Home >
SAML >
Examples >
Response

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

An unsigned SAML Response with an unsigned Assertion
An unsigned SAML Response with a signed Assertion
A signed SAML Response with an unsigned Assertion
A signed SAML Response with a signed Assertion
An unsigned SAML Response with an encrypted Assertion
An unsigned SAML Response with an encrypted signed Assertion
A signed SAML Response with an encrypted Assertion
A signed SAML Response with an encrypted signed Assertion

SAML Response

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx0b58a843-5771-ef07-3ec5-b492b3d16d2e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0b58a843-5771-ef07-3ec5-b492b3d16d2e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WmV9TWZyPCh/ECx4G//DFKyFMoY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mRMev3RQXzEa7Ob8M5vv+QLaPq72GVDuel6j4MOLzEIhnW+A0c+YaGbKRAiMHclwwCJ316EnIWYm7j/OPOCEWAjHjaCWPG2k9JTJa3GpZMYCtBxoyYB2esFpjsGrEcVE2JqNulP+GJIygrXUM9siwqFIP7jcq2Ffk/d1EjmLR0Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Message

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx21b5733c-501c-8abb-e1d3-1f6011dab549" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx21b5733c-501c-8abb-e1d3-1f6011dab549"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ql+gfY0hPQmK6lOnG0MIzuAGwrg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jtXXH+1u5xFn/uYifFqld/YF6vRO+Uwfb9HMSlR7cbo2fqUp7efBhdUh4Xdj7r2DQXL5oTuagJeRkfOf6t+wwZPycp4Ak/x3jK1P16E0QZv2OrUN/Klc1Fk2gB9Ov6jQkAW/XeSxtdMQxuY62sipjkjAyHZh9alKQPsb4Hh1I4E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Message & Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx63d833ea-bbbd-1563-0e42-985dddda5b61" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx63d833ea-bbbd-1563-0e42-985dddda5b61"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>SZ4+YCE+5DpQVdqWJwLqSDjHWm4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>poQCvYALJ8HwfGUzYbu9ZuxY4YMR2G6LcJMnwZLKI6H/yQHZGWThX1hxB3Was3vtRXU/tHrGIT/3C7N/hM8BZqzF2GDfm4bDTK3/b/ORi2O2HrK008e6gxBjzhJzoGHHXGVBRI+C0QCBYDbcGTSP+gSlrWfVKBZMEDqSh6AV47o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx2dd2a20d-1b9a-8646-b4d7-7b04f491e789" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2dd2a20d-1b9a-8646-b4d7-7b04f491e789"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>/Pj3ORIEV2DnU5siOaYEcHTcGZI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zl3SuWk2MRRRHRLWpNK5gi7OJawbzNPjYi2dtotl9GK4h3eBNOfTI7goC/qcPxxhcC+2Mh36V+YFuzPDSH7tpkPsmS/USml73SUEMnTPNwbGu3ACiFXmsjU71YqC2jm1M42Dg00uJg6THAALG8cCUNxLtKMnoHucCvCQ86J34dY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Encrypted Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HWRAMBDEHa3fLesDe20N+4qd/JrEbspndC2CpOBqgsE4CSkQVYc0SuKwxxEZnmT69qdA6HOmLzfc7323dSamvKp76apt4Fdk5uztGytVQLvYjLNBzhgto+JYZxS7G1Nv47UuqwVf9vBcq5zkn1xaHF7RGt1cKKrAxn88po+JQP0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Kgw/rvxbohjLqW9epvD8l70nzNTxkBJH8ls6WcyfeRncVm7jPOLJsQDnt0xcSDARGRxAgFDTQlZhKjKygf6AYp7jnWX1schrv8KBD6DWAYmSvjdGrYMkLYBCh3oQlMJEO8Fnb5iVXDhmwQqPlS5u28htk3yARDEcQbAZSjMTRqUKLLdNvqJEL7H7ckmEYZZ5dqhFHZzjSpWs61UK+C40Mv/et2JcTBKBcTUnOAYGPqIv6DinsuKLyoVTxAo1blSdTG+XZwJJxHUsSkuIXO4h9IHx4Me7JIFoW5Ete8bcnTq7VB2dzIWY37U4MXYFd4lBWzn/Ej3OWXTJw0Cv7J4NTM1/F4b2Fys0io5PuO4Tywojx/nb3F6jLjR9eg0UAIpvkNWx8ACCS8vtBZ2aUlO8uBZOEU0biHXAAXlu/T/J3yfx28huzm7dZOii7w1wdFAB3IPhZJh8vbMuRYy+wC1mulB0pF8h3whurlSXcvCrPt8zURYwUBpnaGn6v1DZPTYQPqQzUdQFsI7CZg5jsOLdlWO0o4ARGI1Csx+nyCbrGWxI83/IaAdPb6wsKdoqK9SPBNIZNAp7HvjZpphaSt6yEPINj8s9SnEQhQSX2H3uZ6HW7P/2IBY6U/jE9fTlvZNWxZX6CkTm4k1tbhCryPrlQfPYDXBLiNCtQ8FtjjvlMguPZBiGNKJ/ZL7o0cIY81ldqtgp4+njmDdYXdjZA7VUwgprMivKazoaRmcViJ5cDguUZk/kSxD9wq2b2429K4h8yLFh8vGZDpFzNAARUQGUee4w3iVo6WIHCz5Smst3eHe0XW0KlDXeVmlvG2ICH5XxGlaAhAXC6h0I8q24tLTqc9V5l34/FtrPDDYL2Dr88lWr+8rAV28w1SiExJc3KBddPvWX5lQNxnl989X4Aeyf/HbSu5Mhtk8CxcNzbZFE/ud9UCibG97OgWZUtRxYopFzfLwcbrtVU8Bp5q0FKcSjDG2yco2tfJQ15hazkHjcBUNtFnQxak5jZOxZjcXyJDfN++ugyDvLiekxuL+DKkdyCGuZm3C89Xjr7V0BNVpj67hXOtNw5+U6bL1LfMTsHGCFAhHt6payc4mwZxYtnF2DHQ8FBzvZvhx23hDZYpCQKjkNn4EErcCfsWQ/dEtaG17Y9A4ggm8dQbop/n3Deo0x8c0j+djtrXC6fWk+a97BFeULA/ZG+solu6j20rYifPlaPkcoEXDNywbY9qbUkEAsp6lvRMaa6FP40gPGujfwcS2veDk6UYreijpEYXwZnVzHv3ucu7Z7Pz5fcLSHZxzgShin4YQRV70y+LLrljTjeFvXZQH2spng0B9O4Nc1K8wPfKFw4mtnsBQEiqQcfkXRO4smU3ZWbqJ7uy1Oobw05vcDmA9sABD0T5oGuYqsnoR05R7/6jHgpSiOqBOaBdN1/OC43z+NFtPQDinkRK1B7qz9x2UQ84yER+AzNOYiPSOAmQRdsfWy8QjPoEnuKwkKLCj5ANv9vVoFFH0XbH9T+eBl2AH1KaYOVeddsKKgVMaf7HqWQ3Y8JeMZxaJASl3I8BKQaBc6zaVfdwJjOhXykaFnSM4ZcBZtf5qMLydpSnq8wF2jk0lOndaENihhCw2yRI/W959x0YxJYFdan/QqquwKkqvySd3ti8qXxQdwSMaowcefBwlg0S/LvlRG/QXG0mRjZ7GN42tDk4e+i6umn8lqo8TASAnLss4JI5ELYyZqnCGZuyi+D261Q1cBF5VCShaAedHV9v9dtYhr9gH73X9DxpHYygsyJHHdDUePtg7fbZAQv0Psrt4YqNycNYTXE02KEdwNr9RQ3PTqtR2KJ5DiLvDLXY/nNx+jFA3pIu2Dqf/XcsFUFmwgR86IJ+q4B8DiWkhk5sDmJZ0rVx9urJS6QjIBNpY7hDAVeS2bUizrkId1CHfAnNc+861haVxxq4OYPLHX2f+eV1/dw/sVRD2wvgZuNGOsOFcyvf1kmWCb8+oJ5IGWS/H2Ea3GRB3JQLaR963eYwvzl7kZMgCVyYymo4CvHPmcqI2/NlFIdjT7t4UroPDvwNzV/9hw8woWhQABxC7Fvk8mkCOrRLHY49gs1kDwwyGLEGiAICvFmXWyaIomJ1mBNtXhcQ7yyPkgitMReuTzOzVttl2UbXBhZmfXE5CrOaODBgvSot5AfEZ+iecXmWlQb/oEcw7z5q3jmQG12uQkBlEntp/d8V9YQ9YSTkqQgvk4uj19hxrt8xPcVhgnnA+GDczeHYVERderoVDT+G8tEs0UL4YjaCwMuBDEV4abeXWBooNRHJM/e/r7EHR6X7rhLSUIGy6oe6kM/H16XL0Hkn2eQ53C2Bw3b59RQ35yxmvR8g2s2FI9IRr+Sk8np5c4G1649vo0E760o7Ul1dMBxyhy84NytBRkf+NFsjOh5c8xU8PQTpuFPXgPd