Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdb058a17-5565-b8de-c470-c773b531007d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdb058a17-5565-b8de-c470-c773b531007d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EQVRSGWDe2JZ/oWfXMj8pYhRrlI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oQ+80pVreg26anqTjzdEQcVsYkeAPjUe33iukNA8vAn7JZcIVa/6kzkDOOtjGobwOZuA66HOv/1KwDFS0Fc7fq4ko+RV/XXEjFp7ERzDyVrkzig2gvUQRWKyEGFSw5AV6NqMUItbsJUL7z4TIzYTLYGcpNVC5LGOloVBq1S5brs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8d9d1ea8-8249-7459-cbe5-5a3ddafa81a3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8d9d1ea8-8249-7459-cbe5-5a3ddafa81a3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Wcfp1pI2DhyDF3hifTy5nL3u13c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DZyCXlht6+ocFAvcsuuji7k+GbiJcSO4wbOZw+EoXGzze5oQwClLibxd9+huaTX3TKHF9c2Ops6I8gt/tSn0VN8VkYNU2WO/sIJdfQlVJRQuBDxPMI2KYAUsHObUKFwjPQ8Th24Q+fSsusJ7rzoy/YprSdekJLGnx0BYt3c/NOw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa8058e9c-8723-cdb9-0724-962a9e3f0ae5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa8058e9c-8723-cdb9-0724-962a9e3f0ae5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>VolKIfMnAv0YM5PhrInT94z21lg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ZIfGleZ/YhJ6JAFcEDMswowZVFwQTnTW0vgS4/RSMOmtsPejUw7ff+hLNyQuPum+N73/IicrOcjmwBYXs3+lsbRYhv9RNt/ci6Y9assgKi3WhAd5TEY+HnCEs6y5UV5rkKAkPE/42QOC6qoyq5fJr23CjXHBcVgVv7CEZ+GJDSE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf562d2ad-5d31-84e5-4e89-fe3b4c198672" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf562d2ad-5d31-84e5-4e89-fe3b4c198672"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>z3vcRhkw6vbEh2Sc0aM2SB41Ei8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pPUxrNyr5xSTCyXxyttonCGCyXFclMCNAzEEOnda7iTF2ZU2oI5ble+ALyTt9GZY73Jo4ZZTCwS6JHPRZwBNv7FMwTsSRfzZec5hHhcxd/P5kUtH48ED7JWoN0Q2RGMjS9CSzwoF+e+N7HTVx92mi0yxZEcSoXTtoMxSQEPELPE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>E+Dr4oCvjcGF4Y7b0RasEnUXBVhur1BxZIamA21iUkV6pQxjI5+AURL8XqN02oiaKm0AmSNxb8xsw5r0QRC3yDqLSiPJCDmn5xOHWikDkdLPjk068Q4O+XmOghpPWyQHKBUyy1aMfv/CAAR3Z9Kv93NHTTeVu0fr+/qt+DJTtFo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>z+qTZmXmoIxX+iqp08tsWd115953Lrmaybe7nRmj4TPrTcfecRpgrCwe9jaxuOwce3lAPRwtseyfEsMBSd57EQxay8dH7ApXMLN+f2Oo43dgMCojw+P+RABkXYthDb4WLZ3p9GBUQbfbTR0F3c1Oh77Ix85sDyhQbFb8nNWZVqw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Ul2f53cSxDXFR0Y9ab3hq9EC+V0stsGu06+lb99U/4GO0NktXvJniMED2lVemLym8LUcw+CJAIQ5WfUaDmMxQnJ4VHn+3I4BoUhZuEay2yG1sxz7qe1zt4dcalHOOBzP6Bp2KchSeG9w/4OwyhQzUq38jRA1dZt79Gr+k7qVVbrMAnJCX5+j6Ofgdu+ZTLLtrR+A6MX2uWqOtP/ohPKwrOWCgRyMYQA0bCGMlpy8qMSm/ywWPZ+BhBLJ7fKdhRKQjjaASqtdt1oDHZqYyzUcAQgGiJZJUqu/aBthcsi6b4k/O8z+n8SINTnCwXJDocZaF2Q6/kG0ZyJ4bZEXPC9t+GywhOXPB81W0GEDwoumoNmcW0V0aemAtng4LOPUd/GVy6xoFS96XWup7saR5U6F8Fk+WiysziSPcFbNf7rbVkTnLv9zAWRk5WD6G0wzEZnSZ/G5wVk4r6uzMkJtT5LqaLjuWdFvMJcDqrjS9YmBeQ6w6/84lfbG/h1Exrs20flpUG75M9DBIj38RzqDE7f+CuMgBYTrJ7kpwtbpxO0OTrpFubf67OHwFmsgnqzNEtFeYUNf64iRig9/T0NceHCJeYvRjJEZE3Wtr5bMCuNx5nxKI/GC96njRSOh+wCi1aVpRaZEgjxJGUd3GVzSFEWaS11brpM0POqvmAcHU/lxEUFrgH3S6EnZoRtz8ZOHu4T94+1ayw7qYHr901G3aZ+lD2p1IDcCGNDHxOK+oYHMX1I5cBIOCUFK3bVg1mRtYdeVuxQkhnUAT6XtS68QzlOk/JNGjiozzHKXpGXfMDNMfvXHpuHEbXKBIkNrlKmE013g2vkj//iOlhOLa4dcxOAftn8vyUrZhMi4uXeOKM2OifDBs9GSuFuL2OA7BGs6eQnkMLJWSTkzxKnk9FBff8dfP7qBKRYowcv6kFi8k87SCdWDXEmTVmXUBe0S7kYAPoiu/2A6kWZIzIsBIQFy+lMxUtzAweVaHtvrUmEdAt60yge/S92mjCt0xDqQOgitcyNYcnxPaIaBwkpJidcWvN0gqSzbJoXIyxxo0UjRresFBiZ6KbTHgf0jwQuliWaD+3cNgaa1P8+FFKouubgQ5hnSDWhhd2y/jYAstNeypF/2sxEbkGUp+xTcxE9EgY2h8IG7g99NOnwf8Du7NcOT2NvOzuqj7dPI3IGbuVM8ROGIKWs8rSClPJ6f0lA8AxxOFJnnnBgdTEuC1fyiHlFwyA87AZdESVhl61ZM2/Cr0ULcB6+VYxZbiBBF5R0dV40SWSmYr1WxWfdYddLzNUH1GIdd3Bd7Qvf6mJrcgNNo1jL6EtWlg8QdwN50jI8VNPkJxHbsCW053+4SQnPRy86HMmKpOXSrPh9i79vPvaoTuQBBCb+eb0XAELP0y1vrlc8SErkweNL1t9MUa7T3952X7p5RLPuihk0spI5zCFUWSgvFg6yHaY55EJlAt/RUlfFLI0fqdhDpUTO1A74M0r//SVjToIRHqPeOF6AKq+6mag3lGEO/H9bwKrEHqb5V/0Nt6i8y1zqEa4EYVEqOU2RZVayeOR6wjhnSnQB2piXKV2w+d/QRpjJe8fPAKEBA6RwAeMe6+z5wQRwU09Jc2wbpUFpDxPCFjNUyoET2WRZxKH4hSt6WPJ8NBxOScW/3xCjQ0Tt66LU+j73GzzaRwxQPhu4oQRWo3m7/hAdW0Oh4nZv1lgLMa2N9LaSWcPfbLFaEz0+6LhZL2RLBeaWyhGmyg5C244+EyMaie/bcA26fLT7xxX+Tsdldce4Efd0AlSX4KtQESpRbAYmfcvb0jGCadlLb6jrySZxWIawGn9K52ThgVBmcf1m6X0nh4p92rPTwCZ28Fl+LILwDe57I1LnowSxNsqW9oZYzkU2nHQF0XaC9NvdGV3MpbousIvMKfXxAmHMRZs8XaCvszHRfAbTY6Xc0tq3fQZfgsv9xE7/8W4Xg3g9ONorf4uxAYm0Gfdws8Qjm+GHG8iBK/hc+5R5z/Zd0HY/8luwTMojy3RUemII/mSuNZ2wFYEP8XtuwRctvKcPt/9JT4gncW2OKpUSdb9SdF5qlewOyO5aguLBI+yfeqOxGkZ8TgmWThYZINPKxz2/S/lCGeZkL6dXjyRwadG+w/UToC1Z8OQVR2iKnuiFwFfgtwe6gMhNNVOh1C9UM+Zi8KT8CG/R+CJHGUcHFuECAh4IyqM3JteodEb2WRBLOqtPESFH2FIYa3hd4OR9LuDkzXicqIp3pZweTRCy/qnijw