Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe26941ff-8fc1-c27f-2f9d-fba565db3100" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe26941ff-8fc1-c27f-2f9d-fba565db3100"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bFVQ2FcdEKEvieECngvtQumc86M=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zIG80FUAAVHpTZjfbUVHqo0y04u0ubiV6qTBff+bLZdvE2Kl8e8goxH+qXWBDuCSLyQ1x6SHct50sov8B0nl1MLnu5A6KZAj+BjfHi61VbP7xdgpQTbHWWyECRWbTh+w652Ws1D+GxOIsaPBmreFwknFhiY3Iys7vP9UAfvKfaw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx45605e58-4017-6498-48e8-1f3f23a39252" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx45605e58-4017-6498-48e8-1f3f23a39252"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>52un+hiNvZi3Xf+MBfk4fuHyaVM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Y5WvqEEJG+WzUaVjCDvxogRK4QWja7gXYWEFVyViMOYXkD/QuIm1zp5gHcCdWkfn7RfcOyDZrimC5MUql7kGK83Oc9a5LkoLziDezYd95+/ZcgNM5T6XMRke2e0G2dbacsIkFdnesisvUT9k3OeBpbZng8XnBl9PO6JxDWMnhv0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb54cdde0-7571-1265-9c14-7b3dc91e00e1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb54cdde0-7571-1265-9c14-7b3dc91e00e1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>D5CdrjMeNRVqlVtRZxpwlk8E5Es=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TldQ3tsDtxKZuS3ZY2TCeWX/p85iiBugFQgvudFhlyyzhyYo5SuwECrR9jp/BNKK5aZ4r6m92/djOM2T8oovuhxY6xEW8pnZ0cdqH3i0xzPbT1YMr1y3UFYlUXDmtWVd2nETqgHe+/RfWJOZI0z3kW/aMQx2ohnnTInXWfvX3pE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx6aab4628-2093-a654-0c31-f9937ae38c5d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6aab4628-2093-a654-0c31-f9937ae38c5d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>O0J1CP3IA6ZCME4mXD+JCHnTEGs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>EecrOr4Dw2DfFPa+WWs4IPsMgttdorLpmz3oAFS3qPnWqq26XDoHJu7P3MQvnS9HhVLRWWF+B2YPMVuKsrfgsdJ0ZvwuOd7W3Qco5lEN0mgZPjgTN0sw9dM74QqB7GAXFl4a5LuRr/F+FqcVIReTcceEFDPJ/26I8o7dtkiGwIo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>dG+OHxYG0luOKmZUz7kmzGVyAJ8uBJnywmfFtb8dBXh3IVeUmsUhAk/oQBDxzwOSSNPVPYQ/BO/9qtsFDGi6HGnMk4RZML+1VwOZsaZE9piJtyt3FYmQ0uWar0jJZ+GUG61OeLEOyFNZOyNcLsOxvs58V5hmapPHqJ08CTYn1jI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>AbV9bN3PMreB1AIG8UH9fPnaJ7we5r+aHoNBrkp8R+cIQazzQNxGosd3nqZXp/ol2oIZ0ZSTg9iiuFIwNzDil5IPuTfEjtEpKiKjU+7OZV3ZNuDeroa5Tm8WBaqYHsUFHC9OGzcB1K5B13SwaaOhQ3Vs0NmiB3kXJnmD4p3WnJM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe7a946aa-1358-fe2d-915d-957ab7d9e8a7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe7a946aa-1358-fe2d-915d-957ab7d9e8a7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>omwvz2xjmTnFe1lPUdI2b/9jHdQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>msemRJdfc+68YZKdJsc5dtfsg78rcRyfib/6JMua0Sa1Z/z64nocegN6wSE02Zbi1E/jvbSO6Dl6LvZ897QrepiZYp9A/Oyqyy+ZFiBbFJYoNEpdPq94onT6R7yln6udxNtAyCpwRgbV23QdETYRyE8yUHVAUs/DFraLE2MVm8Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>dG+OHxYG0luOKmZUz7kmzGVyAJ8uBJnywmfFtb8dBXh3IVeUmsUhAk/oQBDxzwOSSNPVPYQ/BO/9qtsFDGi6HGnMk4RZML+1VwOZsaZE9piJtyt3FYmQ0uWar0jJZ+GUG61OeLEOyFNZOyNcLsOxvs58V5hmapPHqJ08CTYn1jI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf765c9f5-c07e-c141-e678-0bbd5d166ebd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf765c9f5-c07e-c141-e678-0bbd5d166ebd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Skz4Jv9DgAJpitxUrQUwCLV3m/g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mod67eGJFEXccw7+RG9IDXhZGy7pL70/08+LKSzkwGf5QSkUCRmJyCX9i7CjMYE5KXjl4g/m95XeCdjiMTbbrPc2DfG02IHMYKaQpkBjj/T4zveOg36Pleg8Oojx+y1rDgopVmYvwzdsExleoWI5vM3B5/Pp+rOgdtZC395n7/k=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>AbV9bN3PMreB1AIG8UH9fPnaJ7we5r+aHoNBrkp8R+cIQazzQNxGosd3nqZXp/ol2oIZ0ZSTg9iiuFIwNzDil5IPuTfEjtEpKiKjU+7OZV3ZNuDeroa5Tm8WBaqYHsUFHC9OGzcB1K5B13SwaaOhQ3Vs0NmiB3kXJnmD4p3WnJM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>