Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1d3e7ce1-0d78-b9f4-accb-086bd6abe7fc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1d3e7ce1-0d78-b9f4-accb-086bd6abe7fc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>kblNcfOd7zIGO+1lG7ePgD6uWSs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>u4n1uvzAMzuQBCg+M2wT/lfdV/oSyguc6nrrRUzc2RTf41D/CIMtedNbuirupIWrG5XjMDpTIy0bqdEFnoFH21BrBDc8q+Lx3rjMnSi941HC/Gs9t/RVhxFky/B2TD35L/nLIeOdNDWSM/nnDUYoz67shJwcr6LSqApQVTeChEo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5b1d8089-b5d9-67e4-2cc2-1ec82616d284" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5b1d8089-b5d9-67e4-2cc2-1ec82616d284"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>HFchLsLG25KWe4afa0GTb01EQzI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>NxYG0GvpqSrPSLVgq1xWo4f9L3yMewLJJgXh5g+Z230uDn8HHyb8MhfFz6F66uNKvTcNxN/a3zRxY/Dm9KvL9KK4l3gYD73Yoypdwt+ciCLWlw9O6GG5/VQwG0k43c0EJjP7LuKPM5ebtn/YRWhjPSp+zHuk6C/UiD5FxYbjHoo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9b8dbf2b-a1ab-f966-f096-ea585cabd594" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9b8dbf2b-a1ab-f966-f096-ea585cabd594"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UuM6rhgfw4Vo5uNU+ZQx6RAhSyk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zbJKbby0nukr0Je8QwwV6IhXH/x7c7IhnZYuir0V1dmdmZaDKNVgW0m/dTo8fDJ6ncaVRrFIfMzlWqPNRkAvU9MJGGT5VPUFnD6trLSpc7t+mIf8Rno8WYRYo9MH9loM4IIOwBCQ3rnCwkkK9R37MVIAoDdfE54xe8yDcVfVR70=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx92da22bd-7322-f594-c84b-f28b33b8ab38" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx92da22bd-7322-f594-c84b-f28b33b8ab38"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>qMc5LJNut0uRvnhs2fiMI7ak8zs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>p3aZzWkCuac1ndnJiMdwk3Be8/8kb6roUfABX2ZHDrVqk5wRZ3iiIL1gxIDVkr49Qnn2xKP0IB7zIflK8qGYwo3ZtP6r1O1HCwPWGumF7m3qNodDSifA1Vlt7vJOUt+7wl1ChbmtR/3YVXWUS7E5inpurvoz19IKdgdUS2C3AGY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>T4URsGXcNXkaLo/Mb89zrrHGoeUKY8dnKSXxbsB3L72GoqVtdQG0YbWNUoUecfgsTo/4uOHi8mq9qm+oOvL6sdobhyQrs12+kSXNVVSoYL+xdAtTWs2uBeXv5fKUhbinS1NXc/NEXQWAczyf+7ice/QdaKSkC1mWmRYz9vd6UFA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>QEEqC7aCBeSCgzJoX2k7U4JXBE1GmitaiJQZERo1UXn8tATchcSa98WdNcIIKqE81jlyNHXtB41Jp75anXR+s0I8ZjXApqpEKEplGFSxu5SW3grbDWQSFUkyceZlzd150