Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd1c1cca1-bed3-1316-5c35-398b596de218" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd1c1cca1-bed3-1316-5c35-398b596de218"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>NaW4VQcHEreGA9ebJYZKFl3f8c4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>q6WomB1UvZFMOPzrqIq4PSqzn7E58oe0RCCzHdAxsVQaZSZobQxcfscKB9T6Qatvbmk0vBoXHk5/K/j6O/6WbUhMqhDSg9EX/ChH5y09gZRIpLhIJDrkLt1gV1U7GwmGEPqRAfVi5HmnLmWBOm1IOxGDwpmUiRFgz4DCrjX3Z/c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0e11977e-b017-2f03-b5a3-a93a0e042c8f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0e11977e-b017-2f03-b5a3-a93a0e042c8f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jXHphX2w/isceNe6e2KNqWlvWAA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qOsyerw5pKTJ4uwjPi6x5scVLDdU90BXN4g4rwQ9RlEiV7qHAbDJmz/dI2H6+yGEojtVs5+SG7O7lT8xK4b4XMWstgNYmK7yjSg9z79VsOI3gIAjvaFYjoVR8uk2MOAF0qCXUQGur+f/EuAKWALH+PmCWYxCjaLOhpqqbNZ2lP0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7070c3c9-5e27-7fb0-d526-aeb74c484168" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7070c3c9-5e27-7fb0-d526-aeb74c484168"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>mT/faeU/XQye/+QvOF6YvTwFvI0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>fx6eS9cTxdpljOk+lv6e/0D8Qf4p90nim3MZ/pc+y9OnRwPzPK5Ihi5q5Npt/5UEFMg/dmjwDDrHNatm0j87LzyoDJxY2wejskUHI7SCPb3VlEVRdRnZsZ+0jQ3i3e7LeujPhjVaWSJo6wo4CnW6I6hq55bc4UOFIcN/T45Wdh4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf4f65802-593a-242c-cc2a-1d1352eb5067" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf4f65802-593a-242c-cc2a-1d1352eb5067"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IEVFeKWEZoefcj0CHORc0nsBU1Q=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>11KGiyp5Hyj+8plm78EvJwT4tbj6jkFw07Db3JMc0RG2u/UvC2bfIdx3tInkjCMJICsaWw7otKwgeS7Hy/n3TbLV12/zRabe/VFJnY0HAKtww6H8uXLPjY2QOf/bIkZwipoTl7eNMw+aYmJH0vNqA8irlVt1Y4uncFmIUPvA0+8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>E3w4gcc/S4UBgvi6j3flu7TxrNe19cIfd6lLNzOfQt4mhEr2EFUUHiC3oa7PElgt9RzOicft/5Rx4Ux1GG/8Zq3zOCzBkk2J/xYImRwiFOxMG6/xq/t1VcCc8cqszWOYGwAt7LBXS/wr5U+11s1XIw4Q8mDOHzAib1YJrCabWzY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>1hs2rwiuQkZoGARAlj4O3RNdtumqJqudKnJ+vikKJfToDrLbII6LVM+OKMmhfMhhJmprrGDXIhKTjSEkKbT9GOsPwitOJ9lY/w7T6lK7GQzulHFY2McTOWFL60AsEwSsN03