Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx2259e74c-b33e-1d10-77c1-c29138fe4214" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2259e74c-b33e-1d10-77c1-c29138fe4214"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yw+v5q78wjALQXNvY1VvHkJo+As=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vqVXilwqgyk5ZrFEIUlJGus5ljacvwjmnbUeF4erv6Yi4fgq+9wJfaqqrNKETJghfMBBE76uH5D9OUGDg76Ewmmx3cTp59Jfs5ahBl5O1j3P0tmKvU37aQrALOQWpR+wejHvBCPjxS7V70b++pfhS6eL3/9pjR60dywdIFeY7z8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxac913d01-b8a5-7224-a121-86524892f3a0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxac913d01-b8a5-7224-a121-86524892f3a0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>He+vtVmPspeHH863/IXn/VKiFi8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>takV3fozEcABAPyLIDLgCtz/ckGlvPe8mRToDUYYoi23X1KB4Bmf9/AA1K1Kdg+Ikk5Cy07nP/CY549s2AquhUwEE27KuuyyPaVz07HNc36ZGzxijndK0ZUnu9FD3ChE4oExaWWy9z891S4Rr9L8jcgubGJgaWZUXyivDGfZB5E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx02f79312-d01c-db7b-4f4f-7b949cdda67a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx02f79312-d01c-db7b-4f4f-7b949cdda67a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UwYg9LEG4TNUtPJBlYjinQzj4Fg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WvFDY86zNZ3Ud2ZaxlZoot5EBX+95Wy3dEHV2Bw1g/qSZvfMzJqaFfQYOb4YWueIGuxuoYGAi3nLuf7ZVup3MDVqR3FuYgKfdGYP02s0Tz+nhnUDU8qBq52WegkwpggFDMGSC9mch5hscxI64Y+tTwhGNlRiexs1dK6lbhAip14=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa5cae82d-3e77-25ed-e7fc-16162b9a3b50" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa5cae82d-3e77-25ed-e7fc-16162b9a3b50"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>A31KZeXEJr0JS/EIceE0lGcbrME=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Rvz8GnGcwezOdxnf6czqPJtbZu5iwRWKRggf4nYpID4uP+j1d3e7IiVX2Xejy2mxoFdouuYOOd5GRRWyP5TT+RW6G/ieeDsfz6gDGh9DLLwMeVQM7tFpLHMtc4vVmTR7x0Uey5JIk4JdIP2AW+Hs7FSvpKqwI0QkPHM/k877d+g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>KOoxVq2O27bKj8k0V0KcaefKBAVwTkooTf/8EBgT+S+X3gbi0MsCevUgPQkALiLVxux3mBs1Q6/n8Q7QwQy3KLX8gUvnESWpMyAFev6ltJdwOfXDHXy/9yDsWQ38P7Jrkmi/XK70IqyYENyzURHR1erLnNLB/MAQFbpcJRwc4OY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>lQMlFdPbu/BUIjQrbaeL4JijCwmWdAJTXF1xDq6iLR1aurxPPwe5cD2lEJ6DvYmQN8+PugUlsLq9MrPKToaxL2wVtb6HIQL7PTaQkHbikmlV2Ie3+Taoev8AYI1/v+YVA+k1VMzU/iBvBj6AEPzcc2ddDhGe8A4nkUFjNPXT44g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx68789985-63c9-2d8d-384e-ebbfac988547" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx68789985-63c9-2d8d-384e-ebbfac988547"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KQ6LV66hmy59ecN67ItK8W40Enc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ilETLjPOoJdvtStpRX1kEYYH3RMPc/oTE7iMB2E0wzb8x2CUJuenKHYTvWYJ+iKkjSWNtm+N+Ak5tcjN1nh703rZbRfKOTbc9q2bpAMX/3q6bNmtVmJ6ZWVc1CVSezUDY3FuM6+RYiR0bcShYcQqrhltaHnu9SDtFft3C8t1CeQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>KOoxVq2O27bKj8k0V0KcaefKBAVwTkooTf/8EBgT+S+X3gbi0MsCevUgPQkALiLVxux3mBs1Q6/n8Q7QwQy3KLX8gUvnESWpMyAFev6ltJdwOfXDHXy/9yDsWQ38P7Jrkmi/XK70IqyYENyzURHR1erLnNLB/MAQFbpcJRwc4OY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9925e8f4-0b18-b6aa-390d-92a22479ecfc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9925e8f4-0b18-b6aa-390d-92a22479ecfc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LnWhqYhncGi99PONsu9jN5kn6hM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ji9lYiFYwxKfsa5zKjooT/Msg+GTKSXKrwIWtkKVQcsKQaE8gHJtxBlww2ttP0fo5SxYW3xM2VQf9L+CH+z/bXlGKBoaP5ezhi3iG7C+FJp1+F/iNqhA3Va9TSNbEj8oBXmiijDzLWTmcEhFWfbrQl15RUB2wVjSoRISmeZmbHY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>lQMlFdPbu/BUIjQrbaeL4JijCwmWdAJTXF1xDq6iLR1aurxPPwe5cD2lEJ6DvYmQN8+PugUlsLq9MrPKToaxL2wVtb6HIQL7PTaQkHbikmlV2Ie3+Taoev8AYI1/v+YVA+k1VMzU/iBvBj6AEPzcc2ddDhGe8A4nkUFjNPXT44g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>