Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx39bd88ff-403b-272d-7e33-14b1eea7c700" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx39bd88ff-403b-272d-7e33-14b1eea7c700"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+/rqtaiP+6rEoH0XmBuFzpqHbs4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SrcEnpZcwroK/iup+q9DFXPsMBfr35StUyH6oJGBlMa2NSslqb4rOjz/D7V/VGqQx0bxWfJ5ml+EuLTg6X4XzAVDljrpWPTigUtkQijNb6+KEiZhVx7ilPQ4NenfUUbz11aAtqe+pULiVzr5So49lpYICFZT4qcDdyHACqNLo7c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxde477cf1-2f31-ae29-7ef0-25b266a9383a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxde477cf1-2f31-ae29-7ef0-25b266a9383a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LV2tkEdNsNDGahlNBzjueNJ5Bzo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iOL+nARjuKeJXirw2jQllXlJJS+dkYjSkQvBcnAy9FjWAv6lz94xksAUnChAJGSFGXAo41QRP80NRhrL1H4uosaNJrGXWfBe7S9yoyoBUbsrwo0xbphi5tsDqSMtXv3+pY99CH+FtZwKfV9epqGWZjVqm+b9J+eAHHxjLqSvXjc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx87950729-23f5-9205-dbcf-8ceb954f01c8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx87950729-23f5-9205-dbcf-8ceb954f01c8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>euJYNQNlAcYI/OkiIV8VcJkWck8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zgEDiToAm8MOcx5w6wg9FBWn8yt+uXw7c/HdM4kuNhgentwmISwMEqrU8SLQVuV0I4JmfFMaLDTcRwmPGIWFqoGLkGW/33GDga1EqL5ThGcW+jrkoJuNdmwnMEh1BEm1IzLjMT/d0/ZYXArR5oD6wWh+Kh2WlMVP284A+Xz5Mhc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx672536c1-adc0-c87a-d412-b8751153e500" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx672536c1-adc0-c87a-d412-b8751153e500"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>RyVXbVaagxRa/rQMvYbc1/RUB7g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JC5P61UoPvPzU7vytDTMkj0QWJwebBoFZN2FNUAOz1XHOOxt9cXbHyNi7iTvuvEJZHTj+6M3YMj9uzsU0T3oK130nQRzF+/1CYZwhEHpWWjmCFnKpdG+e2zNxstEAud7ZicsPrFuTaXe3jtm8p3sHIP/CHwuuUVTCXTqaGsuQDk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>DoDA7cpiFlbrhT22AyKGUD8N3emiScL0hvKd21sBPM59iOqs6DtMwglkFkl2tuczgYQGdli6LAeHxo/l1ujjzkN33PK2IGQ1uBRktrpX104U1X7yq6ku+4OsDsWMt6yfTS4JPhHwk9bABO4wPTQnErRDBHfKqJIQDDAK9SqHTnc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Shll6ZCSCgYL+BmdChhm1uRdFN565zNbIGdOfpjkjIPA76K9kV3lKyGAKlEFgTk9onbA9xEdaXi0e9DKoLm+CVjd9nc9NP6OyWzbbfiG3fx+k1PgvbCmpCx00V6CpPjgYo8+WnK5BSiDzyy/Sk6IPaSpxD8SCHHKKHEy73Kr8wk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf9644503-9517-ef80-9b32-c4192817bd4a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf9644503-9517-ef80-9b32-c4192817bd4a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>fA7gdQoHkyOBTY9v5dR1csS6epA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>meurH/6d57rwpM//FXr/5ohP5q01n0ZFQodKbTcJZYXki9EkyRnh+I9Uc40F2byXjb8UyfSBGAgITbiSDWQ+xLZ1Lr/KEePbmOxkM8X+shNpwM3cFLhTvnkmKJJFZOlntSMQ4S8vkqE5MrafMskDEhid01Wk5Hw08DB9g4JOjW4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>DoDA7cpiFlbrhT22AyKGUD8N3emiScL0hvKd21sBPM59iOqs6DtMwglkFkl2tuczgYQGdli6LAeHxo/l1ujjzkN33PK2IGQ1uBRktrpX104U1X7yq6ku+4OsDsWMt6yfTS4JPhHwk9bABO4wPTQnErRDBHfKqJIQDDAK9SqHTnc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx490bb38a-fca7-6d41-a19a-18c8f80d0f89" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx490bb38a-fca7-6d41-a19a-18c8f80d0f89"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>oZbB51L0G9dONaQ6U8x7NwuNSr4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ITzJHEYRyo57q9epsqncSl8rfu8Yae1W64VbXWGY+3XuzjsVT3z4Pz7IgmAHL/X2IkGzaytYIKRhU972bFYKXpSwyRMWHVuJhBlA8tx82gZrK/bVv/ksrrQbGcVeBZ8/Lp0Glr+TzEUFSC06jNvoP/gLj/C6zg711DAxRRzqZas=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Shll6ZCSCgYL+BmdChhm1uRdFN565zNbIGdOfpjkjIPA76K9kV3lKyGAKlEFgTk9onbA9xEdaXi0e9DKoLm+CVjd9nc9NP6OyWzbbfiG3fx+k1PgvbCmpCx00V6CpPjgYo8+WnK5BSiDzyy/Sk6IPaSpxD8SCHHKKHEy73Kr8wk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>