Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxfbf6eb35-e92b-9ecf-39b2-eb5327853f5e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfbf6eb35-e92b-9ecf-39b2-eb5327853f5e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>2ACMTTLJQcxyqcJKMvRI1HkKfho=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ymLzVTcvkiWkzjL81edagsHIKWQNEbUURUrNIfS4kUeaPUVafhAtJO/2o1Dl7hgXfJWDD08KXkoFJgxcUItMGBs0h5OPCFE5Qe/ylKfmNXdISy4xby6BFtfF1skj3KzkGfkeWAEXl2wxynbIY7udwfmn23on3vOy3JsWq7ZKT8Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx475fac8a-582d-8643-253a-d872ebf255f3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx475fac8a-582d-8643-253a-d872ebf255f3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QRLOb2RQ3BCaMAQFDIPUgYX3piM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>BWuc0Iztp8wBIXufj7VIhukPZcHFOcCDJA7Jh9ZuYMOBSJATvgDwy+hpQ0HJnWzxF1wejuK9MvWjeFZ0y19CViSVwt53Z3aJVnn3eF7bDvrrf7Cblg/GcqZv1ChMq06jfeSeRx3gkIPgFwxpV4T0WwPLwKn9pvdAmf+Yd5ALT4w=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa5766102-4f5a-fdf7-b5b8-495004538f45" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa5766102-4f5a-fdf7-b5b8-495004538f45"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QsZx5JKPjT2PkFD637FzJ0Wj+4U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>QqEFYjbfunFcJF3k1xmoWnpoa2e/Gnd+Szz2Z1AGZAVY1BJJQclbhL3m5OV2rJ0MaoBi6TdmBngJMij83Gw9EwGaONOWiU5iiAtRIpvwBr1fJTT1TzAxW/J31O5X0W77zu1uG6es36Ya8E83RaA8wk0xBidPHDLD/mp0Rn9fKK4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4e9f54d2-628b-f219-486a-67ce997ee345" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4e9f54d2-628b-f219-486a-67ce997ee345"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>K+hWQKeTh26VvrzgC6WkmAQI/F8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>wqFRvRIP1Wo2EUpkDIyVMX7jO8veEtO/s7HmmCn+6qi7UcasmsGt2Mg9ZjCZQWAEckP7I3T5oeQIpSyEYYK+O35q0VdpdUBrikbqw74QoW33Y1jCXG6ie1bcayxx4Mogm3k5/ksUh/KI5unxFrAAjpeit/tYvtg2OzB8gjvIfUs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>IygrylT2jvhoScOGlc36vSR/ifJETJQ/twotbrzRzoeTSeWWKq4FErOXYGkLoKWTdgRKQWBsdgKY1W55UhrPe7NgOOxOW6xXMHuYx+5OSogsY8HUMoNyyGhtrzgdoq0toWIFUTOrMS3CNYAKxjsERVHxzEivvgHPnK5jNKe6voE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>fQ8A290vQiJIR+LhEZssFLet9Q/3ZG0YJMB5Cwwa8iWTKt+euGVQUIszFoadnxnSf2iqfjb5Ue0bocNCIwRVCP5X9ExxTOlHmV4hzJAHOyfzC/9QMXwIan+abugFxu3qxvMLuCLPerkQuF4EA7mf6rcB9Frnwc/WuXj2e4sAHHs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx523b7404-ee49-f002-6dc0-ed186698cc3b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx523b7404-ee49-f002-6dc0-ed186698cc3b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tzlScVqzpR2+2fkaFZ0D6pGImNw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rJTVOIkK1yH+YlOPBhp2hqiYjqsjuJ3XQxjtlJvVg3OLruWalfiWUW8Q+3oNMqCkczGCyqH2vsDyNnX1+I0dxjM6V93OSwOs/Jak/P7NTS9MnAo6TFgn4dkmBiGpZiu6N5VLRtDqXAQnmADxGACmyUO7JB8DggAq79rsnLc1Pzk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>IygrylT2jvhoScOGlc36vSR/ifJETJQ/twotbrzRzoeTSeWWKq4FErOXYGkLoKWTdgRKQWBsdgKY1W55UhrPe7NgOOxOW6xXMHuYx+5OSogsY8HUMoNyyGhtrzgdoq0toWIFUTOrMS3CNYAKxjsERVHxzEivvgHPnK5jNKe6voE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx92ccb1be-1c9d-3394-a512-3f1156c5e30c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx92ccb1be-1c9d-3394-a512-3f1156c5e30c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>JkHyQwtpcTtcltjf0iLNgIaIdQI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MWS5dCdiOzc5+NqUVBfIDun1pgSVlKRZ+8ECUMmv9N0nw5eQec8Xzj6wK89HhVjD1BoVlMPkoZGvySokZvKXslRJuJ5NRj6I/sgm/SylIWcCm5rzmzzPMKlBiq2B5X+MWPaMZ+yzXNefuYTZioHrTPUQRiCINEouK01ftm8nIvA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>fQ8A290vQiJIR+LhEZssFLet9Q/3ZG0YJMB5Cwwa8iWTKt+euGVQUIszFoadnxnSf2iqfjb5Ue0bocNCIwRVCP5X9ExxTOlHmV4hzJAHOyfzC/9QMXwIan+abugFxu3qxvMLuCLPerkQuF4EA7mf6rcB9Frnwc/WuXj2e4sAHHs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>