Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx852a6672-26e4-96ae-4fd0-002b794134cc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx852a6672-26e4-96ae-4fd0-002b794134cc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tsA+1ArleZDx0rGxdL1AKXVGvwY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SUwtKp8Xxmq0CesC1KHMg+leVgDexa2/cBwLb8C5BYpa2pBaYv+Bu5cVCXgKeG2qhYawwd2qMF5SWJm3SaBvLFZkQ9wZo0D+1Om6/2thPOQMH/0v5YqfsJZOSmMoYuYpQDbsreb4lNw2+6HwgfT8gnN2zrt4BTGdsepEu24Eovg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx642b6325-356b-ab87-d259-f0b3b60613ce" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx642b6325-356b-ab87-d259-f0b3b60613ce"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bSo9zlrk7Q0c8h1bT27aCYtEf58=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WnnZNw6oPSBIarOazXtHDaZDMc9vlRluejPmd/p1wjT2KjYPUVJMszqZqoR1wTxmawLHvKVYO3c6oG0sGU0AZ/PyCOkoDDrN8vPWS+OrVO38c6se281YWjYT128nEJ0KMrWYuQdC3Du9ZEmr7wZaDEdzq6S8rcamQxE8lopcc98=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6dc5be23-fa4c-9cc1-7b70-e4bf9967349b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6dc5be23-fa4c-9cc1-7b70-e4bf9967349b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5B0dXfFSJH2m7mhwO2GLe/6n6Co=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WC5hCHCOP5OWAuJ67tTf2FdjSwm3V/dKkaZOrcKSbPPdeG2Vm0ThIIY1h6+pvMqz3/XNPQWJbgAnEdPFysGE+REkrR3tvgQBFYUZYP3MoXULnkiAEi8ABg4h2lr2O4gC6EyBWyZAH6Pupcbvvl9V0DrNeBCU/Hv1MHcmlCjr34U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx0518116b-06f7-7309-d3c6-f7853439aed9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0518116b-06f7-7309-d3c6-f7853439aed9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3z+398us8Z+r3MHee2C+NKBS80w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ScQO+1cd7x5wOFDaYcSlCwdTkcHw3qUlfidCEvW+8s6dXdDj8+7+nuRoDxBfxsE79wA5/eAmSfTUy0q/qloDy2lrzIFH/TJGJUMajfdq6ZMKC9I825dpfAXAP4OkQrD6ToR4Od8Dhvl3/ekUy0DGV8pIHLFT/cwHtqM9X9Nx87I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UhXA/mCHL246fi4bl1qOl6GGhsQ2bj0zpMPPOl+LMxpxB0tncaOzdfnjAWeymq+DOyc6g62Kw+VtfNY8XNYFsTtJqBZNA0CaBIzDtZJsiNp8EfiL3AlCeBPfShdaAHeREh2YiSSAn2pwjDRhLahKNgoYoQgSDYzchjRD60gQaYE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>D6cZ1xG+p7DjY919K9N1DC5YEecm16JxuUeHB5Ayxjvkap2piIO0C1eSduuyFhcicg3Pi8Jr08vRVGSQhcT9NHM0lB2iV0fsj3VHecLSR7wewx/va/L4XEOTgJ5duCJxGJIwGse8miUuZTZ6fwf1lj/etSGLw78m00YlcW4vSywRBPJ+snAIgQf1vmyPqJONlICUQAbPiPdiGJHql+yl6h/+20vl6bNUfkdJLNQBMwsMciwA2eOfIv2kE/1zZUG3KFsUmPujWaQHSIVHPCP1KuHuvXp2ymVsQwOTpoS0Zi+VxhR/k34gn1M9JVCEvC7KzDWNN6Jymq7T+ZcN3k4u9iqG5yj1tdBId4rrhAIizl7ArHd25BpPO5d1zDQGxchASEv/xIxVoc5toIod7HY8q7ZqyueQsc9w2H6QqJoz8WtMSux0iy5zS/938Y+HwkekQC0LldGAXBWAEYHKQ+fWFasAe8JJlh208Q5fsDw4g6IchQzbjotqHMrIt8+D975p3ISl+yr4c5GhQYlGwccb2S9Hv4z/z7aJPbbWpVqCH19P1L5dPOievQpTH7uJovrjP59waMWJmGHrxo6lfE3co868bpeguKcrqiZU4EjND/gOkV08v62nthWmvL3W0Fvq83AKbDaSXyFFLPkZanQNyxe2ZthhSLMhp7J+358nmZYOQQQSIwC+4NdOANh6YiG9uJrW7077f5FHbN7tA62bgyGTBRp8yup0eNZIFOfwaZiXIdAVy5nVjVKWJIuwMBWM8iqXQSf5XJAroRb8QZ37Yx1XYtBR/DiX5a6mOqpFNqfDY3CESyWS6fgA+CzCTDgCv/Nf3KzYuku54jxSC1BrvBtR5YFSyh8VgMLohKsOkS3LCBd6+mVFHPvDVCcJtY8vQPe5QnhHg5MLMtGctPWS5+wiPhebgQM7HG0/ReZSMi4H13DyQgoCSzgilbjHgI2iLX3SMRQIRYzYUyqT+kO0bXmkuRpgcNagOas9qWjqqaLdImq6gQ6+wQ0V1O4MgIzsj1F7n9hrThs4csY3/XC8iwjoeT5hHx9gK6PdGcmPCR4fwjXnfE7St+7T4uCY59yVzEBvLIcMJVFKxXWpH/SjrrjKR0PyBlsTEmiY2brReliAx4KgJl+hOZGpH3X7N74JrOVYzIBKXbCk1JNAdA8siHjdrDFTWzNlm6lx/0W4WU8Z5KfmfbR2d9jobLrEDe4ag1oqN3vrB5lSUKtxSomhZAcgHSegrkNvM6Kyue41ezMnKKYOBU20Td8GNWSFXttzmK8phQ9aNNdM59XQbUDWpW5LV6IHkWzROv3qxneTg33MSodSjv/1edeJXR8iCoUoUIDC3luFxp1G+sjP48riuFCWE6Ohhkua3iJuq6qPC0dP20SCam1KGTloEcmw18gsjoKB6Gvwbq0+QaqTMtCCU62hVNFAP158vFneok9aMAe08uH5Gwaz8027ifPJ3uqyQF6lZLm+JQ0ysvb4fO/cBov7GPLqCZFXGy+70qZt9usqs0zDcdDI0ZIkYpjpIdN/AQJHQR//JUOtrmoJp91B8eURROPOl7q2gfNDpJORRrKTVvuj907arklfXw8UintVSp4qRh5grBu0vVpxXYm7cLbqYSKmACseGKn68yYWKXOlTogVvdcFrmk1QYcG7ZwFmwMy/wRh/s+j7mIXkDjgUJgrDPdiatKGg+7xzm3lKmOMICMwsDSlo9EmcdJps5hOpk3BloqIQCtAQRt4l/FxV/fT44b3pIjX50WXCE5QyadAUtNtyBUtSHkONRZ8ucT3VWu60TEkc6McapkUiMbsmLCp6qYullpcKKJOR0KosrK5lZuXJhnlqtxzHpME++X6RDmuY13e1jk3iHGhP5nXxqMcxWgBhsqaPWx2PfxFP9KhXDxNAOBxrQfMy6+JIFf4OxadBeUA735eXfLxoVgFAPMxK/JdcLtsFrbOL6g/DOkK4iNv80viXS5jvPOKaN5H9Hpe8w7Yy5cTirTu3fGxgemsU4e9oCiLBifvBidk/vIQ5FC5uRnBbDb2obG+WcyQGle+wTioFQFFPziq0A1A3m60Jv1KQ1XlJIxn3mBvShYSPmNqsPJsYJxz9lnkgrY+om49skLymGUgJetn56OIIPgVnHswAGX98PsyfSwNCSAw0BSwQOjOe9P6OkC8xHlPQMkvgIlqFa1KalwaIjsOs6tOglUSxXSEKl772pXHluHLLQZv692BPmuUlN365wLOELrbr3+WCWH7PkYr9dN/E7HNuzFrlaWXB7qziU1d7LFnHTFOYiMab5RFxUVxbuUqrrL9x6RYjgtVUUTfoU/Qpvwdhk+0CKG9DoA9Q0A+MCP2CmFNOJ0eb+CInlgjfAfrPlewAlciewDdCs7/FcFWgrtKx6JUTjWt6f5KEd4lvoFg19/H1POihv1VqgcdHsVeEMCZ2URN+15i+/rMnsIBK1maoHwpNn2mG+a4nesjhGmZOPRwsq+b3UYlfoU+POyt8vZfqVtnBB0u0nTA7SudPyKtNOxh3jiHKN7Jay91NMOUk04yObcqw6w5aJXYBS6gA7Sp36Hf2HOXRExyak0UtpjdypOYRv+j7xIrL/ooBMOTGOPVH5o0Xf+koLSm/9iSMhW/Kvzy41GPUiEml/0n/WxYPBFlYlJo/FWv4+y2Nuy/9QFxsrMcXOrgKGRkBlQIzx6NhN+NDvc80Dr/o6TCCGilETQY53LxKZVhU+Zvka2CYFejLCvZCKbgzVjiOijxOzzYUzZFUWqN6kbw/2wzxoClmgHGL47qA80RiICHfb0Ar4Y215JVCVmULrEMqm/FF7GrZbbKeh5DxDvj7GxVzuL43CkeitZX25QMMOB7ZGG76rm9HqnOMBckTMEp/G1E27wwZ+rzI5Va56cA8xOf6d/a/c7euP9/99JzvSuWcps=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yB3UkbDRQ0ryebET9UwPPeKB1OwJj07aGlMDKm5xtEc3AqVtgNR/GlpO4Sv/ABNF5hyk8NPGBjkNe0qgReoC0SvpoFfvyPAkmgnnQejubjnCGEWzfDFAe9hoEwObFhBtQTrH5a1pgcdlv7//DpkvaNcfZuaHP5Q85fVS/OxUJTM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>XxFtUpTJ5E3ZF4DldJf7OHIWt/bkJ4fZ2ztTuA3h5CzEDMCDwvvWWD/rynIwZNR+QQ+O4CfF6SVbqL03w0Z8gQXQ4f91QooIWjxHsPh2atCcdlwUYllwvViaP05gF9T2mrRbeWwKxDQgZUJxpCfxX2lKTGhfo39VYRo9zOw4fWRZNWSwFo7U6l2n/FQhH8kWvcyWtUVpAlz40iI2fDk1N04OBHiPVtTVfpcf9bIeYIiCGIHRs5hlN9TYLa1ZmX/emJ7ot152kM36Qn0OW11bRaldJr4NCqOnet6iBngop443RQ3aWpJLmmezU1Oj/aT2s95rS9U5WJtvOXBtbbXJOTXcXLM8iET9ai/pEk8gwTNXQJRfVncvUk3AGw9vGOBv7kThSeM2L02yQgcxKdXgJbv7Z5nXHKyR6fGROqjd+FpMivrJYcDHCL2j4C2Oj3R0cP9qSeN6det5X8Azbt3L7zdcl9CotUW8Wc94HXmUomj3qHO8K1uRmxtv0pwQUTsgS8U9xT7jw1pRcr1v1pLpv4Zi8nYHUcE9IpvtcFy3CT0SI+OvHzSc1rAOJzOMHvX6roh3SjdSDYhFRUdbY0J/kuZudRvlEHcQ+iyj+oSB1dN6t+4tZnQ2F2zfX5mKABEcnnG/Ivmy+26Hm43m86PZvZm5Dxq8639sWfmwPuDVUaZHYn86u23NaBFpMMLyxsf8nHq5JQ4hZdfN6ewZOZgdKTsuvOvtOSqgq9Tqn/QidD8e7bzz+kVNBI4mPPYwrp+sUcYTXDj+dZri90w55CqMOghW+JaAoNeiiNZX29OktDsVLqJpLo24HVDxkxKmLSTD3trjek3vfAxh+qxQRe2HGkM5+76jA540iFPcvLc4hzKlbFHEnF7cqKpIU68rTT4mwqjy3y3BrOKiuQYJlPRa/eMvFWbuXvwaPmlxiDCsQnuk3NBPaT+U5JcxBYtlmNicrLOh697MwKvzgb04E5U62hjJtmTi/TuksEWwK210/HTaTD2pPLNFbFHTvfynmWyw0IqBaRjboBIMUw9Azrf2vBRmKuj/wJKceXI1yPfzN2kuGhCkHdRU3/xG0+bnLWM5NBjFDAdnN4HCbl32jAe523XGy/u8zghRDexHjnaYd0uArGVBlrqL9rfWNMD3gVjFeHrRt/MIi+sBVJSuJaqaudnuFXc+3/tfKqtiToJ6Q7mEp/RPDd0a7G+YflOiReBrddMeTLWPxjHJu1BqeGzOSVj6VT2wVl/WQ/myBcgx+csh3BAvQYmbHny0Ms2YsznmXMXotGCzlNmM21xRUyYIR8dDHi6EYtYPgBHxTpPktCLP0Bpv/GNET3IXTW3UKy3XnHJYl3H7VU2dyiimNx0Ms4v9Z5WTIJvbPg4hjC0A6n9UxmBx1122aZt0XDk7VIBIIXrj71e0LTADTryfK0vmALBn1xyyAI49eHSFD1LTWfDdAptvPQM4MYfE9nKhgvjqiGMypMx8pWZv/i/8xCx/yzh2Z07Ul+6ePwu2uF5wJFHZhnOry80ZwFGncERl4E+zA/biN6JAUM3QZHI2xmWzzhWpHOY/sGmLBHkrr/uUcWl/FKGh3nEtsrUq6Mt2BvCck87fXKmN3icwr+BE2wcaLdRxEluaTnJwr846DYOuDoyrP67Ox3+fqN2lRMeXIBcH2z2OuuooB2NSoTFZG4EuQQQxh0wQ/6huN3sNyFMYd11Mm2k6YvyBn9mWzDnOpdfNkZBzV1HO74GuA2y8UdQgzaw0fAedFl6VF7cg1UZZXiNllCX6KquDTofGIWHK1ZXPjWBwkuS2FCtBPCzoCgq9RJs/ArhGHKizoLv3TN9PCyVlMC9lM/1BzEuYmdK4Tdt4vnuLc9i3yloIXf6xcWAZl8M2y5DWgQngeAIczGL9v8YT7NqlEh2FPJX14KAjHEGstsAXE8Q0542W0kui7Vsl9feTE7Bs0rWPcwMNI4FjoPWXYOdcm2zNwe9HtL7qT9Kg2YPbV8YVP18R4UW+y2BlhcMHdK6inzqQ67T3wf5vWZcjoi3/obh66BbdPXXkgkxhBK+GtmbQOEWbLUBFr+hEPWaqJbd6gapTqFWmrYKz+Oa7VAy0RkOEyvKrmNJHbZk/5BIWbpnMaRVhe8MSddhYM9kjpum/xdhF8Jxn0iw0HinNOgoukfpNtVOYQng8lUW0jQuRsrva65USSrOx1VIm+hAcMMoxSjAsh/I71uRB6tUoLYwZ/XTQM7E0uwe2eOQg7SFwFhcTNHKJTY/jnY8e5IttmrbUDTIvyPF3chtfIHLCZAH2VMH1jDDo1uGFZYSRjsPTvkXzyCP1qJIGL8/5YuAgDj92knR38JObSKOJlToi5ZA49UK09tR1MQp4XKrD+dp980fwI+UTH5ZfAkA8oDGKCF54uttKkw05y3eGwe80WYqZ1g+I773a0lveqbd0zFjXAw5QpGRsvkAAZw6PURZKTPbcPqyvOiQtZ+ia4IwSVa5wTb675PTDX0HoAE4oKbmWZpnSZYO9l+QRX6+Vr6BYjJ5WR4ODd3Pk/3g/odwgyOCjwUKH0WO2xq/ko1qBUlAFvdJOEznnTV8wp58p0cM+/QpqWwRDl6HdksULCwR42JtXPgKIS3fLk9oRgtohMUSLd7KNm5cXQMQ9MPSDjES8D7JeffOayDLXRDN9E6qeTzucuh7w+lycbmyFyam4sMYsync5eODLdlX/Ht9mMbOqe3susGj9miZ7bPFr0ry+kdlYOkpH+ufhw+1wawESXs+dmbLywWujnx5uTiP+d5o6GOc6pHqnH13p8D6q5VwGZwMHafR0QZSexc2VkbvumYg7Q+ctGm9+BZOxX