Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx83c9e396-dced-cfa0-a0ab-17c24d959d1c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx83c9e396-dced-cfa0-a0ab-17c24d959d1c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tBsVon1xIkVQT3YqjwxaULex27w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>fVkjjtR4jPG3d8Gi77rFw5yDaLxJ/NKnFhf0M09lVHBAVu/dOuafbM5Vi/afhy2GyeDOWZ4jAg+ttOL/F0lbxp7dMl/PBJRb4HTkN/Bq2rfLXuAfJtiDq9tB8Kg6q8RbsMnbqLa5GQ2kruubks8w9OQtGZ0c45oYWwDrpoagfoI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxab7c5e1b-f968-01e5-8d5c-0326bed6888f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxab7c5e1b-f968-01e5-8d5c-0326bed6888f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>/FTAGrPn+iAW++Ru69MVWboeQMI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zRKZb6WXXeLlfBem62E3XaYgpQatYJ4XL/87O9IKNo4sFVYnscncb2AufS43DuCMp5bhCGlVpdNUwxzRUr6wwOWMwO9RcX73k2L9bq03y1jtTqOxNkThQQInFayH9m1XLR8MebK2y4Fz+TsWl2WGVQphvx5oIoNicU6KaS3xbmw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5e0a1d17-3933-01b8-fa41-25a03e16bf1a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5e0a1d17-3933-01b8-fa41-25a03e16bf1a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>SIIC5nMsGN1EQTQ0faAyuAwtoKE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ZYmvhYpjfoEKYJTLuMd04yzhF8QDgloX28H9aZXtyWY8ckOjD1ZXP4hxfDJhzc593iud3qy6dbDtsNZTgGtS/tfOEUkeOtmHOG5Y4iU5r4hK9agkHFOk9TGer6VDFlBBheC9CxWh6nF2yc6J/RbeT8KOvCqaez8zGELvFSfF6JQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx3ad067a3-2e7e-14f7-5162-f37d7a8c50a1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3ad067a3-2e7e-14f7-5162-f37d7a8c50a1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>TfhoQKWgkux1LFVSE6rvI681baI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jaNnTvWOefvVvZdAbJfLPyPMcMPfTOoVUBWau13/KPhALXtRvVzZBh3zmxSF2pdxraYMrv0kfAnuJ5dz4jymiS3DL2wC1rgqpLumDYdsr3Kg22DAl+GnkmAZ+oFJK9Dk7htAWJfeI6lhbZOZGlG9MT5b6QGJQt/5IjGPJpeIGY0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>rQLhmmOGscpWX5f2HaTAegp2Y3ViRQve0SxigODSs5h2BnStOLsP+I/+Sc1XDO2AamdFqTBMx8VW6hHEuDy4tWBEUQtjEcHQG5y/Qvh3eCj1KLd/eO+4nNNRWoYnJ/XJkwVi/q+t7VlTM1+Ooq2QsHw2CzVwRSoM8KNgyS7dMPA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xGtHc+/cf37hefkv+hq5M6skj6v4T68YvCgHkOAvZgWu76q9+lI+C/pKxQ6ujUDKsqVQmhg7OwzLauKZdiJrfa7nTDd+mx/U7m0DXK39Ra7KklV8JZ81AGdxkxFKkAd0uCUm6Ig9Dl1gnjgGrrC44GPL7q1O2UvVdDfCSbQhFeU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx312a2cff-ee6a-bd7d-20ba-032d13af91fc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx312a2cff-ee6a-bd7d-20ba-032d13af91fc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+zN+GH5u/KMm9wLvykKY8Pm4ilc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>x3QUsvL2zcWBJtk/nz09jNHI1rMp67HQksgOREcXgFEeJPkNE0oovBPUrQWPPOEXggaNLEXD0PMlif5q4CP75GaAFPLdVdxxCmr/njHHkS5QaubgW9MxU4LXul6DlAToJ0/MqfmarDbamaaRJD8UIcJCwPIkOoSNyhTSncIUHhY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>rQLhmmOGscpWX5f2HaTAegp2Y3ViRQve0SxigODSs5h2BnStOLsP+I/+Sc1XDO2AamdFqTBMx8VW6hHEuDy4tWBEUQtjEcHQG5y/Qvh3eCj1KLd/eO+4nNNRWoYnJ/XJkwVi/q+t7VlTM1+Ooq2QsHw2CzVwRSoM8KNgyS7dMPA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6186c419-24c3-d4b7-2dfd-ae1411de515e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6186c419-24c3-d4b7-2dfd-ae1411de515e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KTa0fQDL/bgBq+cr9+wvtqxKyzc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CmrEHGaO/v128ZgV5P3HxyUyzGgmWuYD++8MgVh2ppXLbl5ym7UsdWlGJAm18IfS9KucbA0Bpod8flvSlJ4w8HLFAFd8pxoecdTSrHjpSrppIaAQu7TdhUMMDQFiGPYh0io4xf1SPI28nySIMP6zOPwtkxeqO1uwO72kRo5Xq58=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xGtHc+/cf37hefkv+hq5M6skj6v4T68YvCgHkOAvZgWu76q9+lI+C/pKxQ6ujUDKsqVQmhg7OwzLauKZdiJrfa7nTDd+mx/U7m0DXK39Ra7KklV8JZ81AGdxkxFKkAd0uCUm6Ig9Dl1gnjgGrrC44GPL7q1O2UvVdDfCSbQhFeU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>