See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx0a467596-33e8-f414-75fc-60b7cac3d3c8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0a467596-33e8-f414-75fc-60b7cac3d3c8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3LNMAXFOIr6Feyn8Ln02Elq+NyY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mM2npg0OtXn58aKaJn4lhYV9PlMCAyGD5PVLaOzShlcl0pJ8E58+qI67O6DcM7C2vHY1mh8i84+FlCgSuUabEQyPHFu6qQPBCE3rWydYf9DF0s0o01Z9ieHbW+Wp+TDA+xggiCoP7Cb65tA3GGZmdEP4u4vxY5/PxacKTJlMfjo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcf3bb548-4778-b7e4-bfd8-6fc0ccb1f656" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcf3bb548-4778-b7e4-bfd8-6fc0ccb1f656"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>86jRzFD1lfy6juLWvKSx3LHOsMU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>moLFZp02VZqdXCl3ldYlmJqGdvS61iA3YbPXAL0Z0HXQrUCDyb6cHaTGls1Qn8p5j4PwrjsPF80TWGwdN125be6d2swBpHhPsL1ofN7mG7CMLn6tAyaKMWu/AkrRiI4VUgssoP8VAvYAMm/7X9+us7RStxLEiB4cRkoF2AGeLxE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx867052c3-d255-ec63-5dc1-f4800c3edf8c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx867052c3-d255-ec63-5dc1-f4800c3edf8c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9SN64GNQrslNZJ8lWopjsaSTJFs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RJKb+5bC6NARP/Vn/GfCyM2EnaRXIQ9zjWTnlK27ikiK4dWkjhpA5bTElmtcPG7ms02D9j96EDbxqYxF/iWPKrM42RI9+81+1wqDUzYHwotDWeGFB1+u5q1iO/DjCoLq1BM5gSdJfW7WeBmULtDNGMw6UZ1BmNmucOcZESbAOhE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9b0b8bb7-9d2e-d029-a348-8af96c5057ee" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9b0b8bb7-9d2e-d029-a348-8af96c5057ee"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ch5BoIaZa6k2M9Y1358dvylU9B8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hkQM+Uu5E1bV/95D7lMgEGEUvQn2LQYUGU14RNi/LXgGKe3ZAl2nfH/jVmTOXmQrtCE0A8XStvLBQAWjPc09vFlKmC2pKuol4Qu3J33UfY6/e3AfG+Ougjv3e5vv63cbmHMuvu2sq4bi7DPmzptW9leK5ycP2negm49WGYJDnJw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>pLo5nCYwJRhDsDnL9uzOUYT4OfSYwOKDi+2EqZZpWzVDpcLDTA944btj1RiS4TPJfrNRVpKTq/9j/z4A7JdO6ZK+kNKi4TLZCDAZ3aGiG6VsI3j2cqC/HbnGdqmgxzz4DQFp09LXRa5hrk783hV50l3I7tMC9I5MkpmENXF4r3I=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uCWtcvpNHF/dlSmNvGgovyyT/0B4tiVahdED3szveAu/fsy/b8BlDRpWygGgr5sjzH537aOv0UHzCS160Gt3Cl9U48i4c208d5cG7fKO3oTE5wyVLfExBjEuI8a7MrtT0/gQLFoH1CFkMEQnIHZJ8VlWjY9TIPeUXTvhoqH9jGI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>gqRM4KxUqlcC6+eTjPOgftQHnsi0L3xJXJ9PaNuZU23rY0M3ETDBCTMO8AGXDE869P0aZPamLNd0cj39QuxWVYqjiVclUTt55yn98LEu7hYeeEwUr5r9V94P8d2uBziG/uBzVPhIjdAmu/Alja8nttefnHfbvufzdhs/oXqvErSOjwRxU43yTA39f5A35nchYQx4VkPKhvdUzI9K1/PiPnRbtmV5J2VZZj7WM5bm+6D7KxFyWJyv7BRh1z+R3oePo8U1dIQQka+y/opVtvMDwNZKWi542132wM9BjnhvIYftSS8LYtcOuPZHU8xzAfdpkis4JEX1CV2z96CfK3osPg2UelqTx01WeAIlom8ipOrgbQiRo+zqAkj4/jLBdL0ySTbcIK3ZLHgLyVm3QUxjT4DV0YeKpj3HYzwEqdnsLwZGi3Sa7s1WYm1RaAYSKYL10RsaDdL7wqhcbi5BF8RvYTXZXZZdqUstmsj3iuMK0wdmE9ZKhfji5QlDtzygYLiZKZC1Ah++lUYCQBmxngpvvCU0l8uwnMJCZwCKq/WriZHszPKa9YlcNIou+p2xXrctmJougcnBpA79CTPgxYZTz9Ycqdqy9XTN7n+x3eH04aevUNw2AB2ckr3mOEE4e1DG6duZkPwzQ/dSWkRFF7Z9GczGc2gXXMQAPnODNxotwhKqHJFIjEC+fsA45VO7x9UlSjdauuV/v3/lKVvCeupQrUVfCpleUzD1RZ1AS86HyS4IbGHg73y9VqZGiXgwdiB7fcUWOcSumYPCd7vC4VQdMI2+rUoek/DZkTWC5cNbSAzYmUaGODlDT8J1W3fKjBdgUBJP84jpjMcQBdQTs/JDoQXirGMOpuo7fOiLfbeqZL2BPKuSmMk63r1wj+k/yiWeIKx4r3JmFUBgU3tFbABmON0HJ95ZsdZ9KbmgH8D9npjftMxpou9oJlvMREFao6o25zn2e+t014ahR5rsBLyDPFAGNL+898UT2B1oJyqttoiRFvgsEArPiVGg5+lTr/nBVFiIsDb2GtHqArY8Wwbs69GFGUhXZnLjSBVo9zXcRq0MlCO6zr3o0X6KkdOPR/SyAkhM4p1DZpr3i6nGDrQdBBrkJS2mBW3O/xH/p46jO/RafEpr4zQcjirOtylHTRn181zIL+lSRdOsTXpfyBlvzkgNxZrOgG0yRPYZot5nc/4h7Mu/R2VLXiKAathIfUG1HKLa5/ffkkG8Mm0SPUsVwWxLSxLhJbWeSMto0W8eraVSkMK/w7nXtIbI8j1ZEUUbMfhCuXwLW/bJlFxq7S8d0ALZpnPJCtCZRGpucBhhisJpo03U/3UYtwqLz80X3kqiy7Cfank4L7G4ArkkZslQsKUn5uGnRq2Hz2Uqemi1wbTjImQSBPy5W/8mo6hDctYUT/8wRB+skPsrb5usmn6CLcTbK4JTuExoHCAtaF3hq2vQY8wXolvORvuzGcobM1++ImKI/21PouFjtJVYQQgznWJqhlnEBjct+htonhA2Mu8e9v/6AP+DIZYv3ubRA//RoGGFkunPdmfRG3jwkTvmK5ZNq2rq0WgY58OR2KLFM2I3iWO2GrwTWidvYPOgmLy2CJdBTBu4+fVpsj9+8YD5jZiwHUinRx1ENQ7lJAmevGXcscOij5ghFj05w8bk/myfMwb0Z4R03XtZ3dFn3XCUFbFkgjtzPEuisbmZ+/PmklUvVmwnfful5Qu/rlp9nOi93f8PgZTHBT69xFLC5P3i9AFY1UW3fJhnuHvLotDDZp4zqkx4C4HM6kLYEp73qBGrIg28ocQZohkn94LaGY+5mKVFlJeTihaucMQ60J4XenvI27+emDnTOdsl5WSGI5VzNb+fTQ5YFcvMUd4NZWfpd32Bll5WNEK0RN2DEe0LjmIML0C7VugjzQwjUC7/LRZs6j3BK7zxD06lwf8kehGM7rbvjmyH3fUreQEYfu20hPu4Q+qg09zXo+CAS6V0nyOAzrED+swCNtOY2HtXYusRafMYs3aqXRowgXLGlcl8y5so2Y3EtG58HMTXH3AYkLZewFIC2wPDkj8K9T3f7jMgLGEW6ryPz3rKW3wimVg5QN3zcDVczHOzjSnpUw0vS/u9MepO17FWT8lUDdEEytCgkb56s3M+zZzcyL2Q+jxP6806zyxp9G52nqKho0W5Cp3FL/SYEoYcWzyWL/5x8TW1AVbNihmUzH0vA+QXTNPAcq0rIrbiAbgLemuKAsVSwIKtv8OR5HKsK3YicGg17