Home >
SAML >
Examples >
Response

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

An unsigned SAML Response with an unsigned Assertion
An unsigned SAML Response with a signed Assertion
A signed SAML Response with an unsigned Assertion
A signed SAML Response with a signed Assertion
An unsigned SAML Response with an encrypted Assertion
An unsigned SAML Response with an encrypted signed Assertion
A signed SAML Response with an encrypted Assertion
A signed SAML Response with an encrypted signed Assertion

SAML Response

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd90ee71e-d06c-20e1-893c-7f38ae1a52aa" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd90ee71e-d06c-20e1-893c-7f38ae1a52aa"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wCxoVXejlzkGHiLepWyd2zfLpCA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tly72kZ1zwh6UAts92s0uYWt+SzP5/ItJxWvb9rxPX5AKl++sj1dQfu1kwBepAT247m4HXV8wV3Eo/AXxqJjsQCeN21XCjnuyjyuGeBom23hei6p7PWxcFfrbEfo5TtkyEdy+yNxS1rZN80eNbPDBiK/m1HAQI4PXLxBmkoLthQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Message

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxda3024ee-2ad3-7d71-006c-1ec07676b4bd" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxda3024ee-2ad3-7d71-006c-1ec07676b4bd"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Rd18Gy/w2Fn8d/GSBhYxf8pVWKU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mvD5w5JO/bhI7h8d5ZAo7vUohyudcx0kFOaY7prFObt9fi3y827mgCArYtSOEjT5LGXKYEkw/efDJ6Gg3C16g9KqN0pykigV4rKGXyXEUQG2UVt7pdWMf+PZCHQZpbuA9IHV+ltzMpIqJDLaRFtiKlfnbimbtnHE/hGLyNun2QA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Signed Message & Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb3671948-a5cd-1cb2-a4f5-5520c4eb385a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb3671948-a5cd-1cb2-a4f5-5520c4eb385a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>5w2cPS0Q65YS6K9PKs67tia06Os=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>nPcZwxSayOAqvBzfp6FCWnkkAEjRA+Fy+ddKGrzQSSn1t22FSOohkV1aLi2Vz45HK3VmiRd28Ry99Sex2nQA8NurN4iHQNHkGfCaXyTG0Je0u2QnHCH1QbKVDwz4M8bG+67Kz5ynqHCGfsPCC9sdLh7dr491csICSf+ymMoW2K4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx02ffa2d6-7386-8353-13de-c34e12e1a64e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx02ffa2d6-7386-8353-13de