Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa7c64085-09e3-aa11-fcdb-153cc3c8b8a1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa7c64085-09e3-aa11-fcdb-153cc3c8b8a1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YtZ3Y8wcpYK5iYbDr/ApUQ9UWHw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>p+ivPe2XIRAr73Gsh3C7/IEoGCiwpiSxzfu9rf6uJ7FUJ/PT8jGIEpg8ryLxlKQ/M6YLxeEGVoakUogApSSAlWIVWGzbjUNwDbvM63Zy38vLs9XCABfDTkQ31zJYmZumjVPFJ4F0c+W4mLe0lO2dDbhE5C9mYiS2uz93E32fyuk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx46ab9a5b-3db3-6e6a-fcc1-b69f9c54d905" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx46ab9a5b-3db3-6e6a-fcc1-b69f9c54d905"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ZyHL/hM5Gryt4D2v5xDRbmlK1Mc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AFbv3YWmfqx9vXRso+kLD5GeWLOs5eiJOy8Fusp4OzVUsADTgiiQgudXjBVaLJxzeyMFQo9XOOkw7CkUQbiaD6E7SzkBAdMhGLzJKpMJDU1TPddGowi723orm5MHaP9dboBlt9VOC+LhLELrJv+/IWAeDYX2Dd0bzyn/sBx84q4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1ea83d0b-5695-2890-378e-532853d03fb4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1ea83d0b-5695-2890-378e-532853d03fb4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>mnMo4UiauST+kzTQ4BJI1+Tdhnw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KIoqQiOc6X+PIp52OzWxuGJp7k5XNOjxi9Z7q8DO8/gXkljZDo5i9CfBo0BtqzKqZa2Cgkz7gOXnYoan5UUppft4CHoGL0A6rtbk6VyT8CZQerMlMXNqIW6eJwQq5yx5RsbqaYHsH53R8bqt21jvSxfe7L5BfGOoEZL8vyQBv0g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxabcdf160-a600-af2e-9fce-3b0b32d7ff49" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxabcdf160-a600-af2e-9fce-3b0b32d7ff49"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>mAaLulCSDrd8JajyuXrjibO4+Dc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lOIwVYfzM56IKHVK2yX1+sraeFuFPXVCB6ZXA38/LGCodvIhjr3kolb/MyBJ3Anl676ax6pCJfAk1JwDBivgEGfVmAGDnEnCXeDQp6pvxgPtfSExS3Yh457TDSxluXpy9LLPa/loxltWpmUxDikH8A5BLzpbF9m8p0MSvNBR4r8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>rE9U8Qss8mpJVd6JXdRNw9zLMNSvWzHg09Zeb3Ss3lIMdT+GYcVQxccqQqZP4uDgvYrNStZFvFukm65GMlOcdyGk1118orOuRgIOQITivAk3lwNc48CFKmHTjfneboS6lLQoSnsiGdVwjYLKmKqBctUcob7XJocevaJivdDOejU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>cIXiNwTyd5K9DPcLlfWxvZoMiLPgJh4qibppnUlto4S4TIgwmoTUDep08wYH0C