Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf356041e-97ae-7550-bcf0-d3132c074c46" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf356041e-97ae-7550-bcf0-d3132c074c46"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UfAoJ/4KBuUTJWCa0puic9fSjDE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Y+KOd/a7JtdYsFLHbvB/stlZFzI2Tuh4mTgtGxEXrSLGWUQmgy53R1Rzmmz2hM9gCHTOa2nlHTJZjmIOlMmcGmJXIvt/2ZR1jhqIaAOqL0kmbarzvxU+N7Og5YEhHkf8jXJlVPN4Tzsu3UM7GZnUeiqkzgWeTik18hM+dKEVYiw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx44951830-ab20-3201-be2b-aaca708e9732" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx44951830-ab20-3201-be2b-aaca708e9732"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dwyDcsmqD57iXCdoiAn/piXtZhI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>XeS8LUIASikqnnwwTWm8SptjuE/N+R0IFuy3qdi+uWpnbI0LvpCxeYec6UWTkp0eMFjQnmwIBdHz2iIbz3RUnAVfSgM1/QnNuLAyW3aCvZHhl6nSmv352/32XOb4xxX3ZbL2ZUi7y+wRYbOmzI/cAzynLBvSE2RA4bvyop88FeI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1f2deb72-72a8-32c5-ca0e-fc3bd4801239" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1f2deb72-72a8-32c5-ca0e-fc3bd4801239"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dhklgHZUClgMFpfB1gYZOemc+VU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DIo8Of62Q54YbIH+neqRt+kcgDv0wvT8ZSWZckA0u/C8Z+7vMIS0v5ZcJ5VBQg2eUyvCHUQrqOFyHUxMIsOdBCP2FnjBGDCJgDTHso/5SBlD/RQWkoZ546NXB4nLpa/zTE/xwF3q4bTkV80yxvqOoZPLdbFAvi9hbhvQi22wmk0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxc3ae6e54-9998-0ef2-baa7-1ee31c8e5838" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc3ae6e54-9998-0ef2-baa7-1ee31c8e5838"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EyJImYqEFJZUrLB7BxTKgiiDtzA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>h55Dhx9QcylBxwDEp1cF5aeWReGSzZqqQE4iLCwnBIIswyDgIHLVqWWPpi9VxogJQxhkdZH7VUJ3vcV7CQL+dh4ID88M6lriFTIKQMs8Hi8IUilw6kaTnA5NgVt6SVMVp3cgWh8HWUxNVXjLpWcJ9F5CphYiFE3NQ1d6gSJUs8s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qsDpeDmGHwemmXAX0n86A2gVpW4eIxOMYkvpnOYJabFm+3hEuM6yQN4jj8n2RvUdv1xoxFhS2mSYTjB9+3lwvTzOEW6STtOV1a0TINlHFzgxxAzy93pVbjJb4bz/5cmuCv+s0Ri2UIrkazQbwmb92XPuLBwPn95dzDjZKSXZ1qQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Zyp9WvZ64QtGhDTD2Y8kJJ/4WkXU7tFqgJw6ZL2VZ/94i8QhRrmb2xOhd01cY9