See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx28bc15fc-feba-ec7a-d0b0-13fdbaedff65" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx28bc15fc-feba-ec7a-d0b0-13fdbaedff65"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3DBS0GoIRFv3nSiN1/J3vimXL2Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>j93Fo2zOjU/AMlP66icGluq++73JMs7HWIf2KtRYFoOuVARH/lZqvjCWfw8OYZ9mwOTzP3c2rwDtpoYapuRl4rzvd9O11yt4jqOnXdrYhp+HK/kv77A2JdpW+mhedCi+57oDT4jfm1SxO2QPL7F8MsFmXnnF1b72c+oU8+cOK9o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx40701f56-42ed-baab-19e3-57a86ffe30eb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx40701f56-42ed-baab-19e3-57a86ffe30eb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>POtDndahhgPC1ACbIWu7jOEIT18=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>aNi8wKokQAwNTRq159O4HawgmkiXVmmQv30p8rU+t6j6BUTeTo9N8yNbNxv8O1A3QexAZWeJJPFxeSPwBStYayoNT5AUOuFngI8QEVw3cfE2Sw5HDH/1/RChbduuRALK6F7TE0ymZldGbjQRs4JS+dQzMQF6Orj11uANaj1XfHA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5b734e45-32f1-03d8-4e92-1f5f07b58cc8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5b734e45-32f1-03d8-4e92-1f5f07b58cc8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wcLNpEkR0F0ol79utVLZ1D9FFh4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VNU5ODVCUzzDwzKbUXIBkXmkA1Q2T1PSSWdlvBQUjfU9w0NSEMs1cKdoa6bfVNpuh9OiWjHxwhKOaVWARWEACSWzez5mX5e61yoX9ro8P2RN5D9Mk61Glgntj8s22ZSsYx79g8en+L1FxpR5Fs8cHsQxRlC83AWby4KRHNEiLF0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx134404e4-b048-1fc7-5e69-27b0d3c97226" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx134404e4-b048-1fc7-5e69-27b0d3c97226"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>/MKrU3koGkaH+IXcJS4grHMrGAo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>O1iDhjgoiqO7HQCbQH9N7A74c3tI1c8WT1DQ6/pYMG/pq71npVXVeHy0okDyYyJ7S/XSpb9UJ2NA/a127ga6D0y43p+/F5gCX+sIcZDO0NcwQapfXEmGw/EClhE25T+THIMel5ewLLeuHSxMPg3bivY25+OYgpwtzefR2Yn87/Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ZhQEV+My66Pki0P55vcTIegQ0Kr/Nm507jIh4dvapghkIVjzRksSxj5XMIxPi/vymFfuQc4GmNhazTGviBOkJn//4S5QWUmYZggbMAHnIUXL5hQHBtNpMm0ReTMDY6oxEN5s63o890qEBwSI0FqnmqIdf0k90cswR0jbRHcoYZg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ZPICr6dw+X8/ztWbrcftNFAw0Ac6yfB0tStc62BdmWFtpuNaxkUxOOUQ10mVPgMmlPfTANm7fxpTVGpcqIjqxi+PEURz5A0bNACxG+WbEbt11PkHTIr9hx82qyj1v0Gkcx/8KUV7mBjuEoljTheGAS8AktGA74Av7sfj+76YLjE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>7SsBEgFx+L4CIl2Cc/lGxgRlQuWtV08YbE5KU6HVkFRl0Yv+Dp8wTpCJu+uSL8lxkFFkoUHa5afZGiiIgm2falrQ+g5LMydgeATR6zC/5/mxWqWZbgte271Il8kda3ZQV5eBuK8oJjFICPrsLNcx2DzVVReMP+MXZg+FXB1WVvnA1aV/JcxCcr8YGjBiS3a8NnK1BwxmFIKqUSUTuyaSxXdUcrxgv7a5pASB6UgtJDcDDHxqaCUHo6pzaGyQDN0xkGO6PXLejwiRLYyoA0blTrxEL3EpB/0KmvgiOTFg/IbBVjIIQCbObUJsdzXkrx7/u42UfCS5mUEkjB6ZlZyphJLFCFSIRbgNvbn5tdvpeNueFKmxAak0zLujiEfBnXZWwcT5ZyXavEqsp/LeDD8MPP1YV0ACZdBklEytZhp1vZoq+uZFp5o+lTIIYlnmTs5S0S4IJVJWGZgPB/f/9TcjAxHvb+HNlFxZp3F9/23hSZ+6FNSswnrZBazS+9vzqL5F5Mlm+4DVeQpMoQikscSRX/IyPhpPi4kcowa62ALdyIAXQ2XZeIvQE9afTW9qVBYEOZn+kk+F8ldqOQBWdXg1PPYq71DTIkHPreQNJqGUf5U+QO4OCPB10ob0qlqayXhQgvD/fqRWLYXHTdd+DA4/cC8cbGGP3dy0/RwlQVUFDuaRFQS+oIT3B8J+jUUXTrky23WYyCK8PSArdK4DBFGGLVRtl6W1fWqQdWjUI9XFNn0D4kUJdtt0PAePlX00nSYtrZWKVOy4p1I3nreSQojTqO+ji+3imuE4T7tA8+Ttx0m5N8DXWebVONQfE+qC80NGS0C3xm4xHGyJNfqQFESO/qYglwVP4q1B6PGEAEVKIHN92VIFxy3OBhdotivxlwNO6R7GFAhKrws8IchgyYT0WonDFj/Ukr2aQXyGVuR5lzbOg4XztvMxWltz3QGdvjnUFdJLxtcEcL7CpCF6nKwtx76fy6Bui7oNxb2xCRp9b/hV/yFdhv+0eWcE0+GSi2L5KqeO7LNfDTCY6LKcrk+4I7jxJm0obelljCTZaj1Bp027oPjZTVmv4cCtW/gyncQ8W/qi26rz9IQAZHXb4rww7oMWkDO0ALXjpn/079/+0fIHsnHQj0EHv+y8wteH1VzCoidWN+QQFx6JqLfvmUCOGbIEdV+V2yQ7O9imI6E3+5gQsPB8BBFelAJ+bfBRan72IAO/1ZEPN/MNGn1gf6u9TNaZDB78TEocYb37Qq/jctMaO1t0TrzRqG55+FJaBDlX8JDUwS6/d5dEQ0KmRmoxoDnbKS2n5VbNDA+gCaRGLvbnE5Fbhy9jCZUHBY2pf/U8qu6E2ixQBOxMrsiZO9USYjOfMP40eMggUJrliF9ypG2nzizddRwBLR2Fh1sM/fDfPHdvZGIy+QoZi9t/cTxVDAiEHSZ7sELCVcj37agYR9/S07KmAOPAeXEpcupze00wTpJi0BLFboLvGeeiQv/5Pg48Aj0rydKxONKNH/W/4IrjSxJyuGX7vvOBAMzzy9xruE9s63NCWJsAq7mf9DXwqznV6RSXK082biQ5hjYjel+2/0+UpsColF8P7GOwHjIWeyYlPbGORKXHXV5s4ZXrQgjUFl1rTPJIctpzU8YYGV0O8N2AXPvah7pWCoB8+7X+1LjMNf7sjbyJgpRf+AVS/rZlaIIEwuT7a14xxf0PdBhpLkC7XZY/1l13ohbTWhaIPsUcCAsYqNVpAkrf5LAfdiwy9rlnNv+5E9k3C9BklNyxTjb1YLG6Qij8WDbLtDD/GpGmR1z/BAd9TvETRFfSe1udjqGGabv6aUuIWwhzbtq4vpH+E9bRneMQy/Q598wiexMbxwmk/Ax+7mDJEINhg4ITNgHLr2RylQTvK3s4pEpbdDVYvXSkHh4LBLvNWXQvHDQkqyzE+tCeMJpUX0NievImyE3cj1v2L6puMr9FuV01kzXv9zkzAY8+2ZkIgzi+BSnT+BCCXkU1UMd7vUwYreDqfMx8Uepy1fFwpQ3Yvt3xg7IWvvn4WH1Ry0gPHyZSA4mUhWpX1P9Bz/cGHWAW+8XSNykYaHfGoBBZmMi9dDawoMeL5sfUgRB0phKIOmDEMFTAtbN6MBPraQbzoxs9UB1pTzodiiQ+DPnUwGkuKFJQrU2DJNlqMHKYsouLoN1DsZZ0xuVzR75Ise/TZ+yZllMy0krygk5rvAH67EVXO9DL02BwmuaCtGoulFzpamBpBPD0qyI0+B0uuGQcDze7FuQzgcQ0X02RyZOwX1gqz8m0JtRXGbdPJih6JzCWSw/Z4MrIImpXTYUP7hY19EBNpq2Ed39FDSo4tibdxNJ2GEw810bEdhG7Nb63iNK2lsSUwbUa51B3b5wPYclFOdG+IA1aL5Ywj52y+HMK9RTZywblcZuyMssQVzjiuCOmGcpiIASrt1fe6EgcqSEcEC/colutucRuh7RpjRd6wfRXaCJy3hQxQO5t9VETkS/BFpvFoFaGF89JBsusCmzwh6I7OGOMZCn4LhsWJGiMNKo73bc45agoxFFAeNI3MEpF/3MWPu8SsUuFOMPpN36ApdIf6026XQ7zjOu36DIHqOjPuEtiQ0NZiaCmxlKSlEuqYHRocUQTEjrjxdrpjROAie+1xoSIG0nJObetb5Ilwi8UWFLwx2hfvq+K6tHTNJJvpEK2ZSmdYlDlMRHDJdxVh3MeLDmSFlfxQvILORWXKa90rweTgzBIM6CPIQ/lMUeiJr2ne8Gyc6GC45TB18I0FtavnXqIFHath+AS0DQuldLecchoB8eq3uZ++ZW6XVU4uKnVFsgucEEl6Sfgh2yQ6WmC7i0aqTYSzypNSgkILeuWnq0DUVYD2Kw6k2qNHrtjUnTU+8D6x8ALySKCBn0O39vRSnzablwTjrd1Qg24EhxUfK9X+pRLQinrXZx4SLTk90xK+2jOulcPDAdJZFxi0+Pe9Z3sQcr+bBHBDQYCy3TrwAjbrVS4ayUS2mw7gEYkkv5vof3nOmsrH3FlDtU0ByWybAQzB4hLX8Adek0SO8/VTgDkAYlz6R+tNw7RxLFAQ88Hx4hoBv+k4NioQcOAEL4aXn98b62yIHuxZ+tuuuJVgJjUt9D64/kco5wAlyYSeWUNNd46Sh651t0Jc+V5ImqSRD3Y5xKyoMSK8yb3T+13GlhCc7vep0wb7iDfLE/5nAQ1UjjJrix5tbzmPINcBl/Z4c/utYG7yIFBVnEB91kipd0Z8XeyHchbc6nkldAxTTaluknhqA0EjQet6kwmbss59VXN6+jALspt9cN6SxO/m+S/ZwRYXMaIsw3QOjTATCAAp61qujgwcIFV491ORwwI3FdYrY8yjSm83Jrfq8aOitC4VFSuyOdZCiYkB8cIeKZ23HtYS1ciTL683ql2H8QlNdv2tKVK4g4bE0fXAHywr5KHERQR9rpzXJngPY1t2RGde472Uf0mTcTWkrrx5zw8bbK0Nsmnwh0exBxeGZH1C2oVo9v0q+/V2ph9ak/6TxhZ0rBwxFr1Btzyd43hb0w/pt6jGRGTVi5XMRMkPkwhx2sgIvPp72bK8AsMhhMbGl6G1hm/ZByi1TrhJTEyuPd8jeYRfbIiCxpVRUG2arsH0A74aHmPQLIzoo1j/0EH5Gjyc0nN5JldcKss67oEYAATzZr9B0qdu8Kg7kMgTtmvYtgeTadOFsdpssDKWB8ZTTK3v/p9qzI+nndehk4rcM8LU2vCmBIabmBuEx06KKCgfQxUIwEG0i4psX7bjRia+ucnAnrD0nAnxJIFZjHTe/LOhMJWLd6y5mInqrUBFVD41UEQxMGhjTM/7lIuQ4NN1XFo+Ie7ydN/1P+iCT2ezWTmluBiklVaJWFNMPy/wennX+RHi/F6qBxBJIY/pY0VJVTY8JlQICERm+pt469WxdRC97SeGe7HJHcEO7jCWYhPv+lZyA0B0+BQ/6BsGT3dMW06Eui1LaOKlQ+sNCp4E0bN0CGRhNm/NYiGQD4dJLar7gmCSy+p8k9k+kJY17FsnAW32iKURpZmG08/Z+y9q8tot7jEZEnliWXOJvv48ug6mT0bC9SWN4IgkchCGvllIuROMl83cg/oSVmIpLDU5DWA7efD0/ncsDpNrLI6xRj2cKlJTeCtFCgyFFQiAXV0JRMAlZfDaoA8rpPeeLjvhlbYjTEiuPkXR/PWD30pzrzt/pyhMvKF7/Oo2dAySvGTOrPPsiRkT1/diiNdOeYUVZ7JZXVU7cu2yeP/VuMDvuVFZyIRlxDphgbbTvgUJtHpI/OF8f42lA7Gfwo9yb0TpIP8S2KfyXAmyZhohrnC+whgTHfLaWthv5u+h3uN5CW67859qhSQKWCjX3Mg0sQx/zVDdAvZXDilQkfpA46V4TQJ+dLvQmJ4ipnNcH2z2IzmTAt4jpgTB96B/+SF9c8EB0WW4Zvl1Phh+73Vl4rT0AKux7ZHXtmsVt13q0fOtCocywka4OoctK/2wgKGXPTI/aaFxFntxUROe1PnHNmmq4LlL3NsBLlcjNVHdxGkL2KwAe3JDlBBww5ce4Re6y87AA5MOd2O51A91ODxZ/GkxYjHBEX3Oglt2gjFvgfqiWc0penIZlIvHIPciqR+skfEhHXT9b1hwo9Abn0RRZJlvMq1FXR7VP/dea13tBL7d3ft4KbfAfAsOWg2e8DwkBE81ojczy5bp9u4STrCQ9qAizkgXUK5HxFS76lFRjF9NomXo0/F703lxg3vsKJ1OTrk4YP1iYaYJyeSnNuutJNOrL5TDm4y9rORVoQKOGdMjlqYzyIX0gmtlvZXc44CTj9c1sDgN+Pz9qG3j4D/NVSsbbeRG1N1zIn8x1bHiQh4F7VeV/bFIShMOzj4Wl56cZBymlagA8QY325iDqzSFe1xCfdoQ2+9w9ZozItbhCq3wZaglHWeldFZBDbwm6TsBaFNLg57nsKvHzqIZy7xzoeYP8hlaKtuaSi8asP1RpCtU2BtPAwTLa4u0AQiNUL39dNFp8tkaivQQQMLiVNBJbgG7hBj7ZwIhfp1oZqcsu5dR7yE4dKGNwyF6vhRXko7x1xhauObiEujP292cccDdrKxvW2WWcTrNPJSE+9QUiRJiZoakWDyYSbRxwsz8iEdEZq0BJDBgbkday/ckaXnk0JTbImHSzUAyuDpPYAn05VKByBak8wYnxHpJHpZ27+PWt5TfDDyRc+V7z4rK9vFcyMmbJRUo2Jam83wt9ZozeHegxV1DW3IkhW7pdYXgMjI6fYQ9GXm2ZjgN4nMVd9YuseGwAjI5o3D3asuMzD6721DySD2B/jL0a5e00w+0griyVB6KhUDepXiQTpXOvin5cVNhgNm+KUgiehfhbGp8gexpj1XCWf7u9S/u4EGWMif2vxek5QUtZUjp3DEBPnKGmfwTntIThxO0SDT7Erg2+3W/nSNQxY1dZzfruhlb1kx7nrtWAMcFZs07gkFzga9WlpphHco5uA=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx41552c26-9150-8a4c-61d4-2519e22a3625" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx41552c26-9150-8a4c-61d4-2519e22a3625"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tQRO+LHgU83jn/IkEu6nxjF4mX4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>utlUeoWkIeT6gJWPIuxVlQYlfjH9Z40/IwNZC5SgMayawkPxVdmNkAhVrn8/5ocDt3RTfAbdSd7ikBm8a7faIfZ6Bx1Ggp0A4QIwqYdIHB5b9zLTqomdoi4tZkSa73kI7my6GROWJHSb972UjQiFm1YhL1wtAQxy0AlwTTv/AlY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ZhQEV+My66Pki0P55vcTIegQ0Kr/Nm507jIh4dvapghkIVjzRksSxj5XMIxPi/vymFfuQc4GmNhazTGviBOkJn//4S5QWUmYZggbMAHnIUXL5hQHBtNpMm0ReTMDY6oxEN5s63o890qEBwSI0FqnmqIdf0k90cswR0jbRHcoYZg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>FBDPnDikJVBg0t4LdHG523b+FqhEjtDCbdk+G0VEaZDhCfDMD5/z5CoIOYJAo+4et3Ya+kpUpciw3dOvX87Z9l+jRPsaxpl16qR1UrfqBb7E3ERK+VVE80AVhnQBoC3k9BsZcfyAQPsBsEkI5Y04TBhiZadBz95ZIJswI7vZipv4iOeWFcZ6Fxqit7/hF0kvvS6Fl0s+Am1OwUjHqxXSUdd7HXP4dlUCraIoWjy03Z86Iq4KVn1MmqGylOQDD8Xru8wVl4CvkYV8pKbfUmDPMpvrVWuSSueah9CdPizGmaytxkOFm/7xTQHoUnSoz0McncmiIhnjq8PHbr1A1hQOtlbzg9On9srKNIS1mwEMMGrMA7gGvLaja7mXdvFXoEnW1or4hSFp6Zsxx3PKWCGp3no095pbMcA96uraAZPQjBiv8KV4KI6vCniiC2E7dv3PQ81O/9uRcH3Pu0wfNA4S0Dk72242EFCjZgBeDCL6YQokzjENAn7I/tcTQoVz5QhHjCxYZBVMve5R4YHf4C+ciad5puLGR/Hpv+Nv51AYV3C42DdGPwFhVmXE/ZR9LcZSLfAriPY//dHDZD6NYLTgRvyOyUMoJanhle093KFm4D7noz0s2F5qOT+QxbjLG5iLjDOm7u0LLCMIV9v+VtpSj2VRWpi2jbhPBq950fMDq0wAhyDHmLaK1gdNZWC0zJurobH2ZeCU5fqv2Ka/Q/Z1XPPX8KN3QSqeNdQ+FXC4s6M8IDP3nK/ZFUtYHBq9ewynZiCZKWXEvp6g2KjNC/7jkgbtXU0Cdnk8ujs92KWHrzSt9p+cIz3bvUDJkao7+UDdfAbWFCzhh1arQPOayigWsPtvvVfvppf8pvPFTSVKO4WFrkTILEybl206+5SFGQ7U8k0zyO+YXgJC2U+LXqWfbw00WAdWhv9zQR8eHA9T7n/aRizMb9JDh30NqP+8KpDS8dQtGhVya8g9RQo5cjA7YhZrCWi+Ps1exJmW3RXJpxrbNLFEbbn6GuuHoaOHZZiGSaTRrM18kBZkrDWmyJyHUgvUegodyalMmD4AjjZOTPoIn+VFhSnQKTnvK8pctPrB3/k8XvFyMqwpDEQNekvWucJX26JzRGHbIjqGj9CtjqxZxRsxG930IVTYEZAj7AAiznV649jrUudNlLv+CzwQ0Qxg5hXebiLCWVm+p9bd/ib1JPptm/GC1F5YxCGCFln9MKej64/F2KaK4hSAMOVAkZ2/obQMVO4LG7ecIuvgpZu9u1UfdDQuVdcWMnFBe2oOBkLsmM2l+1QD6ybvrPWqBdxUdSy1c0z1//gJfFJ8fX4wEW26PcAWBBrodgxrzWzd76cmk7aAB4YN917QWHvgL/OVx8K35FNRSQ4hHw0/rlOsUdPq91mXsixMiX+sjaHnhgZ9Eksf4siZZ1CiVv1ve7yXjlYSIgsNI0JMg+CKv8Z7RgZHIrKUj/JyclUg0rSqo2sj0vBL2eMMPh50DZ3+xsmN8fl3tAqD1ifSIG30YgaqUqWvvRZyfgjWRFas2OH70hF3cXIGB/72UGXWSrviwgMiTTyG9eHeV1ZHNNKKavvUKUlnI5DroN3gIHQ0Y39WIlwAO1ABK1n5RcewPtvfYO79K4z5wE/bJK4aKspjfnztpGKMqKNtvV46RGIOVqdbFIIy5QkTCkOcHCiLQKm4v+dxrR7OLFah+KiYzkcC/FhFrmK8W6Orz5BnhreuRlFZsmGPNz4ViMoDmhIFz4te0+ddJMVBpqe/ibmMIGwQBU3COQt7NxgmdW8+NInHLtIrfhsq22PG7HVdi8pvGicX1w9BMBwWht74ZjUCj+6iXKUQtmL8UwYkHtUknoKLPzN1uvWxjlPNXnroKmSAUSOMJyTjdfRxrATG3ZVZO9iXXGOPnHpdEYS7e3BdWXDWOM6nLDSpjqYWS7AOq5JLO6VRUo7n9yG2nEczudyVn3yGe32jL9LxrJ7IZavY73JV2ONUTLrjDG+MWG5yVyxfATm38sVajUB5JB8v3EapPecnbbWb3vBxRFIRVgZ3zj19qDhWLHq3WQaMcXDPa+doHDOiDR0ls7yKQrM/yA6bUF703SA4OhxMBYzonmbbBaN61AodKo0SKhqcEL0gPQC8g+jP78NtN4hLr2Ily7hXwG6YM3RzxNoaEPsHZYgYaJQlIZaMYJlPcoGSP5OZ9DmjpNHeE84/TCpaxDU3M+aHffQfdTTJXzFdym8ogCfNqcKd/WjWtAkGwiZ4KjRFvFrf+9XardAXGlpCwUrTgFoMwuUDPsh923eTOxiEeQPoAEdMFbpLADZjeFeEIMmXZYPB/X1rOa2v/cmSnaCqlAZ8faMTNTF3qow35DdkwpNslvFnpIReb3KKwenMMLhKKo73o5smG0epCTOaqjm3+FycdWQ2TP5BgzP6+V0ISI8KyHu9cM4FakZ4C6+T6/M3ms8OmsIbU0NnTncHKiKwmzG0kglGZ2TDEfDApOEN3QasqvWW58K6P5c1gzUGLZ7EtysMmf4FGKENFpVNid9AlT84cufnvdmb8OK7AezjlWXY/pI9iCZhNZJEcXkszNE3JaBxpmFpJ1COT669Hg2+H6W5KnCZrWr03DRW9PLEODP7+d+N/xuQsotfftWZxrIp1zRvBSifEppBh3crg7/pvJggQ75q+D7wYGe3zeaPtd6FMEtb1mncPLO55M8/JVbcK89loq8JKOGuuInI4d7+QhcwKfazQXClwSc0jpX5qGzCajDVwyCKDK3cJwaZKOTRfT+kQxAqsoCwPt8FyctJqDWQbczhwPMXvGvMgQbn6PUoDiUCaUknuHQ/IipoQr7BMVnjp1QO4ZI0t/MBZYEbezGY2al0pw4EgHmluZ4WewfQJhTMPVom5O+wchIK1wWEfHGX8OcGIB/XOcFz28JZs9XmCkbHNrE=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1eed8d90-d395-7298-8d94-f2d0476fceaa" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1eed8d90-d395-7298-8d94-f2d0476fceaa"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cE/4V5zfbzZGLdLCccxkVnNpXsU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DqimI+1xzNXctSohIDJ07RtXbDhMa4XIwiBu4I6y1Nje33sCRsrojqZ1PC9eLJ2TO7i72Z36UV3wX360ELiP+RH6aF41/ytwzvm6TwKgI6wz1y1DLR1XEPxvRFldryvHupULIULYi4AXYISJgA5WMAzOmOs+hsl3GByyYYW27Nk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ZPICr6dw+X8/ztWbrcftNFAw0Ac6yfB0tStc62BdmWFtpuNaxkUxOOUQ10mVPgMmlPfTANm7fxpTVGpcqIjqxi+PEURz5A0bNACxG+WbEbt11PkHTIr9hx82qyj1v0Gkcx/8KUV7mBjuEoljTheGAS8AktGA74Av7sfj+76YLjE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>7SsBEgFx+L4CIl2Cc/lGxgRlQuWtV08YbE5KU6HVkFRl0Yv+Dp8wTpCJu+uSL8lxkFFkoUHa5afZGiiIgm2falrQ+g5LMydgeATR6zC/5/mxWqWZbgte271Il8kda3ZQV5eBuK8oJjFICPrsLNcx2DzVVReMP+MXZg+FXB1WVvnA1aV/JcxCcr8YGjBiS3a8NnK1BwxmFIKqUSUTuyaSxXdUcrxgv7a5pASB6UgtJDcDDHxqaCUHo6pzaGyQDN0xkGO6PXLejwiRLYyoA0blTrxEL3EpB/0KmvgiOTFg/IbBVjIIQCbObUJsdzXkrx7/u42UfCS5mUEkjB6ZlZyphJLFCFSIRbgNvbn5tdvpeNueFKmxAak0zLujiEfBnXZWwcT5ZyXavEqsp/LeDD8MPP1YV0ACZdBklEytZhp1vZoq+uZFp5o+lTIIYlnmTs5S0S4IJVJWGZgPB/f/9TcjAxHvb+HNlFxZp3F9/23hSZ+6FNSswnrZBazS+9vzqL5F5Mlm+4DVeQpMoQikscSRX/IyPhpPi4kcowa62ALdyIAXQ2XZeIvQE9afTW9qVBYEOZn+kk+F8ldqOQBWdXg1PPYq71DTIkHPreQNJqGUf5U+QO4OCPB10ob0qlqayXhQgvD/fqRWLYXHTdd+DA4/cC8cbGGP3dy0/RwlQVUFDuaRFQS+oIT3B8J+jUUXTrky23WYyCK8PSArdK4DBFGGLVRtl6W1fWqQdWjUI9XFNn0D4kUJdtt0PAePlX00nSYtrZWKVOy4p1I3nreSQojTqO+ji+3imuE4T7tA8+Ttx0m5N8DXWebVONQfE+qC80NGS0C3xm4xHGyJNfqQFESO/qYglwVP4q1B6PGEAEVKIHN92VIFxy3OBhdotivxlwNO6R7GFAhKrws8IchgyYT0WonDFj/Ukr2aQXyGVuR5lzbOg4XztvMxWltz3QGdvjnUFdJLxtcEcL7CpCF6nKwtx76fy6Bui7oNxb2xCRp9b/hV/yFdhv+0eWcE0+GSi2L5KqeO7LNfDTCY6LKcrk+4I7jxJm0obelljCTZaj1Bp027oPjZTVmv4cCtW/gyncQ8W/qi26rz9IQAZHXb4rww7oMWkDO0ALXjpn/079/+0fIHsnHQj0EHv+y8wteH1VzCoidWN+QQFx6JqLfvmUCOGbIEdV+V2yQ7O9imI6E3+5gQsPB8BBFelAJ+bfBRan72IAO/1ZEPN/MNGn1gf6u9TNaZDB78TEocYb37Qq/jctMaO1t0TrzRqG55+FJaBDlX8JDUwS6/d5dEQ0KmRmoxoDnbKS2n5VbNDA+gCaRGLvbnE5Fbhy9jCZUHBY2pf/U8qu6E2ixQBOxMrsiZO9USYjOfMP40eMggUJrliF9ypG2nzizddRwBLR2Fh1sM/fDfPHdvZGIy+QoZi9t/cTxVDAiEHSZ7sELCVcj37agYR9/S07KmAOPAeXEpcupze00wTpJi0BLFboLvGeeiQv/5Pg48Aj0rydKxONKNH/W/4IrjSxJyuGX7vvOBAMzzy9xruE9s63NCWJsAq7mf9DXwqznV6RSXK082biQ5hjYjel+2/0+UpsColF8P7GOwHjIWeyYlPbGORKXHXV5s4ZXrQgjUFl1rTPJIctpzU8YYGV0O8N2AXPvah7pWCoB8+7X+1LjMNf7sjbyJgpRf+AVS/rZlaIIEwuT7a14xxf0PdBhpLkC7XZY/1l13ohbTWhaIPsUcCAsYqNVpAkrf5LAfdiwy9rlnNv+5E9k3C9BklNyxTjb1YLG6Qij8WDbLtDD/GpGmR1z/BAd9TvETRFfSe1udjqGGabv6aUuIWwhzbtq4vpH+E9bRneMQy/Q598wiexMbxwmk/Ax+7mDJEINhg4ITNgHLr2RylQTvK3s4pEpbdDVYvXSkHh4LBLvNWXQvHDQkqyzE+tCeMJpUX0NievImyE3cj1v2L6puMr9FuV01kzXv9zkzAY8+2ZkIgzi+BSnT+BCCXkU1UMd7vUwYreDqfMx8Uepy1fFwpQ3Yvt3xg7IWvvn4WH1Ry0gPHyZSA4mUhWpX1P9Bz/cGHWAW+8XSNykYaHfGoBBZmMi9dDawoMeL5sfUgRB0phKIOmDEMFTAtbN6MBPraQbzoxs9UB1pTzodiiQ+DPnUwGkuKFJQrU2DJNlqMHKYsouLoN1DsZZ0xuVzR75Ise/TZ+yZllMy0krygk5rvAH67EVXO9DL02BwmuaCtGoulFzpamBpBPD0qyI0+B0uuGQcDze7FuQzgcQ0X02RyZOwX1gqz8m0JtRXGbdPJih6JzCWSw/Z4MrIImpXTYUP7hY19EBNpq2Ed39FDSo4tibdxNJ2GEw810bEdhG7Nb63iNK2lsSUwbUa51B3b5wPYclFOdG+IA1aL5Ywj52y+HMK9RTZywblcZuyMssQVzjiuCOmGcpiIASrt1fe6EgcqSEcEC/colutucRuh7RpjRd6wfRXaCJy3hQxQO5t9VETkS/BFpvFoFaGF89JBsusCmzwh6I7OGOMZCn4LhsWJGiMNKo73bc45agoxFFAeNI3MEpF/3MWPu8SsUuFOMPpN36ApdIf6026XQ7zjOu36DIHqOjPuEtiQ0NZiaCmxlKSlEuqYHRocUQTEjrjxdrpjROAie+1xoSIG0nJObetb5Ilwi8UWFLwx2hfvq+K6tHTNJJvpEK2ZSmdYlDlMRHDJdxVh3MeLDmSFlfxQvILORWXKa90rweTgzBIM6CPIQ/lMUeiJr2ne8Gyc6GC45TB18I0FtavnXqIFHath+AS0DQuldLecchoB8eq3uZ++ZW6XVU4uKnVFsgucEEl6Sfgh2yQ6WmC7i0aqTYSzypNSgkILeuWnq0DUVYD2Kw6k2qNHrtjUnTU+8D6x8ALySKCBn0O39vRSnzablwTjrd1Qg24EhxUfK9X+pRLQinrXZx4SLTk90xK+2jOulcPDAdJZFxi0+Pe9Z3sQcr+bBHBDQYCy3TrwAjbrVS4ayUS2mw7gEYkkv5vof3nOmsrH3FlDtU0ByWybAQzB4hLX8Adek0SO8/VTgDkAYlz6R+tNw7RxLFAQ88Hx4hoBv+k4NioQcOAEL4aXn98b62yIHuxZ+tuuuJVgJjUt9D64/kco5wAlyYSeWUNNd46Sh651t0Jc+V5ImqSRD3Y5xKyoMSK8yb3T+13GlhCc7vep0wb7iDfLE/5nAQ1UjjJrix5tbzmPINcBl/Z4c/utYG7yIFBVnEB91kipd0Z8XeyHchbc6nkldAxTTaluknhqA0EjQet6kwmbss59VXN6+jALspt9cN6SxO/m+S/ZwRYXMaIsw3QOjTATCAAp61qujgwcIFV491ORwwI3FdYrY8yjSm83Jrfq8aOitC4VFSuyOdZCiYkB8cIeKZ23HtYS1ciTL683ql2H8QlNdv2tKVK4g4bE0fXAHywr5KHERQR9rpzXJngPY1t2RGde472Uf0mTcTWkrrx5zw8bbK0Nsmnwh0exBxeGZH1C2oVo9v0q+/V2ph9ak/6TxhZ0rBwxFr1Btzyd43hb0w/pt6jGRGTVi5XMRMkPkwhx2sgIvPp72bK8AsMhhMbGl6G1hm/ZByi1TrhJTEyuPd8jeYRfbIiCxpVRUG2arsH0A74aHmPQLIzoo1j/0EH5Gjyc0nN5JldcKss67oEYAATzZr9B0qdu8Kg7kMgTtmvYtgeTadOFsdpssDKWB8ZTTK3v/p9qzI+nndehk4rcM8LU2vCmBIabmBuEx06KKCgfQxUIwEG0i4psX7bjRia+ucnAnrD0nAnxJIFZjHTe/LOhMJWLd6y5mInqrUBFVD41UEQxMGhjTM/7lIuQ4NN1XFo+Ie7ydN/1P+iCT2ezWTmluBiklVaJWFNMPy/wennX+RHi/F6qBxBJIY/pY0VJVTY8JlQICERm+pt469WxdRC97SeGe7HJHcEO7jCWYhPv+lZyA0B0+BQ/6BsGT3dMW06Eui1LaOKlQ+sNCp4E0bN0CGRhNm/NYiGQD4dJLar7gmCSy+p8k9k+kJY17FsnAW32iKURpZmG08/Z+y9q8tot7jEZEnliWXOJvv48ug6mT0bC9SWN4IgkchCGvllIuROMl83cg/oSVmIpLDU5DWA7efD0/ncsDpNrLI6xRj2cKlJTeCtFCgyFFQiAXV0JRMAlZfDaoA8rpPeeLjvhlbYjTEiuPkXR/PWD30pzrzt/pyhMvKF7/Oo2dAySvGTOrPPsiRkT1/diiNdOeYUVZ7JZXVU7cu2yeP/VuMDvuVFZyIRlxDphgbbTvgUJtHpI/OF8f42lA7Gfwo9yb0TpIP8S2KfyXAmyZhohrnC+whgTHfLaWthv5u+h3uN5CW67859qhSQKWCjX3Mg0sQx/zVDdAvZXDilQkfpA46V4TQJ+dLvQmJ4ipnNcH2z2IzmTAt4jpgTB96B/+SF9c8EB0WW4Zvl1Phh+73Vl4rT0AKux7ZHXtmsVt13q0fOtCocywka4OoctK/2wgKGXPTI/aaFxFntxUROe1PnHNmmq4LlL3NsBLlcjNVHdxGkL2KwAe3JDlBBww5ce4Re6y87AA5MOd2O51A91ODxZ/GkxYjHBEX3Oglt2gjFvgfqiWc0penIZlIvHIPciqR+skfEhHXT9b1hwo9Abn0RRZJlvMq1FXR7VP/dea13tBL7d3ft4KbfAfAsOWg2e8DwkBE81ojczy5bp9u4STrCQ9qAizkgXUK5HxFS76lFRjF9NomXo0/F703lxg3vsKJ1OTrk4YP1iYaYJyeSnNuutJNOrL5TDm4y9rORVoQKOGdMjlqYzyIX0gmtlvZXc44CTj9c1sDgN+Pz9qG3j4D/NVSsbbeRG1N1zIn8x1bHiQh4F7VeV/bFIShMOzj4Wl56cZBymlagA8QY325iDqzSFe1xCfdoQ2+9w9ZozItbhCq3wZaglHWeldFZBDbwm6TsBaFNLg57nsKvHzqIZy7xzoeYP8hlaKtuaSi8asP1RpCtU2BtPAwTLa4u0AQiNUL39dNFp8tkaivQQQMLiVNBJbgG7hBj7ZwIhfp1oZqcsu5dR7yE4dKGNwyF6vhRXko7x1xhauObiEujP292cccDdrKxvW2WWcTrNPJSE+9QUiRJiZoakWDyYSbRxwsz8iEdEZq0BJDBgbkday/ckaXnk0JTbImHSzUAyuDpPYAn05VKByBak8wYnxHpJHpZ27+PWt5TfDDyRc+V7z4rK9vFcyMmbJRUo2Jam83wt9ZozeHegxV1DW3IkhW7pdYXgMjI6fYQ9GXm2ZjgN4nMVd9YuseGwAjI5o3D3asuMzD6721DySD2B/jL0a5e00w+0griyVB6KhUDepXiQTpXOvin5cVNhgNm+KUgiehfhbGp8gexpj1XCWf7u9S/u4EGWMif2vxek5QUtZUjp3DEBPnKGmfwTntIThxO0SDT7Erg2+3W/nSNQxY1dZzfruhlb1kx7nrtWAMcFZs07gkFzga9WlpphHco5uA=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>