Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx60633664-349b-5daa-745f-1ca8ccf4df56" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx60633664-349b-5daa-745f-1ca8ccf4df56"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tnD1EQLZj7KCjHk2PihHxQCUENg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>I0lE+aRshyuQHA8KZxj5lzvOub6wGl88f+d9v47O8FM2sYQsbqRwBnJ4YJzeWL8t6CiXKL+gPmEy/ch67NEmHDDZOXkzAo+ZjVsrLv7zA8aD5Axoe1t4PFqH9r50CaJeM0ldLmPw9+luRoaRQsTdVGoTSMYU5EVTCbc+Kvz8IwU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxec8ee4e4-93cd-9ef0-056b-20c085afad8e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxec8ee4e4-93cd-9ef0-056b-20c085afad8e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PBYEDPYKdeEGRyhC+U0oA/j02sU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>l8d4lfJv8AsPPbQYY3zPRCQyLKleSWy+u4dSB5XfLCf8vD2hQJNZ9GboCDT6w7ue+OE6L+l5BrQklLOWgpo6c07rivqK71SEaah5INwt3JBqECTTtibtjoL2u+eeCTYjj0fg0GSajm1x8Esda1NUv8pGupHR+5dHZ6k89O29H+M=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa2f06b7e-db1c-bbbe-e1ba-cb07094a3c06" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa2f06b7e-db1c-bbbe-e1ba-cb07094a3c06"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8JQCH2vV+plVn8Km7jAurezVZR8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vMWgLxuTF/7go4DmxOds7hwFeZcZ2rt/oK7F8YXPuaPYXKx8A2A7+iJczRYeg1MNxZpoXrtz/uY/8d4gXHtAp5v5gVNRoYjhWQTL2wGl7Kxu1Vy/lxx6KDh9OnARIL/qCmeBbz0RVhCrB18+lPWJJyvG/i06LEvjR2cnhV3Qv7E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx5dc7446e-29c1-873a-8f06-0dcfc2a263a4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5dc7446e-29c1-873a-8f06-0dcfc2a263a4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Tm4RZI5rnEtN9Hyh5lMLTQ7rSLk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TE4hd6fUEdnfMbSur3hcBvIqjBQRd92cWSHNAtVWTfPp64b63USPBauTZtCyNy+nTWKiRMNNdkOKxAeEdBfIXtrcMJUuzBDfDi4MGmEF0QkotNr9y7BYTj0r13wUto7o8K/XDH6+pJ4OiXIRFgReXICOpwVqSCfp4t37VLA7Za4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bQHL/mz0Exd7iBNbTRIMS89kz2HzGtqkftAIC6xfzSZkcaG9zzVDZJd/+Mjy3XXqxEQK7wgVo7P+S1zmFbkETCgczC+5yMZL/QN6VlbWyfOyiuj17f2H/PMKgCfM9AG8yCvxGfmyDta8HkMV91smRjrwCQR37PGAY7Yj4OCMl+U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wpxe9QleErnm/qbZ5i0OnfW9ctu3qsmjrZEG9itrWCSh++lX0bgjfNiKkDs4Zc4