Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf5aedaed-3de1-1ce8-eda8-d658b59481b9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf5aedaed-3de1-1ce8-eda8-d658b59481b9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>b1+3V0f743YktyvRRCGuLinK3uQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>StVI+2p1RD4gD3i9Y1z8FUdnhpIN90cyTgCg2xwYn7/YBvl6D87awa7ExR3wLIckt/V9SIM9kTIdH2Gtaprdm/eVV1QebN3gX4duflD4mNKh9984YARxVgfaJ2VwEKqhJb0HD/vA36HzVkKZY6Y0WVNIdKu/HclHVpnk/QBwv5c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx93851a18-7dbd-2735-bd83-cb954a5afb5c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx93851a18-7dbd-2735-bd83-cb954a5afb5c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7D/uC98D1R060pq+uoafZecA2WY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dbEV2MF2LyXjli5YN9XM2udNovzGzEdZSI64tHLIH8O5UFN7teAZ7iYCaTsH4oByhVruQ5/O/FWnJ19uJnAlUoOr06nGLC64Oo+Apa1zhvpJP94GLBV+oDFc8NkA8dgwgDfNQh9xJaVa4u6iewqdL6EDyp+snw5POQMmX7LVVjE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx31a0c4ad-43e1-23b1-b9b6-6957db62d99b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx31a0c4ad-43e1-23b1-b9b6-6957db62d99b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>BaVr2xUe1eft85jlpXg658iT4VI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>i/MuwaS55WqQXCK0WlH9+dzMg9qkJahryrdSA1lZPYxY/8KRu5atTAL3Xq2HpdPSNStTKD7hRKA9MD7Uci9HD5RSOv8tiE0qFRHXomr2ErNNMbeZqLwJImcJYjcxAlrIlALyyuSJ1v2uXkeRziteVzOtFP27WvMxFe+EF/uY6gI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx001c95d5-ade8-5dac-167e-44227bb2bc8b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx001c95d5-ade8-5dac-167e-44227bb2bc8b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0/wPa7y4ZMMcIbPfUcj/GJ1inL4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iNQYDzF8ChcH0qq/2e3IRcnW3GDNix+Y4ZtwsuLCfrEm/c2ARqOaywjJEG80BV/QUoJy1+771DqQXPN/zb7U5MryhX+btG1LxY8qr6OHPM1Hl1x1PU6ke6SWQvlegENSEzGIgr0DADB912z1fdfkb2JtX418Z6mUqvPR6UXk8J4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oUJ4lxuD08mm2MIWL5yHkwa5tYkegHmhY4BqoK97MHD1EBLzyopbYYgDt4bS4Y3TumUBDD132IPY4IXlJpaAEqwskNwytz2V1jx57EafSpQeDig1VnWMme2GO/RbQF2qNTGXTERYyEqQgKY1NHWYaQm8UTv9anKiKhlKWm+IXrc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>PhDU0SgERC7RmPWsVWnxYzbNC87+3A/Ko8ny67Mid/641S31R6XJtTq8mSWauyhr+Mlb4peu03rB0bUkRKekmG3nPjSOBU+bJFL95XuZc1R5dlCFcOCsRnJoQFM9c8PyO2FrwMNtqWsS2wqnc/lKu8fMqz8Z0WOGqnUgNRwkM2k=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxbe3d532b-1194-35fe-4863-84c49017e5a2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbe3d532b-1194-35fe-4863-84c49017e5a2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Kr+kP5vV4OsvcM8FrJUWpTetRNU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qg+apNC+MnPMGFmuFo4uOOQGfnTLqUYkmihSE3XyTpLqBX7DFvHPxeQTqrdEZgxsWL4s9x5wzc+RzHqMftLUfx1yEzQX6LYHRIbAI9UhJ74M+VJCGfBVzZmokDxLdkZn72i46WWV2KR3couviKM7wQwP7merZLoE6g4V5Ug8YXI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oUJ4lxuD08mm2MIWL5yHkwa5tYkegHmhY4BqoK97MHD1EBLzyopbYYgDt4bS4Y3TumUBDD132IPY4IXlJpaAEqwskNwytz2V1jx57EafSpQeDig1VnWMme2GO/RbQF2qNTGXTERYyEqQgKY1NHWYaQm8UTv9anKiKhlKWm+IXrc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6297a825-9740-30c2-9bb0-ebea5d2ab754" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6297a825-9740-30c2-9bb0-ebea5d2ab754"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>pQFOnNdKCFYy5fZMp1cjTA5JSb0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>XXQLR1/Q5R2dikNUbf5tfce2vuuAZRjICyzVo6IW+9plre21MRV2KoTNbCrxa7AEVQ7hC3udU8lqZhaPkSGXtXNKilVN//3RJIpdjbf7+Q7vbzKxcn8EZJEhy3a/KPrC1+L/b5/mye8bF/KJp5Iq5/b4bLy6AjueFLpaE1A7zkQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>PhDU0SgERC7RmPWsVWnxYzbNC87+3A/Ko8ny67Mid/641S31R6XJtTq8mSWauyhr+Mlb4peu03rB0bUkRKekmG3nPjSOBU+bJFL95XuZc1R5dlCFcOCsRnJoQFM9c8PyO2FrwMNtqWsS2wqnc/lKu8fMqz8Z0WOGqnUgNRwkM2k=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>