/dmKmiQ0cqKrB7tN9k1lW4xbDFi+l+oLvukujNjkI3U21xtRnuZZWSHcKXsTXJooRnwcWY3/LTMbMJbsUGHKnQoeJnTTYvPGSO2qsPpL0G2DoFpD5qGvdD8ipHipBVvYCGIp+zgISH9DyHyQnd0bB1GNqkpo3T83xUcl7817qVtBjX5/AQsGcprFBaT2yXbwJ3f87yuiSnWXUvWczi4bugy51oz0AR/WV7wvrTBXNMLuCQH6247qNKpregtYnafq+PYIbIfS69zVfiwzkusZM22Jg1jQyUJot/K25jHHTBlJ/XAa847yVKlOs9FIh7awGKgDjiga+/s2fU2FD3WSSSk3WFH7E9YOD8E9EczL4VOGItmPtbVM3VmyPYav9qFWChyxmLJhNUM55u0YEJzMc8jS4BXqZSynWKW7+Riw4Kv4XJCAWlm6WCxKgPkqvclEeYPDBvMCXy1eyCuifovUN+A1amjbEINRVgwCyxr/rs=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed & Encrypted Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>lv0pXn3gzXIGyls7pdsi2VZT7W9jjWdqueK7j2gc5Ce0XaK2BmzdfKYVZkovz7PhmafGyXvUgo5UrlO7sI4E5om6XQzejD5nqjqgmsgP8zvp6t33LwS3jaaQiI6og48eLD1dbhWrPgAVmNtiGkrxZaC/FB9cyAWIkbfMs01gBTs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed Message & Encrypted Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6360a4c9-b6c7-602e-2c78-6c1cccd1e6f6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6360a4c9-b6c7-602e-2c78-6c1cccd1e6f6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UsNBMjB2R8m7HbiNGr0YnU5N+EE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>HiMN3KMwW3szGqlh/G7lhC9ylJQZCKc2fF/PrU8K+H1Ab54QbO0bQIdxQT3/Da2C8jbBuLpTQAAfoXHtL/VxmDh7WnqtqTd16Q6nTaNTSq7JJY4gmS8XwClaBOkzXt3lu7i84OfxX9/ocwBp/Zd+mwgqd77tCDYbzTYD8cBhnyQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>HWRAMBDEHa3fLesDe20N+4qd/JrEbspndC2CpOBqgsE4CSkQVYc0SuKwxxEZnmT69qdA6HOmLzfc7323dSamvKp76apt4Fdk5uztGytVQLvYjLNBzhgto+JYZxS7G1Nv47UuqwVf9vBcq5zkn1xaHF7RGt1cKKrAxn88po+JQP0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed Message, Signed & Encrypted Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe775d1a3-0f38-c93f-a8b9-f8ad135b41c0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe775d1a3-0f38-c93f-a8b9-f8ad135b41c0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bIphswG3Z/3i7PG2/5aH1f4KVBs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>B44bNh9oVxQO6o1PLZ7+EIaEnxSFzTF2CM0emHVtelz6t6X8ntTO3n0/UDrJkVKu761hVB2rAbWryd+IUZio0Fb7gIOYxAGZUQLlFeElh3tzWHqevEuM1uUfril+aWSCP6C9odpKfZw7A+GIaiFSQmY8A1e2LFcn+1gm1sfR0zM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>lv0pXn3gzXIGyls7pdsi2VZT7W9jjWdqueK7j2gc5Ce0XaK2BmzdfKYVZkovz7PhmafGyXvUgo5UrlO7sI4E5om6XQzejD5nqjqgmsgP8zvp6t33LwS3jaaQiI6og48eLD1dbhWrPgAVmNtiGkrxZaC/FB9cyAWIkbfMs01gBTs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

Have a Question?

Found a problem or a bug? Submit a support ticket.

Looking for walkthroughs or how-to guides on OneLogin's user and admin features? Check out the documentation in our Knowledge Base.

Have a product idea or request? Share it with us in our Ideas Portal.