Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd7abcba6-7073-5645-6689-ac0384cebd12" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd7abcba6-7073-5645-6689-ac0384cebd12"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>R6H6VJGJE17kdZN8NVtIigdT9Xc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pIUOiRnH1ex3leB4vHaff85q7VmWrCENUFEFPWX5Yw6cXcvuDbAjWvz/BhTV5KaFQPvm4jxYB1sJbVHOmv70xq/OFW4KngkbOtxyq2GcqLpoZTQmfZwlfrZIw9shsQml/x72K5dXRF3dYETHz24VpA0kps6gWacZ7AP4BCG9K7Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe71e16e5-939d-4c53-cb25-0d27cff3baee" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe71e16e5-939d-4c53-cb25-0d27cff3baee"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>oifhR/qTy93jeVyV12qwSO7qScg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>B81py8b47ZIk4NKQQfR+5DHXMCTERBC/4/e5APxRECwy5fQsNqHYe3AMAsa/Yo/Eqk3vwZXB6A9b4lq9zrhnsV9dgMWsAv2R115HrbsOuQrYgH8H2I9s3DBQ9ng3BwJ5/QSr3lYiPAv0QqXkdMhuckJSOX/milX55SUOfW8Bw8c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3081dfec-d8b3-b9a6-c09e-08a861aa2bc2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3081dfec-d8b3-b9a6-c09e-08a861aa2bc2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3BBz5PDpvt+OnXSMYUgfn2nhUyE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>HzA7cJqA8JuL3C9uV5gXxCPrMDiWc0YojRX4TvxWKK/DOQEVyNit/uKtM1pt7jq/QTNxBamjJQbsLICzsXbrfHxS25XPDJXoRa5r2AKjkP57kwT7TDUWUGmo6CEKAQqH+ZFozLfq+66LvY98SQDtgb93hmJmZ+ikEAyCFz5EAn0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7ae62351-c80c-33f2-dbb3-4c0bba633fae" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7ae62351-c80c-33f2-dbb3-4c0bba633fae"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>16jd94aZko8yWmK/toYzEn17ifM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>yJ5/cQ8VSslP9sefUdLYwq5Guw6WRKmnBQKEj7WmdqedDDsuA6ErPezTKDGzyrqzISIaLC6QUjfXnrUL6ckcXzL5IXjDabWu5hFVKWuJ/ax6UM799I1Slna5LptJ+dL7PtZjJGGMpvBJfbw6grfNT3yIi057qCmfGO41MRqeR7I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qNRv9it3O5SaU79447Rc/qDN2EnuDMYdb/XXLUYCMZoZP1ME4e8ht8zxINtJ2MAxTY2lTR9QOuPqRXtVAwiu6178ZjRVJxEDO+H2RWWYc/vFZPFS/0DhN2ITGYzuphyhMIg+fvVii/Abp1btzuzdpnlL4lrRk0Ttl6f+KHTjVfs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>KcFM3akjdoOBAg/Kgu4DCMrjV8xEnhb2UhT6jIdUp/TtqchohbC5q+20GsxTPHJ35