Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxaefe1b9c-0bab-a49d-8e26-c6dca228191c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxaefe1b9c-0bab-a49d-8e26-c6dca228191c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cdvZizDRQD8tUeL7NtQVKVGB0E4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KXF4XmB6MML51J4jLYeU4OawBGKSV/BJPlsVtCnEeFIfVSxtBj4T6uLe75UzKa23xxaZhA12Sdz62baNTOhpnrGVcWX9PnFo5jCXd2mcVO6g2Ytx2dWzRUaUcmOgTJOZVHcfab/Kzr8qmZkWF43J5qHCIf5HAQ4MYQSninUYHH4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx337fcdde-8665-5556-e978-1aae1514396f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx337fcdde-8665-5556-e978-1aae1514396f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8135mGRIr79OkO0jZS9qXiPD60s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>m23mHtMSSYfJFNhbVeRlAqTcrNB5AKbvaQ6GJgxi3Ag8gurVuu6QUjuHa71DeBJhWD0VQ/bYl09PEf89HkpfL5aV08goMNmethfQ5ovlwhRyLxX2gZ9zWVRrwVzO+87v+k1yWLAoHHtoXIC6Mhd79NqgLWdy+L6u20VS5ed/X6I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6c77b18e-3c8d-7244-484f-bb29c7650a6f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6c77b18e-3c8d-7244-484f-bb29c7650a6f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>CRb3zta17J0robo40x0favHsr5o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>PooRw7yVoZTauV8HxabxWIHDUesHd+nCYS+QUphxyQMnCi8dDKSb6hklD1KpSWmKFC4hwe5ttzbz14++0k1ILI3K5gfHJrnGTfyS7LCCO5UMGkCh6/hwHLkQE19fiYqnqB2W+LyN8bGKwTz78jb9/8h6dndar2QXOd2e4SHXvBQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxee9a0daf-2497-0ff5-cb80-29aac710e94f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxee9a0daf-2497-0ff5-cb80-29aac710e94f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>kqSXTNr3zeJmKFhRLRTQu5wl+eU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CdsxLInBoPwcvITHzBf+0/mF7RuYfvE3SDF+uX8s3QfnnleqCw/Tp+sn8K1bGPlwCu7GMlry0sGHiLhnvgBlmr8mo++7dbi4ODFc8wONVaSnEOvq3C4Du7jrMwM0q0/zg4QIgjb31u4VAphP/vTcwf6TdWSgBxEAaMzrY9mvZdg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>FsJ+M/yDmx5NfqdLMRX7hFtFckbNjFFxqonNFLLEho1DAERZpomOcJhwr6YInImy13rF6/2yWuv3ffgk4707KF+XaBB/v7qgHlTek4GcUSr/kJ9AaUd2jssSVAsNKO/bNbfKcj7BOn/CLrZIXpKxKDAQdMXbzsZYC6kcV3epsqc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>0nxr/XrOtSsQWdLDPPSji9vOJtfV8x4OfgBvbumFhGuhT4vCDDAqVyS5szgXXdJd8hIOmnYa2sE6fv2SGw3IFMEhaD2UJP9dgLOgKi2u+by27C544HK+8EjqaHsMZem3uDpPG