Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd49f28ed-809c-47bf-a409-c0cfc8118e54" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd49f28ed-809c-47bf-a409-c0cfc8118e54"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5F6b/NDx85onf5P693FflN2e91Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JVd6bb37KoOPXeVHLUFDujQAlha+hmuhFCqUttUfRkwdVfoUpTRm44p38ovTuOrmtUuK+ni+6jNui1JsYeFBlIAo4ck8XednDLok24UPiuzAsRsbJUPFGoaa4wK0q2Lw1KRiENLHzH2XYPKDo6EeBpD4Q+oKPFZAovVG6Iyy9qE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx19d32daa-40ab-1bae-bf03-dbff50fe1270" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx19d32daa-40ab-1bae-bf03-dbff50fe1270"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5UOrYZcqQxVGFXaIi+EMZFHipj8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>THH3KTbUm9FSi0uOfi/lPMu+bysUmI5qAOvzgSUfN0Vp07Gzzb7ElHvd1skzhk5+1U4GEjcRbnGaQnfoCCYc+v+g41eQoWfKqY8il5csBfwFYfbmCBYCqA4+L6hK2QTZiJgw2Iu4vM3pHLvyeMcZIgkggXnNyyRF3HCU/aYiR6c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa6c4642c-5188-7e7a-757f-76a5fd5e4ed6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa6c4642c-5188-7e7a-757f-76a5fd5e4ed6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>T5SAofF3F//swG+U3gwSxLmg7u4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>c+bugsNc/QUNAElTla5x5LddmyDt51JJZAHGcJStTH8ihCgN1QbnUK6MVz4CaIUcNYXAGH6hh1jWB1c/FuAqgKzs8A6DLSpRckTSzHeQWZeakEd/9xrJ2Ifnu99apPraksroyIiay6OiVFVngZrYip4re3k3NduhgWaAvgRzso4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxda8ecd58-9ee2-7a11-850e-378ffb4d4625" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxda8ecd58-9ee2-7a11-850e-378ffb4d4625"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>s3YqMVLHbrLv87wdUz2wAlU/8fI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hCsTW4COJtRLnluoKXHplwGDP2dGiLBBmlJwqfikOB8p2omTvxKaM81GUg1C+MF8k9bKQIGpb7VBP0CUQAe7JPwdsguOpqA3H574nV7gJrI99w3G2UUDGPDrWjlv9OnrZm1r1odGOQL536N9p6VBS3EjMr/O2QHDHQ2AQgRHuHk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wbc9wE8g+xemwUKeYeUqz1RfoIkRPJYlaiCeLgl1UtyzdW2XSgMmoITjmmMlsdNCG+ocCcCNAu6euk2uSsvmwLy3WcuUWX1ff36z3RC8fKPcme+ER+78rIQFo3Chh3cntADNRP1pVr7Fd/jeWhQv+dN5x5Aw+ExJYEz+8iDaZQQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ida2S1vX1ubohcMmZuseJE1C/GDTuFWqkOIV2QJ9gw1ajJMfH7tYA5eU01ReLCjRhJRIIAIp+0ngzaFrjCtTEYiYdRn7ofrSp8Hhhmar7cRWgHPYG9raA7aqjVUjnBLsYIEsTDLDXTMPjhknZkVX3+CwtjuvLMdbio5KkZFfUOo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfd73a960-a3c2-b02f-61ae-f53c4a22db2b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfd73a960-a3c2-b02f-61ae-f53c4a22db2b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1lQLCPnfIk8MbGzY5+WLIUIrQOA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>V2xGWSw838siXgbkAw2TtJyWfgMjdQl2DOaXLrYEkRPrrtfFNAtVs6iIy9VFcyf0amnGMJelgPzCADRbZ2SqJ1Gj8Q/6VAFWPd6WmSGzIr6zKELee1wdNNAhZtVQuBTc7ywrpRx+2Lp5g4IBZpSM/tXt3zQZqfNZFQWJrIDqEPs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wbc9wE8g+xemwUKeYeUqz1RfoIkRPJYlaiCeLgl1UtyzdW2XSgMmoITjmmMlsdNCG+ocCcCNAu6euk2uSsvmwLy3WcuUWX1ff36z3RC8fKPcme+ER+78rIQFo3Chh3cntADNRP1pVr7Fd/jeWhQv+dN5x5Aw+ExJYEz+8iDaZQQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx44090721-5b60-d518-9d3a-b6499c7564b1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx44090721-5b60-d518-9d3a-b6499c7564b1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jWCAUP8fLq/JhkX+SZuyE6mnW70=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>r4/MNZJvtPTwlUGgG6sl1++7mIKKmD7GjLpcTqWa7ZVZ9Fgt9Cdf7BZGn/mmthJVesCKiaC8HFRBicX+wzu3m1iWSubJ+wf0v0Zm+piLXcvMnAnYoQwXWN3aarqkxl2X8MgrqtKToDfphxlcokJT4UNu8ZPNeFHY/hXZ/eQQEFk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ida2S1vX1ubohcMmZuseJE1C/GDTuFWqkOIV2QJ9gw1ajJMfH7tYA5eU01ReLCjRhJRIIAIp+0ngzaFrjCtTEYiYdRn7ofrSp8Hhhmar7cRWgHPYG9raA7aqjVUjnBLsYIEsTDLDXTMPjhknZkVX3+CwtjuvLMdbio5KkZFfUOo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>