bjeJTR1IjCiDLqSXBO8nFY9kWmP55//uynkJ7E67FI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>wmp3ZT12KwJBnwkjHqPSL7jVp7NhtvK2hnwIn3eJE1KZSVDAK2+xHJoz07xesNGB19Shk02UYID3ZJw5eB1DuxCbBM/n0BJ1Jwdi/9hwKz61LxwNPOGHE/wPTAaYIqNC5B5Y3JOJm8AxwC7lEJLDfVFeJI/3cKsB/M3fCmPKUzBWfEm1jnn6JynX5TjVm+Crvnwydu1rsl8tTQj62I+H0lQFBk3H95hDvec/PPVn8pGCRISqWwIcr9FqJiBDlcnyqjq04t1zi3Pw+O0VEYQV/dchAgwyx+s3+9I23f9frMuYaFdDgFCrSF1eZmpgZMQJeU/BAe9E4MyxCdLQmh+ocAfAxqmUy5u8UJOUW4G/tcbc3UpJpju86RH7EQmzhP3blzxvx1yyHBBvbVP+/uTFcum3aFKfnyeIfaw6G82y8gcPZ/2NUiDVesKygfZik/Bd9OvWvMYZHUhJFtiVtT4pCdIejZUgKQOrhF0H5j8XkLIe0RJl4l1TYNDvzgToqspveEK/7ANT/F8RvazkmYmyi4GBfwkFRrEPf/H9qvRafcc8quq4E2AJ3J48rPY/Hf0V6NoGaYXXjkiiOa5RZ2aFItNKx8ziQm6GItiDREWeI4BSbArp0yUYpf5MZt+vRfKmfkSxMZaG1pJYhktdRv4rlfFKOkhuH/hLiZl0Ckm+kGZdLoz5AzlZNfBMx8PFA9D64CoTmM6YiWjcTcKcFVagPRZH77nr8bSXLpoEcXWoH0pMejdZg0c1mSTzd4Shm2N41lkf6suN0s2ugNlAKFaJoUW663kNZYIndlaIj8gYZA2/rOo9xURYg0ETJTQzP0Z5AzAHLY0X7dogXHjwaDLghMS8cGzJN3kpi41CvCYisJ+t+os/vQoxsQMsyCZiUUANa9Ql2Cab/mug0r0h2MqG+lSaV0C4f2EHRnwCXV4CKXmrXUpF9t+6MKR+2elvFoelZq1YNKKJAccbGmJSeUZWXgwl30OncHcBRAfjYNjbjqjeKyihLe/F4w5RsTH3ZEJxzDJGeUauw/YdQQEayVY15JkfylxM9DdaSgf6aPiHF2/ZSlEP5/D3yH0EMlvpEAL7P5N8F+265onnQq8rmWS1zW2YI5CUTcpsVXlwdqme0GWT1Hu9OfQpLQEoe4zSxXkFm8polOJSF3qz0gCRHHCxovNcnLLsXpZXw6C+wwQu7SUoeu9R6K3qUViVE85vbGx1s0iyoSSuaAj1lJohkjDFX5eOM2os9yKey434qFacXnCU+Fn82REXpWbVIkCHjGjEET26photz0sE/TegJVXRvTDwqtLex90JAxPhfom1e36clHbcWHbWpmW8z+R+Vf5fkXaAm63suKWkNgodgmBz7gURpcvft9bfhfF/aJdtaivo1h5vPvUa9sEGhQEJl6uOkMFxpEkaAxLdIsfZ10ahj/FVfUnyNEMdSw01iHbMwDMuWhbwIiaDkQOyyFfh3doDNAtlnMU3kqUBdaisY7s0i9l55z2OjvbXh0PdKsDpEwUg6ckNAQQny+Ybhw25z7ecLWojBhpbp0r2kkE68xmGUAiGzZZZyE1olBc1iBk2DxScPUdtH3E7+BrxBVqy83kjohz2wWKNxZxCNKkPPgU0unb9+vNNAFjQTlHjJKYaGZZDivBhmhcY/vh2sCynGxj+CQc0e+G5fjQmQRXKmQrQa7z1Ldc70C40pHL9/Vwk951EBYci8BgoMzJ0nSv9IehyufviN6SFpL9NzsXd/pOaib3S6FlQOminthck2iQYID2JE2ZN6t6fHuFmkbztjYetwJYj9ORmVTAat9hr2DzjE2xf82hD5iLhKXhLcPqnGVA9Wyrelel8WuhDCJ2LHfKWHnGu8XCcbwNSFQeFHeq5qmGHIM2NLHR6CnapGpPoZEVfWf27oYC+TMDNa8vpSZ9ohC4oo6qh5NtUslvv2T6WmcNVD+Tvy/+Zh+AYPJpIVw/yfiT60CTMqd1dhQXqzkwlQ8Dxyxxa55IWyox2YYPuD/96kZUtJeylGO/fO5hWbr2PmqztTcMmIukW9qvnsKVvBsWp0RZUHWS8D5me237XE8i+74rqNjf3uF24ZGDD5L/fXWX9DSEps23q/wQ3RydqofQvwxDNf2TwrvXS6a3gv93w5nfRX6NQ/xkxTIfCd/2NPgtu+3onj8tqJvLBfNVE+QCBKck+uq5QKHwgGJ5rp6MUgyLvAnoltHG1CbrrJEklUmc6hC+77HYHKoNyA3+D3dch9LYpKDi8EQyzt4AZVDZu61Vy97j5lgRikM2ybz99vtnd0C2MLvyBFymcO/94avt9I03ezgDgcgX2wom/IXHABXmPu0SBBuVy47UpslZcAgqN1nqz7VsHkUnKnXBp9x1HlpOAihxqZaGBrRWNHNXg6SRtrovrRUPlD7RbrgWIM87B1l4Gz5gFhQO1TNpreE8pucHCVTtfG+wQiYmA5tbKUgRPGCaV7KnQwmMTI25pMf/s5ZGT3RTrU99fmTC3obvT5V2btfGg9Vc6c4PB5vTuNZcWvVQ66JRq69akVGhlNsft9pEybm6P6bCswWLoCKH+AcV7Q+PtyGVDVgblCgtc71zNAPfyseyehIToxejXG9ajOjrnZrFt0ara8jnbqml4SDhWPKebpeVlKdB0Semm+lhSuheOOA2rfNuNhW0Zh5dbg1kbfrRIlwb4o/vyTNjz/Qkd1ySvd+QztHEeBK2WjrLR0U50RkhZRG+GmOOT5hlZIkSRAlE0Z5uaPlYFSPxmGxbrtsYqHNH/0un85urb4fu78i/5OAla7dZijVaVwHgSNb+63c16gmCkugFtReB1xxCyN0ZEJtClCvyyeJUSaJI+nc3E+Dpy62n/f5EkU2Loinh/9X2HVdYl5f5i+BJ9VIEKzbnTsFr0BmbcDYwlXviR7KsR9SUtu97CWkwv+Ot0Bczgo5MV+mGnxXUYQPPtGGVEQbGjPtkEWnMF1zCmYdS3WlhI2GFeUB6yhi3zS1iuJJkQQEBzQN33YRyh7rpOnUMM3BeA8AvPLD3wnWF6bwGXVnlhek23gwp2F+FcWCQWrzj1yH36NI2F3z18FbVPwAfq0Am5kBkEzgSv0QvW8wHjoBoNAb1cI0rRaGp0CdPxf3GXqlsbn1TqLLK8bNaCdYyH/vDx49IpSbuyhHTRco2S6ZM5oM4yteJp9W5GcMeyVtveImJOwHeY3JFSR08yD6AHqw8XSLdjnZpsE0RWJTiy7OMtg9QH5U3UaW3UyAIjfTTpNuHJKbFuVMpmzSHCBnxi5TNecYw6lE4CmP+RYXfUGJ7bmfieE3+uHBIOXl9SJFcKDoAxzIFKP8y+W4sifoBvEnNmr/feSkcWPnkmiHBB6vnpyxayHl8rIf2BYZbj8Z7ENFziTCDaelbuRd0nQWIHkJLYbH56LcW5iyx+LuHZ5t+umnQEsC1/aLp+YYjSlkNCddmNv6QV3bBMTK0SJf5F5C3w4v48Wz2YUTHFtv/0RVv6Hlx5OCfJESdWJLYd45fvyWULrm3jxnUd6dpXnWAEQ89q0go0/1/wRJYVqQxaHlT24i6a/EpP188/ySctIrqjvxCd9JEHfgfxb2uplKd26oSo3IVNs90Ue/lAAyaKxfvGbdznJoPr4UBNz8ou5VdkwCPLje7NNkOAGgHBcXH9rMIMUWor2eT4fBVNnmyBmKYxQZWfqK2/utAIjO6GhfSJX6cTeZ1yEAn8krG1KHpG5vEYuR2pKPUxeo9wxkKnCI8v+iYc7u6uCGYd0FOfJ+WpG+Pp9xgfemz2czahEIPFcnTkf69Y7FE/Fu/HI543hQQi+Ja18GhQumAPjn7afInwGPpfkRgSI3Hkga+QexJrdmIfGzzX4sudto5ay2JSGvtAjE7GsKsH23eCnYnPX1HLs8E8BogPieuesEzcns89riGbtRgCpsyxHNJxVcWMvnTdNb5cG6YCNzhSkGJYR0Y9+pIozuNCpWfh6PEcE5aFarf6Q1G79Np4b2iKL1Nn2JPnugecGHUmY/54Pq/s+vx66AbZ0rX4D359rfM+CfIi1o/EoCQcSpMX2WLxwwzViHnXiLXQCEKttMCkLxaZzzck8Y6bTqUw3KZreXnShs4+gSXk0gphmCa4vq/O2AzC1QXTU25Z8Jz0MYIybTTl1n0Q3U+ozrzxTG4UUNqVPASLCfKu52kuBcv5EeruLkHfS+6RejMjHkqDJ3yHIxH0DnNg7CG+vnW6YpjyewJleG/pyIN+IgH0NzfnhKGUD1Ji+pLKSVd3jCrHU/fvCMW2iUvXCTn76KCFB7Hm13FlGKC+2OvcvtJg9g3vgsuJItb4pAwMp+EsmwCE393XsJhZ9gMPw/0bZq2Q+/tQ+tsxcqwp+e8KVniYeml50l8IKpvD+eFs2zTi3a0q9pxw7htzY1p3WYKKTtpXybLwHRjdlKcHDhNMNqelRMUl1OiGgls0TzlS3Qf9WrP7XBpNfh89puz1upnwLFJ1ube0owjFG3eEUdS7u1ofiyLH8gchnmnChMml8KQImVfsFUVjVwHuRQa6TM0O3EGGCNqqB61rFlsBMBW1u6ln9M1BZqRd7fZAF2JZHE02I/fSnV/jyUZODODmE/+YHk1unG