nhcGdcacpBnp+Pt45QNLS50vsaibkK9wlVwYfWY8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Bu/U3kDV1jebZOyGbL1+AGaNqKKS3dnLEriRSleQwXMJVUuyXM51iKJqt1atMqRpVSVxHjJ9LYSR5gvbQIpX5tTwA5W1dYvyz8pGdUTkrLkHveWo/uEagO4NZ7bEln8SpIXe71I0L3Q2YF1XtZpJDKn+5wV/P1IYz8U2OBLope4UreqgrF263RQnmnYsMc7d66vTOtXP5Bon+J/lBQ45EYCoA+9ShttTuVSGq6uoDOLa6e9WZSknXHu/KDyw4roO4DAXJ8snScWQIwKq0BnieeuSAL3CFKpUG8pKUxnRZ72be8yqOoUhppkFQiI7H+HWtcZJP5TuheP0yNlIGN8OXGe+JxWVjrEelFAeHtRtAuGg/KsWICMgFR1s21qTcgsQeRZgE7cPKcsFR69Nj4eqcPTqY1FkKDDHRJ9eCuDVRQVzCleMwAM+TpdpkVw4Ih+Em9oRHIe5OmASqYZF1T/2R31HVrCIvLp3veM9IPanMxEcPcSl0V3/iVzxZg+qtXbaC9ZUAA0/Qvrir1AfGQsMxWZCzrCGJ6EAYi2dqxOtsej5LqL2Vtnet+Rjqe+iQfqQvLhAfKwYZN4xEociEL/1CIHCh22JcRYl5WmrniVfGIpOJy+0mMLv0ZGDFyaCHlR594ns30bvWOhKtgU+l8lUpdx855hS5NMS653FsAi0jmkDP1DsMnZVdHe+AyKNTz7IRcd06Off9ZAiI89m67cBDUgp0gyEVaK/qfXPrCJq8E6g+TEVO42JDZQ+EnfvBzTDMkqwKA0cEgpuRqhPLvUrPuZMvq7GFJ/sh0ryiKpTbpvOTwZpwCTrsbSnjfsiP2qJ/mDfnldmm8NyETiK4IaSNbjSl820sFeTnqtYtNK+U6u5GyKJeiVaG4iv3YolkVFB5QqdgTTGBcDesdlCWu6Q/CNRrYudHw939cBznLSq9XIJwhRcjsMwRwdksXAFSfX6QoSLoCrwSFX5+XgPU2ksPsxCwWcko3lP19O51+mXpFbptTIFEhBSyJxQoPmUT6rmpYYoMM86/boPm9MIvprkH15IaDyIVMtTI6IbSwLJPUi4IY3CNnXYxwvdqooDz9v/bySNZvWJ53vx4C365dtP4MFf8pIHm5RIh8NGJcAGoXIiR1bC+Ornx3r77Wo1P1rdvdMMR/rDXGQ6LUBLjwUhL+60lXu87qLMaElagH3Jwn4hV5Tv1flNTM4TF3Ab4oYGfPeWND51BdYT+o121oW4OuhIWfuNiOc2iIkbN3La+DkVM6Uy3h3nzXufcQTPCIz54xnvU/gq6msm0/w4FVlDE37PB9L9JOdYfQhnzq/1jJCtYNZGSqzJFvEIUHD+XhsrPGYy4JTXag9DWfQ+dCQQFK2yCH739IIBJKH2KEFu6TGzsMY2RSkjtplwEJiP/2/ZtpqvbYyitdDOkvBT9Wkwx9ialzxC20PBm54iEtl4YEgn5YBo+n3dg1P1dxGQBp727y0bxioCYbivtOjrJORsdLZICHKB2f5lpGrMgurj8kqflsxBq68Yh2JuzJd96dN9roiOtr9HsBTYAHfxtr+laYEYSQC+WNgVcYXg2USygXaJYVuKPpztBowemXInR/2Is8CxFjSpgHVLf9wdeFaOJC1WgX9W8Sp/AV+480bKbOkb58OUkX1K9w7xbwPGWTFxJ5FmVJAwxlT0O4b2Ayo+RHwjtFzl4uAWvfNjdhHPEP/L8pFkOHavi6pfk9oZaM7kd3XqNplr3zzLV+D9zV8KYWksZtZgHYSFvD6hR5fGcjSUMqXn+hbuLxbj51QzK6FwcHkgTY4H8UgDVEK74qjqMoXCKMcX43i87r4+MKKnA5+rKxbyrDcZePsNRDxyZ7Wcjs6SUuci2HN0n6ITWVaLcwOQMtUL5ZhjNzMjgzx1d9XSBoP6GppchJt8uV23LwpKVJQillp4XHLiPT/9SffFYVLXbdMbnxeTDN7eZcmC9nTGKvcnd0iJHpfPcCGb/1kNY003dwaBu/BtbM/SCmMYkNRCuZTHcCb4TVXqHYVlhh3NAguWTfale59+q/2ePaco/efdGvLjh0RRHWbgbIiW/9VQWR5YITMl+WlCZGPbn63G++S3Ug3AmbcHCstsBKok69oSF/1mi8tzdCz6j7sM/H4KhnTMiqGMORMsg9HE4O8FjaUrq5hfWPQvELFm5EHWd/MYZMdbXbP0dQ74h6PrGZCDE5O6wmkVyJXkEnSnnRdp0YZhfGQ92CL0KSh2vS5zRRR+ILjj7d9OTP199