Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxb85e9336-3cdd-35aa-662d-1b7f319390f2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb85e9336-3cdd-35aa-662d-1b7f319390f2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xVBr2dMd80vRPhR85vqyRdlUf2U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>QOZ2PVBWty5ySrAUYoXblo2jLkX8CY9NSkdkDhg4sMCP9fPgUM+ao6QMCHMy5+fSzGVnEY7kD2hkhWt4OinZ3ABR5c33qhCVbHIfyi2AH9ZjZB0kpXZMYMKmA0WPJkbNoqaK2llDhwKV+uLH+umjrnL0ItDNoO9ejAbHbtb7EBA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2fd2c224-9b93-1782-717e-8318d5cd6791" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2fd2c224-9b93-1782-717e-8318d5cd6791"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KFY4UY2NdkB9VSepi4RHY0o8oKY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Kb55blJXpfLbfIgfGzFomzMZVdgF/bXwLvtNtAsZKAjIhpE4i91wO9qTX4OiXBMeOeCdIFgVmsb1ziw7SoUK+5UuGiuRxW4NZOROX++nJ11+ObIAzUsIyxGWzJUMKOZzzfmbsRwC2EDWcFq8fDjrwN72BRN84gL2fmSNwAEtV8w=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcac8e9f8-6aab-71b7-cc9b-af3cc6c6117c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcac8e9f8-6aab-71b7-cc9b-af3cc6c6117c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>FiezxvsZuGByAHthBvJGKiesxOk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>2Kz5Oj/OTK2AZInhKan39fk54TH3hR18EWLoWvdAQ5lhvQ1c0e19Wer4FOxrEnFYDBRmENOZi3KDPvTa5uOIteljfM6miv8wVnqikc+0LDe3gpTN6BQ79sQB9DF+hq+SX2QZnkIcDIvh6HqjKx7Flap4bW4oaNkiS9piZYMdzC4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx8f51a531-e504-7290-5acf-0fc80ceff809" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8f51a531-e504-7290-5acf-0fc80ceff809"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>d7wCl9rYCPWOFrJeOBdt3yElhRE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>upN7E2ow8LqbZocMnxNIOsyOV/+friPvQoLGQAVPR76bxI2DBXcnSp6bU/l37JoX7yKQiUhMmQPU6Vjf3BB/DdCQt65mdVN6lcGmlTOJ3/hRnP+T8YSStUtnXkbQ6Fn+LI7u4ixCvsZSWU6TQmMebkzHoA+SHkHSPzVzxTrHMAA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>RZuR75fGbdts+SyKQKq11E+s1aa4xGO2UhjysCBjf/J/lHQ3LWe8AxPVdxNBAGXae9HBJmOhcYg/yoKHJGfnwQJyjjEkSoopmiHg9LmGN15g1QvmeHW9FqHE//0FTTjbfTGSv3TUr6qhlYiL7kYVgbxVaOUJthAmklxVlj7t5Xg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xRfXXD4Y6SazRg/ZRySMOSfSqb8yAFVJENA3SmytFWI3xOpawcjZZ5rF/hFymtQlIEVa/0dceBLNnrhAI0WhaaznnD5sm7I6NRif7SXFM7oSzyHbr6p//OdxfzHUcnyG7m1h91vByr9owhMgsYdD95lippczW+NxQsFsNUkruNY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf2b2fc02-49e0-9c39-02b8-622948d35d97" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf2b2fc02-49e0-9c39-02b8-622948d35d97"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vq2KJXH5yt8fj3MB4x/eEMavfQA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bwNBwLc9JFoZ4QrAsHX/9lkt5U9M+lrLirtYNxdHVIqha/NdvsiWUkhGpQkeZ1TWmsWhjnjpT30JOWRjUH8FpjmMEIo3wrL4MLZNlVK7QNdws8iBI43Jp6fJbeTqFtOMinBtgxouhbczpCxfpmnkj1xFke6l01Lk1ll+xjwAccw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>RZuR75fGbdts+SyKQKq11E+s1aa4xGO2UhjysCBjf/J/lHQ3LWe8AxPVdxNBAGXae9HBJmOhcYg/yoKHJGfnwQJyjjEkSoopmiHg9LmGN15g1QvmeHW9FqHE//0FTTjbfTGSv3TUr6qhlYiL7kYVgbxVaOUJthAmklxVlj7t5Xg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf0e4f082-a9ee-86d5-0f3d-a666b0bedf4f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf0e4f082-a9ee-86d5-0f3d-a666b0bedf4f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>scZqMzhQbvhdGIfaxCxqp4n+cCw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>EusibhnZt7Nmpq+yxH6I3JXBcM9fnWqB6N1jwI98NaIKOMF13knUWUH/s0eNEy4srl+CAzqt5dYkzHzBzn3Xx8sgZya2/UGtTxXy+DijlDqLcEoQWXCv/jEX+fVbWYgtxfPuOk0Sx2JZ3UbeB3HGwD+KAARQIeQR71ogw4yUjhE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xRfXXD4Y6SazRg/ZRySMOSfSqb8yAFVJENA3SmytFWI3xOpawcjZZ5rF/hFymtQlIEVa/0dceBLNnrhAI0WhaaznnD5sm7I6NRif7SXFM7oSzyHbr6p//OdxfzHUcnyG7m1h91vByr9owhMgsYdD95lippczW+NxQsFsNUkruNY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>