See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe7e855bf-91f9-e018-cf10-aed9590076b4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe7e855bf-91f9-e018-cf10-aed9590076b4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Z5JBXF8aluVDL/8Ol+WRSCsOWgw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>gWl8uEYMQ945D9YbHbhHUBViSAYZBGe+GMl+hTgfz28Xf127IO1v/QItN8SFSrQ0T9+MEXMFcjeJ0s7PEgITDMwRg+Zd3yQ7MRpLcUHfSKRsnE6Z/+2/YK1+hoQscbT1qY5WMFxh7PaXRSS+4rY2SII56hSah0Cy0fFgzGSnD5Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx511e5bfb-33ee-40f0-fa02-462276722254" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx511e5bfb-33ee-40f0-fa02-462276722254"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>po7fCj32dnnSVRLC6HRg6vWZOcA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>PZ75gxzWnmGLkNZFf9acnn99tAQ4D/yX8rE0E3Qq+d7NUBoyBiQFsqCHupn2rGhy5DY6HEHqOwwm8pCGkYY0XHVeq9NT7AeecQ0FfKfpF18Ij6pKOF5VWHiDmUs9KEU6DZlY8g2ycq7xAgXtyNzX7N1/KhFaHITR8Z4WkCUbswU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4809c649-b7aa-0f26-6389-05676cf042d8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4809c649-b7aa-0f26-6389-05676cf042d8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zXQKcZqGdhg6X6dV23XWL6g7JbA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Vbd2va5+Ohx7NPhlAT1VegUg2LyexFjcR8whjmNM8OxUBl//Q6CeqIC8eLAdv3EcEhwe3G2bxScHo3tFLZxFDSXtVkif4qz9apslR6vuf7D8J6JxKRZWScg0rI+swZbE0JCWEYKJZCz/EisK97HbLFZXnWiXkpfPY6sqDCMWc5Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx96ad3aa3-6784-c7c3-276b-6ea9a4cca3ec" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx96ad3aa3-6784-c7c3-276b-6ea9a4cca3ec"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>J14i9mzJG/q176hbAimKj1AKQ/E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FzCcpm6BmLYjDjv0A5U5uHD9/uTo6D7t2sMwe03vUHoiIbGAuwS9egeLTr0AgcHlctYDOCtMugQ0M7Vx3NV2S8z2+25XayjVTTcS78BwsH5/jNUsFocXgdoaJFLxdPzuJ2CwpcnNofDspjGc4q6iuSwwEXpeU2ss/uapsFnaqHI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>EGOfKH/Ps1A1vjBUFROoPwyU9KbCsIIG1etAxXsBNu4Gz29EgVyaFHeSkFvxll6xMvqVnPLk/cyXSvy2cZeBdW2ZjXTuvPRpMrymxnOE139C5a6EcLUXUQRSLvoBkd1Bx3leQdMYHsz0XzsQU81h1niRDGXRmm1kGleN7KQ8eJY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>FjJT85zNSIZV0O0Fp3LquQHJEIfmD13hMq/U4qLrZGuGyA5RK7b6XKyxyGUM54