Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxeb888e7f-25a8-23d6-0181-88da0a212787" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxeb888e7f-25a8-23d6-0181-88da0a212787"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>hTO7xSRK8Rtiap1c+oBTHwSOdHs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sGedO0ar9Bh9MQmVAaWVsiD77HZk+9tcnioFGIKKKwGC+GeQvjzZ4EsAz5TRqwWndDvjqhPGmHmVpqKkA/xao8w2fzW9TIoEWj80UsCIAeEI/2Ad03Yw2yQvdCURU1ujyoZwd8WC+kpHIjyBPO4CN+hxec7zSemeK2+PTdSWXyA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf6192659-4da7-185c-38e8-c1c609c59f05" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf6192659-4da7-185c-38e8-c1c609c59f05"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ilYl3NXKMiAEDX9CRtNMTIQ2ob4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vmicfqdW6zw/WBdSwnqeJkpkoQVeUU3pr83JaBDr9M2R39HO51YBLsy0tGWNuqeWp4jZ0AgW41EcUZd1yDpOSM72JOOS8e2QWzhP//yL8AmQcWVEQ2drp+jQSYtOSu7tiJSPGEy/dUVee9rZpUYJHjaEtHsJep/ppEvZYx1vySE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx75449cf3-0285-2d20-3857-62a59011a71c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx75449cf3-0285-2d20-3857-62a59011a71c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Jdyn7Wnz3wnXR4CZheuvkQBH+y4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>A/9agaC3ZUUkDxK4CWTEKSwRIfh2hQqzoOXotRgKxQEM1QRlYiBRq/5tIDzb01Kk0r1Idfn/7LKMS/ruZqI4ZRhdlRGvpczxJEnDffp+erQQW7L2BjcqUjUFTqvU0CGHiIfAyKPGztn7hD1CIvd8NqslW3E8jnjZmdjjUPcVWcc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf0d2f390-c16c-9f7d-d4f4-f226483d8582" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf0d2f390-c16c-9f7d-d4f4-f226483d8582"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ns+YkERfRNux/yMN5yBimmxwUFk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>uhiZvEvgjQTuzWLcCNso73zwH2bkExeQ5dk13u6aQSu8BtGFdwolT+8jp6sQsT0JXbmCeX4/TgJ7MNM8IDsA4rUeoFO4mR3gUsnLYD/Be/YDJLSbNWgsc7oKjsw61SfPkfx7183lSpjQg0OdA+mP2Psj8eJGn1sJeaZiqUajLWY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ejWifq+Imb2Y6VAiFZuEcE+PNejsyRfH7+1bC6ypE6yP0G220gjfb3bUOdnX3nipYtWgbN