Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdb1937af-2eec-f4fb-20b9-a934be3c02c5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdb1937af-2eec-f4fb-20b9-a934be3c02c5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7PYAzyjNb1IENziHL3wkkwC2HZc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Y16ADNBy20P/AmCh2wvVN6UQF4kh84TJ+iBUFu2oclDzFSfVwmdpScsyR5stkBf6gBInSRGZ//PRtL3FZBGClA/p46Xw7kLSOFx6s5L/ashTz87M7ITGbATo7lKBskLpbsh9nLS6/8weDGj6bueQmU0shSCqHfwvkVogh3eFtzE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa2634cde-a5cb-6976-5378-c8e176243a2d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa2634cde-a5cb-6976-5378-c8e176243a2d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IOttjTNwLYjRK5+jmsfknCK9w34=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WStYu5G4c4kaxc3Ae2XK13YZNZ8pkDRgHjORiuWDkbqsvH7XFZPYSyeGeWZKxGcRmZ7wYDoHlA1nEpuBRidZj5UWN8WegxwD8kpr/yunqSk8LVH7d5MmfHIHA5MGNiDfG9Sjh1Lc+BcIFb1jMj7NAYW7ZpaPEmKCapg69KEfoSI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx02086c2c-d691-f08a-3c3f-5d04511fdc7b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx02086c2c-d691-f08a-3c3f-5d04511fdc7b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WfqYxiwSvzyxa/1sjEMB3tuVbgk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DfWMcK3jtRwkg8IghL1PcmfzSz/E3iw6helyPIE0j24OEXJKpsNcgXtvnbBDE08jPksOTodnc9LiW1Vd5qXArXumWJ5es4ngRlWK1IhVD5+iniKyQJWvDiG2FCrJMTXJGyrAmtvZNmG/sIoM7yZJSiNkkw3omERgzCJpMgU814U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx43e14b4e-dcda-556d-20b2-230cfa9f6005" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx43e14b4e-dcda-556d-20b2-230cfa9f6005"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9hnosFdkkPg8sZ0zU6VmPat6vIk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>miWuKRVOSfIJZM1pggbcBdbbtnoz2Jc+G3IYBcL3BS8KMFtSsmo0IhnoPKNo/SCCq1G9xlO6CUv+ekQoO4fUA4eSy5DgTKLSV2B1mVsI9l0XbUwZtjzMMMS/n4AjysMwT27ilFBDzGfokEuE1m9Rv1WO2Mxxi6Im+VmsI3j52zo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oazyXPlRRHDXFn6NW3ixv/oavIBxYERDIigUDTQux/7p893ZOKYOAYTS1RIDR4nOVg3IIVbkd0ayvaMclOF5lC1L625knqWHyEFTFasqNQvlzm+TYme5fFgf9VnkMuKt6x7QSgqlGSShbX+YEgNj6xyT3HMGTADb5AESTSVg9zc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>9+ZPG86+QtNUMJ/ENn/CtVNBKHXuvPKSWHzpnvC2E+ISkURND9zJZTLWW2Dtn63