See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx3d1b75bd-e0ba-b1c9-2655-1ee1c9f34296" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3d1b75bd-e0ba-b1c9-2655-1ee1c9f34296"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>f/tNnU3koZSDRlWO57rTylML/So=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Jd5UaQNdds5Tzi5ke9ReeQLgrICGz1qsZBI5lZzIsA1IuxoFkZ7ezuc5CVKTDxSbCjoVSWu2hkWqgYjE9EyxD3kXJr3Ix785Ewk+1A0E16ZSX3DiemYQKBO/olo61kI7aJbpxmFYNFfCDArdm3iKJO+ZQzOLEJ9pkAvannqwbSc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc156f677-777c-8a15-f747-0c0073f15689" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc156f677-777c-8a15-f747-0c0073f15689"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0G0JSBmzOAN27OI+ph7LB3jWqZs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>aIcrOldRpKOJ5ubZ0HuFrrr4I4wnTP9Z925C0LlXR8HyCNelN4vTxrHb/GtSff/Mu6+c5JYET0oyrrobFlzBG64eso4ctE+iCaVVkDeAxFhRUMKj2wjHN3a8WhD9ywYA516Owkxl2hc9SyDikQYm8o51XyAVyID0cjmHHAORAeE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxad52eda2-1226-e2ca-4f56-f497d45ce1a0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxad52eda2-1226-e2ca-4f56-f497d45ce1a0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>mna+lgJru8oBEgXQHpp4WyTKqhI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TOSOg4B+mBbnhw8KErVe1HQULzznEDqqbTbKzrK7fPJ3XZ369GVvlFQwyZbjiDq3Praw0BXXeEPedu7IzQUOuGxXsRi3z3rfRQhaQsfGOEgan5jNfrzbAh47z7y1oldqDKqp0SxyS/RlTrdNntlj7dKnRLL2NXvRpp7xDz+0JCg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf39394e2-d01f-d151-95f1-1bfc07c868c2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf39394e2-d01f-d151-95f1-1bfc07c868c2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ntGpieej12C7lrwYf+YhqHqlCyc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>L+yZ9GElZO8n6YftNi4aUFMohCQBSwhfSzVWf6siV2xHsCV5KZBaMDyugiGb6RY5LLhMWD5l4EE14BjMkSbh3nwT/9IUm3A/pW/ZAO/UGewsYe+m7b/JDHxWmjDHBDEiJnTrpAmSGdJw68RL1ALpDnF2gf4vGc4vqsCYUswP+hA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>2TmMJBzc+Tg5LFQf3sxFjLcsOZlVrwWyocvT4ZSnyVZzSaqwORGA8KwYJMkmr86nJRTAkd/01yujgQRuEQk5GCkb12WmaIrGNGyMVNzW0aszd21lCYu+JCFtTh74oKmYYYSDQnoBobQyvZKNfGezO/Cynje482ANpqGytQ9a+uY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>CvTHijEhv7dYgRxZ2UlPr+CbrhasAad2zJXPIsqvNc2u/oai3CS8ZGhJgfLDtXGGL+oK9gt2X/l0r1AtD/QrUOw709XiFcqmalMtivWLD0GP4ewUWJ8WBM0GGFVBqae0iFMKq8eykwu1dOWi1jhwag5EA7efNuM6aqXRPeTFoFrS5GgBKMqS2K7ogzQJ3MKfxfDpJq+62cUDgMYInn7DjW01Llcz8Q2SW+RYK7m0uV