e8PHgc7Ms5nKVwz/E2pnSRuOBZ1PDV7oaQ4MizXxmeiXzSWNRM728hSTWX1kHuxyQbCjPW0ppX1O/SMfOgTrUniLipMswE/VAWSnp3QiuRetebHZkfizkP8BjoPX4a0ActngGTeO4M9obItuEpwxxVbU48VBCk/EX+94TBWIwXEr9anHy2VaQhXjVCNrryHLeD3RB/vfHalVI6hVOgNuHpzkEoaenvb3OnI2nZ09Y+H0vSPdGlbWLentXxGwYMolY7HNgnha6UW/cGIIxZNnFdkSn3ssamcIkPcPaF4NLNITFb4dpmtLYEt5tB0Ww2dW0QHffzj7uDX9epuVMhSOYlxstnYTEY5AUyabhu1kvlzrMeOb3yPQ1G0PjOzqVWpYfNWN1axt5suljopyes6ySx+L8UZAnVkGApuI376IpabXlmNIzwTK3CzyAOksSKwOkla0BAb1xUhIyVMZOgFeNFjCt8EO7IclwRwGPgKLbM1EVo5IUpVUsXCi6vRRbk7AbUSo/ftmSP8kSqwKLkGORRdV2Pha8ZtTn95ezc47Ds3fFbVdadVBew98wInIJ8sPYBkbPPSGPpo0FzdkX9j1AuVCZOjsPRIXOH87pIgrIv28bgRkHxjYmNQzH3h/hI8xm0TJGf1M88hWEXeJwAQsvbkbTRgm4U9aOOBx/8kDhUSZNrvgKm3V7t2ls5+XBbYYfgRklQCqRr+WW/GYVWnsOHBBkpiByRKDUj6aap0zMZ9QQ7jE/x0Mzj2SoriyjleotfYA7NuG81siKgVPw/Co+ZMPYZ4DL3X/Xfsv1LJL3t80DjyYabCcDCFS73gtkDYqsnnJbuBeeMWMza8uGKyX3S2B7FJ85gj5dtR9x9If+w9Rgj7zE7Kmkg4xuGglncqGsYLEe2dglWFHO6OzoNDQsruE3Tsbnm/9sbSex06xQSUKKZhTuQcYt1q1ZyUugxJN7hoDbNLTtOysVmUpuR0iaX9CMZvfjf/CDmgcZFUGAm02AHqSZoVLeW9SKJg3/M7CztlLbG6iyCtAHsvx54s3wxcmu4KL3AxOJzqUrzWFOqFp2JZFhR6BuYjzzNZIJZM2dqistX5tXIihzCc+xMiqmb4i2dEfunB/4Y/PFc1jQscOm5tuIHuuNQfiQhzjR5ep9P2ww+WIGvE3LFZEUzNF7hHbPVoQX1pTuSxSNANuIgHf9aS5DOM55c0aeIXbIQCkDn1CHgyeOQ3MSXmTURSYLseBVcIdPIEFHNkrtE//JG9nW2TBbhdQv7wIcXGnvO6QNUuUtYTVIF1kyCwZDh47p2iUApOHGhU0kldMfOlw0JdqI+GoioURWeoUlTfvu1jwAlsi84ATUUplft0uEQYMPtmL+FfYV7aD2N04kyP+WKe3/zEOzWR0KkIs/VIZLrs6Q2/apCmMbpG4moxVKvg0sOM9HFVb4LAmx00qAGfGht4mxdztrPKKjD4v7tiHiZmI4Ow4yZLk7IscK/KfEY/w95Gl5FD5YEsWfpXq/XclkL/HhoDnEW1EquYyG0eT0zY86j2ZGjMBb6fKdejp6LxRi9z4MpAHKgu4A/h29rMzt4BqSblZTVQdhNCxE4scUEcpS36Ec7b/Cx9VhDfu0gXWPivp9uzDPEaLtI2EZlgy2pXemXQex1lTqsXA5CBI6jlw/xZl+FZfnsry7aPn7JltLsSTkMfw2eArCOC/4xlDYJu5ik35LXRxdYiIdgJ+fLxDq1NapOP1Stwvtw4igwzP5/IDhDFG165Hx0Kp9xjZ9lkQg7Ct66+J28h948GV9vEVHgAUo0BAWWvxBqsa0bWaA9/A1lwFUVU6CC2kKd4uyUgXDRK4xxlVtmZ4WjEzh4DFjkPqgdVTny94fnLVZ/EahtNdqhrEtVKw20oB7002qFadIjF2DtwizBkwPTmw/JN3lGdytD4U/dGy2KS+VzXm+w0+OveNnboOViYcG7wxS7vMEhSFKfy9moQMkszQZ3KqB9bBAo0IHgOQZHh52yvlg99QhuyiIQdcvuDR+azAVTkjp8QvPj4pXJWA2x0fAWd90fEz7Xz3QmAmCziRpxaYBUn9OjYVWqG1L4I5EZlTdTUjZFYVgSBkYrd0H7JHwoGTAStqoI9OBHFWpAkgkkulxsV8p+nTHzD+a9hTABVr18mDL3Vc9R/Jg2zDSZjViufl8F4HHoOIJUvosT2fIKW/G+tWidQvBr2DImtMlrEeLB1mCf4Kxc3V6XiV4aq0zuz8X1udC5Cq6ld2hpb3SeLwOHjt8FWVc+UtJRwlbeWTFjhqHT1eflURRn3/UJtIaAGd7udmqOIAV3bjum4CU6m5fRmd0nALsDDX8MCsn4+mGDtwwnv2rkeDm+CKKrOvXu0XzcyrqlkeWEJLaUQLvkYjMWeM9b2L8wEI5spVJflbvhI4mznMP6BrlyEOdiqyqyYGr4VO7bb4Dq/RnqNGn+kN1SZrGwurTkXJKPqTQ0KHJ59sqLUiWxUco5UOfve3/Ww0kcdSRxhedlLFHMrq4DygC1ypX4xvFeaaqwpRSRfIbEbJQWiM+XEpf32F9e+Q4rXCQSKuM4apFFCtVdBIKE2Ut6B8RSpy2jj+tnnBkQjBoin6VzLQ7eE8SQOCPnWcw09VEiH9D+HOBa4cnPR0IMqKPqZNTD4JttzS7xrbZ14PNVV8ABz0nOarZ1gf9t3A9f/+IAcMu3ftBhKNwCSKOssO9/4i+aaWzK7C72IqSn5u1/ZHtoexrkxGM5YWsanYI24R51qBS6g65wHvCI16sKMfjimBRzNEm7188XGBVjUElpT3oqOT1/45VEYirhTNb0RGXs4BHFONnDmjoxVO95QsorE9kWP9swujEKb5KWxFvsO7IwgbeqzkgJoPAeobFabeZUTDWppEdicNKWHodpV69/bSoehxQrB/gIGSyICXMPzhuTz2V7El/zwjrlg6ivDVnKh4T2kYQuYWg9SdNBka/R3DP1i5dB5HVvyIHiFG9/OR0WE5Yq6L8gm+VGefxkubZSi5is1nmBY2lyPtL70AdYQc69QNze6waG2qfw/sOWGVXZRml8RayEnh4rOOB7cd0vML8QHl79Z5tJO4Mzq7WeIwv4FV0MxXJNBJCjvaymngYT+71Qqw3Ai5zBdt73a5TuUxLCxfQ9m4qHx3so/rUf0bud113ohMbZtkKy3MKScE9+Rev+SRag4ZUeumYhWImimNa7XQGEJC1rh+kP4qCtG/R0=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0f5c7dc2-f30f-e811-9ed5-8f5282968ec3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0f5c7dc2-f30f-e811-9ed5-8f5282968ec3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>k501dVjOklX44kBcxjehKSPkxUU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DhG0+v/7CrUPx0I7wKOey40gpHCYAa/Nzc1/hNjmyKExkbtGhxgXqjkngvPmgmzPLbEkC17S9O48QkGakzT3RpJJpgFZru9Z2UV92Qea7mgEcQdAseKMDjx3dJP55BFLp1KFj14rXqQTkmKY3xst8mNWMyAxoRbga48IX2A4jws=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>E3w4gcc/S4UBgvi6j3flu7TxrNe19cIfd6lLNzOfQt4mhEr2EFUUHiC3oa7PElgt9RzOicft/5Rx4Ux1GG/8Zq3zOCzBkk2J/xYImRwiFOxMG6/xq/t1VcCc8cqszWOYGwAt7LBXS/wr5U+11s1XIw4Q8mDOHzAib1YJrCabWzY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe51a8779-620e-e5f0-e546-2d314bccc1f4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe51a8779-620e-e5f0-e546-2d314bccc1f4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Vx8QdoCdj+a0RH28m8Vuo7G8W1w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oXLQZaGRWFENTFzD8XBlFXjUX0VcgnsUuRc9XhBB/FoE6WPe9iXULyWvazMlJWxl0cKW4NFm72nKqeHBe2wa8TlbKzDXobXq5ugGG8hBmCpjLXCHYe7vjF7mFDFaLDgTCSBy+qCvw0AsJLnirlVpWS+S8S4KoD7sXKt7hebKDFw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>1hs2rwiuQkZoGARAlj4O3RNdtumqJqudKnJ+vikKJfToDrLbII6LVM+OKMmhfMhhJmprrGDXIhKTjSEkKbT9GOsPwitOJ9lY/w7T6lK7GQzulHFY2McTOWFL60AsEwSsN03nhcGdcacpBnp+Pt45QNLS50vsaibkK9wlVwYfWY8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>