Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx602ed1b0-8a71-4b5a-533a-758ce43620a3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx602ed1b0-8a71-4b5a-533a-758ce43620a3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PWNcorY9V8c68on59xYjy179C70=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iRMaNJGoL25RZwFY91zlqw/x7GxMSs8CY2wdpRSS+VQq1fRg5MmfMnRfrBOLwyyU2wQwmnaEqkJQb7yE0eQXBx9pNGUV4xh7znCMybJ3PT1cHF82pHSZ6sBDOtRfI/v1GfgTqBSu6oVmBBpfWChaLearuVAoaf8EZSGpu1ORh5E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3bc3bbb2-79c4-2947-0eb2-6e6d5db3c32a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3bc3bbb2-79c4-2947-0eb2-6e6d5db3c32a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xN6vZ1bA2NwygKFkZnt7t+0UvmE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sn7X+ADjl/q6ryC3tCajFWDhVLUHC9uabWokA4ouIMMYCyien+cqcMariaKPc021XDio6TztwrzecbHje46wLH5j/ZNStYBgrrZU6ZLXWT/pM03jb/86QGkLgs1C1Yo/4KyD7+SD4LFPG6yEZjehV7KizKZ18mM2XJ38lvN6pJQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx428472c0-ec31-bd9f-d279-92c367c46b9d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx428472c0-ec31-bd9f-d279-92c367c46b9d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ZWFa4NfjLfc7c6P19CoJwH8yNjQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>LwreOYxMyLrlPN4RaRuBI006HUsVYWoooKoJ4NfD4dpS6W4jAxCuwRtTllQkioztzmnNezM19ZzgeqhR9YzX9cVLUJ8tAFKWM1ssya1yvW8XIybi+0KKM5Z7FAoeXR0ECNYrM8vjNi5IwGBtkar4tZAeX4ImMq0NE6S4jOtLLm4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa39e0691-6592-757c-d08e-8eb919edaabb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa39e0691-6592-757c-d08e-8eb919edaabb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lQpjcWJalNqin/p8oTqcAfz5XGI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>G6ZSNgZoWfySXVx99ibBkMlO8T4zCoSDMCxFDfy4z3JgxDxxB7DSHj7Fty31mavzmy8udbLJ96aU8eOFcK0a2X0hY9YrfRlTLLt5pzxmzCfl5uI8ecowWcJvef8ES71ix8Wv1pW4iS8L4ZrzeiYPOdE59GFDVf2x7dVzArdjfJs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xM9NjnMy0Y9R7u4X48OzbbXQDV0aqrphRZq2p99dLoYTzb0lpbH94lp/hBDq1JQcILzf1lQozw14hiEze79RmvLN9yazmPLhmxPdUUbbSx+2OnRvWWeW3e57fGkxmMCKWfI3G0uzIpmSaWZ8l1NlzYodOeKaQZDguUBklG3CYPU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>P+UQFOrMfNAjca8lu+Vb4O96TzX/J3oW3wHkf6Qhp6sR3dZmfbRJf40KJKDZObCLVHAj5So0SNRcFoRciVFvc6b6dGq/f1qDOcf3ajv6r31QqTuReyR+ozAevGfF1zal6Q6Trc81JdsvBAqjZsh6wQJXkTwMXKo3NKbsSmYP0Uw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf8c54634-c040-f1a9-50d9-58345eeb90ed" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf8c54634-c040-f1a9-50d9-58345eeb90ed"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0ccVtGLykyQv1YaYgy7zNBkO3SE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>kuQmzpI32gLs67hYSqVl8uQT1wLGPOy4BX+FLAEVQaX+8fBz+BDd92GhslERV8iOSSz194xEU4hcLvzGdd3GE+Wn+P72wloLZDB71h1USFKYHfnPIBYOClcLrSzLcwVskPReALTjky13tSm39CCq6Q5mnLSeC1yFrn4TXVoYEw4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xM9NjnMy0Y9R7u4X48OzbbXQDV0aqrphRZq2p99dLoYTzb0lpbH94lp/hBDq1JQcILzf1lQozw14hiEze79RmvLN9yazmPLhmxPdUUbbSx+2OnRvWWeW3e57fGkxmMCKWfI3G0uzIpmSaWZ8l1NlzYodOeKaQZDguUBklG3CYPU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>BXoYb2rk6Vf8pAaraQG5z+kByGo6ngixQ/M46A9aoqwn42w4J6Z5nxqATN30b+EMg7fqRsbCll+febH6w/WyNPIjjPaAh6Bm2KxtIshn8aGZbM9Xll4zndhAVQklLV+Iyt63a2iDLqqi8wayySHKS8yvldxGv4tXT+tP/aj9ebx7cd/DIOYz+Rg/T+EtW3D7JkhV5goMOsAekvw1a67XULy+ChWFGs5hJefjh3tjrULbNcJhwKPmeyMlYyburLNNJFuRcjhcOxCkRt77uAeH6y8hrzOKLKobBhVH0zJfg8UcBUVEqinCy3/zLDOeL3Oa8V3YOOPM3cNh5uIvxEVJqjHIHIM7U6n6jnPI7qg5BOC4qlZe153vBXLVcBExlqHgcFVS0NjoYsIbw5MBnXAHaUTnhOpZXFX9M6tblCwQeBJGZ+4m02GThv7T60aq9wUkyd8YpFhTOp4Go2Nk6ZuaRrIciQdmOE5c8KrZiXFAuSyh0fIVMhY6dwjCUO72qP032l6gB9M4YPvt9BKCn4WEdVjmI24iCq5ALSGsjgMXLYHwni9rFCjvj9bPujITJFrE8s6wDmB0nXW1vBKTBM0xS2o38dWCfPx/8RTZPDZhqS0lxPyflTeb2Axn8xbtohkxLC8oN9N+ROW5GU84MPtJlWT0xNXSlq+jNG0GKFGzitOIthno0sBDNgl2ki5eN19xvat8L2QPBNvVz7ZkKQBALlPJI4ejeDFLgA7xYkhQSOsO/ec1xINjoG+qckjeb1Ek14zheSY9LDDFrOBlLSJ7REiDMt+xkH0tJ+u9jkWij8DH700V8fMrLwsUlcCuZ+IsinQ9R3QTtuCc3ycSXU/pBjaL1chs8WhjGHhQ1qzXCPmfZ9kFFHP5s3OF1yzlUhkkrb/FVY29Gqs52BF5s6TpJqUdj9L9sR6Wmh3/gy03XLpmpoKC2NDgUMM/AHt7ZVPZDHm+SlPLbCV8/mBTPIN9/I0LNyB6fHbPnHrxzI/zpxu2mVtu8uy3yVNNasn5bNBNfrgk2JCjCrfxHl61J8pSvPnVK9fEnjrCVSWIs3dO9J0fruye7syoaMTUaGCSeW5UUf+SXZwD48taDToem35eI3IunpRXICIY+B7v3gHRlmvdvRtlBfOqNjMtIrsBGlUpkkVG+e4zDInZtjq59JLtSr7sQTgoim1SYy252j3mZyPHLrVgLmBnxNsnBNbX9hOVunXM4mN4cc039mOFMysPj4zGkM8tpXaC8FNQB3AEwi8Af2F0Adyz+UTuTRzaY+zsALksEhrda6PCs/vSeZ0fD7ijq6lapOgTGfXB/o1NOdXQm48qJrtSz7W6s8x/K9Mtq17nRNhKiiueieZ/Sr3tbus6LZoH4jas8gvrrtM3kq83hktaKNkksc9uIE/YokgNerT+Bi+ahazpfNZPKcJ0+UWetSuwcq4i9GIRfojio0b66W/I0ioUsePKr0VlyjmYASEUwluhGVjP5hq5ltHuXoXyrVN2MyFPT3hBjKOvhC6k7HiKFkJV2H6FcQa/9IIEMGwXnwbhdp2iIGvFpHphVoxwtpfLZfWLriq/tmGWTwkIups930Q9xzThrb6Sq3oUatDfPMF/soC/0/cyDtTeMz4pJBxrSkpmUSfBR4Rr8IgXlLAibALo5r5FNJ2WR0swNRrHeqEmakz/T9TSgKin5kOsrU+nIHYwo25MIm0+gr08X+l5aCO0Gkz2MMR8Lp3uDrzsGzX2e74Y6RpQ39KJlNyB2hYtPpRN1bjpAwqiYe+aYpJS7qqM0KhD2BZgon2Q5A+tmKx19ID76kU998nSv2M8ns+ewwaCtmZxInsWNFjRrPYRhm4Uhc7QbW3DSc9U6GFS5Fblsr2XZ0juFICxxdVODQCc+w4lx7M8ilBOJ0ceFjRDn8s5kBnFNbCpY9T/oeTe8VIxrahzdxAendNbnp34ZURW2a4Z7b7YR2Lo3u37s8SXnLl589pgdn1UFcRGyuARwhqlsQfW3D2K0/rHr9j+E19x/82kfmKqDbAqCftTsvLpCTeFIr0BZOyu0FSvN9kFMiMN4xypZeq92mXQqjpeMSTm17eVVJd/Aa6eyt4kiR9+Nro/zfX0tTGbnhKGDigDtCYe+5WqwHNtG9m0B0DeS3isXtZ+6rpSCaNLPS98MdDH2v8fNiXrX6oZqKcVCyPCFSsz5CejN91pxyiGvAD2nzY899M3hq3lKpDYIiXB5EwJpwpP9h2x3TmN+Nt6xG5uSt219BC7aXpSWG4xx4xxKkkk46dvPA8ZInlaRun0Xuy7XOg8eUKpgvOjSb+1ijbxm1gMwFNyBvzVplFLtJYwR5CJi4F1VDXD0zOXC+7HMXZ8jYGBAQUTvJSIyQ5snXkdVDfhMyE65V6dgTrVL/Xln8nvDFS0+aW8jfKbFmlgM8Z3zX1PCyLg28Sj9nl82ZhvJdPaOCbHpbMHA41nc/upVnmia6iSZj+BQzDb6OY/kWGxxnktOTzIbat7M7zigV7USA2/w3MCW7lNnyktmfZCYUeqV5Y+ytFsPSgGQiBZL2CdC2D/FeSwVpP+Xrj7ftna9sdp+Rku+rgepCVly+mvl91H0iZXGf4e9mEy32IBQd88CR2UHIaVRSARxh/FcoucFsTfwSCRXtP0E1qbE5xjT6y1abvArIx2DGOsNZf04BSdTCXE0jk43neQXVPPMuN5BClnD1DYkT74+HzRNrRVNb6sGrW4uP1+lsGIu9Qy8lZAuFwos6HLE9y5rYdlHmMyPrJ6TyaygMc/DcyF8ricrXDXd9vYjeLtPTkiiC8LJdkwHSsYgcf6ljMpO2Gap0QkpC9hoy+Emu9XYdzWmDBc0N7aQvTR8F+eycybJ447gWh6Yb7RlwPxb2cfQuc1aV4qPzyIRFZt0sGISeg0UTJ/recBtKdNOKr+4B8RDOM=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0ffbde97-d7b7-544c-b8fb-6be9b261edfd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0ffbde97-d7b7-544c-b8fb-6be9b261edfd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>E9IV7K8VKlaDnCcwjYhR945zGEM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>f0vU1dolWKnaUvE3GuSYQ6yj1OwfdfD4SObSW+pbTiRlx8cTtoOL453n0QwbH46xZIXs/cEvQ44hC/+7RjxnFpnekOeuy1snjf/Y90ciGBa9KrcrWYLs0RegbwUlaLlH9KkfVrzl2qUukkK+9Aik3tKk4ZwwKRXVhPaXLcwRch4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>P+UQFOrMfNAjca8lu+Vb4O96TzX/J3oW3wHkf6Qhp6sR3dZmfbRJf40KJKDZObCLVHAj5So0SNRcFoRciVFvc6b6dGq/f1qDOcf3ajv6r31QqTuReyR+ozAevGfF1zal6Q6Trc81JdsvBAqjZsh6wQJXkTwMXKo3NKbsSmYP0Uw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>