Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx382056a3-31d7-f37b-38eb-2557184f5261" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx382056a3-31d7-f37b-38eb-2557184f5261"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>TyRicrIGFvxZ57C+DySk45uZ4Io=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oIobERdcxg+Cjsym2vrpipEqGMJduwfNlcXazSwKTgzJitDNvO5R69SWsHMGDy/DaKdQ9zHGa17o09De8X7d2+WwMs2FOi8Ozh5E7IZzEoLbT+irMROmHar0K5lTKgGfjQhcnvEebjY7g0loXTQvZpE+BuHxJb1gnwjJ3vu7xCo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx79a34382-0e83-a519-2d59-7dfaea82baf5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx79a34382-0e83-a519-2d59-7dfaea82baf5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>U3bbXh5uvmH/9gDyqJIIdhpnvxY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>h1y+hfk62TgDDHcFFx0QToHS37HtE3kpH+s+zpMTKZe19xrPz04LOwICV8z8GG8/COCy4gbsemQx4HrLgxjZ0hs2BigxzRTpyclmufTKP66rdnSGG2WzJhxB1QHBVQdEqIUUWE1Nwt5W6erguSnk1JeAI3T3pE8cq+ElAx4D2nU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx089c0f89-1216-4d1a-3de2-e73d980631ce" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx089c0f89-1216-4d1a-3de2-e73d980631ce"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jpPXEYUPobUbcSLMUfsTlI71Ye8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>yykDD6j+Ztlnlw3I6TkEJ5+elUrYVyfWH2uyQo4khErX7a2kh8MVvzzBKUq72xZJn3YZiKidQxVSBG70/bbwH03lrnl95FyETYiyoGeuRxngruRegaOi2UC486QMqbT+1IX4gbbmQIhcMXfXQytGgXFIZAhzZ2YaLz/+y6NtZxU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxfe1be695-c561-b55c-3809-593e44b439e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfe1be695-c561-b55c-3809-593e44b439e6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QaEM6UiLqzRsmTbs0g2Xwu5YNQE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ZRN8NGS0RYs/O4NmqoiuHYeqV3WBNuGLwO+jTUlKEjae4bhSg7OjPw+r+83Umjdc1W4sCFZHIWcCbpUxc9ExBdAY9NTdkYttBxy2Rg5uPKWUdEkx+fTxp3k3SCP+2EQLP22bTQfdchE9RxIJsGLYyWWVfQbtkw35HnlJ/KslVgo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>pAhdZekO8In4k76ET1YeqP5OQgyWnEYX5oIGs6PkvXl5umAD7kL5kw/lBnKBTtJr17ErwCnlXdafnarn6bRWx7zvijv2WyxWrtB3efGBt3RFkPn2R6kP6GUtnK3jhIN+rERhdVOQPNACqPIIdK7Vt17IJav79Lb0MdO2pu6TO7M=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>b1htQSUjWkxUpRl7dXD4Vdxvr6JJQicP1JLGH6S1So1RnIBNmv6ZRY9M93