3U6eExxRxO8g9T+H+XDAdZQST68jDs9nDfMafU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9ce14066-a91d-1fd6-3317-3c8e6b88fd13" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9ce14066-a91d-1fd6-3317-3c8e6b88fd13"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xO8XcWSYfNugtMG1k96aerBdGmM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IpTgo2ilbb18f08BsLEYrq18fhLUSr14BNZxJjrCUkNRT3CyWAa4Ce7zwFUomvPmH3zHFrZYTYXt+096dzsCswpHfewusBOL2i4+bntaRuslUobLxWdjbwj6X/mA3JkjNxvfD6bRc+RFXE0hL59zSOSdeSQeP0iPH0YT/uJ5p2s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>FsJ+M/yDmx5NfqdLMRX7hFtFckbNjFFxqonNFLLEho1DAERZpomOcJhwr6YInImy13rF6/2yWuv3ffgk4707KF+XaBB/v7qgHlTek4GcUSr/kJ9AaUd2jssSVAsNKO/bNbfKcj7BOn/CLrZIXpKxKDAQdMXbzsZYC6kcV3epsqc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx586e0baa-50db-6596-f7dc-e8625f300189" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx586e0baa-50db-6596-f7dc-e8625f300189"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>m2Nj9+9QwPQhvUmOga0/aWaU3p8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>xJ8QIOInepiNhE92QLAhA4y0kDwk0xh9Us7Qqmueq4XSoxaKWLQ5elk2Pdy9IA8e+E26c8cPXnzi/FKre1pI22UBdRAYNoRouPzrFw+Bw8jg1cxzgX85uZl1ZGh/n/vZReQZgJ9Gz2Bm1z+xCWMvPv18Qn7jErjfTe8rlshp36o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>0nxr/XrOtSsQWdLDPPSji9vOJtfV8x4OfgBvbumFhGuhT4vCDDAqVyS5szgXXdJd8hIOmnYa2sE6fv2SGw3IFMEhaD2UJP9dgLOgKi2u+by27C544HK+8EjqaHsMZem3uDpPG3U6eExxRxO8g9T+H+XDAdZQST68jDs9nDfMafU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>7leWqN1bHWhOTzs8IPbE+OZC20J7teldNQB1kHIjjNRZu6KUZ7YIFpD4cBjOw5ql9krhth/m+HlPIxyobfC72SwLM8XuDi7BqbaMrqPRg65kXAYuU6/2nf4YFvyfvbvKfYkkAWqezZRuXVzBv9dNIuQ8RamF3FxsBvmPwcEmZRwPf1/5ILbHw7GrWBkAiF3HMEqAaApuWM4em2LJlsv+GSlTu/U5Bf2VOfbUlOWiMS5dT5enXjsqkU5z+CoC9YHip7t9L1KMv2VV+XH577/Xt8ELzMgt4DMYJZTd6QPsIv9aKTbC6J9XFJlyRgiL9VFglu5VVmNhWAq2jd6VOLcIMc/KCmA7jl4hgP2nC1J0iSVND4YwnjFe5Ygf51bIkdDgsWBCqqO6eaJ4mZBuwZVFHKH0vC4tb63OoukG+aFh5mXOA0A1d6vvEipb75gXjgkNPo/sp0vSFMCT1mkS/w1YHeuDmsraOx3kDi4rnkjgFws9juTYUib8x9mX80HSRszUBD+bYQddAwSNimVLFBpzKkqm12rdcsoHdA4dMjKmgnRe3feXlxmOwqSkXshuktFlTPb7dAXOilc5714EOkQOeBrjagRqbU6jUtDPM69+lQcjc2H28F/DbWpJ15IkvA9uubkBrsGZqjqJCYrDuWvaEy3kKI7XAqczkN9FQjejy8/64yUXmL9T7uzyW/QfMVVmz1k3CfvHHcACgvYpLWlREfXrXOFvjUQ0+F6vkvedf4ZAzKP3ybrHqfYnj74Z9bwffHmTW2U1zmi1d+eha5SDTqdXSKw6P4/MItIptVsvWFDDECgZRFlHBaKY5HbggYPg9zFrVabLBPeq/F7U8lfZONpWWKPAe/rzVfntzd7koz46sOKEFhROinvGtn9Ifxbk+8NW9/2AtOwRXAp3Y6IXJLb1qnoMVVUnoY/lXaNynWpD7ufnWas2jI2+jyKkHY1Z6u75irY8YFkr+IpP+jDZxiXPWmYgvH+KVjwLTr/jD33ddLXJOvKPeKQ2BgmH0cziMGH5958ZktecX9yNXoMfoYklNMZS3djK9hbQf1yuxIjdRabzv5bMvXDhczEWO+sAgy2PHen+27KfsPeL6jtqnBGboCm6oV0uxHNHBVfpngVztkDN3nUGAioClCkCaqcOL6eb58SCtmv8xFSpJm7lQbzyPobQyrloOt87FLAks7tHl4HOIt6E6smD1J5m4/U68Rjj2fZufiRw53ZpxqJ35MF/U+uaQhpxq+8vGE7yRMAp6pmt93iLM1LUgAQIfg8KEDI/DNs9grvnMkXez5/PLY0xgZgtb6a0vzRcgpJLRCIo1IJIyHBharjf5WypuMNGCELadMO/614CUrH0dFESUYmFMtUvpAdMROOhuvfdR47Kh9DLlk2SHplbK+pmQPKzsclb11JqRAdRS0T5fjdYrRWe7e2nwBR1N6VL3IFDe4CDV4GiXh4tEnqRelY4h1CnbgRymRHcJhjrX3u5tT5mzWtviTDZClNF9GuXLxRvQMNq19cfHQMXQ+4AnbV8LufnkfwHUPivi2OoIO1JIgVthaxXRbbmifrXT9VQTxHCtYRzEFQ21QVQRJN4RFUlXSCt3QoIF0nnReWABpLHJERXDNTMcnSnuBilWSjIcOQWlSbVJgIIeZf+6u3TuyxFcjo5oiFvqJfr5Hpt4n9DCaKV+rx2Nl1ChL7MHVFiHqxeeEVqrMo1bifvFPx6BSTgqIyjrBj3/XdYtIJSUXC9GAEnUCYTTYQZI1DgezWTnbGQndGZDuebQ0cE4uQCxpA+WKRsdxMWwZLsB5mCL69D7z3zKz3nkEw+cfxCWAiAYPNfu5z1CWajdiWEn/j4nhISfIkNRnMKKhbJI2+pC0fJ8ZmykFHR1vHXx5mw6W/FZhnm2+9Qfo3PoykSstRL6Ly7WPUTdz+8nPYnM9YgeK86kGlIRrAFpEqPwpFGlxVvVmwouPEo9ghfT0+eZn2AP1UVlAFp+83YvnrGpurYGCDXKh7srVyOehmg9NtIm8KOX3dtcUVDkaucVpcRzqcSCGoklWd0s/jQ6l1bxLxgow/a8Ba/2HjpC0HSgoVJ97jxpzmIdhlHnpACBi23j0zwEBEYRtjxexJhfX4gErgfAbg5IecBCajbgPiSW48eMMwCrFCTzKA+99OPJd448goGC9NOB9W/rI+N7r7ixneA+B4MJc4xWWjOsYtdtMeymmCTDY1xgkY5XX2CbKYkX42GlauGsfG2DrilkBuhIPqypE9PxjR/Q5yR16CWve7JB00dxD1Ur5nzu8CnbgaTBYNujVBaQjT7QzzIxDL89OFNJaKs2gQZ5RGCsYhmBPMV90GpWPTRaT6/dsNVjmos+HhSOi7ss0yQsbFIhZm+MhFSxZF4ckf4/SI2L4xQdZ4Dpgxney/mopMS4/9rAOxk7gXOD6O3QOgrbyj1YeR9BnfTyp0Ib5/ivj1kcsTJ36T0lEo3YccgTMk83BgJaZ5DKhkfqcY4UflX28MQdLfL9/WKv1KonLa9tEzGdNZExw8RC9Fu20s7cAoBnm4x5B+GvoF6IYuXT1QtKeF2HeGbKiYIHMXiSTodXDdQXzVEmvkI9KA15Bd9C6KpS7vRNIpJd5qgIwuOgu6mRmQyw7JT+3dYkwptArECAmzPmd+v4WwUO7Id2/XgkUTugw54jHqJ+SmnOvveJ27Cn25ryGZIPJIi4KpQXjlWQRnCfFr3B9xDbmxk8cGeHtXgod9zklojWh6yQybk4SxUw7Zfre0hXk+NbUlSkUWeswlcv2TJRQzKGXQ9/rw4UoqK537PtrHPioFJQGQa/L/8lKes52YjEEXK3YtGIgqGw60gN/XUe7tzTVj5fW36WX2+PFhC0C9OkO8BXmLJAqracDng/h1CPujkGgjY8zkuPErfboTUejgY5oYYCLvj2v1PSVd54soHh/JRrz8Qwi3knvnFhWkqR9qsxi+i37bA7RgikYLsGMO1DZ5dSZgJyfwXLSABo4ApgMZZeGOv/OM8NdsX1O52/e/v9FAJQ66G1yAhQpf2R8FYEHbAXcCzYwFr2+UtPYe+YmmxiTiLS+Wuob5v4GOuy5fIzaNC0i4xZ85qKZExNmHJTj8K8pge7zNXaPohDcMeO5IRr7QrBikJMK691rR4blNc0pjoJqWULBSZ/lWehhN3nGuA2ilTeVh+4M+dUOssYw971Nndjw4uGku9DsU4NqL6q8vt/SCU7MgwXSrip5bL1l8k+OyRYCg9pVQcdKdtKwqGJuYa7psPDPNkhy5FE3V371tV0YEyKBxEmATQcUQu3ST/3R5ArMpgGrL4CXjw+ulhCGnsna3LD2uctzSJVQg+ujnrOxxEXW4ilPu457feDXyB5/DPn0p0VsTWTfQv2nvcYWEgD9ZcPU0lZ10Xd9hHW6FQO8Y6W6Wp1Ln6oejr/qlqcGtYlgA0cGYIoqiR7pnfvIgsPID4yXX11BU9KeK8UTcRiBPB0rdr3Y23vcBTPYItz77avEvu+uLVAlVLaAhTGahcg2GMQpErovjHrMaVgOKiZNV2HxT+7bYOdA3tJ5iGd+AS14bsZxoHKmvFTOKXvVcnZpWuOBYxsLaFfINEWvedM2ZvFdjVQefyA9uyGeOtybTUeVarUMENcOtYdvl24nCsmXXxrFy07MZQ8BX0PMBcmRBd0cTkhnfDuZyCcLVMhaC5k8faI0Q1EcX80GzE/zMpJJhWRc6zMKBj99Py5PnO9MDAkDyYGP7Elkb90rF/wXXu0mU9BxWGHvKgLZN+zGVFuat3Z74GH6t5JzGy5Vd7E86FeMMDMk9B0SAoNG7mGVRC4A6XG5+Zm044OEQMPI2OYxPwV6SVcqwHR7/ZhUfeiUa1FN6PLRdxx7X1AO0kshLZgrf8qAAsUeWChmhHjQoSa1FPOcY3Xx+zQTRhr1QCETYUJtbnk25rUsuwxGnv7TRqeWK62n48mt7GMiFMc5hjsrW612oajg9BXOT7+HObvfatd9g7r5XCUUAnCjMwxPJR5ZXnW77tshEhsyWVCXgKxdCEbwNeMd1xVoLcDzVt872fAZRxXbnf3lyuKoGap1p8w5eg2EJh9SHTWwEo0WmVuLM/NCgcHAsFQqSd2iJ2DAvP5eEyx+P1gy55ggrDIGtphetnhQ/hsATIWCmZy4Z+3fSKtgXNyGU4uxa1vH19a7bc5VWH6pLMuNBVWqOLRLme8PhA8DRjuuRE/bJxZIPyWeXYyoh7BLUXvnVeHx7JeeFyzexUHg9CD4G77JBcnKhDqVaUIRkSeYr1aiVc/+qF4ySyFVashbb0V4UHIrMVhTLwnnuuVQFyyinpBiSd1wvud/9fCNSUbCu9/kj7dpWoG8qChAZrh+AjGDqR7jCZSAU4ZblaN6WL4NvsL2Q0QynmgOm0t1fzliJ1vAWNHuPkR6rcBid8g+waj6BGxgLHtW+zWimpV63/y/Ightm55azQco9Si+3tvTuBoJwuvYqNJICobR69hXMKjJe8yceVsOYayV3QOEyWCrrfmTVZczKh8aRyvAL9mhBVGrv6URcbw8kZSHTdrWKHjgI5NLkd9MxMJGbsKbbGMKh0TI6/K6CnGrGl7VzMNOxVqh/+DbqaL6RlVSl5c/U3sqoxB96Vpv0Ll7/sDNN9zqSU6i4rJkwNYIjB3G0RfJCxQ6WEvAXuHcQOF2Lpf4uVuGLuFbOBnWPKgm9doz75Tm4u/hlL9YnQKFzxl+yVS3BSYWVhcdv/UTT2PyUIXNbyu2qk8HjMxqoy7/X2TL1+Lre9g1pc49Vpb1graCM9wps1bZnEfPJxTWPq/3KaaIHgrJc5cbslhmz16JWff0tCPPbkWZny5/LczprU866Mzn8cmKYaIVob60jy8siEVH51KE3rGx1X6N3Fkb4B7NULTTtlSod2+bkoqhlonA4AAv5p2wNGuR0LRopazs+cdNZlABJkaz3t2rIxviw6pLi2ByqApZOpJzXrvHu3j9e1I4eyo69KvRooJSu8bjJmK1ckU5u2QfxAStSNhMJh7U2XJxorbEF0Qt45YaaVhhpSH9zsiqfAT1N16TDoiYxcjTH4hZKoE+g4G6gqHvzJxfepnEmEDAjlDdQNLQxx4vecsb3A2UN41XNdzNSED5uvkD1+AGelH3hOfTvFaodrz7rapj8A8Ubsy8zjrseopbj53JZdEwZC5D1wttvs9bB0f+Urp1ygYgOgzL8HK28vBaqSGvwpC2kTB8R+2uGsWBG/Af9gaNQgX+xbwyu4ZPcP4XpR2g7F7CX25aKRWu76tpWcqzNuli108BDn+qt58BkyezjhVQuHQ7G5mP6K+Ld+Zy/r5DZNzKriRgnG6EKkMbLz/Ig3N5IDQqUfoc4bELl7RYnotPSZn5jiAl7o0L5/y4Yg/ze8hqeJI0leEvRka08LLwq74fHEr/C5l5rQbQMdlfpJkjpshLf/YwQklHR0CSnl0/CfJ7a5FWOC7EGZUibZrwrtLA+BSPwKrGI=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>