Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd890e8c6-c41b-3815-630a-5cf52725c0dd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd890e8c6-c41b-3815-630a-5cf52725c0dd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EGkCUXSTYXnJrYcXZ1YyURBWt9E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TaX4QloxKnZsQ59sVbd5/L8Tvv2JEin+V53tPcZcKEZGVpD8sLb9hS2sjS475Wh9ICeraLgINNSFlVMdf1LHXB0ASMvVXVXXVsX+rMPDlf61Y+bF2MS7rPEvu6l43I7oj4BYIuNoshvsNGvHBLHb+o83oE77RkXN97PvAgVwRxQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe55b1694-57e3-4142-2057-3e411eff007b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe55b1694-57e3-4142-2057-3e411eff007b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>s3SlDnJtYWThHY81XBj8Jdl3n7c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>X6WMPX5i3F9NsgaTRsnQ1tLmKhdbFRd9ViqFC57CDHb4b52JgfMZdx9lg6blRiFcTNtBkney1vlGQgw2FkuGhuyHtQhBXnCwesm6Q7K3eSdbLaocps4IjukhYNZ+ZFAaoY/+z+XFw9gpRutUNGmuXTrI+oy83sUUtSzRNoyY44s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8da79f62-7468-7d52-dd02-2b20016458a0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8da79f62-7468-7d52-dd02-2b20016458a0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jalx46xd5kDVGn0hYPMoF+/JcNE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SejyvBBKPhhOd0JLpoI3nS1C5xKAEeQHmGn6kbrH1IJDPMjY7z8KOemqrtYEEDb7ibh+QOIMCZh8fCbcIf/UI9wGppndbLDTbUEUfjZK98vjIsJmho6vSHlCC6xMuywGS0YoxxAB3xTceGdJ/wwvjOrJfApXTUaMudiPcpi2Ydc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx0c5a6a91-3e37-a1df-f983-dc81708ebbeb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0c5a6a91-3e37-a1df-f983-dc81708ebbeb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>42COK39HZRsRfRnhB8N4KyUOlmI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Trys4pkkKZtkib/w2uepetsaHImAGbIDSJSVYfGBkmFAI/jOHDI9iXIELT+DZyerd8LjObwk3ZFUxzR95LIKGnOLhYbZrHgPb5GldteUDH7gknJ2eKQnlyLcbV6QJX+WGyBlKcloiH0Er7CK4XDSO3MhAbYJO779YOMQtPgi4SI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>gBzUh9ZEHCO7v/PhVqg4X92AtDZMunuTpI6eHSwETtxoLT5Svr/UaEURkGl5S4d63cKa5wxAbrMLdwFSdVoqdfl97rC8Y7yUqvyRiV2BUesV4qyfrGLvAM9tF7zh040mZS83a20NlYJDDgU5lT1Pc3v8ffh0yucO4pSoLT6wMwM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>LAv+sxd8tdl2RTk1xK7fZLvKb0U3eYU5Am2k2QWf/16MUKi+8dsMZ+pmVxmfDkb4iV+ROekhd39OAXUSXPtXgKSRBP+krvnsa7av5FYwciyR/KX4ylFMyBq0ZHh20wLbR5M/oiSIVnNITHmX4PuCCi/8As3mJrSOqpE1eq5iguk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx92303cbb-4d0a-5a5c-f7f8-d517b0978daa" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx92303cbb-4d0a-5a5c-f7f8-d517b0978daa"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>t5BMfPg7VucP9Ft+FRXXP6QrW1c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>owIoZyFgKRvVW7za5FzApJ88gwf2FH3SVEd+kJaQTpaqYZw6ytazeooxydHOn6GvbuAhBUT3uCvsppGOGmnWxtZxEhVguOaxSVAPu9u0UITS+DcdnRqohkf35GfxV0m1amm9tVA5jzKV+tU+nGLMa/TTqIklohS3KWsjsdMm00c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>gBzUh9ZEHCO7v/PhVqg4X92AtDZMunuTpI6eHSwETtxoLT5Svr/UaEURkGl5S4d63cKa5wxAbrMLdwFSdVoqdfl97rC8Y7yUqvyRiV2BUesV4qyfrGLvAM9tF7zh040mZS83a20NlYJDDgU5lT1Pc3v8ffh0yucO4pSoLT6wMwM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4bab024a-a221-54d5-d405-463c67445f67" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4bab024a-a221-54d5-d405-463c67445f67"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>C4ukblAHI9TIjfXuneLvOucIWbI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>PulQW+z2uU9XfT2O3cEqCvzRdIivCg9sdrfnyM79jOIMXdKHdGr5r84RaHwjowgtRkxE8FOTJFIbAA22dA3BUBlaiv+OpN15s38RPWbw8GkwZkP9GDUFjRsdzgyarAuRWZX56dE1tVTG4CPaDW0fXD7e4bcMjk37mlBR5HATzUI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>LAv+sxd8tdl2RTk1xK7fZLvKb0U3eYU5Am2k2QWf/16MUKi+8dsMZ+pmVxmfDkb4iV+ROekhd39OAXUSXPtXgKSRBP+krvnsa7av5FYwciyR/KX4ylFMyBq0ZHh20wLbR5M/oiSIVnNITHmX4PuCCi/8As3mJrSOqpE1eq5iguk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>