Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx8952c73f-616e-50c2-cd31-413dc620118f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8952c73f-616e-50c2-cd31-413dc620118f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8mvlQRy5kzv6y/zloyf+pf4I6fQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>1RVxVypaQDqGO7R4Idb3dhmhhnaSRiKejYKtIihtXC3psFXGWzjLKAs9SvMJgo75XcdSX538pEBf/5ytk2UCs+W8oQig5L1CtD6j1ZHRCIdy9WgsI8MkgyeZP0kxi2Vjfi0xACP6N1/w8sPLj7NfAJd2jcPbjy2EQUilURJLl9U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx37e4de0c-53bd-4baf-c536-f00e125f6bb8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx37e4de0c-53bd-4baf-c536-f00e125f6bb8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zMwyqrBjVMrNiJ6cjYREYpbkj/c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>g0IHkPvHHcV1rKQ6Bs0il4mzN9hQNHFj9UmMdHp1TuSxUiFPLtcoLdSEnWhOWGDHNFHjmCj/rntF3kcqWF0cLmJfzBFRvuU7ghnQAuTArFhusE9WW0FH2uznGLLLqMsY5lfnlmr2kt+Hq9bUTtsngz/sArWOvdZapUCgZ6TOZQA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx88887afc-4f5b-feb4-f5ad-aa25e6d7ede0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx88887afc-4f5b-feb4-f5ad-aa25e6d7ede0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zi3L3mJc84cZh5jNj+Ny5XViR1o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Fq2JWRikV9r9JPXMqALWMPjorEmyLslBqeazWnwoZ4sEZWbZRaUW/OVznZv4DnA5y3L26WQ1HeV+gscPZsMzBxBKb8Gq54sOQm/3/jpZTyd6ampkmi4zVw6TpBjXKqvhhasiY9KBDFxwxv7eOsCRNGUbMZ8/utcph+/gmfS+qkM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxbed65958-c4c0-ea20-43e1-7d2a2750606a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbed65958-c4c0-ea20-43e1-7d2a2750606a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>B/PkUWSsaplY1BFJCudlp8V9Vqw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VtfvK47VUjzslV/XV2wThcAbxT/cP/VI6IF5sxNFvEwc+07Lekp6UX5KSrLf/fdQ7ATf4NPFAWOuLrEscxCmzuxxEh/wiFL0Jt2eQeOb+aLAUl2DsT1XJq7I6TyP63i2JPeVUU6v/Qn76XY8oA5ZKmz8O38+s0J+TfR0AtZaecw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>1A03FmlPA4IXD6RVmt4YMKJLleTk8CGFHkrBfhOtJDblwErtDpSPynYgGLSpGKYCXdyjZ2aYlS0bl4YChCeEMAeq7nt6IXWeU/wou+1OtMuZwjFyfdWyxXgGGPnjf7ZzRB+Di4HnSyF19S6Ng3r67Ld7H/1WucgUUaSiDwNiTic=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>DJEpo+5/BH1oCsnAVJhg9GMsRY+kKnylFYhGDxFQrnSKokW16MWzwQftbpNwjF