Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1446aae3-66d5-21b1-abed-fbbfc096e219" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1446aae3-66d5-21b1-abed-fbbfc096e219"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>SK9m8Wi/NQfK7jgvh1gPuiXJwTQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>d44cikXLzFj9xEHdmHK5a26EX5DvjLR7jnd3nvs5gmll0QlDepNHmYPl49/PD1cp/ng0lGw2VtKul/daARQV4CbKzyz8ZZqSmky+jEwMxLNqyAJJNUV8MRFwLeSNsURHk5SpHlCbTBri6GSCCX9SUd8oputJG+XhLaaVToMySYE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3da32ee6-5dbb-a930-afd5-7473e761beb6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3da32ee6-5dbb-a930-afd5-7473e761beb6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>l6yQ1VswrYmG3jYnrpUL8UodSWE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>1Hybtq2oy8wX3XPDFSKaDpLZOC4u/pOEOLomEq4jR9CFXaGhoBNIeRVb0v9fN65z8PPLNY+CZYWImL+NCkDtS1+5ZhIDyMt/ZfnuTNnk89+Qi+GabJ8PUknBpnkbyGium4O3NzxePkCvVQElYE2/lgrR/bOv9TjWNuoxgTyOX3g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3eb639b5-9869-3bf6-9990-6632e8465597" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3eb639b5-9869-3bf6-9990-6632e8465597"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>rJ9CWLaBTqhTaDsNEBvOAWAHDGo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>HBorGv7xcHVHHyPVQWXIobToiZ3IVoG1qQ1enxQSq4rG0W64s8otFFT4lgIALhfbQYnm/Vf+EPJCEJi5y86GbGfQsmU0pFkCWnbFGZ3YY6ixuM1GgW7/HA00WJhahIHsNuOWJd1c3IberZFPApSYMZMgF0TA8JtIgQGOay1z8T4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxadfbea38-8584-1f4e-b756-c8bc7a9d7aca" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxadfbea38-8584-1f4e-b756-c8bc7a9d7aca"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KehJTZ6lajYyZCGOq0VDURGvoxg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TaVRBqV+y+ti1Vgq6M2+Y6q+mXU/xoT9N2R6cgYuV2CGnr+cf3CDq9NHojmW+Zm9vm7rKos0frFnhWh2LXt5FYXdfN1u19iVwKEJ7UN35O+IWoD2CyeJlZRhoiEG+UrU5WkIQMX+WlnROh6A6FVhDVYZ7koeeVgxTO0buiP63mU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>anBOX+fyFIgiMUsi/YDyvsGSoaQEPzdsnkvdGVJGNq7CKnnf5qhoc57/laQ5IHV/osgW8szYp5SrmjfPNZlxNCp1+9OMHd1/luALN1EON4/O8Wx2q3Lq0jvamZT5AORGXPpT6zaZDXW1TD5PybCwfhNO/2M88b73th4LHFJMJdw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>cjfVjbqXjngREoD+EMPkiWMTuuzKcgUwQHYbBXVc4i+tvZkVhpwUwNqTmnsOWF8NNTtZXDC0/F3Po9NxYsrN0yXNHXMCs17nX2IPbyba3Z65tIH+fO5pL5jAz+5EH0fBXMUBO3wESmr+LTpvS7oix0RGSJsCl9t1+sSrqM5hzYY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfda672a2-954f-b1cd-f073-bce53cfd9685" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfda672a2-954f-b1cd-f073-bce53cfd9685"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>b7+KuK/n36isjjaRKsHk/jAoK2o=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>EaYm63wM2Y8UnX9F2WH9F/MEo8i/Wvz/K7JeWTMjP4bWT1jCLDQ1sVnFek3ho13Z+qeMt0Km91HgclfqtdytEG7jbACKB/Z8RwrUt6Gan6e6ZRnPGzRtdr3amv6ukXN2yyT0ck3zUK+mm+t7N4M+0FbrtGndgcy/kUN20OaVRcc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>anBOX+fyFIgiMUsi/YDyvsGSoaQEPzdsnkvdGVJGNq7CKnnf5qhoc57/laQ5IHV/osgW8szYp5SrmjfPNZlxNCp1+9OMHd1/luALN1EON4/O8Wx2q3Lq0jvamZT5AORGXPpT6zaZDXW1TD5PybCwfhNO/2M88b73th4LHFJMJdw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx42302a0a-35e6-224a-e1d8-9a536ae8349d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx42302a0a-35e6-224a-e1d8-9a536ae8349d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ccKb2MwYrMIYCwp1DizVC9s9Oaw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mbQS2oRzhOycxgkBfWbnc9QWFO3HzvgJvQWt99uwgqp8DzuK9zz04bsNZZNhs8CUTtjSB+qMIxQ21Ozk7iSuonVccVXdo6JJ0LFVo8Ni2m0x3Je2Y33SbORWLH/wDSl0UE6p2ulzsBZvKedZCaciwB0BaWFl5hwPkxnazqDldII=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>cjfVjbqXjngREoD+EMPkiWMTuuzKcgUwQHYbBXVc4i+tvZkVhpwUwNqTmnsOWF8NNTtZXDC0/F3Po9NxYsrN0yXNHXMCs17nX2IPbyba3Z65tIH+fO5pL5jAz+5EH0fBXMUBO3wESmr+LTpvS7oix0RGSJsCl9t1+sSrqM5hzYY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>G4J4U4wOEFSdHjmrlemXlOkMIbsmapMN4PhrXwJKiwTUGjuNPaPCR0Osc4z3helwnAK9xOSOCQUeSjCn1mzX+6ImP4KZnrs8hDsea0FWuf063XNRvjQq0QtSB4IZjHBhPEQUL7JYp0W8WR7h3K8SI70V19sd0MdNWHBzgkZI2TfKv5B8vnZDh43RYi8k9I4QttSnz9I4d+EyZfrIAqBX2KFetAIOe3AU8TDGF9koz09+M8TwO75zcBKzWIz3oGxkBe8w/9A5cZyL20LOkgIFENaa9m7XrQxuTO111hA603vIVhBgTNIZJ1+QGYrPsfdp9F7L8G+zci6GCq4HsSDgQyDBLID59K4Th0yw4ojGChbGjMuRTtSD3JpGqNKrFGiNyZqLqaECvTMbnJPwPitfnIKKKmHD1n3eCJx0ags3BJwkRZmI5CWR1vdw5XZFcUfcKP/boS5oRIz6TRl8YWZhYpKAwSU3AmT51jXpGxqhygAuFOzPV32VUf+Vi7J6CEios+QtxjR6jznDfAG4A71yLpH11JqY26SvP5ufFGifLtNukFf0H2Tk+JBlN6foWXBF5J8AFYC/B6biGeaZFr3D5gjhuDJilj7FKmK1EsdUpg29vrZrmPpKbM1YJf7wqOEdGcZwx0z5ExYbk/L6mUNYvoZt51Evq6+6B64642ghF+kjb+5QuZ6xP9RZAZEKW7ewd/RMrfKA7lbLnfm4326zRoUbAViDbRFJcwQsf9SfA9LzIE9j1L8lLa71NyQakFv0VKsCmdXg7rRUYZESoqYPHtIm9VokLYG97NfeN4+6wsJrg+FYBgHz+kjGG4UzMpsAVEZu0+AYi+f4VrRGW5m7xF9vxMaHeSSzZrbiUYSp2nvtbMIH2+87hpXunem6cIMQcdL8lZKbw+MEUsQ3q1iZOJbwha3v4MzhY7Zyac+oD3GYepfwTDXQu2UV/RbptXDal8zm7r6tM6V9UKMpC+rLVNsb4a5mdCXXj5rgYuxvsE16NnlgrzwDr8ROmrUG/bD0MunZQcKRJwWG/4LdgUUYa8ApBrY1ZoO/tCP53jzI041kgTm96ARFGbEucfmJSiqcmaHpD7+CzuTHPJzhzT9RfTIzGErdvoXB3U8TKrXOemITIjd03V6tT5XWfXs3OhruXcMUpKZiZ+upmK6AwEZvaDClJj4EHQ5aK8tKz6haLngXhiG/WwpouvLAc2eFzSPk7zCs5kn+MuQc1rloybhzWvqu6vgienK+KsMgXS5jBJSGmmQRCsMAFT43Q/b9/RHXlG81HTYRXACW2BZY2Ukbz69Uj/QKFDSyCJJsmR5INHXI8oCXmNAWylCIrhvymi8m0euljgWbnDFuFp+brxiJ75X093eP7Qljv/DqRnv6mUqUbxmPIdjOevxoYTCm7layhiVVtSFhVOoXaxgSIds8FyQrINEvMlY3fbVOhXm6+1LtAos1Y7GXtWqb45z7Ja1feLUSTYQGyBC51Fvbhcr/+VkFx9N9uXMVGLUNq7EofbBBGZUu1p5gGBEDodbSJU/Hpzej6BcAi2Mi92/SgtlEMswXqk6PruaB2jjFwBTXW2o+8m5Q2QnhHUNloatlywm8Fdq4T5VXSdp6oB1R2IhUfnqAue0v1JKMxdPNtsWUgiEVM2yc43uNbcy1NqfB0suTdMzIy+R0lI+QvAx6VA0IqffWwA72Vb5hNc7hZaYSfPW3wwAY+DLaq03VNhx4WNA6PNc1/DBFvhCnQKQkwgt4SGxKhovuKUtjWkkHS6exrbuk4tiU3ysEP7t5JPEqJ0b28BvmdyFqrth+GjnPX9ugD9ymx9Rp5doFZXAbwCvIlHtyRKNb7Rc7nfe0fLqV7gCqY+Rq5DIu466aeZ7sHCpG7QMgthVgwx2E1+LV8rxWbEyKSEgk9rNAMiEt2h6OwfugkSpFLBiqDNrUeZcro3oPRNktPMs00nittwUdJ8XetKDUoeIdx4zuz9OIoDnNs70yqxsd/KDIQoJGjrcDmvD8IYA/K55ZbLugRbzdyTOtn6obk+/YCkwAqfiy5VC8DwklRwx7y/4d8goCfw+PmYqb8AIfNFK5e7SK8fw9+BfCYq4m/bT8ij8V/JitRciHNNM8B84MxsH5y8PnV1fwSd0Z/d44b4c1WvJJpd3hko+DH3k4ZeOK2BnGXyoMGd7wVvgW1ggiv0oml1c6ZACYp0VCyuJwl2lsM++wJfGJ0ChpXyQwvCFx32p0aIZmnV4FOrcl1vH+o9te2XbGIcMItL9jT4BCVJk5wlHyq6revWSvck5/9NxzS5BYO88AZyuoIhJBF/hnlSRUBpxaR5e+1gbzYsTgA1ZgeLChB34mh5A5DPGv0kNlwhqVYMUjdPh/IFr2NjChdGErZ6gfu3ckr3dbo7t6SdZgAU+6K/TqRCWDyaQpfb9FfOdJuSilZGVFVNEzIBa8Qck7HoS3bZXOeBosXll+DVN9Ljv0OIqFT9h6RhO0u4l6tX/dRnJ8bjjV+Lncvi8c8FHv4/UZG6eps+JSGVO++NP8MFRsZ8Klj8b1e4kV8UkwNurvJsujoOGXi0JrZ6VanrQc41ow+TsvmDwz1R0vevOEOtxyldTwQiKxWoCODs7RiKEGM/3lJZJlre7sAxO5Uy73jm+80FKexd+rQgOSlUmyQ3Hj0AzXPl3wjimKEC8i8dhPx6b6KordroZrRKKqEDdH43CKpNdkFLAKD34a/94xSynGmKM/JPKYbjJL2l3gro/hFrZFiit/0+WFhGybJY9MrUTpVRXEe5YcXIetf9C2okRD1jZgr5UpEopIlE+FQrjLgET4aYOqHS0I7Ia25gtWahu4RgQLJa70MYgAhj4K34I5uSIW1jvwXAN2uqOl6lX9CcruhYPI+mts5/33THbikgiwerSLojzZp5tHfV/nkmZ57r9ayame8slFJCoB0TWTiUxicyEcjaf+/mVOABUX9rKPeur0Xp6jNn8lzUxQYqzVGP43v+gbEv+yFx7rdngt02v+D9U68JcE+B23QFsOrDTKNIEgPkkJ1PaSQZdXmGxsTFElrUibfEXTUzMYYTCrzIWFKsfdd0rM3264H77vEEqabAUkXk+2vl28/Owvv0BXPir0pkOc+r43A5gnaNblnkDLsit/q178ydb59CpB8EqGYfvpGX7TImvhIFDQuB/gc3omqAySutyoODce2FBMNPNxqBOX5hvcUqTNpbnI0C2O3+N1Q44CO/Xry8YWRl0+YVv6G3SmHvrvALkid/GGdfdXHGnCALhgiirNgieVElLvXFBIoUOr5o0hytt4Ct7fuU2JpOfMZca4BJNjfM4Rt/1V9k/N/82yaGm5GODCie40SZBUcFhEZw0J/E/tPPzCMLgYOM6q5KDw61iuVFBKkmoMEEtQDzN8PMPw3NHrsSiKJq+nxDHi2PcXnayjG8AQEfHG1er3uy1dI/oVF7Wx+ytsaekz6UiX61k/UfJqpdIwWjIkz2O57cSnaPKCPIoziuKIaSKZ6q3qgmn+X1cNCeBGT0WmkhBi3l4lJq8nYeEVtALinuKivRgfWj5ND/5k6OnjyjYNuK1miQyBuH00CGYl4HtcJpg1cQljtp5ZML0Gk5AzW+IOovt1TFOsF4dbX3enR0QeoOjpq1lpoX6NsCNPu+ij3QhW+t8yKR1JMuAVy35JNuB+CKsu4I4GYRbnaHPXfShYdzjybrJ9/eqqbUNEHudIdmHuCprzYkmFnKisBXzAn1nw1sMY2sUNxwuFFxYSo1MrTbsJzR4oo+5GR4URPmTWUMBeWojFsSVBdKrsBfEAXVotLVo9l4FLHPLpKlx111Zl0Y6Dv+FiSQ3U8GDG1bXjelfwpcH+iM6yRXsE/ML8Sbik+r+3P3ysDGPM4k2XdEKpAivOOcfUKvNA1gVritY964oSupnRY0EgyESjA1l+9OJVPLA4P6rsgwn8GV0TOh/6DXqF47wawEe6VPoBDjdlaK6CGbiWnq4M7VaVy+AlR03tKVV5TdiI3UDjYQac9POgSZh9BOV7r+M+et0lRMLbjb3gJBtkGFK2CfnEMuvg6LZMRfCiyUr3EthI3ei/gu7PsLtUweQcPyMCIwG2hzN0tcv9MvGNCDhmQ3GSHMxNL4+rq8h973Q0qr6tQncSX1qlH2WjFeALolXZeXweXIvQEsxUpgNMdNm7u4QRqNs937fGwn08751k/OfksNY/NS9QOkU6+pwzrVUYVbIMohDlF93z0ynG6Jtxx+OYgKQD1WxRZYm84E/g8MULfpcVJ8TotQWpsyRIkQaUkr+t1xTE+cbZlS/TKlZQi0pQB8CJBnp2N4WfDU7wuH9lZOIIC2KK1Tx+pusu9OOZVF1P1s6USZyCMkd9TeBfUBEmE+Bqp/J2MqOoVC1kfacphm0ABa2qfvp8H4TwRXYsVMYr8vYFhQSlpqXhBBzdwlTVaGLqazJoSX7b13dOCaMNfDLsdrrMexKnc0sOdlpylMMaJ6hrCmni7A8sWcN6iokpM7cvwCeiXRTBQzcFd38vovrelLJT+K7VquE1yQXQ7FWMvUfzFyK/KkTKWJH889cKH0A3YD+sABnP3we1zpVhI7NcGU/yZtGxreX5FCySCLJizFSj+56363+0BWJO0r2OkT2aWvVtOYSFx6Q02x7nPvTfLLfCE6x4UMhB6Zpco22YsTJtMpVEPs0aSvP3K0aapqVd8vX7kjuB497lRA7k3Cjrf2uGeG78TS6yYCSrmCknBOs79felP2FMIKublwI+SpnbV+V1/6sbhUDkYRkJSxZquRsg8/wHOb3blwZP5bjsS1gPjQzanqqGYyJbq8gsaSUJngNCK6chTbImmYRW1OtUp59taaXQYDEwan1O4DK5RnmNkqN1w2njhfBpbqAf3uF7ZxY8lBp0tEp1R34odH7duxt22aKMtIzK/3NK1LTcqIJkC/NJQGe5MFHIjffBiDU+SQF8zoR8o6AYnBLE8mHuv/PRnzKDr34/HESjU+uScxThkZkE7Dp97W2ZzS8yJ7XfbyzKrrLA144Y28lIdl8ZozDiGG2EhtbhxxdOQ1N0MYc2wRhEX6KNt1+cnu4iFk+cSXjYUw7X3p7l9yx9hcfvBuTs/Xgc/TwANloQdvF8MUXZNVB8DJNw++XHcAN3EHUmkigVBBBD/P7NtvCLUOJUlRxZXcIg/hwD7w2djL3XkoGaSKED2ESTGhtPNL786a5vSl7x03wFi5aodbTeToZr8hBMBaXRSrvgnA3jwlwl4y5JQE675e97j9X4A1lxdLOkvKUuEryH22pwF7ci2vMGaZTVkwpOGA+blqPUJ+3xWxDMz46EFOkhl5i24UTvBWbZewD1Jkzs3KmrpR2vipaWz/lmutoHnXkswSHW7oeAAd+HkHq0FFDiIj//O8MsqUs1PzlxMQrbU5NTLxU34XNj9aoEPDrBxTy/eD0weJNsUtZ4ZW3HtmyLKj1bkucFR4e4VCCvhAV7ObB+O1/ZBtkk4s9tsXg=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>