Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxad261850-d460-376b-f2b8-c6a53eb136c9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxad261850-d460-376b-f2b8-c6a53eb136c9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cGWsNi+5AOSBwAEA3kC2di+uTak=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JkYmE8iJ2VaWmoGwhyzgHspVNCbSFkXoL2D5kqlshj7LJ6Ke7/EoIXB8OLOoJV/9BG+yTFJ8xo7Pg6EtKOQTkmIrgSTjDV0iklEIZ+Q5v7Gcb5vM7/mH61dCavQ2bm2MzCojTaiuRayz4QtnhBStZSi8iSwAZbuqsvY08YejNtA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxced312ea-d44b-8b0a-fadd-918139774b21" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxced312ea-d44b-8b0a-fadd-918139774b21"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>doYx6LZeYnZmJvCsOhOWN5yWhkI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>gbjWtri6oc6WcNy3wiYTBt17MZ/8rNokg++MsfQ2ceKtwvUMp9IDZjjoKigbU18YCeUNNZCqMG6XG/kSKkFb4TZjSQrVdURuyv2faRz3xcQnnYnvLGEBJODM1fP1HVbsJN0c4LZVXJhDPS2EnQsgbQDayb04ct2bREFReoaeJx4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7715a840-0111-f258-daa0-9c7e56ddbae5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7715a840-0111-f258-daa0-9c7e56ddbae5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>HP/Z0sl5waiENnmWz4D7zBybcGo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Jsxma2Pbj/HTboXxTE/oHhSH3UBAfAWSSgIRD7r0TItQjrosZcMttjWmHRTaEDRJacbTmb8rYGY4jG5KkanN2peAcmfzCFmntZVqzdZzVwVIAKYQQwKEfnVHxVDpSvnY4KWCP73W00wHEZBJKlQ3ZhTNlke18EJUEKHUB1mpRe0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx2011d654-b3e3-ede4-2cc0-5036e897cfa7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2011d654-b3e3-ede4-2cc0-5036e897cfa7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PMGcI3+8YuYU/zOaPjRZ9pzmnaM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jre/UlYgIs42OWWV74Yu3RIdOmkdbUfVc/cUT5OzpsEgI5LSaY3JONN5c6g2+JPCLNYIvfEUrpoozpNpDcmUe2gFWQ2LfL3jN/+/wZadM+SktOnyk31ubWjvSjjiPjLey2Ad1fsbjeHzYDX8/tMNO5Zzj8zNOwOKaIIJxJ9joDU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UghSYsdTSa+cF4nBR9WF2BKTGVAUvft/pNb6vi6VLk+HX2rb1DcoaUQaKd6xFR8Ds3kSIdZPx9H+2LzkqXgjwpDPJ/Ei7S5qCyYPLKpRpgqvKheDN2xm04pbkmWOBOg9BKXKAqf/eFyKAVYlidauyLInWjy0FISogNM5ChvHz+U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yqVv12FCLt/bns4umU9XCsJbl2boyxqYo07lq2bVveo8ZVV4B77JyD8gxX/JjInstsXljvRpo853mdTuDWwQX2amG8CADG5+5X5AAmhIFAEB0SxpI9azNnSL1Jla+d66eJyR3nd/OCDUykBDiwX0QyFBDIV1SmlYelQj1Kg0A00=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>C91j/TY9SovMSfWRIjCb1fSZGdDHXCUqecjdBEZLsSJSqkEhdu5r2XDPOY8qJR8aN4Pn5/LF7VMfP++moEjexnBrdBSmvLy26BpBBg5og4wS2paVew7rzpXJduZlh+8omJErQnDln7ZflXhAGkuGc2jU12B+EH3vPcMu4wzUrsQ8MmymD1rWSz1DOtNKpSB4Mvc+iqsxlgdx/aQz57grgxn8dR2EA0YYYb/x0aHQbO5v320IUdrwv5X9X8smjhMlC5k2yAFwUSBSu7KVKU6P8CDas7OW7nvm/Lg2lTD5gGR+NoPvK2lU7VFQXpZskpQAowDqKn5ce0J8pqPGK4xmD6OpTOvChsNWK8NkVfSqjoBg3SWsYr9Cm2wTEx9IN+TgNJdVOa4+aylYxW5x4ICSyGicISdCYKl9G3km6muWBS5G7Y7sFRyfahOdWOsxOtcKsP0UWpE4PkEu5GeSLkW0C4Bdd9VTKPRzfsdd/ESIIg4ryY4vuBtJVGX3Mct3KiYL61KI/m5p3oi1jN29AI3kqiitUejMonOVOVSoiIkBvxXRKEj6tDoo0hiwEdIMVCc8RmH0kPR76fNjIonz4PDBpUB7OyG5D06A8uNQIcxLk2kNimM2/24BkXDWGEvmIj548AkXhkowVyumfXcaFR20k+azxnbEcg244IN060mSK4jzd5eEQrtgdm4J5fxcfJ/c2zEjSpCJeS+xPHs/ZFtq8njQKAfFFOVca46nrLWqbtmz+2fp1NXre1QFcKIJmIR4ah71ZEoV+MYgePG4lJmIXi/3meVDcAY2pIaV9Hf1y+t6uzU0iIniSY3OvXVs1PGqUqi+idwg4pSDAaGA6q3YizYCWAxeQVJ4Ledyee83Mu4snBT4/F68C0aSbeIjqBTmCeQTGjTjDJEidymD03O2kHY07e9py/M4LazTKyJNP1ULaGfIHBv73+5vrZLfyZKgnxYasKI1JdpxCBIxLkskyCZj0PwWgIGI9p53puJ0I/zeW7HuPRFPPjz8rlhFiselvHqfl/H7lDFOix3O1LfvCePw9DNddvaeUwBRtjtaDHfKrif3GzVsf+hm4U/n86pom83FgcTarXgzwKeWsaFF9MCACkHlAskpW/kPkBKhuu4OEtiRVAs389N24w0k+x4rpv3dOAreEDceAIgwyH3K6AWaISM0jw5BUMbECZ5GzHwx1FqWvPVds+96BNhqzcjE4KZxyag5UGB6TqnYX3xiRamBLlLnv4PcpFd3Je2RNfD2qGBpQQE7UukyLo8r1hNAexv68LDIV/q6S7oFF4aiK+kjGOj/MjQYCiV2sgTEAmeSyif3vZiP9REQQbZxv3IA7yo97TSLVVVZ7EnSHhqBasELioRgyJTbh4RZjEI+70fo+4Zqx6DW9E25zMIm9J2mZzpd6GmhzKX/4rj2LS4eO/aCj7VMukr9TZngcJVKtiPGxkL2L91UxM7fJxT/IqgHEh4t7+6hmOaaFmqq1SGbnvPnTxAr/2le3oNw34aPZdee+YfFqV+6Ow3+UlmFZI+L6uTlPmitnOIsHqVd3v1YPAlBxyUqYIF8jT4iO/Iiup7j0v2RNCLtjcXHikFEVWkE6OO6q8zeyHT7F73rRgvHRkm68Uz08XvnFQiaGvpPRB3BK8z7Ms1ECJwfM+U7AH/ANvpThawTYYAp+g5YrV0OX/lhHXj0eCXutW6xV4noHYfDlnNRlNvkqRUe9Dt2z2BhGVJh8qc6J7RBnIUBnRUpdLCMjsh5b6YPOf9jezHsbK0wo0QHgH7DHKxritaoOh5AyaUJHKCz4phFqFb0q+2nNFfqA+jcvfUFTY2E8WzYkdBFshoP1McUDIKn+jqCFXgPaikTZjd+WBER0gEJtMx38LPra8HcdjSmuHgS5/GUL72te/dVWrOPwqsGPdQTYdcHXGQ5eQviZa9SiP3FKwMsFHxx+1QWxFNnI1uXnK6jvrZ6MnkLyp1AzdodHB/1sIu2kIckrdUaVO+qpOI1RzIgdXY3H3ZfX8xo3Ij9Wm8/ZhIVhhnN2cxZEK3Q/AnL2hoSecG4+irJt9+pCUxtByc5I+6EtncL5wkZQIdth9oJ4jW14GbNN6dwcd4PC05pmKeU0dsTfBMzLDzZaApXIF3t6L7grY6X8Nw6jRdgFMRogB7dL5qxYeUXH1YbOGnaKyCQT4Jb2UrRnCopQUUfSfWL4X9n8I0R6x1uqMNFiInsWo5oP9qU4tP2ac4mYnbSEtakvyQoO3cGncpYiYPclUZJVZtqradLH8PKjNwW9mih3cEohwM6IWt9mg/62k3nAFdSmlVQlqzBAqTINxlmkQIxzaNRo9MKcoXFnGVikzdQHCt1u5XhInvs5GKvJysGviZD9bBs4EC8pDTf41S1LReeNncqX00/7Y2hRTQyaBw6wZYJe+eNzcG8UqfL7GVQxBk4WeOG3nUp+WepKs0BV5qLPU5LY+XG7StZLtWQJxRw2TPi7B2Ktg7sbEWS13T0WZ2OU6GVAmieGmeF3VGISlhVyQc6mglMP4Ha25jf8CjZ20d18p/mHGjV26ZfQ8HfGxIrT7uwQFr554QyxSYbdReslg/Cfn9pXyJhFYAqyyJYdP1aG6geSSK4xlad6vpw81VNjGjxftv9tj3maLZ+loC7Xe7ZCEOQ3KGws/tXla7dqzZpj6jbR/EnPsLyy37X9oK8+qVHId/abAPIlE7mc8shwl6Ld+bq7LmQKFpoxZDYSrUYkG6uejzOobgic702QWKT8zETPIGicMeLXr77087jJS/fTCPaEu6NwRP6QgSdeQ8aWuU1QrVZOa0HxIapU7bmbw4DkvYJDDUgtAboBtdIBrwJiwq4+6zHsQ/E6wb7RnmFHC73Wd881bCZmV86lev2pMEPuKRe7hRU4a2mTbKhS8Vm6uJaoPpTr0ykJ7ewRHRj4l/9TPEBckavSDYY+NKldTATDz88XWaI93yX5YeKvM7msjHczEMbM89A7y+oJ4ubnBKTy9hfyCTQeLTw3TSKI5+fWqT7LqbIErlJnvEyXqB8GxLe1zye+bWNpATbDaud9lXztJyyDEXm/kaD/+uFE38yH8u7Pb2k6uf15AL8q8gbwv6RsNZObNm9McrxZZum7ey84vbfYXmktSOXU3CSyhjjFiP0z7IWmHx3sKkYWMgcMxwFeOKr17OH7NwVUkZSSzfYaqFHGGG+W06lQ8TqaI5DlAT1aF87nlKtnevqFZAyHANSKGUpCCbGd2ANffr+fsP9p/pmCYlKa5juuB316nOyDSocjtxUnOFcpBTiGgI//np7MITWm/v6+LXwb1w5CK5RAQBUD9zm7OfkMKYdRfxbTN2B8QmqMm72fDDLUUgpaJ880TIA3FCISTUnHC6sWmx82QDXDvm+Jws4YESmiA1Qbo8eUGLvHnf3OCFmBs3WJnPbR12UvApos4YE17qq6JiH6Z63VZj0E84/sJIZjS72Ign8djolTrS4Blt48AbkRuLvKTOvuc2Myak5Y6U0Eqm714YtlBPLLEWf5iCS4mqcy4AzbZSXEolehRVZrGBuf5pDfyQvjQUyyoQrsmu/4eJ7lWqjml9x05DIKxG5RnjeKmEs569hXgHhfruE5e5KjI9qW7jrbXOfmtZFrkPuZZHnbA6UkuFM6wlsw/G0lLo6+nJpVOH0F0dSDtfHIf//R6glGrmUb/vuFrZdMq8EFbYPPHEH4DVPTYMcOKH0sra03nVRhujvDSx0smRchzqQVV3OQc5pCCRsfD1pesCm1QZB83LsnSsVebnF7KYH2T10gbWGXpMHTfbMX4gZ53haubajEvVNv98KoXYwLmKjJ7ghy5k+lRVqOVK6w4zh7pfgKo96AACATkGSDwruuZ2eyVxUxAb2dHuEm7tJ1q1saIiJrBoMOYUjytTCcIuk4r1u6VT2JsQFtqKJW9KKj0UfoawT/YZEGIRFbY7VCzQ78/KWDczMyrbBVu5iPOJ+7lHAwnpdCSg5e1MzHrsJF86WUyPjQovtNd0pGWUM9Po+c89yIpO2or+G87899ejNCED+qFektFXrqlOmGMAu5unUrzH4Kp/JnrhXLl9xWRodOWBtOorBQltYn1+JZPgX9PmysujW732hD7sajS3K+TxpTIstSogyjiDKppp8CmPyu3VNFXwX3pelmMVC55D5/URAkZAqCXhaww+HVXm7Zhp0hEC7WUrweyVxr4CmiZvpr9+s87xsccUOecguZYYWF7P0U/6yiv3axp3623uG2EoGnCv8CV1iBWDdIX5KtFwSUR/Kuou4RS8wRYK4z1vugyhqRj53pUtaP3v4NKnBFue0YasdmF+qFI4BonuJHnLDkMViZcnYsxFadTOrToz7ym+EAzwGaxYjxfBKXSm8pHVq+BICaeA2+dubLdiwV+bvZmsDfg6dCLP2Nr+XYltPODHBE4XTXBUhGMBJgaQX2OAGUbARyR4K1woF9Bjr27HC03ZMtRbCwK1Q5uMpJjbb15eIjg7VMESB8DmK0PGaIbGl18+vyowF5y2mSeFI9DJACBqfCZve3E9tBNx6UqoVT9oj2DsO/no82Pf4yvXYXj/NhOImucXlTxMSXyLnEOYMZ2CnFq18Es+uB1j5OWbGVDlfoa5UZ6GKCGjUQZ+EX9bqLL00GKRzyPs3S12MJPQsqEp+N8dttFrIAQA1h47k0QDxofBDarK+n3eCM035FI3DiBVX6c/Fb5ky4oxX1QQGaaXC4iiDb6iH6+bQORPGDqah2nbcRCc5UVPRV1lkcy0YzEMoCYLrvYZPHGmjnoL+eFwqzknROAIL5K/1brn5v2nYZIAyGWQaKZqVXWCGQ8/kuFgdUBXrJqUZE2lcH/VPKOFC/AVeKoXcsZ0XlCFecjYphsaTDnACTjCfeAtVN9B+NhMeqnDS1wUw2xjudXEzPQSst2qdaF++ryjAHjKOJ3z9h+1Lbu0u/qLKgL6Lnt4NX6z0hCDaj6Foq56xn+36CvaGR+F7TfEYGBR4c8a9qn/QOkLuCW5fYV0rJKemmSNQPOPls9YPN3CzC8/xUGJ9fmntoNNXfB5tF6+szTJLnYJcqsg4SNovtRyCExnIaZaOz4KUYGcwcGo+Q0+r1wNbIv9us2qwFFhUkS3t6x0JMjpvF9+fRNxZjWQ7IMTkWV0wRg9wdookGBMNN64/HNpkOInxKJ+laZ/vi8JqXT+7lZYlWmpMFJuJGxT5yQPyX3Km4oI/aJsTQMEhoIvPTWpuys7vu1TRIz9f3ph72sgBaeu5vbfpsvbhk7Jbe3xBfRoGI6zxARHJa+kjElchPIyKjTYHiMkjLvPErIzkvxLrNkZAupv/tvf8z/e9r/wGbfQ24JM43jQq0rXxy3Ze227OFS+nc1RIHSD2b47iUlFBejoBgerDTl2Yo1oPEJIFFi0HYZCpefwFl3bh4/qocV7FDMfe8MhpW/KX/nI7bs4/fsALu5jSaTGFAma9AKmafO/dNWitH4y9Vvn9OhfK/xU=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx28eec85a-a65b-ce15-c2a8-8b7d4bd206cb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx28eec85a-a65b-ce15-c2a8-8b7d4bd206cb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nrLwJnkVfv8Zjr8qHJ0iLDWz58E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>g2V7DfCbmvToPvyL8zl/GA+YEuPq9M65VSaTWdN0G2lXtbqtKROEPIyugkaiZUEhvnB8ZudcG3INgmfehTV3g3oZgX8m1LH0ntw3SCtxKD6R3TlcW3CSThke4RWd1NzyMlowPcbiIUJ7EtDFm1CAhayrzVeBaozpHhhfFluA7I0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UghSYsdTSa+cF4nBR9WF2BKTGVAUvft/pNb6vi6VLk+HX2rb1DcoaUQaKd6xFR8Ds3kSIdZPx9H+2LzkqXgjwpDPJ/Ei7S5qCyYPLKpRpgqvKheDN2xm04pbkmWOBOg9BKXKAqf/eFyKAVYlidauyLInWjy0FISogNM5ChvHz+U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>J4anIgTbyCTTd0AS+YWJDVnifLYl476YvtRB3nD5y2uexnKGi7JTRqDc3mmUbvdKm0nLBCY6Xem6EwpQjIHZgmmxV/v5TmtbyVedCGRASv8RqSjaa5gEIGVI232WQoz7FAGUSKWiSO5W9P6TElLZ7mC6jkweMiMcQSouxNca0PIjaGk3ENkaZED8iRt7sbCdbv5b48TDER6UWPurNHCZC0/vLNFrwBIfrr5Ucpb1kUcZXD7W/5SFfsdrqRPbDodUVxVqVHezL+ZTOrNJkE9G5ZOosqR6IW4ScE5KTtkeMBBOFEzi3gY8RCDr/ivSeILJZwMtt1HrUV2a8KwzUwN+V3vNxuD3KS9dCx7HA1ENhmn5nr5ZTaOlQF+x2AQSZk4bBe2OewXHFR9Eq9+NGal9eii+Ow5iroBPCCq8uM26LdIio8PahJLGdk5FndOHhD6IL8PC8UftE6vdOOo1NzGwEe+eVUkydvKkryB82GSovAQ8aTBafUES522oUlod14jvJk5si60zxT7LZkno4zFJwrhsKSfw7EKvwQJLjqrRWEaNdND1kN+crOHxPgLIMJkHMdhDZ8Tw1Zoex9Mx2h1/N+qFrtyncM7W+W1oq5TCnMI99A6KStbkqlSZ6g0dnMQSFyQuGmEDbjrfQV4VbAhikP4bsLwHXRUQByQmDuwoGhY4la19kdytuLbngKeTvt8kYNySh7RlGxFHuKDqegONPS4UPKgUiSf9z7CGDKl8BezOH6c44mHZ6FMdOQl47c0Qj3/IQcEeiddAben4vzkJy3WmxX9ag7jZVN5q5hGn9VhQ4fUaOm/mOCKQi0XE2W2/e146W+pM0cNhICqunzt676z22mRxZXwBHTTa4O5N85m/7iTGOOpO2q+JbktRIKTlq+ZOPQp3K2SFPsKgh0SnNdWaPr7B12XIewlzA1sREDaIMGuGOHTMUUiIQBrD8rKWL158iRYmjcv7wcC5kI3NhBIJ1Z6JKf6BR4CQAgw9CbT9W5TU7r0Gyd003jSylmPx5pvo0DUcLzSk8FX/5BSVS5Wj1lGjmYGkVmTisnCnm7jufTe1MFYaNwtUgFOrauDS1m0Q0wqWi1fEH8LLzcVOCP3Up8Sw89WCBBhiaw3VcpvXd4Y/JATzbQ891wOB3AE7TtLWS9fTJnmkipi/9jLHRndqLE3qax3Wy2byvLyEZIer0pZsCwOfq8IoZCVkCF/1epOSmcJ7AYdyRNBsIB6JbNsBgLnonsSsaacIWLl55oMlXdzcGp96WGL8TtDd8DOPpgfohVYack2lYvA6WH8UIlTlcInppbrW7aXVOVFEvKWm6qhI4cITBR/SHTJSqZJlZXiDK55kx4BIFSN/dJRD+gZIIsFXhzhFQyb1rcTivl1Tg52w8VLKzPsSMrsUer37GYApqmkD3j+Swmtv9Rr3EI9Kn8D5G4ZuvIjYB/CEXQM5YFSlsWxkQP/KjzbMs/nx2m8uMrRdK6u/vcmNddLftPruGn4KeqPJWEyACh4/dh4/9O+p8KKGeChBkBnLZ7ed2VFmw8XErDc0CGY3uqrT0D0XvjlKc4a0dikHi/kXAKI7F+MfqPzMKT1ysUr61ADoH9vR84hlH4zyxPrueGZTle6G2