-c34e12e1a64e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>K6L9ko/TOamL0QTmXHwe4FSezH4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>A5X/SLM5AW/K/D5ry3WZ/Lg2ilFI7axyDIp/cNip8anpVkIA/mnrIDmtKwYKd695Lt4Z5UDbeooinMjiNbjxkeZ4rKkh6B4xZIqKVK7jo6zSBMIo9GDTceR0mP5EEH16V4wqKopv12HPcpdbSmsPYkFrgicEzV9FssZog6f/M6c=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

SAML Response with Encrypted Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uAARwhxsBx6WV5NYthsrfHXHzhC7LWtoP0zCBQ6MnLJDoCPBxtoMLUMmoEqkqWgjFsVZrqB2GfTaxLEXQlq6ZLSh/G7FMuzw79I8UDfTig/aIkmr4vLS1Gwlzc1MJBxwo38HjCuD607utB078VE/lzGN97dLwsKjGWB69gdlEak=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed & Encrypted Assertion

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Eyb4Zyf+BrbpmPkqei+1ISj3//KP2uuVO8cund7XuwGG09dHIyW53Eom92GVX/pLJZpcss6CsHYuNAiOp5EYp6J1AfaLwBkIjGC1a0/CoyQriFJvSfooUysi1ru4BOTlowPOFGSSezmbMZEixVk1aZViQSPy9fF4duhKsghF2+w=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>8ksFHEsPpwJjfZUFnL6EiLVa+SZL36f/qYUY44tFqRPYVmLY2oOMEzukcsIhoYQy7t9n06Ucw7s/37uq8yTfxxn8NaT8VhmEvyA3SVw62UWFCg4Y16LD4o/vZANCxnjKceFRpf/pWOZ0bmPhYdEBibNpITmJ9CS+KXicEw0N2Jha0Uaf4C+ZuZYvRDshA6QFxQRsgikldOAje1Uc0wlmihH9zt/xjtvV1KcgvqjxmfQOuv63Ox9nHUuC2yDmIQa5D7zZXao5FoNwbyDC2OCN4IyD8tM5/Xvz5PgU1vygF8Q6hhWYnlghUJ6zuoS9TKoP6pYYfAmi8EXu8U7hd7HIDMX05evoVge3a8Lxbq6Z4nNWz2LsKnGHrp3NKD9n0GKiqr/IkXWUMIjh66zPj059w9WX9S7+jk2MO0RLA6DClICuzDiZ/vle6TzEhI/jN0tgUJVKuu8kNICrgkhlSqDawakV+GrhDO4UvPBQrznaFVg+/XQxS/rvbG+fmnIsfyYmkqxQA4T36fR7PnHI9eB7RYOF3IKDrgbtvDY5oDR/UD3KVni0fC60o5WesPp52mtA88eBNn7HniQU5RWhNY4/JrWSQs3cNbVtikx7KYDRzsa4j8/YPOeIf+S8K8VlPlXhu3l5kHBkrKJwhomkjYcSFkcYi8QczK1ATcTcmKlK4XbqvThDQaYeOmJrG5/E05mX0hSKRcB0dsqOj/BN0kHB7F4JYWvXOVMy/SxS9Of4MdpDqGpKTochVOQXpV8sEgzfZf0EQlTt28GNeIcv6USSwVJ4N+bw5iR0PZ4har2gvWrT90JmMrLJM+31rmmY873lAHuXay6ZjBMNoMoPA8Ix7WTN3z3Hz5kd0sh7cvNyuvsyJflHQa88yAKruErsXpnf+eQ66L96cRQy1DLBtDGtszNL2zYcj2XfSYGmnN3i/nqoWn5uuNn1ll8oc86GWOcNeFwDmDHLQOkRuy1R5PpOkZG6Ewe7Z4tYlWcYWLTUEu9/EBehWJrYEqDMXT5i4YrG3JN5PwTlmZ4zpnFGVVnwau3/j4UuqLMsAuhCswP6pIHLqAWwJPXc1asE40AaIoL4/zSqbUFmr3R5j1WIw/8yl5ECJWRBV+zkyZB8sEiIfe7pR32nMSLKV26IVwxpzBSD5gfefXNiJxbTAv5t72ps0C2/4d5Me14p4jz5tF5PtfPXd+3KcUx3b/xQijfEHt6Y0Sx67R/diEkIjCkwhgJ8Agil7M92JrMpGmqUF+73Js0vkJv4//i9dgvTHtEKH5LNobOaIyjRRMb1tPN