3u+rvt5RVlCAwYA4hH4FrWnTUNAQN/LWqMpWcRN+jmLtYx3t31CS0udth/utCWpZ8sTeNGsAiVORU0D7VwyNNsBHiHN1pCyDiNZoPpyPCnOsOLj+kCdXjTWEDfa/CiapfhvR2a9x4pdijs27jWpDxF+QxPmt+dIALR54AaOAknojmWGKGLqohhZwgCRkHIJI/WYY5rkWSiHznFg3uyKpRkRQ7L/ER/QbJm2ROtE6fkNa5wa25E70a6kfM5TpRDTUzcEYwcncAPI1efByFj7Ed3cxD43w7Q6N0oRWMLBYlVRlgwTVsUqRZX4yrgCL0S47IzlaxzusjMrV9zfmOJWnzWhEb9Uq5W5CEMeiif6PfzB88aG5Ze+aDBtn9ZEmzWfWgVwsJ/b0TryzxeiNdYURdxGlKGknQ9z1khbNMBQSeamNnzu2yHpSP0BRLBP3YxtaRvbM1I+rMsA4zZ/BxG65caDZDlCzpeI5oF8d5rSHSN7JER4YcBlKTdDHd51uSBoxZY63bLjFCQ2A69oLu7n7sRCHQOJ4ZAZKsuF17wh0MD05yIvkPgcvXhf39zlvaFoupQwJR/jfQ+gIJVhSqxtW7k1SbG3zI8HEmzp7nGE2mn68+gQMHyG61YMRqDD/GeeyG/0Zrg2Z9biDx+jY1V82Kxe50AQ/HVz2n1AQDCdTPqf/j27+A9Er9adba6H2xyWD3kMXiBM/dqxHZe4mkwx548Qm33ZgKsUjKGvETGRkDikm2xIjkVSRWnPaoG5eY51Yh292PxgZLut7LjVok+6NU9z05OdkfBo4m7eFuKXQArqbkEGG0JoVmIGj7hT/33imh0ud2kvqn69wjHVTnEBofYgTSBLgJXKOtCvqSm41RDA3DFZ5ruGfhF41qAPAb4EmkTREaOQ4qGyfzjaTkAqx39W/nqQ2VpsQt/PtAdOB/SBopAKpm/Rz+THmn2pfinUP/9dFLxS4Wmrng6UhXiKrnVHN59rG9IgQkABNWlLPI8V39oFh3lKs1kIj97swJIkjUGCYjpB9TRVuMGl9BZTJXxCmUdacbtNBTFTSPleNjvAhfvc8RPO0ReViKWjnBT0NLcTXsA60Hg0+4UbKF97YzKYbxaFNI4mvN9t4BvW9dZMJfPzUinZWvcrwOlH9rguookJfsaZRAdvGO01QPYBkTm4M21hg6ojDNqhvM/puNU2AbJtgoV4BZtoJD50jTatnH431wzPjJn5M0N1nUXo+inIw9ostsibM2fNDy+X3Qvf2WtKl9t6iXLn9I/RRvkiMLgXk2SBvWH0KvB7/gHhXHwurTy+xZ7/bgWQwmj0iiI4BLX/OXv4A4Lbso9486J1lXtSABQAnf8UxhbEPV96uJBhQ0/booLfMeiy5fQynlB0xynlp0EsYmk6nSTrXT2jPlIEw6CnPAMBSdrHqi1PDp8EDwOcc6Iqsp5S8yq5bbbMbOOTll+rt40CSKOCrz4BYtDB+bTCtQrY8HS1CN2YCzZs97FvXD1IZAcoWrmfWt64dKX8uckwF5pz56tWprTyDePvFgxdMVIdL3itA3iedh0xgW36ehS97ueC6d6x+2MiT99KsF6512m0IvirvXgPAdHPjXlFeCtGduBh39cJYq9Fdxw6oJI3IlqOxraY6LIL8i461ik4AKab0oKY8gYDoQFDoCfYr7wljvpEBAclVLgodwa60X280U7VPXsur7c5FDnWiURhYROZBmlTsiQlZd9/oIyuv31Qm98hyxdrdCElznmMwPI20d5TDSlC1UAgCuF0omrcGEKa5QVHi+dg1yO/OnJLSdjTiZthElIn/sXdBwunh6D4Ut7cCOUGPMEgoePs1CJ2TVSEunm8EXATulhLk3Vfr9JnPc1Q5YpwEXh9KtW7jjCMYIgQpaBhy795NX/0+haUco6VOtbNAxqSmWn7AMsL6X0LTIg3YZd9jHhvof52Yf6kAhAVDabWTtjKieB0wX05D/dDtglYnwcSMInk9iDtviQqfst4V3wwyRkUkuymuWl8pu/IIeYbCNDp09LBMMrts1lrIgxANqyJt+1xAsllKmqe8Mf3ZcqxmQklK2viyKjg2Z0C2hRq9mqHF2g7oFaLAGcLZ+ZGCJD8nclBfsHsV3GREVzHMegC5JpeJUdp9x+JOYLvj4tBF1nWxiGlDznEmU2XVlDxerB4dW0j96tdUPkyRuF7Iy5qfzDSHgabLj8/mvpgr6xCLzG5ETWbEGFWBuWk/CJBcJOlVDgW+z5qEwEdopxHRf49Gn7D/nMfMT1HreiKS3oOjmKbBAHckv/ORtNIJTm7i9YZij0DjI6fpTY4hI7Gde642nONprMRN9Hwe32MgerKLbb305f049CydUPz2jjS4I5KAtU6NtfLdtGdZR78NGqZV78uOfieXzImfRTKRrndWkza0NcqBad/GKKVM9JQnDx1jvmOxud+DCShUflRqLfrI0VidaKwqqesyZnY3JzTdxtZxZIyrCySOdd40AAKsjY06d3tkfWm2/6t0FWECrS9vVR/2PnxzSs/Si8mQfnHE3OnAI1060se7dZ/mdgd+c8Vi15DBXJZChvWXX+MlPLBxa9ysH+O2XghEcGzsovi54kFvyHrG/N9D71gRxItAR6vlHd+6T5IDBSFacxtX1DgSycWLP5GQcpUTn7/xVHyv75Lu8glWC+t0Kco7LJ/0+7PTk=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>cde8+LvAf8afRYTn4FIa9PERzExs0BJYnbryhEY48uS1dYVFglG15X7ydj2k+lo/D8RqOS9jMShRUIggAN/Jnt69JOYzvLtpJrEUEGZcbMNqgUyn07SAF2a3fJ/wXj64CDgnIaYETXREtfFsF1n7+xbSwOL5lhHE28Ggu6rDpgU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx84e971a5-773c-a800-3fbe-ee170b800c78" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx84e971a5-773c-a800-3fbe-ee170b800c78"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Q89nAZRFXJ2PUFYPymujOEywbmM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tBNY6Xk2Ab6w9Sd2o/M0AOrvna8qv1GciBsoFGpZCeY8TRYOIJhR6uJqrtcObPDRT3xPno3mC5KRr5Rnl/5vuOy0O308KM0XHZdcApRs5j0scW4XpBxVhtsJW5k/MOGs5AH5m7iK88eybQ24NOGLS59Jj3IFsE1L7M6JxW10ijQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>2TmMJBzc+Tg5LFQf3sxFjLcsOZlVrwWyocvT4ZSnyVZzSaqwORGA8KwYJMkmr86nJRTAkd/01yujgQRuEQk5GCkb12WmaIrGNGyMVNzW0aszd21lCYu+JCFtTh74oKmYYYSDQnoBobQyvZKNfGezO/Cynje482ANpqGytQ9a+uY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>CvTHijEhv7dYgRxZ2UlPr+CbrhasAad2zJXPIsqvNc2u/oai3CS8ZGhJgfLDtXGGL+oK9gt2X/l0r1AtD/QrUOw709XiFcqmalMtivWLD0GP4ewUWJ8WBM0GGFVBqae0iFMKq8eykwu1dOWi1jhwag5EA7efNuM6aqXRPeTFoFrS5GgBKMqS2K7ogzQJ3MKfxfDpJq+62cUDgMYInn7DjW01Llcz8Q2SW+RYK7m0uV3u+rvt5RVlCAwYA4hH4FrWnTUNAQN/LWqMpWcRN+jmLtYx3t31CS0udth/utCWpZ8sTeNGsAiVORU0D7VwyNNsBHiHN1pCyDiNZoPpyPCnOsOLj+kCdXjTWEDfa/CiapfhvR2a9x4pdijs27jWpDxF+QxPmt+dIALR54AaOAknojmWGKGLqohhZwgCRkHIJI/WYY5rkWSiHznFg3uyKpRkRQ7L/ER/QbJm2ROtE6fkNa5wa25E70a6kfM5TpRDTUzcEYwcncAPI1efByFj7Ed3cxD43w7Q6N0oRWMLBYlVRlgwTVsUqRZX4yrgCL0S47IzlaxzusjMrV9zfmOJWnzWhEb9Uq5W5CEMeiif6PfzB88aG5Ze+aDBtn9ZEmzWfWgVwsJ/b0TryzxeiNdYURdxGlKGknQ9z1khbNMBQSeamNnzu2yHpSP0BRLBP3YxtaRvbM1I+rMsA4zZ/BxG65caDZDlCzpeI5oF8d5rSHSN7JER4YcBlKTdDHd51uSBoxZY63bLjFCQ2A69oLu7n7sRCHQOJ4ZAZKsuF17wh0MD05yIvkPgcvXhf39zlvaFoupQwJR/jfQ+gIJVhSqxtW7k1SbG3zI8HEmzp7nGE2mn68+gQMHyG61YMRqDD/GeeyG/0Zrg2Z9biDx+jY1V82Kxe50AQ/HVz2n1AQDCdTPqf/j27+A9Er9adba6H2xyWD3kMXiBM/dqxHZe4mkwx548Qm33ZgKsUjKGvETGRkDikm2xIjkVSRWnPaoG5eY51Yh292PxgZLut7LjVok+6NU9z05OdkfBo4m7eFuKXQArqbkEGG0JoVmIGj7hT/33imh0ud2kvqn69wjHVTnEBofYgTSBLgJXKOtCvqSm41RDA3DFZ5ruGfhF41qAPAb4EmkTREaOQ4qGyfzjaTkAqx39W/nqQ2VpsQt/PtAdOB/SBopAKpm/Rz+THmn2pfinUP/9dFLxS4Wmrng6UhXiKrnVHN59rG9IgQkABNWlLPI8V39oFh3lKs1kIj97swJIkjUGCYjpB9TRVuMGl9BZTJXxCmUdacbtNBTFTSPleNjvAhfvc8RPO0ReViKWjnBT0NLcTXsA60Hg0+4UbKF97YzKYbxaFNI4mvN9t4BvW9dZMJfPzUinZWvcrwOlH9rguookJfsaZRAdvGO01QPYBkTm4M21hg6ojDNqhvM/puNU2AbJtgoV4BZtoJD50jTatnH431wzPjJn5M0N1nUXo+inIw9ostsibM2fNDy+X3Qvf2WtKl9t6iXLn9I/RRvkiMLgXk2SBvWH0KvB7/gHhXHwurTy+xZ7/bgWQwmj0iiI4BLX/OXv4A4Lbso9486J1lXtSABQAnf8UxhbEPV96uJBhQ0/booLfMeiy5fQynlB0xynlp0EsYmk6nSTrXT2jPlIEw6CnPAMBSdrHqi1PDp8EDwOcc6Iqsp5S8yq5bbbMbOOTll+rt40CSKOCrz4BYtDB+bTCtQrY8HS1CN2YCzZs97FvXD1IZAcoWrmfWt64dKX8uckwF5pz56tWprTyDePvFgxdMVIdL3itA3iedh0xgW36ehS97ueC6d6x+2MiT99KsF6512m0IvirvXgPAdHPjXlFeCtGduBh39cJYq9Fdxw6oJI3IlqOxraY6LIL8i461ik4AKab0oKY8gYDoQFDoCfYr7wljvpEBAclVLgodwa60X280U7VPXsur7c5FDnWiURhYROZBmlTsiQlZd9/oIyuv31Qm98hyxdrdCElznmMwPI20d5TDSlC1UAgCuF0omrcGEKa5QVHi+dg1yO/OnJLSdjTiZthElIn/sXdBwunh6D4Ut7cCOUGPMEgoePs1CJ2TVSEunm8EXATulhLk3Vfr9JnPc1Q5YpwEXh9KtW7jjCMYIgQpaBhy795NX/0+haUco6VOtbNAxqSmWn7AMsL6X0LTIg3YZd9jHhvof52Yf6kAhAVDabWTtjKieB0wX05D/dDtglYnwcSMInk9iDtviQqfst4V3wwyRkUkuymuWl8pu/IIeYbCNDp09LBMMrts1lrIgxANqyJt+1xAsllKmqe8Mf3ZcqxmQklK2viyKjg2Z0C2hRq9mqHF2g7oFaLAGcLZ+ZGCJD8nclBfsHsV3GREVzHMegC5JpeJUdp9x+JOYLvj4tBF1nWxiGlDznEmU2XVlDxerB4dW0j96tdUPkyRuF7Iy5qfzDSHgabLj8/mvpgr6xCLzG5ETWbEGFWBuWk/CJBcJOlVDgW+z5qEwEdopxHRf49Gn7D/nMfMT1HreiKS3oOjmKbBAHckv/ORtNIJTm7i9YZij0DjI6fpTY4hI7Gde642nONprMRN9Hwe32MgerKLbb305f049CydUPz2jjS4I5KAtU6NtfLdtGdZR78NGqZV78uOfieXzImfRTKRrndWkza0NcqBad/GKKVM9JQnDx1jvmOxud+DCShUflRqLfrI0VidaKwqqesyZnY3JzTdxtZxZIyrCySOdd40AAKsjY06d3tkfWm2/6t0FWECrS9vVR/2PnxzSs/Si8mQfnHE3OnAI1060se7dZ/mdgd+c8Vi15DBXJZChvWXX+MlPLBxa9ysH+O2XghEcGzsovi54kFvyHrG/N9D71gRxItAR6vlHd+6T5IDBSFacxtX1DgSycWLP5GQcpUTn7/xVHyv75Lu8glWC+t0Kco7LJ/0+7PTk=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd3f61e97-1b1f-ac6a-95e5-ac63dc7be256" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd3f61e97-1b1f-ac6a-95e5-ac63dc7be256"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Jh7PqScnp9HCUBNQBs8CAlvaqG8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TwRZoSSEZDWYBu5TQsNjijmVm1OD65w5+FlqhBxKI+QLvKRnWNA7VPlpWBq5gayj7EaZHcgLb1mObKDo7Qn9hHVVuIgJ+7lFwsFCUK6v/C5b0a5QT+ZeXg88UYTgA9eL7ifnwVEXHbQKlwPmXl3pBfmWe5bPjKreGcA7/ZL/LlQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>cde8+LvAf8afRYTn4FIa9PERzExs0BJYnbryhEY48uS1dYVFglG15X7ydj2k+lo/D8RqOS9jMShRUIggAN/Jnt69JOYzvLtpJrEUEGZcbMNqgUyn07SAF2a3fJ/wXj64CDgnIaYETXREtfFsF1n7+xbSwOL5lhHE28Ggu6rDpgU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>