y1PHk/KSgDmCb5m3depN8LY/TJFJtomprncKCRYW15CZsYkHcFCAOHitdN/Y5C2kMaXZw5MFtyiDOa7JYNopiCaaDl6UuvMa0i5dSrKwKo7V4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb57991ee-2c49-ce30-23b5-a3c9348a1155" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb57991ee-2c49-ce30-23b5-a3c9348a1155"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jzkj6fJtOhqHoiWFuFoLiSYzdsg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Zo+ITbGKV74qKi2vZtphKLmzC/GBZhcSAe1RbyX87IH/ZqtHrHuGugSertb7bm55HFtdMf8hOjijE1fJQ/O1F9P4Qj25wzNHoY5ApnCiiwZ0+HUi9JltswozSlsJTQK9gcICFfZOiZaCezgRMdYuS5QeopOH6x/K7CLTPQOEfp4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>EGOfKH/Ps1A1vjBUFROoPwyU9KbCsIIG1etAxXsBNu4Gz29EgVyaFHeSkFvxll6xMvqVnPLk/cyXSvy2cZeBdW2ZjXTuvPRpMrymxnOE139C5a6EcLUXUQRSLvoBkd1Bx3leQdMYHsz0XzsQU81h1niRDGXRmm1kGleN7KQ8eJY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>QOCA9yAad2+DH0wUZvdA6p2M5GV3My9+wyu/GZdzbDLuxSykJ/pdYBycfFXtEipaFp4mYGd4JdF7YbScYBbLCmB/bQNjSgiWzGGFpL2AXuhD/keCoERWagbi0ncMpTnv54z4Ep5wvBqAT+PpF1QlfFf4N2e3igKgJ1X1kffhd4hTpAZ5ZMX0oWy4XjnKS4oJlSg8wCArGLQe9TqaAme7hH43RV8cHtDZX6LwAlT1lRcp3GS/vkdT/wJ1ZoOYDbXKkx7bdfmN9ZaG93E9Rqyp+/irsX2KN2/+PNL2CsGIaNjMGR04x5gkoHIQZMT/1/YODe65YLtAJXhdUclQFHuXPcr2LJIlSPCcDEBatSTFBJ5gewAjePU43NYlm9zqM2bv/q4jG39JkJcpHIJZ4gLmeYu4GMad8L8OpYOxrBk33HCVWXRb1U9Y8L9e1o8UMHdm3atZNVHzsgPHZ44yfk57buFkviJUzYm0xL0uMKf0Z+XbchLZNpFllWDiGgrtALIHrSVYn8l9MUY7AZN/bTzW+m2ud4d6gZOn3Y+yXOljbtOGXbPJV6c6F6Gr4nGsEwKHE9wIsoSFamDHmy98dlsEsPsCnFJpPdzb2KbSq09PHODRbheLTnk1P+IksjglbthWTbWnKAzRuWgaWTGLw9y7Ssn1ieRU+3vr/bEPnV4qbOzixZCX3OOeQ5Mvbrucwa9261Uc5I1rOV64oKD/70EaEQy4hPfNdK6ENnUoxQ1STQZplLJRxVb33Xy/1NOZaC8okSt/gy+bvjj0HfV5tLSxwOTCVALpGsIlYYUk3JXB93Huiqt8oqeg3yfTFQWNLvmJ/iOYu8W6ZRXJ/rZgfY2vNss8XZ/Fp3PfDt8JT3XAmuZ08mURVWpSGs35xaa2NRCmz5RcObzNgOCHMyvtGny/ykaQRFXhGeaeoQ8RWQVvinsIGdloQophhvLF+PLRUAkpOlM53R/slAN2eDehbvQeAdNU1rLGp1Ky0dYapD3S3602qA5xD0tU4z5U52kamG2Vl4//eAaRMJDVvmJGx8QTDlhNPpvy4wkLvV31QfzMbn2mnWp/PnxmDsV+7FIbrpJPS3FJPsKdJE8IRmf4lnFd9ye8FMxrTAUyy94N1duLnNa9G11kGU9LXijjmOC8wZabAZfi9CYQKJ1faIx82bf6VAoz53tRapKyWAr/5B6NV0rrioVVaIvXMceaZIg3eRyBTHgk8G/leYgMxFnRMfeaauZ5FJjF8DED17JH5o40BvRxx1OTatZp4gWmzJMx2opT6zJl6c3HLbAendGrcCDzkuchCjfjeLIQaElse2wh17/S3UqLqaNguY9mkw4ADMuRF6Fq3bnt5X53mRqbT0cYXQrWE1+IgGOinTsVQHy0eHbhX7GinalHj3+Fbb77IggC40BOiOfA5I3iQqIID7Trm3jq0qvGhzkjUPMrZmwl0l4oCxOWN9vXo5PjIYwPguPJCVcNyyoJ+/7SRz9pEfth+ImDTD1UI+V9my/yh/Xh4UyTRWv6/UHX7N5s4+s4b6pgJT/JERnc5kT1jNx+hIqbegz28XfF+vrcs7cxdS99mg5kfZz7Da0llWZ3ZkkaukVJexIOPugvdiETY2HLtuLHNQEmfGJ+o+z3RH22VYYagp6JwDpwWpF0pQtxNfq13+Ti/60awphHdN6zXLW7V1FfDACqQGSUIOwX2nXt3QWKJ2NzSZrrIdUbzH/v0EXnFlZZiAvNh4QCZFHh6wsV/PwwyPA+Na4HK/IvP3gNyDPgFO6aUc+E74ZV3YCP7QDFpfvmJD/TK7Onk53P5kuET3+M+c7LU2WlewGnlHB/3UaP+AHyAqXvRKCBQgt+YD5ZPVTOTPp/0bgGw759sIvCptqkDXfVs0dJYiOOAW5hqxU9ckyU16URhmkkgqUY7p3sj7hy21yooveUeNBpWdvI902AiDywWxCC0NSCsv7sFHiNqSAYESkuead1GbxT88Kpt8D57bfT+Pf4mbwlfbidw07KJ6MzBBsqhD9y6z9QKLZafEWyZU1rpkqOw8luSnxRYGGV5Ar4jIVlQYXQoWTkl+i0Oob5oz+rV3ch7wD30c03ByhzGqdfe6F91rmvnSnoa34rOGo+j0oh0ZPGUZZROI6MwotlN8UELxtHRih3EwumgxcYDfVu8Ow6toQZq2hdxmEoEpmIEAcxVxCJbkyD9vyiOcMleNPPgye8wewiRk2fNMcuOE2H6EpzA3pGwUBSauQeVjamItUpI/7w952nKsEzz+uD252LL+m7lxhrdQbbQd6mPYmOANO29Csz6KE7E93RQIA1/sZdSN7QnR+lKiHcNA8H7M48/PMUrPeMAj/8W53W+Zxx2vPCrnDfhpd0L858TtVIuUQfftGZjOAcyYMfPTsOq9E1ox74RJc1T6Unnv9AGvnc95UUPaa8wGgdAVgqIUu+zTFecDJCrnpUM3IU1TIGwB2qEibiD40x78pJSmi+dlyYOharjTc2jnlglxNXJB2RxcxdSOIPBduoYnf2B8ibOexRchXzT11Q1FTZFz0NguyHwVZNjdHIB4WltffsDzQ+SpIQdZQCaAuyr4eRAv8DrvXi97IBSK25QZ4WjiTT9jLf93j2NHeZK5x8guqoCiIVZMtCyapmH5RVEPoadnhkZ1q82vNzjmJqhcz06vM+2OnLM6u43O6T2MqM8n5rcZjQJ7Z6W6CyGJ18In4nxcrN3owu1iLL+YlFb5RBT2jl0g6MmNYhTDzNxtlhwlaiRNw+V9KlVs6yJ4J1fuv9GDmrP4U4zil4eSI5HarxwBDh1LBVJF7ELANyvl3tVfVjYLk07rnabJ+E0qX9CjOfJ1w61Jx+rk/yPJc1+u/qLeYbCCFi1Z4iSUXAbQpdLnX0wDys4Xc83RTn4IOEtxApO2+V5ssIBzJdR3X2/I7YBYM=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx52810d5c-6e4c-8a04-4436-593f346c4cf7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx52810d5c-6e4c-8a04-4436-593f346c4cf7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Uc9BJSnZU6Vp8CjqgdOdz0jY828=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ksitDl++bvdXQD+YDfhrR8d7SByI+HoVLAxt/y/D1A5KyXvOhPkXGNYn/tj4rbHd9q+gSppiCDCvYaiNjr1yEfBXRzAATl7DrqlFDI7dKfJlSBhHBgvD9VqQNuMLEpcrCLobOLnIWeBfepdlpHjh4H8fFoo26vijt9dVIdH6rxY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>FjJT85zNSIZV0O0Fp3LquQHJEIfmD13hMq/U4qLrZGuGyA5RK7b6XKyxyGUM54y1PHk/KSgDmCb5m3depN8LY/TJFJtomprncKCRYW15CZsYkHcFCAOHitdN/Y5C2kMaXZw5MFtyiDOa7JYNopiCaaDl6UuvMa0i5dSrKwKo7V4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>