Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx50b60d90-2b8c-056b-2966-a2d86e74fd8e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx50b60d90-2b8c-056b-2966-a2d86e74fd8e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wLpy9OYQD8wlz/cBRlSza62LPpg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tOrJ0TrnLl5a//5JkkjKz1JwlJUlM/j+OkPdHwixxG4+hhqHrEdl9UugVUIYuUOERX7OerTwkLkEmuXGFT0bUtp7c/xW+60KyMjo1bVwuCfQ93MuMi3tjM5/35pqb/bGuhEZ9+W7EH3G7epwoN1lfmZ26rBSL+XH5B566HULjNY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx44cde173-769d-8244-d06e-7c4381c38691" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx44cde173-769d-8244-d06e-7c4381c38691"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>z9mwi0SOQkMk1d6BRXFyXZLL0to=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qE/v4uy6oFL/H1I72wBtWG3CujermCVUxSQj/8mcy/RKU7o8HafGw8710GLEaSU6YKsBE8/NO5pQq/tY/++FPpSnZOE07A99a5etoFy6zNNIUt/iV5MMLfO7Ti/zZjViXq7neJUFoyTTq/p1YERlOEgkKs/fSM36ugkbN5QO2YQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb20a08d6-ecbc-3b73-7427-2b8f04f26f45" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb20a08d6-ecbc-3b73-7427-2b8f04f26f45"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>mj10FQLXPdQzy0AjIuSfxpvUgvg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Liqy95UugeDT0sf5wWjJuFLBWcpOyu1p+cE3XA1yahuVaSSL9+0MYSc9uWnt8XR76nC0lf1ddEbQk2AHBUhD5bhyacid43EbEzDOKIVRkvQnUzTSKSg3WyPmtHYp7vBy15DsxUizuqdDvM6+LtbwsZPh5XKX340ICVgnYVIMDc4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7b6bc2e0-c26b-faa3-74e2-4478d90c19e5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7b6bc2e0-c26b-faa3-74e2-4478d90c19e5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>03FWc8HuPE2fHyD1AdULU5M1Z1k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jYiEFD1KvuIw8nHb8bqmAwowu6uAgRreOxi3qVMPMtIp6T2+Z3v6LFqOl0jiH5j1Pmp8mqAocqYeSbiPQ/nNySCn6uiF5fCjU6RRvywwlRkl+BO39pqcG0bM4tVqEBNQlNK85sL63LG6oqo4StrJb/fKE+dz7iHcxV9LGbMcjcs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Oh8ujgMY9LRzR9KFuLuCoZZh25y4yM5drXv7zc/BpSxes/LP0bXoxPwbXBMxkSV2jaIslBtPq3AO3NMMHwyVxWL9IKMhF6AuPmBnHieYL+89wx5jNvzumDDMfUrfRQRCU5W49+3KHFxCPdm8P4JMk2ivKMWBQzHQbl4TSDSgzGg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>zLpG13ZY3DJzcPmLpd9peH4bZ4M/iJfxqjo/pQEce8KqGW82CmQbPmierZC8FQl804SvNFpowm048xJOedltLVN86CJcUz+B4zrKpx9ewI3HJAjDpWbNbYqGe8LqLJ46SvnA3dE/39y2UT7s7VZLepFi+CWYr0xZjf28vDLmUyM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5bb61c89-13f8-1c29-5aef-88a36dfd4c7d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5bb61c89-13f8-1c29-5aef-88a36dfd4c7d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6Ahp/gRLOM2RW/rzOBjPUXAB3wA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IzZ+4adLRD61Mc+0cMITy1gBdDC6MyfQyzVMWkSSEwKLR78wgSd4UOr4hlzE0QzhNIjh+ojRxrV/++IwHXUaAxcArnQggT0tGzVYJ4vG25EAacOfq6SWF/g0Ew4CXY+PHtSohH1XdkM9St6vtpB69xdp00cvtTjLvlcdUuXM0u8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Oh8ujgMY9LRzR9KFuLuCoZZh25y4yM5drXv7zc/BpSxes/LP0bXoxPwbXBMxkSV2jaIslBtPq3AO3NMMHwyVxWL9IKMhF6AuPmBnHieYL+89wx5jNvzumDDMfUrfRQRCU5W49+3KHFxCPdm8P4JMk2ivKMWBQzHQbl4TSDSgzGg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4f7e3022-6a3b-48f5-cb37-e07286baed10" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4f7e3022-6a3b-48f5-cb37-e07286baed10"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Vyzdw0gxY5oMUEIyuWidMnoZ3l4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>yyKhjFJrZdocqCn4eWdHF4OC2qPmEnoCB3oeDsETn8pBA+AzB4vGqwQUTUvCbzmAkQKNU7o8ymcICW0L/dLIW+OEwDa5uJFFt3e4uVRFO1OxlhZXsa2lxnoyt09nmj4RPvpYbDJ+zmPg2k11xFkGPqzLGqyro9nrOpepHNAAvyk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>zLpG13ZY3DJzcPmLpd9peH4bZ4M/iJfxqjo/pQEce8KqGW82CmQbPmierZC8FQl804SvNFpowm048xJOedltLVN86CJcUz+B4zrKpx9ewI3HJAjDpWbNbYqGe8LqLJ46SvnA3dE/39y2UT7s7VZLepFi+CWYr0xZjf28vDLmUyM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>