Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa66f3523-5753-cdb9-232e-5be4543fb442" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa66f3523-5753-cdb9-232e-5be4543fb442"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>m7ULk1s8Hhow24rLqV/o/kiXRFM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>punXh6xmofzswS5iJHvghbPVLWzFH8Wnj7CUKd5I0oJjGYcaA4NO0mZki56nEcEXdYDcgxJN+KyCYI8zIjNkHfzMlRHFoCj9Auwz9xDiSiRxrMwT7ndGDSXVbmGReqh0J6EoXvuo66eu7y94N17PQPnybkAvrym7L3AlJuO/20c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6d27ce34-f5fe-98ff-d3c8-47e3f27e7fd5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6d27ce34-f5fe-98ff-d3c8-47e3f27e7fd5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4KjVfeLclGF2PYSaK75tcXNHuOk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>z4xXdX9a7swGRcr1nrluNsGkrHnhHs0BtulSVGgpBFm0jtawio34Sibz6pWv+dsYmcvE3ItzSYRU7hBcbCYOSaNj2OFxCieQ+BjKDZbro/kb/xomLYc3wpEbQ6gDFVfcQYurfs5CNgPGdLyXZAZLH4fgm0Vc63STvSzjCU529yc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx38726b11-7600-6b14-38fd-7a67038e7b0d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx38726b11-7600-6b14-38fd-7a67038e7b0d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>pD6j2mGb6ZA6KAN+mxDif8PATsQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>nHLHM3DLSyKQpu1yFeJq0w6/x31YTySxp6i/h441iPt1mW/NsFs+YX8b9Wa1wh3A0RAWbJZSdw5UVXolOufkZGWA6BTlBiwPDqCHJfXkaGe1Y9QAXAEfpDexzJ4kuHI87paOIL0gHuV36ocIvR5S85VS2Zi9++Awz/GR8JiN+UA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx4f3602f2-8dba-d160-40ac-ac17ec690056" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4f3602f2-8dba-d160-40ac-ac17ec690056"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>f3AB934SFoT6Cf8JnYnavum5yQw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>q01Y3Wan28pt5Fgdj9nEv/SgJ7V7qDo3eGeUi/knzr0jlVuZF0T79fynHFfvnHcB//FoMxnbduX78He9GvQus7//p1aENigwFPzB3Dq3cnRisyMGIhG+Vf7QG0Hb+wrW0aPPZIatcJe8d18Pak+JhEsoBOkMBurM5oGuxB9DK4U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yHBwu+H32UfjJbT/NZpctZKcJRS9AcVPILxoV6Aik2wIBEWuRtHW93E7TwMgyZU4uPB+oOrnQkZBhwGoomdpm7hEa2aCKNGkgn5fsoXs0t+ITOoIDlFjhsUx2qCA2TIHEnxLhVTfCZckVJLGDbKmrf64L3/+n4LwZE5+OVgGfBI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>JPPvr+iew569Zgd+NdIh5KyMs0Um8VCSvGbpJ346EEuwu9Sv+vE//nozBcsOF/SpnaCOOjSSjnRHPiwyj19Q9xp05EtJgnS1DtytnyLgUsIaSb0Tn2gptJFouBC6gZT8/lixuJFNb3gI14bNusXtGzEvueEy04KrJ2HWev5JYsgmJAqkkKL4Ac5YxnXwv7vqlbOaCTRN1S2oqu2NHeZ6a6PtWjYtJBLTPBhs0EOG4/