Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxb1e85f4c-ac5d-ec0c-30f4-078c62ec4af5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb1e85f4c-ac5d-ec0c-30f4-078c62ec4af5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lFDnrPTz7oAZM9+h4C+fxmE0Xb0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>HgdMoGN2gG5vCOcwwZA/IzpH1ANA10ftg2RLyRBKzQoTFjr74GmIg95bsJjei5Y2P/2Z8I28jHPXfXwjLHCqW8+S8FHBrw6lhipTLOeHxwjX01ArSxrbYYHrE/yHy1Y3pkX98IqYhHkYZ/SfMpO3CaRGXBQWHL+wcgJQ5iuxaFA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx85e5fc1b-0337-94e0-1bbd-f55c818392e8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx85e5fc1b-0337-94e0-1bbd-f55c818392e8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>rBPNAHRLoaF0YG68vI5yftug7bM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>R2ETHj0MMZ+1FhRsv+Ye8Y2bppRJAmAcpqL2ec5EmydBUczluEBzk6O55TXUgcXmHfMJSxukJD3dnKMfns25JqlFTsYTsvvYMrU/nUxf6C93F2KNufsbccWWPHmdd1kjMSq1NtjXaFH+oA0z9QJNI6REg0q10wXRtNzOXXY8dpU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx86b7274e-81ec-ecfa-b039-f541d8a561b0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx86b7274e-81ec-ecfa-b039-f541d8a561b0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QI82AqGHtmR92eF3hszxV2fm4wM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>EXqLuf3/KMSevNCQg2eBLB6wZIi5qYvM8lqJNPsUAOXafXc53Ikqztpsb+muUCctM2CBvIkV6p/m+aAE/JoHfwDbrLfa5fxXhBlAGD30ZogyiP3wZjG2mgWDr0RSzvPnWVUDlj9CGPwvytem6TSemJEAILn1jCdh4DN3WB4O8Ek=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxcecd23e3-e757-0e21-06a6-0690e8601ade" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcecd23e3-e757-0e21-06a6-0690e8601ade"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>S4WIMMmQGul+ZTBjiEeLp+hWhNM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>V1tuCzHgv5k23jzTQ8Xu7kAy1ax89cXNRGRj7Evu6p1V0pH9Y8tewfoz812gEBZPigJLF4qdC/q/SzmWKdyQbgQVtTUIIDcJFYy+uGEbner8VdjlkP1Pwwei7kYSodduoo9AcqA9oU41upyqNaUiQPzyTAKVSDWNvrvXuMdwR5Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yEKdxmr0uRmJ5EFRwnhoSfBiQNi74KoVCpvWtZhpG0QbdMc3vw0KgANk75bFHTcTwd38hh/oUgo1R+XlFtMZj4u6J6ehGR5gXMuDx5FM2AJKX5SYpBeW+EiDa4fYsMo19SiZpO96ahSzelVsof2CIUUp+/QE0rKOP04vfRYsziw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>0h0T42i22LhGS4XUcvEQ+7WzIKpLFADPIsoDIrkYL9kDLQgkx7jEJ0xYeuofbSZcjY2Y7rPW+zddAb5QfARvDVSz7HskE6VxfSfpCJHoMqKsljuDD7mryTW+YBciIPl5mO/+h4RmccQXZig70K1bkNoO2qiZE4nisWIMyuLiesY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx08bbed6d-9b19-a2b7-b5d9-cdf0639e5739" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx08bbed6d-9b19-a2b7-b5d9-cdf0639e5739"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WGDL9Sn/w83DPSbPOM9MNMHMWcw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>2asfQvDJdRW9afs+BYOzYwWesREzn11bpeDusRQxHkxfnEt1LWJeLZmZDN2pUTK7f8r+UzOXRvDevRhIMF9XKu7B9Nm9aMqRf01i2cfEjJCCq6uqb466qQqSNgsL5tmUNNxEDl/iQhUBTKepWUrQn3Otey06LEEizQIqlAU6ffM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yEKdxmr0uRmJ5EFRwnhoSfBiQNi74KoVCpvWtZhpG0QbdMc3vw0KgANk75bFHTcTwd38hh/oUgo1R+XlFtMZj4u6J6ehGR5gXMuDx5FM2AJKX5SYpBeW+EiDa4fYsMo19SiZpO96ahSzelVsof2CIUUp+/QE0rKOP04vfRYsziw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx94b2c6a8-c0eb-7192-031d-812650e4f260" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx94b2c6a8-c0eb-7192-031d-812650e4f260"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Js9vV9gKKUKYWs4VSN79Tedhwt4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jUJKjfrBRqnjYOHkqiiKgEaHLptTlCg+KvSuH6zqZviy/KNMFnR1J/5X4YaYGfqOU+dhuHm3YQD2xoEb3nPhRKSxRvaFJCvKBqhzpsEkCjoAomKErJquff9x7SdmsKJyiQOoKzCFkZWekNy48b7gR90Z7cuId70rIoFly4vHIXE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>0h0T42i22LhGS4XUcvEQ+7WzIKpLFADPIsoDIrkYL9kDLQgkx7jEJ0xYeuofbSZcjY2Y7rPW+zddAb5QfARvDVSz7HskE6VxfSfpCJHoMqKsljuDD7mryTW+YBciIPl5mO/+h4RmccQXZig70K1bkNoO2qiZE4nisWIMyuLiesY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>