3siw4P0c6oULen4lxVh8lZx5iVjYamJ3HpRC8tQ/BGN4ByhIrylxlxFdFU8v5X0Pl2FKUvWkU1nGG5QhYFT4fLfPiddOis+CzNc+o=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>CLL6gzTT7lLhm7w45ndi4TrgCkcJTdQ4lknoIx3lBGDbWNJ9Ux+pqSLckC4RohZZ2pBHAvwWToO6omHuLEI6Hf8kgdU+oNdN850IPdmhZKX6O9lQhwLP1n8KqJcXrYeUHloekjZFYu8NnimKQ4Ttet89tseAnCEAqTxI/Ftb82g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>h4C/pyWKgKiQaeLqjBWZwo3qTegZFxgzczFqelvkxcWq1hsfQHGRyToX/mcJKmM3krRNGRDgpHvGXPnyKwBpxoWiSICaBaEZFenJ4bP6EThk7Itur0ciJ1686zhml7DyAFpkBEusamJJ7C2+fdIYBK7IzO7IzQ30JoP4CwdCi/vdgB1PDqQivh01dWCwc3Ff2dEr3MAKlvwqcc1qpxd+qcL2XK4SPu0+aDGuW6GJZ+DuWXvx8BvYl8KUfx7lrkQULYwRy1o/O6KvFvx22D1Jkj0CoVyp9suNmaGnMbkUDggKGnCmTHYqAldVhWeGETndjNQet5ZLExeAY9vzShLJJFpvhDND0N/CTCKBHq0UnIiaV1tYezTskdcmtrRGU/T9D+CpFWKq46WtlzjoioP1HoSbPtfHG5FrOn58D3SyRZiGo7xvUZ+a68GwHO1TPwbTWi3krZUem6VEbwkO8hB5lZkxgIcjiOpe8mhU/QCIsyUuJAgPLztSgZ3zZzudzQFmeFlxqDIwkznZ7FSU8fC/gaVojtTm4Mc19qLyApgzABWB2Ac1IPC3IYKYRdCmW1l6N3trbuLhu4pFG+frEDRekixc9OqFCQCrTlLMmpP8L/5pO/VKELjlp3PRXiRa74t4OCrWvcQIOVw2O9rJwNqxoePvx19Hl791erw687hJWEteHt4N8mRA7CwcMq9aR5Qijbf1zFC7UxNLzJ04eSsOvGzAm1bdV9LIujv4oW9zl+JdIh7GtIYBXFMlZV7pvUCFHPSnPrjTEG7AJMTlITXX1E1ztoVBZpYxsvicE9vFID7qOyQZnbj46+tGAr6Ct73mZNx9b5pvYMUrIbmmmXrFW2b3EsOvA9fOA9Yv6Lkxk1uPYwJgknI8D6zoHEciWXcG4Ekv1JNoMZa9+OaWhsElbPdv4CbqvaqEqz/94C3O9GhPJ3C0yHZ8+eGcbDaKYN4PbruK5ZpNEUPfw4ZhB/w08lpJkBiyr7jztdrpskqo8RMWKWrj4+D+ZcLaU50nTI8nHpMQhxJpYuG1SHnuKO3UB7V/GS7c8reScIP8awLdVLag1tUS1lT1oRrc0Cbjs7OFDRz4wyswqoDNwu807P+F9+LFKeR0FEsscCxasWWOZ0HMpLtSoR+6UcOpWMTVemw4kobab8t93EaS7vDa7Tvc5YusT6eMmHfCPrIfCadDV3lwlNsqO2v4Gwb8/1q2IPrnehFdT7F3B+MrsvuN7wqbLX84Z4072iWG0UtwPZHN1MHRERtcmisIhv3ojp3pEmwYVd+Z44lC6PQC/uH7y3QK4udZBhIlRENm7b2FbUY3rWIawaZjYzHQcNIhmndurzqpJYE3NPZlhNKpvEAK1mvQAhXxIhVVrMQdUIXyruTutoTcIdZVSupFahhI5JYp4gCByZYHLtAb6HOEZFoLiXo4slGGqtTLXC7/wI9bkXym7kFz5BSiR6agZTYZGgQLiWj+ZfHp0fgI+mfmSLhBpjS6fMka+135i0ewGbE1xy8B7TpMKx/QY8bWV94aivZkGYsBZAMPI9wu4c3BIoz2asiOR1mfiPvnq2cs4xisc5uXZTHKU29Gkhe0ImaQRgAdzWO9gdkUJQkrfsCBrHilu51DnY/CL2bWTk7a1CN6W6B8OhQKmuDcg/ZDIdWlV0eAlWrauoGEiQ+9BQORuZKghsEGafcs4xbX8J020d521nKl1HTlfn2ZlU4Bc6Aw4NY7Du4ttcJlfI3a1hjd9EtiEL/61oUfOTYiX75HDJfJZ+9IRy89lbfwIdcAxNK7SowwQqnkNxoONipGokgqT4yyTLG65YGZAjdUVKnxs9Kx2O7kQcnLyelhfxukhEr1qJuUPyAsPg87dnrDAtC65iYKS9DsbqsqxNfBTVmQ4dioQiOUgYTB9e1O7a7o2+RMcw59aGswf9fduwuBmuVUyhAcGP7sWDunB5kZwTjXZ/PKuR23VBVmburplpzITiptzhgza+Xv1bfZ0GxOllCiOitfNj6uXfp8hokjCrQFgL5DFTg74FB6x6leSkRoiKsuqKMqjxRRSf7hVwj0u0USDNwCRQLLNgY/Qy94zyPqLnp9gdFQPJULsxQAoBUdwtzaNDy2//G9J3/BCv6M+UfS+VTklN6iejyQXDFOFXV76xZtRpJXV7mH1jr4hD/Ibr9zvpfTFM+IGm1iESdn3RMpVXjAZilKnkSjJJQIS1bYxPnaqljoJb7qzjjIRpqr3Jwoh4nPAAWHU5RF3Xfe8h1E/ykts7fMkFQTCIpmecjBBj/ks6W+2Q206579mH8tEtVK38T2zf3Ih+iIVuxKBhUMUTPGosHnkp+fHxfn6XHLZOJbCgjIIG1sJ87ba/ndEJGk8tzbmowHS1l8BSS4kShpkW8vo9oSGLYoCzp6tr63BUnoNAhbIWpm/LhRT9n2ofveJDl6fiIX/gy1cJGNp2jI4uGrzr6/1jzi3mBpzm7L2fKS0cR+V8gwtZOLzA6Dudfo7Q94Umatw3GgwuM8rlSC/1BeRqyW5ci9/uy9OZzQAm2Ckp7HDFdM1hQF03MIQytaL+ySbcqFTh81GuC99yjP5VWPykfeXs+ClzJ1wTwJ6hXgUvehnmjurA4ueu7BaFZLvjfFNXKtdce56x1QOyMG7iIhEXSguHMgMH+nxLHMz8L0G6kbqDZpdXoKz9ZmMQBxNBngj3WJJeBxkPFaTn66O10FurSHJ5kESjz/a29VUheahMwi+hbiddKsRmegCs9LyAhT09DU0ynJM0Gn2hH2kyxIAG8Qli3mbR6bI3uGDaTLxjCBWEgG47rDAmLI+Uj+VS8wymJfK2CKNbr+OBClLxUwSuCvY68fXzRuwwmH5qPzKYoHzCPwV78Haq+X9QHBHX9+0+B8bt3i/KEwLqEy7amQW8ceyGmMMl2wCKTU/ebSG6BsOTm5b6SwTAbt1OSsiETkHAKW65FdVLgUwgVtuxihADgOhSPb0Sy739AW37z8GptZ+943TX7wFGrMLYiaQO5tpfv5LXDEAW0T7tIauo6s1pK3PzTP8tR9oTIRWfxnpfXDqYgu5/kV56Ot1qyKCia3vwbsW7fcsLOSVt5Ik6Qltg3r7T2azYoFOofXu8p9aQ7O++8Zxf/hXzmt1aWEKNj23XNP4PFzq6zyLRFbNgTytkNOFLN0suCzZagO3hB1EvFk7kUMKhm+URDrhq7ehSfmTK8CioohX4QSuVSB8iFdGLckfmhsS2G2QeEhUz37EAVryVG0i0vZeEDS+c2Bh5Jgt/jswM6+TCqlgbcx3kxgbhT+uLe0FnWX1ZM1+yhR/f4he5Fvi8neRZYBWr+8gEN+4Ot2U620zbR6oBgAwSv7yNbmsVitFTkImMOA8ORPO5isLDTxgi8lRKKCgNYfwiI0P1qxr0mqv8iDe5NuM9kq9pbHzykXdyTRDRLriW0tke0eYFZpdU9MxvAhkA7qemDPH7NOPxqdO61OptAW+GKon7inalXUEzupNlRFCPhkbbrEfg+NdhFoTZKHbBQyOLGteZ4sq8Cxf/Yb4JKjNxF1nsik7XDRnn86Qh8UhtYNcjDYKi3K9uBRIY8/azTnSoNDhKgCn/z9ujhIf17I2lGobqJgDY0mV7UbQtsajQZtsHxJnLIW2PTXhtpViQDMGYO0SsX5inweUusUY6YQxyiQ1/Z/TLt7n+lX19DEH5feIQz1pTYvb7Ws05EFz09nUTrBCEfQz5wNjCtVVXApEB+Ot8zb3LdXCQWQturHzz+