Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx276922a0-34be-695b-6692-36f0c66dee89" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx276922a0-34be-695b-6692-36f0c66dee89"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nZuyFlKAsci7g4jWJDMt6UMgCZo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rXIZq9LBtFRO0YVVSpGAHAiqXEtnRuZjqbdr4xiGDiF0gQj5DGLu0gEpZelvmvUiQHX9pOPWthh8ZWZOuVkbB12DHPuWI/z5xNGTFoRDLIJXVpy3nKi12mL/73jmPD2wrP56o2nxj+q5Vrk6agfC29kRO3iViRvFL9r+dNRTY64=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx70bb1569-7385-1753-f423-734d40490611" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx70bb1569-7385-1753-f423-734d40490611"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DC9ibKR0PHMbikfAFd2UgXA+Ohg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Psyu7Ui7zhVX7GJKPz8DnsnXO2ZHJMOyAfFKViMQqZvYxtRotAnGIz93RAXQs9eEf3rW5FQcJQXzwRqsmlQEMRQ9imNIP5gFYsaOUxItcjb43Dzs64nQnwKjTDlAbu6+FaudClRlB7HDfRWaHIw+T9QoaWjrFh1ZTUi5MPAawBQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcdbbc5dc-a406-0d92-712e-d1ae908d8499" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcdbbc5dc-a406-0d92-712e-d1ae908d8499"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Vl9WQUXhgM2clcMpW1dNl6goW2g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lJ23dUZYHuyVnnqf5iG9Z0EOZz6689g3Pbr3kF38us/AH7WnWcVwHyj7XmW+qhZQ7XbKTJMBKIHErt8KXuiD8y0agp39IqtLoJwzcPBAy9/INgStHlLxQHoC+1z6ycLOkgXiO/job8RdfEoBrDSwwhC/0LzpFCtxT0+sneDBQIs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxce2875dc-b19f-f2b4-cde2-95c994c2064e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxce2875dc-b19f-f2b4-cde2-95c994c2064e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PmlSVA+/bsYhaO4ffYDgRpc+yJ4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Gw7LqVo3RanqHuwd8bOn6tmnkgt+QX4c5Tu1+8oykH/NT6AYflF359m3b9QFgPUiLpbgMMl9DRLgjN3QxGoXW+uH+e7UKbPbBAi4CtXchrV6tz9SLz4keDE3J2eIaQ4POq5lRd285RueUybvYKN4bZAmf7HkHvOPzA7ygM/gAfI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WfcOa53KHWRvDQ3EsYf2OEivR725+IY2AtkLtvRoCGXL1q7jx5RfuISSep2wnlGf6/n6IYFFHPUh6Xgr334Uvk1s8j+/rk6+n4UT76EHopPr8lmFMGgrbudr5t1ktVakOYW8aPzpudnhH32lrLz9Yvfl5w7tBtRxS/6o861zEUc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>BriFoUrIGuDmkn+jvlKM6uXRr25ZgXtL6gXzvC83CyppCUdhRI1TClri+IGqppMuoa891+rfnoeA3MFm0eRd1dQ1SgrvhiK1Byqdss43CwQ+5ORGfFSxVgxkphl8hc7SKX+