Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4d0d72be-7c33-d901-8057-30265cb75c92" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4d0d72be-7c33-d901-8057-30265cb75c92"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ppwegH4uqBlQxzBpcDg3Am76Ar4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>J6QZ89bzJBw+Qio8tEluRakJ4CCpx0KFfIgAuAa3Vm2NW+endmcoBcGYXQ1Lz/f/F9y02rOMUMiz2Ov+9OOSoyzzhuTUFys5LtGn6L2EXq3aQCQ08h/UkPwtkcbN9Vz+9PYP3VuZRXFiCY0BLAe42PVrTiDIRfaSPo3unxAa2sQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4359acc1-84e3-fc34-a30b-3308d0e617b9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4359acc1-84e3-fc34-a30b-3308d0e617b9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>G53lCboYh3yj5y9S0cYLJU8R2H8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pxjtXFQWRkNCA6IM8K+9Z9PrJohcuTwZj1fQ4EQYJhJRsiV4e0BP5oP/vNCZNdZZbp2/SC4fT1rqpp0piAfWLN5kb0/YQdzpcqszBEjlnitQz9feZAccZNeJPAzlsolxX9T9gRhNe+Vchz5d+Gnh2IvszIiKmET5dgXN1nS4xok=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx72f5725f-b158-3ed0-57ea-6e5303aeca06" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx72f5725f-b158-3ed0-57ea-6e5303aeca06"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9K2FZIeU524pmHm2668mAoFuugY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MKuHjdcND/PB0icFJ+GrjXk3nVDENG5WbZnYen5oOCX49/Ye4C0uvUDRJO91OgGB37o3fkX+mJIzPO8fl1xzS5l3smh36AVqMWXjEx1rQ16CYdXMFQHjQhr9GXH7qokJ4yQkygvxkwYQ1Qcy+hGBzCl06qZx2uaF/2dgUxrqaXU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx32a17d1e-8c95-5ca9-cb8f-82b182dbc5a7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx32a17d1e-8c95-5ca9-cb8f-82b182dbc5a7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wgFiZcoJExcIf3V7BRO7BkAlI80=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lQM+XTydCReaEQq7A6irY4OvrFBafqgVgPdYVaWXERBhr55Ofo+xjFsDFe1m1C9XtlfImQ0MXiK8itDEUT8Akpc71PUO6ci5tghoknJurD7v+AEJo103y1EIiu63wOxyDBxfOy+aITRstkXooIVKPWJr7wuOz4ScxLlFBMAV2dQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>GvvJNcm0CqPYh9Nwsl2AFtz5FUnS4XfDA+Mp0F9yXEi1aVJSQNeHFHyH1VpJJIWPW+1fCKuq9hkh/hbv9OTHWxj76sB8GbgIGyfKvLNyTxPFvm6XK2z9zf3Lgbw+KuhqXJHHuo1ZZkdqgUTymaFs3S8uuPDIYnLC/j/BE/Kf8BY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>aPiSTrVRVDxL/dVxtC96OF20rRiLoBExClU0E1wLJFGLPDg+fJ61Nfv7SPYp1CF4HdEH8j1mySEpRVEwMCbLD4PPnDtHOeIJGsSVzGwAM0Xs8no31j2yAybgIGoE1m4RKBM4j/D+rXZzZKL3/gpdcZ5jBubiTtl0gIK1xavq400=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6b44cb3b-fcbd-7922-650b-c99e0850a8a9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6b44cb3b-fcbd-7922-650b-c99e0850a8a9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nj8nehIBR+I8Wu6f5wQkFMhWzrw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>0o2ptJqrncofAzqc4iWaxqdtWpmU7fGGVctdNh2Dacvx0kcr5DLcQmjRhhs4NTvvdOEto5y6zU/emXnnJk3wiozrvPlfBSPyaLY+yh3F3cFQvMbF+aaV0tdqFJMGbcbLdNRIZ99hoq2Zad8THox1kWBAprFvdgATxGL2anysGvU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>GvvJNcm0CqPYh9Nwsl2AFtz5FUnS4XfDA+Mp0F9yXEi1aVJSQNeHFHyH1VpJJIWPW+1fCKuq9hkh/hbv9OTHWxj76sB8GbgIGyfKvLNyTxPFvm6XK2z9zf3Lgbw+KuhqXJHHuo1ZZkdqgUTymaFs3S8uuPDIYnLC/j/BE/Kf8BY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx60aa4bcb-3c02-1721-f5b9-7ad45bb771b7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx60aa4bcb-3c02-1721-f5b9-7ad45bb771b7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yMOM2IcSCdwQqCvccJ6sM65vafU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>eQ/1vzDA0Tg2Q+qtM0CweMQMNp78TDTq35I/rwQpvZnXTzaCVa2O1a11dR/GmlKbaBghRwL8U3nOCrum3GvpATgCSctsF7x5TbC2W+V9K4P/wpkEe7T1tnUFxg1t3wZ4lEH39qMsfcyUfwMxCsdIPjXFwlmeDEDUBBAlW8O1a2g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>aPiSTrVRVDxL/dVxtC96OF20rRiLoBExClU0E1wLJFGLPDg+fJ61Nfv7SPYp1CF4HdEH8j1mySEpRVEwMCbLD4PPnDtHOeIJGsSVzGwAM0Xs8no31j2yAybgIGoE1m4RKBM4j/D+rXZzZKL3/gpdcZ5jBubiTtl0gIK1xavq400=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>