Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx0384f27f-70d9-35e3-cd4d-3bf83e565e06" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0384f27f-70d9-35e3-cd4d-3bf83e565e06"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tP/qw226cuD1bfGGUK0pXNbZnjw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ODRuGDEmXCSDkeXXq1JDO4R3Pbqgmu+zoDQwIDqX0gVA1qbSuMv3RYC5CPzLnOGKT4ppSuewrok68X7IMt88BwzkRrBdyFcpXoDJf0boOtcO1rI//0jtkbc2lHLtt57PE67oCkI1H+Hx0ORasqcYBFVfACWPXYjWArPVRJRmuIY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx576fb70c-8f38-d405-4c40-fbd1401603e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx576fb70c-8f38-d405-4c40-fbd1401603e6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+KBGO7qpp2o8wjwMr6LRtt/a5Ng=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IRrree2yfTxRxg+52s1IF6x0Sgpyau+iPUZInafZTDB1/q4i9p9JbRkh4Z5rNfakTfyL/Ya/oxAY2PeAllE+Eib5sxNVh6f+pMYnJcV4vJ7Ozi/L78V5pzGa1o52PJKoVX3reDVSzieKmj5Z/unI2pbRb4l0mPPgR83dr5it338=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe7aa765a-9092-875c-e04d-a9d84510bdf9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe7aa765a-9092-875c-e04d-a9d84510bdf9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>buyDKD0qnIdzsbvrqVL7Ioo5m7Q=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ceTKpo6EL7XQvTviC3WZ0dCW8clcZaUsEpp5T9wGrsWohtb+A+5DP+lW/bSy036JXG+2DC38OPrzLovvAjUrikBdmsy8c4Mdal7YaA7pmz/cU/qeHLgqPPjsh+HR1SXftdEqqBQrIoQjd9JNRs6jlQ7wgT7GSNX3bTxq3qXcbPY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx491604e2-e7b9-1504-1245-311940e95af9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx491604e2-e7b9-1504-1245-311940e95af9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9/DnhUstBvmJyiizThOW3sinmVk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mwuapakjowqI5BXfxx6QZ5EZoOqbO+il/b5oW/U3tqMSVgdf84ps0HGGhjglVlh5fPSxGmiYrK+vErAt58ooyw0qzjRrwhAO5TVX45aUkisBGiUKqHRfy64V4tGaJIVMXZL9wA5NKwhHRFeNe2zTMcokaK/cjc6O+VcvH1i/Dv0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>t0QHx2/R/TuEua8zxpyUsJvPlxNu4kJUxt7yNNPYuxmsyTcw9JqLZju8bSWKghhRQszZPzzLfFcTo9oXE7z74snXZFkVrzqevtKLGewVhOiLo2fscWK0ec05XAkHUkC77XPtzzdDV7KIK1rHAEIb+GghZpKSUjpffw0Qw3yNGDI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UieOn3PitqkDn1T/+TftsweJIXe91Q9WNNtD/olVEPjQuOJzXT+hSbdxzBpWjkPHFjTYWJZ9UkXAjTR3RDIK3igzg5MhUfYATZOQ/XsyBdOBclkfXRBMzcMdCqwLx0Q6+kURVKDfnMWfE4TpdedK+qcoFCw7u+C71ctnKL5GKm0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx86f3119e-db67-67e9-1a36-864c75d990e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx86f3119e-db67-67e9-1a36-864c75d990e6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1JWH3gm89g0QLJ54hF0udz/japY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mOcBlCHz1TWrDhCKcX2pp78AL7qMAicF5z3dKJR4TT6wU31eMCQfhXpUTW4c2xwrJlsHa/94Ueyj/5kluINjvOuM/UNsm/8ekcRYqTITB2/HhPemFRg71gwrTVTBp6DhlR2MvN55zWYdJctpeNCsqXtz9bOM9ldB1S42Xc1t2mc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>t0QHx2/R/TuEua8zxpyUsJvPlxNu4kJUxt7yNNPYuxmsyTcw9JqLZju8bSWKghhRQszZPzzLfFcTo9oXE7z74snXZFkVrzqevtKLGewVhOiLo2fscWK0ec05XAkHUkC77XPtzzdDV7KIK1rHAEIb+GghZpKSUjpffw0Qw3yNGDI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx603d8da1-b37f-36f4-bc73-64ef3990d5de" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx603d8da1-b37f-36f4-bc73-64ef3990d5de"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>kGPS4sYobB46AcbmMKYmJtTUWp8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dapiPjaKJ3LJgXcQ0jMyqVShXgWDE6YW2ShC/ROrSVeGNhc6Pqpgu1HJMdkQWPI75DnOIoLgh0FBawE2tBk8lMuTggOlyHeaAklCWKz2iRKZn4Pe6vlLkt7JElOe0nkGE5B9jSbkkoTtSjzuC71NGFkmfzxGwhpWE9bxEtseR1I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UieOn3PitqkDn1T/+TftsweJIXe91Q9WNNtD/olVEPjQuOJzXT+hSbdxzBpWjkPHFjTYWJZ9UkXAjTR3RDIK3igzg5MhUfYATZOQ/XsyBdOBclkfXRBMzcMdCqwLx0Q6+kURVKDfnMWfE4TpdedK+qcoFCw7u+C71ctnKL5GKm0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>