Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxeef9fc80-4d2a-5d4d-f3ac-34943d44d70c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxeef9fc80-4d2a-5d4d-f3ac-34943d44d70c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Z2lenakMswNHuhDDuprvWmpbgXk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>PhA3BE1w5mFcHSRDyKw9+1wDiILzwXV4IyuedP3EztZGtGi0rxjlogz+6PTwYddhyYDfi+NwpBGF7VajFhX5brT2kAQpRw+IJ57yYwozjuxg2nX9HSJUjcmz/sA7OJs10Ieo5XWx/Udj1m+0w6efjN5cVLM/t2Bs5bV0OQjSarc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5af888a4-b4be-1d4d-ad74-74f70006432f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5af888a4-b4be-1d4d-ad74-74f70006432f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UVh6VgUq9Rdg2EoGRZky6YKFg+Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>gtD7zPnXYZEdeG6asBBpVAAggLnC484wX6GwonKHhQh3nPxmJ/NKjHOI4+2lWh3U0vCbfL/9y9byiNj2CTcInG6fNhuHbcMt8wk3SNsFvUgtniWF0Vu60X1wi8IggzPxiw2tWqrVVt4Gumji3Fw8ib+552nxFl5cMiena0u3iOk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfd9f47e4-cd4c-c374-af15-7692b943dcbc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfd9f47e4-cd4c-c374-af15-7692b943dcbc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ihdXsqgGQJ8GDhKAruOc4sPYR1Q=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>y3mbUUzwt7Jz7sLVzv/TorOyEp4uLnhE81ft6i/03nktz2JsWy/35gDgGaC8T3J6rLsy75IVBARYxWYlhN51I1UJcG3a0pQhZQ5aeW5FqgfDnEmk3lDrHwAo51eMZfHqiARUpC5IyTTCXySiK8H+aMZelSnl2kwsMZd5JFbNTp8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx081eea04-3021-6937-4236-52a60f552a58" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx081eea04-3021-6937-4236-52a60f552a58"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>XEaUZ4Yt57aEVYtjvc+v0XoSlCA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tn2Pn3j+dwH5oEro27ABsLjEtGSw+m8mWv5Zha8Nhm+/LcNzY6oO8taxWUY0fnMkFFEWYwOdzg2DSRA7cLehJkU2tyrRu87pYMCh9B90kAJ78Uc/aRZsE88LPoQaDKADxm5INm1862oXTgm+DXPmbyKk0UGMXlbts6tUQRvYMr0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Tgv7o8Yrz/WOLgQk+9IGqIfvAX9oK1J9cBUO1WzHsj4BrquexKcH+Xk9jamCp7QObrTTqaSNcc6q8+NETekkwjpfNSlteE+o/mg5nWKV8JyHdDQWJzlITlYbj3t52a44iQKebW/mQLewbzSbFSUGyZHCn3+AQa69Fotg2wsayDU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jj5cVvHXxrc3gP1yDJvVFXxTfbVuqXW2BPKgIigzID1n/0lxS8s4MLoBf45Cs7rlmT5Qax384fANn8b+IS3Z6bYjIaBJXK7VkkQXbvhkVYtGuU9YAhEcIoahFxhPG6bkwEXUa73jTf+2WxyCbShL0g6idEvdyY3hg/CIjRgmCT0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa6cc9fb8-afb0-5b5b-6953-2fed3c5596af" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa6cc9fb8-afb0-5b5b-6953-2fed3c5596af"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>faTIdf5HbxFW3dQepJfhFuN+KE4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>L5/8TKsrSIR/wcaR7eANmULOfSnysyeA11PtQ0+At0FBiiOyspyvAcnX2xcHcmTp2812CrYCtsBe0I4DULlxmko/L1W/Js2lNIaEzdS5tDbKlPULvC7/p8BcjpCnA5by7TuDPm0ILkcKLjOdGX6h5aY0fDpid6t5Va9XRyuHtN0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Tgv7o8Yrz/WOLgQk+9IGqIfvAX9oK1J9cBUO1WzHsj4BrquexKcH+Xk9jamCp7QObrTTqaSNcc6q8+NETekkwjpfNSlteE+o/mg5nWKV8JyHdDQWJzlITlYbj3t52a44iQKebW/mQLewbzSbFSUGyZHCn3+AQa69Fotg2wsayDU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3fe4691b-5c47-bcf4-b363-2d3e0909a7f2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3fe4691b-5c47-bcf4-b363-2d3e0909a7f2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>b4LZKoxIk+lLkhw16ZPiS01+1F4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mWt58wNdzJ/MzPPIY7A/oW0eMIXanDJzfUyNyBdNjOwEK9EwADhJKlApZvnR8UPXVcXvFWuDursBpzavaeZP1JD20ayzWgqDEQ6Fg/3XzF/OW8C23FT9uG7vqECtS/BxgRFuDUCK5ArW5cNrnO0PJ0qzkEpoadECfFjXKGhjvys=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jj5cVvHXxrc3gP1yDJvVFXxTfbVuqXW2BPKgIigzID1n/0lxS8s4MLoBf45Cs7rlmT5Qax384fANn8b+IS3Z6bYjIaBJXK7VkkQXbvhkVYtGuU9YAhEcIoahFxhPG6bkwEXUa73jTf+2WxyCbShL0g6idEvdyY3hg/CIjRgmCT0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>