mGef4qYAkdR9+DOhNyuI3H7COhOANmfRT2VaianlLTOCXZ4e2AFiEgL+DrPQGoz8EyqYT17bt6j5muzDpiKUcC1sHK6Hg57qEUT0Q43DfAfg1sD1zaDWRDH/uc7FOXWbLCTpnJ1Xu/tRA9GH0I/2ge+62OqBFnGIV329tJeRaBsgROzIbROKM9TRdjYhjH90FL26rx+rSTTrLiF35/JhTnP8ZhWOf5OID7i+AFeYh2go62VFUvB24Y6gMW6kHygExUrUX7MrJvPNWzqTyhbxaZM2TbTbzQTu/CYARAk+iLA6x3DPVDlbXZrHz3ylclILLYazrR5ziC3YvvVVg2HP3ThNmmbhLl115S4XYNDAfHAQRo5YJ8MOyv5ZHIx1oDTtb6TW+DQPDfjEZazOlMvWtyxrmK+XAphnTXj6hkhiqzBQOlvt8TbmgYGn9TBKbaAqaGxboc5tuflPR9KP5bk18InVC805LtTqrZSF/Xo1DSnbBN7/1OQE6MaT7dPu7mWw7znwYjsGLOjN2vQJUTYmP7RoQJatX3/V/dV6MHXIvUokJ2it0ZeEsg+4EPDA+u5TFv5fqpBjT2o5uDA9llbwW0ylEX+S9hiBo9CWPy7HR7gCvE2zSvc19wzP3ZJvWFvZ2MX5UcYtp60SiB6lr3dK+YMT1WEqmNDbGxJBuk9fXTC09a3xoX4QCrvc68UGJctpN+J5lH2HLLTyxo5zv6enm2JuHALaEolyHboYqtJCfGL+EC12OEH4YXOOTZ9DHj4M+3a9eFbmLW7M36wuDSyxFAlqBPoWp6kwnKyvqf1noGhypWuPX5S5DpoLOYCKy1VkscfxmH4lSA1Hj27HnJj93yAt3+zIhPLRYMi0hSIMCIP/z0yWIgBlXnDEWuafYUnS6IuRtS5hjBJytTbzGJhOO3k1o9ePiy1wDghC0d4w2ADsHym0p4nF5+r7dL05qT/LppFmGMTF4rOOjcKZO6FqYZDEJunVP2kLzTUq8oC0RnmrwuBm1M56nWZ1Udk3fT6FAppuxVjdb/YqjN2UKSkzIyJFCFh2FJdH80f/M+PjSICJ8iPG8M5WuaQzybtVxra8HDDDcUeXu1LknpaUKbIKPzNEG/i4KG0+Ys/uK8siUZzvHX+rX0RiUp0Fv5djFA7ddOUzsHFI/8vZO+i/ZZkmOfM1c+WTS2q+6zcR1XrjkXI5DPjFp/TNY2v4lblK9U079julpjK8VfDtEfUGdndoTwp4z6p8Z1l9Bxn33HWhBRK70bIOi8Vp8IzE4NBX3LUH+eKYs1UIo7respFI9iqkNNx8f+dK7uevTP23uTBpE47bYKfIW7Bewva+2vzh/PyZHWKeUt8JFHGK68ozOM7dyoCJPWoG6ylWtSGh1N+8qoMAzi7RIXZOYtDhbKQdjDN77oJ+MHyS4umNm7eVCjf6uUHdYyLpjzQycIeK+EwGhKa+zxcagC+b5PSjBxAZZbIrHhc4y+KtzCqO3TJIsSHU88231+bGewSLd11YuJL7G6xB5kRByb+qGfcMBVER532CRhvzU2YPHu7Kqv2dsGqQAL8hl4OzJkI+WLR7iCre8Hvjd3kbp2NmCK4D7h0LvHuCUKBEAviNqORebPjGXfC3eeAfBCqN4PHYvuzH+iksi7CsXbGp1NpAUXELNL74SuU0scZASumsz8UXbIwjAXEYdwv/iQ9cCrcWz2zp7WD4dQs0FJ3PJzUZLG4PA+fABLaTOP1gH2ib4StPxrMRQG2GQZyKhntBkbUNSEo1vPk6sdzxKvPt7lAHdZj6Ymyb3ujfC30F81EWLd4QVmHkF9tA39gJpGUqvwdRmdszxWQp3owXCI/i6aBT76+Wt2fXbcEooLuFP3waZ+A0zLr01NhCDRsChwl11zDMbiIHpZszkLyeY1iiYkNUeSu3WKP3T7G6K8r5U434h2Ai+gA44yjKJuqJgMsQ2oZSyGRgcLZGjQpBieY5uaRMh8FHISp/ozF8bx6k0Uycyw/yh377DaCV+9YmA1MhwrsqCUWkIVGX/UxI7JwBq5ZicND7CbriLR1INFyxeMGv3v69TNtr9XjV5jb6CznMzhq88b06zCn25iFmbtv7/FameRz99pc2cV2hWSd1Ge8MAhBxE8Y/g1M9zd9Bd6M1i87mEeraNBgl/hOQ1YudORNVpe9/U0lD4hdhn0pWbH/GM7oTs0UiwC3uzRnOyUtKsLzSOaJw6HGz98fLShnWKhCM3fkiuxsqFgh5rHqcIKMoB1qHEaSLdCBFJigcbRrBojMeEYfo8/Gh