Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx35178e21-a4ad-4d33-ac38-70aa0ee2014f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx35178e21-a4ad-4d33-ac38-70aa0ee2014f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7/13lUbIV26bgpv8uiNyWJJJQys=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ahtSnE67FahrEPOeeNzHo9zDF7cZBveCTTJiH7/LPn+gczldEyBHS0rv+S5PUJLAEgimOH8YXxZStpDokqMdXfh5pE/t5zZc/O2i8dgKHPyFts3FG6RrmTBTUnVGSaswRlse6xENKW2CIIFb6AGuR2gtH08uPour1VXlQq4pZ9E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx090dac90-41e8-dd1d-c041-21ecb8c0a9bf" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx090dac90-41e8-dd1d-c041-21ecb8c0a9bf"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>JlyAouZe+u9B4pe1mFbFE5YBQnQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sbDvEufjHyfjGr2w43f8fhqXvtOkdPF/8byu2h20UNx+JDdvdHhJMZTu+60krlu1wMmRiTe6ZHhErEEp5HFBb/Cd7evM+X1IwwNRgQdxeqaE/ef3+gbQ9audD5uHfJDOS10mN26HbhpKTCVj3WcaPHBD4ESKEA7cP1/0wdR8BOQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx518e6c14-8928-242e-ef20-ca2e68f4f117" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx518e6c14-8928-242e-ef20-ca2e68f4f117"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>H+7vYhKheAt1pKi07NmSMLDFaoo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CKBw7S7BMpOBhcmTfQdEFG+lTq1EDTb2nVqE1GWsZsSefC33SG1MutIbtAKg9aFVQXUROZtiRjzmW8kWsrnQKsPuI7C/WdiafyxQ042Z7hat2/vVY3hVigud/E5Zx6cVj0dRgDEsm0nutHJhVW0QmMy/eEpwtQc7H5PpfMUYkSQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx607c9543-ac38-a715-2bc7-77d2fdda12bc" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx607c9543-ac38-a715-2bc7-77d2fdda12bc"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yYFuLGKetRJFBMma2Tm7Av88yFw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>fxhw1TLo+HN0HFg7T3NWtHR6wEbnIAuCcIDYUNwKxDRPM778cD0RkpWPSA7LzQO6NNw6pkzVOyHcH/EVnI+XRWxr1Jr6evzAX2Q7DSqt0gPvjTtSg24vOq7OSoBN2SUhmpU8tdu0GoSt32lv8fVqtavJUIEwYSoznnemzA9WoO0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qG64y3iQYVs4PxovXq2RL4E/o//VvZIMHVN2QuI35bBDlGIA9UAjSPZc1Ares2o2p0XdwSPJbZ+fq0HrH/IyzM8d3be1HHWsqDftLxhmu3LnqRujbswbz1VpRiE0SkIYsfJS9un7/yV/EaMh/5eo7c5okkaBwhveH16fv3eN/L4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>PQ+yPMRJW2Nfncr96hfJQia9LRntKGeJHk++S9bD6tVphCQRsjppN0hk0SYbvL9AZsDg+1Naknt1UrQC+ahSzNH+Xkn2ln13CrkzR4nlOxca5M3ADS5QgIKZAF1KVOF1YY3DMRaugHUAElnFi2DP668w/CPE3eY2z8MQpCvxN4g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7fe3d469-d613-03f3-7cc3-18eccdd93d9e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7fe3d469-d613-03f3-7cc3-18eccdd93d9e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>hfkMXxhNzVvZKjFWUF5DYIELrcc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FrHbS/ND9K4MBMrYgKvbeSn04Zn5TlUJ2+9cmJldw7whj9cOB0onNlaTe9xsENhqLv1oqj3AYg3Z1G6bLG4BjC24agCFgXRZbcdjzeaRA5uR2hsYif1QT1V0eO/R23Iga/K2FnPbzDwyQLWlZvFDuWl6aHgXsKpRoSxXBAtitvo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>qG64y3iQYVs4PxovXq2RL4E/o//VvZIMHVN2QuI35bBDlGIA9UAjSPZc1Ares2o2p0XdwSPJbZ+fq0HrH/IyzM8d3be1HHWsqDftLxhmu3LnqRujbswbz1VpRiE0SkIYsfJS9un7/yV/EaMh/5eo7c5okkaBwhveH16fv3eN/L4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>dssv7YaE/VPiY/p2nUL927IQ7xBHAn+VHL0S7wUmEWyHb2MkZxFEYnmju5/BT2CVDTU6SXprHXRnEr4/FdRcJeIvjOwMahXckWLs/qxYxhsHCAH447cTf/+dbC0bvWZCM6u9Unrhu6aFbg5ePaAJIuw4Xd2Sd4IZBgsliuobZvmtY25j26ZeRmNPd3Cwz4sgh1fLi2h7paMHs6et6dS3qKK9BX32XrWGtJUoF8Y4Kgzo8aOe2Or5DLYRdf2R/juNx0EgSrji+AyJpkpmCBOgVJi2x9fpDPueNUHUaABE1WUsEj5pKSzye77rpIvG7Ao2HZueqYC/loYPSwLvT7TLzdZnYaArYIwqp3DXF2oylFYoZ/GwbxVaw5H5EoSC2hCgFYCNhJPChuBICxLkSlpC0mtUGzi6Nvzyb3Iw0V/R+nmMSG2iFZsFfvsZ4djaTkNTMdClVNIDdZjDqF0be+VypuPTE+UpVFjQSDpDa0eFo/nH1SJYu4xQDpojldmAgy1yWvkuG5VjZ+uTIU2eSDZ+C5g9Ps5s4z8wRrZl4SvqcNPp1499k2loxdmuVGQ57KISemkYtXwcAMtAu54na4IZleM56hLSN6NjeywVsdYBVCWnrtxaD6p4oKwpJpaGQcSV0yXo8kZjD0UWyQAUS/exMuRUkZgMhCTBPcnPa9mwG+WHrQqxgoZZ2ghKCmz6kFUb87ww58TcIkGw6ZVxKZv6HY+YyV1bBSNhZcncdDvugaijzgeMluJiIcuNjthRL/C9OteV445RhcqgikMIokjJMZ24l99EoKq9f0C2NWeaM38MySKct9ZiJF8f9HhusUNZG7PYah/nZ1wcPtnwR+rwxS/4Zc0HoJyzcpFhijLMElUyggVUEfejZD66CP+AmRQN7QzAlGUqyk/r3kGsRvAizdyRuEX7UsfDj00JHdmOnhGmvCZaeBY0oVF9yA9TdcyshPnZa5By8XmxQg6wwUqWB61Wm1HSj+5Njif8TDi0T91Vj0eHESBpS5zSZ+0vuB9sgYvMt4APSpo4FD9acBTExLu/CGOU5ohDb+FtI26l4gwwpLqARRIaT8WP31AXbwauVPiLjl8Jh7G+YZU5ajXloiJa8Q/KhBHBYw+EI/EPd4I5/dzBlaqju79gLtWhebQOAlE8RXqpDy2rN8fbnPYrNQt7SLlTOcTRwgB3GKzjMcrG94/wnDfIp4KwD/6cFE5EMRJ2HZu6iRo3d5MQwk/iQPUgkAG93xTZHDTaw1W/vbhXmqYtSQVo4ddUCa1ztMAC6eky/9iiVAlWE/HxM9HGnPCqwW3xjoKFUMLxAm28pjp1WfDU2Ff/jBKi7B2Gfj/gxot0iBDZv6dCHHZIZNoGuoy66lDx6PVp2dTkS1dWcywBavpCX02zr29kN1ukkfJ5Prm++O4ZywCDaxeFkRdJxi9Lhwom2UAhd3CVHiI37InAl9BO38AjdExjy1teQwWM6gTvTYO+kF3FkemjpqyBvauqXfVGQuAlqSks/uEaIW5A7bu5b4udMm+RvkWST1qyqXKD61xuejzfaJKbsrY3dPZP0VGI7h+9ltMZOqjlNFCISsA7OsdCndSTg7vlCK1dtKdy94YuHZ7BER6bTpl0wtK9QbVn/LiD7Lca3mXRdHUmeZVKm8UMRRLqQ3TLLbO7qXQW5gkZtoxraIn82Z2BJLaoPB7oST3TgtapiIczC0KfsGFRHduxQlBdhz3fVYTYCP77pRrcn0LjuJtVbUjCxhV+pPOyFbkfVO/gd+t5Ct2K6Z5iLEwgSyCpL7yjW+qF7iHPYOmA6MBgMBSCYQfeIOOiAjJTid10ZSpvXIQELk1QHUmqQxZC314u69AacS4XqKbWQJjsgyJcNcoKeXMkYkyBNflR655QagdueRiFfgnAl51GSEDJRmK92TFopkR0VLlFuTxjXAB6cJ8Pijj214SjE2eHfvDg/P3mn+B42fnkqucqcyhZIxsF6QZXizPFvYgwRHpKS+fCvV3Ja/NBSkSardKT4lZNgrLC7Vkya6KAAtKPa/c4qZ60S51RK9EaAhMhuA68TQ0M/MTgE2S0T8XGKd/RHfmccoDwqmspSCrhLL4oVa60ZpRCrzPTSSj8yuRtFnur9/JlCa5j5L3zJAlKbExBtvjBiNTUQwZkFHdZDAeHtAYWcyL3ptccjolD6ldiMNDNTHwxgVYF1AbckaQ2eCcBo1Ju5Hf48mgT8itYgb9oHiYk2eRs9ScW/j2tPRgiDUjgrvp/tA/hFYaobDTyBAiMUw9p3jFiuYA980+jLRckHrQBI2WoU1gX8UkhiKekXVfaa+sIy/RaVMrc5Wg/x9i1YRTKpjCqy+LB278i2VdzcAFYA9SApRiON5yxQZVQNm7DjzZaE9SEbLRVRV7yEu+wrTIr0bJ5W991TOCXG3VKYD5N5Lu3nXPBRsjdyEVbJYE9c+jFTJ5LXgz+kh6hY9aw80mntnnyVl7draROHJ5/VIeWqCxQNcCOCpiE14cJkodVrDCUpG3VQ22R6PLoPrLv2Fx8v9bXp2KYY9vW7KXhvJrLjpcX1jjgsuv5O9n0xrvg42/f4FnXN/i4JCznepyQG5FDXWe8muVm6Il+nqWjla67tPQXD81iy6KnnvYfIYz2CTKDpxaGHjUvqP8HenJy+Hyh1KYx/+3iWEN7Z0uHIkLF78TqOSEFbSjTGeJQOLGdGiKReOm0BKc7L4/kyLXqHEQ9so18XrMuMa1x11qiViYQj6+8teGH0yGcpSaVRxCnEYpA5ZGaCd595P+4KpM+z5JK1zkRdYD93WOz8saJ4UhcEPJhwWNa7AhGA9pHJrgV0c4jkK+Zhp+P0mh5q/xFneIfK2dYMbAD9zF380kG7Y4yN8zXxWrrYtCDXVDSHfRC550Mme3kLVboiOMlMNhyMBqYzbZ+eKNJ4Y4=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5eae3246-5087-c1b5-5876-984353d59a61" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5eae3246-5087-c1b5-5876-984353d59a61"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>rGXXK3zyt5Fz0Sn8wDi22OaggPc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>X+1eQHCj2+PscVOuyh95ZQ5KkSbYLQ2hgfZZnnS2ihU93AQcShhTn77HFXcAXtagHDgHYsQAW9MxMKzFUcFkl/llyPBLPYoUwZroumDVasOHbPq/no4qPiFTvPPPv8EgFecWdN54/+90L+8tCh/jst3ZFgyZOpm6Q1f5uPQXKLQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>PQ+yPMRJW2Nfncr96hfJQia9LRntKGeJHk++S9bD6tVphCQRsjppN0hk0SYbvL9AZsDg+1Naknt1UrQC+ahSzNH+Xkn2ln13CrkzR4nlOxca5M3ADS5QgIKZAF1KVOF1YY3DMRaugHUAElnFi2DP668w/CPE3eY2z8MQpCvxN4g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>