See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxec9e2e6f-4414-d3b1-4814-5fc2d6c093f8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxec9e2e6f-4414-d3b1-4814-5fc2d6c093f8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7YAhg7jJQKXcE52oe0kZ3+QrRmM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AuXtFdZFZS/lWhfMFuSespH0v7BQ+9jN082shsXcSbc3nWxx2jBxwJD4UjfYatOwHuVvZeC6x/g7SOBQNBNQWdrc7z/sT4yklmQrrS2tiepZzRrSqtkWpOEsZ02ba+mY47mb2qZRdR+qdpV0p0du+KJuXIrh0cK3ePhleugOCbI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx838afed9-2d22-4bee-0284-e6944d99e532" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx838afed9-2d22-4bee-0284-e6944d99e532"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>gUxp8L+ew05Y0jK4dElGCdUk1AY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>A1Aaq/rfsjPH/0Pibzm0IYHPzk1POQ16+LxbTajO4FuG/ci9mhhVlse7LqfCYrML6rJyKcU/YZGJkEpiETj+uLsUu+oSTHIur7w2R4lyDWbpqI5l9jI0+G9i+Cm0aGbfeDTi0TvhmcZayUJr6wcLkcbqujpNVNtlcD0Ia2jridQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3aa1f0ac-f73d-e50c-f315-21ef344c6e17" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3aa1f0ac-f73d-e50c-f315-21ef344c6e17"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0UIMw6tC+AYQkSpMLx9Y/X50sxA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YPWkxTx+NNzFlb8bvQjVHTc6YDpnNhyivDWk7di2wZWT8oVxysFdNoVVSczRAoJqgdfKoxxdQ4uPvTFl1ljZExfEsLm1X2lyeJnqwGJc83QtKchVQe4siQYHJS0AvxyDdFadzApg0pJ6ByCLE91Q3XuWecqF6XdT0NHlyOTBo3I=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx98b633c5-c573-ff05-ebf6-034b46cd6f1c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx98b633c5-c573-ff05-ebf6-034b46cd6f1c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>OgviyANK6qO68gj97bGktxMB+rI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>r57ikSG5pPDqvz4pt8BiYTzdXQ6KBmUZ8K59Cjon8ymLa1onlgAXg6f0v00QbUUxEC6vffI4vGMoecrVX2ULA5on/fiCnIDkyOZfAnQh9S5oXcPOYyC9unSeaiXXcUFuExRIgvGwYvYkmZuasBZZcgCr8aS//W9pu6ELNij0lnw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ALhQZ1GCce4C8cZWQsgt2N+svV9y3IwPSFTeg2xIipVU7Eba2fEpAYsS2FfZbJVlvxtDUOQCxSyj9+9hB0ZJCLOrXbe5Wl8XTtaSMTmwKzDsxnnv2AgF4VSsJvX33l5hYnTiNklOeeGlWDz4ItrWb3QnGZSjcIAGLsdYT13+0R0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Dn/HQMMf/dH3NQqvnqlY8+oYvz6VtyUi93v+FvWZPu4jamNGFAL0J8adfhaRFdhokS1gqaoqlF8TeqqXn+Srka8csb/He6E7GXjNP2XgnTY+vj7xCwksPOFgaLCQ8etmsbb5KhNeJIGPOi2EkBgFke30M5Hd2760vda4uA87p0Y=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>+HJW1lbzOvLnDDuo5Bhf5DDX62GFC4IFVKorkSE/8jibo7ZrhBWKxtUXe42ovkoyfiYFOiv2CBOz8C3tm1Hwp2PgrYdTI8vCtGKgOGBVASK/l1OZATOdqSHvlm3VlKyoEiom7TWvo0ryBGS7xISQLcCHZNJox87SKUDfUcP2TabJiTzXhfjC/8NvG9q4t33JnAS5gyviS907hOOVsLT9ckOEIjoXE1WImkDJr2STt1ORQ6a9HeFRtZ0W6iBfiUMgdrqtQTqv2oslLpuZeNGGrgpRCS2+fHJ0o4Yq0lYQEauku4WJS9CPRS2wy8EJ0MUpWQAqw2JmxHbmmHcaXiMB6U7nYkoyy6TSUvwOmrsEKq+KI35tFonUcfJZf3rwFx8jqC++gUaM6CK4AwX85SGRmVnSnPtyBv4qxUmMc0qd4Flu0gVnbPvYyoJzFPyi856QXMsDSvZSjp/RLhZtOdfiPYT0VoyTU5PZN/YdeyFI9QV3MHuKzSzniITqq7oHE02+/xhlpjyDtoN4OUlC3ttY+msQCICImHUilfegERK3k2QZdmlTrkzrp2zrgnBFElM+gKoOvwdlioN5tSEv1TBDaOMtVRlTZLE7OqexSpMutK49amBVlNB/hm03dmlhaYpgYVXnmnKJNp/wzDLgO0E+xK+JruayfBJHzDlHwr4V7U2Y+DKoR7L1DjQpQQFLJ7+ejCRthPY7RzDHh7y3etgzzQqSYz28imsERL5MW5oZ+Eps6KF4vXh9dREYTQqcq7Wvr8ecaVBrPkX/iOoomJCd+eBDXo1/upsQ1xXNA0meRzCrTgIk67mAuo47S3EAPKPjUzut5YJfbkc48C49Tq7btQKTz73+gKah4tPupzl8RXo0c0f5otTuC6PWRoYP2AsQz4oUmgydIk7AFWP2U5uSDNuPxOblmuRdQc/j7hZxiPXK04k/bzLPei8n3vnFVU9PVMmutCCSRJOofg/xmNKv0TXRpPuHvSa33zwwaVg3MgQN+iMDrkmsir7mRegQzqxccdGsGXAGw1aCFqtznXBPrs/UpiiCj1FO2qKTZgEyZsAEPxKWjpXjZB/sHdgAT3TuVzaadAzEWoSLqctAQCCknQXztx0dxYeMp4KA3SLzwMoqbJUT1FHAO+OA5ii7OF5MIPmptnRo1u1uxjkqlV6tuoeeV41roFb3tBHrBENimiLVIn29KsLXKIfjucFxWw92HoDkyfGP6OcFIs5xNBH+RgIfXHc6JS9EqkIenNTh234sEWIhQkVmcVqcCnTH7Si7yNiMQQ37A/ogSOd6nQoHzq/jWJtvPfTBXqfkw8BB7prKyaf4lHiDqHNdQnAxOOnFtoUPOJxqnyttzRw9kGgxHYkN5s2QW8TbQXdkAdOhQJWnmfInc4JgMkn5BBrS8aRYsMMEmMSeJairKH1CzlluEagMDMHJwNaF3maKZDuLcv4GRwIrgDvpX4Qz/enZiC4oL2tybSS1k0zqaBzGZgDr++BmoLaicoE+gFm7iWgrEnoy3xRqz5Gh6Njvk2An0ExtK1yEtZURp/XUw1y5i0S2vw8QQGTyuoLLa+XikiocTpqBAFI6qqlGl7ZAqz9vBKczJiHW+kii/8xDClDSjab38b2nSTuvAtUa7LDDMpfXk/elFo7umi0VI2Gvi5XtejT2xzeeUOx9RAkjuRYogUfEMrOzyWEmAVIWqm96UnIpfFIs+Rml52WLZA317hdxH6wztnVtOVLiMtXcimTgP4BBUO7VmvqyXdi7ZmYwGLI8rmV9DSnoIqmejgqGXWZuDddahY92wYQGvxQlO/mNLmAhIwkFGmsrSP0dSjoDlbled1PGh8jspkVsZ8pk8CqqJre3nGEBGndzqk3TJyKs823L9CNWLi2m82j++G2Rp3qX9MCFGzF/xJAmd/Fk5RzfEPmYEEGWNtCczv1hs2DPmEljWln4BTcbMoukDudIKclRn0oICZ4BZYclc4ysA3izavYTJV8LFQKxmL1OFGhJo/PVVJ2NDiH9X4adYwORwmH56pk3N8MlRovRg6v75nmzLJ4pZdP8ZaEi2JXASi3zMWR17Jd0L6lIh6hA+JheTU3NH72f1bpPegA46C7slNQY0rokdoU3WxY6RRWejy9jNPBPwWNGXBCpo+oKzlPxm3Q0cQBvNQaHMIWnqZte0Cx0GuzAFZvIcJM2BqiZP4+RY+r9Ef1YLbAWnIb+BBIpequtU/apuo8Y0kt/U5f4+RqiKzhWcflJjOir0PDFt6N