Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdd819275-4f50-aee5-cfd5-b6076f9e57b9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdd819275-4f50-aee5-cfd5-b6076f9e57b9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Z4YaZP6QQqBiWvq2mRfl7EFRJnw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>gI5yx3pVFgTm/g9iNgwFFnaxxBKLK81IiVYTe5ksYxqDf4FwDxMh1GC0IHcZ1ecwps60vVP9ZTcFu48qbI0qt88t+Qn97Teb15fG4QMERP8W02xzpjNFURd+uNsZxbDNjVd1VOFnlJUZeQyyE9SoLo1nFRWKM7HNtsspmRZVoXU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx25cab5a6-6b48-211b-b5c9-9e2e18ee5c9c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx25cab5a6-6b48-211b-b5c9-9e2e18ee5c9c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4dZ+BihAXFRJ0PbhGh2reLvU/hY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>l3AF73sdhE/3thqUnEOKxj2QUXMsj0Lq+d9deEytBduChmcl/MY77LSffU9IWBgV4MppggOffAT9S7JPm7nAN2ibxVjmu/x8xgucZ+zOIt4tuV+JBmR8m0UKJJsxZoZKinDOxo2Qp4Wti46tiBH+fHWWsmbINiAakqZIKPbDP68=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0cc91e1b-9f70-f7a4-5fb8-5c4729c531f2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0cc91e1b-9f70-f7a4-5fb8-5c4729c531f2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>rvnZfYXkRyAMRuE1U/3oRag1rw8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dpl+QpUnsFx8qoPaUU759ypRIFTuxY7qfe6p6U22PKXo9/FXcEi25cve1Ci1hc4C1CVcljen9wd3Y37Dx4H3wb4EkM8Vmpqtpk2/P+Gj/46FKm/vrk01oAktOzSlni4R7IkDdmlVg/KOIeh+ZOE//EqeGTiZAo3LeAKwQhy2iic=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx635a5d84-3cb3-552e-1d7b-2fb9e813702a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx635a5d84-3cb3-552e-1d7b-2fb9e813702a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>2Duk+8GIflkf6ElKOSHgI9dErv4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>r4oX5SeGs+kO3rTJ/Dt9jgvW47PNfYfkLlgW9RNd9BvQe9IfObeDNP5ti0JgCt1yCyrXxizBGdhZWoGL3HoV94SSkqgG1QiLB6clMr2eKel6X3dj8gCP5XdetZoamdS0sBLJogFdSZ04+/P5XXHNcKua+86RrilU3vGBYXe9Q6A=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qjh9UYwzjfqhRe7qrT5vjdutFEoEXlOv1pVaVKBr8BSXUjBPlrbaVWwoqMx4ULspTEUXZGpnjU7/RzrwhODtSPAzHUCppav8RpqGiHVyu5KyxRwisPaJf/XTTd+I00uAayZ+E4RTENdtE7c3lm8ZsB9pa9W8xoc6dzjCgnl560c=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>X9UyNUuw9FUrVxf0QnHQR2y+MvDTtLgef0tS2sPbBmfGTTbYobnQwN9Lcbz6nZkLOdL5g2yPaf0YFL4gcykUwsR+BCpBYMW31/U5vLjZCG9wMSQdrSmkaBtQr1a5oBJdn4yJcuBOYfNlubXE7+ngknK53X5glycdh7lkaRHhYjc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcee9761d-de0c-245e-9f29-662155f1407c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcee9761d-de0c-245e-9f29-662155f1407c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>XxtugC6UzozBwgKZuomHAIE2NF0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qPRBjmld3or6zkGY8/q38QwKRWfBCfm1enKcdEB+sT8oec6u1dRbPGJsCBIP59OhOZSDilB+Agh1dazDLPCMwuaTSCSmfGWZZ5HcrCH2YRjJIBeyxnUbMxzXo6q4YER+kTD4PhjTijQNA7y6UmE4JaAiHt503ElfqA0zA+5SmlM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qjh9UYwzjfqhRe7qrT5vjdutFEoEXlOv1pVaVKBr8BSXUjBPlrbaVWwoqMx4ULspTEUXZGpnjU7/RzrwhODtSPAzHUCppav8RpqGiHVyu5KyxRwisPaJf/XTTd+I00uAayZ+E4RTENdtE7c3lm8ZsB9pa9W8xoc6dzjCgnl560c=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4868cfa1-c0e5-74ec-64ee-7c7b0cf1e13b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4868cfa1-c0e5-74ec-64ee-7c7b0cf1e13b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>CY689ch5DPecs3QB6N3ft/gD87M=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Zgvl8vUUkdtr9PVx/eqxCTInBgoWiH9m97x6TwhA2IZY1jBjz4EgxKjTe/zlpCbBVG+TJrVVaCNwyPcft51tAGjwL5SJz6Lu/MKB9cz3YjoofoPOCtqIqrV67zPbEyJRjEbEcuPr+kKRD9EDEyV8BtnOzjGMEmLB/cc/kTEP+jM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>X9UyNUuw9FUrVxf0QnHQR2y+MvDTtLgef0tS2sPbBmfGTTbYobnQwN9Lcbz6nZkLOdL5g2yPaf0YFL4gcykUwsR+BCpBYMW31/U5vLjZCG9wMSQdrSmkaBtQr1a5oBJdn4yJcuBOYfNlubXE7+ngknK53X5glycdh7lkaRHhYjc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>