Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxacaf6651-932b-6d39-248e-f3567aa33719" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxacaf6651-932b-6d39-248e-f3567aa33719"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jrvsdvozGbEbgRBNogN7OKpl5r0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>LJB2W7tdCYe/1vPzPrQJVMOBHth6OyvFHTYSIei2b1Wiuh6XQ9QJ8oFpx3Eshkq5864uoKjOcIaZvTOeyC/ysKtpTATAjC9bEUX/GZZMhAzKdfGS36kfVbeaejRBccxnAAb5ZSZ7G5/PKItZQ7j/o0lZbFjASL0elGgkAqaFI9A=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1bd8698d-a738-4215-d994-219b5b85976b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1bd8698d-a738-4215-d994-219b5b85976b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>H/80XdY5O6iWqkS/PxQ4uK8Mjrw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>NyxJ7BffCh3ryp8ZaV8FTG+gpUfITfP7WL7GDbexzvCSxtlkDh4oEF5Tle+3fZA6lSZPQ6B+cCnfSiEtILFUVvjmuJWL1j6fSWMShb48WSFqESqI3IgjaB0EHj4fxk9mScs5vBV/4HRn3qq3uKISxW3pzA8ErgQgr0fspoS+B/Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc0f687c7-b7d2-61c9-9cfc-e02240e88998" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc0f687c7-b7d2-61c9-9cfc-e02240e88998"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8PDkeX9XcLfDju34t048l8rsO74=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FCpDd5rXaiWwcddSqbJQs/lOZKr8NSvoe00HBI6o23FSh3zMcHkNljq8X7gB4dAkRvmnnpPTKGsuzbdiBbWGxE66TB6FcB4nyvmCO9eMAiqJoRtbmapJLVRZbC9SwzvQyYDnqnrh2g/hx2W2BOXjmQwc+8F5TZNrPzuL93FneOw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx99707605-96d8-f6d3-8c99-9b8a5e0581a7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx99707605-96d8-f6d3-8c99-9b8a5e0581a7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>MSoFesG2eCwTFH3pnfrmEneLUYE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>v0EndUiUb7AospN+VnPyWpuiKszV7F3K/tguZeknYBUsYJDsNqhy2uWsgfK+THFBeAJJLpk5iKxCoL5HiFfUlRvcqTltKTb8bo3I+8apoIcdlH72WIhUlRb73CU0QmUWBR+oUghTAkqTPGZ9svU9Aqa2333gGsNokZHdRcSXatI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>GT6uu0Ogy4NVD1x6NuHa8ud+HRJixtpXiVdAT+M7PhUlMmNK7Phq8LQZGSwYih8ZtSvaakV1WWN9LGcgAarXnnxg4eOvhU2Sj/bwkStY/9bUAvtKhkGI1aeHnriV3rcseF0p6cwWxlZH27OXZ8UzZQPQlCa99LRwGUz3vNoysJY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>RI3DLaz6lMtfAgU2JC+eoWqNFcf0yFJo2Nig1NWUHRJTu6hDV59z5qZ0e2uJHG53n8l4AFmB/U76e0GVQwhCPZ1PFjdp1ZrJ5ZLfFw+vBOERzJF7LPKcaSEUHLf2lifUKhaptwKr0Dy2+Jf8UJV6uh9jKp9suUyHtofrFAY+pMBbx40DIk5H3zfjkCN3I+mJXv4C95OizjsSJGClX+kuEd5atxykabAsIQlr2aIV1yM1d1YgCO/889dkUIyM6koFZJ+bw8Aq8ekcB4wjqkhTWpGG32ZypAX0ywhjmlqronARWhEDfSMU4evb63uS82tdTggaBKXTdyFrxv7pQhHdaR1cV0buzvWUtservqYFIU0ZpesCFAe5DX9NkYAbf+HhI0XLGfuIfZoG8KtpsBl2s/unE2Kuu9/cMBW/ZyyYWCwIJ77VqGAczcNA01yAX16M+4HriSy5ro0DFxhOtx0sRWNT4NqW2P6iLRxP/afiCYcWE+ESA+2PiAJ4Z51ssppeg2DkSum9EjvbrcVVPsd2UMvri4ynBy+lAf+bfOKL1qAEwhGWM3c6jFn06WvmhX0o/YjCIPSJdi9AEx2gC1hFw8Vj+AUOP6T5og5z27Sx6pHSDLOoQWd71mUmZ1keq7hMXW6HDir8PjGH0DCPH+N4GeYwP6u1CfVDQZ+ODl3IVQSQUj3UzRBovCQq84hYdE4uiytrCIuBOY7QnXzESMT/NYgrFw7y7JEngxJpNGk6ftwbHri+3Vn3oGgupiUvfAlx5bTODKJ+8wn4d5ePjX3z5JaF0ckPM1qGMH0zzyMByvBFXr2uT1KuEG4uDwGceqjC/H7mQQb5YECz+95QZHAUHmTWRcXE3wgkJkSeQRnp+zZ//vutVUpIResc/1Wn5jMOfpXnn7G7YzQCZ22CSBwZjfSElQtwVgGGKFUefMI0mGyAIOIOB67jA3xdO4S+ZOGuCPgYcYiSxaf+D9ps4Oj4hRJZlrGxt6C5RHUwsQ3/Rh5mueXY/hYuzIneU1t764cS2hFdbJiSP+t6oOKJThKD3PDe6p2iFC7D1sYgx9ubsYyUtpmt1MhbcA9cUk2GqnKXFbQekjUyqKXph/7GMJ8m0Q/EIKWv8AtQHifwCZsrAT73jbnyYZzyKgXdo7OVP8/CClPhTF8TDYwp13LbJxMF2l7pFSEp7GsfNR+g3z3mEvRs1ygYSIai+tJmsGFxLR1wW3lpSrTLU8QcTbJkaj6Ug9F684gwqtrJH2D5mAwPLlzHCYZBAFmxgpP83u1dvmVyf7g6LcZd26+hbDFAMRkpagy5hsol7mhOSvTmE1YLJkTmLT9GKXvgjX5Mh9MuELTfPtxF/Vl6SDJTpeIiInM+xkNTAnP9tSWlDi4jKGwgFXOo31eTCaBmsmJhQmOuvW1KY8+GUPfWmDrMZn8QVu3I5eKRN0T28NmQwhOHAU0j0HN4qafrhYF7GW+L3JSqWnohd2Ofvz7iCFH5oHapWMkLE83/PTP+860s0gWJUIiq3y7Eaj+7b/U9xa3+B01vkiGdtvbqiLjhPaTog9kNB+5hLNCF1J1A78BMtjMW3vXKFw5/ynlAkhyiEVoi3k4JPzuMyl1I5m4r8BKWdUoFWNWyDbWcLBrmRknizIFUNdAJjEctD3TpcJBIsNltKZgF8fmQmnd5ERASiptx1URK1jqLgLygFcr9/SNzYp+GHUKRvc/BuA1ylBPmgPfSRSudYzvZSs09ygj7X25EzSGSp/EOEKowDMFlH4t57o5UFMghI1XGE39mctnnANfLptsZkax9ll7OnzX9bjrszrsMHNQTGtkVx7d+3XllFxkORE4Ui/j3j3yEHM0ONqPLd50BnAwE5EGwv4RFgeSHWA0JBndlm+o8XTNlmI79lvhb++OUgUpNInPB8oUbBSGifgNP14NoUPkdqz4niBRVMZCosmyA173FYCNAeW83IJfsieI01GV5XwgZ8aU9vuHpHXQIYDjrKCrlY+40JF/wpR58mDLZ6+YASe7FLeqZoUkbgw02DRSQBXknII54Sd5Fl6AAi9PlOAvPtp+KkN66XZ3TUbUH13UT7jyFndriSe/KbbysOCcXCXi6kitZ6IKEoRSjQLi5J3ppNG24wtStNgCC6LCf3xyRcF1Te26MDXpdlqpYvAJbB2nzOX1fFzVryaa+sse/5XGrmTkUwQaaRcmgzZXWtFr+lw/nLcILpgnCfh46FhzmEp5j1iZ0PiFGXOomhM3/72Ibbi7Cm3JkDjVNhUtlgNDov/GuqIW180gxz5JD78Pyi+HFO3JUvLRfiGrqnNziIi9bxBq7iLESGjJdBx9vc7GSgY9+OXYQ1Dfa2