Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx5fdc1c33-4a12-36d1-e6f9-3c8850f1960b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5fdc1c33-4a12-36d1-e6f9-3c8850f1960b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vmjBG1lxo6c3ZSd5mZvdqQXSnUM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>kFR1h7p2uueubw74FxugUm69F56iEdeQxaCyHY16BznnQN0Myu44JvZw+al+LL6RKGSO96lr6/O+aokfGMSmrGZjRvXCwfDKxyRvkfAmAv0G8n3gdVee96cLPLYmUMLsnm4vywnr6Bas/XJtrcmMCSaBpQZlcb9UcvVXfETX6kw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4b888da7-d1d2-4c4c-76d0-e4c200c30d06" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4b888da7-d1d2-4c4c-76d0-e4c200c30d06"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>iDtgNqyTUsK/oFQRcuYVQmJomHY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tw67umqz8RXaMUJJgozdNzuSGZrEde9UriKpatHFenORTUoNEx9xq3rXqGMUff2fjx0MWOaVJWMg3emi0LjoEwglBwJzdogUZI7We/2pQQ/QBJMoqpmEb9GDnB2d7Ol4crN3pXmedEJweUlxwe14MwWwki4JQ4eaGpWzRaHQjxg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx56280f52-e30b-bcf3-451a-4044629e6715" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx56280f52-e30b-bcf3-451a-4044629e6715"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>58PLX47FLvPEZ+oz2/jxfLdZ9uQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>1flZiNAGVcRGBU6UOEbeWWycJng12PCfDqzNxIYz0SdOAjYT6slmNH1k4spzw6x5D3RxLnvzKoOWhMHpIITgWKd5yHWoiN3C5HcnK9YqFIng3BlYnlC26xMWuw4Uv6sSFKu841+AfBJnpu//1nJ7Cdd9g/8jjsV4XX5q2pszTbg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdb481a23-ee80-cb24-47a1-c577063f69b9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdb481a23-ee80-cb24-47a1-c577063f69b9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6xTHl0Np2mE67MoIUQ8pKEMCn8E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>eMWnZCksRxCHUVY3i5erjp1kdNLfW0MFVjOTdPgHnonOdAmOcoCo3w7XLwHoszYd0VNUotZQZz3LV3M6yX8KMQ2+oQ3sgKgl5OnfQOj49JjiwI3qj/vqdGLoLtqTK0O/meYMvmOdlgFhCC11SBTmvzGS4rmYuTC3qEXFEq0TCtw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Q7RJ6EW0y8BbtagT4xjhjKV2dJPRM6XzWxc/53j9sJBzGmc+4qgc0pC3D2TusohKVaeojHvP+4gZ8LZ2PZ1e4Qn2dv+MXj6apb4JyHlrXjwz5RnwQCi+8VFRNGuoST6RTpHVvabmRL9/X+oER0+TGAYAq8/XBVb1+q2hhJfnSB4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>7E2qNUFRdnRp/raaEXA5es1kaeWR6hpb7AeCuLd2kdiOR8YbQmrnky6QPJTbvae