Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx8e4a9128-5f38-cdeb-b2a9-1ba842f4c200" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8e4a9128-5f38-cdeb-b2a9-1ba842f4c200"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>gDMYPhiQuTIrzAguRAVIcIXjxUw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sLOpLktMDKY4450zUj2pSZCrhE9z53VALKarjMrLogsorYWFbxgmUr2oK21q2mHb7g1+pHNznUYQmrmkoHgY63ZdKuycw+f2MVImm/qrZgj/NISUmiaRACuGarHBUJW/nt4bUZWFjt80ZQlkHyhzJWchmr+U0Sz6yrPIESZqe8Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0a735803-bfff-fdd6-f639-42fb714e0193" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0a735803-bfff-fdd6-f639-42fb714e0193"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8/5YbgOkDCM7pc4VjLHavQnqbP4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GgFzb/pgttOHQFVg9IKb0ht5sPipqYekYPPIQiBfWblFFJ/jCMFP90RoBU5y3aR1rnNCpTLGa5rg8YkbjqrcDP3/MZIsopBxXUMGxQhTXfaTU4UgZB6rzyGvlY9gazauHEHVUHrE9eUX+WXuAGPwmIbMPe6AfMyb0lJpBcUSRwQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf0ae5f45-9a86-f991-52fa-761b10cab1eb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf0ae5f45-9a86-f991-52fa-761b10cab1eb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yM7ONqL4BwLYSrHzslwdsXpDHKo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>PUWPUq//rH8j6M9BZgjTtKhAOb4jOlQwvvtK05UlmC3p7H5MuNeweZPRNqbk6EfQoqtObeiZOTBc0NpSRjW+nVOXz4kJlNjqeHntkk7fDeb1QeB44Cu+yDC5ljK2gbQo3Urt476qtmDK+SggwmCHt8pPSkCUsKDeb5kBY7V+uCE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx690ba9e7-f188-07cc-af8c-158272b9f85f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx690ba9e7-f188-07cc-af8c-158272b9f85f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>suM0AJ6foZYAoUVZFIp6rFidfU4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YDN5w5hMnt2B2baxdSfvWZvgTyKabIjbBv+Zl2XXK64dlMVRkD5Gd1gX+/p6y1X6pWytFjmEbk7ZOJBsQMjXSxxrn/JuNlOuL2pjFp6US4sVDVXou8RnnF1DzO2VAf6OdaBwcQh/lB42NesA27xd6HgKa8s1cwBpsw/6DcSY4oM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>g1N7VhIpXqL06RP9xD+N1gxpGb1/wzmPsq4vy3MjGeRaUTja1J4jxIWA/ln5KeYCzu+MJmVSzZk3YalV6H8VnN72HeYvA4g0cxuAP4T+lNWNFkUAiTmVo6tpTVfFBDnuv/YwtCwOws0TxpbreCVtuKyT7V5RJVEBUInLMixyTG0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>KGFyYScsOXd//w/0/lJGjaYJmss+KfCaA2XvqFl/+JSR4Q6q84RxLuRTq3lcHGFaBVBq6hDkYNXDJVB7dWZpaywGFYBdc/WDeb3vxg4xIWLDRl7ucS/aF/MAlDvJolx/con3Ghw1LSs8IDE0kugFOtrEpUqPBf2YqmQ4VA5TJYE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6a99477d-744f-858a-45b7-537cca97ecab" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6a99477d-744f-858a-45b7-537cca97ecab"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sQVN0ChUQgRIjpZgmV2WvYR5vu0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>K4FnHYaIat3WJY9vcNgqXdO1POPWtTsh5nZ+oA709VbBR6v1Lr4QGVkIi7CGuMjbV9vjd1JQ+viofx0FZYwIoTUWeLEXExpvriZaqkE9mewjQh1vcu1CCuJFtpRkdgbvts/2UJQv3t6KjKHuTtFgVnndTsKVGzphtcfiIH6Qgy8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>g1N7VhIpXqL06RP9xD+N1gxpGb1/wzmPsq4vy3MjGeRaUTja1J4jxIWA/ln5KeYCzu+MJmVSzZk3YalV6H8VnN72HeYvA4g0cxuAP4T+lNWNFkUAiTmVo6tpTVfFBDnuv/YwtCwOws0TxpbreCVtuKyT7V5RJVEBUInLMixyTG0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>5jnEu/OOT0cwymUAURgVBppTfxo/RCkVpvRsGl4kaA3VBZv9onIPe9LT1pB3OQOUKYsQiAe0g1TNKtsnhhMqXQYHlbbRAGxouZRwqnfRn/Hj/AouRRAzXcp7f+Gfa5L8khSSqu5KHaKow2mur3XCZEqpQB9Nx7Pxl2JtV7ktjTg5+8nAC3EQZhUgg2I2j1E79TP4FFdvSbkrzl+Qu6Kugs5q47oAYI4ZLg8CihTav8LhHM8wWz/EZ6uDuddaezdObBYKcHnMG6TJrtx6AhcuCPDlgg33flvx6jNk8N34qoMEJh26l3VjuWxuXHxZecTga00nn4mj68/iGi6iKi74njAo6P5lz0x3kabrqCrWXPWogFGmqzYSdXonPRFmr+IfXdvUxGeb50Qx8KSQ/WU8LjRd8e4lXgY6IyOh2zDi9rlu1Iu6PATQe5oZV+iAdKtnV74UFiXMZbYIH2kknvmYX+tzkkn+Y+stSlx9zZGNGyLMYPsnRWLavxONmgCjUCz1joHwlXm9h+rndjAG6QM38PjTsPEJoDPOD3LnSvix1e/Jgi9VDuIJ8YjAlw+7w26g5UgvkrYfuKMUS6gS5yw56lx/QLVijfB6dQfWtegGKns1oaINKagr6Ub31sC8InaBObpxQLCS8YyC6ghccL7+HL87Te/FC4K65ymN4oBh+fd1wd7E2T99dvW/DIO7M4KoUdAqkU2iWp0KiW9xXpy5bo1wMyvECxGuQ52xRBnmGnjoS/lCNxz8eCNTZAySWPiiuwbXTZKFlPjJYLWvg9gNmOrr8dEaW3gXtfIDzP+3J0q7oODdYkL+0/MsxplCLf6hnzXn1FLMZZ2MbJ3m8qoaNRGruDU09V9qYjAQW2N4w0r1RpuX9IRV+UwExjCjukygMxk/0QK1R77Y7Ea3XEMeTB5xbymhdk9BrmR+ZX2KRRhxAfky3gFY30a2Rir+xbg4HM9MAZvZ1XJHwd0cj1tJRrtQpJ3lneKgoMo+p/2z2QKcDoJxywuK+6u+eQzjKXKr2LU8+FcV8q47LUp/UDfJ1ITzgnStOZmTVXkn43MNFZHtGP8J8r1KtLRpROArMtueWUbjdpc7u6sS/rTgWmsYMDWVec1AaYSAkmyJG+mEXSwqi3G+jwhcsCO3cGZkuIlSX0yEyb30/6PUXjNrhL9DgHkUEX1J4XS91UDU3pNcL2tcW16IpOO0U99/XdrL5TNEoaNXxEX4Ht6kZkKmfHK8iv5nk5tDUXdjKglHvKOK05mH52ueSlN5yin9yORS6sQoGazeHuBmtBsXihdqz/K/3d37wsNsyZ5VJ5FlFYLA9Q788SeDyQ9iHf59FVoE7uBVcIpAyXyzASmzT+JbK5m/WbyT4mP0+jVrI9yyStOTBHHzajgSAQG+CiXO1Lwj469