Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxc7a2a864-0486-952b-f3f4-1c7e23cf517f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc7a2a864-0486-952b-f3f4-1c7e23cf517f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8Bdw4sallWLrd7l4F+LA2+Zp4dg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rvcLv/XQI7vq+r6gSmLDATMneRvkHPSuvlohazKvVTMGi/g0oKv9dfFUrJuVsNjoC5Um8lUmvLykxYbEHIVxlQNKT6nBxMOhumTG6y264eiNxO7f9UbPtxpCWWCftwRuavhGHuduPI6FqBBTuA9OMrkTsndZ/DDowUymr0R7IqQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx566bd82a-e89a-55bc-c316-79508727ec83" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx566bd82a-e89a-55bc-c316-79508727ec83"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1bvMGY/zDey853HDtavqsH5sf5Q=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KCaNh/QRjvvOJN4ZvEIyDvipbNjkVJNwdhMvZnC5HitIhyG81gLqNf/tDiUVbF1xa7sYHcKAmpOHN+eDjURc8OwjFn08eq02wGdaZa3ljdF+2nDxhmPr6nz+rV9SZG4U6xt402vT070sSfipF+I0JbHKL3YEHl1dU202XFrPYjQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf3814523-b90e-2d4c-a631-e2dcf8c64a72" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf3814523-b90e-2d4c-a631-e2dcf8c64a72"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9NPmXiaao6mg5jS9rQ7MujLl/tg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>nXDZ6kr8ZTnLdfhg1ppkSmZCKYGtn41f88+jzIa4uoUJ7vvvfLXsvd9Omrd7c1cjvowKgFR1JRC4bVGkYcEXv+U2q5T0DMJH5v8rz8hzrbA4qo61lvvj0DjGnWghErhAJ8dmvdSFW8nDMNReOghdXGGOesgEFwtIscYLCrvu7AM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx49271b7c-edcb-ea15-f8cb-fcf00b590767" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx49271b7c-edcb-ea15-f8cb-fcf00b590767"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6eGiRtBOjxfThzxssZyFowBD8EA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CbNZandKMW+dJ707LLnuROSlYNNxn60iFr38eBajKbtkJaYUQoL2UQOOl5/gZmwLwxxcnUQUmDB8Zkn1Nm7onWgueqbSxa6c/HSdJ3pM1rxn31OUXhJ6ePyC0w1mGsLFvuN67QsauXX+DXT9j7t68pwVhAoojbvK590fsq+Dwhg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>zVL3HqpLok1i2RUlQUSRuD9PEK+dD6H9g5vObIXggL+GdMnvuVVOE6M5Z15KsVZVbi2tTKJJVPKqIogm+kb+ROupGNeDy5TnevJ/YYHmc9mDQahvej63iORjWmQSfSNkLfF56wjR/1CmBc91I6Sn4loBsw9h4ddKE4uzO5wAcaI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>CYTdA1f2UGN4+hbvddgMUy7zaTWBxmADXC/Tt3+Q+y7oKRAHMzLZHgkAPXBPU74SDawAVicKE/i1VvvGBZNBMRPkdmyH1urOLRy0LhMBXF31pgr1me5YL7g1J5zAirTJWmTZzPfKoOzX8Ht4Q7NpQay7szAo8FjsX4MjdTfdw2s=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>fVDtJ8frWfbnBERIHlGdjZ0dfpamy0TYfudDrz4dVXw24K0cggmsCDMLXqqaDP6U0DcfwsIoub4A51ML3HYdBEQ7afeggD8S/04tTAreBqNJhSb0YPqtlUBj4RsaPWx/TiIsMqGiPSp2iIntNVC78e2yyKDUMXRF0qQCIR7iFFJF3sm/U1Zi+CiUl+mORRuxkB2elguOeQkbnUCxNKBHckgBTO/Pz/fKXjQgUWZH1SQQrmjN56bjVei3AfvW6FwpTTzpXanNDlTwiHrv0fl7yrA1KdG5+akO+WZ804DABRPvXoZYI0vSz+mwRFsMqdT2NWV16iJMujJxfCSz0Z9IGPHidEnF+g3f/zybFohVBHmJVuPe4r3YLr8SLVt65O1A5NjiNQ8LXFsJQoPW/xDsutmT9eFVefGllfap+kh26cU3vg8tyG2IHaPy0UqEpsXFA5eHGFUu+dX5KlVxGVwW0dzV+M+GStH9U5KqGI785W8yLPS+pJBP5McnF/Jq4r5Tr0fr4ywzJvs1gBg4xfkAaNJ4c+9EUdGPlt/02ytR6zOcdgGfTqFiPqqvEYrW6ygZbal83SppXU7uYxAE8/3rO31t4TwYzM0AzV3y2XK8yFSDAGExmgFA+7lPuOmflMg3BGwvDiYKGYU+uytT3lvCcCaO/F4eN/cEegI6ff92qA6HyFsaSata/BPHLecnbSDqoy6lBmwP8RJ1l69m6XjGi4F7r01lzhL/iNuRaQAc45k3IszEUHtWAy2vc/gGolBtN+uwvQF39jvvw3Oyzvi0uf6y02bBRh6rYU0eLIjVijrTcBVn5ztDh7WAJVrmsVFQz2O/9Cz9gpIPLnG2hySRSedA3iuP13YR7U+APnGmDaL+jCfztuM17/id9kD/ieNWBBiZXibekGdoiK2aPg2eyDvmz1v8/yhbwXc7oZTkCkZ9A297A5TD1a6gp/DbUs7wqN+51YLZKFIzTbSMkxgDq4TOdtA2op684DufcnlhYAtxpaQtLQlT0hfDg3Tk8s0YN9Zh2lZJ2aEGUfMrxq1KBOPdG/negWjkvY8yqRyq/uS/8ZyFJm/5JaPfxOX2P/O74wa25z2gkODxYfWTtlLP03X8md5z98QYKGGHPy8dnmEqdPuQFzFWbGsqZUJxmhgfUymO7IPLg9KROynLTIxjBmrgE/P1B1s5FZucKArHu2HVVn2rSt99m+wJL/PKCWqXWbV/m1yHZri2GkpoEvFxp82dMfDw7G7BddHNpQTyJ8CMQzjy8WXq2g6o+gSvwipPXfpomCoMH+o5OK1gqEgjecvzqrVOa28fxNaihWzRNfNEg/S3S8I88U2AT7qoOVJAeBPPoTdEj/0XS4Jr/W4SQKJSZmJRGDe3OXn05isS+3vZYoWFpzJnzxGcH7KxmxFDxMmbd7WSRh4aBCz56mJXbJHBSUGbzSdUfKqerq9VdMxrBIiRy+ivn/v2BJZvwMAPw92MSuIvH9GtY4dlNfI3Klduz4Vjnq2SmOjCAk/nUR/IDr53vLlIuia2evzUT5QaSok/EFF1AqdLkjHPLkuKJ0nXysn9tykvWUSXsnshR2PK+awfSCgfUxYnBeVx0jIsfCf1YXOiq7b7NuSlH6XhT8VLyv3fBKnF6IqoZD+wsZER+hkbVWdYPxAU7n7Qftr6aI/v3Ro28HZUH7mMbUyEZQVRZb3jf0XbMzunZKWsApZ5JTOwwH5buy2xQPC8/XTW0Y3Ms3fdTfG3uDbeiMsre+MBziDNkwLOQRtRDlyDi7cYNCeiIofzMpg7V2imTBC3jcCJFGHyg6cEB3ZX4VVVOUIA08ozmOE3LhO/kB/fDqMfErxqDzBUR4g0pHcAcSIO65pljSBW/ZKy5VqxRuEnlQ+CwH0Xjzg188aO2gy4uRIQDIwNLuSv01X4jABmuKn6bRI3zUnOhW/oH+mz0Tkjyo4MBcAir2xFoyVdimCq4ChLlfu48ycIpG4NRXjJzJS94XRD7KZVfHUTy3nei4Lo4uXV0w4B+jhlRiiss65GiLy1h1uSvcCUVwFfraWHrS1ZUe0RF0H8jB/JJzcjh++7yEDXeGU20oMJXwhPig0f546Ff08tFJkN22H/1WyC5tTA2Xv/GzslrMJbV4vuqba/WWsEoznXhXRGRp//5MNXmOAUVkwffv2BBfHzPN20Rh1hLHL1XZs9cA1lTrKTTM54pDCKmRmzTYyqrOViUdszMnkOoQLNQechHX9GuL3YkWLwr48LPbdaJ+shHhgdeeo9lSraf2YlLYG+lsHmHMzj/xV6OPBXPSroPExHj0iDF76TxFuPS8QYE7EvDP/+yyUVQ4kztvNa5dQrH7MONxPBKoSWMa8TEFEn81D8b9eM4gQQCXI65ZV9qOA/GXe1f6Yd2SzKVpu1Qs9cymbbHH3YZ3tVRdaKf0NLwZY+28qE1aP3NkyX/xpmZXxrwoJZblQwdCm3LdUpqNRZgosfKYX1+WIIwn5HZUNy8HWX4Ak9BPPNzDu4bilM8sCevzesexB/emakD9Rf2A0tK8RI6mjaIZWPxDmWyfJKwgl7V9q4Slp8uga4hniZNI975wJVXy5GaEEa8htA/Ry/5FTA8yuWRPTLP4bKz0uIZQC4J+6gUj1GtV5LkFtIcLtdJQZwWhppYOTABhZsAO5o9u8h7BSjwjlGDaiDVCDYH5gtf3AMEHqu5ZO2zyUXLga8o2r2/cHF2NNaZXmDfQIjKV1zPXp8LVVsi30mayU5CiJwTkKUt4UCH2DhyW9LZlnY2UiBWRI8xKpBDQBfAQcxky6v9yQa1uNUJECvdiqRfBd/2H8Ox5Oz1laTCm/6MJ47Z5q0GZsR573zCrsFRITyBcHgG2MA1aZpF2z5J4rIzCSLRv6ntNPxW7hWiVPqV6hz/u4PpzPDmShIq/LcxFUeFiq9iEVcvAyGfiTDe7zV9ldzsqi4vRTBol3Io/BEguAYfQR1b4R11MlMCQ+5Y/KhH2NyAamWMnOHlobTPqmoVzp8xSLuJu2+C0JGSRoHd4mKkfU/WhwM+GuqX1dh4c4wRqgy+3p+S7RR6h617Qxtvk3vxaCJtkj7RUsoVjIo9vwDW14j8URuy5Q15bOQgd7Tq97wiBHPW8xMeK+m3qdFHUK1CIk7BdD2g5BnlYDFNv1CDKOPWIBNDpWJd6hAZC8eSdxyDxKlLty04axT57VeeP12ZeW/GAY5ane4q1GaVN6Oo6oBMdoglsa6idC6ZMWhVZLdF8FgEnwpVuJuxWed6+8UqTCybEV0taanx4cfMZ+5rPt/n1J16P2pKV7t57Al2LClhOor1s4VuYzgHM2Qc8Ia1XVW7pGNzqePn8fsTRzANHQNWcmARospyVM8R0GmPW9aTffQrtSM0dB7FDSR95+c/DvUSFOlYEMz9dmjl+XAvAsJkAguKbOQhxgsVSYNB5klJJTgzURDLaemDFAZWm7gqLytm8uVBeTlxr1sPc9sd+1WFBGY6tRha6BTivSQb6mdWXRti5wM0Z73DQZtWC+MzhfoknaEYgIN5IHmXTTovLAFhLptsMx8NMW+9ZaVcsxVjVcgJV/4cb48jm3hlZ2ZH6XFcPvHgax/Mgt9gAF0D4qoV14KDmu3t1KW+fGBNeXiSs6nw4iwH0XNpi6PGDuCbU+RM9xyVLlUlYuLLEwhHoUQlEZINhx6UvQp79lb74GBe3QID2IB100BdSXqHROvOaokrEhgPc9Uo2lBbpEGP4zzB0bib8yPshQzTJQWS