Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx669e434c-ad2d-a5a4-9f44-5de13d831c09" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx669e434c-ad2d-a5a4-9f44-5de13d831c09"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>rz20p7uZyN9/hhmLA4jiTwUoguU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IeI243C+OqeLzBjo0gb6uO4tXiyQdehGG5C5FkrVx0ff1vCxPbS1Sw7cLv82qCh7/c4AOGYqsOxtlaMU6SH5wkr+KgJFGi+FI+fMrWv+hBRasPKWAtPRoPvHKS8Vp0O3dxCGHclasKU8LKz+pr0mYJV/lUssbzY4MNxOQQuQHhA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa9852f54-46b3-3ce0-05ce-90134e152f97" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa9852f54-46b3-3ce0-05ce-90134e152f97"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>niVbSY1TvRK88GsqPoG+mxC0iaU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ynMNzzAZ+5mkmJPSFF9coSpTIqFrczop3Esj6rGwz1km87gdGed9MJtd8eNuEyRNkKZWQ4BMUSQ37LWZYZTy8dFOl1ypA6gq2hdBLsyEIKWeLxzQcw+1VcqQQ9PtgTWAX/7qKdGdJPQ6QNlJjkxWDimchwlxibdBkiVOMDi9gqE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx20ee7ecf-a9cc-fa6a-e333-384438d702a9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx20ee7ecf-a9cc-fa6a-e333-384438d702a9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Run5T/oSC/VuCIuWkBXWJnOhI/A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>PnwyX+3vU+6rdOSx7L0EgA7i6VTEbP2S2n2llbb1R2sfUmFDiTTaldYem3MqNV3jA7+mYUlGzF4+bJ6ezKxMRxIWBiRq9q0qV+c+I5DamXQKc0O8bXTJJ6W8qxNAruM71qZGXNwuNj25/3nZePPyTE0bfmxQIvE3zWF/tCO7CRE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx53751ffb-a41a-75d9-dcc1-fc6609268a12" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx53751ffb-a41a-75d9-dcc1-fc6609268a12"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>fYAPrvPEG3njvLCmWGQZJHZqfuo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>me+2rFT13qbyKnzBZPoQDBBewBI2CUMcJ94u71/oN+/b7xYoy/HCPcAikwhObPR0XmsqIHV9VWc9MNRG9dR5ktCm4k+IwClebSBzal8kgvZvslaRkhmam9h23dvfdAVRy8llDRhS5izPhRcdPBiKoQt9KEA7kN0FQDWweUwrL8s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>g0ajIt/azqpimi3/rqOPF75Cw/9Gz9nxtiYjz//PyznXsYRNnSGFtjuR2HwLhQm8Tolva8tb6qI8UKu+8u2Nf76rKju1rBBXIi++PsZIvVFsWkFAryYdiVjQ4DnB00ilUngtDhHVSxPqXBhvvPdviyrtwqyajh9AxdZeItPbqMc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jFs0K+//eyGu6xbRIreX3iBRplnA+IEYcRhUnd/uIMcoaS8nkS6Z5VOnfatx0CMUljAIb6+QkkPuFhT/RT2OQUoqtpIDi13Q8MiB4i6PV7EnA/P5l5z7XQcKM3Rwil5WkUCgNJpHx/pRjmGdtvZUQgV++ro6xiGwCaVD9Tu802U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8e25a068-b58f-84ab-eede-1658e46d86ee" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8e25a068-b58f-84ab-eede-1658e46d86ee"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>asupgqkigFda6XiurmF7NwCuZLM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Y+mJGDmiVkUtibWc2Np1RSq8wATzZiztntlgjSVv5cITvYHTP1NKm/XaGEU7oiyCn0eA1jtrwON16Ei56dBt1GJCHJgzB89q1AP8V3U+hMfU33lWYNKNbUF4QeY62gxvD4Ow+xNfK6K/ZG9Wqvn8X/No63L+/Pq02p1eWKqwzFY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>g0ajIt/azqpimi3/rqOPF75Cw/9Gz9nxtiYjz//PyznXsYRNnSGFtjuR2HwLhQm8Tolva8tb6qI8UKu+8u2Nf76rKju1rBBXIi++PsZIvVFsWkFAryYdiVjQ4DnB00ilUngtDhHVSxPqXBhvvPdviyrtwqyajh9AxdZeItPbqMc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc2c29da1-effe-c3b6-fcc5-9ea7854ecbdc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc2c29da1-effe-c3b6-fcc5-9ea7854ecbdc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zrPyWTHyOXosZOxT3BRVRCZOtVM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>I0bbIYclcaNoNW27UQAxyEJ2eyYsZiDgxyoIvuVsFO7GuvdLUjPboV45XUWkiwI6fD3zUHnZWiSvNYd/7Q4eFDcP1faKZJBn1R+I3VPkfrdIyUVECYDw+tzOMqJ4rcX66EsL+3gGY04OaDdqo8x8zL9ZCXUeTuTev7wAFFCdE7U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jFs0K+//eyGu6xbRIreX3iBRplnA+IEYcRhUnd/uIMcoaS8nkS6Z5VOnfatx0CMUljAIb6+QkkPuFhT/RT2OQUoqtpIDi13Q8MiB4i6PV7EnA/P5l5z7XQcKM3Rwil5WkUCgNJpHx/pRjmGdtvZUQgV++ro6xiGwCaVD9Tu802U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>