Home >
SAML >
Examples >
Response

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

An unsigned SAML Response with an unsigned Assertion
An unsigned SAML Response with a signed Assertion
A signed SAML Response with an unsigned Assertion
A signed SAML Response with a signed Assertion
An unsigned SAML Response with an encrypted Assertion
An unsigned SAML Response with an encrypted signed Assertion
A signed SAML Response with an encrypted Assertion
A signed SAML Response with an encrypted signed Assertion

SAML Response

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1d445439-baa3-f7c5-6d58-8c2dcb4cd462" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1d445439-baa3-f7c5-6d58-8c2dcb4cd462"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>EpKmweJq/JZ0EXU7eNAVNLOlGHA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AzNwPK/9kCDb9AYTJZNe7YLVHJV05VBZZJzJjM4o7pfnuVbPYACL9Y7Ovi8WX/oRGcngwx9NwMjtRgwP1QwfhxFfzgXtGaTpKswtaZBvNF1Sym9EuIi2xcFrx9Pm7SIfdZUEi2EsYT6fh/G8Kl7tXM8MsR8LGOvFg/8aL4Vg6es=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Message

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxaba4cb5a-7a1f-b88b-70d5-50b401ef48db" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxaba4cb5a-7a1f-b88b-70d5-50b401ef48db"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QUecfVC2MCYY/HrXzrMOswOH3wg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>s1yP8eONUFUVIGZFMUyZE+zpq2uXMSq9jaUTgv7CdcTm+q3k9pTBkHf6u8er6WKtIhP/b3WK5OBE9PpU+XD/TncAL916GD0L4bzekJy8moqJvEUGjnFscSygBe44ckEQOE5oDmQRe5GkPoOKVcII5XB+Uno6ZzOa0vgK02U9X/4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Message & Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7da2c10b-5587-a142-beac-5ad2d646d38b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7da2c10b-5587-a142-beac-5ad2d646d38b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>kgHZD3X0pdRMy2pZLSXdPKSUIPQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Djyc131ElerTflEovcooOh0IP4jZGxY2OnGK9SPa73Cs5Tyd5ql+ncda6yy31Ls/3oovXWzXEMChuq/bvB5l7i3rzf0KEn5XzpMj9y2KycaMcuOycNmUlXwf2aGXq+IS8/vHrjSGbPeB4kZO2ZJsHJmFgPHU/M4BJlAVUAqysTI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxfc5ee865-7987-dac5-2d83-75b9315df7a5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfc5ee865-7987-dac5-2d83-75b9315df7a5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>knWB8Roa1zYTISvkzFHWLO1mvHc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cczyyFnCqZXnEmXyOk8zU7uqNpDp0HZsxwvBNbI7h1XbpSNOYcIiEa17tmNsXA9Pq9fwqX+HmlwXPtU7hdAOn0YEMEc+CI5XSuiNBQmOlzsu5AdEnro0otG6wHBy/CUS7WfG5vEDrSSO8O0HiFvw8mBqRdjfE1Dy+GHFcpAqJtM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Encrypted Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>dXXdp9C1y6oL0ENzWFkcRnP4wsOq6gyGBHb52JNG++w6OK7LMH9s2JBsZ41IBPyWMv1sdq39xw9Usrw3tmpJsxEtC3c05hky25i6k6Jd5oOVGxNe0rLnLmqGp1UQtMVlQ6HxKwSGEp8WlU7a8WBp/TfRxCk3Yc9nkQdMp6O0YHI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed & Encrypted Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oMP5dBASPjt68Bo46cP8R5Eoz+5xUrddre8NgNfL1oQGYuufL1ZNr82d3IrnCODHa0tDbX3dIonNIwotOV0Kh/idwzKTNcTIKtxVXt2oE6unnarejz4wIfnIOp4jVRp3YCfKwYyKmrW5/uveszKS5MSc6mvBOl3mjhRmxmCCllw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed Message & Encrypted Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf14d705e-9d9d-bf8f-2850-9a7d7bcf7c41" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf14d705e-9d9d-bf8f-2850-9a7d7bcf7c41"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4f955NXu1LUvNhdYjjGlUjz5F5w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>izHi6l2w33gt+Y08DRqVryNOYy8T6YcOXvnKvKG8NzaZxx350YQBKiFKYPlEe5kqjXGKopOa/n2oT1wWeTmTDqfBN8S9pr13/Vp7OrfKsSR0KKxhH4INlm2wd6hiAIF8I7nYrTsZUTcM+ZQYjuxHanFRxN9M5K1gofQvNG5n1lE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>dXXdp9C1y6oL0ENzWFkcRnP4wsOq6gyGBHb52JNG++w6OK7LMH9s2JBsZ41IBPyWMv1sdq39xw9Usrw3tmpJsxEtC3c05hky25i6k6Jd5oOVGxNe0rLnLmqGp1UQtMVlQ6HxKwSGEp8WlU7a8WBp/TfRxCk3Yc9nkQdMp6O0YHI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed Message, Signed & Encrypted Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd047ea30-363b-269b-ce9c-b07e0518313e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd047ea30-363b-269b-ce9c-b07e0518313e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>FUAY9bCFKExJBiuznBbEksxdUDE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>QtyldoySVdhqVtw3beDaXIgkaCVohhXI7vhqh7nEkGUoT+miIjotQJSLjsUoTpwnKETrtG8MBX5ONwyJQtu9bOtnBpB6vLdJUWe4XB8TjqeAJdbTODv2VX0yIHrfvYjoMN1IcZqq5a2edEteeGVwMAQnfZcEs0daIiLwb9qVp9M=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>oMP5dBASPjt68Bo46cP8R5Eoz+5xUrddre8NgNfL1oQGYuufL1ZNr82d3IrnCODHa0tDbX3dIonNIwotOV0Kh/idwzKTNcTIKtxVXt2oE6unnarejz4wIfnIOp4jVRp3YCfKwYyKmrW5/uveszKS5MSc6mvBOl3mjhRmxmCCllw=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

Have a Question?

Found a problem or a bug? Submit a support ticket.

Looking for walkthroughs or how-to guides on OneLogin's user and admin features? Check out the documentation in our Knowledge Base.

Have a product idea or request? Share it with us in our Ideas Portal.