1fqPdO4ux/JfUvUzbQdmjfPCne9M8iBa4lgeIzIDle5gumWNms7xweJVJcSEOV6HQR7Arm6xG3N11tPhJINNPzJU0vAOCVVugluDX0P5B7kPd2pbzVGjij4Vjf2o72YLu05wk51sbsZpJXtuYiaXi+OOMG0VAnX10M03SH5yVtoDNncKjSMUzpUmFMORzzzS5Lmrgu4fRuz8N+Q/1ubAiYcyTduxhz6NYgGbgwghNqxLYYutjpz1JRDgmM8cyc3CzUj79YqbM605bBNefdX3sGlWydPJIYQPz5ZAlunPHXOYwRWtbYjEpHh+clTzChBYZfjZEFsPaxlt2vcdWKD2fFRSGP2mH6xx2TWDIN9wR429EAtM895bIMVKwMhMn4dRc8+iDl7BiX2bW/1u1fDum9XaQF6OqOBvzhGz4ujm0e3oxjgGj+A5789/x28M+DNuXH0sTuva/uCT5wczRRAXg8gwyu2fc2mjRPGnE4ty4X035L/n8oeU8qPPedfVVUpXA7zWMBWLd8UTyfH4qjm50wg+ThQsfGXzDY9BuVL/H7PFqUce7chvBVPGGAU6S6HKbwraabAjTxnYe9DKbg2r+0zs2xzb1Rn60QlcdIAe2E1JYRvrUkk6qFoGK2fRf8ZmuPxZZbODBe+fuT5Ia4cSLMODAb6jdDlEooLaoAlk1tzaqznwriepvPjJUKn+Egf7HtXbAgPr2/78NimfmozMQby0bg+vB1TjA7FXiS+0jplmhaggtYqpusXNK7uGumJzTlL4bvSeKq2PIJPS48VWNK0x/hGqw/ehG6NhWkqWNJ8M39YmH4mrvyKqcOv1MvpBF5cc99T5xE8reeNgyoKUAbteUkyKJzAWWJOU4Pg9+HTAauCHmDceG4M8C0jDp828vbC4Zdj8Do4YFPBusICSaibYBPVsHujsav8O1LMu10ramuAJHkrC6Cylp33rRQWIp0EvwDd3uXYpST27pX0nOeVrmQ6i1oKyFgvmUc5fvRvQQ4npXd5MRGnoS1nDnJNE4juwvFxLmCuOSe6+EWw9JJetYyF/n1BeDIxaxpt65qYKfxBHmjYFAjYN/jmE1Xwz1aRt2N4+e6AsId+gH1bBpUsgQupEd9GFAyWBs3S1pTIHXrsDDENizKNox8bVAy+/45EC2lvpiRREdki8n1gb5SKw409BqPgt1u74p4j1Lv0X5dPjoGt7mQz8e6fWO5ezXBIJ9dG+ydurb1RMNFktDkmODvpvG0CdfXVCX7XzFqXhTPaRlBVIpvMQEopoaOxeeNByd7Gn7UHRhP5wqvzZwQbESoL+CTJdEMIOr+cFt8SbXHp/qsyql4D7FiMxOR4SDmPx8Pbu3ulQloz80x1r9v8uB5V0/4UceUZLg62qi0wnpi6PSzi75Qb4F/L2e+itw3Hhf1FQnAN5WsC2NyJ3sKTX8ooiOnvLh3yMz8bcSniuRs1s1Yr1wjrp8kec6jcIihgC4Yujr2M0ziRQvjaooHle58m19/U9PQCbfReYsiPTW1rZ2hDN3Nb7/OgJbOMIoXA/KZIdCmZ/cv9Vu4YvFx3ypdpCzHugLm/x3L850WUSovzoFW0pHzIzczJ8IAUGyZCxTLRtrcaCirX2o/o4gRnLbmFhRwFljMXNxkVWIcJe30I1vs7rRctGK7lzer08OW0+t3oO4hcSZuv0UcdFh6Dn140ibGZrSjalojnWFgknIJzt9jPfc2KQAEOmEghbmfiOzoV16GSUsdifMfRhh6uZjhA5wGwVLaiO40WdYQEMXB2OOHflNrG8JUO6AWyi4n0uCwFpY3YZM5MtnBPvAjOKy+/Jr021E5AihfA2serzrLLRiRSYh2+6D6fScwEsgo6aMMsIWpzVOZfSZXATWS1mTlzcHUAJJDNCVnXmKzbAyQNdsaRNf5pKUhCSXZcPSMWgejbxSGP3iTo2jVAmgraSd7YcszlZCSSRb/imVKhjmjZHIsZlSMV9v4i5/k9jifKv3KL4XGbKIJDrFAHHlAiaj9GQOtnRRcoxQSbMqXTwHnc5hk7GodbYzfCQ/KUej/wP4RSh4Uiv8EDolyQXGk+HwmmIrMbTjZra4Lw30er/lR+TIeGoDTWEhOx4gnq0wHFqAgXGgDkuXXkjgBF9ioZ3ybuz9d51YscUS/oAxx5D4OhBQ+xW9KCIDqFS+kAoEqgiSrbhqs+sA12+DBLSB/2pSUwQi6Vf1vc6tLvdZkXZ+cZfzYlbspCx2vxTJoPPS0Urz1Gl/nJ3+nPggKJRv65nH11eWGLDjKSW+f0Q3x/wWXc36ahgqNhNccycRWFShx91RGP5qI8/0S5wrDlHPXk4r49sZoMub2os9ABMbNLHGM7mGGqwk480TS+vikCGhNcZH1+Lcn0M0RIlhgHJhQpaRdPM9L6opnoiKSHpyDtWM3i1azT3knEm5RlTyP6jlrmWkFmfDA8bGA0SgnKRFp/KxXnUQmKhuHE+ujyDnL4HWOq1QWz8Spu/eS1Gob2TzN+w1QwGlpSAxFWJUpDwB0h6xQoEyA3zJJnc7nJNHDTs2cdZ9qXixjP8vjf++NFjoz3nk9TLpeHsgEOVZhRHlM/sONKf2BqAJ7rEuUMssXQNddxclWusdkytnPzWc02+r5lT+IcmZrVmgom7Yo06Zpi7XM=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfedf5162-c838-9b13-30f1-297bc8249526" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfedf5162-c838-9b13-30f1-297bc8249526"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nOZmvEAmEhGEkayUHYXaeS0/k+4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dVUH2m0IGWotbPCa0tWY3RI6GWP4bsmrM4s+4RgjYO5kfOVYtBA8r38cIZEDrxWIRA/v3Y9CNZcQ3ONPddz3p93bHbiOfvjcL/kC8d13Ax9zR02GeAmmANR7t0ptmeinxrEJr8xV3kg5wjq+hhcv47Wz7+UPFh+jkO7D4AmGw2k=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>UhXA/mCHL246fi4bl1qOl6GGhsQ2bj0zpMPPOl+LMxpxB0tncaOzdfnjAWeymq+DOyc6g62Kw+VtfNY8XNYFsTtJqBZNA0CaBIzDtZJsiNp8EfiL3AlCeBPfShdaAHeREh2YiSSAn2pwjDRhLahKNgoYoQgSDYzchjRD60gQaYE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5195e115-0aac-4ff3-7369-059d57fba7ec" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5195e115-0aac-4ff3-7369-059d57fba7ec"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5wozNj8SpGA5Kyv2Dw7vVnWbH+0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>llFbS7cWz9/fX04yElQ9eqw0Sndg1Yq4Ggu/LaDHXsKaVhzPM4YaN4CItdL+1VllHa/rSEELbDpUhLV9DUHmJ5HYlaLQiSszfEg5h+Ag4JPmLtmMORh1tzFy7tRYyxF3U8ue45m3dYKG/0IauwwTTfOxg/7fL4ER8oLfDM3TMig=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yB3UkbDRQ0ryebET9UwPPeKB1OwJj07aGlMDKm5xtEc3AqVtgNR/GlpO4Sv/ABNF5hyk8NPGBjkNe0qgReoC0SvpoFfvyPAkmgnnQejubjnCGEWzfDFAe9hoEwObFhBtQTrH5a1pgcdlv7//DpkvaNcfZuaHP5Q85fVS/OxUJTM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>