AH1DoJFp0Xd/C+NCDurADxKUABTd5W8Zvx7NmG60AqBFPwTAtKEYqClkx18TTaQn7tdR5fXJwkrsTHXyZieRgdhJOG/TX0OBCdta9wo0Fj0yUTfkF/0Bp1DAck068seGs565dTt0OhmUYyJ2tGdS8YuM7ZNxVVFO8KQPDlZmWtJF/th+nJI+9UtZ8R5HqblhVVxsjKpaPNhgN38/QF2eDbov51yPolNXYWVISWRp7llb5pbuj0IUS/Sedu8ugvtm2r10pRitPf6wJS30unAjx8tobS4CCE71S+d8+D3fq24TovlNFjLOxNEvEM+XhE4Il0OLbr9k3HmZAHYzSMcFq+C089XPncsicWwHiXwKldHw59qM4q/KQo0RsR9gC6xArJh53FeIuAoKR1Sz25Ks3Ypqg/RyJzwimxCOIlf4SxMz9am/iJaiut/GSEN1cHnVU13oRxSivYeg0yrV6vRDSVVVYj/8i3cuWM/4peplDC1Vaw+YhqTZ3lHnhsKcQ/btmLOpI9MQXjQpUJgcZPq6v6qDDxgSdWrBVCS9NvHHDMPAzFI+Hr7Mo8nRFTDpsOkSAyrzFYbXBZTCAbe9dx5R2VYMmbcsvlxTbAtGTXGM2gBak4O3iPZ5Ur8Jq+2Mt5HHjcUHHiJ9JUZ7bGIwgYgKm5xSulOQi4CwadtL5z6lctBIrIVV/scsjFY9H1utbBZ6RcRS66iXlYL+RxLQ0CRbf5FY5oRVBmD/CUq/oo5rcT+KZUPkQAk8JpBp/mfoQxp/EAPuS7UQYHG8IuprjLjzomB1y01E9GTpUDBx6TUc7wYVL83c0yWZJZsDtZRhiT6LbJ+0876k6mIZ3waL2NFekIED6zFPZ4WAd8KEFyY2k15XmrvWqbUZC5R4Cjjpdm7vL7T2cwbSZUo8AsvqZwPUd7JrsgLioHgtXvDXJ/5zjxlZGKhlNPJLK37m7FaA2W3XvXD6QKWyd6TviSwav/IgaRX5/NGJRQHN6D4E6vrf0TVgWBdz9B+ug39cBMPJLBpZkPvEc9wmWKq9s17YqgSn6zWBjQccEwPMeXUjmNU+UJJpBns+iZMlnDXE2FEAaHY41XYt0nhFaYkkpYxxnNPpMV4yA+eVbG7xzV3WZZVRJiNT+frwmRS1WBKQLtxUjj5vqk8MguNxO+8yfaXDdaSr8KrFPVh+z7wMCrKTNM9sB0F71KNI46rPj5DMpDyyoiCgo12bmFCr4pP1P/T2ROSY54FGErIZrdA4sCiuPiPTNqPiAjEvyVcjEH5cJK0gjXp0UNZvFELb3fnMRgh8Xtn8r5MDft5j7P2gJGvHqtMp7UGZnj1OrcF/miAjOK4L2Tx097tdY+sTfd2EtO+ZPRNJccgzczqwpOW2Im7sDdYZ9HwuFUzq3G2mOEDA8yLUImJzZvB5CGMISV+HB7wtJIuUSqLjQk/z7OIThObiD4MpqPBaEWhD0xlgQqJUnEz2TYsPp6PapNXtNb91E6KUQb0Ho4YV0/RoaFLga9yDzwPim28U=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa2602b27-fb7e-d364-f13a-95c280a50ea3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa2602b27-fb7e-d364-f13a-95c280a50ea3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1tQHKjrXWL3abvsLOYECbMc5m6I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zcIWctHJkYlHGN+POBdzq9rFkipo8ShYA1NfporIxEZhLcRNmbPFmNMbQbypP/SQb+aVhCMWMTdpBbU9DqdYb7YmzWjSW2moPzOfuHWamcXxd3PCiV9IBZVwYbRMJuaXZWSKzwZgzeZ2TIf0Wp3vD1g9rhPgV1ndaMfiyW/AtXU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>KGFyYScsOXd//w/0/lJGjaYJmss+KfCaA2XvqFl/+JSR4Q6q84RxLuRTq3lcHGFaBVBq6hDkYNXDJVB7dWZpaywGFYBdc/WDeb3vxg4xIWLDRl7ucS/aF/MAlDvJolx/con3Ghw1LSs8IDE0kugFOtrEpUqPBf2YqmQ4VA5TJYE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>