Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx95fd0117-e668-e535-f441-9da8f1dbdc5c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx95fd0117-e668-e535-f441-9da8f1dbdc5c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EKwB/0J1txtHzV70FENUMG3jUyg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>p7qoMVvD9GlIT7WEYjGZLlB/JABzcpbhhQQ2hhfmsnLH1t+G+MYwOG/MrGUO7Ubhx5DdX0XYGN0i5hDnjeny29U/jhmTWMORj+pbUlnU3omZcSuuyKKwj2RcotIFIv2guJa9cdo1z+I0ee5xXKWrfYl43fbcrxkoAvMqaO52fJQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa0c47bf5-f33d-b5d8-ebe1-d7d2a52ec3eb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa0c47bf5-f33d-b5d8-ebe1-d7d2a52ec3eb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>CblLgcMVWrjAM295LlcDgPkIxfo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>wtEBVtjjypTegfxgnHznYZjSlFE+PJxWFPQEPX3vKMQYvbgI+Z/j9TmszRgway0s8URpUYpniiDe03xzTSNhqlfGXbJll81VgncruE0cdf+0G5SjmtllXpTgo/HkAyTT1zD0GAJ4m806V/vIQwPNUKxq63DvCYHgtI+q7wQ0rQU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx31ca5c33-f8d4-7c92-488f-c31c4be5651c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx31ca5c33-f8d4-7c92-488f-c31c4be5651c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dO0/cEUPzWvFwSdMz9+aeL3F+9U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IhFNCQHhB3xDn2oQ8N7WPz6d9XgiEItE8LdfMoBA26GwUkTySHz8HGOHnIC8CUwWjyPaYU1wSM8Kywr3GmCovFaZIfqzkzhQUOuTKEC08ZMwh5ihuBAlj0bVZKGTkaNTeRR8/qRlzhoBMTIGRxgF+mCxcUaEasrZbULLjsjy4M0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7cd395b9-0c26-694d-b5f4-7af384eabb39" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7cd395b9-0c26-694d-b5f4-7af384eabb39"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KjvwbbnTpnzh53Qi+DGe76PWt6o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>fv1N090L2XJxVYYAzfYCNHn00KgYwUtJOhvwgo4lPJ1jsR4bKBsw9C7oDB+gdYwYpqVrHjXnBCNS+cB9kJ4Z1bmZCkfqQqSDnQxdSTEDTyxIy02RAP9xUKdg1lBPngMFAyEjE9VRhhy1GjZuxODPTcOmHrnobpyJAwVXn/f3cPY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Q7Z8eo0cl17yz/CLujwBzHfn7ffqyFfMYZo8YrS4bBr/+jlhhC6XDmoaJYHvc7S7laPlMgyUeQNdfPPqzgf2kvYGf4il5ttgEx0B05L4U3MbsAlALV4RcROr7SxBA5/6PDFgB5J7azNa7hmP3ZAPKrC1LnB+OISJMyW7BcLKqug=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Ow27S/1a26QRl2lL7x7Cd/ouljHngmNIGHESd0Q4UP4bsuQCfAK0L4EYETUZ0HqXjEiNEp9W0iJOZBd+awdDM+TCWGNqb52ueyLoQfz1ZA/5gBBTqY2LgS8Fb+5ZB5c9fQuBVTvJNPqTeI6ip0Iszy+sjCK1TocaVFw6WrKIFBA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx00864570-1fe3-36db-766f-d6775259b7d9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx00864570-1fe3-36db-766f-d6775259b7d9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>OrHUV4KvWMahtIYBbcaATLw3G3U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>G7lGvTIqAeRkKDW9FJ2EmnUo9jvCyPLRpawJDKgcuV8QfNEUQS3p+uUMlwnLgtHXdILq173u/xMU1cFnPRu1QC+9qMifQ3ECiW+k3zdDWdy+2kwI4kkaB0B42mxQ1rrziiQKkupn+tpTJIrU7eaT0NAMmSj2fjsnB+efTB1JNtk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Q7Z8eo0cl17yz/CLujwBzHfn7ffqyFfMYZo8YrS4bBr/+jlhhC6XDmoaJYHvc7S7laPlMgyUeQNdfPPqzgf2kvYGf4il5ttgEx0B05L4U3MbsAlALV4RcROr7SxBA5/6PDFgB5J7azNa7hmP3ZAPKrC1LnB+OISJMyW7BcLKqug=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4b702491-dd12-a244-8e67-c15a93a38b15" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4b702491-dd12-a244-8e67-c15a93a38b15"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>TJQHhWj8US75BGYuxrcvWIfhiac=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YWyW9NmiHYNIqWpl2E1Mj5x4KYlXxVGM69Ztbc9x2NCG/gVu7SwU8pmAEd0OKn8Nu+YIhgjXFtfoBDpvN0RxZcm6zOxicp/lQi8EtJyd1+Y2BXookusrHINFrbAd6+66Vt7f5/Vm2BUd+pCj1ffC1a3AeHT8piWjmE9BX6nO2oE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Ow27S/1a26QRl2lL7x7Cd/ouljHngmNIGHESd0Q4UP4bsuQCfAK0L4EYETUZ0HqXjEiNEp9W0iJOZBd+awdDM+TCWGNqb52ueyLoQfz1ZA/5gBBTqY2LgS8Fb+5ZB5c9fQuBVTvJNPqTeI6ip0Iszy+sjCK1TocaVFw6WrKIFBA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>