Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx25670703-c809-3a62-7fbb-8f8654f463d1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx25670703-c809-3a62-7fbb-8f8654f463d1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>XHZAZBeqt+/KbCOYhzac/a4ORvQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Bf9dbYItBovBrYsVpb8fOJVmQ0WVzuqvXpjq6TGcncwXCgacBwl8RZonfJlhQTRJhyV/20ZdJE55mL1hUbO9dH7ZaR2LYd8n8+MdlZrs4doe41aEmxSM0gvy9VzaFRg7iiipAEofkIHUi1VcP3+MYY+fIVlBUFQTo2Os4FvOHZ8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx015b810f-6bde-096e-ec93-056305480982" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx015b810f-6bde-096e-ec93-056305480982"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Hw26SEICHs1AZqcLQVsTRNhUDeg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>XT2cyx2wSiyes3aoRUDmGxdz762b5pkSh5dZGaOIWfV7EZsFJT0Dic4xrck4T1FbofSS9vBHBvxs+8gzE7KYL07H8XAcSRaz8IFzwzfLW4cxTxWvNZ5QzMt5iIxVHa6V/wVKA10swTVzgZftUcXhgxWyR+SaCb72kdqq4nRXPWg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx88513c81-9e2a-546d-021c-c43b441c73ff" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx88513c81-9e2a-546d-021c-c43b441c73ff"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dJhMk6Cry+kaJ9c3RKscZBm4v78=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YEgVdqUZTLdGseFXDebiWJ5Hmcx6W278JUYmXMvk+wz3es0TesPg1XAxQ8iHCX6QuZrizTmZRMxtu97CXCpEjmxFqOY0VyHPyDNaYddalVZCzivKq/3QJMsfvfxy9WJfKw4smEaVcrxbuCnoHb3Rjn5JE3h+H5Q+os4WMzUyMyc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7d422674-1c78-8109-9e36-aafb8e8e2600" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7d422674-1c78-8109-9e36-aafb8e8e2600"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>fDtf5JEWv8LfTh8EwPYJ1buGCUw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JlbpytN1Zi476UdzWj3/2fV7qIwzMrvZx/brfVTL7LluiXYSAtu7GCUzMvFbghfdfSNn8wNzjDLHvHN9RBEnbYnZNjUVXzQNoYs4TE9R16HFYF1GkpKPLTtuoaQ9+GWO5c6057ZDZvYIJh2eOqWv1lpvrMLoR3Rq9Rw4YUl3M2Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>VX8RpnYOB1pSDhia592cBWUb+jxPTHo2cJRJOhyo1JLTdgh050nCiENi/7QHLeEfjTifZn+hsWujwey6Vof/XcmFjXLvFKaHrwLftNVLH4APuURgzpUAElVaLwUZyIQrA4A4/SjC3gBrtYh+4qy5tNq9m5M0y8u9JU94dhmkVYk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>3/WobGcwQrhnQZXSyHlMUMaLV4pFjmnkXFaLeupGUfvNQqU4gNmj513JaoTiwR1BE+Xu5mJaYZyVYRddzuyocxsd4uLQCwdaW6kHAnPyGUwe4sqa0eHz2h69J8oCyR7v7bi0r/DujYF78NV8K0JwX6DNXJxcfSbrTX/2thujf+J1AT3D6xKzlT3+gs5QHKA3vqG+apZCeqR6adA76dkc8Jih9BgBdZedD0OsEwN7Pd9+Y+E9GKkTozmZIWNf1F1FCC28/CcEXvQrLnJaFGi2SSrQFWdZafUdYAsS6uM/re6y0KAf6dqyXk6TUHP9siKRzejwfLYj920Z40K8htJaHZPegNKp9ZNGAuXDNn5IaauN5fOf0SwnWY0TJUDtNDna9PfV9zvOjqJCo+Y42JVGYCEPCf5e12h+WC+6NoV0FqjEXLu7Z8bkKX/a7bn5sRjx7vQEoRWCkKp+UKXkh+oAiQKr3m76E/Fug2yqnBoxmbNOA+S0lADFGN38K2gVNJkdZdE2vF9k8Pk6tNxQsRX9asSf0MO8op4M8LCiQW9B3O0NgsmEvO0kMleJqjlSqcNiFgi/hwSqy0C3uG6nlxb5gpspyWzQ6+MUMsU/CLn5o3D07+dzDO15Bh9CTuLND8sE4KNdLxpvhecaj9UOCiI0tkItTCtN2Lq50pOQzbgsEsvmGs9GOWBSekaJzcyDPyXQfPsxJgIsw7q+lLtmQO75wXEz84Ve5LyikASswAA78MPZHH4qJVPYMlxAYqJaaa2im+Da/nMtiAfpTe+J/zD9dYFi4VxDXKX4QvIsFICLt2ceKSkLuK4bU8fhw11fjObpxAPZvrXAu/CRRh56TD061dIW9/kUG0gubnHybauhC5IUlvS2R4nL4Jf2C+JWc5bMrW6h1H0UAydIz3pd62u8wKL5iQtwl3ouyMzYKlxPuEHwSl5Hk9IKfcAmlxDV6EquWbwI+yf3Kz1EeyX0BNKRo9chIJDfzniHL0dwfncRRHl2kcrd0vLW6INxdOybVzYrP7J1OCGY37MfvB+R4oxMa8k1oNt+5Yv/dahzF/3gZMFPN36ct1l9u/DgRuroXPKmRgCKWkae284LrdF8VHaz+ooSH08jlIDQdsQPf2UR9alNmUuYVhPmd2NH7BKclY4x3EGkH5aJElnGkRFZquTNsHVHX2Qahz+BVqFiVed5UhAL1m0TVnJ4u/EECbOgj7BRVj9MuioyDH8WoJUeAnnF32RsxxJcXPvQZsjuJ5wIXgTd36GWSZlMJrPl3rTz31St6JCDUM3nET/3aV1JdqZOwPpklZyBevSTMRG/iasBL5bQDYTJ/AI8uQ02w/qOD3kLVWaUCwPs1WeQMdDukH5RvV/qsaxm4r0KgnnngfosLU+SPhr9HKDzOIEW/zomT3R2n44qXpN3IiWZrXZScp9Me01N6/C5CaGF/x7e+ZoBEtx98+hqu3upMB6fl1JwqnpA++4UpgfWPMkGeEkJgLBsH80NVn3cD0BSZSrSpo/D8Zwl+EJewhh4miQTWREetWcQW1aZ0iRSVVneZIxm2QlGzCze3hl+JY4BIPcCHWreltXzuHpzyDSDLNrs0XpXitxPoEJ4QNHQxJ56GIZGiqHzK0OjrfZEveuspzIAcvZR5jZ75nLweCrMLK9JOkKKnYJnRmuYZbWZVSaKnnEzbLNazv5e8tHwwBz613VZhSJAwgyMLJfJLq42q+P07AgVfgqFywsIPFaimNxX1+FYAp3cx+XPpSFu/H1VSXcAgBAZf6ev9hl6cRdqbFeOLNmwrTD4FNjLNJEHFGRmWV+sscqq2cnHkgR/Hh7XwomHGo1WTHqPEWND4QvHMFWdBcBP+DBbbvN4mveXyM+I70Gb/NUxwTvaE39fGloigF3L+7lejwkpN1cJHGalx4sId7/M1QqD78QRg3NiBmvdIAbv6TR3qY9SC4nb0XkR0LwZvz5xLdOsRUN1sLwpdrbIOx20S7sKE8pUZdWNU3e6BjSv2njcua79sxkGahXKa/O8JnmK/Iq5drXVuMS21J3BzBd1DOroEynJUyiSsmPthyKS0yqq/nMs6mRMFJnl+ndYb3y14LIWNb7zt7yfyIeZrsh22g8zO/FnULZEMjGe0SSRXqAu92OqEiHk3okplq1aV+zx8otc5WXdtcp5F9vSwTNZLbnan53DBcLby7plk5ghEdruidG/jc6YzZEwNokKLr2J3yIlcllCWh3H8TYabvyct8qRQh4SeDenaMy4ijClrhaB8saAPuxHdC3nJAMdx1O+uczBXqwZv+h9y+5/2xGucOr52SlF5+0YKWY/iPkFxHuTLeCzgR+mMR9EzhHChGmYRuGmhTDPSklioOmlK0khghWnuK3XVH+KsEZ2jWxAad7vOHuYheMXIRhmWlpmwGfuMtXgmu6P3mS1gLaS/Jwerc+pU7QRNt0UMZs/omB0zbjuZbyej2Kls7ISUvCaM1ndW8+mJ585rNfc1pK0o1l+3zZixOq2gbnZhVa2bMRAnYMtdhAIVtIGWA5erUDlD+678EdEOmiONNTewAlLfAy9QxkTRBZaBBfogv54SEud9hzY/B+ccw3IsU0sYUY55PIZabQiIc63ltqtuTgl3g92JdxKftiEbNJosYdpyUaXI8VHCdkIc8LWWTtI2LqMvqcKs1/kINgRdlWEKaNP3zTwf9q6WKu2PKHXZzGEPILFHIThUt/K7hOZkCzZ2DcSUnhHtTuLX9B34yUogcGMWmmVKuCa+9ijMku/AWASwuNkOh1Ongm/i6EZsCWaZnGj6SML3fIhH40kAEZnD50eqIExzSnHIswRUkV5ogLn8f/xHMB6HkU5el87Ho/6smCShl2nzz3HLbgTW3WhrnHxTkvYpR9Xvh5WJPTo3BZO5hWn30KYAZkZSbplrFSu8W8LlWyEk7Y=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WrnKKcpAKMrKdVjke1p+ggMaqHZTikuVruPFX7UXSxo+LLaYejV6B64FDf1rSAOr39psEv3rgr+G3AvTqEzMaq85ufhOTvpDIHSgfVJJx3AzueJwdvbcBPIlSODmcAUyVCA3TK0Blw0q+RtTS3rSVfuiS9LAAxco4RFbTXX9quo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7fb6cec1-5e2f-a053-fbfd-d1702869f9d6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7fb6cec1-5e2f-a053-fbfd-d1702869f9d6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ig6YuUekUpsJ78FJozsGbHsePZI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WBATSjBvknnHC3sWsjRqJTpmbmpXm9tZCPzgM2nED8UEoC39aM6Whdcl5GoNzTbfk5NT1D1Cy3Lmf29VC5oDYbnN/z7/+HwgvA83Rh/vkHZn3Q0E5SwSj9NZkmOl/zzpcIoGKhezTdOObBmXB3CPlzOy2TTnxThkvNIoZ6BgOsM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>VX8RpnYOB1pSDhia592cBWUb+jxPTHo2cJRJOhyo1JLTdgh050nCiENi/7QHLeEfjTifZn+hsWujwey6Vof/XcmFjXLvFKaHrwLftNVLH4APuURgzpUAElVaLwUZyIQrA4A4/SjC3gBrtYh+4qy5tNq9m5M0y8u9JU94dhmkVYk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc51b633d-bd07-d035-7c0f-6598f2b06e6e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc51b633d-bd07-d035-7c0f-6598f2b06e6e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Rubyi0SAwhmK71Mg1n+Arx4XP98=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RF+cOSjFAM4GeMDZW/X2OPewwLoQ2Aq9jJYf2GKmOh0ZOqtdh7dc4IDf96N5j/luoAGvO9a7vUcegkUasusbpnoht1M63rQoAqHq/At5SYxNT72nMaDPGRkR+KjG18UI3DMPMf3fjpUnylF15PKhww/sxXdCumZnBcPHAoQblxM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WrnKKcpAKMrKdVjke1p+ggMaqHZTikuVruPFX7UXSxo+LLaYejV6B64FDf1rSAOr39psEv3rgr+G3AvTqEzMaq85ufhOTvpDIHSgfVJJx3AzueJwdvbcBPIlSODmcAUyVCA3TK0Blw0q+RtTS3rSVfuiS9LAAxco4RFbTXX9quo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>