJWg7JbTmNc9tDTJOcKg6SqFyIH4cvytQ+EIWucbR10/1UNzYdQERXNVzWXTM66pBeQMmBal8sZKkMfyJRYFQPZJ7giEMjnDAl3JdTBHmZn0gmlHBo4G6sTvfbyi5G+/pdnWzioK3watWRDE648N9pIZFvj2m4WwkOTQw7giekttPdnZkT4mn3VgByQCmGsshD94i091WO8V1S7qVnzXh4mJ56LiqNegk2kxgZpb8KcbPEANjkrNBqfAVnBB4+IMMIq/0TQ1oxVXzEI/ToJxk/b0AoThrSAKV/cgN/3/oTfPizVl+JtpyQwvGVJyX9lRmMXX1sSyhcVjB4tir5Yu9GTwQFRpIS6vZECFt7tGqrdxodLT88E0PU7AZ4IWHf3XpwrOWyaN2R108UjdCuR9Yv0H8z7nq9VRBBlHz0fv/XUKDazMLS5Z1RDNbmjraGjY0ACKBCaySghjzt1xiNJcUIQnyXKvG4euJu2yUpxLnlSFMcwxX4cnG58PLUOlrL+7S0ZlGKkaQfO7UNJPsf7IWH/AK9ImctlsjNhJ/BEXA8h94rkXhbun4w/oxBPyDWtg8FkSMKL6eR6Abjo5sEs0VtKHcovL98ZGG5P9EBUuU9QnNrAGop+nC/oAyVnPV/3HW/gjHI9RhFLPG78ZeyJa5RH8x1EBnzAlBFbJHRnzyDnuWittILBiHQhmNSO5JfVaTSInpJYs0FJCDcqDTM1HbFs/V83vphbUTWfmFcORjmBydtLUZKZ/Ub/bDp4jhAlXw7Pgj5K4lReF7DgVsADSPSvL2vRFhoV2pMYy/ZkiyzTpE7WAqW70x1JZd/SfJ3T5CSaTwAk05mZF8agHMktkBYc6hBl5Ccy+sfwcACBIYY72SOaNSt1ZnFJYHzxnFfI07SZYwbTJpD1dJGoMPye1WE47Hz4TD7Jhb4+mxbGwPMNKKMyjwEFDm58W/QF6g0nets18U0ex/EPpLKck5LU7NQQa2Z1seFRkb1pEcr5Kr/KGLfLCDUPerCjTGqxPPoeHg5vOsQP8B6ZIEE8kiP+S0hiMyZ8en47hb3PEJL2y7QtuX7M5B8s6GCOqF+P73gDF230CXldheoLK5APtDC1OJ0ky4GlpztCZU1jAxQw54y9BxwKpI9pWhhDTO1PEsI/6WDdcEgm0VMQ2hia5AHg1Mgl67UxluIaNHml0p7Hu+N+BRf3SReXu3ERZz6PZ9y9zdOAsqXr0/s2lyeU0mvNNq/w1jrwNM53WctsoDmyTxEdO1y5z4cekEp5hTLPGaePYGkK3uXAydL0WlBBIemUuyH9KHhSVMKXMH91gz0yijkIxMrwJBlqdELfo9Bi08ase4MN/+kx0kJbI2DOOm5bY6/M1TDiKU72wdCJ2o+ZVrgaH2m9gGB5S8oNQOpNTKC/LBsDRMOHI59Jv68tgz/134DxUYSF/EYhfas2W7jSVuL9Ms7Z/w=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qqi1Vh917wRBOdcZh0bWl204Zj9PiXdaxpVwt/yzIXv4G/XiIiGUGW+BgNqk0WrAEpULTmsj2FdFQHNNuqNNLdeVc0o4KZxqEDLEc4YEzwBJc6lkmw23NBHr86M3KkXq0Mgl0SQavH1tsgPDwxH4Bj/d+f7bAL8rbOfA/CXyo8o=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx278aae51-ecd7-aabb-dd80-45520255a525" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx278aae51-ecd7-aabb-dd80-45520255a525"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>c00Nrrp6T47PIGSYoTfdFZE11rU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ZcSyRF78j+geA6hIPXIFS9Wm/r7Jt+Z+y0WrXePt/+Eg0Mnc+ro2kUOBt4uEclw+PUjN9N+4ZLFzuGFrCEcfbL+X7Hagb9Whi7TnIittjjq09B5mJ/s57SjvJLdI6X7tk90mCBiwr8dgFIQMO/a/XmWoI7OhSIgazOOCS8qNQS0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UXIuUrEgg6bvxfKI45KdF4YodZfwleHVYGGe/Jkr7wUanjYhmzoDUsgx0cMfIvAfA+lD8t0T0xBNuIcrI+HS9AouUXPsA0Oz6n2RaU3J6+wBEqzilp9tL+RGfZZcp3niTJImX/yTLhqaqc55RTh8H9IvIcVJQy1zrEr5fBC/Sxg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf8b3697e-35c6-7dfd-7d0c-10dfa462f965" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf8b3697e-35c6-7dfd-7d0c-10dfa462f965"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>id37Z4pXMCYypZr5QEesD5oQ+l0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GKHq/kTykUSvHUbme41/xOh43aIi32EtwgfA9JW78sd+T0yHKQsf3M+wNLzIHtfiYfleITUfZZWdTQqH6q7Kr9RzI5k60ectJMkR7LCkHqtj+wWw94j8wEryC7XHq3NGy2WhCgTcV+pRPR/sIu4U1z6lo5GK7e9TgDgZyTZxazA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qqi1Vh917wRBOdcZh0bWl204Zj9PiXdaxpVwt/yzIXv4G/XiIiGUGW+BgNqk0WrAEpULTmsj2FdFQHNNuqNNLdeVc0o4KZxqEDLEc4YEzwBJc6lkmw23NBHr86M3KkXq0Mgl0SQavH1tsgPDwxH4Bj/d+f7bAL8rbOfA/CXyo8o=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>