Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa71c8d29-6c82-8585-6e92-7261c21b3a94" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa71c8d29-6c82-8585-6e92-7261c21b3a94"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>umzoZNvH2mcX48wuMB84kZlST7k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MzD/pL65xUne8tEN+4DXYHWvfQ+MWRyuC6HSHTrxxn7WdTVJMceZy/vWXJtUDgvk/Zr+zKtaoHXr5zDzNpgR5/jsNGOakRPcknyLF4zJZv0wGRrF2AsALdhVtuUY/k2sKxvyFMWyPnVWYVqvFYTZzUOEoly/wbMOPDdlFIN72T8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb7a12fdc-cdde-1fbf-1929-d498218c1840" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb7a12fdc-cdde-1fbf-1929-d498218c1840"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>o39EBgQOXTaufUTd0xppehuJ+iQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FyHZLCP+PRorduhlOsOF8hcrEQxk8Z3PGKOTRokVv6buKEpEhpqfa3MWcFEgZskHepOFJirkNN2yAtlJQH1k6RUEqij1DrWqiMr65crO4QYEn10UTJTheg+UzUUL1OZzXZUY0M/w5KAf13X54M4L5cpLuv7jhAaTLeRfRdUNsrM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx44534216-21db-3ab7-7821-b77cea892c57" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx44534216-21db-3ab7-7821-b77cea892c57"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0FzzmmrKYw31PesjGlVg+UA30hA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rT/CcD9t9QLfQgk6Ea5og3NhQug+xtCRaVgFe6zueF6gd596gUW/bogHcFisWhKigVsAn/bagL2xFupbfwZVy2i4C1Cfk6BAGDpjEO/R4zDXg8xG/KcyVjIaDquS2FyIM50/0rn32iJAVwddyfaKAlH4J3fi/ES/MtdTpXcqYY0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx3c506ffb-6b9c-f4af-c513-e10b7add2906" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3c506ffb-6b9c-f4af-c513-e10b7add2906"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ivm8EFfAnHMVgo1XTSuiEOFcliI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IqcCElZ9h5LkDetQj4/AnySqzPHlAd0NwvNhmrxPksD011TzQSr7Pl07E6CTKtXTzJg9lChpP4T/UUnGdhZE1WsZ4vF0GmawHE3qMWlDSMnOtb1j7eKAWzcPPjNNCvyUQMcZWZDnhsHqk/3DLw9d72dCMkP92BixBVLoK1Ha/1Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uTmUllPrZS3/66Z7i6raga9AXngE9K48f+MDjBc0lhM5agVoYCq62hmDjviTvENdKv3wyXMYaDbJzoBY2pfDHKxOPARaqN06QeHx0StBqyWzijfq4YMy+Qq/yOrje/g551rNQ+J5x+mvyZoHGhp6jc1zcMRv71ScEwl15tQ0PLU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>QIDkgVQbi/d7plCAuLscUkGb/DuPrUPRjhzMR4GMptMwn14fLJTVZm4x0uemt97qcwGuW5QU+QNgorAjYwWr2e5N3ICRmyZAaBZ79W1B7PGP/T3SeLCeT/sSIfiqtfvjyq+B94JVRq1gNWQuz+Jqkq2/0JLpD7ReY6RFnAbbDrw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfee254ea-c3f2-f97d-fd67-b20d183dc8ac" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfee254ea-c3f2-f97d-fd67-b20d183dc8ac"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Rz6PH3/1at3C78e47bSYeJiMY0A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KN73h2Q4PtBFsZ112uiFaEDvsyR2nrts9YLHMYcJN+a+4MeOf1kst3O/SQNeAJJUwsVQa2nRnSGOsPHtr/exvIEN8w8gqTpYCroYvt6IRom6TUJbO+qd/2cQ70lBdCglsK8Eq35KXKCcHF+c3PJTw7/44MGbtXnINyazNBUf3WU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uTmUllPrZS3/66Z7i6raga9AXngE9K48f+MDjBc0lhM5agVoYCq62hmDjviTvENdKv3wyXMYaDbJzoBY2pfDHKxOPARaqN06QeHx0StBqyWzijfq4YMy+Qq/yOrje/g551rNQ+J5x+mvyZoHGhp6jc1zcMRv71ScEwl15tQ0PLU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>UFg8VuOX9TidToN9VRF5ebP+DadxNLWm0nyqVVr5DfUhHwjz1Q8DrmLL31cziKKukUCygvWRfUInK4AgGKS+/Fjv50eX4YXrBMZWGsm9aS7lro+dyVKDehUF5vOnox7aD6ChNWG2xqGpJoUzfDnlwZTgNqGjOk0bePvPD6vH+ZLo+kkbeV1YmIMYDi3nZcnGcTeSkMPe006YHJZScCptzQBbYyqUmXuORu3Yyhcvh6tlkXsmC7KRefY6rwEBuGcwLoy8T+3gHHeahWco9CsrgeK3oY4XvsEGhoeJz4cWL1nOfNwaK8z8G6oL3d1FZibul1UCRbT6Oth6MKJrGj3uBYOmDpqEOO9CMQshfVa9SMGF5RaKCocW0loJ2Xgaq/TnY3HYSm08MaNKzCSEfz1xRO7ew1P9sW0vEXwmEFn3leOkD4OwrEKzT6KLikYKpv2DM9dCCiXNa9Y0D0EDbRLZSpUrmNi5cMsr1mEOLIOePPK9CDaeYj8p9WFpvYPmTD81tA46eMBpGbgfwSIXSetoqJgXlbo3Eq9yCglIr6y9EvRsSeU2hAgCLkwGrauc/yCg2deUbr/090KYMjpVfqb3w/vM7K46VfDly7+7ZL0ficFEm1ajVcYay+DAA+f0E+gkT9kT1I6G4vU5JCGBXUAzW7L004BDRSYUtcTfH0IyAt6W6l//UAMTRynvzmNBVS0W/YlUbFEW3wClNVZ3VjkWc22CtnaQtWRIrJ81gQB82QGt5W8OTsgmD54gIfoPBPchieooGh1M54nRq88nCMBbyFLxf+Ib7yvVcyA7Pl2QBCmskN5bi2Ls7WlCBc5hTQf2nTu5tUDvpJNyF8vP82agJSipUSDIK1KfDTcsjpiVw7oUA8X0dsSrh/RzgnftWAqeLbS1dGnHxelBGKyypBeeEhpcD7BbGWHDR7hnkbw8lKnzU77pHQO8447897UJMvvyISVYsZaG8g1DyssAnc5JUJ7vQacBHAR3faOF6ZoJmK8itgqqAF6JHzAKdrpO4eUX6ubC/J99tp2Kx3gVLHtv+iHGaWoSCp6h4j5okw0Oz/yrhTu2rNEfx6AAkoVj9yKh5CLBuRosC9pOBXbuRfyqOkUK7IC0Wcd+iLN6PspI7i+y2awOOoIU7EZArNOahgCiRstVPF0ak1+2etBimWOP3TIpecYf4Tp5+6xBqaXKLnqjxYW29XsRLqjSZofJ728t+RSqPlJuNeDiEAckGhEW9CfPvsgihgGnSMjSHGGB57VujLndjoGTKoYPJg0WQpohimBM4axDgyCdLFCLT1VtVecXsT9H17LMEy1g0mnw+70Yui6ltXJvqkx0NSqgHX7c6ee1QLoDwtIEFvv2ZgGp9jP9iRgxwJnMB8o99rH+zqBEeyyZgQuWg0zpjj/rcXob