+UHAhb5jukifSSLwD3K7lTzmjAVCuNGuETeW/ILI8m/4qnZ4F40E8+ljAm0PBYSlaBnOscRQ+sZ1hzPN5NcfgxcWCPqQ0WV2E2gWJQXgg3c0/YmBA6WpZMWFyVLxUsztCMtz2g0zMJxe0wtkJcnaXUY4lgxz+CLWUPJQhiV4D4msTWhzaI6lHqDZM+dgmBXx6AL5r2kgtt4NTJpTCnSKTiXjjU4PZIxYGKPFOxx4f4D7YPJg7Mh2ySZEKNmw7sLuv92ftB+3v9uqNVIE8H1cOMwR0w78d1TySf8fqsDmoADDUeUKgyZNnGxDZhchsaaHE3NwQuRx7GkwZEsiaxhxL/eg3pkjBmcpyM7z71OanqIByqZZEO44VZC/RSUwAnPyaVxofbCzjVkjb8keP0Lz0DKzQfPTCAI3to6+plV52VJr39/Bf4s+ukhcpAv571zUd38wGvVh9cN5G80b390FT+mQz05H8ou8iyAmBmB3QevGJnr3hacm2PTXgLvV0BOi1SjLOt2SBgmTcJV8TpoJOnbV0Q+kMBPKeLHp+a1m/fyH3PHAgIIDPmkWtmqg2188T9ZSCM=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oQBiNbNLj1/S8wn1RKNfME61aU9cMzg5tF8cRoVxBoNrK2YVbljctYbQsFIhxlRQgmIRM3mEAtP4g/fZ9aw1VrG4Vo2Rk0iS3DrqamGtIQhLODusu8lM4expj5XLKHxHQKvJO+/qTF04Z3xbF/F801WBpBB93I6Dk/xGq6h/F6g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8304198f-977c-eb5e-ab07-febb950eba26" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8304198f-977c-eb5e-ab07-febb950eba26"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>E1OnMOw5DgC8JpH9TVVaBay1uW0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GPHTGhE6r9G3pMZNqwkD72XAZoTSUqdLF+8NDLdQgisDXeWhuo+lKHew8IJJbpNckS3a7Ni+D/L9mQq8DQ8+DJiI5nA8t6AKE9vryI5fcvNJaN78bZxjde9pnXcWtOvpUqTyIg+Dv29gFqZ4TZvx0fCd3y1Cd3sp0AQJ5M52oiM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>GT6uu0Ogy4NVD1x6NuHa8ud+HRJixtpXiVdAT+M7PhUlMmNK7Phq8LQZGSwYih8ZtSvaakV1WWN9LGcgAarXnnxg4eOvhU2Sj/bwkStY/9bUAvtKhkGI1aeHnriV3rcseF0p6cwWxlZH27OXZ8UzZQPQlCa99LRwGUz3vNoysJY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx713b7f54-32a6-38aa-d6b6-9d1f90966a67" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx713b7f54-32a6-38aa-d6b6-9d1f90966a67"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yiKMIw29hd5gh+fDhF7Tf5iB34o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YJpwY/tZ+Y7emg1mL5Bem1GXvZx/m6ePc8jbGMTM4WMMgPAkEfYTGLKhS2RJR7DBEKZL9vPZ79ofu1ahtxoJjgNC8mEMJUU1VQLHvM6FscUN7h9xLkF9kmXrNz90TB/rPK7/cuoSa6DmSQVQrATiITc08vupha5VOKuE2x52frI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oQBiNbNLj1/S8wn1RKNfME61aU9cMzg5tF8cRoVxBoNrK2YVbljctYbQsFIhxlRQgmIRM3mEAtP4g/fZ9aw1VrG4Vo2Rk0iS3DrqamGtIQhLODusu8lM4expj5XLKHxHQKvJO+/qTF04Z3xbF/F801WBpBB93I6Dk/xGq6h/F6g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>