Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf19863d1-2539-b3f8-14ad-47ccfee6e697" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf19863d1-2539-b3f8-14ad-47ccfee6e697"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>JlvddMpfkGtGpNxyNxT0RAqClCQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oNXEbJtp/1/RE5iKIt+u1kA0qKvyxR2JGAURUPhiNWHQh1ciIAcxl7uGULLNlEm93lao0C7R2dIUBT0WoCPdzqUdmrrg6glHCAHZI/SfA94mVVzs1dkuaLcJ4KimTK+eFeAD/B+GYlmmwM+azrkxwjdufAbDxwhMM/KpVA5u51U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx81287b62-7961-71aa-cc56-6eea3b6ef523" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx81287b62-7961-71aa-cc56-6eea3b6ef523"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yR1wMDVlJ8R1SK67QgmUcvzjZAk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WGAKUZAo30BKC5itIfQX14YiIz+kRgW/MuS0jkcFaZl9eI6jls25g5XEd/YtaYP4aFNpmVtbVDA8EBIHIWADU3FJg1qZgfAT3H5bsInOIj5lpTHaw+rNNiF6Yz/NSAZzxNrJzTWPy79pMCtN3cNePcCjDcbojl5TeEjJ53Ui4NQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa02d3b15-35ca-8e9d-ed3c-dfa715e7faff" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa02d3b15-35ca-8e9d-ed3c-dfa715e7faff"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tKdDXEXbHaL43aRa3RpwpLinFbI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>aKntCYiie1hj7M+kO/1gKm5YLkebydXYS6na6gI1yjZuJYkhylu0qCdTZDS7MHd+29vKvTs5/hPtrhSrUPnp5la1RcasnAMM2WaH85x/06lxUs1NzMKksuDITRXyZbzAgf9q8SkD8oPRfua3Rf4mU09OqWdTM01k2mcP38UQRCw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx28cf1b77-252f-f3e2-a533-3f5a7a569e78" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx28cf1b77-252f-f3e2-a533-3f5a7a569e78"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>17oa0h/+AyPs/+iK8nWzArsE4RE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YLghpCgSHN4xE/7ChEcKMcINpU/oahgVIMBw6vWeEHE2qUZJrC69DpPXECCF90x3DoQ2PPN7VJvyUHaOqMMGiZiQI70Ec47k0dVH7dMdcooh3CwpIk3d4CzKpaQ2PIO9uHIRSTHCyBYUqxsAJSj74slX+YagKw0jihgR6ki7AE0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TPbP5xE6P7osMxVmgzwbvAyD6nOYSLtCMqPCoRYV0/a0KLUZL+bt9uJNXB7baTAa+c8bnO6gPTTLUbia0AsDBXZRcOz2d363EIYOfFNXVGBkjg69/Q5njPTLShbLJuoOHfWmXyISd72iYpDWdeId4tJR5e6U9ogmcY68bFhInRg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>hzF7qVF6JuZsRQNwXnWxOR6I2+3Enn4axQ76FdQyoq4Uss1SqKoRb0umrS2pVMy9+hS9bmhHPcfvp2aU1g6VWNWi1WtAJC30mFxpCDRsPBw9+fI5aSTi9BswuVKDB95IO6pcjPjn1vTYF42c/XuDAs1FrSnuinaGKTaZ9qKwf/M=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5950c876-8872-00b6-53cd-4ddcb8d7a8c4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5950c876-8872-00b6-53cd-4ddcb8d7a8c4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4BAsBcdE7zR3//G3TOxscwBenm8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IJmzrvVJ3Hhsy5Igc6WXiwt9bEeQjylVttHGJm2SOrnApmOjzw0cfmHq5EQ7gOn9l5bdS2f7N1v7ujtNVFJH6DuMR0p+jqMd6R3NCqA2EnOlVQ430z11VumxSYgRxBQtONL+Q2jvMmuyIW9f5VCzqtutq4D/blMl+tcxzLY64rM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TPbP5xE6P7osMxVmgzwbvAyD6nOYSLtCMqPCoRYV0/a0KLUZL+bt9uJNXB7baTAa+c8bnO6gPTTLUbia0AsDBXZRcOz2d363EIYOfFNXVGBkjg69/Q5njPTLShbLJuoOHfWmXyISd72iYpDWdeId4tJR5e6U9ogmcY68bFhInRg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx19701d89-4697-c4c6-eb9f-bb16b44c2428" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx19701d89-4697-c4c6-eb9f-bb16b44c2428"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>57aknC05kRX/9DEWh9UMhht/oVs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jLBKBtdaLhXPXAL5zqLkL+4FR0ia+8zxIKD0jPPkf2iQQNUnXuQFi4SR1Klw1oWcvVGdZuw1dRJ+qtpkQ8itFIVobdnT4z53i0Fi6KAyxdqGjP5XxXRlCTc+ddGzfAKLAtWcrFKfdUxa2GMYVpuInDCshmY6PrFF2f7a6Awi9Mw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>hzF7qVF6JuZsRQNwXnWxOR6I2+3Enn4axQ76FdQyoq4Uss1SqKoRb0umrS2pVMy9+hS9bmhHPcfvp2aU1g6VWNWi1WtAJC30mFxpCDRsPBw9+fI5aSTi9BswuVKDB95IO6pcjPjn1vTYF42c/XuDAs1FrSnuinaGKTaZ9qKwf/M=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>