Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf821159a-9669-db20-16df-e49f141b53d4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf821159a-9669-db20-16df-e49f141b53d4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lZEmkdGqKEFKVPW5orl/b39XW4c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VO5YswsgbYQWQRxLxIQLPUbWzFCzY3OnH9q2j3+tK/AfTJSpSxechgylfj/6mtrOBSt7UmrLcGXOH77+2hNfjhG6zNnJ4Vm0orMEsusV0UmhUndkUBMCk9cFzqwozYJrqCsAdrgDVa5FskXebQHz9XhcDah9+vmbF0LCbJo97nU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcdff717c-c860-3b2a-53c0-39b0ee18dcb5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcdff717c-c860-3b2a-53c0-39b0ee18dcb5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8KSbQP8bBNlEacGRTlfQiz7HNiY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>BNJzK4gieWTx2jliKG4/J02yUcnRknkgU0tX06VrC4efIAbEF/LwMqz+AvhzeAdZI38ImGfinOr6jJKoGrbAkgTPHFYkNv66mWVu7MU4tUQBQkODxmGPPfnNxwdgstf31YBUI1O58twcyJnTRhiTqcIoIYuPQ1giSFqJRzhZvLY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9e7e5a11-fe5a-74c9-6c77-270708976aac" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9e7e5a11-fe5a-74c9-6c77-270708976aac"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ofOcITrGbXeWkoIQclFDDIITipo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vOkpuQsz84vwt2iDAIe0qSEEi1a9fWWWw1xJwqsUdW43VRSN/d/+nwYGtBfI0K30gniLJ0IGAwEVClbsr0zoRmLg4g0hAKhle9J1vVK3/ZAnpbvb7y45ylNerac6O5PojD+bTG4cwlzEKbQNPdD5kiOpw2w8vGIkh7DgDz6i600=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx60ed7a40-81e7-0ed0-8024-748de2d01324" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx60ed7a40-81e7-0ed0-8024-748de2d01324"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+PZmS9yJD6RT/p3TlIHrHJY9FAI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ScjIfV9YrJPmvBneHNcMdYmw2UHiSEcx2/cF6GIQ2j6uq1ARgCOnDUyOAHPnj79b6+BrLDqind1IARTTUsysi6jmJcFvE7hQUlmagh2IZVcMKHf94HpCBpbdG0dsOaxAQICBNURVq5jwGjMK9wO70flwqoi8Dei6f6jfMSo3djM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ba5Giq8qlPmQV7dsIcyV3nlk+CYmUyI8alRx63/jLuXIXp7xFrxIkK0tqjYQdZW3FAXJIVbcDL6f89C3XLn66IAqLIs+NHGY/GtpEVbX0Qz4YQZs2E3UIYFEQz1fB0/o6gD5co3Ba49U0folxBHhY4OSJgpitd5lzqUHGdaY+Gk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UNZlvqE4jgOkgUvRqyjoVg/a5nx5tfuLG09PM931YuaeSuqCjJBpSmsTLNXG5pTVTl76ZIMViplJh5/q8sQaaFBy9rbgXAn9AODUpWsQqw+/kCluEXfKmvyVAlW6lPpVUxI622JVnJoGR23NAcj4MGG+HeYk75RYk/Yh+r7MBR8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1143b3e5-eed4-6c90-a1f0-36625f12aaa6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1143b3e5-eed4-6c90-a1f0-36625f12aaa6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0hgQxgOXmQSLuGCBOh1stLH+bRw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jk3AA8/SrEO6Ag9V4sj4z9oE/kJhTqqmYd7Olc7ZKZLvc6O3fLpj8xjhDuCMynRFe6IN5/MLb2jvhWBuAAfuCXL2XvNv4F/hqnyMptRmuzJu6A4bJVbBI4FRM9P+yDWxlAeYAdKRntoKpYZx1xlFTiRsM3gzYNxoxUmmNNeZq+s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ba5Giq8qlPmQV7dsIcyV3nlk+CYmUyI8alRx63/jLuXIXp7xFrxIkK0tqjYQdZW3FAXJIVbcDL6f89C3XLn66IAqLIs+NHGY/GtpEVbX0Qz4YQZs2E3UIYFEQz1fB0/o6gD5co3Ba49U0folxBHhY4OSJgpitd5lzqUHGdaY+Gk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8672fbd1-fe64-5268-aa9c-146b13be7cc6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8672fbd1-fe64-5268-aa9c-146b13be7cc6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Opa9LdFeaTfFXlqlISHfO1trKuo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>h3i38HU8uKaxwwJ28M6zSs5ASh5wG2HSyzmPoGzFkus8Ce18ZU1NAwD7Gitru66HcAdrqsEDHC3EEO0SFjwK+fjtMN+SS/nxOS9HfHKhgLh4EEp2aARQvOwVFWKEK/kF+tRCGPRGF6C/8pC74vsVuTOcxdoU5/QKKYg5vT80LDI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UNZlvqE4jgOkgUvRqyjoVg/a5nx5tfuLG09PM931YuaeSuqCjJBpSmsTLNXG5pTVTl76ZIMViplJh5/q8sQaaFBy9rbgXAn9AODUpWsQqw+/kCluEXfKmvyVAlW6lPpVUxI622JVnJoGR23NAcj4MGG+HeYk75RYk/Yh+r7MBR8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>