Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx958aeeea-7ef1-6ce9-1db6-e02a37822d6a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx958aeeea-7ef1-6ce9-1db6-e02a37822d6a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+ot98c8kK7AMfxMBbqmWqCFHzPg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hyriz1BMjKSf6A/SDYW8j0OlG+FE20lb4l9FnA02kxS1xwnijdG1GRjqn2S8iLSI5mfDjlCkDwhrjUh2JzXZGBsLnqDOqUKeJ54x0j1CH00tEDrRZhUy+2x53YleNTY/9wvKZrqs49f5WrzzUSXi4JcW25AKTMELjThoH72nx2M=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx49d1b3f6-c17f-7de3-08ba-5c3b79be9232" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx49d1b3f6-c17f-7de3-08ba-5c3b79be9232"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>OKretkPvACIkphMbWWrUL7SwYNw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>a99bVQd58EFTBGe6u9taywvFIDdmZFxpQ7v2a5F8fUVArvDF940pACNtJ5YPGOoVZYUovYOZBGvC6BARFIjeXLg9b9RjSy6v5HiJ0McGmGslWbPKy9lG6uYIxwt9WpZrPNBTxAfYJpV32LujSRJb64qCCae5IR5A92oiRqlYRPQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx99d6c886-aa72-c406-3f01-438ded69ce8d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx99d6c886-aa72-c406-3f01-438ded69ce8d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ZIrftTjp6yYQLySR7UiWeiG6/6I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iTqsQm4JIvQkLEvIOQwhqcNq+Znj9Cc4rCxlle58D8BaaIUlLarusOk7NHkPVjBuRnKf0S9RMqonGbn2AREeVQ0wPlKUBawF+H0gPKg5qpwtydyrFiUaaVQ3xnBgF7qzMYcyoYgCIiScl65V8TsXXN77AHzykI8xujarxx8sBFA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx8c8e26b8-2d07-5b41-d494-be09033d0fe0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8c8e26b8-2d07-5b41-d494-be09033d0fe0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4Tg96ef0f+KHwjrhFsEw9eoviFU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dG3NpCPdZgeZ1kCQnXDEwnFDNbzjXWmZAL4ydY9wP2vK27NMSsMSXuWcgke1uE0X2yhHAboffq+mu58QZahDiFAdGaTe1zmuhMNnRZNUwSWeeZQ20btXWmlAvyUOPwR0USfsWFf+j0ggQDZY5zL/A22dQCHdMObC3NEFOh3pSI8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>dHQqxc3RP7ACNDIFljgjbnnEouU/10anWjzy3BJdsb7JAwC7VEaxMMKcAS7tLKO17ytFcHu0BO5a0s6RstbR26EO3IR2MiQeONyT1xkc0tYOspm8WuScgIw7Mjk9s0dltb6wTyBpG7jvZvZi5JEtUtfvw+GRCZ5wIig+x7t1ABE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YP7SPdD6Ofb/1wAcHkM6zh7PGKZilG6ENEb1Wq5ZahHL/JeACF178Paldl7o6J64cnyPok3wEUTQfgPLlUFWrr5O+y+cbuS1rtc/s2jYGR+HEMywJDJCoISW0NhUaOOgKSSYGfRyPTeaYdjSUFhQM/mS/N1D2QXlCsASfJSjqXc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4ce326ed-5350-1b2d-bf1b-b63c4986a831" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4ce326ed-5350-1b2d-bf1b-b63c4986a831"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>mUftZSKaFG2na6CVyiUQr1+H4JM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>uirHaRb6QVgbBpRr4B1ZsAA59uAuVNzT8yh/yNSEldd2kCzXKZ0QuZd/H3hwBst9mw5yPwB9vA0clbS8HDnHVo8nYEiL8oXjOE/HQmRJF66iI1m8zR7ZgQsB7lqQemwMqM7Kgbdod5KsKqAEEeVR0U/F+vCnoRO0bMzA/PwyTzI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>dHQqxc3RP7ACNDIFljgjbnnEouU/10anWjzy3BJdsb7JAwC7VEaxMMKcAS7tLKO17ytFcHu0BO5a0s6RstbR26EO3IR2MiQeONyT1xkc0tYOspm8WuScgIw7Mjk9s0dltb6wTyBpG7jvZvZi5JEtUtfvw+GRCZ5wIig+x7t1ABE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxaf7111f3-200b-ce1b-1410-ea7102b12853" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxaf7111f3-200b-ce1b-1410-ea7102b12853"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>HEWn79d3rLXxKVm9s3mBgVMyd4I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>UoN2ottitl1ijoy8mY6qrMEUuZUCNBTjR+DdXbL843rua4r3RP7y4Ve/L4eZwXIiMipJa2KdCWKVc8AodPUCjaGYiY5qysnlHbFJlAqyVtSPX7oH4tNGT8l7xcyOEpmTuu+JVzoIdhpIyxd8GJc2Vii7dHytUsNu8kXTLP1QY5c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YP7SPdD6Ofb/1wAcHkM6zh7PGKZilG6ENEb1Wq5ZahHL/JeACF178Paldl7o6J64cnyPok3wEUTQfgPLlUFWrr5O+y+cbuS1rtc/s2jYGR+HEMywJDJCoISW0NhUaOOgKSSYGfRyPTeaYdjSUFhQM/mS/N1D2QXlCsASfJSjqXc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>