Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx5fb3a6d5-a3ff-5e3d-ec91-99591abb976c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5fb3a6d5-a3ff-5e3d-ec91-99591abb976c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>c+XkKxuOSO+tpRqwDBtGQ3b0MYo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lDWVy+vA7cOLphA48Hf2mqKGdvgD0LktrSh7Uy6IKuHupl3ceVbxTQTtK3bIvMIyl2YR1eJHySEQ4NOIIEZKyFtI8cY8mrbGljYCScGb8AtCtt/l2GwAQnFB9VxLtCPoqcKdA1VZSUV/EbQOAwBd33pkAfDWDEXcgU6s8mn7LyA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx25f354d8-5d33-903b-2d90-2892863c3256" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx25f354d8-5d33-903b-2d90-2892863c3256"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nw6DJ586bBfhQdQ+38wER107cjM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>B0O6hXdxNVuZP5oaxnGKkDp2XmWZ4sF4OMiX1GmYuB8pe+icWpUopOhXyjWr/2oQL4nzk96hunIjt1uXZIdEeQ/O5ghiwbKB6B90TW1JeivgmZMTNQbmMX6ekS0AmS7uCvLcgdtQZtTxGtZHnRye+Oce60E9ocfFXt3x5VCsD1Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx81fc6857-c58b-6b0d-cda2-6683f1e1f68d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx81fc6857-c58b-6b0d-cda2-6683f1e1f68d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>/3TiLPYH9eaR+xMB3avXD9bz2rc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bq5HgHNoyOo1I0r9PtUq984Kye3xYYmZzEtIvf/ApW7ZLr06Ubca3NkGNdPBBiMxO3YgKbzPhMeWMkKbO0mh+W4t4xKRPyLOk4Z84ZahrDN6BnZSB8Kr8PKDDy6z/sVJujS66i2tRDd5vOw7vn6oiy4H0T1fgOBpmfZAD9O0uko=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa7daa196-8d2d-6cf5-aff8-cae7bc7cd23e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa7daa196-8d2d-6cf5-aff8-cae7bc7cd23e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>iux83BkIPiXsDa6xCLGeuu/L7T8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dz4/rs6PFwRq4NSjYXX2McEU5gD4FSl5GuI6Y96qp9nkexhAZNihS8qkJJjjvhf71QykE6rD6enb/fLKK7DSsSaSIjohFYrf9tqliB2xeFNhlTgvueM/kOrcfkAmnBcXaAPKuLL8OxsgHPNjiVYpPID1Wgw3tX3P6oySUJe1vNA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wMOljw1BitY7rlGmrqAJJArv7zkSdtuSScB5jJv/5vfZOcN2/p8Zc3LgLcjGgoGOvWpQkuKcrHD3zwoi5cft5w/thA8F2Pz0ZaFfqn3Erhn4K6aQ7IZoG6YLnStlYHvUQMhRcW3/nr38ot8MultYNRNO9yRm56U0Dsoa/D4GFRk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>a+AKC0/3q771cKcedRbUJtL7oMsZxx9sMbog8qlWuSHBVr73H07OaVsRypgW5SFSXsWNYqj2q0FUFNVD+vrIdQCp6HbelNvJPC6cymQgyNCgwZKAcSvmGMW9e19m5vnFAe2VfYoOBRsY7s/Q4YUT7WZ/xfq/XKHEh2N28w8++og=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx283a51cc-a14b-3c04-31a5-004414a1ca11" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx283a51cc-a14b-3c04-31a5-004414a1ca11"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UvMHdsmbENax7b8pjVPdOuLWsjA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bK/g5bMs4jkir1JN+WK6mo/US64dXFj/BskqWjsx6GMHYc0Q+SEaCfXwNPYB+AggLIvwm/DCs/B4Xh1nu+zNi81lK7wip7/SctsskSJT7LE2aXbE8AUzS/g9J/mWgUbLTorZLlPXuFdOfNP1bR4KOvnvHfXLMeYTI0BrZMfGNzk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wMOljw1BitY7rlGmrqAJJArv7zkSdtuSScB5jJv/5vfZOcN2/p8Zc3LgLcjGgoGOvWpQkuKcrHD3zwoi5cft5w/thA8F2Pz0ZaFfqn3Erhn4K6aQ7IZoG6YLnStlYHvUQMhRcW3/nr38ot8MultYNRNO9yRm56U0Dsoa/D4GFRk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4ca40eb3-57c3-ae0b-d0c2-3bf1abc0f9d0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4ca40eb3-57c3-ae0b-d0c2-3bf1abc0f9d0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7KJNwjlSmxp7+3RZ/x9js7OfEfY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MgK+D8Y6UJHVxpGve45Y2Ro5SEePpwqlHLjAO3T/oWIAJymxoSKB6xFhfDqzJmapjDy5tuLklk0qHsMOz0/n+EQlQAlUIW70W6/JsAIyHxc4ojuCWJost8787m6H7fIDkNkUtRUdE4eNXgXh9dM8/PGi1sgRydNsWlu4H6vwxDs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>a+AKC0/3q771cKcedRbUJtL7oMsZxx9sMbog8qlWuSHBVr73H07OaVsRypgW5SFSXsWNYqj2q0FUFNVD+vrIdQCp6HbelNvJPC6cymQgyNCgwZKAcSvmGMW9e19m5vnFAe2VfYoOBRsY7s/Q4YUT7WZ/xfq/XKHEh2N28w8++og=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>