See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7ea1b73c-ecdd-bd93-a6ad-f44fc07a68bd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7ea1b73c-ecdd-bd93-a6ad-f44fc07a68bd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bZZj3KTrOlC4DyNNSppCwZ70P5U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>En3PX/wwNHNhkyPK26kXeGiXsYDLr2RHGhDJWxBeTKR0TDlpWP3L4DpbmM9AzaO4DR1vONvAD4EJNzaScnY/M7O3iEDAfr3dTnuF6q9AuOKKPkQhlq4LmQ9xyVY5lxptqTVaChy7xllRrTJLlm0jJ7P6xSDuH7bf0qPwTZSWyrY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx579b7782-a07f-5430-a360-4d4b53cf37d7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx579b7782-a07f-5430-a360-4d4b53cf37d7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>2EBm8mE/KzskEsLgc2dP34iZNOI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zUHA6cEKw0a7hOeLaJMt4wUPr7XChvQIxYgLce7kLwWXrshkBZF0FBz2u6D0aN7GgDr1H+a9Q+jrnDPlZ7dV3jGRTJs+yK5LElea3tdlShgnlSIH2R3Jjv1qpMpmlnBNb1diVlyVQKbxUxwj0+00SleMnFak1ZY7ZGUKSZtT0M0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx01ddc8d6-9c7e-818a-adb5-6e653d0221bf" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx01ddc8d6-9c7e-818a-adb5-6e653d0221bf"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IGqCKBzZreK1S7+Ppj1Z3vfoAYE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MNRfOvMTBkrhzyBM7S/qJUsiAfPkt4+VlTxQ9m4CYP6fdPMFXL8sieUAB9qrthSOwxfrlL6gFdKA4hFUl7mh/Um/T/30gzqWGWFFwDtapgRUkMMFFGNx8JigABHefYYoi611pH3+NgsJkzYNPH7MjB4NoWl+yxJJzMiIbj7UXc0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx31d1580a-04d4-7e99-f1cb-38d60b96a246" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx31d1580a-04d4-7e99-f1cb-38d60b96a246"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Sg1LBUGJSHi3+0V8vM+hMPNKzO0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Q36/oEdc9LU259BoDbqolChsIdZ0MajEiKqmeXdyQ4JXXkU9Ug1IZqgrbTgxdVfWikbDYmcmhnZCWsE2E2+8iOiVdLjIedkqP2ogAa4lGkF2XkdHnIVm+jiSwlHdAcL6EArMC4/cTzFs/053rUMEkGqbKEM935PsjB9euAh3Lx8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xyRhgSgY/YXeSd0ba6Y59Z+fT83aQyBYMHF6SVCGWOfvl8xr1qCQALu1nZxCcJb/7qMy1xemmdtpVBny/umjqFeVKj29lyrEGS8u2pX/jrj1HUjh6LsJMHUgN89G/RVZPoBKRZfsaMGjruzRiFkE3hIg6DOK8H56vYroaqFghRc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Ps8EE4amrFnKdj0h1mGAWAKW5qRsADo+pnBNOhFtx4A1/AAgSwL4y6FMu+ukrYMy4HX8FT/DCf0yN7BGbxUc9+Kp8q87FGUdauniXBJ0QRq7RY9YT5/B2KCkyk196SzqKAKTZoo7YzPjj1pPKvNcwbvKJ3ndAFo6c1n/IxiouE3Vu8m0NEjrzTG4GBn/ouAdC7gu/8mKGBKPrSUJXF08JJR2lp1Et9n66IeL87mnx2Xmd0/uaQ8So8rWq1OSxhYPm7KHVDDBXtGm91EFh8ftV6t7HFGHBB2K/2pwmpKnkH1ntgiRINcsVwVnNbdaAAsQWOjZIQcucW0XcWlGaOufvVQX1+uMNNxuq3TbROIPOW9vj5jAEoa5lR4UXtgDiNnQOjBSoJuh+ttnF+YgkE9R7LHw1IWGWms9eyO3jZn0Z1i0oZTXZo5K0usyvCJhMs2xTJ6p12GMQuqnZj65ZunIt/MUNJBIE9StxiDkd2Jry26jJ0G7WWpYjiivGX7mpYQbW8R56kVCIxUXPEgNHraPotzQyWGZVvwj2tqnt0BbibV4v/qI2+7hjILUiyGZEROl4ghxf9P5iyECSTuBdzAcIHubm5/iIUGcwRnO+IDe9ppdyTc0/45vTMXsfXKSDjtCFffk5AGLshYQQpjeAZsj1+DmiHPOkeFOFpsnX7ksNrRj1sLIvyiLznd518jHITlc/234S/pyWXOWtPPqlFIvTEJedxCRCCOrGAwANndLcd9eQqU7EYmvSEFT04LaNNzTxdnA5XWv44/XZAaMN1QR8jUriyYwxxTYqJlrIdBWMXDS+m77G11/requkRWtYm4QxP/Ccz0Ch6IwvMPXiSnuVLM6xJGdI9+nZTQiNk/VTVcl4wgRRj9qH7OXO0uLbQac7wTC7wBrGvawS1WSm2iFaoG/bo26KpEnNit+BqpJm5JU4cebqxmSTNHowYxLriB+5u5ePOeyDTzHTdGAOIl2f1spTVhs7s6DrIvBB3xr+JOU7lQV99QyV+IbJqOgaXXtRg1e7LO/3cp4pGk17wkyEjz/Zyp70QeeJ4EMbrl28OxoKxpLa7hdS1lRvAB8QXUmk0XiEKd2PFqtOSXGLpD29mrzGu0dHSBeY+Kk+Mg94V7HZILn1rH3rGsamiNCjaGoqv5/WKtK2ZbX4qjYNN2/Wh4WNh7APWDaFd64STGtMmFaOGJ2QJ0cymlADAkjaNnNXGHnlS24saLe6lCCjxTFBFuoVh/1zQaDo+4Nga2Jkj1bsoHOSOEK4r4SiJeYeArXobcD8bu0fHM17PYYpPSZ4bBoB2QdoXX6YVFWepGJ5XhAcyWdQ0F26nV1oNlK1Fn34BFsKeogTmBL4lit6j5WMIli824WLTzswjp8Uhq5JaBwrVcbBHZQVx3Ja+VJwrn9OTDNGuiE7gLAUtP6OSKSMc174/tJJjUDcqcMA05X2jkIOUDeEbNQ6XrmMfmXwdImj1VXafSANUSLThuUJO/S74B0SKg6c8HKeol0/EiJtMlHKBLiMdoQIyPuWcSV6Faq0bdReAzv9ySOxCc93AC3yuJDaNhxVSBO8C3diWgdPU3NidwIMNM0hD2Iezw1yMegZWiC++4TNZimPh20j6vS6jy5qSyJY/8eRk5QxJx4zs/mlyDW5XBz1y7p/58Wv+T2aIzVcOEZqZUJ1yNpVxwlABY/ofFhynU1l5wy3S5oL7IJNdY3LQsTaTRIngEnctfCf52HCstwHXhTSjZIC+7g5gNaEHh0wguFxyASHTrrIEe5+p/dHh0+s9YVb24XmmxAu+My1XwfAy9o1WIiz9DdV197AOZ9umO2LYGPyvnjzFQJP08XYDUUJ4kC9MpS9w7P4Eo6VMUmArwU0WiNOD7gcg0h3EEa+MRpopjvuiL7aTH+GjFlOwDeNTJ5xOHoNcvArnBQBpdHSAnmvnjGgM0QnKDCtOp8RUh5f9uEPlB0xcK454xx2X6P7Lzvf5J7uY3GnbMboT0IzHMmaiy+QwGQQTH19HJ6Y2rMgZ4+25N18qMVGZqvexN86K8V2cdpVV42Ck+EKGoMBLKZBzbNDtxBM1ML8L2sPxsfqerLAesQt8xR5X4SovbYspX9jQq4ItZ9Ah31Em9xxczn1ykinao+hgyppJYCFIa5rVSHSpDLXUgIyfxiIagos35ZqIOsGXz6X9u5mDQ5XoXgMf1kRptuPV5KU8aaIk5UalM6silFX1Hqy2y9QukDs3dL9D4LiA7Ccs6Z0w1Wf2lRrdafTuqa/on6Xu/vPC2pKSI4QHJo5swnGiEXywLq72EsfAG7Xwm/ucLlMd8iCGJsp3B4ILP5PHg1uOlccVlI0hw7