Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4479cb4a-08e0-8cbb-ff83-7581e7c89d07" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4479cb4a-08e0-8cbb-ff83-7581e7c89d07"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>w9pWsE1l38GuHxzmbwAR+A9hT7o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bCpUiH61TWu4984m4fBUnETSTMEBTnPwFa5AzqLaUXqw+ROr4B0+MnduPcG009YG3614M2s+f3E0Wn6XHQdtRMUKvMcrsnciQWDJlra89Qn62VCFyskFjXmm93MmujfmEjPkFEUuCDYXWuVuaNafSbbPztJiJn5idqB/PNTKNAI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc6a1421b-c113-04fb-9192-c707b678f6e5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc6a1421b-c113-04fb-9192-c707b678f6e5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>BABjusQJzatr+n7hhCbl9tNRDqg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>R4w+fpQWbX1rix6ck6u49AQsSGwYR8npgSVDvUhXeJSnhZmWMxGjKCHXKHJSBn3WZZa4Nu2N00JeduvW1R9041WAj2KFHoGCBEOYMXZtQA8pFeuWhClI4oXqQ3g/RkdrzSLdNlolpQOMmvtn/lZUkafBqsHg5Qm9DyrccOEvZtk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc972207a-a28a-23b6-a826-c410c7d51288" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc972207a-a28a-23b6-a826-c410c7d51288"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LVgFCPQKie2+m0RepSIZXCN8/M4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>t4uqV/2+45fVClPOTHi1pq8bYBEX08kGjnvPyjBME4WJF8z8W5XjHcLHtyQAMY76GNG2vPuyZCAurFqFHZxiQybw/sdBZ3oHxdWjGhycf6yXVRNYNmLDDpuTpJ5mPYRzssxPe+nNhoYScplQqip9aQ0yGPwj8DFP9Jo7qeNEEso=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx21e2c291-198c-633d-03ce-cc71d469dcfa" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx21e2c291-198c-633d-03ce-cc71d469dcfa"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KtOeSWY7Az9l9W6F0qzVSP+uSg0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sOd+acFdPOhSxnoJJgzZrDyJ0JsY+liJ4vXyO/WzgarozEh84g2fHjRH2v4vUNpujfuF4VSSjT8FUftPR61gCbzmGL+4ATird4FmDGFzqnYaGW3i4Nw1hA/73IhwsA78soun90+LAXEN/wOLIow1JcCf3AxZpvqLXqKz2kLhF/U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>JVwMkZlBh2SNYnJiUj35KOZbCR9m4pf6y+jpDtOdjEhJvC6O6rX+c7oo11J2PKPAEmiaeLIZUcCPQTQypF0FqBseN87NQgSkJ5ZHqeon8gjbUFqp5dRr/AaTm2uXPk4jWziAFNz+4KzuKbM/Mtm2MHmhxh97H27D0KfxHbmfvSk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>8EC5ryzI9SwoaabfQHEaRqK2TSm95Xyf6zlq350Xefd9Y3Flbc8QI8FA/Iy2Gzh+ZlTyJR3o7DqO5n5mUrWnY2pKeN7uQ7SWHNI0psaGwCJo0/Rlexs9fvVbd43CCeUlCQNDwtYjgswdjnyZcJKmpQfSnAYp91SGNYJAzPXlIH/PaR2geWf8PSDmrcGwYK2eJCVHgl9NXhznFZb51BhQftS5iSjkP9tlsTg/85+tGYBFCW5sOM/XTqkDUL5V7LS0NUb9Imeg+6o9A8Xx7T7BDTrGEf0DSrmO2rQt6A8vkvP+K4mePRc+cB1cqYiPVdCSU8SL9+XkIipzWLtcpU80cHjLleT0NMvGg1ga8Amhrxh1v26rCcFl51Jga+M2GHGSSDOh8IiTKR2pVboHDckMeZh6QrzH8mAAYTTx04y6egmQN869jEOr5svEy/foPFUsaduA2FkpibtR3KTy2U0/Ir8u8wyNEkQmN2e7ECtZo6385sj3byXjHiegRGjBsz+EJXDFHazFuXhMMwP1C3AMWlGCQSg92dlITiSg7j52aZDUInxVVQFdtRuIgAZOhvGkgfDqGcoh7gxlprXTT4in0JPOvnzCxGuZeJZp1Cyl0eIuKzYy1mM0BzD4n6IP0Z2hgZQcL/Wji9oL+GccTIqNx6cBon9cZCgR3nOxUDMvarQchBNvgqcSVgn5Bvy7SJAgSm5WjfMhg6ZxzlMGsq79Z0VPOUGqURysRRBp2y8BeFn5K4c9NQr3kwlDxClVFrmhPZYxRmMjQLOD8GgAEdAwHvH2BuCkCYofRTrPF+pi1REdfuBaOdnrSSU7X4Ut9Hpf3JPhcRkTrjLeDnPcckvltc7oIwlk5MPuIjjF5zWJifJWPW32RRsqVL0XK3v3YZIEhi3nhX+R9FE2/w0RBEOJ8mzIBY36Q9+4zmsLwvLd2XZEcMMRtF8TcStHGZ4EUgBD2ToVmXIPWL/mHXvYagwhgpG5rWCtlKRLNawxcZSr+7g+8U6+xU2IwxF1n3ilO8NeuDO5sm/Vt3MVR+eiPOj/y7n995wMXimy3xqMcXX3yIO9/sCiNv84tvoAfTiEYiw9I9hujrhvUPE3iBiLDJs31kkzJNedjbX54MOnzH8tyuCcGWYiWd4N/jKMRWixUu0V/OeQ3lqk2h1Ltr4YABnEAUjg2d1guuV7jmKCG87Bvw2/ZVxS/NDP3/y7DKjQvfvRGxazupAGBI7BGVvdcCQzVC9SiMw5QWRl3oX8+A1Ox7afywwrhj4nKTaZ3KmqV9duMIn79koCbholau5lOH3J5wN+QCuFbZ7YnU9d7FWWAy2D7xk/UoAo0CC5t0ZTjEyJ72AfVLxxCYp4CjQmGJuBgAHtvxnYQMexC4W3QP7F3vVjOh/Wow/ssUaYDcPI6PlRLr7L6ZzIj1GpGTFnvXhNXW01ckvvXjLFb3aF2qgS8twB5v1DJssfFXBncEHvcCbvxMZ56BM4pcsyYRi/KZMEcvjak4ELWCYw1MbraATFAPTjzYOSn15ibi1TXR6o651WLtjz9aekh1QLj8RSg8S3UisVJy7AeHdJYx6iLFOcHm+iZiIjvTp8IlVDfwNwcMUsOqo5mvwVlYOZExQb0hfumisfHeEXGCdSypyl8WI7xOV66ByAXJkCeUP/Igs8s+sddRXpawX5FUG2oWai06VAPNA+hF5fjCkoqG/NeoSDpPH/QsTTJ/gv1eblhaHmHXlyghiPoP3ety1ZV1kh/b/L0BqZF24+F8Fra2t5N2Qng2dxnRz0qJJ0eTafOKFhJCF03d9lXKemJLffI22ur9lD3akvS5FjWGqdwTXW3T6VEBmTBQ2S3lC4ow31VP/m0YaBsm8GIOGei79CFtjNbR/bE0Xf6wEbdySnqHRcvLM/MrYvmH4TYxkOXk1bTilIYaRUF8RJZKITdZ9d3Xg/md0QbQ09PEKMsK/ZrvEyHnDKJI8mEbwu5NKcpQzLQ50D2OJxkrQQc12A91xuOOMlYCoObCzrLibM/Yw3qaBB+zilpGGayIyA7fkj5OBffoZgDgRe8dy9l0TZT300y1k2WVoex183OvKxZ68YScFQYbV1ToxLdePVW3Y5ph7No/xhTYJto+SLvBGHf6gHHVeAyPD4gXzUg5wwHfrNg6d0cYkcowXJpSKbLw3VgPqRUsZrLLJcMoHQPYbhIHdtnnDlFsHiOTfvPjA45xcADEz6pvJVZNaDfxPIsIv/ypaoVxiggrGMYwSIFPRG3/ihhAOyipho8vIvldcbO2TeUf7l+D3tbTcNCNul2zLBzaIEt0lgn3MRGdo/mp/A5r0qDEcbpEKTavgtmY5yJUHMBmCyl5D2HzXi1Btp2zOEPgZGtu85Ld2hv2KRWRmpEadDClLM2Qe4dGvD3+LrBXbpvGG2eFsQZRDaY/aj5fQNToh15SNBWLl60+Id1j1J6Rb7vy5EXOl8024xEvVfMLbR2CIL9dqhG55xTn6K+3q42pfGG0wuSky463fibfA7vJjdE31yVbTGlvAsEOL/dPFsR8ErXmHbNOymWzkqDTuZT5D53uSeGt9Wtl8ZumMHLcwvjcoOj5jf6hgcfmyjLyLsf3+Atf/p/qrblNaPQhbO89zsiPRX4VUc7Z70aBXjGLeZV7wc19Es5S3PcucFYSOLbVG8Y5sfjuGZVadrPMhpC7ZWAzMju8YFm4YC73Z/d2C4hmuOoUJsZkOrr0MWPipESOOb3qf8s/H/pWVCR61jBeF+eaBu/4HDCLKFp9ks3JOhuOqoGo3XSayHFPmrQnGywc/uyb3CahMbun1HxqpdtgiKRbOaP9/RIlatzxUuTODV8LRtKxZOqYer7YX22JOWNj5plAuv/N82WIufcPIwms5vyM4ZsTTxdjQ2oV1p22S1QTp3eUwYKR0g8bAm71Hfxymu/ZH/OHQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oZC7xxF03+LYwqBgm8R7v21cQCna55EVth2Qn6nEYuu9b5kKtp6A+vmp5F1tiNdCQOE28U4z4ry8AvDX8cuin7vOrmd3o7+yKDYvWu4ws31KLh/IumH6VD43vR+n7Ffsn9vl54YyI3ZuDhROe9UbpPh6WKyhQgoIppkq2b/CoGQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Ry7yAJ4TRSAxF55Dj5kp8PMJPi2vv3puwJe4qhOW/LAm+8NubzjATtyqGRDvvHY47CbhbdQl1TlnkJIxFblkg51LDt3M91w3pbnRsbGnWF4iNK75Lcz/tcy1gcsa3B5GU7d/PQAbWxyX1W3hAyoTqxWd5qdpX0VtH9r+qJPydfZRj6DwMvAQ0sCE3jka9uY76d+Dq8XwOXq0avgr5eQW4NJx/BhbmWl3cYE/3BzDw+RzpGmGfEG91ldHLH+1ECesGgeAHwfr23aEBhykt7hXi5JnbNKsqLOxM1WOyrdUJhu4a3iJos6c3bHIdutmW4M+qelenfXAzg3/Qd091B/NPEzFh0JIFw/Bj1KMddP2zFB22hZDcBWtaDlNG02Lee8geAI6ncPW9LEVC1FWGhnrdL5wh8NH+dL02J3GjkOQP+7aRJmq5md9rTFtyU4ZjzbY/12sp+5umyWIiew0b5F5itNSiu3qchai/2AeYoWlEPGTfC7yCxsf4CvPs7mSV7OIADshFcR3tQ3ENxhXqyiFrEij1u9BtcV2+FM2d1X1JuXFHFEAQ8Jgs2JsrlpEZWRuySXtVCUQTV9aitVsqqnEFAE0r7HgTaoBjgpVZwoO9Y8GF9rMkmaNCqjKTCbvfiArM4PEyhZZP/K2bijYMcE7krIIOO5DCoCDclk0hpyvTMursbadWXoSeRc7VWGUrkl4fC79LC/ib2Qn0x3VhChGfhWor8uxkyjNCpe/V/UitWZhxhbmhhQWm+ZZ7M5rRGmMyQf6Eo5NuZ6UF+H4UuVPcUc022ILHzFp8+/doszxQK/Kqc5LrkLGlXMgrNjRAEkEFpmOiNNF1M31aDl9jQ/BxJGyuJ/JtuS+N/aqhNjSxLOlq2SJwBxgWUWwMQ8tW7or+oslPjFAcT5fUoP4lzVWi8HYFm/+Cw876VMR58javOMv0ItLy4ZCno97nni9Zb+9tjyJ5KDmfILl2TrukNoyF/bHj9GHYw+7PSPsl1Mb5QQViFDePsZrnGbxjRXdagQdSA05gl9pEnN40ydDtwbWYn3EZoHmdCoS2Rm64jXxg6bge754d+aOO7O9E1qzdGTj9b1JdsDps/LOaLCTNH0MXGrpUagiR1Ycbm4R9xXRpzVnfaoH26ifiutaDg3fOPPZPjh/Z5lRzhxj1O2qjRfDbavMWZ2tabtLZOARBCrokwKIiwR/YAhWrMtv4sDrUgqA+4tPeC+fqY2wU8+QbD+8sKLYJOFal+Zz6PCBv3YSbktU7Kf83B5X1KmE6+HBuxkw8dqzYWWuxpvvqGg6yuiidV/O4LI6HrmszrXyK2oSWbX9AJ99Y5wukzcgMivGHr+I4PTipkPQyZ1+oO96Wp7HBwYjkOPDc5pQTeGPNQSvXkXIsQlt5BUyE7Hn3fXt72ks8ZR/utZxQgZmyuv2vdzDtaLj3B9bmr+TQ9BAtjQSYGqjtTMoZczMJGVOzSmSRz2oNZbRdhRETiLsnWfd57wVUipv08BPLyMv+XG1tArjSRhy39G5B37x5kR3z7wY39+ty3paL9hhxLiFbOBwgTpPpczaGaRltNaw9a6mOA2gYNRMibJa5vHyOH7MPnXQoBQv7/0Jzc5ZbiYQO5++B7fzrTHtySvb4lZMEo67Z/g7xVJ2GnB5doP+gput2xx8u684Vembxos3nJZBOgyP6if0L+eF/cQ8LdTh/hVmCzStYHNBhdAbTsLPHrGCh4RCAcNdj9ovKZ2jIELpF3ivYVJyJrOQlIbpXwzGF4b0nIizMLMY92Lk3OoMy/ip3+PP2lbn5x9gV7Rnoc/4TDmsGboSVwvyAb2ju1Q2ho4kydigoIs/UK00jBJIMzUXba7CQDIh5fLnJoDJeRWUfrxEaONk4WDJinBkOOhvxmzKvvZlAmQzAlCd+ItKQTdqK3N7VZVSVeqybJe6ZG7o7PfGdC4Dz8GFXVadI4m67lSeUITOWxNhVsEz9c/JAkBrHpJtyWFAgLHyL2SEiDFBDomTvyDqvVGv9M7XZ7sCODBF0ZoNV4UJkHVRwWNaPbRUrUI7dijq6ItYiWfwlgm4d+1K0iwrKQQShyRt/pEvJfjaFWh+T4SYHyQMGYCPPMm4/PySHYIZyRNfiU+7EbwqoxaF0n4sT09nKx1vLEoQQoUFmKL6azXv+hU18qhXThGDzNFXlTyhiaItDa2u8n9BlIjftcZ8X78sSf34rEQ3LxSUbUsKNamafD3IxDr2PONHtAuStNy6E9BphERXAp8su7/2hH