+0cgn4sPSSXIgUpgyhI60IdUdYNZ4KEqSltootN91O67z0arnbd3/dKrK5NLXthwkyktjnUV6zE7soQrANiq/kjpHYOqt61JrNc3KHvMaFg5vNAV+th0nBba9kIvXT38zvpQzFoBKgfG5Luq9euBa6F9kbWE8HstrS2grFSIp1UynWbeefbWGtc7nkKPPe/9cFBfaZQTA5bbKrBZQNgExny1OzA6ZEXko1Ai6VBxpuLpxBa8XtWhuSB5/eOfsNZmUHDsjOgtcBl20sXrsgRcJWAKBeOKcMNPpMsReoHpK5yIGLPigGHV0DMEKj0xDxpsJbKGhJuxrbTzKOHgpKzoRKYXDvUZBBMAVaNTSCec8vvaBP17xiKzG0ChI8K2FZh1jBw74AHQiPZB8fwAh58fqScVZ11+2Xxgdfhgs2kiDBQAOqaDWIh/m1ghqm19SlIJBTxoOGPT8prHpdWT1n4p46KaCBu4pTviBsxpmu5JwCT+C2UYPaav8CC4ZknZRU+jFe845DNiGs50aiP7UN5JYf5bRmGJGBeS4X9gNfta/J6anVoCA7UNQzzU1ymwWpLXz9LLf2ggyS+iBq0755ScYgRdA3o/aK4Bvd+AEwUgA+oRAF4tCT72G/sPJ7w1AePAywWSGgmuqi0JwLVr8RetPFBoYccrfH+646lj2U6kcsfEoCZKRSSXf/AWkrU75xm8z60z0kbs8AhG87ZxQIDAn3qVV63AEPXjF95KHB7CjxYkAACTJWhYhlCwOXZU8pxyeJTj2v3nkBcZQ6aQt3a4znP9DNFLodQ3eEyqRbJaAXeUHJzavD1kc8rL65NHnBfCVgOqmfx2Qk9NltoKU/dFeEiOQjO8ZpgRQ7Tly/svZq1tQKLR/qunXdZ5C1xJXf86MC54TJ9mo/7AeuFxyha+5Nl9QVaUGD8miM8SXI2wPpQ5jEL7kHkJlEWORy2RK7z5ppeJXCfcgL4sw0v/FhBFW636yfe755TZXUkjaEXtV9ayXGtzyy9IgPY3O0NOuIPCmaDFjPF1jq5x89ZQEVafQT/BT33rfIznbS75GM9X7uWTQ2usz7JyLubowVPtNDapYvDs8/HH9sbJ7HmfxKZXuXUktIk+EqbbjaXn2DlPXfW7qBDHtl7zZAQ9EOTqXqwK8lFJ5KyWiroFbhr/79b7TkBAeWMCxpojDzRQe91IagnruHX3BJDGpuN/C1Ib5UFjl6+yxUJ5r6qdxx8z5Puhs0KlJ+cyZgmQSkuoPkoOjYlktbB6PJWR98sslGI81pgoXTAJgKaFdiTBger5jytRXhDBkhrT+Q9Ys4GmLkyFnjJm4JsFUpVlPhq2SSQQVg2IC9xFFsP9DypxawVZMaRtd9ubwdH2jvapZf+lKYxo0RrAy8Z+KAbOu1y1zuEcG5KHKut98bccBJJX4HKAnU71PbsHtEQFN9qYMKAlcrnSmGsQ+4PLHyE4QS+9pOkf9MaZlkIGO9etVKM8ljm6kwnYLeeA8Iwu2LIxzN9sfUswjWPOREaiMb8LwMjc+5BbIEQz2UZpS6ddv7PEv9yIOHIjydsJ5mz5/T2qHYuo+hO/YRzcfhlAbPQnH3ABCU+ZchQ51bJXTNRZgXGjO/Vvf9L9SdmBT2lNFy7SyqfJRonBoKym+BEkGpkADPZkeGZxykDMroN6/dYSi3Qg06mHuVVNVrNNRB1EhnKKv0OS9mJI5lbXLZ0gUYCBQmzF+ziFHwsMpzUcoCEZsJqcA1r7N5mabQ2wDXgi4aVY+gNZfkyqV7EH/6DI3eVcKgREvJkf7p/Np+SQPWqQLmIMA+z4tWo1qvjm8tSc2/fKzr+6acEBy6wk59+ei59dfjE4PJLrNyIfd4gQ6++0zWba83YW5O/HmUrpwgQ31MDRJNTHQpVQFbDpAh+WmnWLwGiq1/PgrcSHxXqjgDHzIPkeNv8OgkGSd6b1k7/X5R8oxBN93D4q8u3vmer1qII0JEp2YTrboYBViLpOXOGS5/Nb96KwPmYM12AV+o6JrGzLz6uEesv2Aw16U73fHvMU0dxMUjrk88T2UoaF/BSmomJAwssEmwdAyKJfwhQ6FQto5DgC7ruwCSyPSBy+txpRNwlAKaHds/Lf2VO1lAPSoRPD0UPgF9Cx91BhAevgPxieVAEt29bS+N0Ua0/c0OFPPCS9TIOfR/6SHR21FlW7ftYYBq4FSpWF1XsrnV8huiVmHYHuOkxx2tL90l0iddLNfQOaCBL2uTIHsEzqus7R5QqeKaVMR7QC9zQQIDlOV1NgEwz6ahnuJp4jiUhwo2a6BPxJ1SxjW3U+mQcXdHWh+kVYTU6MOuGHwJEe0O0wlQnTwisKbuypnU91d30