6mRRurZCJ91Qk/+1TBqxszJQMY6xHZwOJvxvMT3hmJ0e0bZjuaBIgHFHoZVCCm00jbNO5EeVERmXkfkckIzlDBf1oC4i3QrFjGKJfvU3IBU3XYhIIxzYDmRkFtJwdqZv3iIwW477sSSYLLU16xoEYl0ZYw12CGDL6RuM6hQVMGN1DlNMD8phXGMsAm8DyF3N4qjshtV2OMlePo+y9Q78dM6lcYjllxNs1fbstq6aUMUfNa2IiKAoTZ3wjDcdEz15CDgghslnFVOSIwd5uhkmBIAv/fevHgUcZQ6kpLQDvTLgc5JUsTuuBNeb1gEfALuVjnhCXBXbZ/SyXzls53KAW2r2hp6MbpHL4wmWwlubn6wyXvePL006UGCesbfAzjx694YgCPXU7SA7YklsxSewQSAkdrqFJpTz7bKha0VtqSNISxh2fGGS83PCd/lZQiM7CAWgIYuIdmJQbQdZ5kBJ6tGYkBAc4WPwDioBZV84B/W5vAO5X8bZpIOkDz6tUf8bhOZWaRDl0LhMNi03X8Mn2GoiQcyjPOY6u6j0UdNDeiG+peY54VoWJ1mAn32AYJSg9rBQAb6SLYZd054JIUGJ5b5SeNFARkXnVCWBiPqywqoXxuS0JXt/jopyVZm3xcBfwfE3enwRnOtrG01qiL1hYbhWv552NJ/xV+hm4yBg67u0ehD3WS1aENQ1geVzI4NY3naZzy5WiMErR0waq6s8nrtuTj3TFTnt1dxEb7larp3vFPO/cn6Xwlif3ofz3GjLdVtfVHoCJRx8zOL+bEzi6rtdcXqwlzoV5tK+MHA5H40fJ3HMKj4Ytvxn+cspXql7YZajNUFdXIoXvTUcHHnHi+YwmIPvrS/SFJRDguoU5C3sZis7RK4UVkdLgLtsl9HSBASosdpqlGRoLpo/1Z66EyZOkXMBY7CzflZhjOMPewFumnqa31jtnDmuMxdxKs0l7mr4gN/K9aBAZzE7oybGzRvUJF98BgK5m1THdlqYhFnBKZwxIOx3kKIal2YtcfDhgqzAzZUlc/EhBMli0udU4o/4C5zWQhNUzfokXLVMaw0O5oC9yKjJuuiSPKWpDrKqw7BpKRQ+QGhh3RX2akxw5AZty4XYTpiFZHoVSqR7Rec8LoJkh2LWKcXKTMzlHt737MQOGeI9uOJXr6A1kQne3dN4Ot5fjxbrfkFOKOnDP8LDHDh3JfV8jOvIaAmpsmYRfk90hIOjsTo1+hUO1REkUZSoKIrRqm4L3hkzlAZ4G/d3P0Bf5tvaq5NaG7XPfAkxHrTYlu91xGCYxJFqWASaSx5fF9a9HJ7SSNhOHeYY9gu9x8zlpAYm4RdFKcTDaHdGCkzHVGKcSe+/8xmP4QvyC8SFdJrHXQgsF2jp93rPRL1IhR1W/+VVNbWiDx1zZAoGwBsMaRmcCh7baVamJ3n4F1poKj5OT9l68xdqedjU19WYYz517C0ztHxgTv6JER5SGIFv+O5cUPGPS6J2lQIdDjo6EvhyJWYy6E6PgncJprjoanx0shlyQ523QT6CQbLIoh86dIWcYKg8BaXutuHTJiKKHxOzf5ozOPgtWyoC4ZQdjumTpEPmL1BvgwB4L3PRXBMbWt2yHrRvnGDjKRqqw5hQhSYarB3yRN6hpF5g47pFvnuoxJYoE5DTzCkpSRnKT1y2Sy+FZqxErdZnbq2E+iS9MvnyRNiP0foCDQ9f6FG3D1euYrReX/+zd0+tstgQzBQdyXeTSr8cNSKtykBFu00W9qWhINB+4O5e/62wzTCCeRFzb1i8lMkA/yWMNaWdUkKrpqIFAo0JaVd/Frb77eB+Yv2G1ivxtW5bAYD8mpv5JtL2ByKlC4yYQ6KlA4F0LrkpSfnTSe+qi6udR1cz/eNaYZg9KhijMMtIk/9pjOIEJaTsgrHfxHko1MqM96EDp2uJ/28ZS1kNwktHgk3x2Fli4BSRuFtHMkoYzQXlp+CgjVJR4Ll0HKrwvJ4C772MBlmGwnxW10XO3HCkAUu0ujdWBHCDbCG2xgEllzR+W9TyjZqfW/2+TU54+ETpsVY8cF568CRLctFTaoke2i+bZLR2i+CNoJ6oxkd3s08JJ4oYGlXroeedBi1FZk9r1mS99nppEpeZ6XG4dDwYcss82PFHuHQyLKBl5Py5vAGq39ffs59cNJb43LY9a/XckC4oZUvnRQJkPsUN7m7POhWSNt04MQoWWiQ7JybIb+mB+6CESOLfgsvi/DsMKxfKYrDk6RJI0oa92vhHnn2QImEoAkn24Er/IQrel2UiFiG98WY7zuu0iBXawh5MEoELcoWX5tjaNrWJ5nPIpJnGXvm/86v30+0BiDekzw7cpfOh2pFqhkGWmsKPpn0kghnIV1+0zjfFUZYKsxL26dPkABXjziW4ME4ApbvNgkKOIcARLODZlHfOjMVWUtak5k4sxyihbJmUO0YkSsss8BH+NkJP9yLLHHegtOgm2sOxuozbZDuNVDzf+80CGkpm+DlbFi6r6Cr2zLTNb5MIMvvAPGlkBHkmhEszhXr9YQdnixRZsyx7B8zgyAT4//1GGvTPWtbaKK1EeBId8G64z35Lct6YIVf3Iu8qm/zLcGq4WnOlUdclIpc+Y2OKM3kjnRzB7CTRA3bhB7pxOMBDD+s4VEDPvLP6HWqkpJor3QGziXLuIuYbRAz29aUxEd54+x0vVCPbccZXtMHA56+HVOXGF5dIYhAS7bxXRhE0rxj9pZWoOLKj9C+MdHGw14KXrX4IWmuvMoO+env+Zu3zPsOGRsajxHaclrwxhmnP8TUhMRTVgP7WzyP9mH8NP0haQj1Nc/S3wQfR7gvkZjSoCGa4yiV5rDte552m5M/Gunac8O97RGvg=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>0gCZwpPa2sR+HW2yCLsI9Wg8dTIjJCFDzOck7a4q+zLBmbAw0cvW/EOTHhuPOIK7VGyluwOgjGoPI2AuBg1na7uJey7iy22BLCT1WIaXE8yGAsZz0ZXq8xW30ROUMroQ1ogloXOC3TrROk2PgeK+kEZjXTVBT9GvGBWvVoG3n5E=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa1b785df-d9e8-e289-7cd3-abff4b355b6a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa1b785df-d9e8-e289-7cd3-abff4b355b6a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dq9TvVuePbM2csmImqpvXiKvbA4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Tp5czQ+tX8JAIuKDl80rruffvXOAdulSR4VA0ixDnKrtyyet3T0h0JsxrZkG9p1IXghtXEArTevSKFNsqjNx/YwAZHsViEkjJqPiJxhizAPIyu3LTp79cME9znOsD5Oz2uhgQ3ux68iNKShcFalPO2AbbBARvv1Y5Bx8QCoM46w=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Q7RJ6EW0y8BbtagT4xjhjKV2dJPRM6XzWxc/53j9sJBzGmc+4qgc0pC3D2TusohKVaeojHvP+4gZ8LZ2PZ1e4Qn2dv+MXj6apb4JyHlrXjwz5RnwQCi+8VFRNGuoST6RTpHVvabmRL9/X+oER0+TGAYAq8/XBVb1+q2hhJfnSB4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx05d251e1-5a95-19cd-9dbf-4c502c6f8619" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx05d251e1-5a95-19cd-9dbf-4c502c6f8619"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>E8dY3bxOrNaFkrtK39N6jb+IKas=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>gM7E6rcSS/JFCuxYBDkToi0hWQUXh3ZjU5CNJMV6OoZNf3yK20a0oHglKW+ahrw1WSF87T5TQTmKDU/qqknOfa6Tgz02SjtRiyGGSpjvsNI8HITkKhLTckqAocMkMvwBgvB7zZws+uTM48ezXOgyUssFw1GiJzZfz8zVFBWuUJw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>0gCZwpPa2sR+HW2yCLsI9Wg8dTIjJCFDzOck7a4q+zLBmbAw0cvW/EOTHhuPOIK7VGyluwOgjGoPI2AuBg1na7uJey7iy22BLCT1WIaXE8yGAsZz0ZXq8xW30ROUMroQ1ogloXOC3TrROk2PgeK+kEZjXTVBT9GvGBWvVoG3n5E=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>