Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxc9de16aa-63cd-c193-2fe8-9a636173238d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc9de16aa-63cd-c193-2fe8-9a636173238d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sDv6MilHOjGtNXn3YiZvQBgUUUc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>fwBG60zLL8qOB1nmB0OzTT4KOVaAKZsjNfO38sH2R9sJa5zMP+Pe+UApdXiO1KP5tvPbj3yKM7L965B4CrfSGavCKk8NSLuMdp2PGGuJq3uZQZbTvEEcLRzcbTO5Up0Nx8NJgCxNg9a7lnYVrCGr8sFmR9dmaeOseZBXE5WZb38=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3a78ca0e-b22a-4e85-5ce2-b1b68dc8069b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3a78ca0e-b22a-4e85-5ce2-b1b68dc8069b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9zJmEXJbFZHj38KnhnmzDh+oWxo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>UVr1vD//MDIfK5qfEMwrDY0v8IR6nd4K+t2QSXU7VOZXpJ1dAAbt0x8Mo4w0SdOpiTP2VJ0wly39GKBt5H3xfKUHzdTUUk24WVkeeWRc9sfUPyr2KlaeCP1LougghR3I6RbdJkPREFnWbWvSv+yoyeAz5rQDAnf2jx5ugNfUcXU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb4ccde2a-efbe-85c7-0830-92b8bb976df9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb4ccde2a-efbe-85c7-0830-92b8bb976df9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>mJ096j/yF+vkvkikm0YKeted6V0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>1cEu81MeKvnpviTBGrI2HGcs06uncN2y1/w3O5nfoRDK+3+a5XQJNCjuJWwusW9fhithAx9oEdtmQI0RK7f/eNDoe6tl+qS5I69FHsrwwTtJerfk1AxnGSA0KQ7Pqx870q1PhLOREgIdXBTQNHvnXJY3GVKEkvV0fk+Heo4F8wE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxc207aaee-a038-3a70-fdc8-6a17006a1775" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc207aaee-a038-3a70-fdc8-6a17006a1775"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>CBw1agVy2Z3pHZXirPiJM9TPitU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Jh29NM2YKSwwGahcLP6ak+f0uFKKK2Q1JmBc5veNLTeH0+0tpPmjVobe3nRnjgjAeV+KENnxaFbxe21jq33eYZa45Xwzk90Ihrr3ZQhbJHdjMrY5BGZdW+sDo4Kyv7+gvVVfmfb2Zt+MyQJGLSr2bue2fbFa/VaRF/KDAQ4nK6E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>milrP22PD4pAIv7gPbuqSJ8n0NCNixwSGe916zKsus7Y3mXDzkhJTE78Ohw29Rd4D0vBKb/U8NWW4WNttCz9cu4GMfRZ9O+51lVuwO4YoKbmuRHNs52G8U730dpWxuV6Ir4k2ATZDUikxOXVdaNItLLAmZuFbJVKRvhGU459Uqc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>fkT0VCOEcU/KF1jYldcJ+rT+MSpYfx/jTdDaKFSyUWgpPkdVfTUUPleI9FM0/4