jnWAzEb9W/JrHebqPzxt+u2og6GZOse2BG8lqrF8fHrK6J75uvAE0S/6svCLa49QnAYufiXT7sEpo88qfIKstIHYVE3WWnqZtsPCOPCD30=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx16bc43f4-494f-3229-11c0-880ac038c1cf" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx16bc43f4-494f-3229-11c0-880ac038c1cf"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vYPoL//rxI/aWSpkQ6cP7lUXYqw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>OBhqSZ3d9DJVaW4NzP1PKtfgeIddzYkBX52Y/0Ez1yVdY3T4lKoJJmg1eC9LQBz4QGxGqURi36d+brteCzNRQxsB277fnSyDAm4KA3gtosfmoU3BUUCEAtpuM6aucWtSITcne7mSvcW9RIlWxCkzLt5K/LvSK6tEszHegqR5YaQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qNRv9it3O5SaU79447Rc/qDN2EnuDMYdb/XXLUYCMZoZP1ME4e8ht8zxINtJ2MAxTY2lTR9QOuPqRXtVAwiu6178ZjRVJxEDO+H2RWWYc/vFZPFS/0DhN2ITGYzuphyhMIg+fvVii/Abp1btzuzdpnlL4lrRk0Ttl6f+KHTjVfs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>WcN+luVMDEkwumiD3+EgcZZv7uxCGng4oPa1xF4ghUh6I33pnpolG+emUKAA51z/vdauRvHIcMAayc3jOdspRxO8OwXdmwO9mvad1VcrWGtY7+84qmpE0rC1tbQ+aaDVeEkqH7e3x+Qr3icRSCa7tfsi4/6UdPHop1DeKOQnSvs9mX+swuY895h22uOMIWDOJlo6gxPcqgiVTpBjKQUcmScV8ZIPwaiUrtxs+2Bgo7uVz25pH5xvLCi+RS6sxlJMtXD3XlkPcroeDPQ6EcBhlxZnyX8RRIDKwBE9N65N3FoAaaBlEYAsbOaDyoyfJQv3nHhcxemSSV2kAJ+P9ZqNu6ZXSM+AeaVKIMywNkdc2p207U7aDivQVtc8e2vKnikxBzp8vHJvcpRrl78Mfr4etlKU2qutFbiiMpfWSwVxqQ30WOD2ENj3cLx3wvqTwNgIq+K7uSit4cmZlPq7Yvn1KAQlNfody2PxnxtxjubmlbYt9Q/x53UBqQqjQO/0RpUOYQy017gpbOTs83F82h5XRjB4GZezHhegyj8emUzbneHP1Ie37muDnbVDHpSYisr4SqXdNzmQDebh6e61t62gsZLInTeStmOpR4ES9qZIz67n2Pkd40KpAf6DWktpEFdU1BKFWmen1pv5YLzCjN1akvQS+wIqyOjNorzii0e8Y270JWDsoAURR5Q0tU4opYz3LM+AHLwUDDXObOL/t86eWjnIq8ia6pEQOtZMwtECe2Q7WqHkiTk/E+A/KuCNlJnCb84PyOQHw+6djL0fPTFECernnUM29wmbhh1ZhYXbyn8pNjBlC/j46HdiJtGO1T5lJ5cp4Al+Q1qnwiJq1Pkv7UXKJic/qFDfG6ot9W9Qmb2E2nmBxaPu5QvgA+0AGcORg5ctUiwotkKWrwEC4y6X4map8NJCcfeW7jKfVOVvWMxPCjdXcrUron4QMGJBKDLGKNdAFIsc51ndAI0HmAGXCS0rzKpOASGw2kimBqecBtgTgWKwuY4SXvU1J0lgdutuSzCKEld2t3cvimZ8xBQz7ql4E5Ay5+nBDJlO+GFQ24UXznGFQBkwWLKlC6savdzmxl9Y3zuIX1bOY/qS3yIxOBc68SzJ2Amh7e/vx2JNkUCGQaoUY2iTPYRSEQHXvKm20p2EOjVhIvIpzcezQ+Jd3ckg78jErEtGwVfbjHcJpqX+gN0J8Crqk0gf2xmPXwo/y2e1ZwGMijKMgzQo44vjjp1GR/RT81Gha1OMb/qR12s3FeDP8imVaBOUIejn4Lja6F5qSoaPKq1YnvoVbUWso0Qn105SM7/lvYkVQosb3ZjIw4NaY8MEfAq1pcxagpO6EeVEbwSEeXWMXfFT/cT11ldguO7pJdRbSDdlJu+ePWWJrDZeqX64rRynUtViW9Qy+