Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxedb52b5b-c7b8-8bd2-ece6-d7f67077424e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxedb52b5b-c7b8-8bd2-ece6-d7f67077424e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zvE6xw8LyLjnwXr/uND9NOXi/Fw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FyuDaUlwUl9h9HCXXnL9MyyCRxXM+Br69qENmpyq5BAPm9RwsOQgIY1tO42J+2ZAX4aq6NrUIMlRhUtxzoBNlQyfok8TgsOnAw/8FkDC8eL8m/a9QTpxDGWZA74sju+hfpjrARb5P4WqaeQTl72I5z7cYd05WlW3k1dpExhf5R0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx987e0a32-5132-12a1-eb34-5d501f30c1e7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx987e0a32-5132-12a1-eb34-5d501f30c1e7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EtEdZNzb1MwTGyzeGjsOx4pCtKI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RdHApPkG504HivZhlx1RIYoUEKOxquygHUiU+N5+YP8B5SwalIQolook8C2fi/MLdJdTC74NF8KMIXWfSHdL1Lh92XPfXjmR06vRZGpn/mHIxBk80REurQxmVVX7AIGkdYjEbwpYTjGLCS0iJPooGG+J2VuS7mdvRJMdSWaSBYA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1fe2ca91-5afd-884a-17b9-8834b0b97714" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1fe2ca91-5afd-884a-17b9-8834b0b97714"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>G8AE8wNM0TvumMficuoR11CuarQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>1DPCe0t0+20W/CKE+q9FoM+b2XjFbGEZ4cOnR9XgdwlplAxd4geLlFNhy7OKi7XKo8CdlgRPPE3grrNu4iIKEsuitAwlyBzpto8thPbXGYF3OQwGUq+7rO0bOw+o+IQ9L8Ws05JBPIs2+Vc5mWTB3HJM0lY17dnyrvPTZHtMnt8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx173fbf86-2b1c-7d7d-6947-69208587512b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx173fbf86-2b1c-7d7d-6947-69208587512b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1U7aZkkKRN33OD0tKHKndRTBL+E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>wz2asLCn9uYFJ+uppqc5x6lDeCwuw499MuTXxbSsPib7XRcvAisBA1uRq0ciugg2ySG/GMeE5sybnkbp6jBrL6wpcfFtdpK9ivvPuVmu9MclC+i9L/lv/SXVIZVTv5JZqw1nYUWV6yodTA9dzKWlzhtnbBScYURDVVSBbTzjIms=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>L/4DSLkzUY4Q1V4e/paomEM9mOuzS+p8tNUxJmdo3hH/IaAx60UOt/ooVzxcWbDotP91U9F/UO9rtMiLIJl4bAFG2uYDG3i5UjHTRBSasQkBIOBkvtD1K2PtdfAdlp+1Am7tdaGGzz+AsPTByfZjiGWXe4Kn3hGIMxDhWii94aQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>JWCR5+j3QDStPmpayHkVBRcwbnznlvz8I3nL9iYvZv0//UWk9q3zDXzAkk2h0c6OIQnMEIBHSrAx+xqSu4P4Vymgrz+VgEae4LXYU6x1nm96H1TjFtiV3YftyQKW4vlAqKPEhJxBkj2Dq64d47RwXqwvGO7sfaeR6/lWq2bsDVw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9b310627-4867-6c34-76b7-f77728e3dc3d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9b310627-4867-6c34-76b7-f77728e3dc3d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IP/Wq7gHQVYZ3ykbnLsOAdAIx7w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JKgj74VhxzwzJXWAJyok92w292e3NCBQ0p438cMWhgFf3F5fsvqqQqPoOsDi6AswLRGYlPnfHoDm21xGwVkfkxolvOiNtDZYgRc1h45yJuYPIaf3VgzJ0/ZvWHpgGhW8nxJfk/Vz22H/EB5oSi17RAL28h0pGEcwFv1+Sy49UzI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>L/4DSLkzUY4Q1V4e/paomEM9mOuzS+p8tNUxJmdo3hH/IaAx60UOt/ooVzxcWbDotP91U9F/UO9rtMiLIJl4bAFG2uYDG3i5UjHTRBSasQkBIOBkvtD1K2PtdfAdlp+1Am7tdaGGzz+AsPTByfZjiGWXe4Kn3hGIMxDhWii94aQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7579de81-c911-bfd5-6830-3e0083b8a574" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7579de81-c911-bfd5-6830-3e0083b8a574"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jSwZEnx5Rrgk7fFOp0+eUFkcB4Q=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pq24PdjmR/KjdUbfodxwHvim1ZJEN2h4WBDrbmBdInv6KxfKVHk+BOSWgoZXJjg71CHo2HBk/XrdIYBHICGwGCThoGMRtcOEikJmekyx1dYDSNSXhB7aNFPle9KpE31K6vwB4oQBGCd0iFepgzjHdTQW46Ea6Cf0WX1fdPTTN3Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>JWCR5+j3QDStPmpayHkVBRcwbnznlvz8I3nL9iYvZv0//UWk9q3zDXzAkk2h0c6OIQnMEIBHSrAx+xqSu4P4Vymgrz+VgEae4LXYU6x1nm96H1TjFtiV3YftyQKW4vlAqKPEhJxBkj2Dq64d47RwXqwvGO7sfaeR6/lWq2bsDVw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>LyqEUQ5NJvzHJY8uSWa27FWXkr/t13LsqJha6rRZm/McohFRc4HvjPpgNcWskn10smhqVtnSBsRr23+Z5qen8Qs7zQeFXfivkdDNi4J8/VazmTca80jVpCRP6unF/LqB28S04MBig6jNPIcjH3OGyKuFVfNJ55Rpnntzd/morrHK3n72ze/Wr2M7X6bgkWj6yh3+7i+5KgmngcZgplFpZyxiVuf5M0M6SOI7aD6G6CMcl26ObPrX6duhWq4lXoxF4gYLR5mDvBpuDEDCe+tS6c1KAdur/jQzFrmQg02E59+1u4LrdT3rvmjO2ZfEsicwdNgchX5z6o2xepNhNnCJ5F3WvM2SA4rUvt+GpFCO4WzJdTp8ZDfnhIf0XLgZ+GBun/aac77yXw2zm3LsjSGK3MK71gtUmC5ZiCxDfrPmwgQ7r67jyc5Ui4jH3ixoIIvZ3EDdlq9VVtGwin8FpVyfjfv+vbrvUqsGifn868yMSu2mv3i7yo/iBAEGUOgkY7WBx+G1B6lOBEMfgCBHw8sw41wQ5XufhGUFxnqK7HWhom6d7sF3RmpsaOp6x7OvU+F/CX7mELEjy8KQh8dBHCuHhQXJYgiXRPdPdTn8Soq9keM46F/2ukRIfgkgwC2kuN5odEJwBW9z656QIWJSxVsxihBSTKNntW1PtXDxMapA3hsEM7jjnkLf2zy0CwRV6oY8mPs1pqKe0O21VgvckfguXnFAB6LhH/YhdOV4PZT4CHvpaaA1Y+MSeQebPQ/aRosJA7mdbvh+WtaEKDcAlraKCan/xzbguSaMu22WdOt5XVd1ZDnXBvi2y9k8eoCsdNfGvSxkZO5