Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd1c6fd15-f505-98fc-5a15-af47377d99a4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd1c6fd15-f505-98fc-5a15-af47377d99a4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>m8HxlQgZj8dsA3Cd3FMZhD/bP3s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zGG3tAB5fsrdNWlvNCyDxGQb5RXnrk06SaC6mXbhV0INdXaa4b6A7Fpi0Z1uGyJsfQrUbdQMAisKOCoRxdCD4TN57so7wNodmxtX0dhn4proDZCjpU0VFeZqTo/619PzG2bLbbFN9cJBE1eCk/+NBId7TWSq4Om4MeWzTFq0hgY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4c00255e-36ff-2769-27fc-9ad4cc6fe23f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4c00255e-36ff-2769-27fc-9ad4cc6fe23f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wvB166V+51oufwLNHxPFG2WBjNs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>itb5ulBaE5Ny2wmhUe6hPdv8E3fRQlrsrp8gDEaH7r9qt/SKJ7hlm9F39210FcHn0AOf3s3A/PL+9mLmIc86sauUzft1UqaUPmUT+WidcP3jCIFK5tcn3nZf+yWbwRqT2dNKJXNeJWPzacL/updiXdsm45Q7uNk5LCXEeHCd3PA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxed0db3d5-ca3d-2f16-ddfe-b0d3a12a7ab3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxed0db3d5-ca3d-2f16-ddfe-b0d3a12a7ab3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ENySHOTiGJiob10Flcu6LD3gBsQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>UU3cid8/XN0GtZtZrmQgTgppgmKL50o89KFJ4SnQ3BAJLDDmVm6De3y/J6kBNgcGc5jJo0ey3f+YkD5zEjbbWkI9IpIuLfvrbT0//nUyK1Ydd/06xMt79ShPkElaWID7lP1iSXGKRm7Har7k24wkI87WoaPr3ls3Q481Y5ak1SI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1a1c24ea-b0cf-2887-6c60-2c7897c7682b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1a1c24ea-b0cf-2887-6c60-2c7897c7682b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>aIg9fyQzsMMLhuD5VfnY6K3ueLw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RjkrNldeNuCITG8Eme9hjf3j1i6Ithup4H55Thg3Zg9RHfsMaXAvsv2vZ/q3z433uxyXHJ2kntn0BM/BW4S5K/TRMXHVou3dlKfg7cAojbaN6anePlMf7zFqa5S8yMevw7F/rKEjdhihbJquEfiaOpIrcKKr1MJXLVFtiZ1PaFs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>EsHyiwMPubjaShvmqni7oapxVQwbqNjOPuMx/DefkS7IIPktbcXg4T/Cy8N7HZitY1HglJmwiHEgIUAJetQWvWTYCu20u8ct7JzYGXb0PyRvdFT00ngwR+/ooK1XLM8tMio7mlECxQOTt9vuyHf9wp+gPNiDe78PZNCO+JXMogE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>arOENVP7xvryJinpfM55YVSg/SMrbVJ9ONlGhTq9iTUAf9yCCI0BaCg96gpU5jYZiYTsLMqHj/2LCHJZk+MUUrks3x6yN2a0pBKupU5K8cJRNUM6ZnRdILDYaGHiW1qL3R/o2Mm1trtBOEGfD17ASuJIX8jy42uyNMuHWMraSJI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc3690d5f-c70a-be68-1964-889e0e324ab9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc3690d5f-c70a-be68-1964-889e0e324ab9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>pENNV2Zf857jCGbWU3O9FFL8F2U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>eb7McXiV+EdJNkDoqqfQrEzodoZ+oOjdtRYTCIpMnlGo58dO9l3/PoqsaEjByhgCPlaPXOkJ9SZPyFTUpuzGUKIZbzGtZIByigA0RaKXsyO8P0TRoebMfPZiAPhSu+ynFURSwtGBlCMOPZtIqs4BsBLoRxYOxULnVoLjxiw5OGg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>EsHyiwMPubjaShvmqni7oapxVQwbqNjOPuMx/DefkS7IIPktbcXg4T/Cy8N7HZitY1HglJmwiHEgIUAJetQWvWTYCu20u8ct7JzYGXb0PyRvdFT00ngwR+/ooK1XLM8tMio7mlECxQOTt9vuyHf9wp+gPNiDe78PZNCO+JXMogE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx42992dc6-5834-729b-30e2-89ac37b83f81" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx42992dc6-5834-729b-30e2-89ac37b83f81"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>C62JaH+FxxoQqYldj8QygYs76I0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dhbWbvhEJKc8vAA/VGM/ueJN39pZEsmLpeir8EQcDqMx8HZcZ+XtOdxarP+xAMwMcEhkJOxoG3uh6BYh6Tr3aFGomUwJDECw5l8XOjJDcX9unf4szXQYfs0+Nnd23Gw6eBzFOmFsduJiagH9CLh3TostSS2/jC0cG5WQh0x+Tyw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>arOENVP7xvryJinpfM55YVSg/SMrbVJ9ONlGhTq9iTUAf9yCCI0BaCg96gpU5jYZiYTsLMqHj/2LCHJZk+MUUrks3x6yN2a0pBKupU5K8cJRNUM6ZnRdILDYaGHiW1qL3R/o2Mm1trtBOEGfD17ASuJIX8jy42uyNMuHWMraSJI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>