Yc0P+taypi7jj7eY/+D8fh6VOUHHHONGBGAIy9VRtysaJ+ROG3Gv+Fa/TqBMEwWfqd68iM2w0mGVxhnWUI2vq8dCqLI/MlHFH0APNR4T6ZJ2HgoFM4oujI25oYYr4j4w8fneRzTAfm89qCuiuy8wSihqPL7O8mmdQTh3OvFz80cscLHk0gyi5RiNwhpea12kEuM9FewQ36RXm9VoieVbLa8KBM3xsuKNUjWvZZ9UARV9XrG4Q/U8jDJNRzhS1lQzojVTacnTGl0tuhr5LW4FI4qD2ssZ64fOARhhpc8NQhjwHmKuPJ0I0cwwVZoonkiGCWq73lX/7IWdJP9oO9QHNFy3ipb64rBTGg4jrnn75dsX8IpJyo5IoRb8SB4da92Rzel+mP5FoTP3qlZ0R7Q90WlWPku0rAmzET8l4IgYU/qat2bG458yzqkU8VUKz5ae63dIKKfqUbiezw2YOe5S8w9+ZYt7wkknMojkrFz6dq6CEsMFdL5HHsm1zwf70yLsp0sDPxrycOv03DvFw4xLr0slW4epfAszhQ/1YChGf4u/hauDyUzrYSsmf7pUU4hOG82N+zZApHWPAqNrS9XoDN7ruFF3yLThR/LHG/lSQNdfJl+MoHCJ+hAqagStfEOHRp3AKO99CHBzgYX0mcfEQ3dWoQLKy5icQmIdCM8/Xw0O1nBO7Jzd2q+/zi5XWufj3ljxAwK2b6x5Xpew81hENwIBuf2k8rMVlsrago6hSTvOs+Dwr2Bft2W4XA1SfGLT+HydiZ86znOYQfAKE4G5mCW1z9SttyLvavqr7imidlvsj8Y0mvEUoNLetNVXkIhVb2RpkgGhH1KEBQNAIEW5QtlQ3HUsYzQNHQeIuBk9eaxBc/N6JDlKi+2OYycSZ2ouu3A1AltOl2+Kgm97mdtJoF7cv/pGUTYjEu+vnfin5wAfKj0B+fpBDZ4xtsZ6OpjUs5QcAnsRFzkJue6QUrHIwW21Eqp2+j++XI/ebUYZPNJcT+fQcqeTL3Ah4VvZP60rzD9Qi6wRg9FgtOYiaAQOuNZ26aMwjgs69Q4WKhEjs2L71W4eWRFDyjYKX175RNdPBkYUQJm1CZk9nr2x5D/5/SmidgcHuFcSLlho6CfOsDpbehVU8nUohnP5ML4h6eGGNExzAB31doJZt61kdywGHApj0wRXn4hoxunOmQ9oaSRKWDvYxJK9T31omcnvYGZgzrP7Ddl6VVLKvLZHDmS7254MivrYZnnnMHac4RVnXwiKsW9WZGy1ElEAunry5i5GoMF8YAQTSgcs0/Xm3ohYC91s/wvcybWhYEX3HaTrWpOVsYez0yRxjDwD7WEBr46QMgjdI0c25jUlIywwBEd5iXR4fqkXlhIvsZ+TJxSzpCTH//2QSkzQ6Sh38+kXpjoAAZ3h0REY2Nyg1/dF/77qymfP/e4Ihx4C0RU8z115JNLBh0SnFJpcjYfYTeN62S9gn3w8U43nNxwp8NX+BF6ju+Bmiscji6KbtXUL1SxZbnzawh8PJlDL8kGER5A5u1DI4FravRXozaQaIdvZReMgabpXy4fJ/GRr1MlbafKpWa/qdcpKS4a1sKOlwAdgjuCoZFu+rSQzZtrj3RY4dj1VpEewuy+/yCM8TJU114MMf4llABbNk2esYQjw6Lf/Gj+eHskbuNAbWTcSvSvorpQz5vUq1H7XW5cqlhNyS+x0f4w+WYwM3r/qnlTbNGde9iFLLHNv4/As=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx222d9ba3-6821-35a5-5c69-b16ccfeb6ef8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx222d9ba3-6821-35a5-5c69-b16ccfeb6ef8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>U4FU0Ujq7V3/qY24riLxQHGBW24=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bMvOrw4hPQqzmmZzq0ZoPIr1LheUyRHg7P5onahGjtCKA53GINVQK/Y+dM+ERgucBVwrC/O3hhICtlskF2x0+d6l/sTXYUSwFQj6jchJr5kc0AIGznm2NpJ3WwWzSttN/iGmEd553EYqo7QNwtLdF2o/wtaRLj0MAJrDmkgUzwc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ejWifq+Imb2Y6VAiFZuEcE+PNejsyRfH7+1bC6ypE6yP0G220gjfb3bUOdnX3nipYtWgbN3siw4P0c6oULen4lxVh8lZx5iVjYamJ3HpRC8tQ/BGN4ByhIrylxlxFdFU8v5X0Pl2FKUvWkU1nGG5QhYFT4fLfPiddOis+CzNc+o=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>gnwTef6xDLlRe0VQDJzj3i8CIslxpUfraCwe8JvNUZsf69TqOjKwGco4IOpxRA92mVibz01HBEb8E3jvyYXz6D3qAV2124w6UFhGdq33nEZlC3ra77SuPf2KvkWLiNAKiHGPuDcF8oJkY/TNzT8pjRkfQLJ6DMFSndkOooNiUi2UHFZTUomAsfiR1toepTOxQZB6Vm3MzdD99+B4nPWkRzfnsORnX3AjSIrXVkBtsVKWcSSYV39tW1h6ijGcRHwIOhXlKUecwEvlr8auGElPmeG73hqX/vlucYnGzumfuLoJDQ+GXL8HaWxiQ5rKIO4qC45DKRzRjWEnOmQiQuQxbj0ffquHtyVr7p6hSBh+hkMJ6gwLUam1TZSL1CnpHE++mNVFmMbUaYl20YmRtyiWvMx7AVWZqVhToRMg67cy4Id1A3nnvuOvW/n91j0NUzeQHwhzIoR3KsLPf/tNya4T+TDtT98Qp55xCpnQCRYLT9T3Qi7jrWvaAKre4LnKX6O2SIX3Rhgt8fNY4L25a4BySfreLmVrTfW80JjKRXO0W7bKdzXBNVxSluGiSdrzPPdEK0L0/j6zNDbSnKe+ha3C2euR5mvf2sfLk5OIiH/36mnESwtXm6F4nj7hzwSnknjPDr49IC9BCEoFMGINO8r/CGfvHm2zyIoK+A5mLphxJD/k7vxHtMq4aFeQqHGaPXe09fBNFFi2LrHVZQ+AJ9ZoJm9Cw9h3onur86nKOmSL7rvx72c7U3B9JQcGXus7ZjNGu38/9aKg2V5DU/WNXPiHIZqxPldCCIOr9q9Oe8I/LxMpmbfDdvD1enTUXdjA8+IXSu+HeP+05b67vq/v8JkbFSrfmsrUxlpVofXD3EqseIxRNqCW8hz7DtSvVhkkQDXq9I6W83s4rRGM8QxpzeFV4pwrlKcM4zQ5IPTBx4FWG5unE2W8L+zfc5E54kPQLX1tgFIzaKLcMRec3B6YQy87nMwIYJF3XsaHdBbvIrkMRR20odhytb5FQUpUKC0DC22Wv+Xd3sFzLee13cySeb3x0zQJPmCEERqlsXDljSJbcQqQC9GV7qhMzb/ZUa/T5Z72lkipN8TGG8Fz1QbdBGlk/0M2zBzQ78ZDs/P9DwrYEKIZbkOvVAqvcC5Arxs8bY5ip7qbxWoxshKe94lwnzzCjY7NXhFQ/cZ5UUr/AgxVFGb5LY3BJRxMdXImw0zKrZEH9FcYkKLaHUIfQt8uesyaL/p2tbFaAmfMWU3lCgOe5M5JjSIK5niLWd4fU8qcgus4qKEZHeDslwD/6Acjgti+OA53sk79C3q9n6YUb+Fzunrp3bm3d9jIqOY2LndZdwQ7dAcvrNDEtm1m1EBFHRCs948cuFUm1NHyY21E4p9Ml6MA9Rp0J4Bo8ei+UGdjGmuE+CTgFsDYTfGlx/ipyUsZi8m3yoZUDUdGgayYa/rhd8QeLUvpT2DLBAUK744LXUHfSafIhO4a8J+SF6T0lB/rcdDdSXAYN3ulZkR4uAW4fmBOdfKP8pqYjAtHwd7vs0dZ+7NBgIUqGgXm/ng6+NKWS5Tskb2JzQrHlPn9117Suyn5q9CyPVAfFpt30mZQnND+RJGsidOJTQj5KFYPWfKI9rC3LU