JWxiwiO0TshkL7Z7mDKyCiJFzdU50CX4TdwU9FVK9N8gkkeEehtxxSLCcknn+tw8AwlxxTEt/gnpNTe/dEh3Y3nIIPqnn3U8+QEClv/5OtlN8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2a8a9610-c849-0f2d-beec-d303f17d50c4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2a8a9610-c849-0f2d-beec-d303f17d50c4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>FGJ1iE85+g1urgP4BCX6agc0JlY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>NzAnWTGtpv4OBuz4M48CyuctQeVGbLMtL6mL8Tigayoof04+YBGatYbO9KIJg3Sv1RrFZohnYZPS/uFtZQVNM+Qc+xBVj3bTPmtd5TF2RE7XpfIf7r2llKR0BBANtj5nejt0uogV3DgL02gG8HoXchiVCSHBS+5ZIz9xuzXWVoE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>milrP22PD4pAIv7gPbuqSJ8n0NCNixwSGe916zKsus7Y3mXDzkhJTE78Ohw29Rd4D0vBKb/U8NWW4WNttCz9cu4GMfRZ9O+51lVuwO4YoKbmuRHNs52G8U730dpWxuV6Ir4k2ATZDUikxOXVdaNItLLAmZuFbJVKRvhGU459Uqc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>t7D5e2LkWs42+q7AC4ouXiTz1OzgANYMCfrJrFzYuDMas5XwpAhTaWPgy7PSC9MppZvKb2m/4/ovZtp4xr0iRGB5ID809O72kylwTCpDv531LdWZ6Yoa8IYCViGQzsmSp+0Qj1vsctmdlyJr3IjV+B8AAbbdddaKaT4CdU0hjpcP9cX/HY4TmLFpN9hE6ebWXhhSQlLocPzdOOSat3fsnreIoQNc0mraTSNCPCAsOc8glrEcR1/qmRu1I+kPdOJjjVXI34pS1owLpT7VjNbsohET11TEJb6qVX4wiO+6wChgDNDCMn2UmBSkKnr08/KIvOg7Di9qOJPb3gAXasBxdo1U4i+wzzio3fEvTTNPP97wfbnMd4Exknl4CwzZ3bjBzZzE3ZmsBb+Pt/f6eLAne5nS/J8nBe0ZliXYgVMpo+EltjdjJbGvUHJ8xKZ1Mc/dhKmAx3XFAkVpYqnAuvh3oKcPEHfTIVe3yHKYjIH+Qvx7kcjJb508lyIa+5gb8E/LLHBEzDliEuX7UdJIou5Z5yTakaqu16mOVho72AL7MywTKspVDJcYGI//ytWvXiCzHfHKpPPjys9eIb9UNo4SC2G1frG8NuZZzeUYIOX6uT0H0jXjNo4jz2+k5b1lwvNRj/S+TJQAy9Pd1NiSJ1FZbasDAUSktnwl7q3quHVBup42Ow9HfH3tgZzE5+YSD3afnTrIUUGWMHEimxxym7lQ0h214CPMCsQZCmME3MlO5EOiBoc3LVfPgEyu1Ka8X4BCYK8VTY0N7N16dQeiTML5JY87cX+DNAxlbGmDm7m7AgB+UXyIjI9yy+mXIiH4JJvvaIhumpHyYoCd+qonaFqLJ5ixeC7gHJtGyfJRTC6pmjvLZhn24XHIRJz3KlmvWO/1OyRYphEIdJdQBwVOjQPsk1VU/ArTX2w9DH/qfoHq1Hc8pTnZ9auYNxit5ZbbMs48fwnOKnMEEyitS8YuCK1lNKUSiL+xwsiCcvmWh7QtcG+RkjZsvQNbRY7xrEwYwCYPGOlNTT0cXI8EazI/oTRqQpefJ4SHro9ySpP5AFqh+VOE9jwQU2JbalCjbPGo4/C/AIUqX9xpMiQJpalPMPPqTiAOPrW2IlumYFLXnFukABxVVerj/CbicJTl4Avbrmj7TPF1H5bw/xGquHmeGFyZ4Oy0COACI6UmeaYlHCVTyuzKzRpmF7II9CxXvOk5Nq/WjJ+Xwr2Jpn4nEStTc5bwh59pvDNytvr5GeyAUK2Cr0xA1kRnujUz+mKm9oge4cfZ+GD12B8bSWlR7IgwZ9iJzyzykqnHTMjASxdVSeGIObTKCBPznb8SleqgcdpBJjX7XURW9a1VAs6Dn3HkcO5UjQ6mUs0RruoV6lkx6OSexKnQF9Gyu1ueRCX/9ekiuqjNhnGimvfhSlFH4FRnfVWFkgtCJrKUHwzxjNBoTFHsW6n5unUwYhwB3+Pwz4DfPNSZ6k2ueH5mOCKkNnIxmMh5G6C3S/PsE7tgT3iBAC9wC4HjP06dzLs7qgk1FVPRKFBBGb92hbrK8vP2PAb9CrxuPK4rVqotH3V4w4PMLUxvUsd1HuWy+Vzt4u+8LbZwkdwc0VCjCm4g0cr9Qo4+CFpuZ1RUgqWG8aP3nmgSTPwASbvK4X74C3CUUCxWO03zNl5xLYLXxlU2vkmJNCHqQh2/Cw9OfIvWnSkdxNk0cWyKq1nGRpsKuA1N6qoWPx0cJ3AFHHhINoMz1WKq/vJgaqdPGfJaaiYJ5BvB9t+kbOIk7ydPOSJCtPKLkNqYveDoZkOksvmHOF5QTnnOF37oxezBbSxFTb3nfMoN+J4WRZoXcAQpxAgW6R/r0PGefnZpCMk3cSF23pn/eWJHD0LVKveTRw8Xr1r/jzqqhbTqiQeZWw8XO0Ue365tonTk8A1wFLVeJOh3RS3Ep91bcyVLpA7KxGdtmVZRdKYHNEkwPhxx7jAHZfDo93g34lzK55RjfjgLVGjYRMAwZMZxLMGgrYEJbORvFaYzQAuibRJuf26V5IQp/gsEM7FGkP9JbIiu7x1US1MvyoW4KJ3ZGXmZ793woa7Ps1FPXaS4+V6JZ5SC0iLoNHgqrlDMJRcL1oHiaEQkfJQWh6RamOUiCwpDHqHanH/Y5cCg0RSkx4wZlHevE9QJTMYvoehohdfXe0bCtZLiC3AI5j7U2ATVVfAoaSq0iul6/wMB6vkP+dTKgoGOYT31BOVZctIKi2JzvPc9WoNpEHWBw3/7onNk5uvo63O367QjZKnjbAaoXnc85MQ/EayaxxM0rdJkBNFi/mpGTfcpStjTtCXQ9HCvzaUPZro2UybpLC1y00fzkk8GwQYE3o0M/AnHfx4nOWNWr5/vgPa01Cfal8v7k7/DSotnHUGPPQhS6/AyO7VbwYwwsOJ1ttl1vlECup7UEwnluWQNd4BJcqw+aXwQTW5sjG8RhxSWbnOgwYJlCehPjaKXMbfyky4hshdOxoCpExftYxX7az3aFspTYaSclG4UFATwceiCxzdap+EzF5ksfkgV8FdCFx9XOgopIKEa0kbxbRkvxt4IkTKcGEcYB7DTtieryvQyBcmU74VqQf1dEAukg8dU4fafDLoOcx5ac5TiXK24MmPKJ62qHrYBCAD8o3MP6UyQcgrvUgXY8sorm4Ds2uyOP/rCzB3YJmIXbP5CbkWIucncO5FoyfU3j9qSTopxgzwT4VBInri4Mm6eXlKagYiOklAT9u20cV7lGx+A1eJclXiT/UaYyBP02Lh45v71eNCsnewqyT/X1NptXcAI6Y2aD+ZuGoUKjU2GdJKS7oKwciGaCep9NwFiOAUxK/EYjtw6VvDbv0sxjg/PPv+N7Thq4hg7AyzM5zcon/XILCjuqwcBbFQgzLNIttI60oQ/+FT9PZKwC2gg4I4F5/Z0hYvsY9U=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb8c5aec9-7077-c759-fa98-cee6befc57e3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb8c5aec9-7077-c759-fa98-cee6befc57e3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>qL8N1ef95q1oSRgboYAXevFxqJY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SU9sF4Pkv6fYO7Iyt1cpz21TQG/zbpZqGzG+9kas1frGj1wAjvIOdtXhJiINOtTZ+WUhbC2WbXEdPv6XWi+JaC76JBxK7IdiMrRZlFZ0wTNIw9Nc78LnQ0Oi3koeS3TFmixjQ+RCo7thNmVgazxRGFi+a1zV1iaooNp+KqSZmEA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>fkT0VCOEcU/KF1jYldcJ+rT+MSpYfx/jTdDaKFSyUWgpPkdVfTUUPleI9FM0/4JWxiwiO0TshkL7Z7mDKyCiJFzdU50CX4TdwU9FVK9N8gkkeEehtxxSLCcknn+tw8AwlxxTEt/gnpNTe/dEh3Y3nIIPqnn3U8+QEClv/5OtlN8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>