Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9931861c-4d66-add3-afad-fe96c96e54a9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9931861c-4d66-add3-afad-fe96c96e54a9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>uinJsH4s2RNocKaS+VairFRhmoo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Mzm9/yZwSa6D1u469W/mPjBXCgaORpO8IyibV6CZXyCOSXwHJOYCxSXMR/zjkMTjAvmEF0yha/Yi32cGrIc0+aJOL+TIcCAZnGvpI8Pv7sQK64kWt2ikAQgh2EhP53rDDTz+urLmUU4jkTh63TnQsxuF/uJspwVYpCWKSv1mWTY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx26086c81-5bdc-3037-3845-cd12a1104942" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx26086c81-5bdc-3037-3845-cd12a1104942"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UN4ZOzt++w/8AY6VpDFkaMPrGVk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dUTmre5L/3am+x5tzUyxpHXy5/GPWVmZHImx+D5rth8l4mipQ9muaE4YG/V69/haNuk5FXTdeBhX6dWMHBv3tYYCaIL19O1rLG/Cu8d6ZjTcBlCAr3e6ocdqppwAg25brsfOosqGWVz11bCkHI4fX7t2Ae0w2wrW0wFbbDUdCqI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx81abace1-e12a-6250-6d5c-598941957fb5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx81abace1-e12a-6250-6d5c-598941957fb5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>eZN3dYyB/2mEo1ydRL+yvdg3xqw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>xyqA4aahqjilT0/Pv9C2w1IzBRXRC66lAV845Peoud0yyqKhhG67yDUrMAbpTTxKFJstXTI9OFkV5JSkdqpNBYBs4WLwtTu+y05em3OdBWCZfPP0sHQsn4e58k5JjakgmX5ZcBm+OxDTKgu/XozttmKc3toCjAZybj4izM4tTPU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx180cd921-2d61-4019-4ae8-271bdc23a539" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx180cd921-2d61-4019-4ae8-271bdc23a539"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>x5INvJoaIz40or4bAMVKyjou2pQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>py75IVeCp12xJsNg9xsmxc2fPtsfKWWvTsgI07ppT9fxnRkCmYj0dHQhGxxVwQIrNTuYrkGtSwZ7+MWmURMhQ1/Hyr2wV+fTzTPOQCfN3W67C/HovakZJg/FsQpL3pSzxcdJ1seWKJgSR+7BgJdQOILjA2kE6xeSzIokxjdmXuQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>IerE3ZmXG2C83f9BJYXKRGqmzM5tdY7rZ/FAO9cb6HBv/M0Gr4imLfo/VNOCbbKsZO7yquw5/5C+R7TW/1lCYVgcb+2+/Yjk6aggJ4mI+cPv9Say7PW1gvgrR+PzQJSuxQ+/RuBSEVj6U8Kf1lOyJPKGGv/0dCG/AVuB/g4yvQs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ftDk65QNdjFfP6VaoxA3AUYnfy8hewqpzHRO850tJ8vCneZN9Sw8Sc15Uknj8v6/tmDUmHGlY5ptk8lK5OAxqRoP8WPKzVK+V6ffQl8AKdJzpNU0s83pWmcxcOWf4cRufTg8NlumlI/7yhddDNrIR/K/M8BYe1rk/+OlK5X377Q=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4041637f-b8a0-981e-08da-60acc9e5e604" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4041637f-b8a0-981e-08da-60acc9e5e604"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>v9BmEuv9dS1lsQr7Llw8td0PeEs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MeRjmVjgzVAo+6NuAQCgXVpUHDDNgq/0tiH9fFSS37bGES77zCBpTfNNr2S66M51T5fXNWXrR/1w9xFyUxDE4nSvm+lBVdu/n7dBeKVX3UBFEHTrlbpK6JlqDQRii8UJNmArBmxcsrqp06KuR90MRmhQ9b7w9WdnJMp0OHF5YQA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>IerE3ZmXG2C83f9BJYXKRGqmzM5tdY7rZ/FAO9cb6HBv/M0Gr4imLfo/VNOCbbKsZO7yquw5/5C+R7TW/1lCYVgcb+2+/Yjk6aggJ4mI+cPv9Say7PW1gvgrR+PzQJSuxQ+/RuBSEVj6U8Kf1lOyJPKGGv/0dCG/AVuB/g4yvQs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5f1a2fae-5ab4-7202-7f15-399db761939f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5f1a2fae-5ab4-7202-7f15-399db761939f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1FvU74823O0htUeU65Uo5EStmWI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oO1048zSPl56bQDlCYz93LCWtKWj8xNSHBqjRCqOZzm+r4SJ95v5AU0ZWVhbRCHmdwI1t65esIDKkZQB4buSAmo9jkddTLLhSQkPJ0DoV1NI55TTdaVvxVZ/X2iAO9W72P4SebqXIJkKansRUBAz3m8oajCmbVdcgOHLCAlVfwg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ftDk65QNdjFfP6VaoxA3AUYnfy8hewqpzHRO850tJ8vCneZN9Sw8Sc15Uknj8v6/tmDUmHGlY5ptk8lK5OAxqRoP8WPKzVK+V6ffQl8AKdJzpNU0s83pWmcxcOWf4cRufTg8NlumlI/7yhddDNrIR/K/M8BYe1rk/+OlK5X377Q=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>