E9jqfzMrlOiXt29DR1fyGFd0jKLulXNKuHBAIgqwqC2MWOUlx3o8dGw4pq2dmIjijMrThIU0kFPEjARbdMA9+XrMNLFgm1QiCdozii9suWHpvchp2ctT0uLSdVVTzUZjr5qeCS03u75OrNgE0XzWm/t+VGM6peqJbgH1ML/5qnUiqBcbmTdDwxBf8NflaEn3ZRVNLNmIyg5wcQmYaIpQWayaOe/NGc4jeNVti1qDamUf5avdIzISGYC4TCb4K7+ihc9Ie/rEgOeIZtYcyqB0d+4r4staLnf/BHpJH+Uh9jh7BblpKAiTm7cJpK27o/b8hB9p3nEjYCQjsQlq8H/kXK3aJdKBng6czxrvxyx/6N31J+5NxO4yBT63nhFGvS/HGmCdCzb4NT15cjHQVoUrTsakYAs7ybXw0Pt3uB7SosplDHsQyRidknep+hApthq4Q5sAOLBrtVhT4FuD1tFmULFs9FI1erhcHXM/JR01XvKpkZfVb2mSr2yEQZBCsBo1JMb1Y88YblH0AD4hS6s1Pcn8fm1SYIPRbqM87UD/h4Kt2HbIjGFEiGc6/jIE9I9R+nw61j3tY7tLGPRaqcQOJJyWbjjL2FXyXbs/9m+ziOfrHUTkx6TK3P5W6OHT0vsmnXf/NHpjYYO30DSueriww+4EXKsbAmHYIt/NQukmGW4rCj/7mFOryqSy246QNsOngFO/OGZUyXXvj9po0N4AF08sMJyCt1JUT3uydrVDBjhxgWVBehjlO4/d2LQokoiBD7sywbpkltqdLxwlwzzNlINC9v7JJzhmzzsH5fumuMMpBKHxfZ/8uGH76KynqI6MugO4WVfCut7xatanME0T4ctAZU1t1QPxExXvzMKi1yofsihPPPy02Sl8SihBYilrwfwXaXfQjB243XDYqyjTmUiHEB+7Pa8nMmX9Nb40RLmAzy+X6WET3LRHow2t+LSaJGK12Rx2RkduIxip7q0EZmt9qpuIsNMKz7F2mv0wwdOKsYaHWjeR/Ir0o04LJ7XItw0qjG4hU3yb2v0U2HGQSsuaA1CqgtQBH9rJ+sHpMaljWvDIRYFFGX8dwM9VT/Hv7g0NQKc+jjO3Ew1nGhfo5ZK0QqEBwitOYEyp+ETb/YuR6TIX5UvdNcOVGvp5WctI+2QMYtJ59yTsK9tWbVXwvL5KC54ZdNwVIgMDsi8ARQa6zchVGvZ8m5qFyyvpK/SxteoaEy2Oh3mlSh9cRtGjmnjBW5hhEUuzSBEmq16xsTI+499rW2AKnrithHkdVUmLfuxJ2CKJ9TfKlpvsNYJzxmHWYIOLPFM4lDcZcAjMkqFI/Yu1XlDEHe9/JWpFTPBGYG66cVsSgZ0oPj9id8R2sBjeGv4otYO0sv78Vt5OKOFPFs+rbezCE5iRbB/yFzjSiNQXvNQfTUpqEooXcqSjw0nfs+DOZfd7dE1/5WBtTISqxWQD5NsR0ruBnLUCoiJjGwfApgow2S3sr0jrY8Jxs5p7O19bov0lfvK1/Sd4KiBnj4ZJ+8TU+Kzm+FzaDQ4yC40VhgFFoeMftB5+hNYMpV0muj8WWbU8AaQ9ZZ3iZKHrIuUuUk9pKzKZ++PfJJurF6oTIxMKhSmkZXH5XaRzMlHNW23toVyeYyw09XLKcJQJnP8W/p0KaUTqnmzqR/OMMZYTORP4iPBpH3iS7fvUqCK143q8aY7AGJxBxExCFOtqkFNqzlw9Z86RZLcuulbV1bNZ0Y/uIeUTVELmKTqfPFQsLV0YKZcuPaNM8RUHNxP7LaFnWaA3bfPZ9WtPoBiRgTLK23owOoVQ0c4LQlB89BYZ50z+L08BfxlMHCrHoTc5vkAUAmk9/D2NyD2/ZADvsbaOB7vsxKQd9ZERbuylQ21XZqtXifLSW2CHrMU/44DVfRdD2f9i9JpTmSLvNdIv7gMJG9DbwiV4P/Kmqk2/P7kL/dnf2ds4sXFKNoDxNg/rlzb8Wzl+TsMZyAWyNaHGmEYMmybSFH8mo1x38UcG8XbHLH8/yXcPvaizHFj4RM6yhMFyMzmdd872oSqG2B0AJ59CG1JXDCTz7zr8AeW7WGHXaeg7b3mB/TO7n/XgnNbrAN14jdwTihiWhYQUxIdoBaZt2+78Px8jDxrcY6lU0RIaAfmSh21gZv4plGZ5tsU77agbe1Q5IPMRramP/vpWrMSeawFqEcAqgvkfxaFL/nrrcF7BYV2nsAPc0nSN6XN7svOSdbTVoAu4YSpB8sMMgNFVWQ9shd/ubM66HKypWxWKDMyAXr09ZCENNmDggyTY2IohY42MG+MoTlpHqh9srZ7ZguZ5LnbBz2h8NZYcPXSNZezuNvRs2cNvbFNVeDr5ShueBloPEUmRWl3EDehsWkLTT+MggRsVpvBd43bdCIs3V8lNyWCGHzDdkNBm4O1SLZRJvvF7EFZFcyHLzZbYVXFhA48TETM+tnTNl6BJPeq6us5G+mYSRkd5E7ZGyNQVHYCoZ5Wxjq2Q5ZxWL6c9LOvnwQXI8GuMq+RT6zicxagFY7q8PUuc57EuZRlZ7QulrpnozSKnUymuWJGRWNDEfhs0MFJ+EB9V2LuUd6rf7NtUA9uIMN/SgouaL3uRDa+yaNHMOxUVPZ5g78BsrVPwuaxH+/dA89vAU4ohhwpsq+HKH4vP273QOZrnzhxz8u7edFQ+GTC8sUu0JPbgKOll9278aVN4cr5l4IDK9QZxTfQcBfMKC89H8a9J7mm+eCnh+vaYBHTd6VdIWk8duHynQzSwmu+r0ih+y/idJkHwdyEOqDpDfyjjRWtY5X8NUiv8210Mv3oxyt35pwRXrziVmLv5sY5nsF2qKBqjHJMSkhhRjkNroteSYHBqzWPE9txfvVgyo0DwoglkjiYseI3MsJmy1rVYsx+UtmEJMGbfZXzeH3egkqS81kgb50xoXoMXdE/Rm4/mjp7ZyJSrTYr/m85588oVNNp3mccZimVBQFkn5035sArreU+azKPKbdl6YDCQFDgYIvX50gDBrIJbp6ZQkBINmdrCL4s5wmHr8BCzUmnLIfleMHT7ixRur7e59O4rL5/97txUahZS31uydxQz628k4ufSWDpgozskUMkQuTFpz4PYlnZv5KQpVQt7VnaQ+NW9k6YlMhjZJC/wY+is7D5lbUSxdg7M4FRbxRiKwclTFGc1YsAPci3FsPsXOALqjSdLntxpt/Q5btT+ML/puD3tMz5/+3wbo51UKC90t0ztKuBpMWgydDePGJ47y1fb1fbnoftguuxIBt5CMTB/yG+LWra6WXfJS8HOK0ZkDW4Hu5PjMQEzXa3Uw6XfxMPcWpt6SoBpUjukLmaT7ERyfZDd1eW1BUPE+5UM2aGYecBJQGexTDQ3slAXxR1irgQQyTOMJuoqxPOR1Rg9YhxXT2C91FGA4rfwlhDAS6XSv00cKWt1g8vythKbOZz6HylZDVRVOHEAGDTYtQQZh6cQcqYIz6qGxY0NQEGqjZpzbWLwAi7vEYzJphOW6SLOePBCPiMxUseWHYKQOgyeCZlgTvfY+Fz2EkKJkqEXMPr4A3MVYxRI2EIWPtkNQaBLBHzXQAtQgqLQ7FDRHLR93wBYVhJrWn0uLpBHimoU91MQSPNmUKRS4p/xlORniPlOBEr0qX8FiR/usBmSolCrOQXE/AaZ3IMmW0Z5bS/33skqsmiyzROTCHOaeHGCXkjh8DLsSvNE7m3dUszgDae2hvIosb1i06etnihNOfVLNJAq/0P4LSbf0Ps1cGlC6XPNARhqy83Sxl9WURCmfF9CnmrJ3xGI9bh1UWyanKQBIU3/A+KviuUyfzVP5PEGYMZvVw3dDvTUebr4nBgd68aQiqNobsdya2Hy1BZeOeirb98roTZtbyZuOFAeubopAhheLZvJIKSUsnacWNRFEyVPj33EB0h2bnIPFghhdfrgp97VTmIOdv7OoOqfu4fYPw3SABoV9AWAIPdg/abwPItDXwBk1ELeuq0Cx+S53YJWFiK/Zc0o9NM2HGNmtoNYKCS6ShcJVgO+GKprENvRzuJMyM91Ngako5TfhxgbNEjtoACtWZzvh/I1MnWioWb6qkHlLhcOJVztT79cMn3RC8Az1ybRJCuqRGP+sDoFcNV/+M9rWrAhJhf4JEmWT2TirlGJj/xI7WhQatkGrKWGq/NTEjn7XXgwUF4POpgX3edqum/UFrf8Rj+43Mi25BCgmty/eMrslk6o1S2VTrzGo4nTHjMrrEJj2SE3U8bC1lXUin2+TVL6iz4FYiS2LgEG86tOVKCZNlySJWDLkkk5D1grg/khIcg3HztHEwuhBNRdAnFE1kfWjhIHRSLK5cVBmrBXmeMkSH3WHPUsxCRMfADFc8OPPetNCYHZwCP0DXR3mSVL+viGpkv7xU04U6lUKaOq3YRTmCBgsAKEubh0I6KLyKUE/oKiAN3Y/IJk7yL0mXwL2H+tSfNFNlNvMy8DZ3mUrj7pqYo0pZ7GOAFTW4/e8VCv85p83aaZzsVFemjgHxAFLV4+ISs1t6h2gr4AhfSckBLg5xvpZdRLVFDP0772FW89aSFEK693HqDleHs8cuE0BoUHN0NVLAk0byMh1T6Eppcza/uyacviV0FCEBjW0MINIPrL70uS65vNpS022gQfB8Q7pFOFNHeI=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>