8tssUFMP1y8VikIX0JNM4xBOnStklmSuEIb8mezsk5acaQGcNKk3uW7578xLPwN5i+GMrlFpcmX2ydVTPc1UtOOc+wgH6mUvdtfcGWCrlEt2i3Qe5OsoV2YE3cIy0JX6AmJNrVMKMf99qL9xLgYmz+Wn4HgSLy3LkR942AkiimSp90IyjTJtpg6Ej0FwZseAmHjspNtqRzEkZRrXnR/rJcq7tJl18QZzXCdFExyvbXrfZpqcQJFD5Dj+V1oJetFM4xI+1E3MB3IVYZweLfZwFGr9HsbGIh9uT8Z5Pf529ES5D7QqqU4zRVS7krr2vOCqLanqqcFWG5EO4i3pkyH9XyTwGIhjABffzviX1Enj6bQNFPKx3rQx1vAt4C/ylPT06TibYCp+5+ukrS/wSpJXPH4vKRg/0wRddzV8R5EP79Vrq/ARusLXZdwnLPuPyM1CDCwXu+RPL9GU4IsGU6jta7C8C4pRg9HQO0qDTeEd7sSIphqbvkgRXeyuNE25Q1F4QTolJ+R4bVzhPObYTOC3s/JuQherTKu8cjYaNs6WPcMuYK2A8IaNQ0yIH6X2T2SkUJ3MuMoLVjz1Qd5ulVbnNhql2nz4bcgRS705zSqVNTsTfpuKysYdK5jfioYCT0HT9dKl0ELZVtA4Ff4UpLBosIOaU+jiOhyaxXXQ2kUtCfOmYQ2OSq7mhtGkEJn/LftvDinTrP3+wJ+WM9OtpO1TOXW2s9/dEdzOyRFUHmiU9Ssxmi/TTOpBcXr9q34ltRsLF2eaLCIpqCxkoKwInyfZb3rmn6kNc4xfrHHEwKXxOdXPPaXgjq3/UdPKihF0BiGKLbp0/23r+VUteRG3ZrUUNUghS7pI52vOp//T5tyAerCryve2eXa0zCUfQZydJHYIE54ZcfbszpC8rGl07nNUu05QnZhoY/9tSKh0z+nsNOKMeK+qTS148DAbkMnU+LlkRD2vHCnmm0YiGOwMoRmvB5aNSUrKNn6yqeBVXVqJQEnqK3rL0MvV6nVQ6ybrZOoRQ3meNvahhfEmaGVOjgXVsnZhb0fbzBPtUImhP2S2IxxK7Tx3LGm4XLsQFp0yem4vDhOoA0P9CVr6Jy7ik6jN8SkKGhfnP2c3+TlD/q/cKxCI5ugv/PH2zOnEQ0/dsK6lRn9KIRXoEo6+4eSPobl/jz07cOyQq306gyc32gvCtwfcmP+YsKD9hCPcUcbgsGqyAVgLO5nO0DbviWvRVoPvr7bbLl64m3VHuO4xGT+RcgoLKAbLoNwf1OZg9BcvwBj8hnKfrBiKh2qiMim8w2J4pm3OTSWExZGZr+Er9MlQf1vIjUCF2oc2j6JcbARPNLiDVsyzR6rklBxhga9bvgKDWbZNTFi4WjREzTBlc7+rt4jf2aUFn/zjfRTVT6oSQBspbJLb6OzmuyGHVaiihbnRghxnGLglUS6mAbb7Wkk4yewoMhDRO6nN3DQ6fcnYTVnWU4HN4g9qab2FkJGBR/AkTUTLXXjEGLmdpqalt4MvxY=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxbb897106-9ae0-79e6-75f0-a7b70fafc45b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbb897106-9ae0-79e6-75f0-a7b70fafc45b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>m1SMlIK5dj6JqYZyr3CV8sAAyi4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>J2y9yvArAlBrfM6VVAOE0gTZT1RwAW5wYRIfYT2Oy8St5J+8F0gxTeJA8pgnFic4QAuwHJia64kV3/TnX6WXzTPXgS47HIbJnaQe9/2o+lztOek/W6SUxJNjX/XLGfzzaK4Ek87ffJV8Qr/Twz7mGrede0ie0cThbRdVfVXxJag=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>KcFM3akjdoOBAg/Kgu4DCMrjV8xEnhb2UhT6jIdUp/TtqchohbC5q+20GsxTPHJ35jnWAzEb9W/JrHebqPzxt+u2og6GZOse2BG8lqrF8fHrK6J75uvAE0S/6svCLa49QnAYufiXT7sEpo88qfIKstIHYVE3WWnqZtsPCOPCD30=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>