Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx85128c8c-75cd-8314-6b98-8c0a728690d9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx85128c8c-75cd-8314-6b98-8c0a728690d9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+bnh6M3idQ0uWlO+pmADxkgnx6Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ZQ3MqxQrSWR26YJwrx3FVD1OkS1cscPCMV4E74W1qpAPJeeQYNMx1P2pmdN4mQvKTo1x7fAiNbaXl9pW89X/k4mIrnX4ekA2YFpMtB8ZIk8wGQ1odOb63XhhIVoBvB3XKIQB6SjeXP8Q+vDx5ITdifR/HDU+uumVEXanGb/Wk38=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx25953d20-dee1-8369-8c5c-04808e062516" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx25953d20-dee1-8369-8c5c-04808e062516"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>uAXeXBlC26BLZ53KFlbasT1OoZc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dKTH4XXCRcER3K58DkHmfUxgtwyLESQGpokWyoIl8Od18wLzCwXYX7i6w7uQsTux9s1UWuv59oS+rebcIqzmL5rA+2M3iXQVZRfIZa4l+xRJTBzQwekzrFLEQScgQCbt/8Hv5UMG20gnCNpfVwxpbQ5QIEPEGmlff8ECUuOBI5E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3aba187d-7772-631a-d0c8-c25c5998e1aa" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3aba187d-7772-631a-d0c8-c25c5998e1aa"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>gVJR14PSDIsqm+Ev4e0pxn4zblY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jxRi+1fuL0xE9uR+OjYnTTc5AHd+uLzXF+9LgmBL9RPKQDmKeO0Gs8KwhxL2mwEOiyHnm9EzgcnvEPS5zv1TSeUaWHwO0i+3xj+D7P83leubI9hQknRvDBrTL//Sz/RrOLcYL32M7tqJMjYoKUrurzOBTvg/iADEtLI0ffgA8tU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxc4542b97-a830-89e1-f929-abd2f597445d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc4542b97-a830-89e1-f929-abd2f597445d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ioetFpOdGPIe5tCJ0oUEbb85dq0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FmdejwFVQM8G62OGXLW+gytBuOpHNMd4zp5Cv5TUcGSxEZNMsyydm99rWYHq3qBAf5ItsxprDEAj5uZL86Wf6fa6IDE5LOf7P1nCYtq+EWnMN1kw4xqL2QBHN1Vk7I68+0DW/CgK0P/OHQXy+Znza7ZrTSmbfLppn6F2n6cv3fo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>A1tIMYImhmGewtra7RGeHKdkYfNktapU2yn1JnLdoq61SWvBVIOTqMtPuOR2LeDUz0AYfglBVOZcyNl0GlL9KpstZc4yuh7HQ/pBpUh5G2CH6/WC86n2/40AlRLrKR257NS5cSyZ4PeZEbjkZ7N7e3/W7/7p5OxlpdTSFyY6J7Q=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>B6IwxPvZyD+nHJLz4OEnHcgXbPUfk6v137qd0j7RMP4qeRbTta9waZoOJbvw4jULCbTNyhL9oOuqxTAiO6KcVFk6Zcd8MDoS4Mz+U6bMLfWxdy8VzH0/GxTsy9G4jmsgGrbWEKE9lKA3clsJ0rxexc4Y847jTAuja7OYSFYCRXc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7e355c8b-e3fb-f21d-65a9-1ed068732fe7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7e355c8b-e3fb-f21d-65a9-1ed068732fe7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>98coYI3Clc6C9z6Q3t2eg8ZMZ6A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hW+z2eeEYW7bVZKqJ8/Rp5ytkt7AAlxBw4qIEBGHMWR4jalCRX4juD+Yw7LwC2bFyj/zhIIjsGm3RVvwlGJ1N/yxWEhNcSHk3BBFuFJ2o2dJeWGS1Wa4KJSMh6oqOD4lzqhKxaxl5UDFCHKSxoxSWXADCZYZxkhhs7NKoU2Sk7o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>A1tIMYImhmGewtra7RGeHKdkYfNktapU2yn1JnLdoq61SWvBVIOTqMtPuOR2LeDUz0AYfglBVOZcyNl0GlL9KpstZc4yuh7HQ/pBpUh5G2CH6/WC86n2/40AlRLrKR257NS5cSyZ4PeZEbjkZ7N7e3/W7/7p5OxlpdTSFyY6J7Q=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx17ebdc8b-2691-ac3e-e918-245eda7ecfe4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx17ebdc8b-2691-ac3e-e918-245eda7ecfe4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>CCoraBQc+nQ343YZrLtZqUaiKHg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oF+hEafNoYiZNwA4afW64S6juCvKOByAHmBWABWGb7TeHdzeoCReD7OwzdWZEA+kYpimlGgQTLs7KcHlkAwhIFWVd2YI1GNiycTKnp1/Fdr1LI96DUv96JJ9FepzLoGyF3PepguVOhUOV00tt6bC4vpuJ8hiVqC1B0H6euu6Phw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>B6IwxPvZyD+nHJLz4OEnHcgXbPUfk6v137qd0j7RMP4qeRbTta9waZoOJbvw4jULCbTNyhL9oOuqxTAiO6KcVFk6Zcd8MDoS4Mz+U6bMLfWxdy8VzH0/GxTsy9G4jmsgGrbWEKE9lKA3clsJ0rxexc4Y847jTAuja7OYSFYCRXc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>