See saml Menu
  1. Home >
  2. SAML >
  3. Examples >
  4. Response

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdd64dde5-74b1-586a-e5d4-8f2c1c9a54b9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdd64dde5-74b1-586a-e5d4-8f2c1c9a54b9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>kdncKQyse7oSGnYkO/tmPbqGH9w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JA6/4vJZigFF5WUGuI0D68RtA00Bh3LqQ9E//Ybw7/wFylJZ0M79l8Lf2OqeiPYgEKuXcMbZED2hW8DX+vphTQmkR/XBEJiNPrL3npKhOKQmC1Eahc4tvfCHX3aSDaL1Qf4c7wDBmC2LbcowI7mZQIv8VN/DCuwxQFTK2k5oPwo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx22d13c0b-dc26-61bd-9727-0e5e17b17914" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx22d13c0b-dc26-61bd-9727-0e5e17b17914"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cG+QvqmglnaCBZm+VcKazSKWLg4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oTz8oBoz7vmAlQtZo9m6//Vu0BquM8romFvNrtBEdOXJQHAHSEyg45UlpVC/bBKm4lGOOVvz9F88upAOHC0SM34C4X/CilfkHgixN51TqxWTvBIJIIiub5wHfTtqvJ3w0gu7UEO9NMu8r1IOHr+rKPJicuRjhnd0hhlLKUTztp8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe06af06f-5b95-a575-c015-cf70eeb827a5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe06af06f-5b95-a575-c015-cf70eeb827a5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cJYnNBMExz7Ph/+ooSkuV2CC//I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ndxKUEGSNXbobrbrUklNIjwMWy4KNRPnphlgyizgsRWj2D0xkd1AJZVjSBLYBRea3yWZB9XUB4QUZtUAMIRSHkGarMSjPCf9+o4MdxrvCh1oNSfkMoIZyH+mOCEtpcFIMcMJJD11768L6NVMd0/dMdBG9W52B8oggNthZJsVjZU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxdcb2f179-f248-2da1-8b88-9731d2801d33" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxdcb2f179-f248-2da1-8b88-9731d2801d33"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tyzKY5A3hu3rc97/qq8wSAHZpmY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YN3vttl/GPa+Gwc4HBl7CqtodkCxj5gtUw8pzkkiRk4kIB2MiN6znk5grs1BjPdOnIxe/XzbdWfeDvBGUWKkLVls2YEMfi7h4RBi1jpHvZZUKkzaSTYjNY8IDIgblQmUdZi3mss6Db7N+wgmYm3NBqb/E+7H7INZn+0PTq4d9T4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>VTjv4CgKUnqeuV7hsnbbRztNs8GjpVPaG3X8qRz3brSohdVEoRjsmhOsKQ7UEBfrq96/ZQ7OTXf8WD8q1mKVmGlt0CVm+rIH86ETxJNP8nQArtupmcKZzl3FO+P/u9IigAYD7wT8hDNEYdjp0DMuf+ZtW7ZSVgAqmZRCaoxhpwA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WtG0gER4VvbuNhajqGroAz0hrEdwHHxESVCGZDjRfdycg7oB72kumgIDK2LY/YrYcWCcvnbaAj55S4tALI