5D40RPlOd42YFdPy2eyhCpOdmaUZsrIZqW4a9bvdBBseWLgnvsZ/KfjwK175zzf4Kz/GQ6ZtlRODIR4qedWTkr8EfHnISTqFwWAVxhG0mbEI3B5oLHCdSHulEVHZr5TNsKIsJHEkrEsBHyrFRo6ujyXXoxqliuCCxiuTiIHsua8N7nTXVcxuJOJEnviFqtYdhlQZg/gwkIMoj7DJzooj717gcYaUjcPc1GHZOB0ViyLCIL2Ybw6T0bncp8M7iPhwY6TLpZ+gBhYcpHFRhT/yHoeJ0VyqNpImjKGFlGnCGiTswYUKS+ZYFT/f4zdpmw28z3THXd6lsAwu1a/88d5DUlenUPcG0FV0UIF+V9XSEvCfd9Zs5vn0tQgQ0lpCdXSnf4zLIXEgT/xsf+HAgixuGJT/7NlkHXvSrFue7gv8SPSkWQ/ptagvP+phr7xLvkxXc/EDPvPoLjtlqpf4Xjn7leswc+Jo81BbzoXO3JYeZYE2qZcEhT5LJ6PZtjqmeAsZ7TtGt8ugXOLhKqfyO1TUqp0UlCnaV7RI53YwFBcjUhWk1CzyD+u+grHvUfd0eIjDodjirFwSbXRK+CsYp+Ub3dxONHZrprASfx2DQ4mkejNfvLc6sI+i4NxUGJ+VHcXp8z3M5Bd7A3tKokmt3s3/LGoANga0yls6itmdiM28njmeFz61esqhXhP3SrpsTNyiQaOHR7Ug3h1tZ+nWQjLkMUuERoPlrr79E0rcTkgrwdCUzSE6tu2S+EbnC2OvYZuiD4JE1E9WYgTzYZTABrXiJFCG320Fi2UX9ql25Y+fnj94mEdn7aFqq5h6lSLH1ZkTa2sPE7tgWHOISc1fMBFWz6VU5taZJ23Vo3bM2I98tqyN3phqFn6ATbgee1+jYFO4tPwNEUa7GzmRhaPUPmuACDO2Dwqrm4qAR3yLyLADRV58cWijyFidxuGRQsBUO6LMxH45mH7h6veGCjrzd/lrIqCyV8c8SMyst5YpK+a5Rej2zWJ3+HllVV5EUNF81QILA94gszCoOpFYMp7q/nJVh1xWbIDADS1xLdrqvyX3DEvbA7X2F3tzrL+WjP+jeIZItuyuyUafzkLihRA5wMR2756j36YVdfHn7/kVJfjXqBzgMSjzwcVDc2eybFbZIMPC3ENski/xPHbDYS9Prp6xF49xPxS5nzI9/i7ZTk5LkRSf2F1N3LY9aPsgqB7RKwz1dwI9CWYKxFke+UyATo1JsU/QLBaPkw0zRUeJBbOPiPnL36xSEeQq/vX5zOl/WHilOPd9WbLRPuHvFJ72aXfZiyPLG+qzNpXfkbKDksdOCRZLmTKJ0FK3SUNjKXyZiRENdIqcUMv/EKGBalsjFEAh8ivKV8LhEOztGNQCozcf0d8tKR+l+B4EwKYzLRTeTkeVKZlgAVzgvg406vGh63rluCmvZAsOXGVjCp4Wf2Rxbu5N1aYRbPaFJ6W3PP4hMSlIt9Xg5PGmi9yriANkXGRBw6KU3mzsMoOtwUpx30erkLY8hNzr1ogi3wFa/Dwx36XBxSJIojChaMzgOc48V+TxzgYiZ0zmUz12v3563OTrpXbJEngaFLaQrSa2S11Tr+rJcQKx1kfetckeKDW92fQrYP0goBn2Lv4b3AQwJzXquCVvD44RsMjdsJglg8+lXMpQa/oCq9Njakd8qP1IqsDz8BUve1tMJPw+mirhbsWN7gJ07GThjFr0mElba/Hf6CLFGhdYbpRvzmRotdQylkXtCbmFqy3e7hTEfQLr7zAoLacOsf953FUbdbqOcBBoCgs9PbevhDi8Uv9CZzq8cFh6lN45muBv2g9GvIqOFxViaJp45TemGgDjA9b9urzx5pfBONN9/3N7OOtw784Dk+smzLNtETYfyQazqja0fhez9W0RgjKv1TJvWXWa+hfEr5TZWopu8u58X8f2Sj3YXO+Y8mAZpAAKWoy/igfc2xMCbXlT/hC2GXitO9jw5K46B/30bc0/nAMcmjp+0WJrIfhfr2CNlSU96v+Gxh/PHt2uJlXmfKJntMmy++hzgLwGbwo+tiki3tlbS96Y8vc5HSxGZtHIuS1tBTbPr8POha2JjrNFNnDGoyIVcxQDYBXlZ+3vGY2K/NtMnZjn9q1Z11+Xhn43Y0sK+Akfx6huqxTBkiz3Jv2GkEi5UPeY3btt++ZSQDaQKljBs0g714/Grd1rWmKGw2TFTEZiq7HGjjhQj8uqGri1eqCuhr/tfB2/bJ6LJn4S92aE04GzvavDdgyrdiXS+EEmp5tyVRjJWllJnNoEKCpECVwDHp9dWBSBZfo+Q5xZxdA1PJOOeyCb8Nvz7wgPOZ9ykMuf0fiyGHYZGQJ7PD/