ii3gKQTYSUE7lCqrmzQeUNmyTDvoN9wGV584YVCBU51lJiYbuf59D5C5B4GgminbrL6NqNz3rVs0ZR5xG+uDWskCZxPKiiPxCE0Wj8FYsS1hLMk5iqGB2k8fPVApu4BrYUKHMh1Xj09VOZh/JEvEvjsH/EOq2ZYhGfA7Y5Gi49CwA89QaOa2IXc3gRzo935ZSbOvMzekIUKnmiXJReZgJbX74uNEcv/qPpHT7/R3us2ZsCPLADP50BxRiBf71Q6RnUA+xYY6q83JMQqKbrVIg/OnygyeY9TtJGJiHmeS+wse13+n/o1EkpgtDVmPdQv5FXZO6DX9mfVS5pDxjA2/MuqfkhIB6CAzDu/NV6AoriHkQNV69JFy53DLaLCiGmDwdBydW29VCYHxugvMAVxny0Hw8hddw0ALLZHpfe1WjTlfBR+g1MkCL54gx6vfPjUTHp7St/JGt45ceJ6Ydkqa/7QMtaL8mp9QIqhhhtH8YyQ8IgHa5OnUz7elZtyVp2kXiy93/J33v1AOzY8wvZXB/BOQjgBOCqBwxwP8vxj/n+XFNjfW6JZlquY3kxGuSyILbj3hfJMVt1ObPfKo4AnAviNcVfM25IKJvDDdQeO0lTQ8G5LZeo0Fy/8pC+VMRPoMWPZAbY+gqFZGg3SwQhSAPDnK0VW3UVOoLjaz73bOEPY1EZY7+oMc1ZUl3NkN5KPx/ATyw3zzHe82Pdu7895sfqraOU/If2mzv4+fZEMmvIVSW4Tl5GxEZU5EiEzOXzrEuc96fRWU7VVpTwVSzgAoLNvgZebJ8YcDcnsL/IoNNNwqZVoXr/Ya2t1fENCfe5yoRyVQ15+1kSpU9xXZPLw+kTjTbWErvOHwvOujZGFTTDaE4IHQDuovpDiPnJfdnPoH+E4XwpZe46Dkr1B6EleJQkWImcjqqy8btBAv5yI5aPWIQtb20ThXYitzddSmkTAj3NOoDsl11bdeUQ2NRA7P6krK9GenhXsxlSh/DqWBy3f9RkI5r8J/SIyT8uu5dLg21cLa/Z32SmZf3Kr8LjsETvZDC4kelTpbN07g3bh5F+t1NhuQvZ0mGcH07ISxHeVQ9YvO0+1So4UvGfvZw0Qeu1ouzeb/AL5RT1idfHnxf3+dmxkDXDzCDtEDG55W+jUemjyb5KGinnk/lRKsoRvn7esPBTH+VVh9s2uMHsehZz28kiC33JnmcmxUR7/O5YAmZKQ1CMns+uq3hLth7u8D8uOupBt0L1tmA5KT6az94Z5aP0lVDqXGYr9nVIZCIa2gCb8n7SNKKy6qhTkanRXFQBRKPXZFewK7Eoy9POAoFaPw5C21/ZT95D0gRs6IjeDGPeUjH7nyXcsrMi2AR1/QUqfrAtshZT3pOTw0IVlCBq5YhfG08St5q5ORM7iwOXGPFXYsm1thVy/b93PnpgRUq1YTaG956O9Pazz67brECsNK0mjtdL96zYpagY5vAPXXMLAMMbOsYpRJFkWQ5SlT5qRZFHdiC06Bmr+h+QJMC+15E78Ot3XdGpkSLj7WkT5nOGECqM2CLlGholxURfv3PzGt/7R2AH9hEnZUyCvQOqZmNGSAH1Hvb+XLylTibTOyRFx7oAWMxCBHb2ALpd2csvcJz6Qk2gtNb88UmDqhbH/cf5q/7nvgQSlWo63MBTRXwIbLohYW+6pzYqpdeVNMy2mDM3cXgwt/DrMKK3NBh/Au+0l4uKuryJDzBCTxObCKA8aOt8m0bgoNmxM7SyZd3AXiJLO8FHC+uE/NDBNKEJtNNRwVwwjUIq6PeHO9n9XVZZN9futTWF2fw9L9d0UwMzyN1o/SBHdXkXRgo8c0F9cCzThaBdhBBZ7T+GCjfULgtZnScSKskGq0ovVHfAqTUKz/cQE1ETX1AqFCpFPpQhLon/SVs+rIpmrjiFte1bEDUzuKWgLsfryqMDgSk9XID0Xe2M7pmySTy2GAakgKuNtZWDAH/7sKfqhZVL03KWLO9k3hMPpVw2Dk1Tt8yj7f+DJokWIUyNPIJ/kYYt+XaJu8o29UzlvJuUs4wgsOu3tDShy28Zr/h1ehah3M1zb5Z7CPD67Geq91Kw7rnyBr/7k69f3b7xrwAOMtLnZrKsmHTdWvMjYsiXMlLYyHm/Kc33lyuEJOA4evhNSU7uByV+jta4s8Gxn8ucN6bbfVkGbBFShoADumGjQIg4+Nq7NtM3k7d1/yB9ITVzdYB3DO+oRGpsZIXft/qBzFmFRbeIVZDleIwYIQIo8GeGPYZ+9ZpL/L4AsxP4hD5CQmLdPTs8v6bIHD5bbqikqXGWXd2lRF+yUnIuQGSBnJTzs/0cXKxxRSXqgQ7rdfQjCE6NgweHX0WDProjxk7Tbx+ZOUKvyajTuvVaDvADP0Enl3SnDMBlxCDynIHk0UkAhqMXYLAES+2pgVYFHLFr3QSpZNvnWGmL53sDqfxTt+oEQ5vsjaeeB0FvM/G1n7nPp28dcdBM7ZU4FwYjj+jo0gkVh7JXFjX1Gq5ky0oykOObKudxte6l6gBpV2EoUZEvDIXTsi4lbipVbMe01HBeeL+eWgpKAlqGHMkSzSYZHhJpy0XDbdW2GcFOcolQUziRs1pb6Xcu6FvhvkGRkEopR4AAsajUKFDqBblPan3SWNClDxvQsiIvLt8xVxFIgqh8Fm0qehXufz6Z6TX1jUl1XW3eEd/GovZ9b4/0M7nQTzsWIcxwIW6PH9DnOD6iM4+LHiMOn+gcP5ePQYIm+PqHkHdcdaZgfxH/gdqPDcb1IaIlYIpOdTwJsRbjihmmSsaMLPNI6RnHfLmbyOzJCH9F1xCG46itybYOuI8JkqQ1tNL2WMrMhanJQBMjIq5QW1tuZwebEGZxrA=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ePdRNqeAq8Ij/yIBONhBbNn8t0Y79jl/SyFD1KpSnMXKEG84/Dg22MklE3gDtkJ0lgb/VMTZcM2h8+lmPl7CgDjlLK6rY+4FGuqBDhAeiOdteik+KULbdLxafKZw3fMU+y6enbOpJ7D64yUg1LjIW9d7pxzY0PVmYsWYuC813Pk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5031f0ca-b0a5-5c9d-3ddd-26f15a7d28d5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5031f0ca-b0a5-5c9d-3ddd-26f15a7d28d5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ujs0ZfutUIODODkrNS5PeiilcJY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Xaj/4vv9J81K5b8JNqhZO0uz1h4tzWor4FZyDA1hQMyMcmZ7lKrwogjM8k3RWNHXG319192/3TCj9UOU3OMx+5fCYYxPO/dRqFmv9A7iUhM5wwq7eojoAZrEAYOLASmArx74x+KzhF9Wnlg7zGyRFEA0kwheR432hqcDCKUvqe4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oazyXPlRRHDXFn6NW3ixv/oavIBxYERDIigUDTQux/7p893ZOKYOAYTS1RIDR4nOVg3IIVbkd0ayvaMclOF5lC1L625knqWHyEFTFasqNQvlzm+TYme5fFgf9VnkMuKt6x7QSgqlGSShbX+YEgNj6xyT3HMGTADb5AESTSVg9zc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx395df67d-a16f-9cac-d509-d10c35c6bcb2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx395df67d-a16f-9cac-d509-d10c35c6bcb2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5umXS+DS3Wh5lZIsbGDmig3VqUs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>y2QEf7SPhLcxbuiuiBylvQMBb8ayuJtJxtLQAdBCAgzbV+/kQU+gp0zZStv8LdqC1IZjUV3unXUr+w1iSYlT6/kWC7qpmG3F8wxuZ6JiiS1x6ICrN2jNq5BULtdGGAlp0dB4jtpFEzGLy9dJzIKn2+Q8XofY2fbTL/I4roFIe40=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ePdRNqeAq8Ij/yIBONhBbNn8t0Y79jl/SyFD1KpSnMXKEG84/Dg22MklE3gDtkJ0lgb/VMTZcM2h8+lmPl7CgDjlLK6rY+4FGuqBDhAeiOdteik+KULbdLxafKZw3fMU+y6enbOpJ7D64yUg1LjIW9d7pxzY0PVmYsWYuC813Pk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>