iiqEa/8vW9UqPjHYAFZ2INDXgFBzTjrzkhrPZ4Tk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>a4q4gx8MZKQkZbq6F61GC+z3s+izXR6V4IBoUqAI2JiGPBU2Fy/h27ciQdn3CdnunBW8zsOBBovFrPPklqXavFUgihEq5eLGCtnkKamTDTPdPPC0DlcqbBnPDLQ1qAvc7kPvlveiMli8AGce+tZRTBRpnho3D8g+27dkA78lHDQeVJqdHUrJJ7U/eIUZ/4KHXL+wKDuN2XlfUkn5AFhBHlFaSqn/D60d8wgJkCoUJDZk5cpoJ3iXoCIchgPtOqp+ndndEIcmkl159VUw70WplR/6e8iu+woio4UgRzUsa4Ehme+cKMoZCU1bb7Faqlmw/h0QhaI2RhKJ6sgU5lPLyppRVEe38Vjvec3pVPzojOO1nOng0VZUMNL5Wp5WpxqzUM4VGny65CcqnfJv8HbFQLch6JdHZ2/HZ3x8ukavuyRjw0iuVksQ6BHYWD9ODpSgw27UpYv9CiLEXsSyHEBajhTGnw+nO+CVmzocYNHMWTAf61l1WsL0h3/0pwsbQOLOwDSqhZLVrExNAy5lGaXWEUFC+10+TzESMGU82f+tU+p2XQ8B/u0wkyE9AC3rHR88bwHdmE/kGe28zrxnZvZwjirtpq1AiRodBLu6v4fSFhb7G8uLKhfjPqf7gS22GNfj6vJ/bXepY9ONqflts9tAdOPeP/jYlxQDu+Zr9wjH9EQkvfG/b2DqoUozaMzC8MHkDMGLaW8U7PPq+Lxu2wklvlmahy3JQ5zQyao+8IG6PihWiO2BQ5AmyK7x5xqxcJ/3fTb1VAf6H7vwT7lQ27wvvSPuU5eQdAon7KhxOrTwyNgsw/FeHsJnoeoysXsq9WkOnORXer9snUGwis+dbIIEynUl4jMi6ckHWad8lgt3rjY4eBmQjdRwVrpjpNn5tdH+4qS+vM3VDYOWkv9vZTUwKZwLQ2C6RJKuj2jSRcPAzH6FbpgQlpWe5nejyRgk2dNXaKBLYXrKnblesR0kfnGtnjyI8eExOTL2WVttTRL12r5EDWYTXBpsSY5M/JiEb3TRPSytSsVb3gkugwgFHuDjDjlIxEjT9R2wJrzCxPJz1xcJHeLewtzALuGscoZYYfCOOYeJ7NJHZbX+qJq3XSUFJoMjNcsZTA3n9GWAui0I5h7DXGAaX5/MSiEEWf2iPbd3g9628+3vY2ip6FLEYOdmk7W4+pAh4krKYsJLj2cARZuH5OiqYljzUAGNaDBtRvFH3U7KNsLm0uzeKGmXgeS34zjBEZ0STT1YeKpO0JtJprOXcrLMjDTMtVh5eYu6YvF0R5p3A5iRjwxdS1tjReC1Rxb3AGFExOv/s2HzOROJxRPujRxQCoP/W34qIFVi89MJnMqj06quw8b41SttiGLqa4lowjrWrbQzMQBA3/8wXQl5GyXe+7z8zZ7sczyHoa1kPjlGOf6G6pQ5BIrDj2lgJO+CtxRwFx8Wgv3j6VbAJ56b8TKbZx4lLzkx4xG5XY03IEFUILl/Ni7Fbc8pSo9P2PjU+68k+ZySy7ksfwdijYusUYWtYiKiPKWHVK5dTGi1fW5GaxtaKrE6Qd3thzgo5ju/gr2Bi4K/FjaHpLAmyfXdiPfm3wMfdtLwWg7d46j3CgWUMg4/KiJ9Irw0zhiWq+G72BqUX9UOYf12/BCPmkmHvUYBfHpGCpUPLBbmgfzW82QSLIp5sQVsWbYF1Cnz4B0jBot6xNTR1RqdoAeIySyJMcJ9l5JYmfA2oU2/4DShkcKFbyDw79qCtVQjev2x7TXTwk/Aw2m15UGFgO1k3t/kvJ3FWjFjxsfqJqyVqLj0IvEG1WMHOdaJjuOeD2F/Rxyt9LuNdR3oqpZju20Lxq3/DDEnRMsTtgPQKwWSPEkSp5+CK1UovKhvp0NBBaPv6l/zV9wvLImU/DiEsW655bZe0Ccaueo49yUQSw+QiMdI07I/lyPlwGHul7It174HJls34xoOm7vRjz8MDwCtf/I7WF2bR6tA/u3N6UeWzzqmSy7id9y96I5AHNW39ESqEbP3E9qIsvQj+voDKHonIt7c2xBsqMFuTayGNI/fYvZ/cTfNEZbvmkP7WjMqrtmrmHFuDdJnfZwfXg2qeIkk9ikg5j0ZshYbpt+a793UVQVY3CLCnMNF/1aDeG790EmlEjt2nFXz04CPU/oJSw71J4xpwT74O58lnFW5VZn6+711c+nOX6CBd0n5DVtPRwK2A7f2UWw2lPtwZj1cLLhVn/MfIS5XpWosJg1yf4T0XBJk7t0ztzmXkjKma587nlAbJztx/OU/M1AUFcu8eHhjaYNvbXYX6h1u/h9zjfkRV5yXwP672Jgmicgl6r4TjQibxNaIOxPWW+VtaqgSm4RpAwiWK+0j5mec7+3B8gM+C+BuZEDnPun+CGlHK4Mf9YMZTcwgTGxDVIJe83+y9gvEVVAwukmrKXCPrf6RNW2jpX7GwY9A64Y90j7tiR6sYdfwmUDem1etrxGLutEnbC9OSYTJauh6yLZTZzZINX+AJJsbqDBhTUX1yP38HY3/ysFpCvuwJzCdU+FlNag5glCClYL4irL/VVyH1r/FIU5mdgy31S+R1CVM1dSd5hKJi3aqnOYSE8DtP5GN1SwnUCDLmHI58UKBOShkwI7WJyUD1+NMZqtZwVE0M/NOn1A/LFi7Oy6O7/cjYI+ikZYxqWmUs5pQvMeaY+eBc72hhbf7VC52hlT8YclJhmt4m2hCq1fbL56urdqgWoCbRP2bikrGriD48RutckaWj45okX+5Z1AjlFmnlvrFny1sZfGXTAOGHcCr64yx4IU+fjVAxngKSx2Dmm/nNc7CtWid/2IVSfsRe99s3RGp+dH2uchY/wldqnRw/IeQ6Iz8dW+/sA6+c1fKr+LZif1NdIwZ3TFufCr+E2l8xXouLm++T0TZb5RkeKhPwMMC1HSjQAuG1RxGmU0cBGh+RCRBdGeYHZgJIP4U1mAGusb2tptzuf1YXDd30JxkQWM8U4nd43pYVQ6IW9F2XO8AeFgjNwBSWricXe1MmN48dcmN2LUwHji5xBoD9F2bH61KyuCkfgROjeE1C4iSEN8ZsOEJRiXsVeySoHKLPVj3OJdtspAWdVIVIHoEo2/zON6W+lPPSOVFLPEgYoeaVpAR4daAWqI4T+E5EWpgI2r90/p5Zysk6XfjTzb+LlRBiut6QyUxtB+s+RvwDnSmkGcCKGKlVPQhReQgkEWbQD9/fAcgs19gwmo2P5EJY+eVV0gfqW70YxNYXxWISETIjtTSIRhd795eKNYbSBB6xspKAap1/mgOfuxhOMoVfZhXkCS63eb/l/mSUPyXz/fPuEWNqEa9ZoMiikpeRHMF6TY0M9JmHetC5kpqq014O6wMcT9T7/6nmGujSsgi/HQRyOb/4IiDCb/EsnGWoVFVS05Z2LCRvsn3AftCDtZ1cihUbmh2Z61D3oZ6Z94Q2KdiSCb9waARqBJ9aaP19T/zfsYAn5GoUCt8oBhqbjHBYIndmW+DUKfiEWPiJ2BlcBvdYthyBifhH/OyzZVc4rnzYME6TctQty25LMb9cUZICAnsfpN7aKioxlKDo5ZFIoK//VFMpAYZocdbU2vURJzsWyk4LDaPiuhJm+5V0PrHUKdGYVdcoOl/gDxC04J5P+WJzXw3hYHWHgwYU8h7daqv14mqiOubm9Kbq9oQfHbkkoVlMmjEansZOsGjhvpMKDQG7zH36nmvgkqRKyS4qg54CosEdZpuWuUvMfVmai1NdK07VWr1AVefwh6JfHw9VUf5ntLCJvA684YharApnIy+bwAx6WPOW938Ns85oNiiXHbcweUS0Vdc01/6XH6gIuNlyL++MrLEGTF5hUDS8eU86qN2qylcDlL+tc1e9M/fzWqP4aSntHYJjXO3cOVX2M917ViW9fCWOu0xbw9UdLtFpxVoOAesQR1OwgwtppLj6ykp2NgH9hnqDbhSDk9XAC41+hq1igJiSizdOCLQ8xCNz9U46rCRyNuvIE8rUSOVelzNng7dKkG1bQmRzZUF8KyMkwjnbW6OBKxSWFfX0Cp9NWccdODyj8RMnpJ/l/kwL9HvfmrtZrKLqC2i57+OHbQGdZGRp4Yl2VfCNzn+eUL8k1gNCA45XxcSOjiD9t8Vd1bQC3OxFtWCA0ozkrKZOwDUhWYRzCoc6cs5mJiv3lG2KGzff0NPZ2UNns0yc0YIQIchwa3bKuNZuA0ZjwoD+WFRc2Wn591FropihaYll0UQh2SK6dtlBwFsgPjBe58hMtOHmaRbQtXj/FV3um4VJ3Eji9ynhx0JsuZRGlpkCf3lE3w5ou5m0ZvsMPaYc9Wz1rTU1U8t7Lf01P7xs0AeMGok/OylzcnHZvP8Tr6q4jzVEO2gyeskrQm7p9NGIq+MD3w3nqap4FgJwFqtHj20hbmGd78k9I/kJOoiKk06gVpffwlfbZVZud09zhx3KC0CtIAqJSy2uyfmEnLhWNg4SS99hA7N12kRG2X09JyWq39H8w+D92//2Y+BRJEbRRWDMAuyBgkizTq6JKv1mZxB29ZHA1ij9j/Xj14J6KeWJwPgIP81S83kSn9LufNP+aVLlRddJT68wfPaOZSlQ0n1CsQHhdrbg4JE8z9QLmzxegIBF2Z/SoDhxcqCj8I5u/jnURiVu0jmpIw6vudOxov3Qdo81LyFmbA4Wc7RcQGVrsrtfpqQzIX6iJQNsemVj+k/g/tBbMBIUVlKSk94zp7AcQdRGDmspiFfp68Aqcu9a9QtdxTsZUYzo+JnkhB/F5vCsehOr3AB/rABw5TCmq+dQe9XFYeWxYc8vwSdjv2UcHUgu0f/jY9j9BWKuxzUHNJ5DPdf5PjI+vFwKf+wTewucjwcaFew9J4KQmM3q8Od0qlY58Pk9ylBDhIZNkf+VvfvDvxarRq8E0JKDBzyDOIAV8UC058XVieuDUOzIYRLTY95Uki8Jh0qHI33qgL/37R7LU1ckkX2+bQZ4SvZeZ1Edk89m10+LBKOgPjSEit3LcMgsT6jsUqa/d1qACpSbPVtpyDqMOY9var0sU48W6wYKsB2BlbbSoQfZbSFBTpCON8ZDJpFovJ/a0gCIq3NpNi5b4IXh42UgQKzbL/C1P8xmz93qKgBjI4QJo0GvPX5U52YS+Cyt41OBFFwjELnzgqSOn2eHwsZa2ZhPE2pvmuc9605jR+OglvFSiemSBZpy0y91UtNXvPcfOh2U0eVfiucKNhWD6GlRYR/aH55mSt1RpzdXFNorPh3zetoM6A+Wb2XNYNGaKaX+/4G6ITIQwgoRDWwcpBd2Z+frM9Fnh+mbryHb7W55zginOIQkcL4jzbQht3TLRC2u9jozhsdUu5WxKjrpSRnIQbvAgiB4rnq2k/h+XqqSzlJWtI8NF1v1+CqVlBaskFObRc5UKhG5AP6Gsa5Je+6EQPw6A2k1xLvhHk+pK+wJgSs5E+lUpTbJooN/gEqp+qGHON5AhTD2tjN+y9MLW5M5Nx2S61l7ZJu0rU=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa376fc30-06df-d2b0-0ca9-9ac5f8d06630" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa376fc30-06df-d2b0-0ca9-9ac5f8d06630"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wXWc3naenntGFbojTzoOH0CvNPU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Ch1JX+aKTB/ki468lJZ8u7b4A8ZUIsE3LW6DLRu+Nsl4b0VuhIcC6EkKNWuUzuWd4JtaoDsvdlrdp/HxOs0qs5fGTWYqbMLQQtNdsr+ukz9jAI+t7Va7O9lDd5ABJoGxqyWISZMrOxj2vONXyO9ikbR/dIfxmbkoQYOj4GlzEXQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WfcOa53KHWRvDQ3EsYf2OEivR725+IY2AtkLtvRoCGXL1q7jx5RfuISSep2wnlGf6/n6IYFFHPUh6Xgr334Uvk1s8j+/rk6+n4UT76EHopPr8lmFMGgrbudr5t1ktVakOYW8aPzpudnhH32lrLz9Yvfl5w7tBtRxS/6o861zEUc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx80c3799e-e78c-a5ec-be03-44dcc7ccaf52" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx80c3799e-e78c-a5ec-be03-44dcc7ccaf52"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bs7+Rk+c6UM6iBGhrUvWslOGfAI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cGL4cfVhyJOjjqfFuJIaEsGuK12JG6Ic9pflcy6E1x1E7wxmXCnuCtCqiwkfZrEKpj87lRzWfqXp8D+1x1uOuYc7N+AOb3b/puTqxeOXmrYfQtq6sDffyePj0CnBeQLuIWiJ2O+z5KQ83E32ZvGe1Jn+C2wt8JwAsEqNgQbxFII=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>BriFoUrIGuDmkn+jvlKM6uXRr25ZgXtL6gXzvC83CyppCUdhRI1TClri+IGqppMuoa891+rfnoeA3MFm0eRd1dQ1SgrvhiK1Byqdss43CwQ+5ORGfFSxVgxkphl8hc7SKX+iiqEa/8vW9UqPjHYAFZ2INDXgFBzTjrzkhrPZ4Tk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>