Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe4367717-9874-6ef7-e2eb-a0eced1d981c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe4367717-9874-6ef7-e2eb-a0eced1d981c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>t3/O1iGrNc4r1Ukn2bTlg4WIh10=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>150y8vF39lkvDu0HGNwi1ir7uJSph/ZWW9Wt5/chcRMIYF0Vpl5YWPmalbNagEpNryPTROCiRGhg/Z8YWQtBgjiz4wR3OB20ySIsC+ewIsViqW7rQwjnR4S/veFHLwdpgXAbqrUNoxUS6PN+mBm3FnLo6sPltHZOPU43sUCFMac=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8a83ca76-9812-80e9-0aa8-60bffe356d01" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8a83ca76-9812-80e9-0aa8-60bffe356d01"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>OZlBWudAuAM/Fh2hWw1xXSiUEGs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Gk+WwofuqM0MwM3dAXdxTgEwmoqElvNkshEIy7CLNFXiKtDEjRicIZzgajAMWurM91k3PSXOh8Bw1QVljy92AA8bdNRT3zIonYXKZ3LTQQ8XB3hv9k2LiRZX3umxwkhahKX6F9ETFFMY15RwitEn7+3kSiR9vghXGBuqWDeSIaw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa7ec243e-d424-6c3e-e16c-575427c17b1a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa7ec243e-d424-6c3e-e16c-575427c17b1a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vfhgrNM9EC0SBoIZCeCRFx5jgS0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Xa1IoEgJDp2Q29nKpRpF/nB5HBtX/lE0rWfX05fHWqhiJxJO2hMcpgu24Sf7J8tL7WkRpifmqPB0w+eydefpZS6mPrkK8YdH9Uu99zt1i0+1P72oEjr70lWrlP3pwYlcgnPSafqCawri+QYCxdqOT2/Fa5cztdrS95LnHISVRUs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4748b05f-99d0-f8e4-d268-96b272243b7a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4748b05f-99d0-f8e4-d268-96b272243b7a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DUJPktLBoEKac77m1wKE8llGAI8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>D6yVgjXslQUuu0RNAQV7z6ltJ4tP26iKIpFW4HxV3P1+inzBFHAntKr9Vk+IyzhmTUVYq/DCbdwcZyH9HHzkvp6IMpnzOV/yMMxOTk7QwU6Q2ER/b+1xNC3e/JG5UqqLuFLBk4qYYtivVYpXj0+P3UF2ojx+ileJEpf9saUoWOY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TdPzDKcBWaF48EzikNryYDvc+10dNOs5g2D//iD3rad+NSDmb7KdHFc0sG0Yr1/FZX2WTI77wv1ET6fircy9rwNsfCf6GsvL+ZzPvdtUjCZRsrCRcC5KyFUkxVOzAVB5dVXdG5Yt+CCmEYz/1kJ10qXamvXQtff+LSm+nL3nL2k=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>XwlcRsrkI6khlYOaJzM5A24NZIBGz7LAHkh8smXxKWCgXirLq9919io9cfmWkQ6VVRswFBf3Iy/LApq46JVGibTkd3z2ELnwmkIab4hVlTEYGZzarOzM3yRV4mW9XBf/RRsqoWa/0IR11TOPEMmzVznpai5soR3Bvr6FFNwf7QA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx24830934-2a50-4403-4b9e-55ca12438f08" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx24830934-2a50-4403-4b9e-55ca12438f08"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lHP/p8QpN5RDevsCE1xG57achEU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bMPXAmq1jOtNMmruC1B16savK1abp/TnZJdNT0fHmx3hne6b/duw7rgXVHaBKOHCRA7QsaEX4tvpZY7zac7En3tonENPVZl0lvxwFNPBrSy5g7BvG3QJBwqXICaXffzulJzim/Z7rcopSvMpioil2KAgig2bljMu2gSv6hDab9o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TdPzDKcBWaF48EzikNryYDvc+10dNOs5g2D//iD3rad+NSDmb7KdHFc0sG0Yr1/FZX2WTI77wv1ET6fircy9rwNsfCf6GsvL+ZzPvdtUjCZRsrCRcC5KyFUkxVOzAVB5dVXdG5Yt+CCmEYz/1kJ10qXamvXQtff+LSm+nL3nL2k=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx747f8b34-55ca-3272-77ba-105c1464ee94" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx747f8b34-55ca-3272-77ba-105c1464ee94"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>r+eqem/krEFr0Q5rFkOAgtIXlR4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CnBxMfvYvDUMNyPr+3Aa8b2EKkD0y8E9dI9FNelUWZJofPvwxCzTqfrm2Jo/M41vef6BPTexZ2lowYUcZrnvleIR+NdrPRqVSd5HfKh8VkH5ULgcJWhXufoKehonTL4PpunclPn4RnNIylOOQyzllCnSP9gr+yWBj3aHGJDIwZk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>XwlcRsrkI6khlYOaJzM5A24NZIBGz7LAHkh8smXxKWCgXirLq9919io9cfmWkQ6VVRswFBf3Iy/LApq46JVGibTkd3z2ELnwmkIab4hVlTEYGZzarOzM3yRV4mW9XBf/RRsqoWa/0IR11TOPEMmzVznpai5soR3Bvr6FFNwf7QA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>