4TI9WOFlz42MejThnR+bqxZp2SGKqfDJmYTdLWSHX2fdae7pMf2xTw3/0Lb0knKO0CMh8lEcE20gxJ7zshkE45UkxeRLaYFfoZhpar2FVbus3qydGmtD14TJ9Qac10FvJ+Rjo9QR6zICtEjVDmhjKAi3XDJspmek7NarnPCBxVGKlQFkCstruO+9PzTufRTP8b4/8iFkYCd9uLBD8Z9AHGvFkVbTPehQZr7lYkC5q4j7jtT6WrOw3h+dsOJMstb4/MZAl55AvzyYjenSuaSu4FrS0nxKdJ5oUZ95zM3vxhj1XqUk80B3d2/treJcBz5helO7xENPfJafBjTgqM3HSu2H3zpKIsLygIM5vUtIGIwTe4/FT8qMUaI8HLshoo5Y7qHo1fO2kBvf8fKnSeEahqy0VnLuUzDeE8IumF5PdM3RYnNwTKDUnG5NI2enmcAZ7j2swJobJ9LKSJ5lVEdf3fHkesQuE8J9Pt+d5GAIsxcbrKxjkeZKL/9MnBjX/aeopN9xM+h6H2JxUsI/cOhOe5St6HAmUymQbBg/aWOpnS96F0G9QIImNLpCXwlspHfCYKPtgibC7RZ9pbDwpC2rw4hdaYGvUOxSsGiOoBw0Z6c48ll2J8QHfMsIyA00Sn66T9XD/P8pMoPFSuYnJT63jO+BkPf6kB3BgTAbNALsESIaQ84eQ5S8efPPxx7MIdIbzqlkx7evddvqRybXggOgxahiXsrzzJ/vKVZpzuMMH6cdUXXgXkw65ZQ1F4ge3upUhSVHRYxhOp7aCtFTqMuQ9EGM0A9uM3lk4RBYqKGr248IeWPAGbLTBq+tPJaRr4CP93P0BwDoToGeHq+Xlx7etc5n6AxiVcuutgNlrcUzTyvwACdd7ijjMfsucs3of90UnafxkZ2Lj4GxSpuLvvSbi6Ap4Xjc6p3CMRrQQ3rq26In2rW9HAfc+zGI1xSG1hzqJyQyw4YZ0xwsR0V0mbT1mKOY/8sEX2/GHk391+1ekFjONA9n3FYpmNDD/pVwg1AFL3iTz25Pwas8emcfrcaSc5wwNC6Ed50O8EfuYAQ4M9COWbHSMlPqr/y9Qk6CbQAhX5Y2sqnvuSIY27LE2nDX00ybS3pD9rDRAVCWSNGXQlOhaST19dPpa64hmdfRF191DU8Ma6R4jQW7YEfVRuvStLCzJpM6SSJ+BegdrRBHX65hcTZ+KY1sHJjeHI/zBNer71YOTyjSuJl0i5PshYu6y9CiIi6ypIAPVt5xr+iIJFKnCufTUIRhGgLUpA57n2M6i1Zremw5evuSKi8pniShvB/ZT4QO59AyQhthx8eV2nDM5qMeuHV74FH6wba96reM8IpneS6r1RLnkkWBXp6VscSAQB0nX7DXLX8HAkbcxbWH1yBsYSP+xanxXilKqJpfZ6AjDjLG0xM1BTs+lNYu0iHLWmqf6S9A7M30AxLBMcSczsoOi6gs/m8PpmUxEOK5KoDNAk5xt9ph+/GLK13XBQNxIXbrXA3vqW5HGAJSRp8kPDAHUf3fomUQluE2LVo5LsUs8xuIg97AlJjCjJWQXDax5439wxnfRxIg1JChoSdHvnxJ3otX6vd3ctIu0B8mrzPsRvVcKvbFkRzTIQvMg9AygnG5xOETaoz0AVd5JvgsuLhZc6se+K2xA3rl79ecsk+ZviveTbwPIXo0V/n5NE+9Aye6PjaMBiGo1ZXfAs6EOOlhwHo6jSQByeVkzTM2CeLN2Ye9yo0FyEnMhhDFk24D+/MX0+eYl4OHi9tZA+MCw03gMG8qyk91jIUYpQOPcyZoZEHOA/nAU2g1xFq25usc/NE/ti+P/yxbtZuiPztYw3a+giZvolsLU1MpXHLFEfyYoZuCybCHYhUG3hvb0e1he98oy7qdvq84gMcBf/B8YGiZm46lmHwu/YJZJEYcVFB5OqwlZY3n1Myt5X7vKqyLNzBmA+jHY7h2+ryZqeswjp/qHxO/sFPRBe/4brgU/MVs7FoGcSbxVvZXFBEdCbdetKDD9rWQXv5r0rlJZOEIOT9Xf/Q70J6WFBO2r/YqkM3ko+VWAl1utZSCr3YaFBsRDZuxNq+5cbGNbRDhck+LpEpUSVjke/lz6JmEMNu1u3+MDKGuO3hZevmStZwxBPuVVbYuyopfhdRXYzuRC9xOE3mU256/7C7eMw+K+5G0Ev5YgDYoskLX5uUmuAuYOInfb1meaPsex+1VKFCUvs4RHdwN7FXr36CdRvCW6+EXV+LcF0QyGo3rPSaX+LZCkZJC345W5ZVufcI6aGml2qfOXulHTJGb5PYucNW6Fs8zbh0AKyZo7FMA40H4GgtU8cCDmSu3hNeBd0w2N7CwsZgABhOprA3nkG5rs5CQjtZM7XY/bniExsLki3PJSqVV1JLIHF9VgDvE8JkW6TtBcJyd54izYBwH1YBKtZ1IdYAlcSEELho4sKf4EFGXEZfRf34ufi+KcbM6UPEcyn+18rFLPW4bFCGvad9uMJaRdYXlWkrM2mv4O6QkvO2h3aqn4qXSjNBzTKYYo9PWmY1Jt5UWP/eCV0sKWFS94jW6fwMuqeforuyBAuuzTst0nIFArpLZ1ZsUcXkB3r+LpjLWwN80WlZgsm4pSr2Y37czFMRUpnjWdjxuBP50AbfzMW8C1jlGIUOOBN92DGyaUsufi3IwOkRJvDMOTr49t6TjE2seIPsuI7IizSTNid1FrHZf04AmBxLSBKLQxlXtFealRsKqSnhJO0RdmG5w9K6wkBNY96FGMSu+6W4p3UQv7x0gp0swAjFqX5FPWH7czBVpi15Lmt98D/+JzmILRNfdD7rXsIaxh/VFLEPeFhY3gBqw56HEELMzKDJUtMPe10Num/xPYHiOh5LTA4og4j6B6qHLkh8aDKNn4WpE/UVkXtXa+pnHbaksjprKHCIrO7FZZvlnQe2K4+XArEo/QitJMXxVN7zNdo/sJOzxPZEPmUhaNswT5eFNUfzNGcmnRk4y9qGqUpiXviASx7AJIgVO6VMFdCyz4axkmRG6gv+gVVg3sINnqPy7Q8RTy/pFiWHXKaCTaN5F9DuANnWadSyDB6ydYCnY2WFAxK5aSARAkQE3+0pQw4rRLo3QrvGToyybq5zDwN6jaQBKZhmaw+PSyXjaIpsQjbU8ROIpa7qTjZOghxx6CdwkF5Q1FGbwnbXf15QN7KzagQ4kv3BQpSrZEInX4YW/bOAjSFebzfgdQc0HVK61g=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf67570eb-d5de-b16a-8e11-30175c4f3f39" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf67570eb-d5de-b16a-8e11-30175c4f3f39"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DUKKU2v7qrpFu9Lh6/ki6F2Gans=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>l9GAzdVlXgOaskg3cXMjvbInvhbWSJuaCAYvhL6iNeFbH2x1uNOUX9siFhyIw9+CxwZ053c61QdFc8HgLxwvVKMROExNkjL5y+mEsdVhD0fBj8Ou7bhxVwi7mG6LpfQBn32tw7nfqQTvPlieb0sdiHe4IQWS/zYt3Fo1HLIZ07A=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>JVwMkZlBh2SNYnJiUj35KOZbCR9m4pf6y+jpDtOdjEhJvC6O6rX+c7oo11J2PKPAEmiaeLIZUcCPQTQypF0FqBseN87NQgSkJ5ZHqeon8gjbUFqp5dRr/AaTm2uXPk4jWziAFNz+4KzuKbM/Mtm2MHmhxh97H27D0KfxHbmfvSk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>8EC5ryzI9SwoaabfQHEaRqK2TSm95Xyf6zlq350Xefd9Y3Flbc8QI8FA/Iy2Gzh+ZlTyJR3o7DqO5n5mUrWnY2pKeN7uQ7SWHNI0psaGwCJo0/Rlexs9fvVbd43CCeUlCQNDwtYjgswdjnyZcJKmpQfSnAYp91SGNYJAzPXlIH/PaR2geWf8PSDmrcGwYK2eJCVHgl9NXhznFZb51BhQftS5iSjkP9tlsTg/85+tGYBFCW5sOM/XTqkDUL5V7LS0NUb9Imeg+6o9A8Xx7T7BDTrGEf0DSrmO2rQt6A8vkvP+K4mePRc+cB1cqYiPVdCSU8SL9+XkIipzWLtcpU80cHjLleT0NMvGg1ga8Amhrxh1v26rCcFl51Jga+M2GHGSSDOh8IiTKR2pVboHDckMeZh6QrzH8mAAYTTx04y6egmQN869jEOr5svEy/foPFUsaduA2FkpibtR3KTy2U0/Ir8u8wyNEkQmN2e7ECtZo6385sj3byXjHiegRGjBsz+EJXDFHazFuXhMMwP1C3AMWlGCQSg92dlITiSg7j52aZDUInxVVQFdtRuIgAZOhvGkgfDqGcoh7gxlprXTT4in0JPOvnzCxGuZeJZp1Cyl0eIuKzYy1mM0BzD4n6IP0Z2hgZQcL/Wji9oL+GccTIqNx6cBon9cZCgR3nOxUDMvarQchBNvgqcSVgn5Bvy7SJAgSm5WjfMhg6ZxzlMGsq79Z0VPOUGqURysRRBp2y8BeFn5K4c9NQr3kwlDxClVFrmhPZYxRmMjQLOD8GgAEdAwHvH2BuCkCYofRTrPF+pi1REdfuBaOdnrSSU7X4Ut9Hpf3JPhcRkTrjLeDnPcckvltc7oIwlk5MPuIjjF5zWJifJWPW32RRsqVL0XK3v3YZIEhi3nhX+R9FE2/w0RBEOJ8mzIBY36Q9+4zmsLwvLd2XZEcMMRtF8TcStHGZ4EUgBD2ToVmXIPWL/mHXvYagwhgpG5rWCtlKRLNawxcZSr+7g+8U6+xU2IwxF1n3ilO8NeuDO5sm/Vt3MVR+eiPOj/y7n995wMXimy3xqMcXX3yIO9/sCiNv84tvoAfTiEYiw9I9hujrhvUPE3iBiLDJs31kkzJNedjbX54MOnzH8tyuCcGWYiWd4N/jKMRWixUu0V/OeQ3lqk2h1Ltr4YABnEAUjg2d1guuV7jmKCG87Bvw2/ZVxS/NDP3/y7DKjQvfvRGxazupAGBI7BGVvdcCQzVC9SiMw5QWRl3oX8+A1Ox7afywwrhj4nKTaZ3KmqV9duMIn79koCbholau5lOH3J5wN+QCuFbZ7YnU9d7FWWAy2D7xk/UoAo0CC5t0ZTjEyJ72AfVLxxCYp4CjQmGJuBgAHtvxnYQMexC4W3QP7F3vVjOh/Wow/ssUaYDcPI6PlRLr7L6ZzIj1GpGTFnvXhNXW01ckvvXjLFb3aF2qgS8twB5v1DJssfFXBncEHvcCbvxMZ56BM4pcsyYRi/KZMEcvjak4ELWCYw1MbraATFAPTjzYOSn15ibi1TXR6o651WLtjz9aekh1QLj8RSg8S3UisVJy7AeHdJYx6iLFOcHm+iZiIjvTp8IlVDfwNwcMUsOqo5mvwVlYOZExQb0hfumisfHeEXGCdSypyl8WI7xOV66ByAXJkCeUP/Igs8s+sddRXpawX5FUG2oWai06VAPNA+hF5fjCkoqG/NeoSDpPH/QsTTJ/gv1eblhaHmHXlyghiPoP3ety1ZV1kh/b/L0BqZF24+F8Fra2t5N2