Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxfed5f3f6-de09-6942-a872-963e4cf67ab3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfed5f3f6-de09-6942-a872-963e4cf67ab3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IX7PXOW2h2tnWfUIqJksa3IrY0c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>G5ZE0FPLUQcpuUEuG8Vd06CgOPdvSHn/L8u3sIgax5SgNxglwqHtsfgssrRkUSbHAAUBl88aEHWMZsY9qlSHz8FZN+P55mE7uW3KZXEw8JJBboEDxS0Yvd8TIyl39zX26xtRlqmvTBSGZ86wFkecZ/z6YnMgRenyNHBrXGbJKG0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5656a69f-12df-f651-000d-231eb3eeb18c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5656a69f-12df-f651-000d-231eb3eeb18c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>eAW12ts+EUqrj59VHa/LKd+mXuo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WngaNqYPaUZzgGmuzLP9fdwsrGlVynzK1W1oIB/+rodSsd7z04nlMATUevaK1FG+JHeabbVpfkWTYOxYQcEKFDBEoYwRz81UdW+bY2BINn6qahc+5g2gXTv5x7hZK0sbI2WMSC5AkOQ9C+PFu/UWTXNj8JA2UIDUY2/D9A/gbDA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx73c748f7-1e8b-b13b-2fd1-9dbbf539e664" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx73c748f7-1e8b-b13b-2fd1-9dbbf539e664"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>mxStLDuEAaXBbiqgPtyWFRBDEHI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GmuLcFUWvfk5woza+MdliaFMe2VlXHVP0ny6i5QMdeU3GeCiCexKOP9LFNHBZVrXwobTDMRVszaYktk57tkIWu2X6gpvRV/PceYiv80wKyg4CVt9fH0HZvMNOC8YmMuqDBnNFS4LtJGaSb2poV1MW1eLuKiklZUeT2dV3R6x/k0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx23757015-37b3-8fc2-c242-4d0066a67b77" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx23757015-37b3-8fc2-c242-4d0066a67b77"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9Ljuz2U6ErV4rpFMv7nyvKkY7jY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Bh7M984WgskLP+CVNWSMaECGGo464kt5he1BZfT3QEfUhCt9shOwSnD1G7IeAquKZoEF6tUJv9e0rA5ExLh/kb3Du/AS3fcbRQYuhDwaA4dkGixFf3jGB8fFnM6tNNP6Rg22bUQkI+fCFO5IgEKUEe7yy2MI/dX4mlhaC60Ex2k=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oSjQMU/Ud8T/BF9uYKlnWgAbfbD9M6JUQVkx8tqf3xdf4K6eOTtY9K+uXLZNdrve2YZZEKIxY9z1nv0otMquxXonHOuteImBPGzd97qr74WLQmY8yLN+xJljmkgzcatTPXJfPTZRcX58ovwXFO9Z4ZTmc6rYl0GBuzqkykH4yq4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>w6TFu77PWAUFP2pZO5hi7IrDePFolD2co0ZLhGP8DYVToNGom/QhjWQpYJqtVQG5k/Zf+NLtkqM2JOWZYMSjb/h7/NehEnR2MPIriYCg8wx6U9VHlCxz6bEN+CFU1ztR6mnXTiqF1QhPoAfj3Ujicar+oiMVvRbAmq5QMpEMzP0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0e299fbe-3f6a-aea0-16a7-046008d26af3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0e299fbe-3f6a-aea0-16a7-046008d26af3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YLsrEBkVM4S16E1N0xzE/TnfrLs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rKEimNCIMxP7A3Id6dOqXQu8vmlW1p+zm5Xgd6WHz99iL7tRUuAVkSTX48kkD/6NtK0f0u62fdp5ao+TKDnCwagconXXyhMTGsnujgtshGBuihIq8wz1XNbMPi++uhjRf/PVsoVwagX/AcMQlfYK3g9zeiVwkzsKx6BnnOhVKsw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oSjQMU/Ud8T/BF9uYKlnWgAbfbD9M6JUQVkx8tqf3xdf4K6eOTtY9K+uXLZNdrve2YZZEKIxY9z1nv0otMquxXonHOuteImBPGzd97qr74WLQmY8yLN+xJljmkgzcatTPXJfPTZRcX58ovwXFO9Z4ZTmc6rYl0GBuzqkykH4yq4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb1031410-73f0-8568-81eb-29760f36b56f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb1031410-73f0-8568-81eb-29760f36b56f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bL9DAYN6FLwqaafYYNTw+bSKjis=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>kyjvtOlFuwNP2F6THpm3OhdaNGdDg6i6fyAGxJixbIi5ldwY4xp9QxhDWx+lwIgdSqKhSUEVhzYJFlbGwXG8Ri+H/yFqMpMRQPYsyE5KgbGhUgELyKpjo6CyVpYZ3HVWoP3XKYGk1KNPFeZf8EXkCe4xEuqKMrUIpvNm37gityM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>w6TFu77PWAUFP2pZO5hi7IrDePFolD2co0ZLhGP8DYVToNGom/QhjWQpYJqtVQG5k/Zf+NLtkqM2JOWZYMSjb/h7/NehEnR2MPIriYCg8wx6U9VHlCxz6bEN+CFU1ztR6mnXTiqF1QhPoAfj3Ujicar+oiMVvRbAmq5QMpEMzP0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>