Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxcdc9ccdd-918e-3b3c-c0e4-70cb8d774b43" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcdc9ccdd-918e-3b3c-c0e4-70cb8d774b43"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+O3DuZOkUwFuAQbbAL5rskfrzjk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TVRt+G3Dp9zMhcuCoQ22FeWLYn3PGK00Cto43LRBP8yaFl3WnsuUwgo+m5zJa1UxzXLMwj0Lto2ZbXEqiVMBqWCiDb+BdmXSHbNb7zzI+aCqHsDe5TyQe3ftIEUaOaTHqIttgIt1dXf5beo4clCl5ymiec66pTSlYgGEeHDtmUs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8ce99aa9-6e3b-e33e-c587-20b35b8eec11" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8ce99aa9-6e3b-e33e-c587-20b35b8eec11"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>CNT5NdIqIQRATR5VyH4WvZidRew=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Bv19NKYOe46SA9bZOnnPt1slHeveoZoujtAC9O5Zh9twfbTRB6TwpjB+Xt484ci6C93wFb4cNBaJ4rxileXYXIxSzOvdcTNz5NcnQ/kpe4gDyl6l8Qr1uFPVWaiSCtFoZHp7SLlgkq3e+LZXR9joWFzqOwsNv5iqYLzwhi6QDN8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6f1c54ab-7ae5-e480-7492-653f2c445cf3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6f1c54ab-7ae5-e480-7492-653f2c445cf3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6QpXtRMd1XY1b2wGDAd8gDq11eI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>WxoV5yxkLWCud91z0MbsjK4TOm3pFYL0/HEd5SbpVJX9heTOvLDW0CixhXOF17nVzs7mJDkz9IidYQ41RbCDawAiH3+CpKaZdz1W9fxWpu+QLwwTIb5QX4fyiiUolTnSgAnuj17onQr6tp92aWZxIuVyEWNxcTahYfLPNj8x3wc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx5e526728-78b4-1661-2e7d-4a87613ae61b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5e526728-78b4-1661-2e7d-4a87613ae61b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>iAfNf7AEYdK+E66lCKK9bYOaUog=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Z4/3AM0ckubQlIIHGqTyMxscOQcG+gHpor7JVoxcpw/ujRk1yB6PCikEBbLOtqHVdwGz/c8k6tioZebsH4K+gcmZXk9UOJBZEeFAokG/0Px5gLgx/nWCmyHBgoxI42ZUJ9JjVNFocGZWil8asxRswG9b3Kcw06Ae9+98ir0u8ek=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YNShbv6f+cPvFP67HLhODYjekG53ZlUA4kfeYH48FhmgHe+Af+ZDXOWm31txS7myr2Uf1Q3vnVNGqhRJfcSqBcRC+WETNkzyBFOQtoMC5Bab7fe4ikNy9Zp7oJZorcq5mfFG2MaXuk3PBsh1Q/+yN1dF27NAy1XXsOZT4pm7Nu4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>g+aEsvlKKrBl3J7VwReutU9bYTJgfKmPELvMsrw2ngq4Nk5F2NIFhUoPrqKmrvYtaGn2reOeQnM8GZRknCI6soAqeXUgnBeCvHOM6oLbPhIXFB4wFjP0yv3nch/gKI2GDApWgonu+GDNVNMS4sbhR6XGIUJq5gMrKTKNw5f2brc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe086e75c-5d29-10be-4879-ea949fa89e0d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe086e75c-5d29-10be-4879-ea949fa89e0d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1vtDWq61silslxIizJwslJwIkY8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sOse5JjbOoQyNzEz4WNZp4SfXtTXPckzoNBUUxIQoaiLG/STC7uekuVnnYzcmKhJnqmFp6UWW+a8J3BgGZViH3yYB6asiscJL6i4EqflWO5c+5yb2g1+DV03r+YfgG7yB825ulZgjtGmWnGc19NWA0SId4JIAB+E3BphI3LatdE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YNShbv6f+cPvFP67HLhODYjekG53ZlUA4kfeYH48FhmgHe+Af+ZDXOWm31txS7myr2Uf1Q3vnVNGqhRJfcSqBcRC+WETNkzyBFOQtoMC5Bab7fe4ikNy9Zp7oJZorcq5mfFG2MaXuk3PBsh1Q/+yN1dF27NAy1XXsOZT4pm7Nu4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx118bd165-c898-c9ec-0901-413ab050d862" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx118bd165-c898-c9ec-0901-413ab050d862"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IcqSVKLHg9LTSw53ndK4TgXgirY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>K2a4W+gSO15yxquEdzgAgm2zFGprohf7WaydTGfkiS3fFonN1rCgkSIKrCVYNJMlRZsChRYbUskINYdpYDv0Q9HGKgNJHWbYu/+u89dNYkDmYDgUUs4ybem7hoLaRHQgsdjHmP7HTb9W/d4PxIt0oCw0s81/B3rY7Uj4nuvDQaM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>g+aEsvlKKrBl3J7VwReutU9bYTJgfKmPELvMsrw2ngq4Nk5F2NIFhUoPrqKmrvYtaGn2reOeQnM8GZRknCI6soAqeXUgnBeCvHOM6oLbPhIXFB4wFjP0yv3nch/gKI2GDApWgonu+GDNVNMS4sbhR6XGIUJq5gMrKTKNw5f2brc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>