Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe8ce9fee-61fd-0abe-d6a8-bc2eaeede1be" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe8ce9fee-61fd-0abe-d6a8-bc2eaeede1be"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>NXxEKzGL0djdbKXswtnB1hiHWUs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IK6B8iaEvSWKJU3lACaCQt6WmmynQt1VjfkxIyxmJZWqMFPxuAzYOZt80xbcmcBRmoxqrmZIk060ngzKB9AS3Yf4bmXs5ylI0OpGAkJnAbO5tQM6qEY4SlFlFP6v9Y9FsQx/ybeM9yGzA9gpzDJmcdDyizet/dHdmC3Lw5JKOJI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx59c91441-208a-6aa6-9da3-6245a86b0578" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx59c91441-208a-6aa6-9da3-6245a86b0578"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>pgcF8uYxTdoCpFsYy4Bpmw/oe/8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>v5i7kQrM7LntvP+riGUzGWhB8xc8v8uP22qYecb77ms7mlszQBBFpVE6YWWKfka2aF0fiw2t2eFSKkCGujfL+/3YVKqcOtDXTq8+l365WdTbRCVNzQBqZd+SPUd4vH6IRGO98nYQ4x2U/L2Lm+IubQbkDfC2U7ZIwexhjytkK6M=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5e441f6a-5541-eb8d-527a-b820f636c9d6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5e441f6a-5541-eb8d-527a-b820f636c9d6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>t579SZnfD87nbmsegEjerFe+KFI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ivN9qOuhc2TAHzVwDYjRhxx4a75SuHmvQg3+ka/uQBpGjoo25pbz6WhVWTBNk4e0FbA81e5Luv1T2bscLyIBTmqXxOOYGoNqVojZMFZhKuAu0jmKMXJladn90HKlhUlQu1Km44Bo09O6Dzfsv5SkRxKrBRHs3YalIm0DX/nmmnQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1b41947f-d6ca-c2bc-0437-2ca0c144be2b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1b41947f-d6ca-c2bc-0437-2ca0c144be2b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>/2AQlJ5ntrRflFtQ3nSC4nPGAWk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vE1v9POAQW3svXtUHOfdouxTL4gxsK8nykrb24B7HNmM9jLRhhru7SH21onO1EZtb9yQ2gDN5DUyzlj8VtLkiVWvHlh+f+Qdjm1Jp4aB8r8kVcy4NZb3jAABjU9rjHJceEY4glfe4TrUPbOciORF7JeB4cmjS7hIFmeWNiGcJoY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>QNqvqqQOuu2SzOk5L41ANbxExZLevt+sTEx5leAr45v+m7hCXWQtCJLhGa6OalhI6LmM7GU0YkSxR7HvQhBo4MN5tOyKGDRpPJKbA4SHbXV8SfKhh7gSuCmnntWq3bo+yZTB57Ebq7aUTFNqVbDg4PYMmgpknA/qWMhWji37OVo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TRqpvABxVWBnhlUh0acey7KAaWK7+JLZZvwVtzegtKnq1Xl4unDND30HZ8nhA5ubZOG0Kx6tp5wHuLXwoCPi6hKD1YSM/6VmEZJpvt2olGQeVxIAuy+je9ySODlHDdDMIOOwlnpkmVhwMJbJ3FbR+rt3cMMmEK54tyXjUYhgJp0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>EFeKkuxnsaE8yKpDW2n3GPVN7neaiYaCwxMfa+E+i5iapq0s+hFygBAou2/YGCXFIggPJNGz7lKndJ04kltX73VGRRrXtbsrH1BGAy3EFm0yXkhPFPbi0jNjIAxjeMs2Ehtd/9Ci8LOVWxAvDZI4hbmAfjwN91CKQ4jR0U7V/pBx6iKTTLt3sDnta3iZ44f0QFcIs26FyFxfv9JGhxqnLyQP82gzI+FfWjwSuvxyEWOL80LAEKoZZqXHYAfZUP0PqBpU4a8U/rgbDQ39YWtM5rl/uL1w7ahUthgqjygxdqxUc6tVVq6I+yYaLJWIhGsPypbE2WXyH1l60ywf2qwlhdQt2ZtBxE2WPFKkT9OS4KC0a5bVhpxvbrqhWzzepS+IXkcp2f5vZFme3xYbSlRikFqIMt1/SWnqq10lKnVE90vjV+xCH4is8Zd87F3DuUh/njjFKY1Od0uOV42V5qOFGh+bHEPZ0kNaEbdTSuqEtMVAgBhJPESAP0+FrkejrcQibGyqhxiW6TbA8vUfOakONA0QcyXBImLhrlqRvI77Ej0MQZKOjRivneyzCoTB+Cqfc1VfoSjwvcEmXOGGpR4iDxFhGHyK4mp88AcjBgZ8WCWZpAXVO2hF5FHynV++yLHpm858U/jTAZfzEgysZTRU6lO5U6AqmDC38rErA1c74aR/LLLBcWzmIIk0EsXS7U313cNR3Nv4WHOg+18OvoPLFLlxvZd5NoU5oI5FpSlP/WdwJYKW8UB1Ok8vP3mEQPhkmMm401wvutxg//tKHNpazY2/2Aztn52vGkoI55vh1cuwl2DfkFqHaknomymPYpnYe5ezBaU97QIm1ROhsJoFvd4VUfC3ngUmIvENDgYzD6+OAxYIF6WAoL7hyOuh0v31b6WeNcA1RC1rayuNGB7MGi/uCaK0v8y/3Iiq8GE1/dDtSVD2yltYAi7hv7MeXRfnsywsKxUfvb7q/xbdBiLpIBcXhX+UtmutxT2CV2p4igfBfQSIKIuBsqjxZWsBUtVB9XzCcq2Vqb1MFyPANCqBq91GYVlJhSi6tAEhEswlmpbweJuXy9Zrrn8dEDJoYqmkyccRyL5Vn43GdWHwZHo6fJBieAB4UXEdGJeuxzkNgXYUAeMEAmxydUWCOzWqR8wShShyGRhv96CFxdBH1d6vEPutX1dI8wSmKw0XxQJsVEz+5EyHRiYgoNft0R9a2ooLzAGioTSqEhI+72kvQGTOdY7jiz15X3Dz0i5znBtEytlZBxlEE41rlIakpMiTUWvsklsoXkivc6JWzQ7Wli3nkQaTUJ1pz7MGYHIeEZAKu18cz5iL8vth4kY+FVOzudiz7ksFajpEie63pR6rwLGgMXmwgM56Fap1tZ2N14pV/GNQ0F7UJxx3Od4/nKPW06C4F9niSmDSJ905fi3GaGlWE3zhm0VGZuK8aCvhhMsmts6LsDikJRDloglFcAYhlSr9rF0zi0v9S/R8gbE80DCTMD9IsJvx5fE1/RH/i2FBl3gs2p6vFY3eF9QYetT4WV62vs0F7AqNe0xdMSnN1niQElyZFbtvaOTZxMaplRwFRwvLDVYKtVH8ucjZyEiE+Ol8OFd1RomVzAfWQFaX4iU++i+MCKGj02IdvSv2WjREToDxj2U6C28V8tTHLF+K9NEQhdNRTDQE4AfSDSUZS9pGabSl7Qd62I28qji0tHW6UDpGx1eaWWwDm5+EAgHZiH8e7a6PZKhSg2cvpZnpiJPUslve4mFoGyOgiwjFlOXHSu0zVN86mdIbTpyVDBTeJ1gMpB2kQLpwaQ5urNCoGpszVkeRgmxB7gk9giGnY9DmSfaGc8CasSmKIxO9K8lGMbqqsDee02bsiAx8TyynyyN9Ukn4zl6cpghkVD0z53Pzw+zmGtpZXbbVNebuXNtvbF5LxT4haL+VYEioGE031Y/u/nlTe6+QfZMJ+s/XGwakd3M862culiKFTs0y6Y/rAZR4pFpnLde8aOeZThxTyUH6BQUR4L+NiJTp3kpBqTifCUtdP19ti4iC8PzYV4fLJrBiaBoSiHt4oNT/4q74FCr6ZjNuBj2sda0tMzfxIRkSr9Hjk+RRYOKYixZaoi7DfIgirVK1oVVDi2gV+A9J1CwT1PsoExQjKEhclvEqzp5dfdx3riCQYUWmg9ArOPDIUEoeH+sjiQ8IScLLOwMe/EpNwJgE/uCC7ncdUHpICWaZm9WsjOCeE73UaZAN9P5mGphwOzOgXKKiGhBMJyGGnMmR6dYDaA/ETsc2MDOdDK3vc5V9hrcVtT9oEDYE0p949kk794mtXzy1r1ew86812HS001/IUyFJpjLxMJk59oJXtpeemiBZDbKxY1yRm8xdewkSNci4xaox3I4XYxUid7bGXN2l9cp1L+v88gRYKJ73elF0wZ7eBcYDqDbyIK0bFkDywBss71IbpHcNc3RjqetgcfIte8FOKUC23BaxH8qvfHUSw9ae2zivf5HUc+cqOaehCjPFisg+MDyyKt4KhaZ9wgxk4iwGujmpQgC7gYmgALjBRxusLP7VQyv4hIVP/FM0476nlCY4UCaCN8YexqQypOd3AOtAQ4QRI1m5q9fqdxGvnQc3ZF+6TQvw/md67Pw6zXZ/lYcFSp0VxmBk3euwOWCWuWQWodnMVSUytvHIRrtnlU5hzLbxgQqElRbKM37XdMwcf263gXdrHXxRGzaKtoI0iJeV/6rQ9K1qucklaN6cCtYGDdP0QFi8aqQfvZ9Oz1pkvgkBAxniDNB0EUoFdYw0VBsfsqKdcWvF+c91aEte8ZdAxZPruqXicZ8B8b/+lAZ/NXaleG0CjzN5anNipXgblEwuWOc9t2NQPxMNoPvlPuMcUIpn3jSu/8KwUVn1ve4n/OhYvDGeKuziOyziKumt1qICXDMP2pZWYiKjVJErYURgbiO6uYYkvAs164Rp6GDVQohNF48zozo1CLYjA9Tv0gLIEYxcEE582IoSWK3Ft3oO4K2KFKhFHBWUbsp2xU6EghBJJE21BZlFQC6fqfzEyjjbS11lJIN5lOjlNbVQjR+nb+dCD4bAQRxKrEDq/MwokN3+eT/IKOpi2csaWOgnY5qp9nt4UScl/LoYGX/Wt8UiFn3rjIf6JB4Qx3W/OWvRXputTUXNTfuxpw7tAV8pXzCV2luXuTTvWR/0pVg832t1dIR4LOCujFmdRDrIm7BUB5BqcxUnPjlUSLxU5K8yeuKJiQa0VR0xXPvKQROzkWtWnHBraEqMxhjvtLkYMIfG4Ghynb/netkle2PHFnkSv2my/2HmqW/VwsGZv1EGtHg10y2b+kOjQGh55WXazcEemtE2Zsiw2DkXsLka85votYrqtZFpEOzcqfC5zsn9PlOLF9Q7pXQ+HPUTkEdnMLFBSMSXu8/FRL9xw4iLgXxcdeLEbbjjsUuZRkwSjU6U8kaJinM++71OyXbVjkdfmxAgKeqt+CbalFL8rFN/mUgwzXEZBqvYV2x21A9Sn9KpU2lg52LdYCX5hDLFHROZT3bjstv9+RKmxua++hB9luJAzyN3QyP4yvEl9UUg2W6flIpxFq784e00d+Q8SO5Ft6FKPSixAUY8yq2Hp+Y73eKiuqsd0SyDw0LHAEZrnKQ74zU1AtMC5g0O99BebAuw32Orc9SxWScp57ERgXyWjFnoJzVvOe2cWe2pUajDZk0nqL90rfQSVoVOHGYS33U021cfKcCvUba4/FPfiyBhSUZw6tROgnoHvyiCOIecUcItO1hIbMl3vJzR+zf0ZLyPgj1txnmQdMvQ+Cz79xLdnxz0ue5f2aQgdTlJqn6TmKQ3JtOjaS+hi3Bi0g4qEnfczrtNwvelggv5qPFvh91mWeMeOsS5vn/Yv73fEBK1g2DSq6FKG2ydhHud5zkl0Xt42+5Vezyge/2VdDJGL1WY6MvSmRz/ypg9cxZqHHARHtrMHbMdfY68MXj2x+8/tBtbgPyNxSEM/531K17QHjx+KM/Ph0utOCgZ4cQ5tfz1ta7YKXAig8vSHFjQ2FKLujHlcDv0VtvR9FzlN2MnAnmQQ+l1milW2xgiHiVyeOZ6dsCCSjZFPQGeEk9PbDszMhaPNGikyJu/KXVMdKRG89k8U34NBFTdi/SiX9Vw+zKOTorxYuiSIYKmt/4JDy8u9sQCfD0sKi7UibgKmB5o3Kzx8zN82iXXTHXNagjvJ8o30Gsni/2Hgxu2aYguRJz28cDhXGnkjGLBIHUdZrJgBApnS8QCsV91R6j+Twp73+0iTNaOATeQX4CdZRLCAvCsu88jGLoQLJDjmBAv+jMMTIKlj7m5JH3E9/oAVyB67tIueEmW/wqg7iIRKNTCOkI4iszCKUCwYxhvWSNABoycaoLYEBvVLu7IPq9yKAXxa+bIAK/et2+5O9KxrLZqOPupUZtK7NY5ZB9IqjUuLd+cR1p08XCsVKQnw2nOcOs22nh6DKKlmxB8c04bYhLJAKTxOgX6zZeWAWZufDDuW1AgwAbRSR4iDwy5q+7YB3o8larro1/vYb/FUAJzxEj0yqXIxFPgbS1/rJgALlJDUGrjbWvLUBCv9bQ5FZGMwVcjkltq8DZ3akx+wXNfj6Iaghs637kxrbZgqf2OeSxdJ23IA/7cehD/6fEQ8QhgNrd3QkVR0SlLqhIoCulDugce0t+gNvn10wo4XOpRAg72wsUnEuYhgi51ZpkBXSBtteADQ/14w81cKbGD/EMK8NwF7PJyl9RnHAMtLDrO+5sz/9Ty3LLzdeUUs/TGJhmBmJetdXk2D/8RY2boXW3t+se8wK9FUoyvay+CtA9zN6LLneyD5T8Dl3urzUlmiai6tsuuRsF3L541t5WTKzDETM5cz6fDPGe1ZuOJep/fXbTSNwDaL51Klr9sZwj3tAvrWVaQFPB/4XIJvp8KE7zOrEkQwsHRK4miEn0jpeCQmEiBWQUk6Ge3V2WIP9AHS4cS/LC8rFeo+nA93rGMm9vTpP6wRARAUaj02z9WuWmUlrikc2Q0a8sRsqbuCVAQPsQc5BnQW9jjzDi9Zieqj0WVgv3L+HbfxsRmGnS2LFoTi06baF+rFp8S4Mi/ATT/++3rP85ydJqgMoZJQ6WzRZi4WuPze6mkI9Pu/bLqQ1hiMlsq9oqc6qzXLkdJVo+ZtB0I4kRIVq6nmd2iq4pBBI+mqsyMH4zujbDwWK799wckLJlc28alX8D+wsof63PPqBh51QYObTwG1WWbkRakQidE2O1czM49ZfFQgElPpYLcpPOxDphvr3V+J6xp5HX3jjjBZ5QSohocRsR/C39TvHI/z2rTVdgjueyQ3ozAEjaf+r2WLv9JwEb/vOj95snodsFkaH1RabZUTvvOA9Bk1j5JrWqs2OW78UyjhSgLyhpkttOiq1dSFZXJJtyfwfF3nmxRkvsfOlCcwyHITt/NpmipoWq0zZdufv6X1DNPU61o0VXQkMxdVUS/3HoKGP1d/UXCegbzSOfCUuU=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxdd13021b-e1e4-878b-ce06-1bec77fc5805" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdd13021b-e1e4-878b-ce06-1bec77fc5805"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>c/H+wXF/uPzkMwr6GhRsrcYO19k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>UIgUEX4Wh0kz9Hqc/p+ZHQUDafnN5opYceRy5EAXl1yFjgOesBf+8FSkuD6zHvnqtqg0u/PZvfHNowSfqW8Q6fm78tLubGfjaXMt7lkwVbrwyZJddmhkc0bEFMUB6Ne/xSIqrUmesbD4wCb9lASEmakH3RkS7fJUwWDre4NhKZ8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>QNqvqqQOuu2SzOk5L41ANbxExZLevt+sTEx5leAr45v+m7hCXWQtCJLhGa6OalhI6LmM7GU0YkSxR7HvQhBo4MN5tOyKGDRpPJKbA4SHbXV8SfKhh7gSuCmnntWq3bo+yZTB57Ebq7aUTFNqVbDg4PYMmgpknA/qWMhWji37OVo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa213578b-4cdf-625b-f5d3-903946d206f6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa213578b-4cdf-625b-f5d3-903946d206f6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>znOu/N0HwRBgroJQmEpmxEExCe8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>xPsbhTyV1Hy4g4Ev8a6LuCC5e3Niew6nI5XjEMdYUoKWNXj8jGr/J2s+b9O/k3dGGe6kmQ2cpC30tGZTiM7V/2M+Li8qYK3qqlBAWFGFHo0qoUM2+xkQ82GzYF3PcuJdoicZCvS8NicaFN5uHGIS0BnWhb3WesSKE3QYUeJWK2w=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TRqpvABxVWBnhlUh0acey7KAaWK7+JLZZvwVtzegtKnq1Xl4unDND30HZ8nhA5ubZOG0Kx6tp5wHuLXwoCPi6hKD1YSM/6VmEZJpvt2olGQeVxIAuy+je9ySODlHDdDMIOOwlnpkmVhwMJbJ3FbR+rt3cMMmEK54tyXjUYhgJp0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>