Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx241c6cdf-6aa0-ce1d-5709-fdf36a8414b9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx241c6cdf-6aa0-ce1d-5709-fdf36a8414b9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>CqEsD49LaRncDYHTCMQSP1jVaXQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>D2zynciFkskVLJgxX8ci7yFPzdYwxrTIkhfYkaeBXmxVRFhwSCP6cJAIJn1Yjz2QIAxO8frW4NnF+JxXU+VCG3awY92pgCnk2eqkZSjjOrnbBl7FtgsyS5HslvEb0ZjYJ60Kgn26ozEBTzsJeGqB2SRh40vjN3G+ZmuKq2cIA84=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxafda0de5-38c1-b781-6579-fb7583e96c0c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxafda0de5-38c1-b781-6579-fb7583e96c0c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1WHB/+BMyeNFDwG9KBOmH4N5GKE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Aj/rEzGxMS2ikU7UlkxqVj0y6tx3yIwCsrRUJ+47CIgVu3G9+iIIYg5Ii33mGULO2n6+XwIBT9guLgeujuVmMHeY8PtHW6JZfCUhbJF2hO4oTLnArpw3PlIVV3qD36ZJ389eGdwTVz2lDC11pfCFfVWyGwHMZUgK4Ashhwno5+w=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8c1f658e-c2c0-1a8e-e675-0a3f29270cab" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8c1f658e-c2c0-1a8e-e675-0a3f29270cab"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>uqFcFVv6t/ft7Qoa/ZtZfqubzyc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Qo50reeojO0PKSBqYTzGvhXxPwq8iSXkL02Zxl5PdRUJyx6VZPnr68c3zYa7Mz8fOMPaWhN5vuqm5a2zVyq+JzdGHt02YGLdvAobfnz/pFfoCyT+7DZRxggu0yKzM51KTXw4HYIga+jTr2BJ2+WqdP6GgUV0t3XvRyK8sxYxR7A=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx44defffc-4af4-dcc0-953e-2033bcc6cfa4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx44defffc-4af4-dcc0-953e-2033bcc6cfa4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>H//W5bffcdsR/TEPhQhCgNLEuRk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Zb/b87b82EbI/uYE0nDKfkpCaLUiRAQ+6CiDbBSw5wSrLyYbDQ26aPzPDjFal7pxGMnnpuQdIlLo9NDRB+7DAFBOkbWB1F/9NlPs45g2PJhbKBMQrMaZW4xW3DXR+U2IGTj0P/aVRVM+151KJ5806Jl2FM/vIQ7UzHhLzjLCOXk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HnWzEzLd/S3r2lm8y6hTmeEsysBWX+o1VvesDgJl9SAfuhhpWKiqsOXyP/eMhZgCi2Jhp1CbGQ0VGRdaGhWT8H5tKk0CDehOB/SnAcS6u/2hLPQEFe5DIv4fGp20WBLH0lyUVrdb0qYuHzDiuohI7djgZw7HSF4tf4tAHdqKRa4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>IQA7eVCtRdxuKGJbI6c9MRG9q7XRfgU4GBhzNf1IstehMKYIt1FwLDc8Sga41OfopSV9xpCN8MYV8Pu7hVXMa8WJgtsyJbn1ZYWjwgxlkzFE7Mna09RtHR4xTLjGGaM4Cl3ZXm/Um2dpH6F4cBkEI23HrFPvCE01NzIc3M4z/NQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5e0fee39-1292-f8a4-eae2-53fd8c9694ce" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5e0fee39-1292-f8a4-eae2-53fd8c9694ce"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8YtFXPaS9SUCKgesVjUZRixlTOc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>2Sdy2pajA9ABhyJtEc3J03nBODJ8BqpMlVrS98f/z2ElQDwD1gzjU8XEdU6rOv74M/y0x8suAs7cy00vX8+gP91rct27wyTTyDdTBdg6BrXb7cghhoyCwrw9ALuqJnipMTEz2n50reYgDnNVOWEeQC997Pjf3Zl8/XtIBwN6jH8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HnWzEzLd/S3r2lm8y6hTmeEsysBWX+o1VvesDgJl9SAfuhhpWKiqsOXyP/eMhZgCi2Jhp1CbGQ0VGRdaGhWT8H5tKk0CDehOB/SnAcS6u/2hLPQEFe5DIv4fGp20WBLH0lyUVrdb0qYuHzDiuohI7djgZw7HSF4tf4tAHdqKRa4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx18cd950c-5e4c-c645-3225-9c835d1ecd47" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx18cd950c-5e4c-c645-3225-9c835d1ecd47"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cYPKQ1Nybb+9RcaOJWQR1JD4mD4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FCUJXvXZUjBXyx5vBsydlaiTrvOdr3X4tlgCC74WC8vqYCxpe4VWnmSL+zI1+ZI/3jO86ACI0xQzw8eBOldBPEneZyWtXdJ2zqr6OPw9U6SQvNRNaxV6gijRSE3jg4cyUK6hE+HemD5ExlHiHkxOxiXt96d1pd2yFtUJhSBYXO4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>IQA7eVCtRdxuKGJbI6c9MRG9q7XRfgU4GBhzNf1IstehMKYIt1FwLDc8Sga41OfopSV9xpCN8MYV8Pu7hVXMa8WJgtsyJbn1ZYWjwgxlkzFE7Mna09RtHR4xTLjGGaM4Cl3ZXm/Um2dpH6F4cBkEI23HrFPvCE01NzIc3M4z/NQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>