Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe4fbdfd3-1576-fb1d-9b76-df8f33b69df9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe4fbdfd3-1576-fb1d-9b76-df8f33b69df9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>l3zrjnkoNofnIKksrosNXZHRjkg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MUkp6TihaWJDaA0tONhN3W6vADtaMXjHmX8UFE3cLorxCyqBcAWpetHvgUrXWtf5N3BT62mfz/zXn9exVR7eA3EyDtlOQvWwci2Ut4TPx0o+eA9bJR8OWkjKYb828xaHRDflTzjeu0aHCMfiSxtmTKfD6eu9NM2cxTwbcphEe4I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx87fbc041-317a-ab29-db45-bd0c1e77d932" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx87fbc041-317a-ab29-db45-bd0c1e77d932"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dT935St8ibXbOdDNj4EOXbkTU3I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cIzjXnRFLvlbdEDWDiLBS4TfGVoSclHAWvw0ntCt2Ip/vWINr9K2ahhUfg3kWgIkYICCkfZ+07Zc8wDurfIoY6bOvFrhtI1DT0RtH4pPuaJmus0zmNzpncpgNCqdI9TNpni3dppefRbSToV2vDVyW4Tx3fZbwfzjzuNCG0UVWT4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx21f25e3e-6a93-1a69-8ca1-fc25a79b51ae" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx21f25e3e-6a93-1a69-8ca1-fc25a79b51ae"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YIFpzhNKkufJBPPaTQ7Y7wz6l2k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FHgialcRsjwBJ56mFjfLZZtMtGdvK48u+ivXgGnKmWdrSiWVwAZ4676nRXcEVlS1wsDUD3f87JOQ3TYqA1Tqo6yN0Roogi2P8o+UkbOI6mecRjVsi1yY69X58J6DXLFb7skDnEPFX6mZNPxnVu0wMzkC7nCXC00St1D+VCf5mbo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx54fe374c-4d60-7316-1b92-f2251a90dd93" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx54fe374c-4d60-7316-1b92-f2251a90dd93"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>rKgCIBdzZEcU6NG1tsRB8TboRYw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>p2A9ZDHM1BD/7LDT7ohxMk1dT9Le/NoygUOjZ5HGk6JOJjTYNVn3qYbPrdF5bJ9VPbkuQHxBjwJH3R2Nx2H/MG5eK3fG5ratUDk88ci/4RZsDaYB9jM3vVJJaToXQ6hzoaDOZlkxu1Ho+KuZveepyjmXcn0zvJk6qDj7hMJyGyA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>eMytgXKD4XlueM0wBaqy3qZpj7nxUFv4HczvlbZpQQMpOw76tRffcJxPf4dbnFigd7wSMYNcMcLti5QX+biTle1H69Q5oo9JM4DqhNBX2SfuOM8Y4/0+v7RX7NRIMMlIUrqOPKqaZAUcFWngAqA5CPH5h5q1SnYEEXMYvHFm17A=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>zZrCtXyeqsHl3MM8AnM7jclcivAoEv5/msi/qjcjxDRDWnemDNvmN2Hghoqn4vcUHNtoDrzVfA0xVscAi9gWxILIrfbtdNzZbeY0fzZ+FBrYOia4c+gWkyqILTZGvNdyDCsi7w624wiYbVeEKreDccQ0UEFzi6ah3M+PhjkNe3o=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>4xna8vM1u2l7fyz4q3xaq8oakVRqEB1zwc+OL69QHZA7ALJL2hF0pW+dma6MaQRQG9vtwJXIH7Yut2xIACFEXFgtuobXGrRB8+Zn38EfzPhHHzWocxIrLNcmLDDh0V87IlXVq2P+/sl2ZCkjapzm214xhBnbwR5y1mTDjjFoXs57TloehGQm4U4F69hgIluJKwmdAXY6WphryxHjz/g9hMiFU30nIFB5WekN+0ZCA+EEsG2NJY+6UrInO2MP7iprKPmpmqPoNczdoUJMZdabQ6cHoymQYzKYhLMniAKn4Wp05m75MFyNFdf4U8oHLOaEhhprIy633uR8nquHUl7jF16amdGo9VimVOhipfJK6K8F7o2EJmalAurPQ0/4ei6DoIbeFlsWRhb8YMKYAJ3bvFVXPAPnUHtMDnsXyXC3z4zaubbw4Zejd25bqOsVHwPre/bjd28TEcfL5PtuWCJ0ZZQRlQyMvEjrqStmO086pYYrO4o6yWXV1RyRA2R7xZcJAtrJyO5cTzf1robFn9+ek34NBIS8CLnb1kvADcE6/bwNtB5UP0pT1+fjPtTKQAjGd7iDFqZvWO/KFe6AsyQlrEdfu7XGUONSxOUY2vtGVpNzye1+A5ajU7xpQi07UcOi3y0GP2PzTlk3Gdi9ShsPgO6bJPyGSUa3Fx+mGIbU+kWfSHMdJ9ZHFnyKwYiBfeAUdj4uHc4o6o7O/xaI9Q55aw06cO4OwRtSMDd95RV7+h3UqyN9Q52aHmsjRAYhShU73laA3aXHuXteP7abSkhoh/yAl8Q6f/efrCw1fVAPBzx07wXvnXjJOe1TM1CyIwGGTqM6mDqYoIbFsAAfBCuHn/Jw22PN90T0wHqmD8l8+cZP+h6zWgWlIclEJbBZnHILAd2WFeXC/T0M3jX8enH2FravzoWHopmWyMD1XpzFzwPRuhV5zfG/IP4Xl7JjZGN9rMeMr3RdZECDIn5HKXFpzyAtz1OivdsDiMu+rftwMWgzO8ywV6Qke514cPpRYctseeif427RrNCzPdu45n2QRDFeih69dRdJukBI628LK+KAFd88+jnCp6m9WJ2et+zgpCMVB/8HEaZEsIgTMYefsfggW5bPja6LL2exL4gsdRQvu0hepyi9ZX40ayEiijcQdtDHh9eEC8nEVzfK2DfksKn63CyM0vnaA+jHGgl8fLU8aqlIm6DSbvSjLQrKFA1Znmj9IOyzHALUFIHGNrLM0fry+5ahBYlSs+erevSPYHG0s9o/Zo3mcLjj8d/6vNAU/m2OyO1V/V0mtLVoREpM+3FjXyYAmMBPljtrXZ9TRb69s5zDsT0+eQ/eOdg9GNfQb5mbL4ObAqK8kaN1winTxgwr+VMf9zAS2UtpgnoXYnfG52JtuJ2Hn3dN5KejglMESxkUiAKlaFvtCBD/OwWYh4am/JnBqYlofL0xBgrSPH6iMAOk27Yleq4osnsJPuOSdJVCuaJWmBxjjKId6oVlpsT+8WvyKmYAxWmdIh4BDIK38Tvv/kvnYD7S2xW/3ZVJ1qSPk1q/Ol+jv2E7cv/vA2qxBHXAj1GqGEDmWFyQ/ZBEuCqBBgyla9svqXwPGNSGnGcsK9IuFe5FnTIWc08JCq2cedKVpAClryc48bw6CPMzEZtmZqpWsPmwSNbOKimrKPRohCVDY8CY8JEAdA8n6D4v9rH9WytiuPOR6q9rWFTO+DfAb4lggH4XVw5To7DhKfFukP3ztyut7wASfi3ued9PbZFrP8TYhm3e17KHi0+ghvBWfGvbmxnyTnEyHFu2ylZZy2Ur62oxjO096LmrxmCilE0IFsA1ZUg7MthdZK+JM9jFcWF9GanZvUB4iTc+ImpE1/62ytoFmTx4h1VWVFxtrrhS8PKTkfBUZ8KzTO8qBa8BPFBO2bKrdwRanZbcVb/0ArhAwf1zrK0V2X6xS67qtidi0KhyPVBOyXmDW/+hdOHuKppQSchVMB+bF5lakXO3menliVU7UABXxObn0TPQOTvgDCcScoMIC+nVYnFIleLXTaO6GtmpL6Vxb1CaaHf+FCURwjqf91NN56nFMHYgOMHqjjLQYnoe3Silvm7UDTL4/m+lbkWlPlrbYxfa5I2I9i1JyEugZpvC6ppmaUn558PyIusxdF20dNSnUyZJLptQmNIF8GFCOXETHKmonaxPIZz7bC5o4XR+NIbUeUulo4xwV3p+nWyfTyT4/eVEpCR4D9A4tAZYk9LeOwpZD+wG0f05Xw5sZPL