Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxcde0ed92-1766-ebac-21e9-df94db55f51a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcde0ed92-1766-ebac-21e9-df94db55f51a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>TU/OTDXI8o6IbKR9ykSlsSRNovk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VO712449m+kmwJ7Nw9JXDs6ZL9ecNFg/b/L/NqfEKw1qJFPNqcgF9dujH6RranlNKwEHp+7xitpUzj3ds9YnhocIFehx8vcspvdVeWWMlSZ5nE/4sHFEJXbtSt4GNxXjoMda+efTBSIcI2H5Cphao4NpmezwkqRRPnHspTUq76k=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe90f1934-a6be-9b93-b181-d060514386a9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe90f1934-a6be-9b93-b181-d060514386a9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>a+fRV1fOEraQtAmk1/2VuCsDmkY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Y4uKobI4/pgRDH8FOwi6xLJz7ZrxkdaoFO4GdqvOFZFnHfCqoS93BN8G+oAIfgqcdHXlLNOmw+lzEsOSQaWKcIOh+fvrte2OM3PE70eDXhq0cj6H68iu3gkO4WCUScPJYMd0TmoZMqp92ip1DDudrf4obwuEBSD5IwgAnN1O1Fw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8f2ac387-ed9a-4458-7061-03490946549c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8f2ac387-ed9a-4458-7061-03490946549c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9r89mLwIyv6y2MBG99h2cdBABGQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qhPYcVPB5KKnn3ZjaN9FsevcPySxV8YObYT9fvWrMgfTlXbnPQv8sIDajbkZ9rJ0p9PlZCTxGsd9dsoSvL0ciHSqdp+dwswT1ij8oBumC9sFVTLP3IpNdte8aANfxUKNMeDbA4L16wlD+dL4SBI0V19odSttZ4qac4UQ/DjNonA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa74a196b-5e91-375f-3a10-92f7c6692973" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa74a196b-5e91-375f-3a10-92f7c6692973"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>n4/YeVoYfRILyt1hfTIOipyECYU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Z6AmQiPXpsjcxaG9Zy7v3iQhGXuFOedd5eeCEzNQgIFA9celjONAL/tp3Y+VoHyxSriqVapaI9GvMaDCodxmNRhyeDLpBL3ckR127ZZGkyzKmG8o86Xc2DU01oMhkx0fq8CARClZortkKzq4VtHagxcp+PjbJKpOa3o3So4RqDs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>q0tS74ai6qnHRFORAN76Sm8lWTzIXT2YptAc7F5JvAM+Oaube4o8DI1jFTvSJICYJJU5FwJ1H2RGopRk2SZQmYFkprrYFZBafF032BtNv5uHWARjh8Gpq6S7Wwj1hrGI78Zo0xpFn4RggrP4kWGDjiqps50G4/B9ZyA2HcZoM6c=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>l4l79F8qEKEbAldFV2HSInsOBpjI4ZRDA0AcilI40hWIfxgGlVoTAnVKCPv5vkbXW3PETTLu2dNYwi3OUQhuHuCSE07LdZrDIbIzVK2f8Wv+vhUb+JpFIK6t9ar6Qo4gGFyEGXtlrOme5C4gAvICc/X17bjb5DhVzQpwyricDQA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxce5e9ac5-be73-f68f-3ea8-5052598f844c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxce5e9ac5-be73-f68f-3ea8-5052598f844c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>JnM7dCZd2aRFTWBsjRdx465qN9Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lwMUFNDA7Erz7xc2ba/3Ybhz9kk9rJu9HiIJyDB9++dfTofYBSwV59MUXOzIFZhi7KDkaZBohZwPvNuuVSFagAQmiN7yskGWPthAmy7j4eHE8OFMBzdiNy2HYjMxp338AYjMAZ3QzlWpeDTES0LRKEzRAJ8VoyjKcJWhJC3EZRQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>q0tS74ai6qnHRFORAN76Sm8lWTzIXT2YptAc7F5JvAM+Oaube4o8DI1jFTvSJICYJJU5FwJ1H2RGopRk2SZQmYFkprrYFZBafF032BtNv5uHWARjh8Gpq6S7Wwj1hrGI78Zo0xpFn4RggrP4kWGDjiqps50G4/B9ZyA2HcZoM6c=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx28bcb7c5-23d4-1b3c-110f-45a95ad007bf" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx28bcb7c5-23d4-1b3c-110f-45a95ad007bf"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wQ1nB+ryVgnLYeHo//zS4mV+RPE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>UzD1Vz4SmsGGFHAb/PSf3vWDUAdjim5p+iCJa1Wf8MLuNpFm1jXu4cuny7HHvWpoowZi+yhDVktLqmyTdZ1QcfVkHs9R2iXYlFtcN502KT51vZYQRAG8VUgg3S1PaQ8xYEaaYYFUZcbFsB//SqbyM8l93wfSHeWKUITr7BJp0+8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>l4l79F8qEKEbAldFV2HSInsOBpjI4ZRDA0AcilI40hWIfxgGlVoTAnVKCPv5vkbXW3PETTLu2dNYwi3OUQhuHuCSE07LdZrDIbIzVK2f8Wv+vhUb+JpFIK6t9ar6Qo4gGFyEGXtlrOme5C4gAvICc/X17bjb5DhVzQpwyricDQA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>