Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe6af533b-a07b-82e8-9c1f-7b81782cf5cc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe6af533b-a07b-82e8-9c1f-7b81782cf5cc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>w/BnFZJcXsM5JoHE3x+ev5zLHXk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ilUoCPbn+r3oT50Vdm2/x1D+qhjYZFu3Og2L2pMJXsyQH1ZB4dVdyu+WFrxS5ALrj+s+f+Sjsp8goZVdg2E43oPM0auilUJ2SgRhMSgqgJVaV94x04RkpN+fQvmmJLkMEXXMYsUVjtP8HyN5+xNYbATfLm5IdPlVzgRaijb0PHU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1180ca3c-4d0b-0c0a-0c24-3f99797da891" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1180ca3c-4d0b-0c0a-0c24-3f99797da891"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>MH1a6RcohHaZ7K92YBLMmy2G7EI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Zv5GFrikUp6CMX3RJO+a9skwk/TfIqKJTHT+ctRzH3BPRT1Ib7eDA0OHkGcCDqa2+J1V+xGY+zIocfmmU1cQJGw3DDTXXSiIfSN0RmpMwrwgxpD0CRklVrol3lkhH13lEpZQBLUZRa1MbtRAkGjpzrRMoA02OzbuPY/sSL9DMy8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx839426b8-2443-2722-6bc3-08ae9c96d0f8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx839426b8-2443-2722-6bc3-08ae9c96d0f8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>adOqQYrmbcX55jVdp/Co0YGHe88=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VXnrOYrCHRiiZLsz7cTFxZtJtGLLWeop/JYEBH9YeSkYHYPeSgPWKoXxHZYxCVK8wc5Q5WkXDxARGDr0VcC5d5pNI6qahKpKWL/TqWumoQYZiZ/ua5wkzbYfbO8xCJRcaEY6UBBSor8fpk4DsbixmSEKW7vD3NAaUS8q8J9Q8Fc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx90f24bc1-776a-7bed-b17a-b3461113ae74" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx90f24bc1-776a-7bed-b17a-b3461113ae74"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9c79e3mCOVN5ykPKSvabLofJ2K8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lcw0BTB/vU4fT6r/RvASI/OKakTtHYrf3DwwwloeVIVyFtluJiCUFcWhkLISmBchHkfuSHe+3R1CRUXpGdEKAtLnGMug2mFDGxU2KXPTB0AfDNUQMm3bD3qQmRp74yaTN/WZ+6U3lQaDjWFaPaO46f7p8mZEl/az5Ic68G8Y/os=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bAMavHCfx+3WjeEiKicy+kpWellTw9ndbng+ZYKkaSd6RaIHi0w7nCIMv7013rzrjJAcLpNPTuQtBXj9vMty28WO3AWzQIZv34Q9bQZa5GKlI6sMeEjrLDKLfe8NasvSERu6zEPi69JjuSMqcPeZAhgg5G8ePnBy9+2ROi8po18=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>y8NJzMp5JvzrNNpU6FiO+b5QGAJH5pzHG6RycJXtYJJUxUiVfkWnSSvTgnRlTtDuHGo7LGLXQhGo2Ci5x+MKYHdIUj4ZqK0BylATDDEtGhiBxS+H2PM0kKci99xgCyDdJ9yW2pkXZlbFhkWC+rYgCaNiBjLye2wGE3DU/ebPsyNXoltfQIoxL2QBSznjxRqn4M/HGVsNnGMRgoPQFYGnVAKpjJK8sOwdvk2WnUu95/1b