92OS3qVp2+vXFO2g7CY3n+Qz8b4O62rW+JUMfs2FZnGz+M4pj536KU7WgfcObu8fD0J++N04G1NNe9em0IY7ZQoucmJ9o8g1dv1ll+rVYZmUJKq2uBZFRmG+l6g56Svk9M7I1q6mo42+wv9AvoIldctZHO1FXrIqbHy+z7zyB9RZowG5hAE2O1eT9Y5G5nAfGE4PAXVpC5JN1kFg3y6LjZpFweVNAgUOffYB7oYq+Dirlx3b/u3acX1pDAL4RvyYKaYnpjwx/mdGmnuz/IKhYGRqUYM00ndRjxDFnULf5vqHBozysqQG+yuTyZwoEuohumIHwk6VqY+RVrvCr4zqWsRnaLW8dc3wdmgVlvHt/le3eMaR8Drv7ZMUxtO5yT6BY+fJOWwPtyywziQpzQ/orjJ0e87MbZ9JvOfg8V4QP63NL58UEvoZvz3Zw7lpPbanKV9NTkP5Mxy2UY/uNv9vlgLukC59hqU15qODFhDpNGPQIbqdEXNVa3Ywgmv+fd4PZiioTh8T1Z3oULGljXhffyY+XMmFzrL15bxQLrXa2tdqiFEl2m+qp3BEezYLd3vV1reByD0Fc2+ANgvwl96VHA2+K8uOuTZHj4V9tkf3K2PIl/T6hm0lF+4K3fJH77R/m3mLQQgeH0PPRyV8ag5WqWSyQi1kuS2AVicK1VTNHAbn/OUkOVpLBWhMSKk9OJvAtjJ5+3N34AqWD2B/Ls68JW4mlJzR5lvT4EVH7IvXn4qoRoFq7f1F94fn5hbzdkSAvntR4Nsozmq4BqwawY9O4R3XFm6jLhaN4VinLt1xXxF6zUBiRrAO91xcVy1uY9TKNwYUFutzYZIV+c9JJOfgzxj2lmj5lIpehhY37T8jqH+nxzolgLXPrN9P0+i6ViTqrjRxQqGrvQPAcqsYObXoO9uwr6QxdSN0m2w4QvGFf9qlGXV98O1wXjBMXNJfLaW37P6WUH3sLpxZBE9L1k2F6oY8JvT1eGQZjvQooSS/oezCMji2fU4OXx/1UATkwF+WqsdWoEAPzqnbM1SnsWN0Qzoqu/xxcrPnNFmiGGmVT4U1EcNH18Ct+D79wC23I5Dw4dQLSSPneECfaTZ8XUKisIF0nUpF6m1rfsmz+Rs+uD8BN7YhZregbOheYh10QjR5AS2KGldErtLjk4bXUADlf56KN4NNAiMZzuVyKJdHl7ai8MRKm0lnno0Gq4S0Km9LTkNFUU3M1jiBZi7kynekQbIJ9oRRv35Mz50y3St1SgfFQJwIgsFMTMOXh//91oEMM507dlzdTOAJsD7RkvE83k3oVjH71iD97Qpy96QYCnNdboTh+AXo9ZJ2xpybzx5Diuk9zBXohDDmPPGwKIs/uAlBXiX5z+7GC7C7ppbioVkmMq+d+wz8bvK3OyIMRBn/Kn9IRzThA1DsHAtxuHjpZdp+iY93wX2d+Fpqs7Poi8HlV2rkUQo5ay01/B3fufQO0EtrpSr0MoGTRcSiljXxlUaeytaZ7wvJB/J594hhL511laxm2+j1OAQourzv0DtTNV6PezXuoME1cBaVw7G9+6vnpc3g8mdPPCojSlVFrvhG0xjMl89Kg3JKmXwz/drhAlF3irL8W8KhZN6V+n0iz5ITvEK9fLhSCQltwGiPJbwnlokuT776Z0oB+oR/2oPRGNUT0BuHyFYyDBYL7RcranKe06z7WoGjAcNaINQdKwkLps5Q98oM6Xv9QVfmok52N3vHdvPHAIt+rE2Y+xeJaRfR4zSEny4evL28nfoz23cDbALDAYUlmRR8ajP26/d7W/Y4MI+NcEblp3KDLh351oVupdSqutHptKNr9NwNPRpzGop61kyjw2nsWSCm12llH6MNJdt22J+zOao8mxw7ktBdDTfzHWpNP2Fvn/W0rQo9fc+InJD9WjJaWqm3KcBIwXIun0plAfB8GJ6g/4oO2itOe9uQ2UiLEJ+5npVnBP1iGAGtmok9qkXjh8uN7Q78vIILhSU4I8/cMqY92gLRMztbfRSlLI30EOTQ7PQfmFrbtHSSwwC7q9V+jInFI3E6PfD+3t1++TS22bUFA9piCT03zfYHBfwLdTyTMLGp4kE2hKmdRD8eetm7T/Mwx49OsLJ5RaikXaJaM2qJ7Yh9vdBvgoD3DMxvKPdgbpvzjPaAb95BbsQ5AVxhumTyPyVCypkBUGg1OMPeM9fPexd9dbu0IUQ64ufDoOcfQ1jE82yzJ2NaKZ74iGPRYQVSyBjZRyb5hnruOgFQlq7eDohldfTa6hzBDXpvxnkpx1dQW5UP7GJJsfJmA6oIdEtmMhuBzay7onhzC5KYicg4jmXEF//E1YIciFNFdUmZhgqyBqHzavzrFkpHxEDRZ464iWwjd9eIoEBNxltuCWulVYS3Q8R6ffQwb89iayuV8YNK3MAGcGSfILLlOUCx8RS9HqrM8f6Zljn4mse9Wl0UjciXFbF9Al1nj3E1O3802w+LkqS+a5bKZVwnTtwpsjkgdzeJbQG33XPOuGE9K8f5pjs1yGygn+jBId6fskAhmI9qnf+PEkDJy3YAYOjEl4sIP31+YGOCCqpoyHC+sOn2s7N8iW5vZoYEBWS1eBKM/BZakOwbY0oDkAL9nTeggcPX4KuGL8zh/Jvo5nL4iVXppBd5NPnemmy0Jz0yQE+x9/qi3GXT5NgLiglQG+Ok5qUq9emW7LUAYQ0Vlj62C8SPKXWHPXV3BpHGQuowkOCCpQQ1J0dPNnKWHX5BWHIwuQm1kQF7X0aZC/GCvnrKoq3zzlVhJ4sFJgsvEG6R3P2XeLJUKKL9YXY0TH8JJKv6ZzOhKjdbo1+7gndQP/BDPZTVQmFwOeVoao6eARPjc6zPCRsfJkAiJtpZ/AQmGwoNs8Lxl1TGTwn9YDz2S+Ki5Tr4ERMyA46YYMrh/wZGrMQLQDMqK7XA/9gi5sTQ7w83MyIgj/4YkFWbgDjNUIbySduJnN48ViMUUoAzhiJIHWK4KDHkIYIMjKJp6sYDKzzgplJK74FUd0zWoGrEDETJaOSjqawW9CL7AgNh4xi8mQRS2QnFCSMfNl9S3KkhZPOCRrEGvP/ACuXhwIfQAG1iG8zbciawCtItzR/m16a8lkgBFYuyWLZN6BnQ5hpnwR5BEYkPFrB+TIJIjuhp9G9JJJuxn33Du5K6xVty5exNKT6OY1sliv1iGFlwwl6iHEuzCo421B2wj2YzOKE39clKb3oIzL3W4U+5Hbwk=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxecd80498-b25b-858f-186d-78d6022243a8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxecd80498-b25b-858f-186d-78d6022243a8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6vLh8XViIIcuOnO2vr2DjMXte3w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RmyadJMN8qE/yPc9KKKdoaVKHwwG141ZvU9qkxrNpuoudTr1uLuVf+SBmUNwWwA4tg+ykWjC5/S/HMRZ/YQLN5owaDb8oROzwsrPilkaHt44tcErDG5H3UJ/mvk3kPpoQ4GzHMkdYfp5IqDddh7VlfrEIZzVf77dd0Lmn0FvIg4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>eMytgXKD4XlueM0wBaqy3qZpj7nxUFv4HczvlbZpQQMpOw76tRffcJxPf4dbnFigd7wSMYNcMcLti5QX+biTle1H69Q5oo9JM4DqhNBX2SfuOM8Y4/0+v7RX7NRIMMlIUrqOPKqaZAUcFWngAqA5CPH5h5q1SnYEEXMYvHFm17A=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx26b83e58-6900-54c6-4e0c-eece024ca05b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx26b83e58-6900-54c6-4e0c-eece024ca05b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>F62IGnlE766BQT8a0fEUxQN16lQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>f2CegHDi2k2xqUyTNU9zOSqGIACzUfEqzwSKOHCn+icKi/5FHUheostwXdGUTVrcA1sX8HwHrcsk6dpa0EQJhp8uEnGcPQQhi3F/DFieZgHmISwaifN5hFtz+JUvX+vkqLZFmv1MrTJp8AImyPnaDagzTd5m62kFcHj6wMg7RsU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>zZrCtXyeqsHl3MM8AnM7jclcivAoEv5/msi/qjcjxDRDWnemDNvmN2Hghoqn4vcUHNtoDrzVfA0xVscAi9gWxILIrfbtdNzZbeY0fzZ+FBrYOia4c+gWkyqILTZGvNdyDCsi7w624wiYbVeEKreDccQ0UEFzi6ah3M+PhjkNe3o=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>