vNNA27FwjBwOa6STDCkB+Rq5O1lZP4grGNDPIaLyoY23tqvlYurOqyxgulq0GqXDjvCl5v8z+2eUH6ufhYfdj0KEwysbOTXhIJBG4XBeWsJiLx9XtD8IjtN1XLjkU3gglfAL3oZQzWJR2M462rR+nsi3VsaVtPgOayl3BnUHtLxDH1R8gbQ88E3xF0WgZQZHTnyIPzkV8xWoL8BW0I1vKKqJRJwj0H1tTIkiIgzNYHs0ZJ/yD/HqLEgOMu5G1Eab1R0oXXf2XRzOANPMsb61Fbg63WxlOxp/8VjVwtl2eGbhWlLCz5PzHTyH1BjF6KMMRm6r3ijjvtJIuAzXRKb9SC/9tPZFG6VdQ6o0JLMNYl0SkDIktbtd+oaZktpIqnVjrUSZsdKnf2/EWayjJmtMk77sdeb9hgAWnsFmFOFvAm5gFqU3Hl5ne1g+w5+tlD0qZoktVzlRYF0L8KYbz6dgdMj00CP8VKjCoLmVTZXtbBaO04+w00Rpo5ztdoHjbBWRDn9lpIpCxZG4j+z7S8aihi6XyatGa2hYVYbDsV3GyDYov2L/UmsEhmNyUmATQtD4fxjy6XM=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>mqezLllf3raxiNTX9rJWzOX65jBEtozoYN6uzlhkmG+ZOcWVC8eioATGH4nY/SSNJX3heJugj8/C2ph8h02SeLJLcBFuY4QbeWB7ljvxZ1lKep361FNs3dXlgwL/sjzr+yXRbm59CFkhvj7XeKn6vuLWImxP0mLGGTEaeOiUCAA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf98d4308-affc-585e-8766-78ec7206739e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf98d4308-affc-585e-8766-78ec7206739e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>uU2bFaO10z6A8/5/mYSzfPKB1Jk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bQ2rhUHinpd2niPGjeBZS2xJTuWAGPvx9jdPjZLq3J1ovJKUFF89Ks4j1BbAihm/3u8JcLH90AJQeMJ1ISxDzJTeGSvorEmnSSI+UJsx1v67aZva7DNkxVTDhpomkyda11aRwjIsjTHVVQlexNUb2I85W+SwPVMBS5qA5C/UGtQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xyRhgSgY/YXeSd0ba6Y59Z+fT83aQyBYMHF6SVCGWOfvl8xr1qCQALu1nZxCcJb/7qMy1xemmdtpVBny/umjqFeVKj29lyrEGS8u2pX/jrj1HUjh6LsJMHUgN89G/RVZPoBKRZfsaMGjruzRiFkE3hIg6DOK8H56vYroaqFghRc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8684132d-cebe-8e9b-c5fe-e7a69d7cb949" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8684132d-cebe-8e9b-c5fe-e7a69d7cb949"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>2lFMHdapiT9VPkQctE1oPY4/Tqs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Z0gbPWm4dy2uJq5uW41LeYGLPBXLaVjSbZYj3Tm+gS4yJ8H/VdDTwwtxQEQgFufjJBvJcn/2dqNmTmbuASR9Rj1UfhO75d7fKsStvUE8ssaonNySOfs/S+orSA+XN7sUag6NHvcpGdHL3XNRLaasOqX54E0+cNlxr6i7gGOpmqw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>mqezLllf3raxiNTX9rJWzOX65jBEtozoYN6uzlhkmG+ZOcWVC8eioATGH4nY/SSNJX3heJugj8/C2ph8h02SeLJLcBFuY4QbeWB7ljvxZ1lKep361FNs3dXlgwL/sjzr+yXRbm59CFkhvj7XeKn6vuLWImxP0mLGGTEaeOiUCAA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>