Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx0132ba39-6cb3-3eab-8267-ba2c0a152d5f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0132ba39-6cb3-3eab-8267-ba2c0a152d5f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>BsbqQD158jau9vsM4YjCWSBSlIo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oOCS5F90Y2LblmyPvJOIa88wbq87MwJRkTW5cY78taYjVUAFKExAuV+wDfIsEiNrEumoMEceaWagKi/8syBOKJgWHnDkCjmI+CkknS5p3d+B8yZdgonn+DDhRsO6r5asq6IYE+hhwegPDWNJlGnuT0GNcgPB13TmPHDCrSAZii0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3b31771f-1bec-56b3-1ec8-34b0af206ede" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3b31771f-1bec-56b3-1ec8-34b0af206ede"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0zw6zRwP99YOvF15ilFoKfyHgE0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>HmVldJZ9kzHeSUjCCZoYKJxOlFKX53tlwtO35MCpYRxy44VhmPfkB4s8Y/Sfxym4v5W8z0+Hvxi79jnn6LuRfYB/FZiZpB4WiPZnemcER4XyvHbuiV88vqbwEZDTKJi7YLZJupuhajOEpPOxT6p7LtjRxVVyXquIxdCiDqK5uPo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcb467958-34a5-827a-6ddc-be1dfc09795c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcb467958-34a5-827a-6ddc-be1dfc09795c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cAswHKxRb2f33AvwIsatjAqn0dY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JsY6qgztysE675uRk8eE6zKtmVa0RDj162buUziOgXjz9E8APn1rppas9Ravo1cuhgoETZcRVKcGoWYBgh/J2ew9Dcr5+y66lh/mqbPyEzbax4rg4C4g+0nsV+mcHjIcnZZjyJSCHtoVdqvx1ArX81lWm6jOpT24cCljT8bGYV8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxbb86582b-357f-c207-822f-e8208f5b6b03" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbb86582b-357f-c207-822f-e8208f5b6b03"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>sZPM3S7Y3xr52Q2u9yu8alMoork=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>uKNpLOn+CUhor9NoCOjXTknuafn6nFjdvK7Uds/HF95LqAgTqFGR+9KQJzQKLbxGQxjrY5D85U4ak88Jtr9KMUXqLMDLu3J1DzK76uzRFs262UJnBQcxu22lkPrbNnVKmK980stYygjaHJWQZzpm0ZZfRTD1fti1wV3n1TT8xKs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>aK66kz8SwxkKU+mvHXep5C3p9ayCL6s4D3r42KzyTxG1f/vOUpoX6I6td4cnz42fq2xyX1as0A3EjCMKhO5r8sla2XFkopoP4uirPYgdjUEddlu+tZ5/wPKGmU5H3YECDzZcZG+T+7i5Zzbj+lKZg8LtWNdqqoeuqswodLZYDLo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>iyAslOpEJOWaF+bw+QlwC8B4M9Nl5BaWMLn+hczoGUqeAgI5I5WZWwlJ4awq6L1D1bwN6odc2dO6o69xWJZNqjbWn3JzihItMf9/Nrr8/bl7DnHhKC9XNsQsUFpdogKMHia/gLsPU/3sWmZnnswwdfHeNnytFib506orI9DrdCE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx13d8d3c9-b930-88ac-cbf6-ec22aa56aeb8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx13d8d3c9-b930-88ac-cbf6-ec22aa56aeb8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zOyQVI5i7xQPto2XT5CPt0/3St0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JCPcJ2uz1NaXD72B1TUnhggcXT4AzFuMCU/WiUah0acpjr7WVdDr+6q2ZA8eofNdhFebkRA28tI4tQFxT7895WTbZVIECDIoSF+XNXtvBlyhzeu90jCBeyLtUMwE0Wgv83T0eswack3M/d2Cu+QPb8mLWSiyHwTA/1d6SuufrQw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>aK66kz8SwxkKU+mvHXep5C3p9ayCL6s4D3r42KzyTxG1f/vOUpoX6I6td4cnz42fq2xyX1as0A3EjCMKhO5r8sla2XFkopoP4uirPYgdjUEddlu+tZ5/wPKGmU5H3YECDzZcZG+T+7i5Zzbj+lKZg8LtWNdqqoeuqswodLZYDLo=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0460f2d6-200f-237d-2c2a-23c82435d09b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0460f2d6-200f-237d-2c2a-23c82435d09b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Wo0YqCAyQazTNAR0ziV/MR2xQXg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ggneiQyZrHAXHm1x2/R5F3R/mhDqpLDh/ugcK87Nb9B2XlaDygCBdbp7wPAYdUjTcJ6gf3gJ2XzpyqbCQyaYHI1JoFIDxAqtpZrRoc+3p4xf/uyBgpvSjM7g8F/6PJCbJjSnJv0sjxvUpK1Fr94FF9F3tlaPrTuUxOLU7RnoZmU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>iyAslOpEJOWaF+bw+QlwC8B4M9Nl5BaWMLn+hczoGUqeAgI5I5WZWwlJ4awq6L1D1bwN6odc2dO6o69xWJZNqjbWn3JzihItMf9/Nrr8/bl7DnHhKC9XNsQsUFpdogKMHia/gLsPU/3sWmZnnswwdfHeNnytFib506orI9DrdCE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>