0ESZtgIiN8Anfbo+04ZXTBmRzvmDWeAhLLISsl5VvoHofPh6fcBlbQTln7zkauVmsR2JTe8IkV7EYgSEI4aogB0yJ3nWO/tQNzphm4CIiIwop/3Z5kShjh4qLo4l76WlFCx0aHX0yD6xIff+37xEfpYbJ1sncIEoLCY6xCI4esmSunE31X4FPnivfTaDve+8dIsEcKGKSPfl3ddxESpZ4ana/JpIiYxNzSg3CoGNojc7ZGwJOcdL5geJco2KRcgUUc/IAfHgF0G4XUO77scJk0mcNrFQ5+LOSXFdv8ao1gm0TcgbPf/sP7ZneaHleVp38moBu/mS/oAkHOADZ2Ptrrbo8jsqs0D1hlXGMb6UdU/5owKzERep5ALPK2L+6T0oDI1n7KHAwNlzTYST4nOWmyyBy5Fp229W0zUF0WEVSqbQZAnDfaLEyGUPbvKBlLBjoq8GtsIhia0i0QUL7TMGZE0GDpiaEKRx1OWFTU3P6wOEOPSP7ES3B+8fak5Q+6kvQ1kPuq4cjg5LoTryZUbN5Eb/P7lXw+5YH9F8bhPp4NFQXvKKp+2jCuzSaPsY8RsNw6a0jhFB2vk+0L13rBKchXtRg6gDkfwr1oiKCjMzo8+depjU8FvtgiQ3ILZ2LHH6Ejef25lG3Q0NxexSHlkEVOtuRf+DJVvC36PI/fBapdVLRtRns6dcwgFu1QmKiHAPptPFXh40MkuonZ0j5s5fWjrLvHWfNHpJdVF4Xr+pkGqORYZeBAzWuMDQodC0IIbFTsQ/lkSVfqrDgC1riSo3rZ2cMz39Q5X9cTi0FPuLCyFpVaCIcxRDDkKQCvNI+yP3jjdk13K0b/Q0i3OxtGk7TtgujYXpT0zCEYPk+0GdngLnI=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd66d4e5b-90db-0036-8327-64b8f50f2452" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd66d4e5b-90db-0036-8327-64b8f50f2452"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Jra1R3wxpq1C9bi5R7R71qONE/Q=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>G6dA+u9qbtwaKNPgteaRQJKuVPA35gTS6/3mk3l+P+QplWcyCWVP7X4rtwta8aVwGN1w1/qgDU0yFX8KsXs4PzNzohwJ8Q0Q/5yz3zZi01wywbxmuZuLN/zN9i5adbWI4RccfCU7BcQKHdHjGiS2Kv7kHfyCnwJw79nAFILR0FU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>T4URsGXcNXkaLo/Mb89zrrHGoeUKY8dnKSXxbsB3L72GoqVtdQG0YbWNUoUecfgsTo/4uOHi8mq9qm+oOvL6sdobhyQrs12+kSXNVVSoYL+xdAtTWs2uBeXv5fKUhbinS1NXc/NEXQWAczyf+7ice/QdaKSkC1mWmRYz9vd6UFA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf43474e0-d24d-f2e0-0f41-173557756ca8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf43474e0-d24d-f2e0-0f41-173557756ca8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>OxtUWRegVUXIB/cbtgu97b+rbhc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Yrf1XCtXAtZbQIiyBH6b6uDlH+ZWva6o3Fjahca4NrYUzQdtgCz1RvmsyV8rpzMpVU5AtgFLUKPxMqy+RYOmACATr1OwM+/2ux2G7I5GAcN9KiF0/SStC2p4cCjdFmYuD6SdW964Hl+7unkDcdBDiC4HuyQBJ10d8fXmGm3U01I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>QEEqC7aCBeSCgzJoX2k7U4JXBE1GmitaiJQZERo1UXn8tATchcSa98WdNcIIKqE81jlyNHXtB41Jp75anXR+s0I8ZjXApqpEKEplGFSxu5SW3grbDWQSFUkyceZlzd150bjeJTR1IjCiDLqSXBO8nFY9kWmP55//uynkJ7E67FI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>