2/vLGBoyl6R3OmRIvupHG5zx1SgM0tFXV4WIhps8D5dhAObMmlUm5qLdbVCjUnjuNxKqTjHD/mkdJ1USO+9o92bwWXM0wnGTbuebbWtuOE18l4b+KwYNVhldYTecHVlgD594xmfb1uLjAKiOp+uXMu336b9GIS2EKCg++zDZ/xL08HjXhKHNwHj8/pduZ9VuR3Yd5GL0W5N7XYMgJm25m/VvVyT8waP33hjjhV7dncYdJpk5iYEOS5uU1PoBx2Bw4AsZF5QB/hyzze0K6Yt8FBuZV4Dt2TfQo8Kl/fSY4UaW89UE0VqaMT3epSDj/6j0RA/zKRInPiZIqs55bRXX4BCMgfy8vmEYfneVB9kDKJls/3fjiLHhZTttDtNhs/8HsVYe83OrPNtSAL5Xun5Oq1QriDGj2p1YfrTe2cIaqy0H1VObf6R7hTC17lnoo3S49n2ld52iKWogY04yklFI2nuFoDNaal0IlrAomSXsSRfiOLoFVxz28oehvmetxdWfzZuTlP1j/vmckph2YAvn/AgddS52gVhPdPKMOKQgz7dPBZG4gvfH7XmTti0PVyu2CKLNxEtcsDRsN9fWca4kqjE+6ylRH4TzTC6P12GcNwhnZYsGWx+Cw8TchZIodpHLPx4OkKawbpU9YXwBaL7mNAVhpfdu/wTkFx4BRvGI1b15A+YkFo7sFvCRr/mFAcVPSsAR5i8IcsHMejPpv+/3+Qth9i0YJi4/XwixaxNhW8N/tmvmMQx3ji5J7/H2teIMATW9a1/1a0Z4+7HhTQKbLn2Icn0aCxmLnChKnKc3a19alcgcvpNwbO+tgviJ7uhUZDuP3xEBZMte9A5A382sEE2xaWgvqKUba4ewfh/zMzMiLg5sEEiSji8ExUobo2vbC2J6QUXYtrunHTwBByUG/ZpI5BAcnCqk/o8qDX7T5+gKNXKgNE+WE/fbG9MmSj6uh4USBiEFwq8fsFewDdnNroNIbs9yLQMJYzvHXesi57+uZ8YEwO0n2tUcVQkFX0HMRx4cCg7Md55gK2Mr7mGBkmrwa2c8AtGBOglkZdLkRbZ3Yx9nFVmKtgx5XXELLJ8wd/s981IlD+VfSNl/wgBEpk1WAVuTGdJq2zG0zdHCFE8B/ooef5dBoJF66OHN6QicAdnJjKkDhXI1B7gpNj1gmNe9uCxWdBP8WZYvhD1lA9OQSb4k1/Lo2S7X3MyZuVBjXjicTA6agHoXpIPJD69z9kA/L5n81GO+UBZ0XHIg8t0blo3TGLHzHJwlV4H8BeMmEkOIlTEjdao8eKwZyL7RYpfxP9+EAMkc9NLAnoCd2nfs4gpy5d9JsK24bhm03yPZYMdkLPCNwobbgiqERDRlJFpqCkQCddl8ef8x26Fo6CSMxebECdF3J02KEcYKCdVrBPa9/w+wUoPyh43lQLwkebi1Nl327Xc8IqL7XazFa0iBdb9LY2hyzNVoa1c/3bKBB6q+SR0tJj3EOFMLCBaUUi8WElfrsfQDXNCLa8m4oja8E6YxE2IbWd5piPB+YL8JWNe2OxNxYF1HaLRT6+MdnVzagFZ/ta62h2lo8i0Ries9RXsjBZ5zjvH8u+FYSiUlfI82cBv1XswdDKcbv5bCG7oI5GXxrA2K+XKoduGEd22F/uyt0ks0qGfcN42J1vufVU/dYx6c/HP5Sx1M8pCexgqu6knlQzDsKmlqigNX6R3lGQk4Z5CdT+vBZlSE41H5Ay9gqqiWJby8Vo3vMhAgI1P87AvAeCU2gTDdqNgqJ1Y96ngP0miowuVtpI1yMbqDZFPGMDPsl5Zk1o7QD0+ZRgMdbyo2ZbnZO8ZKipc5ldPqGfH1GVRsvVImQuPhSDiPtvvXD+ILRLhjfdJriqALGoNHFbihC87MF4fWUhDw2w/YdVO8N5A+bTU8JLClYImRef3LhZhE8N80P3OL54hS0geFb4e+Dg3oxDeRKdDGfHht8tF6o1JFROGHGLnTdgeMemiEM0GxkdAP273nGxr9lJjsShBll0AAmznQSdKy2UHAvwYHVZkW07mPj7NhkSI2wBeYWs11hc2hoyN5dVGXAL1W17QT8XC7sd40mYS0El9WIFw/VtIrPaZmXHkOZ+Ke271/ZX8UD9PyT1YcdTEnDDk+hFBG7XF61H6uX6ew56LdQG2rjiemFlcgvJY0+BR4W//y+ha5piz1g3FKS/0FRXirsOJdWqgokpNKrNoIvgne7liNTEggpPwId9SBLSYaOclaI0dOdkBHPFOmv871/D160ulnpV+c/FevmgHzanNO+M3X2hczNOLgvYX9pA2GR/qunXlJGMUeAOH1fAMiO/yE54rZu271vBVk8/XX8myyiksp3n7F2PEKyYRzFZ6SaZzzuE2+oEgDLkntMu7pJM3O1U+MHXtrSsWfJ8oEs54QVHzcPsgG590+gTJtOGVtlv3pg5OM2BzPhWt/w8lvQafiaZjJS4C5yI31DK/ENKGZEeh8So6GiVQKZq1C0jMXgBlH05uuMzHk5SKHqYVXavJ6aN7aMRL1D2g43wT3iN57pPpB0vy0Z7ZcucW8sdmq6JhS3nA5MXkQIoBSoLeYUxxsYm+VapdBCEITXcv17PwXQCulFqKjHNFKMxZRRWx49gV8AQhw/rRzkocn9++UqhTryWNfxuGYzpzvmF6Hd5yRQfllGNS+NDTJGnDgBAI=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>JI1lkzkQdAwnDoCg825vWtZDvXo0dxNVZJNbYczLkEisEydf0+GIlznlB+WkgDq67nDhpdruFN23GykE3T3b8tTDafY2pBr+cfKhkt5b2s82ZJEwTSkeuMG51ef7HR/acs80YrrqNyLqCJY7siiTCjLxvT3dJT/MCM5d6mkcKIo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxdbcbb038-2ab1-8a7b-4d62-19493f2c7dac" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdbcbb038-2ab1-8a7b-4d62-19493f2c7dac"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Zu30zF7z4aI/cJgfN5hlQ6e4FU0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vcGq3QxhRk0SqZU68f9io+Qp1KauH7L1PIVTL73eOpkqpBctecr4TVKlcYjZeh7WpNiUdMiLz4TgTMyi29IY01rmwjC2ftdyRIBDujcWWn7zq9DQguOnKGlXyxw1fFyLxdnfbUyD+1Tcnzn36RF7YbQMyHwnJjblxJeUf3scGc4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bAMavHCfx+3WjeEiKicy+kpWellTw9ndbng+ZYKkaSd6RaIHi0w7nCIMv7013rzrjJAcLpNPTuQtBXj9vMty28WO3AWzQIZv34Q9bQZa5GKlI6sMeEjrLDKLfe8NasvSERu6zEPi69JjuSMqcPeZAhgg5G8ePnBy9+2ROi8po18=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>y8NJzMp5JvzrNNpU6FiO+b5QGAJH5pzHG6RycJXtYJJUxUiVfkWnSSvTgnRlTtDuHGo7LGLXQhGo2Ci5x+MKYHdIUj4ZqK0BylATDDEtGhiBxS+H2PM0kKci99xgCyDdJ9yW2pkXZlbFhkWC+rYgCaNiBjLye2wGE3DU/ebPsyNXoltfQIoxL2QBSznjxRqn4M/HGVsNnGMRgoPQFYGnVAKpjJK8sOwdvk2WnUu95/1b2/vLGBoyl6R3OmRIvupHG5zx1SgM0tFXV4WIhps8D5dhAObMmlUm5qLdbVCjUnjuNxKqTjHD/mkdJ1USO+9o92bwWXM0wnGTbuebbWtuOE18l4b+KwYNVhldYTecHVlgD594xmfb1uLjAKiOp+uXMu336b9GIS2EKCg++zDZ/xL08HjXhKHNwHj8/pduZ9VuR3Yd5GL0W5N7XYMgJm25m/VvVyT8waP33hjjhV7dncYdJpk5iYEOS5uU1PoBx2Bw4AsZF5QB/hyzze0K6Yt8FBuZV4Dt2TfQo8Kl/fSY4UaW89UE0VqaMT3epSDj/6j0RA/zKRInPiZIqs55bRXX4BCMgfy8vmEYfneVB9kDKJls/3fjiLHhZTttDtNhs/8HsVYe83OrPNtSAL5Xun5Oq1QriDGj2p1YfrTe2cIaqy0H1VObf6R7hTC17lnoo3S49n2ld52iKWogY04yklFI2nuFoDNaal0IlrAomSXsSRfiOLoFVxz28oehvmetxdWfzZuTlP1j/vmckph2YAvn/AgddS52gVhPdPKMOKQgz7dPBZG4gvfH7XmTti0PVyu2CKLNxEtcsDRsN9fWca4kqjE+6ylRH4TzTC6P12GcNwhnZYsGWx+Cw8TchZIodpHLPx4OkKawbpU9YXwBaL7mNAVhpfdu/wTkFx4BRvGI1b15A+YkFo7sFvCRr/mFAcVPSsAR5i8IcsHMejPpv+/3+Qth9i0YJi4/XwixaxNhW8N/tmvmMQx3ji5J7/H2teIMATW9a1/1a0Z4+7HhTQKbLn2Icn0aCxmLnChKnKc3a19alcgcvpNwbO+tgviJ7uhUZDuP3xEBZMte9A5A382sEE2xaWgvqKUba4ewfh/zMzMiLg5sEEiSji8ExUobo2vbC2J6QUXYtrunHTwBByUG/ZpI5BAcnCqk/o8qDX7T5+gKNXKgNE+WE/fbG9MmSj6uh4USBiEFwq8fsFewDdnNroNIbs9yLQMJYzvHXesi57+uZ8YEwO0n2tUcVQkFX0HMRx4cCg7Md55gK2Mr7mGBkmrwa2c8AtGBOglkZdLkRbZ3Yx9nFVmKtgx5XXELLJ8wd/s981IlD+VfSNl/wgBEpk1WAVuTGdJq2zG0zdHCFE8B/ooef5dBoJF66OHN6QicAdnJjKkDhXI1B7gpNj1gmNe9uCxWdBP8WZYvhD1lA9OQSb4k1/Lo2S7X3MyZuVBjXjicTA6agHoXpIPJD69z9kA/L5n81GO+UBZ0XHIg8t0blo3TGLHzHJwlV4H8BeMmEkOIlTEjdao8eKwZyL7RYpfxP9+EAMkc9NLAnoCd2nfs4gpy5d9JsK24bhm03yPZYMdkLPCNwobbgiqERDRlJFpqCkQCddl8ef8x26Fo6CSMxebECdF3J02KEcYKCdVrBPa9/w+wUoPyh43lQLwkebi1Nl327Xc8IqL7XazFa0iBdb9LY2hyzNVoa1c/3bKBB6q+SR0tJj3EOFMLCBaUUi8WElfrsfQDXNCLa8m4oja8E6YxE2IbWd5piPB+YL8JWNe2OxNxYF1HaLRT6+MdnVzagFZ/ta62h2lo8i0Ries9RXsjBZ5zjvH8u+FYSiUlfI82cBv1XswdDKcbv5bCG7oI5GXxrA2K+XKoduGEd22F/uyt0ks0qGfcN42J1vufVU/dYx6c/HP5Sx1M8pCexgqu6knlQzDsKmlqigNX6R3lGQk4Z5CdT+vBZlSE41H5Ay9gqqiWJby8Vo3vMhAgI1P87AvAeCU2gTDdqNgqJ1Y96ngP0miowuVtpI1yMbqDZFPGMDPsl5Zk1o7QD0+ZRgMdbyo2ZbnZO8ZKipc5ldPqGfH1GVRsvVImQuPhSDiPtvvXD+ILRLhjfdJriqALGoNHFbihC87MF4fWUhDw2w/YdVO8N5A+bTU8JLClYImRef3LhZhE8N80P3OL54hS0geFb4e+Dg3oxDeRKdDGfHht8tF6o1JFROGHGLnTdgeMemiEM0GxkdAP273nGxr9lJjsShBll0AAmznQSdKy2UHAvwYHVZkW07mPj7NhkSI2wBeYWs11hc2hoyN5dVGXAL1W17QT8XC7sd40mYS0El9WIFw/VtIrPaZmXHkOZ+Ke271/ZX8UD9PyT1YcdTEnDDk+hFBG7XF61H6uX6ew56LdQG2rjiemFlcgvJY0+BR4W//y+ha5piz1g3FKS/0FRXirsOJdWqgokpNKrNoIvgne7liNTEggpPwId9SBLSYaOclaI0dOdkBHPFOmv871/D160ulnpV+c/FevmgHzanNO+M3X2hczNOLgvYX9pA2GR/qunXlJGMUeAOH1fAMiO/yE54rZu271vBVk8/XX8myyiksp3n7F2PEKyYRzFZ6SaZzzuE2+oEgDLkntMu7pJM3O1U+MHXtrSsWfJ8oEs54QVHzcPsgG590+gTJtOGVtlv3pg5OM2BzPhWt/w8lvQafiaZjJS4C5yI31DK/ENKGZEeh8So6GiVQKZq1C0jMXgBlH05uuMzHk5SKHqYVXavJ6aN7aMRL1D2g43wT3iN57pPpB0vy0Z7ZcucW8sdmq6JhS3nA5MXkQIoBSoLeYUxxsYm+VapdBCEITXcv17PwXQCulFqKjHNFKMxZRRWx49gV8AQhw/rRzkocn9++UqhTryWNfxuGYzpzvmF6Hd5yRQfllGNS+NDTJGnDgBAI=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe5d9a235-2c06-7539-2da6-c57409e08921" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe5d9a235-2c06-7539-2da6-c57409e08921"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>657x0MjVGiXuL3eM9nL+E3kkT3o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>1tgW2cbGLrngquE1DDK53mv1vUL+t+MIdHlpfWj3zDvETZPsk2Gpfp4wedf4pf2K9IZdssaAuK72qlwVXv8jfF39KGi2xFp2QpZ8hqeirZPWnsXar1LQJ8+uAeJ6mItiCusX85sOGD61OsLDUjZcJYW7X0YYpe6akxluCvJflCA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>JI1lkzkQdAwnDoCg825vWtZDvXo0dxNVZJNbYczLkEisEydf0+GIlznlB+WkgDq67nDhpdruFN23GykE3T3b8tTDafY2pBr+cfKhkt5b2s82ZJEwTSkeuMG51ef7HR/acs80YrrqNyLqCJY7siiTCjLxvT3dJT/MCM5d6mkcKIo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>