qmVypt08dGeY75DmG1QJI78W0F08T7yOFo5D27LBMxIbgyVJqifm9djxqgyOFBE8E5ZPUL+SSnB9HYCK0uOm9hR1i/Z3S4yJulq558fNvsrPg4nOiURjN/HLW6ltYiNuDTSxIeys8tV8Oi200ls10BG+mXMF53+mBQSJ0rk8WpC9ZO1ms0Ff5WaXSEFhHOXDzyEreTedTx6aSDstvd9duPSE3Rg4oUdVWGJ0CZZfADO8k8rzXZUqjw0C7XplzN6Pd9c+93H6Obp7OpuDWTsBMXujbom0gxLmkfcUTET1N+pKjXMNV04IfAkgPWUGLf3xQfM1vm+7WCFvs6Ai9cTHCo479KVedMqkHeIbrLfiIPrJbV9FyPbuwwFkXx/QNQKKKGlmNFB24CrBqAC4pBq3CkHr70+TAIq4Ot6hcneaYyPUjGMPww9SxXB/8Ialqt3QZro8ltSj7j6sX70XvBYoQNmH7gZ8v3NKmeouUMvM0aPcmhS8G5dgUxTZpfj3QRKjFvIlOWrsnEwq/MQubEYNaDodGrt9Qdp4kQUDPBJHH7gk9/ZxABwR6j4y1SkTqnNxhLgWa7n5CY05IjQNGivjADa0T3u6p3YtyVj2b2C/8KHSyV9s+RpPpgsgomlrWOXjZJu/BSXR4RseC03UIMN2i2oO6quugnmppic3sFfnQ9vjbYrA0T5ue/SOPwTEiF5JfpLztW/CEl5CSLYLCoWTBQ0EPRWvTmr2QkTD14fWjgkQJFNMWFXi7shgAltUQvirUufpsZ+Bo5VcrdUkk0zIKuowYdSCgGKpRzelWTh+rqpuob4vxUyDPSSkyfdfG2d3OxfGhNPt35s7BRGgg0iJaVWpn+11J5bLl8uazHMP7wxHs=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf32866ba-ebe8-9e92-15bf-0e1721642174" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf32866ba-ebe8-9e92-15bf-0e1721642174"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bIS2OQGi+JMQpqTj2/r+f9su8G8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>nCsM5Rfw5LmiR9hnrVI0+XgVa6/Re6o+/Nuxu3oJt0uwKPdDljOdlcbIrJmfS7FE2baTZyYGnlr8lAtByefFrGiCOPwc5ZcysG1XP4+sNtd8u+07MUOjjCwCw0X0V80mF62ZKHI8W2xrLI1VqMkcWN22L7m71R2Nt77Lfgr94Nk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ALhQZ1GCce4C8cZWQsgt2N+svV9y3IwPSFTeg2xIipVU7Eba2fEpAYsS2FfZbJVlvxtDUOQCxSyj9+9hB0ZJCLOrXbe5Wl8XTtaSMTmwKzDsxnnv2AgF4VSsJvX33l5hYnTiNklOeeGlWDz4ItrWb3QnGZSjcIAGLsdYT13+0R0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxbd35ed11-4f70-f046-8388-de10d5412b39" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbd35ed11-4f70-f046-8388-de10d5412b39"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xkdYpb3aDrUK/lqFi4k5qtNXi0c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>xCJDTVsKE7LaEtZW7vsUyfAhpRhPvi4XZlp6Go3jyMRdrvto1V8bQoL+v2ULW6NBKVQtU/8DRBRP6JkFbaB5hLppEZK0suku/M6fOrBRj7B9XudvZtt4o32wFM87vtBetA8DxTiC0f7Pu310e7KaqGnCzfFNos/4LDUVzpO0Pjo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Dn/HQMMf/dH3NQqvnqlY8+oYvz6VtyUi93v+FvWZPu4jamNGFAL0J8adfhaRFdhokS1gqaoqlF8TeqqXn+Srka8csb/He6E7GXjNP2XgnTY+vj7xCwksPOFgaLCQ8etmsbb5KhNeJIGPOi2EkBgFke30M5Hd2760vda4uA87p0Y=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>