4zm0Fp5lcqs4jOgauU/87eJHPl1fUr+sR+z0cO+JGvmgfmGQ5XzwRMoqXFtbKBM7ycg8iAYVYciRkMk2u1e+sprOL6eaar7hKJdyj2IsU/aqLZ/O7m3ytlegdwmCRLfqnOIR+29aoiwAUnviBMfWwpx6oHRe+gpBnRRbIcgTSHBwKedcNIMnyOmZJFejJgYx38CB3u+9+1Gxc8quac1U8c8ea1OLVLJ9e8GDidvi20CAxsCmJ2+TY8d634FEFbmedjeniMAezD5yFvvsA17ZGwbU3QiD+O4V5D8Oy8camaol/TwY4hcr3OmyB2bU6Azd82SLNRhgKyZP/WQ1n9Jh4oqoHjsPxP2QPR+Xsvf4R+qBER7zmZKZUh3Hn/VzjSlA+DRQvaoujLiKlgc+Hxf4XBmIxEd8Rlt/j++JQ+GquNXuYnu8ZbnU6rLhuFBpACLa9VHkAo4y0g+4H9VYJBwONjAZ3Trcj1NCCnyvUSXRIRtLfkRfzV1Bt58bram7ErcwmSR9nguHqWbr0zsc+WocM//QAb2+7Oul99/mDQ/N8i4Py0U7dGhAHKgD1FLhPT38VGwSs=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>QFBeun5RyNNX1E9LtqS088ombNBAwdfNuqKI/Fb4xU+6KpG4CCpoGyBn1ULU4kiwuhp+dAR+euBq1exBhVsXeAAVsctOHBgWmKpK0H2LLTEHFiykZm0d5ZIVXSk1p+tn28+6WGBMC+XwoNEwfNFJKZICnbpvmSO4JnDaEHjlqmo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxecfb4fc1-6ce1-ef45-6375-f0b591e6aa0a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxecfb4fc1-6ce1-ef45-6375-f0b591e6aa0a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>OvEwzn6RmVt9wgTfCX2FchdhXI8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bkKGs3utet14Hl/P5lZ9o98gJBlHWf+dUpvqhzPmjqwhPn4895Rky5ihBLpAC34nbKs6dtf1vidCTMwlmvbXoainexRrFvNGvdxyYsSXimE4NJETKEmXTEYeOlJqwtzCsS+IbKEdHN+MXaUzsuEUCO6DxaaCtG6upZ2Rwsq/UP8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qsDpeDmGHwemmXAX0n86A2gVpW4eIxOMYkvpnOYJabFm+3hEuM6yQN4jj8n2RvUdv1xoxFhS2mSYTjB9+3lwvTzOEW6STtOV1a0TINlHFzgxxAzy93pVbjJb4bz/5cmuCv+s0Ri2UIrkazQbwmb92XPuLBwPn95dzDjZKSXZ1qQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2d34daa3-d7ae-39cb-58d2-5524e4a3d266" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2d34daa3-d7ae-39cb-58d2-5524e4a3d266"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tHt7WQKdcCzQhxbL+JVXBaNNRNQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>U+FddaUsMaNHrnrGNfk0WE1+Kya9jeC1wfQFBOfUw1EpdNRPmGNQ58K7QBT0vDR96ZG+xDc9KWtOO9ZcxlmNeXe2d6nRSZExmqTI0+RTTmVW2lCHvHAsV0f9rXTvdXEWYo3MiGr2k5uWBL0LjgriwggtDO4NnrLqf0pkrSM00Wg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>QFBeun5RyNNX1E9LtqS088ombNBAwdfNuqKI/Fb4xU+6KpG4CCpoGyBn1ULU4kiwuhp+dAR+euBq1exBhVsXeAAVsctOHBgWmKpK0H2LLTEHFiykZm0d5ZIVXSk1p+tn28+6WGBMC+XwoNEwfNFJKZICnbpvmSO4JnDaEHjlqmo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>