7snDsC9aCwZomffwbAoSBoj12WtbYVbAfoHz80qHrxeLj4/YzQaC+EaHKsCNmUB4n0lkFFAGMAojrJ5umieLetnEiNjsfMBYkzR0eXRIGehLvbegDB36nEf4JEqAlApendYJemzfp7sfpgeeXPglORHVzFAKvWjtCpx852ffBvjn9yv2OEAt9HnGjqAleddHPJ5OC43maRpaOatQfLCbBv4sc2Ea6oEE0zUMIDc45BAkI60U9Zu8zFc2E9wga6Z2LUGIyt8DOTp8oFfhM0oL5jEdUmb9RPRUOrYihaYm82jSrHJ4VitQa0iksiKch6oVEnJIJpHmEOIz8nixpMAbicTAjqZSEeaKF1Gq9AgzBiGYZFtpNyI9ahTfVqsFjmncBsgoUBbrDDdwPJKl1lLW7r+K/ynEmN+yW1thsOANZ6M38nG27e62Hlcv6h2lcaWMil/Zm0jVyRczRqPsGckz2hO4Mj7YnghO+fqr4iOYOW6jO/swmiXVshD3CxzoyVEHmurWGm9T3wHiZ+knVUQO+J8H5OpukZ9BGabyBaBLavkEhkEcmIf/JA0SswHwG94eGdtrqb7dcLsM0O/U8k47ECZRqBa3g4cCQnlzuz/je+HXoj6gzvIB9xyDvIV+rYETFNyhCDYLmiM+y/4bjNFbhohOOPF5ZSSJh4MS37EzPBErhbrCRImcdckaWJrHWQ9b4puo23sMX2i0JdpCCpiCab4eCUwmsJJljCjQbTsm8I3UbBKYUjenW22IdPI1Q2abYID2BSB4NGkH2Pcvx1XoZ/ssZYhmM4F8FxrrIpvrvEg6/amkae6r66JeaBdjJnjtmteqnC7w8pjG+siaRdcDtXswI0m+P2sSjw+cqOW1lQ2iaHVYX67NcMrFjLV71otS+/utkk7A+p3KTXRw3GGRc4BFJI5JXjJiPCHxaV/6a84to7/uqCW1BZEQQkcYHdlKxPDG8XfK7J8LjjBWmwI1mHNhlt9deLlSEW+J4WfCX6P9NcWKn8tH18uXYyKOQzXp6y7Ymr1F8Y2Rv9n5U5BAnJWWJ9iE47I1hYetZXOk0GgEoZ/J8ckdYevQLGm09Kc6iukI28Yy0Yw5XQaQgRO51IG6SZeljtn04u4agpzrvG5oxF+RBVUmG+6gB8i+fTG/aoxVKzuBB8fp1ZOfBrQfLBsLwr2lTU1tweg1seO9UOcGLuJYIua1yn4dgVS6nDaYlXFl7R2tKWULDQ8B+0LlEETpN5OTTb+ZTZHw/s3xieyopaXHRsXrr4+/SznDgphFUIXWk9g/uhtmHWgg7z81zs1LvoL0AoHyByJCFItKhN26wkIeVoEKOiRa2vFNQ1mDr3sR3OCY+Bn8GVvBEFCCxe1lkOH+MvBdVdWANdJOhqElIAUnH+NI+lCHqsgkXam84yhBsPaPxlevE7B13KR2cH6spUIgjCJ+QBmxYOm9Nfv5/Zq4CiMeFqqvRvM+z0MgnNC0LZmLVUYn2xL36oGgrogdMGrJXXcM3p+mz+5hnNg/xF1nrCgtkDaGODa87skcmWLkB4SAZUVKaib+Qde8HdamD+oKbNikkXqTKlxMEu553qHni54frJhgWmpA5vW06Hs/OqrCGbkhGgAkXRwkuNb+LcpqZaNFGj5s9NHSlLcJKIgUZiXNccWC9Jix1pu+LUlz7NeRyxrJ8oYnBQKzeYGOUsrkpE2lTmsoVcZNzNdQAit41ALgZb7uKzJZm6KeTD0D/+wIqDhPeLQfCC8YYFRmx7Ksin3aKujPKPJtX92ZNDIsG5VfMtPiXxc/dYsy08yyziJr1/+w/p6q3+yk+HyGtAAgvLMwNjqFiTFWDsv0tre4SvgztKWcmImK07i6PRAt9IizUdXOzaspAsO4UNnY5Cr/yG/ew1NBXfVsgm0Kn0qHZ9m0V+4KPUglaCzS8/bYnhdOyffSR3NNyq5Q/R1PTnoQfb99TWSE+qhlcsqCG/JN1k0aGx7p6rBC3eOUx2ca/aVmFQWtxHKWaqskECqP8GwO8ObR62qC1GO3QjXGW30NQJxRrSkXjbPukMggNGtwcNJ73VEE7E7MbPGtAOMFVurnjpaBR7NmC6XtJgJN4mDnH3StKEd9eyXfAXGUsWsaoOGSN7cRygLTWQL+dLCbslYKMnr4AJevrAwwl/Xx/BH7ztst7zXqc0uXGHy6sc5GafCAoZKRjn3H4279nzIPdx4OMCeL3R9gC6iMBpXjUYZsPNxbhs5WNT/VpZXcBC1GrZXXCrpSssdB5sJsx8XarF84j3Abn1OE9ZnLwgmVzXeRAsPEFS46TAwE/RyHnG4K5Fn5gZIsyFZXKQG0VFGb3l2OL+H1grmIhcHs/zEsJBJIBONMTpu3jxw+h+ipXHX9WrOhe+l+qEMQ3AjYaSjdjnUzaFwbHC4Qi9T22RKL6zM3e0eDlIwaKb+g6JzIO/v5rYtR0QzQjq1go5XdxhZMDseNg71uKG2MEq3xZ4RRKNJzu013lPNuQ4oVGp0EBhp4uSzTRkUQwgK4HVzClO2yg8Im4w23BmBrrZoJCdgZHRaAL7kQsIdsej+7jBxMl6SwQ0gCzfl6QDGzKdT5QJD/J2NqETOphFdUz10uOCghqFpfKqqcCM1zOu7oHd2AKzbgLgef+6li4W6fNcLEvhHwr9CZEl1Q/b7HWSnbvz6mJaaV2hsVnXV6OPPv992SFrQ21bWISqOkOEUUMIPbgFqFyMv+Zl4LXedkiM7+tEgXLYl9zlY8m/O6+dWOmMilEgk0cL6UWqyK5jnJv7aow82m6syM+HopMeLqOC/TZZlHiPJ7wolTol5J2cAKY80S0L1cxwS8svoXnwrZLgCXQM6rs26Gt9WZuENFYn028CgGM=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YIDtuVr69Y+e3P6KK+g1aDjnveICzMOkTEJeSLUfy4QeJ9TD1COHaokiks7FaRCGccEOa6UNg0StOQI+ttCsIhnxhr+0ySME/x5wjNTkkB/QCq915gDJdE1aMo6leR1OCxtvwu15QJkzv5hxfnoywvv0/b2KGkxtBbkqbdGZhoE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcbc4ef71-8eba-eb61-82a1-e581a3f0c87f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcbc4ef71-8eba-eb61-82a1-e581a3f0c87f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4y9t1k/Hzad6zNwBZi0bZ9n/CPU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>E6FCGxWAgWaFV+BSNTvCxrfQY/6giYvRzsv940msu6NEGxS00J/67JD5VHYJlKCEph+AuSG7B15b0o+vkLYWSxc1MvR4tKtS2K+HR855+GlbsKCCHQ1+tlEI7ugs/VFIwx6oLxvI0gSXmSaa8P7W5UQQxOkeqaFvH8no7l6XZ/o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>1A03FmlPA4IXD6RVmt4YMKJLleTk8CGFHkrBfhOtJDblwErtDpSPynYgGLSpGKYCXdyjZ2aYlS0bl4YChCeEMAeq7nt6IXWeU/wou+1OtMuZwjFyfdWyxXgGGPnjf7ZzRB+Di4HnSyF19S6Ng3r67Ld7H/1WucgUUaSiDwNiTic=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9490a2b0-dc91-55c7-3ed7-130b99ba4a82" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9490a2b0-dc91-55c7-3ed7-130b99ba4a82"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tyJvRjKW1972h5YOyWPRsFqrPBQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>caMvD9P9cY+hZvQiqDRHkl3qpnMywz8KNd6MpMAjPKPMYcEi1OhRujeWN52cmPa3kNpx+PDRRPsrEI6h7kA+iZzNyxPTd3CmAPQ5xOPDT8L219b3RoMQfw5JhCkISJ3Y7ORHbWXnJTWx1uGhrHaKrDf2QB+oXTYHxAWgxEqNZ14=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YIDtuVr69Y+e3P6KK+g1aDjnveICzMOkTEJeSLUfy4QeJ9TD1COHaokiks7FaRCGccEOa6UNg0StOQI+ttCsIhnxhr+0ySME/x5wjNTkkB/QCq915gDJdE1aMo6leR1OCxtvwu15QJkzv5hxfnoywvv0/b2KGkxtBbkqbdGZhoE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>