Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx039eff4a-f0cf-6ae9-7c0d-e646a2c3a9fc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx039eff4a-f0cf-6ae9-7c0d-e646a2c3a9fc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DETfkSt9RgansAFIKAHBXgzWn4Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>2GE1V5ceC0ZVp8inVGPISNNQBgTuoqt9JgRStTOCnvupO26b4quCUWqYJS5rlcLinGr9rZRJx4a/FMOu26DurncyNcVYj4WmO8+Ve7vJGSEuV/nvoeQO8XHKjqg0wWBwTTR+8/OauuSKNKxs36fQz8np8efsBfS6/Wk5FbrfwRI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2a86ba2b-2d3c-a1f3-f13c-c2f9115a01a3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2a86ba2b-2d3c-a1f3-f13c-c2f9115a01a3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wCG6dunOyqHCoxhYrjZBcZvEmUI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>0bSvnzs0ioIykvSsWTzJUdYI9vSF944IPq0g7+Jy6LenLxCtxYK8JWXn4DA+NuyrabmMmw0g3SU3Y+HChk9XlKVhorTU0AIKezQ4OpPvkqcPJRS2P6MzilsllzUXR6MdHiFcmSPssBEnFqMsCIiJCnA3RcAB1KJ9BhZ/K3YzufI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8c34c0e8-f869-e0bd-db7d-190d0da9b817" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8c34c0e8-f869-e0bd-db7d-190d0da9b817"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vDppaoSMZabpUK/uPQAWQhjqwLM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Fo/ctBur4OYg7oF6xDkxPlcCXcclHyGtYmJTjGv6ngPD9S55Qnq1f3eMM1MDCTSc5cePp+nONZvoVEarkJvdPD6hKCIhESxvyDFqQ+5B233yml2qRz2/wYZbHUNLPMDYnABdJDK/05UFRrEykeIOXdyS/7yUrNOQ6A+ZGWQ8GTU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4b528e08-9bc3-6294-faee-7d98412a27e7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4b528e08-9bc3-6294-faee-7d98412a27e7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>XXtPmhL9QXznYUa+sGn5BWD5rlg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Ew7HDKPb2e66haXzXAjZy5J8pMzT7/+OMSjbbqU9jBJGrIvm97KKl9nJIibs/dI5NtHk9ZOOKLW0skIejeHoq4+jlft5TFHoPmhsSmdA3qK88O/AWiWJfv4eO3zFT/fJNCmvImcqc41sX+idqkindumOctm4j+JeJ/+t/Yq7yIs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>eHT+LqxmFipZW1dyzD2d8+K8NvSRdgGZv6ing8VMCqNN+2+edSDXPEWwjGZ/ueb1BwSYQlWNWd1KW1nvd/KIcxORypl15lolPdx6qxLzjv0+9P6hAV/8GbXZ3wOYp+f/Y9VEMbn60QsyDY4HS9TKkYOUTMfcNGXIKqXYD57kmos=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>prAHTCBNGmRsofKR6gJU6BT7pOGGYeODX2Fg53XTNvW9APBpTOzJJhFQPiEIb9PmMFWpPG6n0uUP5/FYBJ2KidRN9fFQPBBl3/vA4OjeHw/8YjYS5o9PZfAaH9c45vdAnU/7TXa9Fh0l1sMtVULFs+oqjzePEWF9PrOYWk+c8SI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb7c4b3fd-7d19-f1d6-d5dd-dfb3237200b0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb7c4b3fd-7d19-f1d6-d5dd-dfb3237200b0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Yf0hijl5DQg1U4vHljy4RSFtQCg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>NEoGvn1k6eujnMzpCqR33IEhKitUtME9I1UeODey+7hDbbt/ukm5sagGdyv/IIisj9fvXx4FBKt0CArdU1lPoreKlzPL5oCwJmvH7q06hSriRgu49AJ+NNgLsV7htRSO0UCtK/MnLs0LWTX4GpPkqBCmfiLu02tB+4Gu5V1JdJw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>eHT+LqxmFipZW1dyzD2d8+K8NvSRdgGZv6ing8VMCqNN+2+edSDXPEWwjGZ/ueb1BwSYQlWNWd1KW1nvd/KIcxORypl15lolPdx6qxLzjv0+9P6hAV/8GbXZ3wOYp+f/Y9VEMbn60QsyDY4HS9TKkYOUTMfcNGXIKqXYD57kmos=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5bbe9b67-de0c-93e8-75ea-ec9eaa3e724d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5bbe9b67-de0c-93e8-75ea-ec9eaa3e724d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vF7RXShhwgDaNmlEAT7NuDjpNpk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SfTBI7a2rhLttivI/D3ChweSHDR7DW1Azj+4lYy3raVYBIPyxp2BdCvX2TQHc2Kd+I4sXbf4j3YPpjj53ytgcU5OleH+w8sq7rGyaNdtU9iTWob4c8EtljaAEtR02xhGyKi31zBI3L7Lox5tISRW2KU5YRanHqZjooxxSYl5pJU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>prAHTCBNGmRsofKR6gJU6BT7pOGGYeODX2Fg53XTNvW9APBpTOzJJhFQPiEIb9PmMFWpPG6n0uUP5/FYBJ2KidRN9fFQPBBl3/vA4OjeHw/8YjYS5o9PZfAaH9c45vdAnU/7TXa9Fh0l1sMtVULFs+oqjzePEWF9PrOYWk+c8SI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>