Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7dccf263-1d94-b09e-bd84-0a05b838cba6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7dccf263-1d94-b09e-bd84-0a05b838cba6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vU7xAOOVI1WjBBGMjvMteTk2GII=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>kSvN5ecou3HCfdE7oTfE0VWAFB7oz9eXThx4tHxE7qaS06ZqueJTellI8XGtqSFxoR8kPQfDCx8DQtaUW52PDJQgs4x+gCtVBxBwpgHKxs1A6nqkVlFggaf8x6V9FZZkjWoOX/Ocm7taSnFpH6tV8t93uFjs2jT0nw2GAXpDHj4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2f0708ed-abaf-8c7b-7b5d-13b9c860352c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2f0708ed-abaf-8c7b-7b5d-13b9c860352c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>e7rnxTU+d3sg2oDMsv4QJkeTlLA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CjPE9oUYdrcbd8uTAFkcUO4hNOWNqugsg+tWYrzwLINwM63cpge/5hbwLL5tRGDcQSjM72S8w4+0f9axEHFvjozKY6ovf92dpi7k0xZfHgGZ5CfiBrIX2YVUeVBV8war8904OvdcTAdcLSvitQgDynB2wY4a3w0kBxYb4hrhGO8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx12433d80-f71d-5dbd-2583-c8a456e7cf5f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx12433d80-f71d-5dbd-2583-c8a456e7cf5f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>j7BMk4TK9yBcZuYpp7UyIfUmvXU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zhMmtv1v8ezay190SzCzJK4HQflGxgKyMNcfRWcxMtZS2Zst17aXWV1Bw50KbcEOBrHLzSWlaGNVQZ1XftEXThaHTyElsZ1mdlieZyk3hXYWI5Cv5IqNXAY7sAaLH6w/E1WE7x9SnsS6tIHhnM2RCoDkTFqp/4n7EMWHzmuHzrA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx10e3c235-2867-0e46-23bf-8b3655272171" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx10e3c235-2867-0e46-23bf-8b3655272171"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>g2W5FT0dc9eE9mdk4gvv5VTEXoc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VHxxsAZXMpPVlmC8eh8/XD6BDvy60FT/3S079fM5LXFwcUe6qbGbzpMCg6q1V18WFalYsQdz9RcDWgmdgSiRINs1AVDg30sGnqPZSDxVKXYesAIEfTJeppXUahluSIkB/wbrxa2WFHlCq6cvgNgpUDHZf8dJ8Gs5dPjGaGqEDuo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>XAwjOyaFgR2lkDRC5g7mWZQtaHQiOaZS64NMQqZLtdPwPMNZeOS+BA13nMQkyCXd8FfvFTnRq/RamyQ23kjFzXmEJFESYfaxYuAcnGagQxw1ojhCmA1n2gevPj0I6WjUfdLjESRUmlQq9DbbihpR8FbSgRExgTH1psgOvEzK2WY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jrQIamsUeCyIUWdebpHDNvK4lcxNuEO00uMFwnBak8EAZZbP2WP19Xj34ziKVl+C0WoQlHtwNKx+CFaQMVXtswPDTWj1H/M9ixm5poEjITuyLsEaki1OrstdjKW4ub9WFXxjdHkDCUVR+Utoo/qcdb6MqpYx8D4hMT2Zbcum5oc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx85841f54-154f-73a1-2884-5e958df2ce71" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx85841f54-154f-73a1-2884-5e958df2ce71"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>svG/26uTYP4lQY2XMYYc9TZET7o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pEIBXbQWbb1SbnurHfrn+FQP2UOfWnS4/0oey4r3iWjhCymNKfEaxQjB8UMCboTdhmdZQncSBbA+6vvDD2XFgqtX6v9rtfDKrvNxpj/QKe+PIaRzFcLEiABhMjZPChWxL3dYRV7ghrOezNHMwEOg+BZ/GfTe7qhnQobLFgIzSA4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>XAwjOyaFgR2lkDRC5g7mWZQtaHQiOaZS64NMQqZLtdPwPMNZeOS+BA13nMQkyCXd8FfvFTnRq/RamyQ23kjFzXmEJFESYfaxYuAcnGagQxw1ojhCmA1n2gevPj0I6WjUfdLjESRUmlQq9DbbihpR8FbSgRExgTH1psgOvEzK2WY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx53c2fb5d-b366-cdda-19b1-48d193a5f3b2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx53c2fb5d-b366-cdda-19b1-48d193a5f3b2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ensCeZRz1iByLfMLOUZF5CNr0FI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>EacBsydCQBRDLIahOYvJtUwbDI6lRiz4rmjQG4R8qATVqztJknFIjG42fs3jQ12M/mFJvpyRQv1LngZJzMLeR74va3VrbsZOleTMUm/l3ZWsnLibFX4op64MG/8FEkE6OP6qshOsaF7GoBYfedSeFq8TbSSkdPiqsv2wTmQWulM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jrQIamsUeCyIUWdebpHDNvK4lcxNuEO00uMFwnBak8EAZZbP2WP19Xj34ziKVl+C0WoQlHtwNKx+CFaQMVXtswPDTWj1H/M9ixm5poEjITuyLsEaki1OrstdjKW4ub9WFXxjdHkDCUVR+Utoo/qcdb6MqpYx8D4hMT2Zbcum5oc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>