6txiU+CBtwehPjQ6g49BSsM7viop+xdrkFjAl6IhMO5S3LHTSDpHUbDLc7ns7G1bLZ9EHr4q5Dw+9WVD4cuolTzOF3C54uQPeU5yi/yJplMNg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5bfeefa3-39d8-2993-e54c-859d3a4b3d03" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5bfeefa3-39d8-2993-e54c-859d3a4b3d03"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>K7D9kMu/5O+nY6TPxYzMK+/+h7w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pLjXZG6WsLlFdj4zvRX9wGMMkgz2nNv4Wnpi4u27wbzxOw++FrJI+bfwkLA3pmHDKyqsV82v825fDvrhlCh28doM9AdcUri/X0D9HCuYw3ZjmG9zdS3sAr+dicBLhfqirN6d2OXCNgtBAQibF5ZxcdWR8fuA1gv5M3oijxMGNt8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>rE9U8Qss8mpJVd6JXdRNw9zLMNSvWzHg09Zeb3Ss3lIMdT+GYcVQxccqQqZP4uDgvYrNStZFvFukm65GMlOcdyGk1118orOuRgIOQITivAk3lwNc48CFKmHTjfneboS6lLQoSnsiGdVwjYLKmKqBctUcob7XJocevaJivdDOejU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Vo21tzdKcmRiLvcIyScgj7KreJBIC9VRXdYH80/QagF5S5BVjG9CfgmGjZLH1b/ee4LBYPMP4ogEND2UjHojJN2nLPb9euJN5hUI2bqlAyIzXcVHb8xvDNEaykaFANzQEArrQ0sHeoaaWy4IlBRm5/wEFptD8Bsix4tKUIX8BmjDwO1vtKoWplUwkIlxnYp+QNwDpDesdB7iIvmqQfaCZ1fD6J6/tvIF0NqwC6l20EOHccEL6i/tHECPz1pg8nf7xrUzEzCNatmoCVj69CFLsswFxx9ChYxX5cKHIKgV1brnClt3iXb0MMF3jeG1LhtqMOOrt0Fe+84m8HxPFR449rwNPPbgsyiGPKkmVd4KOxcB5Zt7HU6TW7YZuqjDWW/MsPiaVuiJsHxyoUTkYJVbtkyoWhiDEaLE9BKnJIxr+I5vRBilztyrXAZE9gJ7VGZ4vRKakJTYoJqTlGyFMkZSy2qtDYY9R4JSSMaRwa2jXoHvP/Gozf890emuQK86L1Kjt90vSGPxwZg7NoN6NeSY2FY8/S54SHQJdJNt2xuOHCDEoaBI9cFYCTzBaLC5TyOaQCngaG/tvS6xvPGqY/tS0JKJfdcGeN0U4Xj7L9RyWd3HMAqw/zJZd0xAIJQ983E01spctgkt7AH3Rq/prTGsxg8pAugh7t+fA4TBCKvNrWy73V9rwHRbkFsq0Kt4M1cMUC6CbK3FzDdJ73cZYnMKKtjJthLwHAg1GP81LGdjNJkdQey72mXgKmP4o8rX4Qkq5mpLl9em80cdQbTIRPAQrjSTpUy9/S1q3jx5YEPnHkpiLfbXA3McG35fVPKlBKuf1P8Qu8zDFQrPy4q863gjgCw5PYsW6ldGvDY7KiZKMScJV3qt9LcR7C1pQdckVbQaQ/D4I12nwaL/vIRWchHMKe/SgE8eXd2MPqxVK0AKdMsQ27+3fSzGA994HKa7VeNC2WXy9uShifoktmQKt60JS3TuJe17ix+DarnHLgDcmH5AtuxzaHlLmCijx43hIYOIjBlILuplRqLP5EJCJoZESzGz7TaLcaISGp0chYBfE99A319UD1gVPOM36aMwwV5z49UZDjs+FhtCd90sLuztI6OIiM3zzGvUO8rWPbGsDDW4Kgvj5aZFM+CXMzftowNZ1rz797pYJV2ejbRn+afeHFbnlYhCFfNVoODq2PWhBGtC/4EkZh1jBC/vBzf6XrXoEob52UDTFjiLEFD2nBw+TOtuIu4SDAqknHtBhDAIahFfsh8utj3OpDyWfwLhEAJO9wPY8lEvacMWmrGilkK4SJXPkWMEH7IgqFRQjYk1LWe19i2qpRRf6BQULYJWEDenO+j31r6Mt/DaAxEEDOmO4LFIOXVQljHTOAw5S/oZ4y9snLFiKEe+fRRW5BNUJE/y1