Qng2dxnRz0qJJ0eTafOKFhJCF03d9lXKemJLffI22ur9lD3akvS5FjWGqdwTXW3T6VEBmTBQ2S3lC4ow31VP/m0YaBsm8GIOGei79CFtjNbR/bE0Xf6wEbdySnqHRcvLM/MrYvmH4TYxkOXk1bTilIYaRUF8RJZKITdZ9d3Xg/md0QbQ09PEKMsK/ZrvEyHnDKJI8mEbwu5NKcpQzLQ50D2OJxkrQQc12A91xuOOMlYCoObCzrLibM/Yw3qaBB+zilpGGayIyA7fkj5OBffoZgDgRe8dy9l0TZT300y1k2WVoex183OvKxZ68YScFQYbV1ToxLdePVW3Y5ph7No/xhTYJto+SLvBGHf6gHHVeAyPD4gXzUg5wwHfrNg6d0cYkcowXJpSKbLw3VgPqRUsZrLLJcMoHQPYbhIHdtnnDlFsHiOTfvPjA45xcADEz6pvJVZNaDfxPIsIv/ypaoVxiggrGMYwSIFPRG3/ihhAOyipho8vIvldcbO2TeUf7l+D3tbTcNCNul2zLBzaIEt0lgn3MRGdo/mp/A5r0qDEcbpEKTavgtmY5yJUHMBmCyl5D2HzXi1Btp2zOEPgZGtu85Ld2hv2KRWRmpEadDClLM2Qe4dGvD3+LrBXbpvGG2eFsQZRDaY/aj5fQNToh15SNBWLl60+Id1j1J6Rb7vy5EXOl8024xEvVfMLbR2CIL9dqhG55xTn6K+3q42pfGG0wuSky463fibfA7vJjdE31yVbTGlvAsEOL/dPFsR8ErXmHbNOymWzkqDTuZT5D53uSeGt9Wtl8ZumMHLcwvjcoOj5jf6hgcfmyjLyLsf3+Atf/p/qrblNaPQhbO89zsiPRX4VUc7Z70aBXjGLeZV7wc19Es5S3PcucFYSOLbVG8Y5sfjuGZVadrPMhpC7ZWAzMju8YFm4YC73Z/d2C4hmuOoUJsZkOrr0MWPipESOOb3qf8s/H/pWVCR61jBeF+eaBu/4HDCLKFp9ks3JOhuOqoGo3XSayHFPmrQnGywc/uyb3CahMbun1HxqpdtgiKRbOaP9/RIlatzxUuTODV8LRtKxZOqYer7YX22JOWNj5plAuv/N82WIufcPIwms5vyM4ZsTTxdjQ2oV1p22S1QTp3eUwYKR0g8bAm71Hfxymu/ZH/OHQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa13d3feb-5632-2fcb-fa6c-b6cbdc3a7025" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa13d3feb-5632-2fcb-fa6c-b6cbdc3a7025"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ZXAC+DXry2r7Kunq3iaUPkTJPe8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>H36V6O4WU545Ciy7eZPHFhQgbD8O0BE7xpwCHKGhPsxJjSa/lIYG4mMDmMtRqMlblVK3UPO+2isMfxp0d6LBXVNzZBvoehr8cWIZhMzQgCeYl8bzfHgijRZ+GCJIxg7gwFdb0xRktg9V8MF96hpv92RfFdx3uRwQCZdexR6hBWg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oZC7xxF03+LYwqBgm8R7v21cQCna55EVth2Qn6nEYuu9b5kKtp6A+vmp5F1tiNdCQOE28U4z4ry8AvDX8cuin7vOrmd3o7+yKDYvWu4ws31KLh/IumH6VD43vR+n7Ffsn9vl54YyI3ZuDhROe9UbpPh6WKyhQgoIppkq2b/CoGQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>