Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxc920a58d-4f44-7829-683f-93c7f9f55774" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc920a58d-4f44-7829-683f-93c7f9f55774"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4xBt6wYM/Z5s9Op9PYEwE3Ug5g0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Z8xF4Bj003YioeXLFcsn0PqpiSsG109RRMwvMKZ0HxQM45V5YHAKffuKBK3ZK1asjGhQGY5wLIl8DLLDAKLJqkQvzwkyN5T9/ZKm2d8a/IrOBNmdmylYXSCiPN4TXjE37c6oHThleIvXyw6hJX6LQcI33xh9WY17UDa0shaezAs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa257f236-4d07-e9ca-6719-b479d9895c15" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa257f236-4d07-e9ca-6719-b479d9895c15"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Jf65ma2WaGcal+fPIWpma905yzw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vxtHj/4NFxHJBDxgO1Orlj/BOipLrWNVJ3xE0pVdebd9Rux4Ui1DfS7hUp+FNk3n5WcDhsG/oMXSe/4q5yp7kYSA6uo4GDpijIGhQWr3H5qPxwoJXAM0wgVzT9zYhvrXiHZ9DsgCWE6Oox2ygsWTOPdLU6jN1pZb5l4gK+zi8wc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa4c7be47-bfe3-62e6-3f53-b436e1fc15d4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa4c7be47-bfe3-62e6-3f53-b436e1fc15d4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LyOdd6Kr8IK6FmytqqJimr4bAwg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>PvPJo+0ZKivgFu/z+G+rS8e6w6RmuYavxzGD2Rt6Bx5dwwGK2Ueny9V05jzsQL3mWiGaBtUg62oICVjdRMs3+qsoTAiHH3TzIJMp//ciQk7OZ2LYxq9ZL4XQ1FBDITYMXo7BPyp5prBL134I+m3ef84gAY0HYKktpGF2ObcdkD8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx3551bed5-b148-15c9-8b46-fe401978b98a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3551bed5-b148-15c9-8b46-fe401978b98a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+iNai2x+/cN0RKgRqmDNty8KLf0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WM/oqx38lGxFqYK/r9xYudbQ0Lu7XXxyDtpTZge/fadV9GQzSodZcimMj70R+Q48yY5zZiqTXDGaWdmqX4Y4ZiK752njJOt7HFMMRuB1BoDtIZQO5hYNszgdfCUSppeepGKYYdpZ+1clLoSopBOhoMqD1QErmXr37K7obz9m/Hc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UrADX6A4GxhLU5bi8J9Z6sCs3+RFsOrfjF5Rs4XeEwjtN7eyWcl40SrLwoxmlJ0UMR316FZiVoMmMi0ByZ1kFxmFL1uThgq1tsKT+e+BHCV1ri8qpbiCw9260nYPz2KrxmObkEK0jhY6oxcgYA5qmnxE1LvKpPCa6JmPqlYg+mw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xIToO0RRmaHOdG1m1yyzpvw/Gp/Objdc/dr4efZ/6p4QrLCkm5mn01T1NZz7pz43dV1UrtGRztL/ARM1/Q050e3OjMx9NQl0Wn5B8oPuM3Eet9CVDjvwWfhM5VLlaL/+KCimXEav2hqn5U5XiNBul/B4ikYgaxu4tr4RaTsJvYM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx78d1c2f5-d597-250c-9c83-e0b4445d14b1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx78d1c2f5-d597-250c-9c83-e0b4445d14b1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>hw344j3TOvz1S21ocDVmgU/HsmI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IUVjBG3PhPb/qaLbUe3qQs5y7GcBFFkaovbTR33FHgyHbryRWYEEkJXK4mOPZPizbzVyZT/1Dja/WUQf818gX8+y5q6PHvXpuNU3oYEJBka6cgZqem3pfV4ZPQNiHtGrnn2hxUqjvI+cwaP8V6abj1gGtnWXivl46NK6f9IsOaA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UrADX6A4GxhLU5bi8J9Z6sCs3+RFsOrfjF5Rs4XeEwjtN7eyWcl40SrLwoxmlJ0UMR316FZiVoMmMi0ByZ1kFxmFL1uThgq1tsKT+e+BHCV1ri8qpbiCw9260nYPz2KrxmObkEK0jhY6oxcgYA5qmnxE1LvKpPCa6JmPqlYg+mw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>98RzaGuHEsm/fkC1wyMRvLGsXA0tOxnWz1HOO8n0AnbwMDw67jVYE6dUhmlHdW47auhRf+lFxSoZILdJaAS2VQ+S2fKVCq9r4mi93fToTtHWw5GCySGpRZYkq3eSeal0G58/qzdvthtWcTc7LJVn0jioLSTCotFleKgfiQeC5a9bZav1BQOGdDdZoH/iWar84WvZA2JNc3pjPyxSlqbRBa2vh4i9GB2qoxXNujMQmzOTgMyxmsS3lqdulzBf16H7toZu26LrPk3f8u7E4g9GsFwu8QnuCmm2dZlF0wk1mRnzkBGV5bjj0i4cxOxSe612KzJ2RHaPPwzauX8iuJS6h4b4STN3YaoXvxNY1HrA5OXbu9aMDL5uK3ZtQANxtoIQYY2AbkjDmTTrkxQyVjL0mMpAtnqxjz8EjmSRMZxqbkmK8lPX6d4oqJaMZK8JXOWJuIhwoY5alb/xAtZC3jqzTaoXEO3UJqSlE/pOpiMfgAzu8tct/46ikf6fun/Zn60EgeaasiBqkXy22Id91GeEqwUlGCddigZA34JPyeJtb4fkb+abahK10vgoXH9V9qopVsuIEKgzQuD1UWR8JOJRak+WkY5s8xYhl0V0S6eJfUqS+F+aRMngALZz/Fmr2zYvHjQG/65QpGLCkD9Z2u5toRDqAec+MjJVi+ImlyPWyZCbFE+aIs57JP2Qylh+8IM5Idzsf9IXBpw0LULlGwfRazz2aLzIN2mHnID4xIaQf1sT9ILIiurt/dUZ565IIqBW1JJD1tkCO4WrBV4P596kyYdBcH/qKXNVAwEFJ9Yp75SXmHty1IXDUgooVgGc+0VVwF0zYBBosB9fjJ7N+z015t5+688TWe4ZBKgo/dFh8llEVpgrdp7+XxUAY08V4AwcWkN9hovBHdm8Nj2b/3VmvKWbiH89wntGJ5Dq8hxmYEsqsmUYdE1ub2OJ0XmnKTImYNGyEra/kZzjlmEfmVSoG/Mdp5GgwNpVxUUWmY3OWuexG7kVxoUxm4v+cIkKLdvL3ShTe8k+1ndsEh44hJQTNcMOksHl01t+JsuK1EoiJb/83NVyAw/gqvD+GmHqFd/vu3fgmvtK51T5JMttk+1DEn6g7Co+aaEbt/4XiJArrmehLrzT2XEyhJF7jYob9AtzdiNlxrS3dgjxcF5jPrE9Z9WyGSW+h7UlOssU4gACMYnJk965gjzHYrtsDH3JI6ZKDojJDPFJUZRj//pM2nIBLh/637oLHe77CmGH1AKfxEQ/oNYdSDEAqlrLAerx5m8NXIQ9cTASyGZU1USKlFslsRYNcz+54dXwkK1xSk+xBJqdR3L0CZgksYUKOGtV4CM0xtdmSS4d9TxX/9xPXr5e3bxWvrfVOvuJcKgJsH8uDCWtdZyE9JGb8gnHQQpNeHkEyjXUaYtzyQ++mp00/lqLoO4qasUuE4tgAbXPcUkhCUnSLQiKiex3aopntPjZoZ4EuVS2bVBmrWiRBrrrw0maHut3R+voxQo+khcireOr6njWjde7iyZtZLGKDb+p9hNT4kN4EZW3HviFgMvPAxybpbjP9ZXn7JSq+obnYWUac1Koamo6b25qQGNMSYyicp4W7bmJMnPvCSMk2+4NXNE8JifjuIYFP2WONZz+RyojM63eXVZh49ucRhQU63tv4Xfh1aeUqQVj3tKeXbe2oiNcUghwxKBnKRlNA2JbZcKl7IHEU67qMU4X8uUNCJH+hlojmQ311yY+fwZlm73TAiYZgLwx5FrfiwUDE0Fl+j3MI+dfHHcfs8+pz062TtdG303C1a0GDFoRGGyUSPdIwEKzaqd72TIS+EW2T7ZXLE8J1L0IqTviWbg41fcylDa9BlXq7qZwq0kDotrQagw2IJiqw8EcUailHOUotRTIgGC9WVMwmNGHGfFConaEV4h6Q1r6P9Fsch6npDVzW+glBNsZpX5qleEmBGi0AQLj9a9A+NYpiN9+wKwPuJcG7ADRwpuHK0kP1zayu/akDyGe6IyMpIZoaR24zXv6NkXq1UDP+JPt5/Didh5rb4o3F/rvkm5RnQtZjzFfVG6giI7OT5kORYqLM2TNjETgmZ/ppqBxFto5vIt5WoDOFvLucrSjKHtFKulTcpaiMNeFf2KFI36ynN4mRGiXObyq2baV3KstOK6+QySOcEXo6MAZNg15NLdiAhPnURCEARez97NGeVo6Kp35xMYvVHRAn80XZeTazyYHwVnLPYQHz7aoG6IvJuSNGS/7Qoo8qHpJKIM5L85eK1etOh14OsrK+dJRLR8IzMi914ne+A8Y4VlzRqmY7XG9AWbGK70YrqLOpiZcEyBydMYio12wF5yi+JZSiQjCHH6tLwJ+RTP/6RiUcvit2MGdbmWcZ5QE5iYo1c3xgPswHKHwNrGHHouO5Z2uxFMkWx37nZ4vQbpduOsO2MvcwEjwuCacMms/kQC2CCQV9uVU2zilhQICi0mNArZoWTbzmFNzHVFalVgLO68f/0jqTSA5DfjHTEYvQFSfBXHYfA+Fcj8Lzf55a8cY8vjiKtWQskhyLl9QqvjcDKL+TSmMCmgl6u05RQaMbO818RBKUWJ1ui9pBWlblm6NVLcX2VY9vhYqd3GCZZ4d7yCP3MyGf+yZEDMtDAW65NupE1kyB7aRLkuIa5gzymahXtpL2/PUxcquX/J/KNswzCTJcH1JSQrwHQGPLOE+eeNM+pxBluEc7X81yrYWgZr+BR6jy7ib8s+incJkEcgtF/s/qFmrER/X9oQtLr1IRmLwwPmcac8cto/iOfRz6lnwvUOHHJ5vNT6uGX5XuPTcjTx4o6jua6gEZ0zhS7yPQYQZ+XWupJia0qIACwFSV3oP2CV2nn2hZFDG1naG/9OsvDmnbeddG0nc435aub8C1dIdnqQ6DnvLTgYXBtm/sEpllTVa4UFr8uk=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3a4e86d9-06aa-96b3-63af-ceff1da94a8e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3a4e86d9-06aa-96b3-63af-ceff1da94a8e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>BnJAGtHguR+lMa00qDjRwZtIC3U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>G+ZTJrGg8k080aC0q7r2n2JFoG7DDpdQojTSU+6puVBjiIkiBB4mkx4vPeWdpxuaR0RfqO1zNa+cgaksE2C0bFtRtRE0SrgLROML48rJ0rKEhYzNQCxKaD4UqGo6cigDOZxoRpECf0POkKyx1gsvS3fFTrBShw3fPt814QE6dJ0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xIToO0RRmaHOdG1m1yyzpvw/Gp/Objdc/dr4efZ/6p4QrLCkm5mn01T1NZz7pz43dV1UrtGRztL/ARM1/Q050e3OjMx9NQl0Wn5B8oPuM3Eet9CVDjvwWfhM5VLlaL/+KCimXEav2hqn5U5XiNBul/B4ikYgaxu4tr4RaTsJvYM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>