See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx31e3f9c8-6804-cc74-e0ad-bb3ddb306adb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx31e3f9c8-6804-cc74-e0ad-bb3ddb306adb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>29IxpTIYuLSRDgDpONZwPod4hLA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>z8gfw4ekyZPUT+dyYoQiJFxwpvs+MUwUC+bBHZ7pw3nnDbllKvKrPv+ZZ4ddnbT6jVFUKHKqKxq5FZeL6k3wnHFFMgLa8dcFiU/PHvWC4oDu5N8+m0LkXQomthGG7whmIhPt/iMd54+e/vuQRbO4IQuLogxvdM3gDircrlSYCjg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd54ed148-0ec3-272a-bcee-a3c6b8c6f4a4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd54ed148-0ec3-272a-bcee-a3c6b8c6f4a4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>55pklIyhY+Rl7MhyyizRr8LREGQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>G0JsYCQVQ1CnXzQH5shJOvMCp3M8UR2rX75owHXPrTOAcqJU8pW0eD14WkPW05l/GU6zslPI5PrgKuvUjw55w/cN+V5n6yNEfg1KLHMsQkMQa5PC7jYfKNamTV9PUPMkP3UKJkVe0Snhqi4llon2c9vbl7OjxKmSltlzNuACNvk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx11c51134-07ec-cb3b-e04e-30b1eea4d3b5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx11c51134-07ec-cb3b-e04e-30b1eea4d3b5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>thYgsRAndr8Vry7wcLrJMH30dEM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>OE6W1x2qQGYn1z5NPJ/2WKCmfnTXzgiwO7L5L6uDVhbvKcOUL4U/+wCpzlr1rQLh0hEob0JY9chqWIp+O5kcaPrWGpq3rnYKcBaJSNWbgUmEmkoZUx4e09PhhyUZ8PGHv44wXVc20AwDAX/IT4erSS4/RNfNjtj+ApfVLgQzcNU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxab2c1ac5-a622-7465-a262-0c4288e29734" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxab2c1ac5-a622-7465-a262-0c4288e29734"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cirKIz5OXe0l8hWkWTXRMOGmoaQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Mf89VvtvOWql969IHfmPkfTd5bSBmPQdze86+f9EpJwdlnIGmPeFOObZ8YxxrirBPEyAYlrSQWj2UZKw7Gz3Xs3LO6Vc1v8TyHI9tCyJxJ6q5I8dZNM9TNFpA0oHBkJblNI3IsQIYQ/pZYRDcOEgx51ac6MppkXiSR0DJSmRd98=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>RZAfudKV+gbpXyuYumZWz4gluaaHe8NtLTyED7BhqMB5pYIfzr+4pQ9p3By7KIjLet5ZqPe2Y62VRBPi8H/vtW/T3TdwbTlqTDoxchBO0Rq6Pl5RMV6HSL7OjgMwuCI2Xhnv614pgTHTDFpRUUUTmEtuUqBCyVv8hG348lBqfE4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WdAJHFI7W6Sk6bNSENNV7t9iJSyglKpzbFKAfQ7OMxT/OPF3bAsTh6rOERjw5TOfvM/AMUES0m0DOPOj8miRpNi8pjySLP+e0ocvlMyvJuzldF9L4Qgy75E+9gvTMiSrtE1Khj6WpBo2VKD7x4r9tV2nLUJvqF6w2dIIWCzqd84=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2eae1a22-4659-ce06-66b5-e9e66f83d991" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2eae1a22-4659-ce06-66b5-e9e66f83d991"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>oFjgcKJKFywfMReLSUB2wyZy4Ek=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>O4qBpptmnsgezfXU071ZUgY9Bhl6xh8ABjZ7Q/PrpD5zZ8Qh0n2WaQ2tfhdjNW8ueAJ2gfIEBa5gfW92Pk9kxv9vkHQw0IKc4LW5T3irG1h6yYeZFSXNVqSg/NUcDV9Myb5X9mDB/nFiCwPm5bGP2ZEXttSBCN43yZt70JLwOQ8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>RZAfudKV+gbpXyuYumZWz4gluaaHe8NtLTyED7BhqMB5pYIfzr+4pQ9p3By7KIjLet5ZqPe2Y62VRBPi8H/vtW/T3TdwbTlqTDoxchBO0Rq6Pl5RMV6HSL7OjgMwuCI2Xhnv614pgTHTDFpRUUUTmEtuUqBCyVv8hG348lBqfE4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx08e1d8a4-9b4d-00af-1360-99ede9c8ca11" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx08e1d8a4-9b4d-00af-1360-99ede9c8ca11"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>E1/dNJdJJYBUYLbhAF+ior4bbLQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Jwj/7abVaUpddYEnsdYuDWGnMwLwTsgPjAweDj4lUd6Fn14MQrqH1eYS/6TT0i+TFyXjtJRzaoAoP5rSElz6tJBPSIcAD9vyYhiGSTSwIoSOO+J2veIRfwVkiRYpm+aaZVK5WhJzqEivNAV1uUGSIoFA6IraI6ZxJ4FGvmlTXl4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>WdAJHFI7W6Sk6bNSENNV7t9iJSyglKpzbFKAfQ7OMxT/OPF3bAsTh6rOERjw5TOfvM/AMUES0m0DOPOj8miRpNi8pjySLP+e0ocvlMyvJuzldF9L4Qgy75E+9gvTMiSrtE1Khj6WpBo2VKD7x4r9tV2nLUJvqF6w2dIIWCzqd84=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>