Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx87fc6f52-05a8-e5ca-cfe7-6f99cea9d435" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx87fc6f52-05a8-e5ca-cfe7-6f99cea9d435"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ck7LTxZCGJVbsRIM0bnsPb/KDX0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JI41Ae1wDiyvzWt/TbNw4RdikfwFAQ21Z1yrWHLXlGM5g7YpqZwzHYesAEXam50Ctq+Z/NmkYvId32NSUl8qg1DsKYzDvMpD4rvvYhLruf6gbMNXeSPvFtmrSte/tkm4dOk0r7n3/Ze8CVh9w9N3G3epFrc3J0Y87sCuL3rHHvQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8ce776d1-c62f-1b65-8c31-590140954887" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8ce776d1-c62f-1b65-8c31-590140954887"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PS3gcyvoLZJ/fIpd3gcuiQqO+Ms=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ZLQIp8bIZl1Nm0wIT6OeTCr0JWiB88zELaGIQpZJIHTM1jRBmsx/QIFCrlBhWEz7N8Q2eQ1BtmR083tKsdXPKJ3Iqx4KD9ZPWrwyWKIt6PuwyIF5QkX9CZ9GAZHKtIFTyE18AYZswExPWbxJasUWW/Dd2/akPE8lNlfCRjPMaVw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5c1debba-3531-57f7-d646-676d92ac01c9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5c1debba-3531-57f7-d646-676d92ac01c9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5wsfw4842uTfJmeGKvD0kIgcHs4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mtdY+Y6tgXTSHT3Z0Y8G2aRzFuilryt6FkYQu0c1FW4ZDW7jRu2wQEC8GU2l7sTycR4Mom3b10xNPSIvDn8yLAJ3zSCIsSvtrLTY3PzvK1WeBYc1guh4h+X/rX/AtTeYLoHrZqkSOrKTp2ch/dU7BzgDkNs0UfDbtlgSnX6D0IE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxb064afcb-ab45-9669-1160-759e6cde2914" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb064afcb-ab45-9669-1160-759e6cde2914"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8JUHZLnvfiTa2oeUD8DRypyDBQ8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MEjBqB6fMAw83uIXWcr/L9ROo4Xgz/iajZgQ/83USryjyGL5uny596J4Ijb0DKaV0rqFaQqMalgjxGO94K8InMaaZdxedqU597/z+lM2O8A+rVVSgDyO6jeK/KxkRqoL4zKtqPxnhlfIMy9yekpv+Bpc/Dp5XifET4E7yjPC5FI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>cBUXHgKiXsxLI9E7FM7OxwaV6qSLndTyYF8zgXVWCySAS61FR6F/D7/C8iTVrvK/LZXdw9MKBkCsZ2Hxx5i9JiaBn7LNJk2sIn0Zx/ttl01hXZgPdf2NhXtPuxsg9M/yMOOta/S3lUu1H8xxkS942ZjbMynjeMAkQHB/q/oMHrs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>lGjvc7/JCOr+tw4dwVIzzvF68MWL81aUaueUWr+M4RVKfOcNU74AqvaLRad1hLvu/FJNDzVH8whkpEmS+FlktVE+nPRmCFsK+yofCkcXlJr5iQVv5dMz8slMWpzryp/t0ywbFi2hgdvXEHh1mPatmSN/YI07lA/q6GBr5ml/7xQJP2424RL07MPePMomSzgvRmv2NA1PekAtPFv1ffJtN5zXNa7ny2/ilsxB2VFdtsodGxULPraX/x2Q++F4S3gtuqXRfhhMD2I6BoqjZ3cZ0cb0cfYGqDPJ8d+/jPRxqQYmdPO9NdkPFJ/WM8hdnv+e3xt4g4RXQ8CsfoBnT58ahoV1x1hXMIWwX0TRLZ2UKnw75VE/tVQaVxmtjlgx3IvUNoIuorfFnHoAP3aw1BDR4JYj7gvqxZhyHceUVgpcyz6m1EW30FXtRiCUoQSuPbT4hXYlQ62y5Ehoqlwz2lDI9EaJ0rXo8+3lOcaQRA6i6aCIZJ40bdx+vX0N5WHplCjzVYw9mXU8BNZjkQKCZ9ib+ikczpRtUvXy3bJEIGNfJPCGrptm6af2hVWeuEeKWlrfTzm8R6B6RTE3KcDraQy9QHBVDiEhpBzmOwSzzgZ9YRzubFeF38xd52FRYpXwj1c2Xe3DzXbSMrX2dKorne3qlPaX/H/F2uJMKlAnK9RLejMxGWmhkgp9WwuzS1+fvtP9uWf1XNtLP/BiP9PigiNWXfF98TXmjNQwPCyvFVp9kKKiIX3vNka77xYIPqAXZb07wvt5yBN42+XCNsO1uKSlIjFDQzNWtDiZdpWejMryAHuCfbYBMHyxcrserYjm7OyLYXQzJcDsRUylO0kiJAAViNRBR0/EsxZJ9Bt65gFGTUouC8aNEYEPQwy8jdgawhrCt4P3k6xLKrPPf044nn6WMDhI4FZyFr+yX0HYt/hK25bBmDsHwftPRg+kjbKmElxQUkvgttkpSWHNbXABHqysuj1ot1dNde6Z8ZCXKlJpVInxJFYs4AsIB4ukIIjZkTC1XQxobE2By2tAB05wQf1SjIf2gD+je+/Rik/TgHjqNq/sWIDplQ94LjHmHzWMygLA2jbKsGTfzocRmEOypJRF/KF4pwCWj2SEozoq+ihBlgpVuHwONJ1h3lvFuaTyXsZA98Ko8OajRh2yhuV4vRX+7jH11No7RF5lnO7auIqkGWDG1D4fIJJqNHEZzuA2M58UxmnXCoAqJTtZRINz0A6C3a4hV3S1Zab5pUKbA84YX1GmySOisrekfMmueKZgwaibU8UMBHn15EvRXGak6V5T3/iDAzMkkUjoyCjXh7cx8qxErK89qPdtj4ahCAliygmDia5bTj/2sUW8ybTWXuMa8xRTQi5SVwNyUVFj+JxIaQPwQtkYuSaaeaDdAA1FpAYk3DIAYyIi8RjCdZxtIygrwSboYTWd6U3KlOT/WEPruwAv0O5EZnHefuLa6MnE/6SGBzeJOmy7WHJ/ot2c+kt3/A1nCUlC8mDkJk47z/1EXsHVE7k7ua7vG8SAY63/qagNYFdAJlG8/JWrkz456x7QMm8qoJdSyMMiyFcmC3qTuQjDJfpzpTwNluhv90eYIOCp1g2aFbECyImoNPZY2XGI7j2I6oLVxNFVJsP3B0cQ89PBZerN8rgogON/8DpgEx18TJMdeMMziceZhiDJQwSltpsgz/ZMUh3AL8Jq+sVMK+hnJdhzdV2AJk6VC84lAwOjt16WDwEpiugtNEXZQaEwMJUOailD6ydDvgcM8x/EBSQ7YXSDBYzI29OQP+es7hkeWgyebPm4dxf2R3U0imEB1Cu/SftzdH+j/PPhvwrrAfCdNLYe01OxD7l0hfvNw9RbEsqRairIuA7+ncZ+ZTJ6LnURym4btNQ8GkTZo3Yk0uJ4y1w2Mt36vhZoApCAt6WzncRoRULdMtwlwHkzk74X9QScT2DI77UmFhLaaGDtDkVPllyoEM9AJ6HuTixFwHGslDz/Hgc7To16ioOBAOC6dLjObhS3eyyTk6IcCtpwI427mwkRf0wQjsd+pVZWg0YiSdla2bnTKqt8wmeYBHnmhMHGqNQOcFhFbQWmgakXqzmrwQ31zEuvKCTAV7KJzV/u0jhJqPD4VWrtw6H3FBt0f2F9DPKey3uwNMDyKbJ+i8unUHHHU0FZrDa5ivhePmXg10+CwjrohqTXmag1qTgTjOa1CvOOlsAaNlXJGY7dfQqhykpVy07JkJ5mUVoH7LMfUrYQOJncy80JMGw82YYglPW7k1oG5+CvEaNv0wunJ8ae579F6St6a4ltgWe47Ln/kX5KVnwk+gXmpBbNYjFWxJ0YTmG7z9M6L53agnfC