Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxbf5de266-b6fd-2690-7ea6-a87223c72a68" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbf5de266-b6fd-2690-7ea6-a87223c72a68"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tQsc9wmrDCntKX4RsmHfzrXTams=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RqERSUBL+GMKjZV3eSmT4XvIE1LHeAyLwbeDbjhnoAw+ubaZw6RhG9PeCoDlttZL9UDKM6VJ+bNYvcDbhm1rCV0T78hcScHnwjn2NtExvOlW8UuIwHaJE8YnoUwg2N78b6+PJDDKDD/uCEOcKcHkwXPISWXM27aqC9WcNhfEo/U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe1429356-e005-01bb-3c2f-451ccb6d1413" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe1429356-e005-01bb-3c2f-451ccb6d1413"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>iZhwO9N6s4jgQP+OuiFCxgyKytE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>D1sLMQkUDs0rCQ1RKuvON6J6lL5nY5f6ia0MBS7/gl9WHyBdYQXUThwwaW6jK0QmFSo+sTtpcNjVz/OWG5rqtMb5P5C6XG5o9D4fOCWCurUzDL3mEjOwtw9f4ySuU6vDONYOlIglfz4r3qAD1NWDfIMYLQe7FF+NgPIGENfMwl4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf44abc46-8274-5bce-4afa-c9f834e3400e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf44abc46-8274-5bce-4afa-c9f834e3400e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>W/1slEz2SZXaPZqK327oRae3kis=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AO/fyHxPrr36TpKhKon2cn265MgPe6LeXT2GNF5sOzYN3aD6RQUGCEG0tCb+XJEQ1hqHhgmE1Vy9LnSyvxDuK7ou2LvAdIxGip/CguPJeNcYMQ7cN8ShQuqGsgkaUjDal7R5CtjOePb4QxgP9Wkh7HVMNtzMLGIZ9T1Y9Delq7w=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe41775c5-6c96-576b-1df3-bbfb85572eee" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe41775c5-6c96-576b-1df3-bbfb85572eee"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>TrJO4W0nxUtd4Ju1QkYP6+PgSGE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VcJlDDxkBNH/jv66DvspxIhxOz9cnT6tXhYoNIeXGye4R8SA7dxwZZHKVjbZlA3ZRJ8qHie8vqG0q7nOTX78QYep1L2O67F3jNJekKzSSj5E+whKxkecEFMSXjOxpZ5uQMbwBf/64GeWoSpNhNFdyDwSMBwqdM7DZ+GwQ+YwkcU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>nOKbAMGJoSa9pSUu7JifbrLzWmbugNLJIPO8xTQJH8rR+U1F8dZgbKkm7fMVVbDcfpHl61FHM30+osRLW/cqiiZx/coONzO4sA1B9m/VIrtBFLtZl0OUfpCvgA0Byl47S5npKhf4T5jX8LywsVqtE12jNHvPp9uIQ7SdgBoSHgs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>mpHR3R+36tGXKwGQPNe8LPAoFe8GPmIZFu2TKjtgwpVn1RGprt/vi0JlMRJL9/fkVk/PJhcluP4cgWO4PqugIC9dj3595toD6D6ijuuXW0eVXpXmOEuQB3x1F/bOlyhXw6fF6cRvI0ig6gxOZCvJ0tHqiJN1Y1aXKfWX0vG6afD1o2h83AOF3aDqIh5Wl3R8oyLJrgIkI/1xscIRuzT+ynbNr4ZsLkKsLgw9PXbJdjUh2xCRo1FgAgxinTrnZgYDe1ObOGU133jb8BLUjE3nUPZDPux2lFwmuRH/9QBz32fHg70l9PmIQii0cN5cDUDiJIoqIdZrEpW4Cb0DCCOgXecCIIxSpq78muCay1mADsgWGCaFbH6okgD9xiMd5F3ECQXV5GpAj2cbg1RTzathBQlMFlVZhcZYWQLE2OOFBWnaof7Sk36XVjytZXFN65yBnZJoV0nCnEADnl4NJadY1hYDycWeVDO+B0g32hy8hajGjt7mGKkCtE1MsBqyIHjmBXrwGE4K3LeyTAmbHDu7l43Si981C1KUyl+v5r5g+mXOzazeJjBseCjlwY8Hf//6IBliJThHuEPAGRWQm4WREU/ihaxi7D5niYAqJSrjmxmALcOUhxJEKB9+zIVrlNAMdFtIzJ1veqkWMX7hAC+b/mo2UwAIu5OXG9lfDPESLXviru9jSFCMblhzBxS80m7Zm6Ti9K5dl2Ew6HIoChAwLG0vk/6Sf0Jwd/gfbKXI09wlkWtjGICwtbyy5p9gbL78R8gpcfokUgouoS5QWUiPHOdlE19Jb7rEqmV64OJ2QsKu8GASEhRCReGEAgThAMfZBwZRoKJL867BQPiRu3LKGT5qIEoRT5EvSrIRY9P0Kn/GegpD/Zf4RzKLXIyB+74EuApPePIW4bQqYj5vuyYhiaM72AaD3CafSoObEU7epMPi2nHH7gvoMm1y6GagLSJAtQcYj3ZuXV9EGiHQyk2oCOeVTydsfG3leUFRJcnNrc4DUQvDzMS+eSRgMpv/VMd0lklxOITrotNUxK1NRHoRvifkvK7fYoLsUChqa8ZAwCrhsCdv9tWhBs3W9PivWEhCVdVm18H0ubZd/FPtGNbhk+Z3OsXCzsMxR5dXl8j1tPnLE9VYuaJYI1C/Gv+R/IsQec86uXZjEZMq531O//oVp2EOnNYjtcYU6DjsZ2grrKVlecibpgWmnPQs3L/d8i0HGru/M+qjN68UqNH1I8778Kv9GIcbMRDr2CRTJnGo8TXlRabAB2Ika+RxHQTRNLD/yQdsm90+bfrSXX4eXL7taUFjKetOfwKCyRD1/CFZk3l3hkDIX0ZCil0yCYjcPg0c2RhrqyiYfhgv5hoDKhOG1rdGKrxdd3mgws4Wg+FbHsASNl81KdUGR4SmUt2xf8N9JZwYG9lsvf2f/ph07gRhdWzbEJ3K6G1EA2dX5HSvhdaqah7MamuWX/KGXMVZOdgST+W1UtzKLhrithGO4qVW8i2PtpRo+cBuYyQCD2syDxd67CY5I8DigscpJDM5BkRhrH3wahcAO6cuNIMHQTi/CibplZeGRftDFMuG55AxMVX7MG3H9mLYHF91CToOIFnNgz7yugL6/Fu/1IqIn3JnWAtF/1RhgvVHajg4OzmX12j72H/zE0AYupcLNomR4FVC1T3lgyBoonrr3XbcCsY3no9hqxS0ITqjgHCVbNxrLZ2jH1y5+IWekjb/Qy5BAlcetjsSEPT3bu8+r5KRWE0A+SrM1SIoWP6/LT1Jy3gQQaAmT7ODqh0ChTrQg8tBxKlZR6owsm2FleW24BDzcl1nK5L4r4glDa8/MaC8STLYMblxSsREru1BCuNBjujD/C/gN0ZMrbNULPWgdrN4ff7yfqVXc0Hf7Pg3dTZnu78avR6atNebRD1ZEDZRIE0ohjJeIWU+bBhJP63Gj/6TKp0Qhyvc6DlB0fnMCeW29Ui6uoAQqIdyQXui39x27IeMTxWkxYdhMLQQb40NA/TUG/Aj35ZQ46jKBtWuVHF4WiijthrOWPE/ZObCb7ZkRO9VYmAgjiZBoFvsKVMGWvU/81k8meGBLHIyD0T6BH8FVEvtItm5KH5HmqIQEOXeSbgTARViE2p7L1M+7eF8RqGHXzs9zkM6r7VBCqUqIil8jzHbp5AfjpeYT0c4Wf3aBccNHSwEkTig/q2sqvjfHNqdm9NI0iAedsHIuRz+yGN2e2ZwKA5j3XvuckHXkRmbodOni7IdAsCxLM9P4cBd+sqKYAuxxLcF6eD3zyXmASk1JumscrHaN71YGgbJpJh2Ylc4v7hE9BmTGNb/HadkA+DU5kqBUwCAJ9fVw663Py+1pSeu0ea0IHiKKtG2h7nFeNbOxEK+PkDyEOJUHG0j4VnCtaNocn4bedWB6bt8R09sReQ+c9K7A4gqH9prR/Mi00g51AwDnz4YetwxQr72wWEt8ovyMlX7Bx7vClU7Mex3kDC9pUk2ygcGGRVSzxGxj5/Lll9KLwVZI3tv6oS6D11k3bSa93OKq72T+eBUQPYvKoFeHrvr1ExSEU8C8RVUfbDf+MlO4OMmZLPLZGZKBIC5y1wxX9rHiqc4p+CYRNxy9IraIcG6GnAxOcuUpmBDGxcBebeIWw2LTni4GlIL46uve/vBjn95P5q4haU4/J3eY6KrliCgGQY+BXDrPexIdUjEWcq9CfzSxXsDebhlrclBiHDK9MIBNg9gtccFGcbliXRt/gzOAc2pLC0AU6Gj7A7f3fdXjhWrOaiQ/9cJviq84bY1KIrTdfPpujUsSXO2T46qIXokGdNN/G/kSGW1O9aRtWRR1GDyGZ9w8DuEiTXl05M1HzKwBG39H/G8ZeSEZNPbkm8EMGYR56pNK5eQizkZmSNQrlqb1oXHek32hT8qn5gGXvVlms88zm4wdMVMQ3eJ6YM=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yVjTWpEAEfGZZrGx/2M6rqIvR9I5XGnYooe/B3nMePsNgLppYmSDWZlZ0Zl0jcRaEexkOGG78OP6OAkYvEJdj6TbDbGQirKqL7Hei9pn0w9HJwd9sz1mi6Ssx59Y13pumziiQI+HVaseZVLOyE5eFxSj2NVqilBE1vsvhldo/7A=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3342c81a-50e2-7aa6-933f-5b53f8569ce8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3342c81a-50e2-7aa6-933f-5b53f8569ce8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ay209Z/yb0eWUj47z69mdXo3F7g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ovWnJoosuojp8RSY1TkyS1IesbKulNvFCCPue45C0XX54XUP4lSVT2olsdicIM9gUYx1iq79oM34kLlg96X+3N+FcX71QCo1F3E4+xb8bJ+0iX7WZ6RdKUBXe3A6CKE9ETMap7Dan0pJ81I0DJYp2+q2Z7jNoLheuH4sqfCbY6I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>nOKbAMGJoSa9pSUu7JifbrLzWmbugNLJIPO8xTQJH8rR+U1F8dZgbKkm7fMVVbDcfpHl61FHM30+osRLW/cqiiZx/coONzO4sA1B9m/VIrtBFLtZl0OUfpCvgA0Byl47S5npKhf4T5jX8LywsVqtE12jNHvPp9uIQ7SdgBoSHgs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxec548d99-a988-f3a1-c549-b83f7ceb0880" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxec548d99-a988-f3a1-c549-b83f7ceb0880"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>StDWpdgpBqsGR7RJsfN+sHW15ro=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>arnYzpRdJPk5cIa/4fcMEZ74ODLctFQBr2qTXdXwgYVuoR+FvthRGo3PZBd5fBYrmAuJPCXSF9wESP6rGZpbxZwRJUtBhcLyWHzHSYdORmmXeUSgDPSGuTI97ouXPEXQw/5YYLSFFlImrQ50qgIWhlrVXVSO2StBTGKZACt8qg8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yVjTWpEAEfGZZrGx/2M6rqIvR9I5XGnYooe/B3nMePsNgLppYmSDWZlZ0Zl0jcRaEexkOGG78OP6OAkYvEJdj6TbDbGQirKqL7Hei9pn0w9HJwd9sz1mi6Ssx59Y13pumziiQI+HVaseZVLOyE5eFxSj2NVqilBE1vsvhldo/7A=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>