Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxab94564d-f490-13a0-09df-fd0c8872067a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxab94564d-f490-13a0-09df-fd0c8872067a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>E33GZp06WBO3DFomJUH+3AUEi1o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ILs3kQ1eGwzzq0MMA/5VAXEyD0c/3757YzlrU1nM1MGXEH/Al/NLCjNy8RKL6cE0m0eppQ+8MUHn/f8dayzsvGOupmh1TNldvY4k22mLn77x+ID2EzvQGFABCMFb4h8c01yhGLPa2kiBLZuY90U4ZgEFLS1oAvIeqtFxrCOetdc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx45e034ed-01e7-390f-204f-9347341c3423" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx45e034ed-01e7-390f-204f-9347341c3423"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>hzNz3260R9e8N4BJr3k5li2GKFw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cfUFstDDt0a/XtdnbFzcIBDUtfx3KftKXiD/7uvWPIut6etJ6eC0Ixwa7PV9JdZBMt1bA3/I7R98PLlJKTn2rFfbs/bEcLEE8EnE4CehkLojSqYqH65EOiGrJC/nDVcUDHAsZuYBU7TDXVb4wuG75DIpqYgrC7lLhDeNO6bCIKs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxccb4d943-3501-9372-28c8-dc21a631c7e9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxccb4d943-3501-9372-28c8-dc21a631c7e9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8YbU65fOtu0sD94RVnjhRce+Jb4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GGycO5U+1j+MG6yjDOvQ2D5OeG/MZcAZzgjL0tJ5hs5wu2vFx2oRPkqcaQ6GDjkMi9PsoWpgipeTKNVrH7pRAt4NkToBMgI+nu555XewqikvCq35mYXVGRS/gMztNqRt8dQNMQ6wk//dzujm/DUui04TsB/aqVYiQzpO4bGXRT0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx421a4caa-ca57-606f-1a67-99284a417a95" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx421a4caa-ca57-606f-1a67-99284a417a95"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1inq7/79LpwNy1zIDe+lj2Q8IFA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RX2U/tGaV8R3eCGTQb6Tyopyi19Q0bRId7XvEjhJN+fMwlopWxaLb5rT0vSLkntZiX5362kDdUjerhkh+ain4pw1Cd//q6SGd6/g5NEFb62u1LCZaiz38ROSZ57kHITnKQUcUjVbaPhfQd8wjZgYP1+4x3PnJqy8MLw+0925cKA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TcOdbIVpsEqjFb07L+g+hNwkzbuXaC9pvdaj9cvS5eSjZjmHHSEVptdi9fjhX6Ewk/XsVKLr+e8PmlRSMQLi6AzqtB2Dx/3eyCd843T8g8HK7Y0AorPDFwFGFs0LclIu8Wxi08H18xssyJXZSYQfG6N8Eb/cX+0xvRNjdfCjoPU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HQTtaZ7J1yuX9cdjTbQaksjKAo2R6UboZJ1Ukm3l+TsOpyjJIrAAwWE8rSovSxe0H4W/og5iCQi2sgIclBr2ZGJOCOp6VyHPT4LJ5YLecqTKFoIvyHEUUKT/W6eDqGwZAolLae/Zx+/MNMTWDo1+iMt2ovj/M4Wtktj4BdrGpG8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3584b643-f83d-409d-92a8-7814afc51d4c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3584b643-f83d-409d-92a8-7814afc51d4c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>q2b6wE4Ci15PiptEgNPLFQjzC54=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bZyGGxFjX4kzT3fzgos+SHAG4sa3It/azSEGJveMT9pabDMi/2lXVJzK1J9zkR/zt6TuI+OQJwpcb0LMQwyMuZpMUMjOn60CdvSLVoLqMQMdvbfwloiSwfAKdKF+E3m5sDs1GF5Jg8IB6Ep0ELx52Q4t2B8n6Kkfav8w7pxfHuU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TcOdbIVpsEqjFb07L+g+hNwkzbuXaC9pvdaj9cvS5eSjZjmHHSEVptdi9fjhX6Ewk/XsVKLr+e8PmlRSMQLi6AzqtB2Dx/3eyCd843T8g8HK7Y0AorPDFwFGFs0LclIu8Wxi08H18xssyJXZSYQfG6N8Eb/cX+0xvRNjdfCjoPU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx83b1d9db-fe3c-475a-c2f9-97d8b3ebbc12" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx83b1d9db-fe3c-475a-c2f9-97d8b3ebbc12"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8rgps0Gw1SEYgkQgRvKTkCMc8V4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>F9XAt/kyzHQHjmpwYSUXLiwOKFR8kZVPyLMtJRiMVrj1EWxzwMx/Ttp2Fab8JPmDP6LRjT66fe48VIvIWad5vP+xiqglxLTnEXFKSINUiEti13ZB4MO1sMz+HmqLI5unkByCiSnmrUruo0+95OrVC/yEmEdCYyMNcJv39W7oUHY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HQTtaZ7J1yuX9cdjTbQaksjKAo2R6UboZJ1Ukm3l+TsOpyjJIrAAwWE8rSovSxe0H4W/og5iCQi2sgIclBr2ZGJOCOp6VyHPT4LJ5YLecqTKFoIvyHEUUKT/W6eDqGwZAolLae/Zx+/MNMTWDo1+iMt2ovj/M4Wtktj4BdrGpG8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>