Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx5a88d4de-bd13-4cd1-dd74-4683e7471b2b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5a88d4de-bd13-4cd1-dd74-4683e7471b2b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YjIOWsUvSPwGIGtDosX6oIo79SI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Khug1H3hjMJ1rXkZHgUo6vKvcxIGYKfjWFxcJCLXtCpt5U08JQNiSGPNkC5J+R+f89o5Pb335pFOrKUAsRu/KGyg8CMBSoNVcC3GAe099qM/JAiAr0gLJnvGOsjCAPHrun1aGtD2OXlD4KE4U+wgZypAqh7RBndbnvhMMNtnC9E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7544cc07-19a1-9491-9d7e-68cc22305857" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7544cc07-19a1-9491-9d7e-68cc22305857"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>erzampRv6xM2r0T6Dgh24lsghBE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>r7KMNL1tC8xxZwySuHD93x2kfr+XfdPfL6xOnQfrsKIUdClu0AHJUphBs3oDRdmn2G9o/cxkscwRTykgHvcEUV4/QdnlATfYNHeMvBVPQxHBeMRHzNEUzI54653LXbzmsVHJbuYBToFAiFEUrY7Ivf5hSczwPounK+nnT6xBriM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx20c0216f-ddb8-173c-3e7e-9c06ff6bb6e5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx20c0216f-ddb8-173c-3e7e-9c06ff6bb6e5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ppVzWcHYhnYnKG6Rmy5L+JwS3MQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>c93CzQvrSE/dx0c0DoLMP/UOfJ6LJnio/26KZAVACAPN6CPXnjWOJ/YffYANcrWVP6pifsf6e8fpy/gfEBeSdettbQvrk4C2F8Rf7uWX8ZzUQqq4hQ24pwTN2acEXTpwo/FMJ/Gmik0wO6VUmK4pN+IuT9Mbv8xWI54oFFLwApA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7cdd20db-489b-25da-5e4b-402176a26e00" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7cdd20db-489b-25da-5e4b-402176a26e00"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>baNMixs6iFzqYaS5rXOrm9H7VR0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>BZqWDAxmEnZ4QZo717gKbF6b3mwOUXgRqU6YM4k9f5JbkErhltiw4wBFWU4joxRhFiI05eh0UWXwHr9AZ0tUG4FFGhLAxwoBxr/zKUeaGUs9d+rOVoVJQtjBjIzSOO5M07ODkBE2V9Hy7Ws+oBRtGQ/c0F/GSEbX1Q0FJtwMEWs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ZI9wB1qusEkUJtSQQnxB2M1eGBNfperpTEjo/TJtvTTTzvzhGvOZFPV56b2almIdtaq7Yjwm3wHtHMWX8DjrWLTnyf6eorp0LhJ9kp7S7bOqE/oSL0Sby0cTyb4dF0C9BsbZdQggDKoxa+8tm+2fDrSw54XWt15HPXoxFwzJZ+0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jNmNP2PhELqqJ3Aak2OvA3MlJeDk/7jbKaiaZtCQjpdEvdjZCeMtWPw/5xgDpXmjpqhCCjLy5zGM62bnLrFR1wsVyyKnGdqkqKw5DHA/x4q+FpqMuYBK7IV6bcEhkyOOlk80dWstqH7ANAUZp9j0EwICbbVQiR7gX+c7V3506qQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8408eade-483b-2124-8621-5eb0a7f1d5a2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8408eade-483b-2124-8621-5eb0a7f1d5a2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>U8GHbZzgewPDQSZUbp2OdS3nlp4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>voYoD0QdEThINAJTBoXMwcYkt4nqYRxjG2TKTMAOM9GWqi9yECfa3c3iLmboVTYXE4kEWuPH4gl0ml/aCkCGEg9LG2AVZiceBWLTjeLRdzmHmMJtNR78jIJovkxo+AMBtXYZXoHHPrHudQudZHgyqSWUh07PdPMLy33WdDtHWqc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ZI9wB1qusEkUJtSQQnxB2M1eGBNfperpTEjo/TJtvTTTzvzhGvOZFPV56b2almIdtaq7Yjwm3wHtHMWX8DjrWLTnyf6eorp0LhJ9kp7S7bOqE/oSL0Sby0cTyb4dF0C9BsbZdQggDKoxa+8tm+2fDrSw54XWt15HPXoxFwzJZ+0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx67a3d831-246a-fef1-2c86-38cf29729e21" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx67a3d831-246a-fef1-2c86-38cf29729e21"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>VVPgpdyYQzc1Uc+NU1lsFnApQk0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>a360DvdGwfRtIatrmKj4m9XPtQ8kJQtow69LCee6oHq6b7OI4dJZD00BCBIM/fPBNIofB7+2UN0Cu5UUBTkjhSc6be+wKlJjGX7DxdiialWaao6QCnDBq8M1ISFIIj7bAWKro7rpWZzuLFnRPxJN2z8E9v0ln9pre0zZ3SFYkOU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jNmNP2PhELqqJ3Aak2OvA3MlJeDk/7jbKaiaZtCQjpdEvdjZCeMtWPw/5xgDpXmjpqhCCjLy5zGM62bnLrFR1wsVyyKnGdqkqKw5DHA/x4q+FpqMuYBK7IV6bcEhkyOOlk80dWstqH7ANAUZp9j0EwICbbVQiR7gX+c7V3506qQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>