7Fs+mrqzuHmf57NrAhjfRWaEXdLJQONg2eY2nkWfjH7SBiAk6y9CWcLjaL8Y7jEnB8/4u/vqAM9rvx4FGqanHZg9MyiIs3nO2jOqdIlZC7Wc0224rxbFSsGhppF4pru2W9XamL+ri40wYQMR5XTSgT+RsdU+PvH9lwU/0dHYBi36RF43GjFGDC6SjqfnTqYTMS2219lUlIaFrJdCHn0uEJ8NohDLOQHzOBWTPunXIGPHZDvl4aCyirtu0BH3bj+75NeHbLD08aMfxA8TsfbTwSRkikw5V+lqtvO8F+CRCI8GPiwefq0dVjm/wrxxpt3f4b1sl3LphGhO8COegLb/paku9H/dFm23gV37lfn7qP8Q7fhEu2MKkuD6cOhZZnLTOElf5hexk+7OUIg/TpHE9su9oGQ5N8Y9rMroNRX//cC1fgrK18nS6x4cu/vrFxjEqBEZnAYmuCzusGgRorsSsZ6LzQaiukP3ODIkVV8CePPbFEkla8G74rQpkLr14XtqeCUOFANLvRy4Zrz4Wi52thQmH2ZlOQrYU7QblXuBh6BcXvrw5xuRNQNBXYce0Rnny9UlIroVOTEJWBYt+OuiNCd6NGeH/v0neYNV6BXL/ZuVFZOOXs7Onx7MumjWK5DFCMTaizZXrdsL2JtgCasAcFrNq8hTMJY0toTWBAD2IQIiYIANadOKAUwKCVOqrjHY01vuWEkitjHmLlRS2usS6UjrLlinyjKnnhVss3YyOUL174YXAZdVZ8n1jOk77+J4UhYPJmzdNnxLjmtCoAXzDDXnLLqzOf+1LqhTkhzUwPrZHMDKlZ58BqcOouKolVcannKeqdG9BK/J17zNNesf8jt08woktjkfh8x2lms0s4AWwPssr7HxDUiq1S8VV6cyYMeRPsJi9Ak7WeaXTtv2EZoyMvkuzcNEkVqhBz+I6GIzfde2MXCjX1VyOf3pQCTLzLnq0SBr4Dz/fwEw9KkJepveG1+RV7s6eUWvP4iD0iQAle6Uk95mZKupRZxcViB3z69XXPIcWUBZdZhYg+I1lpsUQkWQB4Q1PfDDpjrG5XudnsuwQcSkzMRxQXMUDJtTAju2yygP84uGvHiDZOtgUuuLPNiCOVEL96UbQUY8Z6Y+biM6V4i++gi11kn82I0m6VGAfXkgyqvfHG3fCyy5p0zJ/1g+LHxzTPnvvgJMmWlpIhF+0D+fX+5GWbktHnD1RuljS9ulkctR5er4kJQQTS8rUNVdLc6Xz94mNrzJbRKhrgKDM79QkS6/hKV2A/zYHBQt6wIqcs8KTCtdV4B9EGNiEDwVy7g+5jrLPoA6j/QDvgY9GbvbBE3mP+7DR4oZn0xbU8zhYMT3HimP8R++dd4Q6yQKgSDsg82KEcNWpcfYhsQ+W3NTvB5t6ss1gV1tR6umLxWXVtRM4H+xGacAY01WAGpYU69PUKgnjYPmFPVj1d9CGEyCAW3TERERQOa4h7wX1M9BxQz6NIbf5ocHaJPPsnZXx2AQNe78IUb4DX7pxODqkSuTdAEzogzV6TNdJlOl2c71xqfGydxn52j+S2DiZG1EOVPBpE4489I1BFXIJlGJUqZwezE1PMyvlVgldjWI2e2niDtbC9Pb3BhCRD4V+AaAq07Pd1IYiGvLyjesuUerTpr5DMDCRTyQX8Qu/IqI01Txoh9qBHnq9LPm9XP8BRT85WlAvPlskQR/BWUI2qzUGfGSa28zjV7/hLWgnAZt+/fU4c=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx65a7a586-833f-5afe-b59b-ac56c31ff507" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx65a7a586-833f-5afe-b59b-ac56c31ff507"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QzX0sYwofPtrNffIJqxExCBOvT4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SFDbyPw5GltzSna88zNeQ8X/J+No59/Cz5Y36U2SkGUpIrlvtxoV13+/QJhZWb+Zeq3z04moZPNveB0+7CVhf3ctJodvubGZAHu794Iq9wU6z4/beVOfPoAUF8roZC6j5LwmN+k9ys55s2LCmWLyjlI6tAPHao3wLX8ckyU6Rrc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>zVL3HqpLok1i2RUlQUSRuD9PEK+dD6H9g5vObIXggL+GdMnvuVVOE6M5Z15KsVZVbi2tTKJJVPKqIogm+kb+ROupGNeDy5TnevJ/YYHmc9mDQahvej63iORjWmQSfSNkLfF56wjR/1CmBc91I6Sn4loBsw9h4ddKE4uzO5wAcaI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>JQlpDzSoF/tCg9w42OMkVuWzfnJ3Ri6xc7vBvJj5c/QIkE37Dgc/ysYmnTxbqbwKohNVLpj1y3NfY0SEslOnVTlXk+fc9iZGF/kQ7KTT8RbAE1A3cgzl9I0PBDQex0hc3hR3w9/dO2PBOAF0YxPwZM7y8eqncTnfkPpWrpjEwSS1X1XZ0mjrneLr37uIGHPnYo9cfDmmiSSPF9dqTnmtEzdjSi5vyRTS2er/j59jzm2kQEcw4ppPGpgEZMzS+vkbAgF45cXMq2WNmcDZwueZFvtQwiqrfdr2Ozqmhm6fgRzE0CRc9glysRFibhlUFv3oJidJBE0p86hUMdmFn/4cX663kVHOzim2qiDEP5+w3qGAyUyZ9/hxMfZVVspslbyn00FAtS0MensrclOUo83wAk2YyTdS0LrkR2N616wX3YEbuRSoh6tKHEaPn7ZFKE/5GVmOSB5TeRZzZ4R62tNsRZosqiRY0PLiHyZiS7b7MxIowh1IfqlciE8EgUW3lXVbJWqoE66gFje46stFG3XLyBEPancU7WrzGfQBf+2+xPuoY7apErJJTpg5D9Aq2YaePUrGgfWa69csSmoLfSey7TbF0v+8t2LsKk0oqKiPX3p6HDfw1k6S3TDoppNYaW4qmIysSSFBhAywJHI4uf1T8gH0EwHiTVGjfU4Jsr1mLSNKIDFgnrpfGYMjX36C5n/nSo2xAWWwXeADE1WTtjSx5bfqhwsMp4jdQB1npmTWai9aDTi0jHysnDna8SbIhzJladp4gecAbKvajDSst5VpGsGGFlT1a8D1qFGksfKDSYq2qldBuxljuQCP/3qnhamUSYV+xljmXQOjJQi+TLFNLu1BPfca/arqo7CTwy/8YD6B4DDtBAxmNCYdJMBBVrvWYKtZvESosrvmGqGT6m+WqLLGeet9wmDh+YSaRMQReml9A/XuNaxuC3DfBiS5K4MHOHHbN5/IIbSfNsBCX12aU+4LjSEHN7YfluOYbXpVpUXMCQrit/rNhQm1/MevJx6gZC/vKzSX5QkKmO2eVI2CvygHGXdXiE9E0R4DgBmJ8ayO6rHZzWa0ETpybs83bi+Y8tMPEieiYkoNoh3jqEGTnn1EIq3QdwaoQRUX9GO4o4wPEGW46I1Fs53r217N7sLjnwCbuUMkP+AyA34F7zKrRzXRZueivJf1NiMRBb5R1gBfyZNqImKYlQ1ZxwdF0AhRhF/R2zrLkdGxvME6yp2j+EzMpydVEveBHEv2qFT+1h+M2u8CrWxRpX8ECHhnh7JD6qouLsNffwwFaqajh5VRUDfpg5YkYN8HSCUPbPXK1KZoWeP2av4tC43b1J5VVkuJo0/wCm0pu4K8ZLcAOjAXVdsR3qu+gcRn3EO2YTBuU7ZN4LckAvZRiiwa/KmU2uj9WRbB7OBOe7GfpwmJHDszpa/w+JkGypa1B7fGSf1ZzL81uF/2+IbLXtpjkYel7AlBmT+z/8VMpkz6bAs6i2u/N9YwxaQE59P1/3SJLHaVfddXH4x4yPTHxTZLruw031YoEHXiCQHfdW+yPn2OY8r2rjIk98kKHn02MP6dr93HYByUZGSoyz1hEkq5ntnVYnyFFUwjloWZbKz2rjML3bk4WfwJv1qwP9ydfv+toclg5lPGcPoNKfj/4+XUEzQx5Rp090n+mcWYXH883BS+FV8K6M5Zhux+y5yNjGLI01vtIgmXP+csQ4Qkh+0qBD0g2cW2J9TrddwTmayM058Z0SvJSnfNm6dOoGHDCotQMHATFCHl3BzKxi+tZxLLuae9mB3iPA3pNHwOw6Y1jZz8PpmiqnVz1UgMMfDs4g+pTlDr0Ox7ROELa0hOaxopUIxcFd+ekNIk8NeuIGB/x8aO6zqjs8JEnq5w+JTBpjmDqMYky5UtYU3f3Y0oh6LvfiQOA5MgCfqEBdgW5drjhHkqJ8suLiWCt8HLSv3PK1PZEwCuMxajmthN0M4Vse1JDfCm7yD2G+DjdnFGX7mcdBTxaf/GoVXNczoU8sklO+p0X/97Cuqep4iWSGmGY1Fb8/M72PwUjkTQj6W5y0ITf59rqU8DiLDy4u1rlge5Ui9NJ79B61ddJMCGd6NTLy+ggmlIQtjIUhJwVxUaCM522T1BeHRnuLM6ZD15WzY/dEBkHixhhHgENCdCwsMKxxZzk8k1m9TCvLSKtKV0Mas1iyBDBjQoRZA8gmHWlzT+IJ4CWEueLrhGnJUNly81EQuL7nx3ZVj29r6qPGSjuHjt8yoFRPP53QMQPOOKWE8MlbI/u6iHK29Pas7PorNjlcYZBceydvYH8rDSR8UnQ8mZAE2/7+Z37oqLjB9rM5ASo8cybp7iHPRHJ+NaEyn07ZhSXrEZcBjog14aEunSpRtSXIUB/gPF47DeXpq1cqSq24hCa+ZR3+bI7fLqrvlS1v/w4drpj+DO/UIFzYCp5B0KCPEA5qGeW2ygDz2H4sJirZsZYelE7Uqxybaj8mMANTLWfm1RF41Cx+ihSZb1sK+xjG5MDV07vt1yQX+9x4PFx7YHljH5z8WJ2jfk4NtyxcPw1+Edq7BYU2YOQvvmqg45FXy9htnhtTd8r/h5Ew77+eipX1rZn5VuDFuGuKyv8QeYlAObVfJCGzYj3q4MvB5B7gyl0nSyHkBOpgPRLYpC6BK1YWqHyQnuuFZgf0+ASwyyIykvRX9q42VVlo/sBUSSmzhw8BiJiuJRf+9wZusu4GGect3ENb4+Ygq33qeEpFosY2I5uHAsossl1ecBsb1ogywncKH9jrVdPwYUwWu5a256GzDxyU9Y1m63EJs+XLI+NXNeEwOqfzG35HeLHSY8sAq/28fLp2TIbFWHUv52NvZviwg3GXX3vdcEqZcigiMiZXoyEvXxX1/UDqgbWTE7r1GZpFWf+aR9j1iOxMOHCSYW6OJ1SDQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx464fc80e-3671-c54f-e532-119e8a272f0c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx464fc80e-3671-c54f-e532-119e8a272f0c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UTOvWDePrTbbw7ehcNRuXsVMMzw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hkJLVa+vmpJJvUwI9X/v9yrqE2Ma0QWDOXpm46S/UzHPMTJZz1Byw/W6azMw/14Fi6o5WLC7q4x/F5VHyDRlGSyzcdmDvNiYPKBbGUM2SZJo/QIbXDNqlURIdaAlxv3gbdIcUukBeIorjI31nVEnL2P3qmXBdtm1laTNUVaZqyA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>CYTdA1f2UGN4+hbvddgMUy7zaTWBxmADXC/Tt3+Q+y7oKRAHMzLZHgkAPXBPU74SDawAVicKE/i1VvvGBZNBMRPkdmyH1urOLRy0LhMBXF31pgr1me5YL7g1J5zAirTJWmTZzPfKoOzX8Ht4Q7NpQay7szAo8FjsX4MjdTfdw2s=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>