ST87DOzE+mYts7W82XAfSkBwUxPtDLFZGmrGkdWt/fhsg3V5Wet7TSPxKSepdzHicOZZ3BaC0LUcv09Uw5i1OyS4TqGdsHptQwNQgG7OInmMtDmsI8epxDP3zsY4AqA5DZsNrNhj2CtXYuyA9iHDEogjQubKTeuJbF1NfYTOjg9syONTcks1nNXfLbmHvG2dUAUADWkDOpJfIVxLLkWk6rKDEXKJlTrzmbPKwhy/n7rXgGkWoCwD/4Lta5kQV/GQYptiPhmCLNDZyoHCfhr0UBnsqkcgqGcnR3vEbSdtN2uwUKc7zphdtOJFZK4KSXNf1GsY6wN7wtHsqpCKtH6MFbnli6sva/kmCY6mP4MpKAxTdACH3wZyw1prThKcBeZXhsl8XxhWYL+HVxiKFG7WU5U2157KHJmoI4tnmoDIvsMB1QnWiSqLkckL+ZgPdeh9oZivBrHmYhZ+OPoNZ59mPQ8JFykV8qDpQtslF9+mpThL+l9JMd+jKizSMO98+OgfA9vCqT2RcR5pCliz2vgpYIj0UFqTdYAOVkijpVrxl5UfOKEoOcy/E0jFegPsfIb+IAU1NGOwitvrQEHWdxR42rkbW9TaM131oH0SXo2wBmFa+mwcz7NdJFnaLlilkukLgJidMm3oYL1wyjpLwaNWafJ74DKLUb9rlc5NQs4B8zUi2p412Hlzy8CQhLxzkIudgzzIcxKYgceJa9MIcl6TGd/GB5WagF7QEtY5RPwo9ugaV6Ji6WbzyK/zKqZQGGaqRYSE8zzyPL0hdwzK91j6VJJiKKw2eNi1+49RpD/GnHBob0v63HTORlTWJZd5d80LIhuGzsKUypvwXGB+ro/qw8EVPLEbf9SuECnccRlPhZM9iD13J31GLa2RymSsSG7o2jlMTeshvfJb3BvhSCjoJozsABAD8+6zLQUHQyRc+FdAc3xvxDDjV+X0GOurpmFgFZZdM9279ThFgptEJT+HCfTS+57+ZSskBFCncknxT2eLCkQw4o7574I5FLA2YCc/yr+vYmEWdsKrEXldWjk+Qjr1U2CK4+IRSjm6P93VCpF/5/7r8WIttZ7h1AYljRlMIPDuKIWzL0jZUgqxG1060Q83wKtWonTERSX3we6YIbS54a2u+XhsiCmQ2yWDyx3SrsCcpqbXQHZo1O2HPvzVjrD148H/p3atzYoF2dWZyjmaLYfBRSxlDkUPU3XleHvB/Ok5mmk5k+e5MQFMDe9HEragX8nhLLT27m5ZL7L5XU3fpjgZPve8izqfuMzHs6whon2ZhVRvRmgQk4kTXjyx7wwdKtcV+bWfvE/ZNlQbJwQHFz7ozBtDaY0sHLpVgx8/Po9LRt9IVWWXq/TjcYFgvqGruzM87g8jgtTyfxoSN+0gExuMu158/Q9x4+G+AZlveEnf/d3QPDgM/c30admFCPPoA3l9IF+SBWgJHRsTUtVKzdWN8CK2yjhHPWX1HX9c+NON/NtmJIF8gY2IhmK0pDylg60nMUOlBlVYUDiGFkRb7jjRbrRWBs8H5fGx40yEFjcuo3Zf6Y9EFA7gOD7JEHKLRbaQko4bLqpRdwehepZNVjgGbAdHyZ8xFHKthygcYNP9u/se0TV9jck2GXAgxNtPBUYvD1wzC3oDJyvu7ZMB0EgnJFHrQShesduCejN4+E8Dk/WhnCRKjK6WSfkIvP2iBqjOc4VGFOOjK8U/nvWvCTFGZmeFez+WfVRS8s7E0zpAoBlKRXBFmOLMqgatfMucLV1geMyILgfRBMJdye5fZq+LgghGimRlXaEAbU4kydSmkBpsBxC723/j+4nPKtMykBlbe2iQcXsrqhAgjPaCqSGLEAt67Mk7h9vAiNI8fyn9ysoDsdH+iXti70+Vzz2trs2yiOcLtf6/jRH/+7kryMNPtrbyJVT4aEJQfOJ4C7jXyLWgLNSWF/012NzsgpvM+vjz6cm+vyyan+xEv4fd3HbcqL8CUVha7PbgBDeXbMSkPZ1UqGjn0EF3D8ifpjWIFmB11AurEew43yNzZxClfzE8DIpPMD3gcidnqrY4OKRZCjfYDBF9E9OUsliS23G1kF7QY5G0i8vSY2wfIKucVG/zyUcL70MklK9MHhYBQc+qP02eOursSEijpnOA6sNwpv0vOy1+2eTkN4Y577sCAbjNIq+mjDOMiip4f0+p+p9NpJ0O/kdK5ukB1hrJDUhwasRlR9fjZ8Vbv6pQ0H9gyEmcieUOj6v93obj+o9Bcq8RcXamXEb+L1bfDM1uKFZ2l8xPEQX9QCiY1RFgbGRVokjhrSmB4dsFErBMSeHvh162X6qXotmCqmBUV1CBk/ENRqPj54UKcRMR40PBR3HW/DWt3liYsSsae83Px6RwEPXQZeG3p0KYkjoGOT7AmDhX4iNyTa/JYzadTkIioNT7CLKssPAcsG0IfwIm25KBXMOd0Emi+vdFc5of4EMx/NIEjSCldxD5y5llj0urcxxMjsGXfUXX+VpfF/JsWyw9IQxWzhFBRHzIyA+lzHTOPKTUgwXp0Jg9b4oR/vZEAr5K+vE90VowwQNJtPzvZgzqBwQRjVMc5tfebM5q6ILmFWg3YcoDQom4a+csCqrCTD5xzl5lRH3ermVQ1Kpc2ZNGdwv6J3m6R1zS0JCOi0bFRLzxXofwcIc2gdvWAXwsQiCV3xmPdXgeThG5oQXaxA2uQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>aQBi5tJmbBw3Ha/VncnVJzqBNeVwOVClYVWVtiuqWHQ0StsLfOsXGYiloMkbbkxkw1hsLOkkzVmVY8bhFme5e9Ov+tPK3k65FAu//jZtLJXLffQGbvT9/q1HFJduPlRwB9N7/QeMNibauuF4xy1N0QtTiR51UpgQWn+Ru2F7/Z0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcf0f94fc-2a5a-1d57-e9bc-748938c2d6fa" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcf0f94fc-2a5a-1d57-e9bc-748938c2d6fa"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>pQPd2SGv+HKyHaHN1emKEPL058g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pjfVzJEERFTMJVXN6yCUez1+TgVC79hL5L4/vBFNbeDAS0v6btMxEZPB8kBCabGOeG0QnBibFGFUEyrbQBhJmKXCoscMF5GZwAMjPPvx0O52Mpb8Ig01JqrvZF28OiEMNA6bOxBbCSx1Et3SbPay2ToLp26JUIztZ45MHs2a8ss=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yHBwu+H32UfjJbT/NZpctZKcJRS9AcVPILxoV6Aik2wIBEWuRtHW93E7TwMgyZU4uPB+oOrnQkZBhwGoomdpm7hEa2aCKNGkgn5fsoXs0t+ITOoIDlFjhsUx2qCA2TIHEnxLhVTfCZckVJLGDbKmrf64L3/+n4LwZE5+OVgGfBI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>JPPvr+iew569Zgd+NdIh5KyMs0Um8VCSvGbpJ346EEuwu9Sv+vE//nozBcsOF/SpnaCOOjSSjnRHPiwyj19Q9xp05EtJgnS1DtytnyLgUsIaSb0Tn2gptJFouBC6gZT8/lixuJFNb3gI14bNusXtGzEvueEy04KrJ2HWev5JYsgmJAqkkKL4Ac5YxnXwv7vqlbOaCTRN1S2oqu2NHeZ6a6PtWjYtJBLTPBhs0EOG4/ST87DOzE+mYts7W82XAfSkBwUxPtDLFZGmrGkdWt/fhsg3V5Wet7TSPxKSepdzHicOZZ3BaC0LUcv09Uw5i1OyS4TqGdsHptQwNQgG7OInmMtDmsI8epxDP3zsY4AqA5DZsNrNhj2CtXYuyA9iHDEogjQubKTeuJbF1NfYTOjg9syONTcks1nNXfLbmHvG2dUAUADWkDOpJfIVxLLkWk6rKDEXKJlTrzmbPKwhy/n7rXgGkWoCwD/4Lta5kQV/GQYptiPhmCLNDZyoHCfhr0UBnsqkcgqGcnR3vEbSdtN2uwUKc7zphdtOJFZK4KSXNf1GsY6wN7wtHsqpCKtH6MFbnli6sva/kmCY6mP4MpKAxTdACH3wZyw1prThKcBeZXhsl8XxhWYL+HVxiKFG7WU5U2157KHJmoI4tnmoDIvsMB1QnWiSqLkckL+ZgPdeh9oZivBrHmYhZ+OPoNZ59mPQ8JFykV8qDpQtslF9+mpThL+l9JMd+jKizSMO98+OgfA9vCqT2RcR5pCliz2vgpYIj0UFqTdYAOVkijpVrxl5UfOKEoOcy/E0jFegPsfIb+IAU1NGOwitvrQEHWdxR42rkbW9TaM131oH0SXo2wBmFa+mwcz7NdJFnaLlilkukLgJidMm3oYL1wyjpLwaNWafJ74DKLUb9rlc5NQs4B8zUi2p412Hlzy8CQhLxzkIudgzzIcxKYgceJa9MIcl6TGd/GB5WagF7QEtY5RPwo9ugaV6Ji6WbzyK/zKqZQGGaqRYSE8zzyPL0hdwzK91j6VJJiKKw2eNi1+49RpD/GnHBob0v63HTORlTWJZd5d80LIhuGzsKUypvwXGB+ro/qw8EVPLEbf9SuECnccRlPhZM9iD13J31GLa2RymSsSG7o2jlMTeshvfJb3BvhSCjoJozsABAD8+6zLQUHQyRc+FdAc3xvxDDjV+X0GOurpmFgFZZdM9279ThFgptEJT+HCfTS+57+ZSskBFCncknxT2eLCkQw4o7574I5FLA2YCc/yr+vYmEWdsKrEXldWjk+Qjr1U2CK4+IRSjm6P93VCpF/5/7r8WIttZ7h1AYljRlMIPDuKIWzL0jZUgqxG1060Q83wKtWonTERSX3we6YIbS54a2u+XhsiCmQ2yWDyx3SrsCcpqbXQHZo1O2HPvzVjrD148H/p3atzYoF2dWZyjmaLYfBRSxlDkUPU3XleHvB/Ok5mmk5k+e5MQFMDe9HEragX8nhLLT27m5ZL7L5XU3fpjgZPve8izqfuMzHs6whon2ZhVRvRmgQk4kTXjyx7wwdKtcV+bWfvE/ZNlQbJwQHFz7ozBtDaY0sHLpVgx8/Po9LRt9IVWWXq/TjcYFgvqGruzM87g8jgtTyfxoSN+0gExuMu158/Q9x4+G+AZlveEnf/d3QPDgM/c30admFCPPoA3l9IF+SBWgJHRsTUtVKzdWN8CK2yjhHPWX1HX9c+NON/NtmJIF8gY2IhmK0pDylg60nMUOlBlVYUDiGFkRb7jjRbrRWBs8H5fGx40yEFjcuo3Zf6Y9EFA7gOD7JEHKLRbaQko4bLqpRdwehepZNVjgGbAdHyZ8xFHKthygcYNP9u/se0TV9jck2GXAgxNtPBUYvD1wzC3oDJyvu7ZMB0EgnJFHrQShesduCejN4+E8Dk/WhnCRKjK6WSfkIvP2iBqjOc4VGFOOjK8U/nvWvCTFGZmeFez+WfVRS8s7E0zpAoBlKRXBFmOLMqgatfMucLV1geMyILgfRBMJdye5fZq+LgghGimRlXaEAbU4kydSmkBpsBxC723/j+4nPKtMykBlbe2iQcXsrqhAgjPaCqSGLEAt67Mk7h9vAiNI8fyn9ysoDsdH+iXti70+Vzz2trs2yiOcLtf6/jRH/+7kryMNPtrbyJVT4aEJQfOJ4C7jXyLWgLNSWF/012NzsgpvM+vjz6cm+vyyan+xEv4fd3HbcqL8CUVha7PbgBDeXbMSkPZ1UqGjn0EF3D8ifpjWIFmB11AurEew43yNzZxClfzE8DIpPMD3gcidnqrY4OKRZCjfYDBF9E9OUsliS23G1kF7QY5G0i8vSY2wfIKucVG/zyUcL70MklK9MHhYBQc+qP02eOursSEijpnOA6sNwpv0vOy1+2eTkN4Y577sCAbjNIq+mjDOMiip4f0+p+p9NpJ0O/kdK5ukB1hrJDUhwasRlR9fjZ8Vbv6pQ0H9gyEmcieUOj6v93obj+o9Bcq8RcXamXEb+L1bfDM1uKFZ2l8xPEQX9QCiY1RFgbGRVokjhrSmB4dsFErBMSeHvh162X6qXotmCqmBUV1CBk/ENRqPj54UKcRMR40PBR3HW/DWt3liYsSsae83Px6RwEPXQZeG3p0KYkjoGOT7AmDhX4iNyTa/JYzadTkIioNT7CLKssPAcsG0IfwIm25KBXMOd0Emi+vdFc5of4EMx/NIEjSCldxD5y5llj0urcxxMjsGXfUXX+VpfF/JsWyw9IQxWzhFBRHzIyA+lzHTOPKTUgwXp0Jg9b4oR/vZEAr5K+vE90VowwQNJtPzvZgzqBwQRjVMc5tfebM5q6ILmFWg3YcoDQom4a+csCqrCTD5xzl5lRH3ermVQ1Kpc2ZNGdwv6J3m6R1zS0JCOi0bFRLzxXofwcIc2gdvWAXwsQiCV3xmPdXgeThG5oQXaxA2uQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx920d85d3-4105-38aa-3ae4-fed3c584ebb3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx920d85d3-4105-38aa-3ae4-fed3c584ebb3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7ipr9z6MEw8CO9oi0TxydD6CcWk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tONYOq0/Xd8rwBSfYmXWm8HylRTZ1UpB3G0DOxMegS9VFvADPCTLnPtkk371RWuPWZWuYZJDL5/ajMJUy0Swgto2vmFf0zEXxyNjG5UoIxObKELMbwttCJN7xtEob1oxEaLPwndNQxw1V5OMGBwUYqD043kwirGU5OTILb9zVtc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>aQBi5tJmbBw3Ha/VncnVJzqBNeVwOVClYVWVtiuqWHQ0StsLfOsXGYiloMkbbkxkw1hsLOkkzVmVY8bhFme5e9Ov+tPK3k65FAu//jZtLJXLffQGbvT9/q1HFJduPlRwB9N7/QeMNibauuF4xy1N0QtTiR51UpgQWn+Ru2F7/Z0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>