Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx41bced6a-c2ef-3d7f-0cca-f093ccd239fc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx41bced6a-c2ef-3d7f-0cca-f093ccd239fc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WJqYfj1CBmMOOb7zdnRukR25ymY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WMXnlIwilRpJReLQZFVhIYGvXJC1VHjlhriHqOT+sCqTM9hbkZQ6NzuoSZU+J0VvGbXQt+ccGyP4/cWaVKDV2GdOZWB03us+GzAM7Zcqg/GerakbfofNwbFhSPmbMV7eCxGWqeZuYXdr6OFjPW5Oeo7OHN3GhDGpUMWqrMkMT1o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4eb4e4d3-0345-6039-b95c-a67b1bb55934" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4eb4e4d3-0345-6039-b95c-a67b1bb55934"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IyCAYXeReS4PYG+dbYceGklZi88=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DARtganbaaueVmb2E5/5b5u+2xVdKpGEM/Ed9chSaPGUDk6W1ni9w1FnCBdriEz7aU4FxE7jeQ87npZ72AGyknXd0udWTqq9s8VxfXmqIMEyc11G9qVNVmtHImBocxQhNebToggc/rdjjmd69G7ZzkLG4xRZiq7T84ACVijhgcM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2268a5ac-cb1a-3d81-4b55-3bf6f388c38c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2268a5ac-cb1a-3d81-4b55-3bf6f388c38c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zg/8MgG9J9prGDp9unZ7dA7KUcM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YOzhRAdgHtDJTR7IMz003KnXzHhV+wa8PyK2vjHWxiUOrKXULji/2WBrlzqiaURdmvAjPgCNZ73QMdwyFEKl3uxLsb5gsa+PBh3NBVUrMJ3hFbsO9VDQ2PhBaiTl5tUR1DYADczITne/JdxmLFeWMqyu0qEJlIl7VyB3SeH9zTI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx671ecb6a-6130-4f62-ba43-d2ee8888733c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx671ecb6a-6130-4f62-ba43-d2ee8888733c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dQBNqHKROwYFnSbPf6izBEqbcN0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IQrTRse4HijF3cWGEZXnSmrxJjPgYznCgJ+sMNg/hjVRWBsN4hJHmFQbnfJFGk52aYN0vnLywQIzozu5u4UEXA/eVJatT3LWTGDczQs8IjjchaxD7LfIRRh2d/Tw7843nHx2zxYUhyRf2+OSwL0O7bz7PCRw2DA47D4kXZDIdoc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Q3Q2OfYHpf4lplajE1k2m4usVRaPBwIn+pAHrp+qfeW7zZFD1kOJEZqm0+Ts5jN7M5pWxHV+aCxNlW49PzpIt66/E29nbJYvGjwYImDQae7sksGORrx96DLAI4SeG9IiaFwqD5TehX25YUtzztIi9VZtFp4qY0+b9duHsWDTxR8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>mSSqQLXnzJ3iKq5iT9gi2ZPxG+BqCXBtTQDZhbOqv5wHxSMfCrB7glIIgcG3fFbeJ32AOf5j5lPLNQtpuIr7V57rDxyzQlADMaC19sxMgqyqeaVjHcECF/GaGv5Ms/nyqhb7FFTChfVkREcM4eknYzkLM6vXzmRNEpUkEFCtjT0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3074399c-9979-5b02-abed-78fe2d9e88c0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3074399c-9979-5b02-abed-78fe2d9e88c0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>iIy3fFb5WjpG+VnP3Tw4Fao8tSY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tNGsPG7SAlZNKnbIjuuDccPs+IQfLchRViOQt4uhsY9zA1oMRz/HcSOoPmhkJSj/iwV7T09uCDynXjqtHJuXYNBaQklzmwiTpg62JdzMMB1Xxf8bgDELQsdolFULD58urEt7mPH2qvgYkjbIMD3e+iT8zmZqaoVPUMKPbVgMISY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Q3Q2OfYHpf4lplajE1k2m4usVRaPBwIn+pAHrp+qfeW7zZFD1kOJEZqm0+Ts5jN7M5pWxHV+aCxNlW49PzpIt66/E29nbJYvGjwYImDQae7sksGORrx96DLAI4SeG9IiaFwqD5TehX25YUtzztIi9VZtFp4qY0+b9duHsWDTxR8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>4AUP4OpBzKbhsE/z2Rtt3z6/Ys+phAMKGXCm3Ev/aH3HrLPNTbHfDeURdP2aTSwWrGKepF+Khr1ZhYw8HXzBbY3IKFztjZV3cZDdI8RHvJ8hKlzlCvE2Cwxtxxsn6fxxn8CrAYgpQ6aOSgapdj7xXeRttPn6RmSRdXgzd69mEBCAbv8QH2WH2a/9WVqQYOMOAtXSfD48/XL37fGfFeW2UyFrtvR9jqKBEy6kSuRm+dnVfTZA47+VoOM1vpgt0f+f+mERHIUxvC/djEaQ7o9g4O3FPT5DDdFtwDqXZ07JpJyFY2YM2X5EMlRYJkOwqxrcPgVfdp9irsC4VT/0FqZNxCSCAKzcCkGze8jjFZPOE7Sx8XE4YDbx6Nl3ILTeeZ3NmNU4QqrcpmR9CZWs42SGH7l1+AXa3GS/v6CYEOKrEKP1oMiFxwxolLKes9uekK3ZGaH3y8VmRybAYwzvMnVdwsteld8q6xm06gGN1ETFU15sHW1qn23Eu3zePYP9JI/MN3sE6PvdS33a5oFZOw1xyYooR3Jfc3kiVghjwIkgBjaPO4HyBhMpmRJAxln0BbBJmvpNJ6lfPnlVDACMX3GY4tnqGEZCsPg5hLAtU8sCvjG7dmOf91dnAUeJWwPiQVUHMatpRzUzNy5yj7hKwxPTbCE2NQWjV7RhaJuNaERgH78lquoTQXbJT+Gz8sLCY/7qL63QGU+9sWt64PrfiVbHz6uKBFCUAPVfJegc7RduIBuvkSe6RXp+r/bgLLghrXmHy1pp0fYCtAUDYwpV5mqOVqnw7mgOHM2L9vdf7K49sWBzcZhS39gL0FTneIEU1M+UFxyTxzJWExU5CkaBWUJECsSWP2J9kH6xCwtyYmWKPmNWneNWFoqgReedfowNxoNFWJ8LxgrY4jt4GN68qvuOyKx9L/I4+gTyg9DNU2s8rAXLi8h7yTZkhoMVADiNM1qkJPAL+g9f1s55YJiL/7AG6rY/GDwluQqHffFVeGJqYMxHZFm+bLTIvgApVBTYlr+KRBDpzjhgFObqZ34REHsGQCnrxVXiyDbRvDoG4DJzhsR09jDLHG2Rv0OpXJZE6Z5QY8xPsbb7EwEGBpW1Uh96m6S9o3y5iyzwj2qECrOEt6cnyoTToqBv9VRBES49O1zuYFILNdtCzUmtF5bS+4rUVRBBFc1wruV8onwnCL9L1/dUY4V4W3qNq3318oL53nywxr8YRLY99qGubFjL70Nox/KfkAMrHPoByIx/UwFNqZ+WqFbq6erB6dpUzE77ExZG0C99rahIDoS2+S+blsgYkQBz+7m4/iKKMZYCUwt9lBQhXPRn37JsQI78ULIimdsQNRLHtU4nutEhrgphjrSnlBCE5TxEy9R0Zbli9znLn8HPU/XXEVNi6E0taCc9O1Xskgb/4C/obAAd6oFV9Nn3EJbBnObYbewuigKhFPBsIrWQf2ws/Kr3pHwktUZ3BkzDvCI7NOWCUGCGkLOXv0tEb/EUvbYnvJTQRqxSqVOMVn2I+5N7a/azi6+V3ysso/c+cnffk/WuhE737bK3dUFJEJGgV9Fab6Hy6Yj5VUcqdKGEdI1hVEVjE7qQbzCjvAMFkebUkuw3vlMTBJ7jH4Ei5tHqPRyDnFDYiLYnE0Uaqj+8irTPn3k6Nfbe4K03zwEeQ8num4luDf9xjlD+e95erPxY06NPCcYCDbEVHmwPXoQ5goErsUqJ5KzoB36QOPZlxiARSMoBRQryujbXKSHQBvnV8qCEBjysV0y7j630PP/o1QHU/7Su/AfEMXymZ4/gWXFmfKWb34RUz557TF2cQWNoyF4syypxfzrbWe8efW/HYdCYCPqU9Zdn6FmkiMxE7tm4ZQPmf8ggbxMUvqWgKXEcbtemYteuD6C39IOOYiN/CUBKJ0rbaKHrnTvzgiGDa/ng8Xf+3PIyfC0ZcAJOg8FSWYiemtUeTDc/SPUolOuf1jjlAXWYUhK/9M+hqgXSUfNJ1PGRAODJZ2k+TqaDKpr8cQqbt6Uv9a+swWlwqddGOYG2ndWwcPpbYnM5XvIFn25sNtdj6fjGHOrV8kdqYYkSWHVnkwvlyUK/xXEFewDRBTYfO1r3xVRUtDXAoYMeox7/8VpEX42KUX6VrjVw6IQgJ4ifcKT2HREoY+DDo9TxqUlPdBPtJ3edjDoi5VnC87KoyZjXzYw310W/s/l/53B0VMTuUjB5CgCLxmKufII0sJG+X8uDGGjeR+4Uk15yYBfetp+a7CSD97qxrBObF5noemeFW9X+LVUR1d4A423IrotSpYIMpLaRLLufCGkHwLDzZJU7mjBXpZcVEDE2m/MJjZVNFhz6tWNFPuL6ATRmgVS6XZ+MxJx6dNNl0RX81ncR9oQ8kbb2Uxrqgn30o77A+30ctXkMFRVDTlsCErDuF+gzlQdVg5BaQ6FKHfwfqB45LxIU6IL2+EPA7GfzCTXkAk9qkplSmbaH/zp0A3xR84gLw2ASNTxBnO0xLQasH0vAyRWPt6zH50laBV/yVcslODjPHJbYVI9UKEie2LFfEqkzbcvlPHzrHPDGQOnQCeRNd7UMOvl/6YaysbRIiwIC8fhwqFZFkHmfodCrqySc2U35Gff+YBDtGgm7fq3iRu6mFCWs1G0F4+uFoo28XSvPcFqjGQUcGDT3dk6/vATEMb3yGQ9DRY/AcDZV5NmFUI+RFepKzsjCRlCEFfV93A2fqT3uo3jA9FHSXWIPIHerFPpIIMNmwTH3VpY2AX5xuSos0lhjrh4SaPB20dS7RSzxDkVGVd0Oa2nGhgWHyzZjzUtP96rqnObaUxwPwBQ1ly2WgwiXWmCFqNMVw20zdrJJaSMwIJ08YTryIytJTtVnYuadEg+7bhCgRBkS4QyXmKt5M7TNiUAjzD3261xKr2ZirEQXjHv2K1l44+blR0A=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa063acc0-e589-ef32-1382-8f33b7922eb0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa063acc0-e589-ef32-1382-8f33b7922eb0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>q/ck7y6+dIlbxgwCmsctt/9wZjc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Chxpf/PEvpM7vItxWXXb8yItQ4WCnZJKNUif2uQMMBdbsFgdbzbGCjyOp3Wb0Ieew2vhFlY3kzvoNvRxnnuaGzuAjRomx8NfBkyj+WI4+G4+1eqUTyJpxBLeRFc7ZB5ck2I5OqMsCwaBKEAD/d1RLNoTqsp3vOGzBx1R3SzO1No=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>mSSqQLXnzJ3iKq5iT9gi2ZPxG+BqCXBtTQDZhbOqv5wHxSMfCrB7glIIgcG3fFbeJ32AOf5j5lPLNQtpuIr7V57rDxyzQlADMaC19sxMgqyqeaVjHcECF/GaGv5Ms/nyqhb7FFTChfVkREcM4eknYzkLM6vXzmRNEpUkEFCtjT0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>