Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxea3a2eff-5739-0818-39fc-9313adfde10e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxea3a2eff-5739-0818-39fc-9313adfde10e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>TcpD4GhoSTkGsyFw9eb3vZreT40=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rNKufw4gANCyyoTBCZDrnyBucHRpJTFLTqgRD+4XtsNfFGRGmH+JE8ImPvMBFRfecXKF5vzzbzVYVs2OnSkLKaf45YoGT4VUzWeYXuuzjHfbxRkvJ1H81pq2+CzLLsBKQ2lYCb9hDr+EoMvX7R/sVuC7KVc6pm/2J9o2YzyZ3sQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx971686af-cc8f-1b3d-d83f-3482769a5b3e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx971686af-cc8f-1b3d-d83f-3482769a5b3e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bygJws4xWqLxNx5EEW+b25nxlCs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>v3mvM/X//SRrpcGUXqh0gI2VGE9UhID/mPdamyNNBpvu3UF+tCAiyjSzlysXKtwIhNxTDFvEv7RMHpe93Yv0yNZIEYGZKxqEy5gzk66AtocgFyqgYuLMmO9dEcNaFes4n7un4Au/vGKTrIwAfKgsPuVEKi27vlQtag13oMz8jdo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1a7f2644-efcf-2ab6-3d66-b89c9659de0a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1a7f2644-efcf-2ab6-3d66-b89c9659de0a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yDJCp0XNgtIlGDh8X4ZbHVL8jX4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vVYkbznHUlP298VBKqiPhq9AHVtaaSj1TmMo7SRjF+U7V6HIOQVGukDzi1ROzB4DQo7tGwUP+sQcRbqvkC/SVljXDPDggW3A1p2EBc/yU3bgL38Kq+epeU41LoZQOytjXi4bVB5hRaa9+odixnn0x8QqjtTj7TngyOmI+2G0xt4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1daeb5a7-a522-be18-530b-49b5ce8a6727" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1daeb5a7-a522-be18-530b-49b5ce8a6727"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DUR7XZQbJZ1DxTbxsCv0uegre50=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CjsdDOq/aNF+OQx1zkuxNyEQO8sBw0wE50uhykubcm0Ce1jNWHy0v+bJmCTP60nLQSJ/njkvecqq/s9YVwFlSxiAKJ8Mb7GGXmiGDo59UDx5+UO9V1X0AVHfFosxS8uYCNEVJqO3W4CFVG8bbDcrQhLSw0+oPH/yh3Ex0lux6zg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Zt4uNl4IPdB1HgkXQAbi++h6mV1R5O3LZoE9Ey01Afdj2BGS6BvEVAEaaUG7LtIcko0Lt03V1T6W7YfJVCeARZedLfGsZL+7B6m2/t4pLzxrjPMacnw6mXRqcqZqn58twKwCUrd6B2N1LZAy0IU9v+AL8dXmw81KJHACoWVA9rw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>FbC9gUKdW7pZNIb9USaqVnap1llrMJKDWc8nFvvT5nOScKVwUM3eR6Ch3KM0q8G1y2ux/szmcANtqogfPrpLGWKxl+QFAMS5vYsd6XLtUMxfdZH8KbnCqQvHbEMMPCHno19cYxNYg+taa14T0DFzE7jHoJdAuvtDQBdUBLmGrJA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx12172620-af6b-cd7c-532e-10ce8c92c924" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx12172620-af6b-cd7c-532e-10ce8c92c924"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>B7w9Ls+FVctwa0TpuibbaaEYuAo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>2GDfDwmU5+Yhy63thqUWu4y8SjP39XtKx+uAr2SEU7SicIn3N/7NYkhpghvbGSoupM1Mu/CeIrU+M0aF2R9skEOit5ae6uxlDkdN2vKFIXpbzaVc5KkfRtymdJpfRAlJ9CuLYbajYOoTbF966qPyBwwejxR4JWWUvTFVIhTsmtk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Zt4uNl4IPdB1HgkXQAbi++h6mV1R5O3LZoE9Ey01Afdj2BGS6BvEVAEaaUG7LtIcko0Lt03V1T6W7YfJVCeARZedLfGsZL+7B6m2/t4pLzxrjPMacnw6mXRqcqZqn58twKwCUrd6B2N1LZAy0IU9v+AL8dXmw81KJHACoWVA9rw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5b77ddc6-cf6d-c4a2-c7f9-e7d0af6f9ddc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5b77ddc6-cf6d-c4a2-c7f9-e7d0af6f9ddc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>03FJo7koPWRQuXUoyrYNZrnI9RE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Q2a6W7WJLDtKWHIa6G24jzEBP4sL0sfPHPBPAUzuSfXT0+7ZYvtlAZuXQ49CcpkFK/X29ssVqWv2pb7pHFKJF8lL0bwjiqHCKcY0bjaQ0Njx+RInKWG7zvpQ2u1UexyTUNas3xQ8ca1+KjZo313jxFU3U1P8MDZdoxxBBuh9EPk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>FbC9gUKdW7pZNIb9USaqVnap1llrMJKDWc8nFvvT5nOScKVwUM3eR6Ch3KM0q8G1y2ux/szmcANtqogfPrpLGWKxl+QFAMS5vYsd6XLtUMxfdZH8KbnCqQvHbEMMPCHno19cYxNYg+taa14T0DFzE7jHoJdAuvtDQBdUBLmGrJA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>