5XeZWjPHd+6BTp3Xb5p3uV95rqrNvBnnxy1VyBnEnzVxDbREnZIxlEQM7cSX1GfGixMk608tpstCIYhyZBwIFsxvDkAGPILl5uXaFrpie3STGjnGvUIS6CUvhEASERlSOFrwpNl/5R8Gyd0YbZRhi6+VZA09q1JH7h7Z745uV6NiuJLDzjlsYLBmaJ4c3Vcg0/0Li+Bx34dr+ojeavCeLAvdcyuLZHUNY92fRTCrJav60L5DnbzEXi0w3XaXO0qCX46im+SfXHdn8KxZXTD7YsDGMDRxEhqSrdrP6sEdB5qQhtRkO1OE3ujtRtRsf6I2Ks+VrAi5vfVgjwbUiZnqZFtK0hlot2z1TAcNzPsYuLXktibJnvFjYJZZU5CxJ/0yanRfHOrg0fU0NVJPLFnSiP0sqwBCF8L0VJmebJnKMiGDdPSvdOb5C8dYlkvZjXtEfj1l4mye2e6MQgxHicU5as9v1rvaLjB0dwcLlw3C2TwHEkWHDUgEGHkejweMI4yfN0/cnNyFC1VbvQ+36/bZNkEq0SJMNR11dbFt72mX5IH0UhTJA3DC1p7bs4mELN+zU7PEzfqbE+M/vC7jaXWRrkw/xfA8FdG5tPEDOtLV/i52EH/78dtxNjliTAU3DRvONpCzWF89FmSjE+XHuBwQpNK0YYH3dCciJ2v3bHLZbJ5tIF9VbQGxY7TFiaWR1ZstvIhBJPtcehizNWsvLNPn6ZHK5CkxnWcLXWJE8+E4EYoTevNVCZ/gG4sesUMa1jFnwLkH+cSPaGht4lxZhmpRC6ZkcBte+lYztb92dkf6yhrrsWJtZQdsURDSJcm56WUbxMANMPdMP8UuG2Adoef7hMMUwQLpQS4NuZgTtfmxBKugZ9tip2LMtmSr4nR4Wgd1JEKNvvLOnzRvOBNIr80tQ4Gifr5KnfvrPAFdM2ua3E4NaCuLCqfKrJAfTX4zZlcpEPIKVATJyC1WTWZe+IEFzidRuZLlgbK7BOOAopkF6ymaL+stAH8oPX9jN3GWdF2TkASqgyRf/dy3Zq/NVEdXYGg09nXKoqEQEfU7YV76KE1KNFxj19tK4lZilnKdY4FMIuLfR+7B3UrrXX9V0tpxCpwuJojKcLGDk0XKKf6xeFf8tyyDQAdYOip5olK32Q28QnIdx+4yWvnYxdmPUt2oKFI7wbeCXTTx5u5GQSFleFdOGxCl/VZ2FK8m1bTLJlugA7eRlPTFqaCOZTJ2LWvz2hekFDFR+KTaWHrSqC8th4h/qc8lnbTFRxwj5rNzFxPpxhr+uaYE0Z6K9ztl8nfUcXTAMSjIZGhz8Ke4wGiAFdCclmAGSnjdnBxJl8GUGnwklayy5mHT0uiGB8iwMLLyPHLhrM/csNOBAg+nEGqPSLVevsQrzltB73pWL0+C21OoTmuZWmq5c7eR3XT3nLa7oeZMsx89a+k1X5tOxKEC7Oul3mv/YtC50oAmW1v1+JCbukkKks5SVCEUy8oVIpM4lrj9O9ZLFlWziRVTGGIJ1Ig=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc0298641-f435-e5a1-3064-40daf2d7158f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc0298641-f435-e5a1-3064-40daf2d7158f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ue93aVCeU9BfliKFMwqBdK6BQaU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CGYJQyb6zTnzIgi+14LX/ibGriROZaBBEPoyMwKB3Qb851++mDLJhLlkBV4FGSIf3wQHFitLWcwkfOGPlyvLFweUQqpupjvuVMlPp7eAxRNFo6LcZlmDHuhUV0lcGu+68ZWz+QmmfnTFpPtiYn1FzW4JUOyxcD+qJa4W0JpwA6w=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>QIDkgVQbi/d7plCAuLscUkGb/DuPrUPRjhzMR4GMptMwn14fLJTVZm4x0uemt97qcwGuW5QU+QNgorAjYwWr2e5N3ICRmyZAaBZ79W1B7PGP/T3SeLCeT/sSIfiqtfvjyq+B94JVRq1gNWQuz+Jqkq2/0JLpD7ReY6RFnAbbDrw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>