pGKw78Z+iBH9lQKxZNYhO8lnD7xieG87qWO+T2JATGrVj+Dh7XGGyxilY+ZqLJJ0CXkbmKRqU5Czqbzhe/7qs+0IDNZP0VL53kY9JyuRvKVbfGq1hX4LzUewA0PIvNSFbsPEsLBHDGO3ekPeG8IqycKeB4XRg8RrrJmvRCJZMb+eLdLgG8sNz4ZRaQIzrJedKzW3KdUK0RpXxno07pr/sbpWpkRfxrUunFP9xsoMRQmMmEqZE+BrMLeqAqggRV8zXbTLBnivDRHDHu146RNLnx5sWPJEmSwkETCQwihrT7HAUonWCkZ8jmSTpuSNAvqvu+RPRVNG+dnpCzPCcQauY7eq8pt+JCHqpi1QmxYKD5dQBK/Pm+gJs6Y4+vEcLHRpt5rICamBccOuXGPfio3QREIDGllu16CH+hyYEG9VjF2+PSJWc8CuPIqLDonCySJqJ9rQVsl2lhuI2snXBj8UprvyuIrYjl1R2O/o6Kvb9DRyhRUoqvSazb03tnEHJvzxjPgnLuFuN90OHVSeRFzWAKqL/uWAbzvQfhwUmFVYkTVMxvhHMeUbVCl5BDMxDbkHY8XJkjLb3wtqaLdVnUWtI+gLfMhNokl8zLSVKH3EcDVGzGFiNw4TYAaTi3PDPkVLc1WatoTil+sY/yP8uhrWdr+atNBEfnsW03X5buycfk4z0gOZDVe1qXJUue3MAsj6CQ0WKC5Jgb5EoFWZbuy/VGPwF0XTtAcwymwct48JlPzHFoJ2jqdcxWNP2ydhU7R2shL+ze1A4wIhG2MVR/9D+9aFTw0iZxKn1P5QKIUaaaa53eqqg0ry0/7cdXI0344UKEyP9knXJFntfhNOgRGh3PKcWwzgb1mZyoEqKmAa5fuE3GPPXTWnP8PNViKD8S16ZVGn1W8pvYRInLZzvFBG0CvBjrPL/pIjOiOCoEr+1vnjOiyjH/D6M2OgluPRuxcM6VmBOSWJbMl909pBwDiwhD2oy2rkQhM/zE5HfKL9PnmTQmJRaETefTgzDK/f5VpvLbetct2E6g3nCvuWvqSqE+92X4FbTX8J8fmozO8vu6/yv2W2gRSfyd0v58UhKOe95X2LTtr6xUV0aLFfKFn8qgmCHbQGobBcIpYQScBDG52UCqULx2yRYTRad7f8g5gazCGJJDGHOHrAuLR8ehudoN2BlppAHm06z24FF501firjM3XIBsB1dbwxtPjMGELds6P6C30pZhv/Is3R0f7nfmaz7cLF7vGlG3LXZaw7RPPGrMupaytyuf6cdHXkggQG7CD2bYBqeZ+8VAMX4E=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb6af7b2b-8393-3a27-ca2f-3165928dbe99" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb6af7b2b-8393-3a27-ca2f-3165928dbe99"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>eWGfLdlcW/qrUVC06hhRBTTneeI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RDiwr+eAEjkUQIMiLFfhS9DLbieOEroaCOTv5IlO0Y4Hm+5cN1nclMg+SaZOKjKVrFtMVi6z3m7NnY6II9p6V+7hVwwSb6GPlAufq4dVBIgGw6vMPh+puh9Me6IUNAGo0veSvzJurcch2v7Aahi8fjHfuOuhjrl+FvINueRUgdQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yqVv12FCLt/bns4umU9XCsJbl2boyxqYo07lq2bVveo8ZVV4B77JyD8gxX/JjInstsXljvRpo853mdTuDWwQX2amG8CADG5+5X5AAmhIFAEB0SxpI9azNnSL1Jla+d66eJyR3nd/OCDUykBDiwX0QyFBDIV1SmlYelQj1Kg0A00=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>