Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx2bb1854c-aebb-0807-d224-ddfa446f0a60" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2bb1854c-aebb-0807-d224-ddfa446f0a60"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>qis6LYaHsr1pFPJKlkPIE6y4uEE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>o4DUsfQ8OpVNfCKc78GwpdcS9RbodLz0oMS1kWhK16/BymKXQu0jtZK8K37XRNLgIp+AC7fdIMqsq0LKeUU1sef2ybBbH2yNN22PoNmYSnfuuwTf/FRJlAnwiTbm9eRM6y+WbQ0Iyt+5VSGmvr52yM7twxVBVD0y4KDUjt/QvP8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3edc1ed8-b10b-bfeb-bc37-17bf48ee8772" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3edc1ed8-b10b-bfeb-bc37-17bf48ee8772"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8Gt9/Q5gQUVUhh/sUEkOiLbmzAc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tiykazIAJX5lL7puemNpkPAXDU/gP59v9OIrKxbwlF1ODe++cIBQK6fm/QWbVZaxRFt0x436tOdtbrCeJlfXVsMErVyA5Vzry5pWpxhE7MNo1rZyTvn2pgsfRHZqvHsuvbUHa6UwNAxOatA+98+uiAwulszlDnbDEJnLJNIlOTE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe5b8ff79-1bb1-853c-eea3-8b274ba249ef" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe5b8ff79-1bb1-853c-eea3-8b274ba249ef"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ews+hMeO0EjlzPNi775HMZcTYUo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pwws5jQq9y/gT+FUUzj/MOw1BSHJ/rSjnYxbkVjbbZvox5euR++TUJNFDiMlRxqIDur1sPyU0gdWRFrwx0gYgSfUYAdSYrLdHYKlVtkIfqs5UFw52RZqRLryGaRhNZgLkgP1F0poC7O+dqYDV48KgBolP8IhzqBmkJBrn2x72vk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1d8f0fe5-49c4-5637-cc09-b723954d1434" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1d8f0fe5-49c4-5637-cc09-b723954d1434"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Va6QjE+FG09opPwaV/oKH3w3/KM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qLMfabdgV0UWH02d2PXfhE8vGOsr1QEix0mbVB1kQR5Ny040p2mBp6y1y1qZLE5kkLzivAZA5NMIITMLojm259pT53cFQHUY5vALqmCbPw2niB8MP8CD+K4snlMXMyK+DJ6+x6UBqiiICGh6NuOWruydaFcmNsp4FxMeT0wLpW0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>0i5MU1Y+3GAnhJGyBAuqTTWsGojX+zdLSECOX2uxlfvwDZL9TlgVzVgvgAUYryEoo0ytf2DDdAKjaT5gt/bAqIpQk2zY9sngZAD/5sqOi2xqnYTW5M3jklW+cYlCL2pumbuhuSqbVJQ9WwRPrA1fPB0tBc1P0kZ5gG0zf55rQCw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>qleU3Fa05Wg6JTlcb8eMuOLWCdAVgrr7rv738mARGEBAUpkdPbj8v9pxmh9dmsJAqzEQP9ZpqXxnDErlHVboSehi+nC1Xuwr3K7/yoZg6QoMIJ2jApD+eY0v6B0lOFPpa1aGBeV73B+Cv22OWhpzrFDq0CwXAJczDj3eUBVD0mrOmxXNBIOyXpdV8AfmS9ZsgEGCQH/+qMO8YiTXM692L2C4nH0lffvYndMPLCHtL+6EJ6EA4zC2bT8LIcMVLbRNMCvH/eQJMXE9UxHqDtkhO2jMyNnkhrO7V4Ov4hhKTZEZv1qNG3kQ2FijQd2AkDMVUWXWn/iR3KD1baow/O5peN8cC9HZ+fAEk5Nq1ObfVxjsgx+N9NrhaA0jZQ4vf1428Pz2VA+mkJfKpiL0GhFnEeon1i2Zu5VSUYOUisC6qJlE+odCdHdy/LQAdvSBKzaF94h8V7A72lGkC+qvzfXZwJxp+9ySL0IPNqM9bgqGcwamhMz/5KPDOZ4Qpr0R93+xTwsiLY45B8IuwMoMn6muBvaM7FdzZmZj4+pT6h6C8nMoCVIw3WpeDyaG6m/mmgVaxMGvNeQP4RS4yzUwu8rXHLl/0GvDRVlgCbvGcPQECBpSg86mkE1Rs1lnlnDaPrK+vzS91DJMXV5a9Ri/OJ/gYOhu4gbXXUKaYohgnTz9bUThYwjuNvCcNbzwgU+unxM9XLOCZF4Ua5wyIKU7yK58CvtJLnmmradJ+7yxUv2359cTSGN0XuiRDJKrvqetqXoAWaE7hsJVvYSu/pMYOAapQvfWYHj4TQuhsnn2jdcNXLPBDZ2ie+jriLA7Xm/yuA2lEFwsgpOERxWRtUfYPEHXHfyzMvDvf8hivkvOvMHCaewEp1bIEEeeG4Exwpm3IvCGSGhpio6no/15mEjxZmbls5tqjsvrPM0X3EOia/gIQjJ9G+cpZ8/uNHNZf1u4d+OA2cmIZoKI/E+1deTzvUvvq0fXrETpMSYtuTnlLiJ35bgXjVVETMytjOYuWWQejVxwAqRCfHagnp2Ci02RhLsXEWSBjHjmacICruLN/2JoSkjVzTYyvzBGErEZqTy+lPFPZzwkwC50EY31TUPhNkoVu65mMTbu++vRliY8ADVgJTxKEC/eGWukEgF2qZZTxRdYHremYrw9b0uEJq0klbS/s3h5P5kbrIaTq2AHniKlKYQ2+Cn6OzwxSZHJc7WIXhG//d6ccl0QbEkX+zHhQxBtJSY3dIiwNC68fNTB2ybWC8Dj3F95S9va14pwNo1mnJ3lrJH8HJEEQfCbotHydZ4etspXRu/W7C2iDNU15fuRBv8mr1qF1uLOn4py9QBBVTmcswrNw03Mq1QuSABIIX+pwxlp8pfD7wI1RUoDeLQuRsoDtXj0F/iwHdBa3Ws/dGixk1F9YTY1hbuNyNBxpyxPkiqugjA7GOA8DFPaA7+dqT6MuRzNZfXLDBJoGaXpBtCKiVLcmW41tGumBmCShHJoJynYk3kGKnfBUH54M7HDM1+iY5sS2Ry4upvC0aTPyIFUG+L9OGsigr+4ax5fqi15AqW5LtbDFbGSB8t+uABeTMOUG31t1VZSz7rl/kvy9ftXgDPJCRxDpTrRDK8RNsZSXbtF38aaU3PNy6cytEYaQuE/0XU/pYFONDVxAnkhSjVhyhEBDlevcbJ1JvVaXbvmjQzRRnAy7VFwojZX+j8WF2RBvoKsQLvkqgM+l3P7IInMKetmOsXIbG+U16k3HyIMOII0tG3hlckcdfetaBNtEeqHp4RY9HDBjYz1CPOrtnLbWsWMy8dPqVlfNuWPEKQUsjFBEWpjkFT0j0bAmG3YQGNRV9jEOUYe3jICk+YuRCO5tm5RgP+AGtMPafhu4rmoC7oFgLDOqTBttvofR4u0extTvRXdDEHMnYTINnRWWqkR2eDEUD1f6H9itkur+4NU4CRw9myV8iNFaBMclOkr2zlcD/8Y6QIBzQoxtJbM5GTMpiMUoRwr3cV2YAlEATryR/XTAAQpj10ymTV/tHGSU/khoSkbINrx7N66Dd5fwA5ffg44RwlOUesm9UjLErZMRjbK4tYCgCFtQynolH14ejwX8/6yVBAn9LZcNCmzK65kwxH/PifzRyiMOIeHZdYOlTCnQV+9sjzvEtZch+oD5OMQqRaElnI+JA0U7XQjo1AFR5WAnufpU369qA8+4TfOX/+GXkidE1tTTh/7EFsyJubTliuXpGtnFws18igZaxR4B0Yuie9nf4sHxm7G6v8WZpKWl0F9kpItUL3bT8jVSwqkKEbPW34kZh+0GzM4WLSAR+/g2BPdCkiqtTBc6Du33Eufp8ljvEzYdaHeAF0tEhQ07MVddyO0IP2BIQ/rtXPoWtaPoLuV/NDYI0F1ltPkGACTeI1CRYIuxrChyyi6Por9U/J3q4oiebPxETYAYoCXCu+xGwdTBsd3dAet5IgwC4o+KCvf3knGIQIlgt9o8Hm7y4BpH0ByjrbAfRJi7n19BExKJDzMgbPCTEgaJlEg34fqpdjHvgEFXLwGsPMJj2eUgyrFGIFUzsK1Pi85X1/zDl0eCMYUoimAnnUdzjz1lpW1smuKi5EYwwYN+P/6FsLiv2h6+MvzuwvEErzAgSn96iOnyt34W4fEJGxZiUQh54CHvhp/B+1zEBhZYgzFSAWJKBSx5eEUJSkva2lRbzfaCJMS9QMNSxxkgz8xk5csiDKR0VCQUpcdVL8VLT1DMtRhr1VGd7kzjDfXRpzl9JRAh9ADhSlKcOmQ1cLxnIXG2VOJ7yLMJzz8q+AIkDrMsl20BgXpgnCnyM42BfCrh16vAY2wbJ3PvAJ4OOW8RimefwTTCa4vIFIMYEmqbkc2mU+++0VwEOs6J6avrFR0oVugGOoYdS7hHKdsAvwKl6RMxOA1HTzGEWMAM8DNcpzeciw=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>o7TbSBuiWGjYaf5BdV7DGyjHvXnUlG2m7n5T32O73HwLEMgojSFZzn3TQ9/YEDy5A9ckZ4EZO4a9sM9IB15NHeLdDmSL4If4yxwHueNHyfDKhyLMAkXHP7+UzTdEHficoIYfpHYkFBe1y/OkfgFNfabpTIQzUikgalnGMeVLYS0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0d3ed992-da25-d331-dfff-9fc2e33d5428" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0d3ed992-da25-d331-dfff-9fc2e33d5428"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tv4D8fyhAyvDAlx31ab/AHT2DmM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ZIJ0Fc/Fz39JU9AssqdkodvNFIXBsSCJF5FxJvFmnK+9aU+pVAEdU3mwRPH/AY+DknwvESxGI2wgJ7VvA+pm9BkvSf0wtyc7qSjcJGlcPVdRj/QfEK+8kN8FKWpr0Lf1vf8y5zFKYlZTZQUh+GS36lHl+ZDtGV8wYKhXztnr1us=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>0i5MU1Y+3GAnhJGyBAuqTTWsGojX+zdLSECOX2uxlfvwDZL9TlgVzVgvgAUYryEoo0ytf2DDdAKjaT5gt/bAqIpQk2zY9sngZAD/5sqOi2xqnYTW5M3jklW+cYlCL2pumbuhuSqbVJQ9WwRPrA1fPB0tBc1P0kZ5gG0zf55rQCw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxbb4e8a72-b850-aaca-0338-67cb594d216e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbb4e8a72-b850-aaca-0338-67cb594d216e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DWBh16ib8IegLmT+XyBS6anf3lY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Hk+c16STqdY2VsdYOS5mTSVyHox/JtYsFUI9wF4mFrmyR1GW+ira5NABRYxKoP+j6sgE/zxgfQkofktwUoz/Wn1S8cXq8JrM/fPgniZE2ezc5dw7ewp+Ye5LjDWXy361nR3jqr4xceaXyv7zsOTavlDoTvHar2n0XRHptnR+LiE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>o7TbSBuiWGjYaf5BdV7DGyjHvXnUlG2m7n5T32O73HwLEMgojSFZzn3TQ9/YEDy5A9ckZ4EZO4a9sM9IB15NHeLdDmSL4If4yxwHueNHyfDKhyLMAkXHP7+UzTdEHficoIYfpHYkFBe1y/OkfgFNfabpTIQzUikgalnGMeVLYS0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>