Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9d997df9-ad59-dc57-f790-db42b82b149d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9d997df9-ad59-dc57-f790-db42b82b149d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>FFGBk9mjO2ocOf6Kwv/NKFbEJGA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>eltruDVOSQc+iS0Iy55G6vlcRuXK0LThqQb+YkaJBReKfTFZfl4YKEGtjOAEtS4qv4TV45zXdM+dYGMhOtT4UcxdCQnxVUJPt3zOLj8wklfkLCM9cUyUXRFZhcKTh5YtmHAtwdqA1V1id/PVHALGg3mWmJhhACLchX5ue9d56cU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf972bc8e-085e-d409-b64d-f6b9557a1d83" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf972bc8e-085e-d409-b64d-f6b9557a1d83"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>y8VB+kdNAFO4UQ5+li+p+yhQVd4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hfr9VJGJkbkTtwzlT6eLPu9DJCuqeecI6rNOLZVjmyko+7//U/pFY21vtOKbVHrvSLgN9G22F4N9gq/4afu2ORpu7F0J0WI0q8P24FRmdTO0s7BiKeSf6wrkNTq7Gel4PVuFsM/5/JkGgO3paGQTfU46UX2F74ijNX+h6gPtwZw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd61a10e4-cd34-05e3-cd4e-66375d50be35" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd61a10e4-cd34-05e3-cd4e-66375d50be35"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5yU5cEpguJ8YH1kAHEq7+calgs4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>C7jSgvWYeSj6rHHyq3v5fsMpNJBRGy4daxo8bMiH70JFfVn/Em31fcpgYNcHbXZALgy0CBETHawgLLfvy5ASE/M4Gj4sn+qMWmzxfxMDRk7ogTiJO/2HlsqnFAPUVEZehoafWYN6L5bpgBaEG2m6onmk0+OthYTYTVA5q6lCJbQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe7aa8118-adb1-470c-4f3b-19b8b162057c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe7aa8118-adb1-470c-4f3b-19b8b162057c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>D/6uRx+kBIvVpb5ApTlUuF8S59w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jwDD4rNswYYd0/lLneszy0cqIUh+n56g+H+gyQSQkCVyxHXHL15JyGGxRMPcx0lrXU1gDaZk8Ccl5OIQm7+1GslA4gZ38NMfYXM5MFb/N+kzQr5Fy1lhG1XYZX61tLToLXPwTOdKWr+T6UA2i8td9nkeS+naIrp5Vbaay9phJQ0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qFKoIrc/4LvzPyafkMehzShQh3RQ+FqcTzQu0/s1RkxQnianonQhUeJPMnXT9slJ9mxeirIaWzHhs1gVWTSRHfE0Vt0AOI11gZkGab2irB/bRHzbenHMvX/qfuPjtUjSasK+uysX3YIjXwb85CK4zIc1duelYFUEIMHcjC5+kKM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>d5EDnyMeVK//r/wMv7E4lf8Aqvmkbi7dAq36si2NbePpOdas1L1utXhfOEVJ1/3FPBb2i0lS69W6Hf5q46iduGzc7DgBx0cleCHZFQilWagTE8k7GUnIR3/bVw/uAd8TMUbwwcq/sYTJv0vLS/s1itLrdFwCPvZUoux8HMYwf9U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3b20e270-d953-d523-35ab-0d21b8914210" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3b20e270-d953-d523-35ab-0d21b8914210"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+HegBa/TrTdV3lhFAqRF38twsSo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>x80SiyiIkE5LCfwrmb1/ChJUb4NSzKKiMIOx++vKu0ECaPLxZ4VwuMws4UO8D/g31fMQDqfBlYPlR9rXCbl7wFXnWlt6v9AmHYSSfogDrUiH2pr7q6tiKo2wkyC0u5eyCpHlR+YyDToQwNPlFvQHfXjM4sgNSpr2gBItrwN6Sas=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qFKoIrc/4LvzPyafkMehzShQh3RQ+FqcTzQu0/s1RkxQnianonQhUeJPMnXT9slJ9mxeirIaWzHhs1gVWTSRHfE0Vt0AOI11gZkGab2irB/bRHzbenHMvX/qfuPjtUjSasK+uysX3YIjXwb85CK4zIc1duelYFUEIMHcjC5+kKM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx15ee433f-e1c3-8252-44a8-ba4541b7b506" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx15ee433f-e1c3-8252-44a8-ba4541b7b506"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>P+jmRcrn+rYd2LVIzWRZa6qWz6A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jN9m6jEMPKfxONg9O2F33FWekTGe89gR1dPHdmJoRsIsVp9xBboZErqE+SINoFlJ5zf+5K0I8TfToox0VE76YVl9Np4zn8bDQN58dIRQHWLqaKvz6yTcxSY8yYJu2oLGIP/Gx2aLXIcbTHkBmKqyCj9XnlifBGHNLI8nKiORhOQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>d5EDnyMeVK//r/wMv7E4lf8Aqvmkbi7dAq36si2NbePpOdas1L1utXhfOEVJ1/3FPBb2i0lS69W6Hf5q46iduGzc7DgBx0cleCHZFQilWagTE8k7GUnIR3/bVw/uAd8TMUbwwcq/sYTJv0vLS/s1itLrdFwCPvZUoux8HMYwf9U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>