Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9bb4f1b2-4a85-8f21-93a9-02d6998c0874" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9bb4f1b2-4a85-8f21-93a9-02d6998c0874"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8qUUf8cikV/1NXo+mIQb82MFqYw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>XinVw+ilGRRyYC+56rmzKmYxkzfCzlJ1uxoHKL5NJcOyq8VqB8+HACNLTnVvCQu4IJM7ZdKkNcVsL8ugDdaXRfvqJKQwSSCxkSJfCYLLSXOTTNEMcBfRzeX4F2IKIVDJQgT604W7xCTA5ZO0ygJRxrfF4PnUZML9AgmApa9D5ww=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx35059144-cc3b-4bbd-ca9d-ed4d8844d6a5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx35059144-cc3b-4bbd-ca9d-ed4d8844d6a5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>aOnGW5t/muukiHi1UVcCtpI/q9Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>fBfSibjl566d27a3d5Dams6iw4bNLxHGUHxS3q/4/57WsGz7zKf6qCfkEqyQS++shUzhYgjcN7ege+MgdsLUKYME2/xd28Zn//U8hA4Ovsc8NZw63p0XPUekOO4621cwovLP+BKxNStM0HLl5tsY4HUhOgILJWnB6ZWbwYq3yiw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx35d083ea-b6bd-48dc-6aa9-7cd8d72630d7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx35d083ea-b6bd-48dc-6aa9-7cd8d72630d7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xHo1y59c029POvq+qV81zUSOgrY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DXWWndxihrNQ7Eiqqe0C15MNiqomVJ7WScTi/gyL16cm9sCm1MVhVwCPiUXzTVmG37aXmd58Lqz9FCiUSVR2MrBZ1WTIYoV9Q1LdW2EqMGSCEBUO0YfaJLNjOcxOe0IpEix0ZxXDI9CBE0F1ZBRMJv5Aw7dNNlCvqhxmvktWmC8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx84adb18d-41c2-4912-f4d8-fc412e92bf37" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx84adb18d-41c2-4912-f4d8-fc412e92bf37"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6yQ3mo+wvsYMe6ccwG3i50smjKo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lQvj9uXHPY4p8owKCr3kDqbAMZlLGGfZCPe8YjRh7qgsjXOOYxF3skY+XvkFwtJdnYuc+h+Fs9ivShIQRv87jqvavixh4gCokqfH7DTYBH7w4Fz6RK6xgcgbWJKQ7PirlgdSIxb75J0gPdcZcNy6LbRsStP4/dHfWOnmD5/TsaM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>MR0VYfM7iq+3/QRFbWlfLkld+X38HZqhzQvAOeGmo41S3DBEOkR3fJG7q5G9stD+2YE9NpTjkoGalg097ZOtIkfH24kS5EYpZ1EY8SsG/u2KQc5siHc68msBtLs6K6cLMYwkoWRqXwnoMF39P+SNfSI5gjX9gOsTHu3m9rDk3Ww=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>OpkI/gifVUUdJBZEknfndloAadZ6hxiSzImWy8qte3mJzK6ak0afSSCRuzAmvDLHTFPC2hMtvi/zwjOcHrEDTPax41yfmOFcScvlf3BINxf3gLw1twV+likVgnzMCnmXPK4s92Kp8qEebsiDrOw8SF7newO1N3lPi7Goml30ZpYxnYxZjGF+g9+ktnCOkAPKHbT1FRUODXuhB5tMzgUjtNiG0yHUF/L/7AUyB1gDFGZEr/EmULG16qSd3wgTQy2NQ1WsA5QB5lbUO0RvOQHah/XdPwHJjKehlWhqOc1tcpKXthEDTWoxG/Imab42k3rOdJWSDMddYQIKequHyfnzpsG0n7qBtLcBGA3o3FcB0apiCujm+gNB4YfLMACYywtxDLHgMsCXcf+86MoJjzk52aPupPvJJUrkLtufL61BfrJ4xTWdbScHoNR4B72ZfDEQy/dhAg0307xMZhOl/70zx/DDQ0l3b/pNB2qw1vNY6cy5FfIvirbRV6Uwoe4i93IQEY4BOW4Bag8TeSzikldzXGqQujNCPINzNS/rbYso1KUx6ecuWUvhs0ux8YfpPihHvPKZ6/TVmuW5pB89dPWOQwW3U36Dnb/1Abs8ChdNA5rg7o+w3LMqGzpjPH6vaM2baeYrXsiKEGu4cWpqdovMOHT9SS7QKoe4nzvvL1xRIpOPqURYtn5r/+xIBFbfHT8hzA8hdQnW7FO1Zkw+YGBivRf/4eL8RbKTjzdurJxYOZEcdgWvFc7bA71gnjmpYi3/uuIay9Ge4OrB84txRBMUN11tgT5uxXGT43RDEhSajJlzNSz7X/djVL7if2699kVIr9nJ5TtVR5xbRk4LRasuXLU3H2hYFgA7OADptaooafk7y6T3uww/KlUYwX8kmxKfK6+nw+QtpD0FjruNTfOWtBNHky54Vq8sQCLepr+OsaleLV3F+ZOvWL/yRIuy2fMFTRN7sjLjaz/Nf061lRYhhFGxESKayF+Y3UFOx8eK2vNeMfWt59kkDzA9TX9+S//ZRskWTZK26IcCGqx5spY0YMtQM35hRruqNXTmDV7LF0mxX1G5fwvqFTU2Tm/K5IH8YDXqqu168mijxeK8W39eWB7VaG8RVjzXPIyXDRRaiOK22HcBK8et3fZbboFcOo60SEaHmZmpZekO+7An6RSoYlkTKw2b19D2GqwsajhhKf3/sVqcUGhJq6lZ2df5p5uRAWFKPVUr3jefrQ1Rs4/Xd2vlwrQUUPN1y2F6faQV9pZAevrc3QkRhTLo6pTuOedycCPpbB8BSIetwOB53afhyCwyCRicN0MqHrkvi0hv2/dcCXbDCsdVvnhNdjW4o4jwEehSDycRrdgL42JegWjtLhME77EO7jYtyGKkwwLTkvipSK6fid0Jm54N/W+ONYCFVxnYJNlTD5xL69YpOra6eOEP71lAFXUFYEljQa1ghjVEYtv2vCoCJuA0VPC0qMJDLwJoEpBXbDIOvL+iehzcRozh9edsmrXvSgJxBrf45OaxkS/eTtjn2LVPQKuQ6gJRGIQRU81fGqiDrBxdXMYW/LBU6hXDyzrFofhRB8v2+Kf+xcG51YWN9T981A+9GqlCuJfck4r7oZ/lT+EPmuTIPuN9GPYEq7Rr8B0TDY+oHE+sxU9D5K0bEJ5N9YULkf1zuCh5pdkZP2ypZxX/s/zHJZ20l89M0FAn51/ykxBTI0ZvJB+7B/QGVLBckcYBxOELQDE/O45r3bbh6zDmJuDb+S5f2MCDs8xd67vmmPF3co+oTtyQ2GEV4hfKlDGmw0yKnUJVnrO8OScV8060B82eMlcgfpUghdqaeMCBIF0ptEKKmxUIxr/WWpuqJkHZk53Y3oaH6/bu0WbsyPWUpkBO9TS6fGJbdyZ0H0wMlCFYu3gElaQ+jZWazKZKkCZ4esqROw0cw1gsX4UDwNzbl14QTYx+DZ+z3hD6za8LhcbQV7HJhyBYVDgtuoaoejDYp5y1Rex6OulCLKGLt6QhyAqSXeBGN090U618fC3GsZFiZOtU/rzWW0wR0+96YU/nMjMnjEnhcLuRpkd1OnwXUu78D+J6wtPj90OnJ7mpO0nQq6fzZwxhVWRAgraqtcRCVylm52LJHV0YYL16dnPGkLEuAK8d9p9OWP+bOY3yfQ++ww9c+fRZNNxnXr3sVpMaQrNZFjf57i4E4dtdacOqJiTQtmEJIbADjUaqts6MTJICikbG8hQ2F6zQ7n57pmkCUwF3AirATowxRJNfHUNmKOP/yK9NlURq0GXiqyd7wZwPPxJRJmdm6rTiI5bkyqWZoOHzruP9WHLkEYcMhZyjgI6msRVS/BAvlILt3KAJ5pVsIi224Fn0+D1pi6ra0y1MZZs8mIX+w9zijmsA6FWlFz8+eqRR0D1BmHgbWmswazgz18Q7MQqJWIo8MB+bQ6JGQU+JLVZqPJm773xQhqdyfqlFl5G8PzWTDAMIjBRBYz+5ItXWJIYkEAIO4tjHNaohTPPaTCEnmS0lDF9NEoKLsY1LInUxMBWMBGQ8LXSHoKfMXjOaSOIukkznV92/RqnITDHJqgBfQa6EZanjOeKArGtQi1Un842hndO2LSX/3YjFGy3c4NalmuBr2Q2gqZXy7I3ZQzILetFzzXV5L55ePinTiLWA2GCqCoJYG2i6DhPh8UrfKsCm3wimF5e+dZ+5D9UPxca9r4/5DxMnDI4XxhUUNjAM8/RhXLyfRsv9OSGmJRIBPjDw0LR7tJVbF35YU3XxomxTGz+AfySYRDHLST45s5KDb2AZGDHCwj6dKdBltiXUN6zt+qqPbNcttee+j5i/XoNEaTDol6JjeZ/HSrOF7LByFO3l9yZ7sIxBo6272HcfHOHmG5WHmfaMcF81dW1qJspy+sbXwaCK1PcO26MjHwPSa/gP6ABciwWv/kcJABg=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>sgIl4g68/L2BqmkKs/SL0pNuLi7yEBOWueHUincNm9F2Cmy2rEIOpQNShqiB3j4NepRXXtwfgeTiwLNXLeM0+M2JoG6uQ+3i4x3+65Z6NYqdumlqZFG8d8HBOzjWG+KqlKTGaHu4eEqteJTzD5yznhnHVOZ6o8bMkKMQZnZrdwo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx68d6c1e9-513c-8f07-c176-06ad68394f71" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx68d6c1e9-513c-8f07-c176-06ad68394f71"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>yDaFoopretpl0t5+FL3nFgPvyxg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mIn2/loutEe7ZRnr+CvFAtBzfu3aUHvAEJUO1lt+g2m/TQFY8WDn1xW3zsgjtrg+YMsDqsECYWubB9F0j6BVh5/2tdVOHBKjhIQiiJK7RNrajxEYXKhO0u4p4ytdN0psePuY79NsNqPvrunTKVzwb+/aXth4/bWfgFrngKYwbIo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>MR0VYfM7iq+3/QRFbWlfLkld+X38HZqhzQvAOeGmo41S3DBEOkR3fJG7q5G9stD+2YE9NpTjkoGalg097ZOtIkfH24kS5EYpZ1EY8SsG/u2KQc5siHc68msBtLs6K6cLMYwkoWRqXwnoMF39P+SNfSI5gjX9gOsTHu3m9rDk3Ww=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9b5d076f-7104-47b9-bf49-da0efba1694b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9b5d076f-7104-47b9-bf49-da0efba1694b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>K9AVs/xykgs4Px8KIu6mXf8XFXg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ocAo1xqXkdXEvrPqQdUsseQtALijY8+z6CoIUHp8x/cQBn/EIa2rxhIDX4SsW53dqTFACxYhbmO69NPsNmvHcE31NaDR9d85uuIVUDVp+qgfkCG0NLdXDT5XC8IpsMiMGkgln99CrG4qOukRNI0KFeuM9eEnVV649L/+8RJ1D5I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>sgIl4g68/L2BqmkKs/SL0pNuLi7yEBOWueHUincNm9F2Cmy2rEIOpQNShqiB3j4NepRXXtwfgeTiwLNXLeM0+M2JoG6uQ+3i4x3+65Z6NYqdumlqZFG8d8HBOzjWG+KqlKTGaHu4eEqteJTzD5yznhnHVOZ6o8bMkKMQZnZrdwo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>