xvFFi19zr0oh2K/eqYvNsHwHgkKG/MZvEwN44g9pplTaxWa3GAE/32lrcQJmhyNe4yO2MclV1+J7QDRN8pyMLyje5l2Dj3ltzySRe3wJ5tBpmk5Fs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf2285289-9fe8-9113-1aa2-84589f996de1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf2285289-9fe8-9113-1aa2-84589f996de1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sbO3/X8F4MbVCaXhS0Ul00ofo5A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>M3EjvLzVTk+ayZLSZeEmxOGJ2JBWI/InmPdU/3cuKsX2uEof2rPEVAFNfqr7ZV1iSxFGsGxHCl+YQN0cL7N2mMe//+cUP+G1Xh6wtT/FEBlf9plsMDHIt/bKTb18PX/f5oIW7UJ4zmPY5kVkr7+1Ru68ob/OUfoArmk4d8XoisI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>pAhdZekO8In4k76ET1YeqP5OQgyWnEYX5oIGs6PkvXl5umAD7kL5kw/lBnKBTtJr17ErwCnlXdafnarn6bRWx7zvijv2WyxWrtB3efGBt3RFkPn2R6kP6GUtnK3jhIN+rERhdVOQPNACqPIIdK7Vt17IJav79Lb0MdO2pu6TO7M=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>rWLPpReY6QKp8lACI+eEp3ael8DJrezF3ZFaJ47+5LH6C82wItVkikVfqasbJ40NIGGVs6xduzObgd85VaTG1HFCKmrfJdjG7W4ZoPjFmhI+V+AJ/ls6y/9qxc8nM6i71D/o/WZOeZZ0LKW5vAFa8iHmUwzKxyyfLNJEERSN760YaTYRvgr3kifhoEL3aRHIgo/YICK6YFeJ796FiirJAU0wr2cE0lJ80ShBSU5O8/lsA1QQP4Yz4NiV8qZ2Fa+O0LAiBPCIQm4UItXeeFfQX8KNr78Y2fCFKq8KxlbI0JW9PzZ0y61Nm6er2NmkZtJKlZn72XEY5RgojikGHAIdMkbV2BvP9NILHe8dm2HlWTr//T+rOtVFTCGh0s389LkMW+RX5Vk4xCs+YfTydsQqKr8NLyUx1X8fTUgMxzYu5G7uWn9YnYzfu/SEGYfwtAwhM7f8gvQ2vTI+x8FCdiotYq9UmrTOeXhSJGmX2+RwqRiOagoTiMeXVQG3Gv6j25jEpSMZaB3AGgDcCM5YIdCnbfv9jPy4Os8YwqXNn/DEp/b+33tCg0BbbEFAMzlRjwfiXGixca4SCezuRHP3hYFdsfRS3vTxh/BHZQrdGJuiBX+pCNuc33QfxekJYIZo+8nGzaNgubMp+mhLcoIuQjuyPOgzHDoeP1rqKR26xtsyFN8aErjS4R7iDF3UfBtjXCanSetijVXf1o2cNVMG5k72/2Kg0jMMo4Xjv0TWJjmSzU56CXOL2V3pRgGOyjvpW+ad1rNq/NeFRBg2oWh8zpDz3Bm6h33D6X3Xy37rVE2+kWDBxeKEkxT56tUn8acm4NV7MGYDPm/AxFHCsduhCyjmVBJH7MQJdfnP6EX1eRcbh9UhVfJWgDrhdYgjp5C603vdixIW1g68TG3ffymBBPlagkHfIxIWlvCAuYevlfjxv338BWpZeKGjbJpFB1ePzrhAr6LZiCN/JbhEsVF86q4KTb12s981mXAkzHUnddMQxNyzzmGStKAokOEBKdA3FCQavFTgeknGtw4z2v8KlDx8LncWxh3Qyfhr2p06hdcDMZXJPvLkGdGE6TOyUaq3fMRBg0Qsweskte05TRup0aBczv8/c6iz0vGvz7UD/H8AQqNJaijMIot+PwhjQUyz/5PUbIw+HKVcrhAVCsmPydslS0ySZnzBZRKhpa/xmxAj5+vc6Sf9e800OEvYesAb5YwtkVOS/C/apZEUArVTFbjnNzu/y+ronaDUAXlzJf2HU01+6LGbljbFbZ8vGOqKKrjg6Kz4sDsjHolyNRWdkQkF6jXZM+E1/G1R/tjp8gjb9vUGVVR/kD9mjd6ijq9ovpdRGKd8ty0oVKXTS1W+eGOvxdAr6oHc6i1oLhmihm1UaBsx03cwb1hlBoPv3ImDbJoV8KYlOzxgLUPpiIo2rJ8TZ2bB0gsXvlT2MwHRRzo12jXkEmxYUWxY5SCXdhECsC+UwXn6g66LOA8dFiQ5H7xqtRxn5taLhUaVi9CRk+mjT+T9c+Yd7KKhNL4lux/CmeKlNhYp8G7GUvy3nufYbs7H8tKbkjuzBYy/mVHoSCVHIzVZ++G95yJ6ohs4lGXgVr0DRME72kFMbAL6yRcPJldtfwXHcIM/b5VU1zWv90f1km9AWOMMLIjWiUa6GNL5lExisZYB+gEGbZl/4p38heqsXzaHVSGxfGsip+JzUkkk+xrJIQSV+EtoGPL370iix4xhFfTyFBbhPGR49/1YTNdc+SOc8D4ftvBTAP2h6oyfOh7rkYPP9oQT5k8qgMurYyprIaS825WbZjtalAX3+hXEClzrDf9FVJqdWLyeuxvb05XT0NaQrjqIaU/TlSiECt2eJNeNMwKv2ZDTPvDIz33IcgtoEXujGIrPPKBgKKEmW/fk7oM82sLZevEz2BSnZRQZisKokSnpONq4eu+Y3NMA6/p54K62YM1VI98uQzK3cehZigdGDfOetOr7OMOG+J0eGORa1Z3N7JBfaI6hJ8IvEmwOhPqpc04W4pFsV8c1h0erlfwiNiug+IUZxgoYAN5jzXuE9uqDiEDHXI6ZJHCv1J+KqGob5QahvCMjYlVOOsdAIsTQXQi0noo0h/CU9o+PpB661ieJlDWPhGq/R525vNHMHIuCTirVfwFNKYxe4mKLn6oS0beZHnqDQ6prXV+972rCp6/uNyGP9PJDULtdMk/kgi6stVqPaM9j4zFbqfchod9ikwDAo5DmBUBtDG8KL2+m1C6ulRG4Qxp7BO8tlWYwJxDfVr05ZsDJFVhBva/dUYnxsn6oWBPIQvmBqWlZ1ZGXF8iTo6zBRrJMByPWgAfDTclqRBsE3Fa1vsTeqh9bj3WKzORTuq3tew3s2xTw+yY+SxqaXyokAW/aThLi+jarGAJ0ELPaSowb5g0mRjyG8jPJl0SVgIVxlph3apXtr+DNVzmWeIp0XXee+NYGZpLxrja02+Dbuiy9otttg0r++eFLQMA43SyvsenWXx4u02VOk2FtEHrJZ9CBv5/sih19EYyZ27XWXGYzn3pawZUje9vK4OACPGW4IORmvap5XpZ0nHDbHtP2GkdN6BTrzirs0dMZBlD3H3UlvtkYzZfGXljZlsXit0w4gZpAHdyV+7ydBqwdhUM2wSp3BSKILvM7zXYlUoDQtvi75vBXOWskLlBJRxdXU44iiQIiTJiNJubQlk85ianMYIEE3YLFgawy7x1S+agPB7m3TasttpPCJ4hhWaZw1cnLEUP0nXlZi/JMAu0c0VdI/DMhQHrlLiQa0NUTHqkdYkPnAlQF5unGpANKfETa9JGpD1ybsP7JnVfwSRvx1IeHXnSJBqaq1jhKwv+OyRJWAGok3UlOLRRjP+ipp+IKFOBYjtJ5fK3pKEtjxUIqMSyrDRxrAeNiwmpUNSP0e5XiLFdbodoqVFQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx32b59f1b-c751-7dac-9d07-08b565d3debd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx32b59f1b-c751-7dac-9d07-08b565d3debd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sCLTjn8D5UeSTa42rNu8nxnfkDw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>grlz58Zl1nn8I0dPC7kXo52+bqpmqfULoOgy3KX07qgp5Mo7OLYZTj7fMwG5p5WVFGJQnWv6rkFklPD8GLvbZPt2IZdEZTyLd0MkVaAMXDOjQC3uyDnSd94osElSiB1Af9bFF99LeswEVMpronzHiKi4uX7gPYW87ib6tw4EALM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>b1htQSUjWkxUpRl7dXD4Vdxvr6JJQicP1JLGH6S1So1RnIBNmv6ZRY9M93xvFFi19zr0oh2K/eqYvNsHwHgkKG/MZvEwN44g9pplTaxWa3GAE/32lrcQJmhyNe4yO2MclV1+J7QDRN8pyMLyje5l2Dj3ltzySRe3wJ5tBpmk5Fs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>