an7WRfdDU4B5nXo0qYg7YlWoO3xS1keR8NVRnZ0uZXKUPMtJn3aKl02gtj6YzI9w+4oRBGOywel39BDVU0JwpzI8RwKJcZ+DpWcAWHpqt+AB6QJMVj/mnuP7pv8xzkLjNDQV6o41baN3gbR2Em4xLhjYF5Kya6ki6Eu/Tx9lu8vi7EHpYWkk0SjbLcmK2GGZ4o78Tg3pQVT5FsIyKKsG7wxbDGQnw+xcA4jhH/uR4L1rsJx0YjfqBzBk7LP6jjO1B+OdgHZzLteP7R6pNbMdiJbkCvSsEaJrvHgt++qh6BP63f7ZrgcacSe8kJhgYK0zC08g60waZllEyJhz66aCtvxCGJXoFS8m26wZCBSEDgf3SwfXon6Y8O5+e9B1uRtCjKZcU9ByGrqzuKQy+ZketzTdzgCG59V3Z5sVW6qvoTFVPm92xosSTgh/1/mGq1d1aT++OE4+oNAD6eFVc4ZoBZgfHsXcUgrjz6nEo0KPIKSLNTfOSHZaDkj9WXuFRur9YnVFzP+n3YWmIXd1hdOeOAvjbPmUEfz8prAV4A4FrNW4ijF6TtvZB1LTqEGGTIBUlo4JlVAR3LbqqXCNTnwhPpIG6ZHGXWirXgvYi5DMmwi80Q51Y55FmKr45/SLNPJu/HHQ8hK0z5q3eGP+UFASIRKDqZzg5ZKa5Bo1kws8Vjnx+AxTU52nhmsiQuuBfk0sVQjtAeLCAy/Ks5GqwA5gdFfbQ1ZNpGl4WGYG+8EHulXOlRTyNRjkE4ktuDm14H3xZUQuwhwtwFgDtncI3b0M6DwRK0BY6KdRejHfQralVP0Q65fwXdFQuedP3nROJcvCIjjpsTAPdAMGEzUP3UH6yOVbKCSo5vasyJ+ZoWjyu/zHryGvo/OQa4cAdeqTk7kw0EmAWz3UWtEZst+WIvMEt7SOMzkFhgivEJmk22a511wKKJN/+Ba4h50YWoFHnL0qNPLXBQIe/cRFAmL37qyk4mualgXucglBS1BfQcx3c3BBsfOhB4vZLlWpQA1XtD7dK2stRnL4yCzIf7+4jCu3hT5YvvLJhTUIGcV4n/ph5JpQDXBbx9/PFifRpYbC7CFVDTLRiIrWjYhCpSGmraQKhRDrKOi5bzee3dnePxLtULvcsfKpDOvtQCBInggB/Sp0bjjHQ1in6P8ksuS5LWnNYygDxwm/KWGj828nunzM90sTm0krVVx9tNlz/rYejIfYXN6c2a64vZCHJBgj3bv2mB5MMDvoPcqlBAyspzbJATYKAfUWT/1B7KYqTs7APh5JrFnsfalCrLQwDq0ALZUmkoHGPnXuJT6TccFR+C1nTalTIwVL0HUsy5NVqH7jWjDRFiN5r2iYHfweBhTxXlv9nztA0zrjVLO/p7dVf+nMPLsAp7eVQADD6zBXxDXfHdkHTMdDVd5hIktFbjW5YRSjA1FONsHSQkRgCdYB3RB0FegwckRc02G0dhjSOPJqvszLyWsv8QppIrWL32Cnvqc/ZWT48Y57RALkCEuBSbV14s=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc1646fac-4b28-59cb-6ed4-5b92ec5f9988" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc1646fac-4b28-59cb-6ed4-5b92ec5f9988"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EVBRU+H2hon3zVspdpoDawpY2Vc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>XAd6xDNuOf04EIdOGl1sDB5zZWHbzxgsFvkj9aG7cQ98TqFw/oR6OWngv/UJ7QkbMWKlK5GFm99r8zemMGfK9Ml+iIHw66KpKHXJeT4N6n29RYfiXDi6uvriB1/2rYgLE5o6xXLsoA0pIvifgAqVAA6dp7q/kKEQkZIPP8ulg30=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>cIXiNwTyd5K9DPcLlfWxvZoMiLPgJh4qibppnUlto4S4TIgwmoTUDep08wYH0C6txiU+CBtwehPjQ6g49BSsM7viop+xdrkFjAl6IhMO5S3LHTSDpHUbDLc7ns7G1bLZ9EHr4q5Dw+9WVD4cuolTzOF3C54uQPeU5yi/yJplMNg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>