Home >
SAML >
Examples >
Response

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

An unsigned SAML Response with an unsigned Assertion
An unsigned SAML Response with a signed Assertion
A signed SAML Response with an unsigned Assertion
A signed SAML Response with a signed Assertion
An unsigned SAML Response with an encrypted Assertion
An unsigned SAML Response with an encrypted signed Assertion
A signed SAML Response with an encrypted Assertion
A signed SAML Response with an encrypted signed Assertion

SAML Response

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx5d0aa5b6-11ac-2044-645f-9319be90b8be" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5d0aa5b6-11ac-2044-645f-9319be90b8be"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>isiiGpYQOItiSHzfcXx4xYAjMI0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GQO1PnF3hvnf3WewFAW1rKmYFQTUSRgyNZTcdXI4DVJasrg9WIDsfIx4pPOueeQB0XE2xDnnc7d5yEgaAYMX0CUnTbzJ9VjLfAfW6Eh8wcw1D1cpDbVYyJ2t/VfMWe0bXpKcpBe26ZqSk/2HtCUQWs3/Mhn9t5RDb9ePdEqTWg0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Message

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx08cbfe00-4eee-072a-312e-2ec8b819a397" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx08cbfe00-4eee-072a-312e-2ec8b819a397"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>m3SnJvGrFLQdGpogtsTWCHBH7mw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Lr+7pB5rXEC4PRMQf04xuLKhc+CGkspEyY47AP9Ug0jlp3KtmEo8P7mSlZsYZn9LAaxufqhlH8SUdudb0DIQtQFDJCuflqxoCwHgf+5v6SQBI6fo8+BrAlR6LW4cxrI7mRMWitu6b65nO006zCXzY3A7qTF/QeywCwiNs8YgcTU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Message & Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6edd9d57-6bda-5e3c-f9c0-6c0f295bf9f8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6edd9d57-6bda-5e3c-f9c0-6c0f295bf9f8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>pQiItyvs/yqfXgOphRCSYb6S5vs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GSvUpoferh8H1KQ5cfWjquPlH94Tfp8hWm/cD1PA/JVI9SmzT5yEs6JIlxOP5X24FD+bF1mERtcszXmbgqW6pVgWdNoLvRJjValQmhyEnlFPjyXSiIBcg/qabz/g4wyPxvfjuKff99PtGenHPd6XnazGNbqGbVVW069+BHGaZ3g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdbf81e30-8a57-d1ac-3ae4-1fe948c83d16" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdbf81e30-8a57-d1ac-3ae4-1fe948c83d16"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QsaWaqV+1O/gzSA1SDa3VTbdgWw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>M+RpkSr4ShH3ZZ7xzCRUVrTBoxQDx14kKjXNOWnjimLIDByuqRUC4zqvA8fEg0B2gE6Bg6TViQsa+pRvi/pDXTvnMwMtPYsym/rToja3A8vPYiYdNZaN+eOC8mTssVhChcq1bAHNzAAZYGNbpgCmOIVb23/L19iXAD/WG5AX8Uk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Encrypted Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>M20gI4ig8ZPnvGZwtxiQt/PVCfveXTQji+1OKhXN6QHDNHjDjDlwW04duOqvYqT+CDRtvIlygye/sv3OxGEGeKcuZujCdhnpmj7yWOMOTMlq2Bg2y357MIib1gfNPgrfvHLKDXKKQkBpE1xGGBwIogxx0F03j3gDBt7SgxiMiPE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed & Encrypted Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Z3CwmfBnhN8WSlg/i2BjpKAXuPmScmpCQsRCLjavBqEexKafbXNT1O2SYFVUZWhoeei89JFdQHkJ4qG6VD+U6/gg4PcON9EabPptREEQOwOmXnvjMa2XNKfbxCMD7WnE0kIwTQHkOv3n6ci9emgpazFDHlG1zfnYm7JBcVkq7So=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed Message & Encrypted Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx850e77de-fe1e-32ce-5408-33c1fe0315d5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx850e77de-fe1e-32ce-5408-33c1fe0315d5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>RrasoiW5dx/6TBhZbX3wJygL/ZI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KsJi4Mvqq7WZICigAOhetA+Hq3ryPe5FN99MxULMrJKBefEqDc+bmTEaKWUwxY4gaS8YVLoSYVgifSNNO3YyqQzP2bb6StSj7d504085Wswhc7TxjDdKor4sfX1l5EivU6ZLWQt9uYqrnt3sZAd9Of16UelIC/vX3LjqmfzCVcw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>M20gI4ig8ZPnvGZwtxiQt/PVCfveXTQji+1OKhXN6QHDNHjDjDlwW04duOqvYqT+CDRtvIlygye/sv3OxGEGeKcuZujCdhnpmj7yWOMOTMlq2Bg2y357MIib1gfNPgrfvHLKDXKKQkBpE1xGGBwIogxx0F03j3gDBt7SgxiMiPE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed Message, Signed & Encrypted Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe9bbf2c1-eca1-eae3-60dc-357fe8d1af27" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe9bbf2c1-eca1-eae3-60dc-357fe8d1af27"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1RgWYFa5lwlBg4h0QHtoFihiR8A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>LwLf2B3uPQMdqCkdy3+Pvuv9nAgt0ccbb8UebHfTmH3t1rX5d5VKlSC5iR5nbScoHn/t/mpszI9YNWOdj7PSdggT9ylDWVaeuD4vcH3PMXxooZaWonZ4xNwZCE1HnybchEDC0f7xOvRB23Wz2TyYVdome+jN9lw90YrbjXRl8OU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Z3CwmfBnhN8WSlg/i2BjpKAXuPmScmpCQsRCLjavBqEexKafbXNT1O2SYFVUZWhoeei89JFdQHkJ4qG6VD+U6/gg4PcON9EabPptREEQOwOmXnvjMa2XNKfbxCMD7WnE0kIwTQHkOv3n6ci9emgpazFDHlG1zfnYm7JBcVkq7So=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

Have a Question?

Found a problem or a bug? Submit a support ticket.

Looking for walkthroughs or how-to guides on OneLogin's user and admin features? Check out the documentation in our Knowledge Base.

Have a product idea or request? Share it with us in our Ideas Portal.