3BWhCVvLBg3EqpgzHo5KFX7h6ggmRnsMaKo+Q3CD/jSTBcYQjZINU6gvN3u76QJ9sfuwFcVMkfF0cDcfycd5TSy9OQzEShHGEhNWYjN09Olp7IzesjrC2AwlqBMbGOg68MiMQwcVKtm3fDNZXETO4z3kBhFN0/upvuC71cnrENpffUoKDzuj9vyTEhG/wPGG4B6FOFn9b+lsCmdmuEUiMpb4/tf3l1cNk3Sdo945L28qWpSDc1iLTAXgfYEeJZY8/ge/JVyNkx/dr4V3hRkgbSIZv+LMkDLlD+0T69qSsGlBpk3JMKS+53o6WyZXU6Noorgxz1RuCvYOp/fwjkptLKIIXDrwXs010nHMJjIM3FCJ9OBKR8KOuXvPHi+YKgAiskUUfVzZ0UDd5GoZ3CKN9K8Xb02NGcR3Wzoh2yVvhNayGteDztzv9nyAyzs25ddMycX92ra1yABk9lhAePdr7j1R/9T6VbJmCiTgP929vDr8KFOuGKMhnT8nOfaeuplVrFIwaOZCdV5XImykDxe12zLKGlIBePdN5Fn0cH6ucQM6Aeozkl0zEVJZssH1hhSavi+bNny2gqZVBXTLAmBIIy2OHt6fThd8zUydjhWU/Eg2RmUPr/LoZsiO5NeGx/UnYVTnUPKF/Idv98YNGRZK91uVCAsT+oERzH9kK2muEkqOSpkAVZafzxdSHfzAP5jQY94IyP2wmuKRKRsdFrGbV5oxV3/DcHCkh91Xef+G0CEN+ZTCdyvGBI5kMVlC00wZ3XaKUntgfXZWr7oFJE+z/eOvEfHbsWt7Ms6b9XIxVKXB43ub+PddjxMw/m6pr/AuMoK98guZOYkXbJ11u/M59UgJXAMbE8+orozhNXvpuqprcyNo2zJvWpX4QTNdBXUWO29Fq70nSvFL6Z27KQ1nbp4ZzADq7Tjl40PqHEmEGiZMfC+rpkWpZUu4C6dvTjdd9Wn/p10LTMeJbc4axrnaYmzP5/6z12AfyZZHB9jqA9/rEvBMJh4rWpy/F5r8DE4QalGuy5h5XaIiWYb+tSxLNcvkdClgcpiMO5hH1B9eohM8iSvxTgydpNsLaQg9AGck95Jc3h0ngBaMSVS39DDTLZsUDMA6yVye9/xM85SkfG32yy+Cfu6feZKENBMi8MPkD8JfCcU+woctJW1o16pjHhNhy11/ty64E5tcleu4wG4F6RkkIwI40EOSHiMslweE7J3nrkTbk2o29S9pZ6F8WzGp9j8XImf9EezX85Z+L/cGRMeVw5RrWmBc1310++xzfNWAd7jj+f/v7oS9w=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx74903392-bb3e-c715-3446-dd588a521356" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx74903392-bb3e-c715-3446-dd588a521356"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+zj+vfPAaGsWNXLk0yAl+dQ94so=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jdTC1CL5rtS2BAO3a6h27lwQyioBfn7ZfBlcCu9p/FVejR37/FmifJlmykrWAd9aWdLQc03gFvS94sdHWLGT5OuSHa/PtxsUg9Cb8sfWWIuwisIZJ5UvmWB0CYSk5rtHf2O4iF8xMaX4zDgqAnJl1nf8koCkTIZZwjx1NBo6epg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>CLL6gzTT7lLhm7w45ndi4TrgCkcJTdQ4lknoIx3lBGDbWNJ9Ux+pqSLckC4RohZZ2pBHAvwWToO6omHuLEI6Hf8kgdU+oNdN850IPdmhZKX6O9lQhwLP1n8KqJcXrYeUHloekjZFYu8NnimKQ4Ttet89tseAnCEAqTxI/Ftb82g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>