ss+c/IsEqd2MV+qghVp+eKgDFEDwjxZxEAx3AZ0OFnfdUV+K5Q5c4eDEfxe+/Nth3vhExd+zR68ODMrzs/wEQigFeAjFmt4kmVDCvoMkoM+R8a8ahGhW6gRsuyC+ohMnbPz+smK22MRp/ED8xSMT2SWjrNK3mbaDslRYNkkI0u0mTwu0mIpa3jJs+tDWZGBCbptHoM+wAe2W15rpMx2dw5+r6ENj8o5d93YMSCcWLFvZ2wB0lFpcp+cDkqeheeeq0cKAqi5dBFK1mgCuEs/Xw2DNrkQSFSK6iDzY9gRBihgexfCIoSLd6x3RSSyKGDVCUfQXE+h8aE83kEIhnEhQ9+qOQ+ezLBidmtV3WacfKqRi/PFSXIQqR0mK6Vd6rRUTGry/90vVO7fKNXSg5UW8ZOT2wXPJ4vUM7Ik1QCUsQQxerSzs95fDc0UFZAOPs1T2E52euw2smjNFZv8gzxhC+kLZ7kk6Os/sr/TWtcaG/IlAa3VINEjEDaCXt8NxbZypPJbFc392G9OaYjgHwnjzqd+LbCPjaTJPGTGdGh/ePOEbSiS3+l3jDkHx7o07Q7b2MqX+O9d7TGHr6eC5GyhyonChZ3UInq/iUC9eJrARVLOdqUajVKvdMocttUWUJe7kMSQmE5L13EiLIABuSQK0+pjU8d2gDOq3rtXsdOwJkTearEFRTHgy3K1MkNNxS3lwAXsrW0T/7Wd/cICagLPoNv85xUJOcUYJipC4Vk4niTaxLTDHibnM7DaGebM+aMDd2VWUgbD7mNIAJ37LW6mdi9hvk3FoQ4Ic5BCvj9Ta5qXrabw3kn817Arav0ptE1QAjajj9XCDGPFL4tlrKsSZZfGRVSJi1I2QOzMiFw0T80I=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx41b9fef0-1b62-e135-21e2-05b96a05d6f9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx41b9fef0-1b62-e135-21e2-05b96a05d6f9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>p9WAN3FX7L9upUKggMiPTqyfJTs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KboCmZEk/VDfA0/fJSZZxCz2tRI9P/0+q7wEnVDJTP4pWjXc46+C6LmqS/ZAmJHo0BOn0UhwELYlDNbaBKZlX+xXj1g0MGW8jgMOpPmSEvZU4yNpC/wekZAHNEWgHVoX4Q76gURfIkab9IQv7fj9BKRxXuYLZv+cZ+fNuo0a1Mw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>pLo5nCYwJRhDsDnL9uzOUYT4OfSYwOKDi+2EqZZpWzVDpcLDTA944btj1RiS4TPJfrNRVpKTq/9j/z4A7JdO6ZK+kNKi4TLZCDAZ3aGiG6VsI3j2cqC/HbnGdqmgxzz4DQFp09LXRa5hrk783hV50l3I7tMC9I5MkpmENXF4r3I=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx99936a4a-098b-03d7-8d79-3916c51a578e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx99936a4a-098b-03d7-8d79-3916c51a578e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wX08KURy5hHByoQpXeVgf7NW6/U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ze65ZQAzfdRDQnu/KtEG98hwKvfgNSZuMtsDF0eDCeJm/MiUDTEvY1rMQ88dd5MkT7HgvY6E+xZbkoWZKJ1u2d+T8fKtQzV4hzrGI7Chozmqt0QB4FU2V4uBs/RCNlDp6tRBgF1yxzV+QJjyPHK6j57++aQOOajT2+NDqx/8jPw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uCWtcvpNHF/dlSmNvGgovyyT/0B4tiVahdED3szveAu/fsy/b8BlDRpWygGgr5sjzH537aOv0UHzCS160Gt3Cl9U48i4c208d5cG7fKO3oTE5wyVLfExBjEuI8a7MrtT0/gQLFoH1CFkMEQnIHZJ8VlWjY9TIPeUXTvhoqH9jGI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>