9MUbMnit3N8bv1WULXRPxSGGTE/13hNh6Hhe2wCnfAviJeNBG6/UgmhwG0Cr8VOD8ACWSK784Y3zt1msG3GQ1bE6ZniwGy8fe7O/oywPdK/C2+2AkUfHcPDDPZTiEIMmoNJ81NLV5d/fpMLUQj7m5WmLEHeAEFjZfPvOApw3KaQ4dBFVmDyuEa15bP5vkzs376pRVnPlAYqHxS+I9j7os1Up9L6wzm4TlxpeZVdAMzLD9Sii2lANuwJWRph7XPXXoZLPuX/BCF3Zd8Jl3mvzMyo/ER2bwMnTRCJezzRgqKD3HKNKwdsBs0Gz4tyYB5TqnPz772oBS3Ry3ciIOmCW4sFowWcJBsQ8lJ31YzL10lnDdyMfhmV2/NyTGHtL6OokYPL5HjFQJaQc2wt/FPj4VgfjTRm1gxCSI8BP4Cbzqs+/iTEF7h5wrpd5l1KBqlKmgE3yFS0MnrRoK3O4Qvkk9Jb2ReMbS1sLdg5m0ZdVqb3t279DkuhQll+1OHSE96Ty5PNR3cUO4onh04els6mnMauSjNfFUwnu8GF765VlyhNrjHS+TDN30UsAz+ugKtUYtolG5nUz7ctDaC0ePHpsn8vz8x9Sni+ZPdna6CZwZKR9CM5HT9AjOnV3o7hK+4ci04ny2KXrmuBgPsYaovZZc6TLgTHxrkApLr0nQ+LoT0lEhKwQgyqJHw6gVqCTc0Jl8IKM1LhBLJxo6iq8KkICmDxKHHvVAqv0q1VzOaNqi7wQBR8QQ+dBLdpdPQcQHKSDJv1OfIwMU6cDJWW1eNj81WzzF2oQKJFwDOrDduTcKMg+1lfHZC6gZ+9IktFRbyEACCRzGAkHgoAKeGn5Dlov2AARSC2kgRZLYHLXzZjds3icqVgfBJmc92GSZ3yvy6dc9h8oZGqXOf3Afxq8JbXux3qlKOqWtAD0kPBojDM7xfF9T5XckXdBKVvm4OF1jJS34QtkP4E/hxR/fPmVlUHQDKzeqPoBqxbUAxNL9c+9B1BExb0z1mfmE/iE9YKRNIPo1QRLJyrpVAzLmClsDDe6VHd18r6F1NJqSmxWo/NH7xuYKSeEx1SfPc9Qh6wM3G/KcVqEwHKJ617XY8ZnXCFcvv5V323qEh5GPRohwDNe/LWcJC46I7qqZCrRh74C5O7YRDtUcf1Sntnau64kKn9VsuDwWA2batkWazqe7HnNIE2Z70u1Vq3Q0F6M2BN0x/8UffBpXoxNHLSl4gAvZK10+wgpmeNtWMx9KfBpVOe8Bp7LH4vN/Us/LRlViCr9Dc/BKBxbhrVnXjhwr44sOU62bXNrd54LLCtmAN+EY7b2hWDx9gVssmVKv8E9pcDx8NjmJuiBtqqV6Luw0tNKacrEuTyey9PIBJwrt5lxJPYCnEgFHuapgNlIZerC+GtUrIGUMZSOdhIpRVGQub3gLRB754Gu6HTCqEpw0I1wcBIJrXhbrScKwOg5YinTu+rQUHwKW0NcnLODybD3am1t77pmTqmFyVKSwO2PD9Pe7XOvdBkQh88too/SthG4+7o7FN0LJkO6Qg1k2xZ248944XZ8Zlpi+a+EXgxwr3aL3oPxK5X2/UA/FHpvp+bffv19MA8cTsYbljOIqZ4R8m/nyMdNtjKijX6bC8HnJ3yTULy9q0Qf7jGjc+JjWZCmrS/INHq73YryMw1MHTiu2WYb6q0WpbuA2MAhkYC1HA6W0Lt0SMk/kd1h55KOFD1ZslyOD+K7+4QQOr5+ipAqgK/xCVDALXRSG5XiE4piVuNYqIOsecL10FnJNQfx7X0y5Uniecb0g43rGQFQhcc1jR+sQUzwoulrnmhieqSuEco4YwokFMPBHq1DkDwEC/Z6IktDB16gnPTTivmat3AzY/niMvOEufBy6xi97k/G8Y0j7o3APLvdKYPLh5CPAeWlS8B6VuRBK9FL33L12ex86FXUl/ZQvBmAeA75M7x+riiTZEJocEqky2VMBGWrqgLNptco0nInj7gOZMAcpVJzBIDj97xzCjKmZsJOYoj4+Glbr3YmFAhHJRFfrUY6stwHdn+OpKIfzBcQGZ8sYm8gsjciSnsDWMUbNXMwY4KR22irFtTmfi4Xs9eyONr7Wztkn6x/3KXP45xc6+euLiqiVrwKA+gGW2RhrUymO6T3BNpgdijJHrlrBI8VZBwbeZOQ6WrAEhq6PX+BVBaQ3dC2y1tEhO2STkxW0dU4aDyA3ntYGslP7qHWEQzK3AncPneUmu0AlC+a+G5mS69h1hmnCjc2otEygs6JgWhmPsFPBA6oFcH30mggLWFMKy7hjR5qc/0D1yXaIXu+o6Dj3mmsfDJuQFZGdS+iOV81BC8+2IwjVPdzoNoU4