Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa85bcd8d-1e41-5a13-6e58-cc147d00b519" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa85bcd8d-1e41-5a13-6e58-cc147d00b519"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bLJM8SuYvT9POteaXxFrPJDigLo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tU5qUZ1HI9NwqbT8HrHGzjj0VFWnmR66HkzZYeIAKtZV2/v7UV3y2laxhTBnEUv3ybRZD3RtGB//l6rEshFfixqaWSm8wbCQQcYd3HO89w+anGj4PUJFdhriAc+S3kj9sfM6+syZ6bLaBOZc5o3sjB2N82wAQVgnR2SenuGsK0s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc0de0773-58e4-82a4-2194-313c4ce103ba" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc0de0773-58e4-82a4-2194-313c4ce103ba"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>eLZ/Q/1zALBDCO6vcRKkCf5co6Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>PNC2IfvaCVpIFvhCruj42b/PydyLITx/7/QWacaIKbBJWE3GwhLhie8FuHqCVkh1IkQ2rny2hA1RwQTnxzlRDZL+52cGtbRLpqw2X+oz3ZBm1pcPGZVaDqHB///OLt7tJKzFxtOlPnuYdDpSd/DEMhhYG8+JHN29wAU3v4zH310=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx791d0bf3-3173-e144-eaff-b3a21fd96dc4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx791d0bf3-3173-e144-eaff-b3a21fd96dc4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lbrtIA7rVd24qRnfKdG8jByv8Xw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>l5mGmFOO7r4EGm8x+PI2wwADy2CYXRo/rKufzUENIH60Eda1Uho0ivS8lITCKgblMad7FnelgmAEqO6N1hmst5lSIMBAEg5wblnl47W0RrvncYnmoBStPGJ5/k7djLQLUG80BwfWWbTXWSoQ+87hgRT8Eexf/zf4nyk/Q8EF72g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxc89f01de-01c0-9ba3-53f7-6afab8bc1759" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc89f01de-01c0-9ba3-53f7-6afab8bc1759"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bZYV2rt+xsLAgWH8+t7lrBITJ+s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vFeY00uCmQGEFN+7KMl31LuRUQxwZyJO8nJliFgyYMmZ9u8gNoy3C/iRO6c7VHHPYeOz1/2KBV0RTrOPZohlwPFYQvCvyeDSpapm3hS5ETJXtSFlhl8o8U1hbyLmA5MSm9/kK8Ukp7oBN3EL6Z1+9+Kgl6A2cZRs8CvZ7l1Us4E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ZGoaXasrKVlUlEzf74tQhwm9JbEdEqlSYcq0dPgMnj+Sp5OmDDMQgTqNArZjDmunfGCWyEjeIf33GHrto6nbUQbP1ljnHlG4aLAHAPoGylHAYWy1hVE1DcvYYSktg5eHM0JZN+DExVtKrS6t1P1uSmBB33emCGfbU928FeiN6FY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>hPAKnjrMp4sQ4SHMSHefz812W1RMy/OWpPS5de/IbLnKqDOSBmGoIqTwPJT8kdn2D7XMmKODYtkVL+BSH0m3nJmklBFqBQmpeYihmoxfiTjuu6JrB1ufeiUUh/mivvFfznVg0DtT/5zUFJ9WlQgVnspXdIQ/C+79RtOR9R1zGPE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx23065003-04a7-c67a-e701-100e2cb2026a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx23065003-04a7-c67a-e701-100e2cb2026a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6prl0dUV5A9S1LoBCLY/XvUY+9s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>EyxTjkhDC1Z5mnIIsKoxulboxaRXYlikHzZI0U+dD8syb6oLtOU8ciKzTIB/1vvNiu22K6EAjpU7LBNlH7XaAjZlFYora9AymhwPrOdHN1wgWRUPtxhuMvx3AEYsrNSFMN8f/aYjQiRdUiRmfmSDU6j6FiSdfKZPD49XT/Uli2Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ZGoaXasrKVlUlEzf74tQhwm9JbEdEqlSYcq0dPgMnj+Sp5OmDDMQgTqNArZjDmunfGCWyEjeIf33GHrto6nbUQbP1ljnHlG4aLAHAPoGylHAYWy1hVE1DcvYYSktg5eHM0JZN+DExVtKrS6t1P1uSmBB33emCGfbU928FeiN6FY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx15858947-339f-a20e-105a-246c05df568c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx15858947-339f-a20e-105a-246c05df568c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UYYEA7cNbnUa8T3TKIkry6VUC2E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>m77HUV1Mchc9nsZwP9QSlkzmnLIJjWqqoaNRM1Gslv9j4b4jJjV9rnLbJv9cyDkUoVNS3/WEHWCO9P72kucAIPmZjotjrahhWGbJKNNOrbWVrJMVomnYAUD6odk0Ikl3bS22dj2vIvsO6oWlS1S/JRo21HC007wMMCalN9+gccc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>hPAKnjrMp4sQ4SHMSHefz812W1RMy/OWpPS5de/IbLnKqDOSBmGoIqTwPJT8kdn2D7XMmKODYtkVL+BSH0m3nJmklBFqBQmpeYihmoxfiTjuu6JrB1ufeiUUh/mivvFfznVg0DtT/5zUFJ9WlQgVnspXdIQ/C+79RtOR9R1zGPE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>