0f0fNW6PG/6gQovH8kl4rogKdeXY+uqWXDrx691pIHS/kyY9JV7dr8012e8G8v44JYo2ccmJLm9JsQc+k/CjvCWRc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfdc4f3b5-132c-0c48-3c53-339f83c48a02" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfdc4f3b5-132c-0c48-3c53-339f83c48a02"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Wuk3TAVBNoC9NnkX+DoOR/UWC/s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>fIDlZ9HMRbgqCWmIyDJEmAK5BrIGz/wOm6Vxjfa803S/ARXEmSH57eebwA/0+HRdcy0nywBymCBbVvQhgzEcaQGyxPnd5xggZ83Pb0GX1y16Wvhh/ktQ1QFE3COXp5v/KluOkpCOod31nwfk8IJLWufOsHzGx3klN3dm8I1kQIA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>VTjv4CgKUnqeuV7hsnbbRztNs8GjpVPaG3X8qRz3brSohdVEoRjsmhOsKQ7UEBfrq96/ZQ7OTXf8WD8q1mKVmGlt0CVm+rIH86ETxJNP8nQArtupmcKZzl3FO+P/u9IigAYD7wT8hDNEYdjp0DMuf+ZtW7ZSVgAqmZRCaoxhpwA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2ffb3b88-bacc-97d9-c717-ad29154db49d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2ffb3b88-bacc-97d9-c717-ad29154db49d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PsP3i7D/dK/Gat6VcV9dn4hhYBk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>awMpHhIKJhiSFMRRaZ9M3l/3tk/vx4RITMMesoRh/RNunXHSj+thonUP12yGWTFtXS1J1nF1mH8+LK5u/t0NsYKqbLTVp0Y0aTGZG52RkzAyKjWRPdl2Lp2p5YCJ3I54a/DowJ5S4MYSD0c0U6ZMHqDxvwxz8q++QlbUoFMHaMk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WtG0gER4VvbuNhajqGroAz0hrEdwHHxESVCGZDjRfdycg7oB72kumgIDK2LY/YrYcWCcvnbaAj55S4tALI0f0fNW6PG/6gQovH8kl4rogKdeXY+uqWXDrx691pIHS/kyY9JV7dr8012e8G8v44JYo2ccmJLm9JsQc+k/CjvCWRc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>EYjIpRRV5iBWuASfqZUEbQkq8AamBtGQxLyGuY8ywzsajaluZfvj6iAqXkeSCuS1khvkS+dnyNzIHp94Fi2461Eo1nFuDrZ1iWj+ZmA9xgC6Jpc8ecbyd7B0QPNgMJUkTycX9rdJ2b9uoCihFEYG8qSAn5hLNtf15KYM14n9FD+T1Z3+BK2CIRlCEHFr72nNXbvgtzx4JMezhAzMMYMJ7PRJgYwyuCsU8HuknDlYfZ/Ym1GygkOWNgg2FgAxJoKyPMXCFyanBRgw0//4IMLGZw1mLOtIvaqTEvlcNIJlWJLpKTRB6jfRKUE/CVhRKZYQ1PCrrvQ7C/SwKl2uslbMvWjU+DblUmV/CBeQiBdnwpti3zaVYMT8oIY9Ggp0wAq7+UPud+n81E9fbzkY/6huZnpyVRix2KDJPssMdtsMLv//9H4hOwyy1NwDdGnvIY9VaRMx+8H9WH4cUeELsXukPy7nj8ssDGxxpqMp7WekmEqb2XP9kphD9EQvEeuHtHAod5amq9xfCR4NxZqC3o4dxmP2uKGLELX7Ap6o9QP5saKk59Civ1g1cS0RHVfKC/yp40gQWb71vrKjpzQaN8PHxI+eWCukisS5yq5sebaavWDkKTlYgcayrsw1uGH9ILrMLVUwK1LrEwUHZjBs+JkEdtq6j8yEdsNkXa/pmF55z7Ei69X8qg/GtAbc0++qFantj9zJQ2BiI7FA0jUtzqyHwW1wmB7wE/dhNiutbLAInqRqpEmN6CKItnoBLGQLPliUUbrdV3/E6EaNIksOLvy8Wk1nl98LtBv1Pf4FISXSIrIP0kwr9E6pgJKMzQE2euz3broSFpthqFX8XPgr0gWA3W06wkLUxILfi9xYlgoYho4bY8JUZqpMUkzpX2RmwNJpzmQpceIkZsbd7oOPDfoYFzknHGVep8Xt39lS1Bff4FHR4PiQ7pABoB1Gw6PPHRtBkBZr+yZLfOzx0goU8WUoFJsyRvWMrkiR5RHy0a+NqeWIAv/noSoslBjYQntCQMuq5ds0CgxVfSo1exgqe8qYyVsbDlVYw1tdJrHpSNfRyzccX7MbknkDcE4OLqjSXGmF4bKhqsSefEebKKvJftMhccW8nLjEKeKclQBQkC3F49uGQR/MoOqQzn81uwgHf8Pwaf704u0ia4bS7EHKbdj1YeM8Sun5fJEsmDhRpbREmbV4s+0pjWSbM0lmQY1edP3RjoqkguxOVs4nf/SgYnHSABlc3+4oWTlswo7MI3izl0cqpuX552GwqAeRYlPaxg7lgvhLvQMDjmRWApWxX5HfPmo/nP4Caet+wPoeYL7FHZNea/Nt/c+/zxJQ4LEVtkiQfZY0TPcTuuxSiX+uwgAYzhoxRY/H7nKg7A7ncs0aVWGwGFeW3OSZyx4mdaGxpkDMrstLSoxn2+eB1YsnZmFY++vCi664dCYhbN31YpQYxZd4wsXu4RTOQ3WpX6G5foCoo/26adEPJAoCUtkOsOGUMj/n1Wih5JfbxU/LzQQ3wLgxeGq1xBCJIz9/wle8IuOTZfG8E+6/XAi8738Mno1VjM9Qqqv8LRr1S0cPwk7zy68Bsq1tHp4oym14E7fD0ezbKgibViuWUpZrFNOYaWEJr3Rcz/w3B+VI7cuuxOsdezHGyqzD+pK069eHSDY+Tq3YzWkv/mvvtjniEW2E1ZEoIr7ue0PCvynSHBWbbpFnmHr38S38VjkQiqV2dv+c3JElJrXOfvLQf1cKY+YnWpkMRb71HLtMgajMVLo5NO1XdxbHj9vIY6Af9GipZIB7fJTv6aFZwT5SCPHIsavmOToR+p084pnNCDXSpWp7C/TnwjBfHdsvdGoB5kPDIZmZ1Wz/ZxtS+oHG60SBRE9Ul/ytKv0LzDTOPbBVWe5fzHcN0ala65J77AFw+9V/9ZHiw3nMmhxBj9dPDLlpXCZ7rinlK2JVvkNZD/KTGuucgne2vRHxEuWO7jP/I25O+YLE4tx+G36kWy5d7y/WciaPpGsFWSEZo7wP1RWl74zwzxD1rLvJogc29NEJfpxwRvoOMJPFUM4PsN5I9KfvwqGmt4uxqAR+atd8Fkm5qVw+dI/NTgWZFMsAsugwo/iFhBG53REwu2tXM1h4pLyCRFAYi0kHAUkXcggm634f6v09ocrn+aW8lLIvp161djWDyQMqFm5DPfach42JN0kK2TYFUp9DAbGKg2hs7fbaCmOcZSHH7NEitGl7TY6mEcYRs9TnuWD+ELqmAkwA/vGW4zo5GGMks7t77sj8ik3TeVbSjYWKAojQam8Jp+GS24P9MSyfZaQki8EdY+iKr7gNtSSW1sfjAcXNprQQpQ1A9+fLCxEbcsJmpjrUhpJKuLAFTVIgU5IGzQlffkKIPuyjYYnxEDAFS/kv0qDS6GdgosWjQXuUg1Gi11ozDtyJ6QB5G9hN8GXAI0vDamr7LraL0uSyB65U3iDQsVtzpfNf37m3bA4FtzcW9nRoEuM8IA9eO5Nazf4KzioYDQ+slRiLPCSinVgkZL5mvglh0H1q5l722X3+NVvz/0BcgX6XCAW28wB4KFfTY85bpLbe8bp5gfQ18n0EDLln0EwKbr89w8fHgLFpUvmAgt8wIs3qgVdmYYmV0nhujYf6/eXxpdR7zQWI6lLdoTaGp8wpikcF9LH2AtOk2vQXo2FSoFYFfTyIH+QMdseRAe/QIkqB4bIvmc4KF4o+woLkKnhkMHG+FdHz4JNd76FM8oAxkTjU9jynJ1WE0jVjrgHcPXEEMzTunFKj/R+CjR69uUjp8pxmlBym6swxoWfAxKeF6wMU0hNszqnQ+DnXdq7lRX7xE2/lD3ZvroMaBbIce0U0xo3mhBlr3cr/dPxRGCS2Vx//F8eqy9eow7ns21AcpbLJ1jXa9qHMS+WuSwn/orP6vRDOavtg175UJUXg5jjn6214s7guf869o+u7SveKHTTDCkweMg6rL0y1idhIG8j7P5uB3EPjHUpkib0zfnFr7lUiVhVQP2Z4bLi2QdZ+ifBfjXaw9wjvTlrpZiDctUE6E0rraWAiokieSW3B+8cqfDGl0N7v1OKgHW5A3Pc82sJNm9nvrlHGP3C6sQZLu8vA6EtTT2RVctzUzKO/kLJARyBmzGncRq+Ls/skbb9jAfTdY4N2uurIp/R1HiBejjocyC182XpSi4NKh+3B6vEaYi55guiQ5GkSA7LNqLmqQIVKAd7efF1e7tPo0HcdxoTkDROFQSj4UaUKGSxYFGscaMgogqU6rKJYSHKQtW71JwTpGVtu7ZymUtlj0oA21qQi/R2aPZrDg/xV0wilItT3EgYZSb7LjZ0tuNKgSjk5SvUMggmiyTKGr42Co8B9JN8Znfe7F5hpqf3E+B6afT67DsQfXf/LzB4lznJShBRfcA3L1F/oViF9/52JPwqz0VHA6LdMPcXEwZJzp3YUsIkaAEokFX94kHSNc+JEXQFwXEXAuyR1uVwnH1A2y0SiuiKC3RXfvq7eLiXzzAlcp74NM/PPUZvzaCGvu0yUyVOc0GJ9IEWaUAmrgwt8VMmv9j3577hDyg9Zb6pM2ZyXQtHC/B/6dy71JoxYPMdqoQcpd0CMwef9y1iwyUt613xTaCObNEracrsU18HAYBIvlwYUw3AbkpvqIdKwRgNW/+ElSZusXdAIGo+QZsp6yToUFpjXHH1euAfeIAvQFaH2PGy7cpFHbPX4Az1dK7ZnBMJ7DtYb7cOG21xte7YsjP2XuI2SZRA61HFTsQBDE8ejrByGfr8mtr4INZIbblwZHlPixwB1aWWtoXiTHh9LAqlGOt3GIHL1LUQ7w5ItRWtoG4uBb0H2XT0FEgn6TpALYkhyZPTuuPtGLZMY3JKFM4q/wfI4xSXqXsU8JGH9Zw5yCMGYUyTDCvFYOT0aGfWb681EsgdQFDKzSqlM5PE46nyxKc414Pjcd6GDlil00BjtkU3UV1SIs+mFJo+CsDmoC6Htrki8Z0zEz8SNlf9WeyztLm7ZEuHeHJdbtacoqEBA/5pwER3qp02HS9MDTY9PFy48Q8XHykXmwRRykwgYFMb85jCnsDRB7jbfjidgSSD7ciODCSbgRgGi2VQ+itiRO3JawlWKfZU9hKczbBiwAoEjMDc3x+SkMoMZnedM4wOeHJbzHerrRWtGSi/BVTJBtALPy8Fa5wo57RYdN5mO2AeYgY6o2gYZjj0DAYolyNMrZWkKSZ3VHBZBGwc53lzpgrjABT1sIxqXrxiFime0oxZYS0xMyg9IdH9D+E2a7AztQGQH6zbkpVGMJBo4xsKhoOuDWKnvXVrSVYet9Ax+p2TwUPZoDxowb4N5Yaha7gdoGfIS4dKvEC22BKKBW7e1R0dP6T++t2mLbdquMO5CqDD+5qV5CPSF5DkUHQuGJ6RfJ26AbrC2eWV7Y6B/rO3TfAB3OKnRJGe9Vj8mt0UIRrE9Q9Y2h1JbCGplbulD6110bXvaaevgMsZfnPb7YrPMhejqqmA3G2vweYy5HKSi3n4sQ9jDZX5bqj6UgpMvMwk6ytcuAL416xvLvZpjoGH4HNpSMSKB4wJc/niPEaE7E/iufpvNMrwdXhrFxalynRmpSEJCikro0umotAg8wsK9injmcUfcsm7G2NWaNXLcKEYE0srSz8XZVD63uQBvnBWOdG+MrNBYHkUding0JRF5SbuEWIY5Z/052ntyeS/Z9f8tagDaDn9ungwHW0O2opuQpxqTAhyfBY88v2l6yK5kzM+3mUKo7oioX18/WwXV3wlXC1lRU6R72vTtt31tUvnEzUfPnlum6xuOdlGQ9IdUPFhDCctfpusGd12KD/6pEwEDNjlhkDOSYEAaC3Xgw3Bla0X6Ex4cVYNh+Iy1q8k0vb3sPNSRrhFXn1xHc8Usz7HnySX3t+IttuH6+OmMVmcAkU/62I+DGl6g2gtz0jpjiO3YuDN2k3/7N5D4k5M1KgsgwEhsKHQ2TcQoRy0G+ehEAd9GiFR6JWNipM8WnNeFGXY32sGQT+4nDD25NnrB0LQrmYCZ7/UYVDcssFOPE1yqAWEem/RA88kuAb54XbiTbYxNBYJKweFPdITdVUwgbpSeyp8jjZDRPV71aQN0NV+P6O8hqEtaR03NiiFpctu+nVkk488oLVtpnHdfWB1mtkHfekKObfhuqPr4L+Qz9/EBXkr8OY+/dwYOCIKKY2RczuL8/fnvytJzOxugWn7WF6+YivYM2E4DuN/JMn40kMtgwcQIplER0xC5pEQx7qILZRXbc4EuhLCP3vjtiWeyeL4u+LGmhMVDUg+djSxcAtXlPHNlE1Gqs50vavoKdMvGawevYREQq6lBfphO8xIPUmHDH/YN1gNaB8bMOgssJh4DvKXLlNFGDXX0+Los9SyGYhQ42OJP75+gZYyB+3aRx/Pu9AyXjVkmP8qK/J75aEp9JyXtOpZEtpwpGXLhlh/ygl3vUwG9utZbAyl8+UUBXlJcM1YLEtUERkQKFho2j9s=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>