/kEELBD7kz57ufFPSWP3nv+R1I68hTOnNG5kp4OEgkUi3lEdmjrwiz/0oMhO9LjcgirIpBVUrEEH68xSWSwZ441hZZyZ/8B7GbZEk9KBoS0fMvn3dnwMrAmGoSN8Pv+jLDrOodYE2akllt3qnpePdQnYtETKXgOYZf/hvh6JaeGeib3ncjDRk5iEMjE/YEIS6VfUhsICpPaWGCjr1TNkGdgBx35mTAGcCCWEQ6pjbC22ufnQHk86LXiJU5rj5PNXiOw+Re7jMxUzk9OAVNdoO6ZLe4MMrwURK1xqbxVwV9cJuxYQ2oCzKJa1NFp16UnDWrBl8+Bfp+gxzaSNW22fTDDaZ6fvEBpHcM4ZunxVB6STYEOCU1MUYBkAcgUT0eR7zmKTIjCqWUtmdBWRwhnzkWVUxOgUTyo3nyfKdJz8n3nAD+Ryf74selj4TfG63BQYy0cJlNeoSHZKuaicupJR3DbVbfxoMVaIqx4iBh8lFcg7ISi0Shf24/+zuc5kWbVroYiC8gR4V1lU5csTBm3kUXg9rbsLJIPxAZ/PdFe0jJCl8C1G0Ie65/dDCWVIhzCeWTU=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ssgKJMCmQaVy4Hk/e5GeDt/iqniVno1ARhG1ugtiyiBHTgSmiyDz1bF2d90m2FpMVN9CqRw7eqoDa+GUKhH9Tcdv9VGz127axHPb7N8LcyLOt6FWjEPxC+jkY8i2ouHPwSaPAkorm5oO8NUzqHAcFtBTD/Prr5Ftqf9yFpf29FY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1bd85b2d-2a36-a21c-dbee-318a550e1c31" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1bd85b2d-2a36-a21c-dbee-318a550e1c31"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>FReo7TOavA8rk03yl9KlgDeuFaM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>P0IcSDIoS6p+yYVhDyFCQK98EPmnZ/4Zq+1gKZIjK9UUCV9x8rb+RxXKKUD17QEYlMj6g1RFBBo/NvFUWtxvNniR1kDwXy/Z+Yz/AMicL0ECSiM++XINY86SIMJZ49+P5uPV9nYTUAM4kDnS3iop5Nv5Q5+3M3K3qFjwaKdmvow=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>cBUXHgKiXsxLI9E7FM7OxwaV6qSLndTyYF8zgXVWCySAS61FR6F/D7/C8iTVrvK/LZXdw9MKBkCsZ2Hxx5i9JiaBn7LNJk2sIn0Zx/ttl01hXZgPdf2NhXtPuxsg9M/yMOOta/S3lUu1H8xxkS942ZjbMynjeMAkQHB/q/oMHrs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd4523f9f-4056-c350-b267-8ebb844b80ea" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd4523f9f-4056-c350-b267-8ebb844b80ea"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>toDQ9fZj3OXoU9ARe2jCShafLGE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>eb2x5dHTtekh/VAeDrVDzLA/D3FT76r8lgbtR56Ulk11r6tuamHHkvIJirSv5Sd/2C9e2JgjKfQXT85XoGl+9yc5hbO6WuLZRPUmXmU5Oci4g/YOivUBZiHeeQU3Qm9dv1i2sv0jft6GBldzLX6CQo1oFRrr+jqSkVxJg+RXMdo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ssgKJMCmQaVy4Hk/e5GeDt/iqniVno1ARhG1ugtiyiBHTgSmiyDz1bF2d90m2FpMVN9CqRw7eqoDa+GUKhH9Tcdv9VGz127axHPb7N8LcyLOt6FWjEPxC+jkY8i2ouHPwSaPAkorm5oO8NUzqHAcFtBTD/Prr5Ftqf9yFpf29FY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>