QaoDKcLvMrw6J/aVlC4wv44pV3IdzvQdkhyZ/7dqeBE4XlqCBv04XWniqawpiOUijMsM3u/mDfbJKHxjKo7Yy9J5DJ2vDDHgZgAHN42lR7r6gPoyVc8NHQFCSRXTgIJtpw7uUrcp3MXj54cRrLNrnU5axO0nHIPtAZ6FnRmuGpTv4t+KbxMWPLxTmB1EeKswSs5sBLA5SvdpDfv4zGCWI+zhZNYa57v5uvXmRX3dGhD9VEZ3Mig6ATYBLa+PPlRndzN/LicVJHjcFBIG8MlAPPLhz1aFKmvw8LY4cS5H0CAyGV22WJOFQ3ZC8QsMi6+KVC47YRn6AKS271wN51I1vgY8Ho/6b4ibPfDOKPS9laVA9rII0q35iy0WEQcaqVkiNAzGqIUd+36ThgOqblbpXfRj8NG+LNUt8MOncZIM2E0pezKSqXfCwCxXumKDHftMArJCx1Ee/+MwoSAKiKDY+1oacejATKwAzqS84z4rNFlJW0bIib1c57IeLUIE6AEGDRLQPRF1QfrjHRE9hqtgispbX8LGjlFWjDUmT8sgNXkY3/OoGzuWgJ88gsK/RiX1DYGZgpxzPli+G4HBxURAznjqquq+TByWz0wrCunNzHsmynyiX2/tOiRXvo5HOqf5ckbxDkkDJr9N9rJKbtT84pC9jkXDsDNKwKdns3JIfLO6wIY1Ufh1Htr0W6WQe6xTvxr+PKGGp34iZaevWzai+dg5dI5Wg1bl3L3NIrJglTVu/S91sfW0xsUu4tlBh1NUlFwwdDGL3/hYkaioxVB6EU4jae5L4+hPcESsiTduNGmxuKVdRXUeAW2Egz4w43g7cH+nOwrIjoF8+ma3UvbKK6AoBGZnyuEQArzki1vk0=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxba28aa7c-8751-a9c0-0ed2-842451931cb7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxba28aa7c-8751-a9c0-0ed2-842451931cb7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>s8pbh43jWmdUbtfIPZ1wQLA9oPI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ontd0VSADa4ahGJKk+C4XyHLoJaDHCfu3RTIduJKZyqcR11c4xv8fTPXMWCQIsFTNleL7gT8rPGceeOJINRMNE5EP0TS3069rrX4OM7mjnvAxYa5w9rYoQW6kVyGqKpuvv+mGmGDJuI5LoJ5+D52UUJoGZ4h7Oxbl8OxcEfBwNQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>E+Dr4oCvjcGF4Y7b0RasEnUXBVhur1BxZIamA21iUkV6pQxjI5+AURL8XqN02oiaKm0AmSNxb8xsw5r0QRC3yDqLSiPJCDmn5xOHWikDkdLPjk068Q4O+XmOghpPWyQHKBUyy1aMfv/CAAR3Z9Kv93NHTTeVu0fr+/qt+DJTtFo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx45496ec5-866d-c58a-d2e8-d9e3a6b7153d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx45496ec5-866d-c58a-d2e8-d9e3a6b7153d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>gDIrjF+6kd7BTJb3g8Nhdo8nmSU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cqR4nO8Y+rTTgpN/u8ea1DVw/d+dPQuTZjzX9NprkZppxTibGLsj+GAas+GD4SYPw3W1Pecl9z6uTw4SVxqaBCgx8P1lNqA5h8zM0YYZAsF+frHxsLhMUsmdXZUyunozSIC/a7g3YfFwpVlpulEDXEUgbsdDFD8nXfwuic7DPyA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>z+qTZmXmoIxX+iqp08tsWd115953Lrmaybe7nRmj4TPrTcfecRpgrCwe9jaxuOwce3lAPRwtseyfEsMBSd57EQxay8dH7ApXMLN+f2Oo43dgMCojw+P+RABkXYthDb4WLZ3p9GBUQbfbTR0F3c1Oh77Ix85sDyhQbFb8nNWZVqw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>