Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx65324063-4c0d-95a7-ca79-2037ee8a8b7c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx65324063-4c0d-95a7-ca79-2037ee8a8b7c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>gIDjsth0yIRn09uoJLrO3mEfVnc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>E3iI/znKuuYIjNdM8eLlz7i/iY/II2tz5YYbSTDdxcWvFLtUHrERs0vwgVb1LBO6PrX2dWnkhVfrY+cZ0CPFrOxJYQaJHufmv9vQOjaPRnvRfW0plcHkGOaVy8ASi/BaaNTrF0dIonv6qHukKV4DsSVD7lWfFpE84QQnq4nKdGg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx12e55aa3-5b04-5045-f044-3b794657c878" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx12e55aa3-5b04-5045-f044-3b794657c878"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>fuZDISy7a6H0wJ45I6l46XOWils=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>P/Ftw5tUsGPboSp9N7l230TE811qZOFv6kpM1Vu5OPzzQXW8fVfOuR1KKMHE6OQ9fofUqJqzOxLcaDtV4rGu/Ub2z179BxSznviyfERRtDvZ3/nqNTbNfr9PKh16cVOIJrvgrffY07gY7qQ0kjIW2tBGbPsJp2w4dWLNLY+y3UY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0c563d82-cdca-0ea3-caa1-3edb3a3ff728" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0c563d82-cdca-0ea3-caa1-3edb3a3ff728"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sEI7vOXpw7r//VlTQ0pOFdA8vPo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>l70WJBLrpeA3wganqpsFkEwzrmU3GCq98PnUwNXmNFmWAA/Ae93ZIGHsRhG5G5EvdX1sj2hXcz8amYpFj8CgASRo3fUeb45ACa6ikiug9cNbB7vFEbdm3oBciMs6QIOM95vwoYdwnSmtOhdLmrnwvqIhLxYzOQ5/x0Uw7OI7T5o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7d59956d-a0f2-86f5-43e9-da2068f15a14" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7d59956d-a0f2-86f5-43e9-da2068f15a14"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>obtuEF+BuXR5m51ssWdHW8E+zUI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>f5ZzTLJNrGNso81/hvd+tmE0WgWqUu9uTvwBAuhXykRVKIs8jML376ez0U88UjQSsxn0DRA6u1l6stEP/EMwxk3r8T4+eSx5KutAQX+GXvRaihs8ZfDblrGhwD+mrQMv/LX52UwM2sB/9V44reT63Tm0awZLUochzcPvRVNRXnI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YLE3VtzGzcsgT1m0DMSvZSqzT1YbyEgcN4dJt74LlGAAv3kZe5IjwhITzkozL/XtrksU69dReWxYhn1Q8Rw8hGhOYYFwkNY/kAP2Yy+3ZtDYkZwiqodIHo2XX006sHIGfIki1EGGFUuUI3DccVnZpxM+shN2HO2aHasjmhO16mg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YrYkve5GPKJdw+UasRRjxkqB17Zj15hbSRHJFad0lPscGycJpTI2qoZbN+wqmT+W/JM2GIJjsI72ZB5BAq5nUyO27O0TQuPO+1NIZrqtUMXSiuFCOW4OAfeYqJaEYVBAmsY71UiuKN5DBOqvGK0INe+AWMn19ntueOcZd3EmIuc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx03f52ba4-2e7b-33c3-02ad-4969647094e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx03f52ba4-2e7b-33c3-02ad-4969647094e6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>2av+cb8J7H3ZqDTRpg9Ehd1jPME=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YtHiJoafgqqvi4fA53FTCpv0OxTSnrnfV338oN+yq4sIzbRbPHrYFn2f3zvGG8eDQTTohN7A482RMliWNFn0sPMG3hrOXxkNCl26+3AdefqsRr1FHsppwjQ2X33nnKPY9QG/uXmDPUEbZP/bhWpc7myooUKvJE8I/+NIK6LYeXI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YLE3VtzGzcsgT1m0DMSvZSqzT1YbyEgcN4dJt74LlGAAv3kZe5IjwhITzkozL/XtrksU69dReWxYhn1Q8Rw8hGhOYYFwkNY/kAP2Yy+3ZtDYkZwiqodIHo2XX006sHIGfIki1EGGFUuUI3DccVnZpxM+shN2HO2aHasjmhO16mg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx54efdd62-3b2f-df2a-6387-9e88f9c85a32" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx54efdd62-3b2f-df2a-6387-9e88f9c85a32"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5acLhvBtJ6n+tyqT48GBVn16IXk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>E1YdXMmEC01ELYhsI0NP+AJ3y82VlQJ6STbEHFquVim0EmOYfIILlIl/vJ/gVqdfxk0wVfzMsNqT99bDvpPARPr20M6uvz9Z0RYHjgWZwDC7yM+5XVHh/3ML3g9F8nOK7kNG0IDroTpIM3khET8vf0ZoL4pOmkgKiQIBh7vJ5bw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YrYkve5GPKJdw+UasRRjxkqB17Zj15hbSRHJFad0lPscGycJpTI2qoZbN+wqmT+W/JM2GIJjsI72ZB5BAq5nUyO27O0TQuPO+1NIZrqtUMXSiuFCOW4OAfeYqJaEYVBAmsY71UiuKN5DBOqvGK0INe+AWMn19ntueOcZd3EmIuc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Bml07aHGxUdz0kEsoz8wPHkQ4XV5jIhbbpLbQWrxzOpDESZRehrokqz2RksMMheVM2ylbNPKR3QyZUO7VbTRtkLILHBpiXy3pIW8ToA1zdE2oC6TFSW/3YMhtwY0WiE4/JBAsDsTq0wxC55nXypuXdGPWsz9bZfSuav1W2qEdG1eXam47+UZ5mcoNUM65PJq9/2jxuPWB40zFCRBaa/IMJdn4ku1GysqI7E/HVVTdJ74JOk9SlvQYATMC+cMFnV+67QG4cv5Uj7uedRURyf4WWRwfRA91yh+9Nf+25pJcHHmVOnokrKSFKCpBvdYHqjOhvRQonBw7v15b5HoLiiN0PYi/mIWYpn9JtRcztj/O+Sf66zjieU/FvrCqJ7A0o0LNBTG3A1LAhaV71Yps413dY8B9fRCei0aYwDqRbYrW/jtZQIAI2XZeikyGcPolGtFqA5ZsaB4U2sOlldhemNsjrhfxI9lW56Kc0zEhiC0IGaJEemHGOyzz7gmvgFsQs53//ln8S4Tr69wmJRV1vv4uUJFxi7dq4YrQa0lgplZwMlOksExNnCPyu+XELGIgmFOH9gKXPhYejoPj2kMoxrB44UsifIoTywcmhoBvygsTH7RDE6KcZRcEe141SrvmLQSlLQrdH/NhMMKCfq3CoxnC69pW2ykoUqFjCIIsMZXB3GcPevhOihUdPijDMBeeSHyGxzYWP+JC3OuOdavIJXU7Vl57vHxeIz1RMl7yt4QANPgw81Dtml8ZmhA1qk9WAMyDUzOKDGT2kIl/1CYYC5ArOZMW/ZZbHkXcIW83g5C4bT0H4DwBtYhDuAkXS58jiPc/QBXZCB1avxvEdSjUSsjKJqNHAsTzD89Qgs6wJToMAOGuJYbET1fu1M9dCycNvN6LVUXTFdytklYkSmlJez1iPm3CsuQ2cqMRDfZMdNRdKIo7CGfiKT/rZ6c3KzYzseHM2UXY63I01VOwiaaUxXI3/LhjPbg6Odnzl5RHRZbPTunoyFwCf7C1DXZ4jYNlhcEqPeMDg7glVky9OtYkqWnFm690CUt+2YDckNLtPeDtJE1BDEBpj1JNieUhJGF7SkMpBbQGPiwuz3VUVg2lyny90IkNNU3kv1jKCKmQvJ5KJA3eEB4WUKFzF0/Ve8dwRces8y3RWDOXHmykmUUHzSMacPK9+yzt6v4WF9M4at6wa7hGRtwa1tfE3v9I6lE+X+slhI7i0Dgt7PSPkQQ1MpePG5YM8VdLTETkDA3CLGdx82SD+D4guKd6O06BKMHviQupuwmoqCyD0g9iKWO2OWIzz29SbxzzseNZasL2mm7g6MNmWw1CxbSqzpAfREcxnVw3u2HQyqqmjg9m6EjlpgZeIKIeUcprpISrZyPqm1ZkhMkPXovEI1Pn/BdsNR3g4ZqfaKbgJFlBRDFsoOsFJhXkut/GKOSTRRKEBW306BVEiqwpeZMn2kK6v1j9aSz/gpBlaceb4OtqDzWuFHyNo2fIrxwlIljTd897NHGyLcOTMVASbdPKwz1scP20pW4dgLG1JpfCxMDbNHCcGBKGP9sOSegeWDsPSdTn05uLEQYPVVQWp0elMAQKQMtiVffBNhYGIE38WYClaHYGk3bkLpUZi1jiiZOYxBhX4UF39LxT22a6zurQ5hCwDiAMHyqv5QoxUlzyNA5G+JE5CbKjdn4thTw07fl4P2xT5zHmkuVGz5pE6mwt3ZJV4R3RbsWpuqLRV18Bw7SZx7QdJiz2Du8nzabN2D5TpYmXawaR31xeN6dokFlFuUiimQHb4lfBKUDX6ki/2DNy1DbZZNXOHUbL98LxFde2AXWVgHpe3Zp4rqSNnbzHtULGcZoPO8i00kiK89474EblOHtlzJLll2MxCqMebc24jw2ldpl28OKHAzvygLnYNXq+FhNAMBIw+5t8lWua43sgv5m6mI9lUk5741BUK1vmhIlgJyZSg40J3egBBA/xgi4uyDNLeAFgD76U8aEfLrzhtjf1vRBqolAOVjhxfg+F4TglGPYfcg0K82S4ReNc0YyPF3CkwTCTHQvAqrHkFXDBO39WzpauLbxSIgyQJaihMmr1yjPzZ8bIq/T3ZHLmO4HiwtPbxGmk9FSTFKErFbDiwDY989/CLuoxbsFjWLQU8levehc2H4xVZ5qU+seUxkQJtmKz+62CgfLPD0GdDpgDZd0VSal7N0IPU0pO0cjSklSy2hJxxvoyWjgwn8oIdpNDc0IWvTK2hE6EtNya/jutYnfr/UIpLnuDPX9rjIumODzqasbZ/CJBbNIVJE9dcjZVrHRCDnTpILPVfSAB+FFTKSCU0hQwxhgvWdIotToD0l87F2+e1b/wXIxbOxENykzKbOPZP/WGyihH+X5q56swkwfjfpSQ1BoXT3t+tIsobeh/wPZmG4RY6MbIt4qSLXAl5uEeeux38kkyMwRHIfj6j8pSoQMTobOOyWCz6WjC7JfSDZyT82shIfEkIojmeiHi49jOpDvVnFBN90mOGCokqyOHUehd69i770DMgx5UoiBC5gEBBuUj4whhPkdXpynzFkQeo54RiEtdXajUpjMyqy9CH7m33IkeeVdut7xcJngTPi4Wdq9IHvq1xZayKu2zTLbCJrjYoazNeQ+BZz/F9BtzB7pj2YojwsuKURRtcMM86Q+pTD7/1Za9mZfsH4QhWpM2H5fwZ8epX3iBMBESXf44DaJJld+v6K6d+PSEgNZTCgnlghrJOXD1OFAkNbA0kUeGezJfq8P0NauqgRTCZoST4K1S8zgucQ+dmn3LW+YaleE3fe8FNUB5cwW6qpXaZdQmu7OvPQzJxk8M05cMvp7GLq8jJsPFvTE1stppJALdjEGRnHUpGmH284ozk9I4XcGDNbhf5ruhWBKjZ3ezTZ+E5RklrPAlILnBh2uxVg04AmW45MLrfraZ1zyThmX5eYr1tsZC1CHo+uuhJuT++NJNuOwVhMHd9bPrXKewPXF3RBolm90sC8zNXkeOU62AnqPEDZZU4drkFjwPbAaU+Y1N4VMtDNNXw78BBCJyTiQWS+KNpOfgepzZ0pLc5hrKlWxKBoqkfA0FT24+ChH3i+bc6WRhJLsMOlo3JdxAWtj4VoDI8QN7JYst9TYcNAKh5z3fMHAy4Wc5EBmKJNM+T72UouTVBaVNgkT5Guq3PfmoPMFGcjHyqVDgn3bDgfhS1MU2Hb7r7fFhT6manxVD/2vOKXQtsvhEywC0llgpfB36ahoZTjXt2yIg6vt1j0mhcgKlIKnVEn//krFVQJkY1bZdL9QX83Fks8lZ3OGPYm6lY8X5bbx1yM2w386kHbg8JaW8MIF24nDiL27cZRCVF2BHkJNTiIWCdhIPLTXUYXXmZde1DY/HmL0+Bwkl2dY24e5PFjRoZW+pnVoT6ROUsh2gaGCZf4Px8KdxhTj3/tVOXLG+Byrp4n3jMYi892qcKSkPd5hHgJCtjLc8r++2j5vRtOctYwmoTgIXe18le7jR2pntZ6VjQY50ElQcjlKJFRo9ccb2kBTJp+blOl7Zs2GvStGB8eyvSP03lQi9SJf6EY0wR3d32UQuDag6bq00t0moWyrmrBEdbo3nhbtFTu/BVlOCYS1ul9cfOor8NpJhbT0ryzZFwRgRlE1MfAvruqHrxqg7fEgRPO5FlJFQ8Q+hKFULnKrvC2H6hkEDII74RU171EfVMvbFQIz1BqYDNO68caGsh5QSiJCbwGxx/C9tz9GHsIYvXOmRHqGbw4XPgNXFMvBtDg38x3QJSmMeqB25oQoEfY1Nd3Ch98ZQvgIQCwDlAIrqGtREubZzx7gzFy/w8I275AA+P9cMAMKlwkLvtlZVzmjQ49kkRcwwMjrsDa6DIEWmBTwhToSSLyvvmXneHIWtq0OO3tqsMulT7zqvDnn42ckf14/43h8V3tpTOXP7lfX6MT/4e793aW8mLO+KiZFBr6ak4jaZKnb9ZbvhRDOGO5uTJP94Ka1KZJk8YeH43k5sTLEVPVsXP5kXdRkKJjIT1ay5+7MS27yAzJOu8XxY/lDjAu6Nc1updr4ORwqKc+Ku/7TS7bDwIORqf550xhEFW8GMj4MhWjhuIOikLmcOjyRzQeH/hbj2GB1vaqa1Q0GVzq2L+nxLp7ECZqw4yNI13YUGz1K5B64LiXdl0SOqLYXBZhsUbiFWO3uuh9iphDdIErfjs46erA569U+j5W3c90uZw1sfozfhUB0NjKXewkd4/Jl7KCokeY2icDCUigDSHq3VSNYDA1/yaAgQEEu3aC+5SJhuE7GSz6pdCedJgMPmUlhTqfPnYuwvr7LZuy6rBXehY024IhGjt6tMLtVk6zs5aMHPB38eDzkZlxKWgiMKLSdxi1aXqVAw3Vk425uZAnpSBDKlize6FmhTVdJ1vfNTUGuZez9wBm/FDNP8pHZFTZ3tz37u/TtKJdY/YvmITBuoiG3irLWNjc3O4447jdz2/6J+Q3GUHfqtJTUg7aT3aCNi1uJoI9vmLaeqEyQHN0e1aJMGk4916DxnzWUFsaOZVMpfz2Rqm1vdxqdQ76eB1V7dwh5H5aTRXrfc48EuekF0THWj2wY4bF7t/Q6fwdKb8aIJp3ZbveMet30m+/gpFP5Xx0T7TZO85LLYKwPGgpcXbIx4o4B/nNGheLKUQc+VCfA+Qd1yLsgx5JtBlWesiMWo6m/r9/M3gai5OAAJ28OkG4matB37SlCe7ZdaMlSwVl14cuTbF9xbpIWBk1LCnJH1VrOvKnd1g7+YEqHGuHalSL2eYWjO4YMgDt5To+Wt9uZavmmfNYtLQQLv4l9j7YnSM8Vv+RB/GPoF8h+jH4wbWeXx+W3aRf/h5JYEk5krVUatp3QxfQiNKg8Cu/iKEioqyd6wZOBgB9T/xbnI04yrNZJgQxk9wQQPiMAqb9hHhayQWXLNcHl3DWvYjQJRg9UfwpY5sBLaU7AE30CwUOPZO8HWn12hqL/oXUCdQ6t17af75/nnJMQDG0c3+QTiMSuiuhpiUDx4AjzFgl0njcCMUL3LwtmkeYHiKqHtTR9ujvoIMlegGgnPxFZNMrikN7tulJ1Gz55uyBF8mEJrKZNnAXHQsJfVQ9GPhkaumUBvPrQZlZdCsKBb+vQqoSo8bSJSYS8oF2KE6YVSJpsK3uaekO6CDp2MlUng7Ni5FtVjJt1b1/B+JRFmoNLxppxut3+67xnNkosA4U8J6DuaVj1CIqpV2zfSaYVIilPNc4owB+S+O+MQE3oaSkf0ASkfHqKBy74vTKqVBnAJM3qxtnGrbbyU3AmbCz/M/k+Crs33Dey5hxFb4cg6oG6rFrAfzvByGFhE01RNwta4CIkOZQ0QLDrDsBQPMvF65U8joyd98EEIO4wqFyS/jBuIR4v/bX/ArQD7V2zs7z+o9D6SthDZNnlZpvR9FHCRhiMi5nAFSBoABTeaO0gDZwRtaiWcb+rldrpmTNnDBQoaMyC4KgPQrq51QGAAPAVBJOl6C0=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>