Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4339109a-2f75-9f8c-e8b2-266e6163078e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4339109a-2f75-9f8c-e8b2-266e6163078e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0RkfOWaUFs6FikXVsUQ/KC9p+AQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CtXYitv+s0+6Y54ERvN+CIaYNNakDa7VUQ3G8rG5B2DEYP9OEi2DsIvje2+7zNHiRrO8AHT57IDy5g67dbyVrCDg6bdQyrkzm+1GzeTYeG0RnD/Wo1R3AdfR+rlx0hhfa79zFa0SdNiLuiwCmS5i1tYjq3HQLtCDpqwHA9fOung=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx767a78ac-7dad-c6f9-1e05-33e097feb534" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx767a78ac-7dad-c6f9-1e05-33e097feb534"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>waH1k0pYxkpYoh6JkfcFUtW81w8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ACjAuqmN7mJfjDbE63zf29jO0cA0kk6YBwbDnAsbIWGjiYtGI0Zop9wJti7eq94ilKvhYwEvePB0I3MYdEJJgj+ZwYlS9pLWLBjsS+TUyWM6nY+AVJijhq8j1sKucYAWU+n4RjYexGzPH3EpxtmTo9IwC71ihRvMNeSy5yckG1k=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx11c0ecce-cf1d-3d2f-aaaa-b720192e717e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx11c0ecce-cf1d-3d2f-aaaa-b720192e717e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>q8SeA+h3cbAHm2AYSknuo6yswsE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pk18fs4rKaBakrygVxpc5mHuxLp0WDWZHg55e1edov7a2MTk04F+n33yUR1Rtb/CR09hDA8/vd3c9GpcCbEo+7om5ThkHym1Hwfh6pf6gJ3KPRvjma5T4fZtFw4B/Iom5XuYTqcuKGmc8mOnt0K+Nh1I/WkfrF7ubHEQ1I/HUkQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9598e32b-d8bf-ec87-ccbe-f648a9d988cf" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9598e32b-d8bf-ec87-ccbe-f648a9d988cf"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>uUab4jsZj++nLqo2vqYWwSJbMwc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lbZUDs12035iRCnQM7AsF/GqzvGP6q67mqVHdB5ULNyV0fnISVtN1zVQOFK2xAlPYpMiNX/fnNg1UJGv4yoSHd9k8Q2nia1zTjSwltmy4zkHa2AY3wLYTm7kEcURp7ReDgR3BlhCme6PMOHSrL/OhggNwXkuScVfS6U/gRt5HaA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YTRhxdfT1RfIlBr4X8d5omS64X0IYsfP0A7pBcLU9jnYbhiShYoXdeauGfZqcLJFvkiw76x1chEePelUjAn6w/fXKiQ//MhkKQvtMuX+OH/rBXnkmcFjhQCNWeF/iJRWBzJDdTr2jW7Jao56wQtJ9mw/bmR1l6T3fzmmZS+ykc0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jWOZaHsaL6Abhsxnfb5FtfP5KQ4viDoO38b3mKNEaIdSa/dLl1PNPrW42jM4qvKHy60Z9F2m5CQQ/oZfH1kax1mQsDo5yu2LxmECicGvJdn4hNlwpNpWgaNVSTwmJuhbwVoDPVrqO+4H4dE8eTBya9pEOprtNEG84nPBBEJPPKk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8d8c4d78-3ac5-4895-034e-50ee2866be63" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8d8c4d78-3ac5-4895-034e-50ee2866be63"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nuZxHISSJNhiecZTIcUZ5fC1J8I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lM5gTfqPn+SRYKpmRCtHLoxHIMpvR/c6kFfaEBY4ZesO7jA9BNO14uhCgCzthWhMeP2eH2qLFbxPucnz4AES6j83iZ6UmumlvIj7eApaxBG68gZvjCU6ahIcBcZUPHAk2oH25LOnmXLZhttx7wcrq60Q6qr4c3U3jZQrikaVLcU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YTRhxdfT1RfIlBr4X8d5omS64X0IYsfP0A7pBcLU9jnYbhiShYoXdeauGfZqcLJFvkiw76x1chEePelUjAn6w/fXKiQ//MhkKQvtMuX+OH/rBXnkmcFjhQCNWeF/iJRWBzJDdTr2jW7Jao56wQtJ9mw/bmR1l6T3fzmmZS+ykc0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf66866c7-57a2-96db-acca-65a20426665b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf66866c7-57a2-96db-acca-65a20426665b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zhLPB0MunIOZCLxzrnZ19GixpJY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YrvoXxnNrYQx2sXfDHeev7TjrleI4jSTpVfWGFSOoLFpQN0vYqOuHSdVRUGprP8+8pdu+mdWOsbV7FgzSn/O0eWCNkuLkYLjp3XcPoKAAv7w1JwegnSyjevCR1J8PoVOY7TmID4M4adxXd0WuC+S8MJAQmBgNaQnoXxuRgMrbs8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jWOZaHsaL6Abhsxnfb5FtfP5KQ4viDoO38b3mKNEaIdSa/dLl1PNPrW42jM4qvKHy60Z9F2m5CQQ/oZfH1kax1mQsDo5yu2LxmECicGvJdn4hNlwpNpWgaNVSTwmJuhbwVoDPVrqO+4H4dE8eTBya9pEOprtNEG84nPBBEJPPKk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>