Q4HIh78nIxQdsam4BMbj7GfFtrfBt/bjWI4Xa9tPjcCrJLiML4HUUg3PjdVcYfx8J4+IsJSDk/fQDQGaDmAH/W5U2tDeWmh0qPh3SQuiqkT4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx28155620-9ccb-1224-6e77-146fff0c0d84" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx28155620-9ccb-1224-6e77-146fff0c0d84"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lvEXnKI38vXZWIVcKiu9mPUeqY4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hXh+L9AZ5wFCBc//rV+XYebqW8x0LrWsWSggZZvsGRyEYK5rNSiNl5D6rDGCSKPBwVqJGcrkkFGaUbWepwgpRE+lhpXjjVFvWx8mNqiORDlbYN5rF5h7G+Kia1R/HtMDXB7HQYnsba6Np2hJ/uaoxc0z+ns6ccY2sFy8cWuTtBs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bQHL/mz0Exd7iBNbTRIMS89kz2HzGtqkftAIC6xfzSZkcaG9zzVDZJd/+Mjy3XXqxEQK7wgVo7P+S1zmFbkETCgczC+5yMZL/QN6VlbWyfOyiuj17f2H/PMKgCfM9AG8yCvxGfmyDta8HkMV91smRjrwCQR37PGAY7Yj4OCMl+U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>fNKezzAZ00V5zvPQ2+qda6UmFGKuY5nDsJiq3035MCWgnjlTQnUS5g17yO3ybSzRxBWV+ERj/PtIxwLed++RxxT80sPvwH0kl69+o3mdWjmQXaIM13K11fEL5fKZsL12qRDb6dLlqrGUApYLMhLP7zWQZY7CvcKnWlMXjorPLjywSMqymfYem24z98hvxhwLOzTJ43nc8PAazb8VLlVMUa2K+gWhLCYbc1xhkpar/2kCB6GdMPRXSYQwEQHkETpZMzPaBVsk4e+c6E+uCnWfB43Z7fNtV9KXYlgyQ8Vf9yQBOwnUD77G6D1SFGG9Ukc26zf+0UefhrtfJC7xV7VCmMF7jv7k8BiSsUk1J39JUvvcWHwA3rqILuUpZWlS0LUdsWI0lryn1tACOKMP3FDwvcpLAeLLwXeGIXXC9Alpodm5BJnthEBNm4PW5asl4rEqflGykZ74TBn2KR+Xo0KKmV45HjItPpzjovMG52rHWzMWixVl9EUNEYfazRwDOGiGyjmKszt8K5lv7uNx4QpcyUgf9o9x2idF+ZX/zEmkOIjnprIQ06tMxsUGHUPShNo6/0ZCAp0v3yW5TCUo+fhckt0Kp3BZUHTYJZgNU+9TadJDy9oxmP2q+VjnWSKJQr2nBou1OTPNzpX2OCe037nv+RQTKs5Kp7lXZKcZpyy94w3epAq6+u4nL7JvCXy1zM2yr7o9p2LRNLKDeYZxKghHKzaVEWj3QVbUsWigzOyOIP5sKFeER3X2DVHQgAtTt0EuFOrmCcqEm6gCmvIdRysUdD9TJQ+yfY2SKYEaPF2+nnhediZpx3YKRD7yP2bkd7yjv6RQmO4phZMlb32+/S4roybyG79NJueav1Rhpqo2ysgMX84/Le3EI23XjSpqsBITzUeHbGmzrIz8mZbt4Fr8Cn70YVMWzL9tpqWYXdt02nlZE1QEOU4vMxCoj6gZk8j5hnVJLAlP/P3TjhhnPZnNhgCDgDobHfGN0SEMg6hYXvQbICrRqkp53I/HKHTRv8vvVKTYg8Gx2cQxp5l25idI3yT4pagaA0uP1iu3sFuu31NKMRKpVtfi/cA37mbcxpZlq9yXXm5W1+ksazqn7Mq/1zK/N1kSymfeQeu5UF/o18Ye6DioRnTLPUv8oiXBXTTcoi6Fb2vc0DPM3P+aL9DqAP8vE3U/pc3uV7g4RH33WCsygaxqubPmJRZQGgxbbZEF1lc79eznWx+rGS03BxcabPlpVNVJsh/c1fUEbMQ2Jap4LovUKDKvZAqw0NcVZuN+TJ0EixLZp7u4gyteaSozCkBGF0rSAQMr3VUAt413R11MhRG76uMUpNZipc0/9tfVkYLbniSVcQf7EcqhQhdRDoaLkIyO0J78RssnsSf6tTJgkEzUtHrOZIGXhNyJ07pfS4H2RJ4c5QtgC37CMQdTL0VMNj6InlsnS9SDp5Fsl3Vea+Svyhsu7Vj8OBC1avE/Fj2Ybs6kifbFrz/gxeyZlEaZmuvbEl8yRSWsePFmmVuFwEVTAzAMoxbAkxrVkZFq12qAVPPSafcuNOynwbsHHvPGOdDv+3Exu5HJM3gu2+9ewdrTpc1qO51rYlaDwiNJVHgoNbjWYpVpvqOHXL2j7zSgn71KZ+9+8YIYEe+WY+GdQLbcmZvLP9TOufA+9aM/T8J+8YwxKRsNoBOGvAWVulxnULxOG7DATvBJ2apEHwLsUSeDfjJ9bY8jU6lixJeFQyt5xkfFpvlAaCCrfDhYuS+ROio3F+fsUY8xyfQmxkySUqwZgyaFtVUSGJRBwKHHOSYxCSqxEhClosLedJGNetFgpUqO1EWdH7U5IUGaQTnGNr/KyeE21TN0CFWClrLYy3NEIWzFC6HEKSnMQd51Dl8l3Bky6kQpcGSEfqVcuy7gSYAf0w6bzKmizbQrjiS8QFHy3xvbIh/0nmRVg2Tf2sd/le5D2FqcHH+LudtbjBl12N6E0ivT1po3Nl2Tub1NzPnM218SrKmWF8bXBUmMs1KN9MyklVf3l5S7zyzvspdksbhsjs+72c/Luvex8jhAltAdyeP4lWsHjeK4sPrTtftZUI6MSdhrKTcAmmqaPeqESZ+xNIGJJ4oQso2Bhy0om3fy9pbXjnpIHA2zUBEvt5hn5y8gCLhf2RbEHkLa/2LTiGLGoL6iwZfl3FxevvOfU9csrcTJWLzkE25gPNer4KQu76DfYDM5Ek0ZShRXND2fIlHFUCuSI1po9AGXDt0BHoj0uYwqFt0gtOG0EbHWkII682FlocRXZ67Khg5vwFJViPRp+ASnN8JZbn/MOwmJ5WdrY/Ix4QussuO3aY9kKdjpDQOCUAUuJWhc2G7y4uv4yP3XDYAK3y06A9FGhHJ/aWYx+asYAnHkIRBhsP2jHQrio72aZc3rbyS86Z6nxU3qhiraPYZv0WzG8mtoHybNoTk0C3R5HFnHXAfQJdLKtXIHOSLYr7cfNtHqCHdvU80QGWK3fYp8Y4TQAmEZn07+ykg+3cJcDexyxDs44HfNvBl3ch57eIROg3waKKNIZ83LNVJsA3AMbfeM9IbG8Cmjua28Y6DydrRBGg78e/lLoDn1TzgC/KHsgwVsuFAm6SbXF2zlO7bE7YpaTJRwQwMYhYjX/hPhCKDOW6NESNqKlT6Y5F7DDlMx42dbmx1k1qRzXvT8b2uNeQgAdA4hl1MYYXNrBG9Jy2VvHpJgkZkMpf8thorAgMvMAiL3iemgRWxBBf71z5oRMfPQPQp040nBNnFry/V7gt/s7JKXwM0VnxoL5mQseXX/hx3HZ+Hu1Bm5IPONEjXUtXlIjje7/T3pMu9kFvtMR81ptSIgA90JtWEGM5FhONr+N5siyKD8Z4AEmMRtrFYv1x+qrGmIx+H54jopSf1JKStSmLEUIGXzasRvqh1Q9c3aXNhWmIDTato=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx196c6fff-3efe-2e6f-7189-62c18fd46c3f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx196c6fff-3efe-2e6f-7189-62c18fd46c3f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>89PDIf29CqckrygH60oEr+PHhiU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>C8KzemClGebAgtPErnYJQ+jt+MyzgL78Yz2tfmsnbU2Z/CeR+AeH+LSpusCvUZKxG4MXeSnuu1BdGEbQ16f/THy+F874ClCZhw/ZiPJqwoQyjWdf974VGT5IAt+pPcDQq8FUbRMR3Jnx2xXVJdBTROkEdz9hvlGnLMYfBUmZ85Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wpxe9QleErnm/qbZ5i0OnfW9ctu3qsmjrZEG9itrWCSh++lX0bgjfNiKkDs4Zc4Q4HIh78nIxQdsam4BMbj7GfFtrfBt/bjWI4Xa9tPjcCrJLiML4HUUg3PjdVcYfx8J4+IsJSDk/fQDQGaDmAH/W5U2tDeWmh0qPh3SQuiqkT4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>