9oOATlSOeD3gL/jPFz+rPMCpRMhEtBEFQeh0jBQCjlN3cdlaoawjsFr5JDGbU0ndQ9BlKa+Ke9gFknsjWaUIL0/p3daX7zckKnpX9rf47cJUh2JX8RSq8DkHQNPkl8Ek8e/a4YvjEVGf3iWL/XvLdKWWkID9YQ8JNR1sifyB9JRe8/YlhrqnZ8YgeYtt7BTDsgq/dWxnRPUAm4c3Qbw19OHuHN5jBV1k80Yats9ha9uz0UzmDnOJeOQBMJ4gtruX+0Tx9wqXO/gcy4zF6nRrXS/ua982G4k3Hxqv0U+uW5g2Ezj+DQnPCHWF8DjYaqr1zdxqZ+VQ7z2t6/G7nGvNcWx7KVTLv+bjBwOKzOENEzAo5ntwQwcj+m925LKYRq0+RmNovm2X5UdApwHntjvD/kDNyxtLjxA+t+ZJCMTkKBxfLv339KgGAVZ76sKCChR5mtxEde/Y6tuKOsK13WIqSDJfSORkPyozm89qA6fDD7ALVpUPuyOhRTEeKU/5UzLpZnd10x5YQ6fjXzXk7QH7w78KHaTzVVmuYXWsj0zQQfmlmrX06c1gUIeMkCBvGHIcQkl+731R/k/KlvsP8ZN4qnA8dGkdWKiGpkN/UUdLfvfg1eHU9ohO9ng7pdJDaRcfk6po2SRroO5fscZPBzZPOJcslGrzgvNzxCtJ1ZgcGv/uWj/hlMs7HaRAl5Csme0lS7fN+tg6qW3d0VEOpJ9zge/uREcbMvp1XVxeycBmHlchCcOqS7MIz2FdLLwjjJv8Cx1mUt0Sl8a/Bdr01BfNNEhWHaiihxh4a3ENd9uR7t6vGZY5sVZaGtqyLk2X6qhVVFuPUOOw1w2h+Mb0rUqr79+xLye7Wk+4pR8hD0i39U+oZK/EfM7I5ck61ujZMTG5Rb8vrc9CMnJnEZ5c4LW2K1PkBcn9MGCQ3aixio7OF6czm5tyqD1OFUkTAC8/DUBzdshN0nnu0gFsdEeCpY/tzk8NUGaCRV4xjqTqQZ8JGWBBm5YzRZvdMvn/i8vNlyiaU0Tkr4MELirwOyMir4sJopT7MEDxnqcVfVjS+NM8Qf502qBrtD6cKdhqrjtHLsVGUD+AremK7HfHAfQPd4svffJGlQMkYGSiDEt5sHXJicWQWWD5ViMBNny3XeUifDJGjAV/7M6ByV2t0uJECooEbCi0OR959fISeh36dx14St5jaR/ZgIp61X2br56Mmg9NTeWWmkMvoH7Zzyv0AREcr8d43nYbCWAcGe/DiWcimcrsVQY8EAEi1Tdipt/m9Lsaj+Y6w1obOFn4GttiPpE3tnlemvFmb+XKxg4VxjU4cEi7dyPPC57Mkyi2U8Ppu3Q/SiY0aEcprS0Iv6MgKXb/2/CBMzKh6MFuEkLXim+wjnVAFTGkJtHYo9fHzpu2fDUxEe9KF5WEFkrmfDxQW9UUgURDNVAL7D/Ma0zRTR6QfBv6XfRMi0WXUejlg065qQfn8rZzU4KXtwOOxpRhbhTvSpS0OEq08x8C5J9W6cRvas3bRLpX8Jt1v09PI5WHp02pPkhS680SpImApRfNrq4EbrxoBXmwqMTzJev8UraIVvz4nGWAyycMbuAohrrEIaY+8LHgLPS2QsBoydT1ajznGrAxhXh4f5Q1qbGbjN7uc7JgoZrCa3klySaLlxzP8gRymsUeIOkzlr5GYeUBrPdH4/0kMGyx6ErEHaovi++gUaiN60lkbilXT+sZiFNwAGUvl4dHUnbpAloQIU89E+Rh/oNAFGIPvh4mvl79EfRipA8am93PjQ7znrXYcsBILRbT5QNgcPZZHK/uYIJ3WpQmdU8pbGY52h1sAlXdNW67fef2Brg8IBFwtCYAwjqKiXJKmYiJM/z4Wzs/HtW2LZqLdtfocFAhgJ5kQmN7o1fjz+ySlJUbysuBNJz8gmSMw4CU/e9rf/BwIElazTjdyyEfxkEWlO8eSCDj7PN8av/TBFwAcfxAMdyQOvXnIRs8D4fePqCWu8fEnc5A1BFVYD5m6LXROFrxMovQ4WYgtXDfIVhBWLewKmF9fHeBZY0Ia4XmLczXTO3HGHaRQ3PZmBSmvuObakYU3JmCg7ApBVOCUxN6Cad7dXfCjNy++PQxpG7T9AAHxNaBaXF2zYZ7gfH7XTmnxZQTXHcdq/uWkilTwrReVbXcw0is/3L8E5kkfOQq4fO7c5EjmCE5+1VuKWwd6iXkmWx7SmUY0lScoG+UzrtgyWKGyyT5OAJy2hKOvu6tK4Bt7HynlualMe5V/k76BmkFB8UZJHHka2LGnJyLd2zv7dMsllprBRpjoYovT+oj0drtlIqjA8TPPD+O+MrnzmYLDIgx44U/Vs0Hg7R6EJRnwQThKYL2hEQUGGhtp4N9owpP/Z4XtnNvhqlAF3WvDtNDoc52qF6MlcNcf26v5LqRrIMYievA8hmMB1WlfODB5XB7xMcCHxZufkwvWcyY68tNcqUkw0psh/b37drppjgT8VsCGdIKK34/j7DAOyPzommkPp3CegzRV3JkSGUOOYcpVcl///+v2PeytSl0y5jm921TOO3Pa4Yb+0FKpzoGMNLS6PX8iqzCyYfxyBsRvHdIeL7jP/1rFu3/eKkr9ttCqMnpsorz2S2UWfT7JxiRbd39WZ88mp1EnVlmfPPZjq0uIqazRxA/U7pt7bpd2SnWOGIYj/trjj1av3qjnPs1FpiOA4z8C/WNCJ8s7fyQDpy+S/etbVbSEQVMuTuSdbkGV2peuuYqOJv/OVAt2iexuMG7XEXgb+R7O/hZu3OU1wgXNYUwPvL1/Pm5DaeiVkSHX37j+FX6lClB7NVz6swFFG9snJzocLvQc8xH7EXSa7uBXnJ5G3lYE2X5/Qbb33G+UCKYTHrQFOYg3zrs4KK2fyoWO31wktA0ORxtM62/V334cYL1hAobdsvFh+aQDEYDDS2/z8x7dp6MTLw25JMWeLMjb0mdETxFxyy2J66HrFvbgFV2YlKI7XrooZTJZGlvn9fg2legEmdiNYQXjIQHEwVEGqBcDuhqDNFLdhLRXuw9Sh1ZgwV/LhZy0WzqQwlfakXj9INq62/RDOucZK/hL7l92hTAbGCGEHGKxDlmhRGdVOXGUyPKRPbTiiFcCpCOpdI6Lk2uz/DP36urtykAcwhbDMP9Q7zO1F6qSnAE3e0T3k/TDl/FEbJdPcdVkBlHIJW6x92eD4TdEqT0GPggOO2DEHZEwHyeB/+4hnZGy2vwWo1lxlB0Ib0vFyTyQ/8ZUr/UhDzNyKt0ioW2LnfrKSWAMY2HJbfdW3t8gTzV9lD6umexg7Chc3VXLoigDek8S99bPfHu1QUjOGJ6/56YBsDgAAKlHeXgNTWuerPS37N4nx3l0mQlounmlXe9I3cMGXWrjAvm+vK32Da7cGrjcPzd9PwSEiqIn5FyB58mYvdvm5Rdsw/M3AQZI4JKTcYc3tyHcIeS152oPbHNDK7dDjlD8p12aWI8lScJsF8j8Z23GInBeBND94Hq0bg0NmpHkMae6XQ3PRp21VjuzB6uZyBal/q5TrXC8z1UhSYqug87Mk22RtirMo3NlBpxoA4N/P2f7EzmawBOU9V0TpGUFYDimewqcpG5sX7BuN9X8blF9u9ljKVTd+bkIFLFbtDWYQj74Ddl/KoZnawhvPi8v4rG9Ps8qrPqjG4rYKsT6Sjcf69LOyerJoWzzcAj+nYKwsrX4U1l8VQOgA/KbfubRgE130rWPJdx8/3Zl9ufc8w25w3rABFw7JeU5z8RA4/GZzSc8yFAMQ8p5oMpCGIjAvuQhKhvPWtSFNh8epeP6UhHvIoN+7WUYHGeyyd6gI9j4uktrEUcUWADCNg+sXha5Q4vQSJhUwtTCQKK2BUPUBOFCqFODuEDN1nup4diUCfo8i8eAbb6Ad6HikGjEyKayuMts5uTkQPZbh44pHoNLtwyyt7q1U9ZIBAb5g+NtFFIH+/3kCyK13ESeCpVKN+wMJ5ej317AVNDmjI+hhdP2pxOvGv1lQZeuytqwNZKCpAyb7WQeoypBBnfPduyUQixKvz0Hdq9GMnQFLCjJerF8Tz9U1Jy19/lZvXQSTbPNTSwrhFmAqex5dWjO4hhT8uv8IxFA0SRsHPXx0P6sjz3j9cZ0W3A7jzqI7cxl+FamJKkbvQWLoqagZjyHc7lIIjmGgcuvHTHXj1NgjqM/BbaipTqy32w=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed Message & Encrypted Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx16ba9919-c2db-b8c1-ec80-a45bc722966c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx16ba9919-c2db-b8c1-ec80-a45bc722966c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>A9beWBLGYGDDVxjAvijoA9idSqo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dPVsgCMqIEIl5StbMUeNsJoodSoJNpiojXir+CEzWjJBnUzTj2ONtH5gQdiHFjSaXbh5jaEcxwNaGGp5Nbwt9H8hNTg71U8H1wZZokoW9JL6WipfL9426aFMQbjLK8xIaSSsG+N9AHgjBzZi3Tj8UPczw41FrLyvwf8/oXC919k=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uAARwhxsBx6WV5NYthsrfHXHzhC7LWtoP0zCBQ6MnLJDoCPBxtoMLUMmoEqkqWgjFsVZrqB2GfTaxLEXQlq6ZLSh/G7FMuzw79I8UDfTig/aIkmr4vLS1Gwlzc1MJBxwo38HjCuD607utB078VE/lzGN97dLwsKjGWB69gdlEak=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>lYlR9+R2e0axd3Is2nMk1jgoH30waA6Lr64j+z2wBlbYbLaPD4G17SUWoLFqrz+jAJWQdVsJjHK4965EEuJuKOZmFVelx3Sgh2xXDfmBQgtMjDKnt72WaVKuUf07DgcMtZzCfm7h57FC1vMdE+TzjoYzqca/GK+yhipemdIvr3Sv+SEaNDEYO2DFafB5bjYjXYz0O3uggIl4KWsDFYHsI/xN8ebSmlVZARnLIMtWe3XSXYqofGPO2yQOZOPTpl5JoEh0bPqEfibz2umMmBcW6JdPlfkrPJYU79gxzs5FJ8s9Rd9IA3UP77u286kRl7xFm5z024T2fsL/EfCT1V0s/7luzeQpay4tI4X1WmfJVdDaSoRYAljwc0n/Hf2ii3Zh7Qs+cNMc0UYHQR5xiU0MhpnLGRl4ytwZLLR6E0U+faQwXktdp5b8stlKPhU0iYs8nNh05R48p9OoW/j3V5E6zoU6COWPkNmxtp7+Jlymccs8l7gLTg9HX5iHMXNjHUxtTCsZXiYEScCfhtY+T+PBg86Rgrp0qo3WwINxx94RTyQC+8/qPMhDyYK3hKb3njx3l3jSgaWxGnOY7dHq6HwUh8B+HutTEYezqBQdMSp60AQxrcvwSOek2dNEtKwL2xk09Hcme6fb7EElDf4if920VZFk2kr5DPhxqY0W/T3UhPZjExfyDfe06ACcpw9rQ4WqBEvb9Tb09Q54I7zLWzPMaPYnlhZqjOTL6lGil9ObICv1MJP/lL7UvjVO0g9HgnWhHM2PQl8YGEST+G4XJq0QS/MFEM5skyfudKowX0DTBG73zYo7h1R+wLlz3of/rt3N8bENXa6QxHetk7Y/TF2whx3XMmA5K3RN8Yv0aZHf62NKNocGJMyCdywjpdhIqLcbBGHaBMIB8u2qvSFeus6CKyMiUeITMo+mgmQt/enFmWK45evccoi/mudf13biajxwdTeZippfYAOdG0hIT8qyyISTatGFwJXViixGpLPyUlx4CMDCom1ZQ6rHT14qe1eo98Ait5qszl/74lCPgAUTrGQczZvvq/l0axIaECtwhVyWvueNPQ0xH3xFE/iF7E/9NTx01wuOO50LJU0ttzCqVUHdQy1P20OeiSnsqSw8Y24sqfey8VFbkXKhD3zspTENYc+eiULLrEkyZVreC3L0AWmpDB3mXygM6deiL+SObe6cTO3S5+YNyy58MjUjdLN2SXjwTN+PoUjpR+L/AtIPUMlqqhj7QbcEFBSxyZnHeFxPY1S/hD2DBzn9/KwNdIfSyXEDqSKnVAkpc7wldqYyyHtxunc0Vab3pQ9BbZEQx5eHLwOdpSv1QnBnT1f6u7vqCzjCEaCvvkvxz6egegBaFARVNfQD34dlgUOMV1pznyo9dFeL4ktzOt+Cv6zr1AFdzVkLeLKzho4X3ZuBoa1BLtA1JYmHu0deCkjGrJ6l37UPp+siGNAdWhW8+0apPMaWoGzmf1C76RpBhujQHE3BUvSGlp58A+UkNxudcDsFxg1/vznkRydep7pobAduXdkFfHDT4S7zafECOf0hH1D58sM5mKfT0CzuW6q/PbTfISfmQt9nBRnTf3+KVmFsBRZnfubOpZUdGPITTOQHlpjShJ/kpGGEnIzxrwrIUm4XlxRlnofrLjQZzmUKs1VMqLhzLcT1pxOl7ORuNZSaEZsDHSyXaSceMhx+EtURhwMmHI1DFUGRPF738Gp1KBryTpiEEww7sQhF7EbjAw1qPH+pdpDWjKy5jqf1ozF4BfXelWgQqQj9ZTG+yo4njW0u0B8ZoF6ZREbpic0KZGRQ5Pnu366QToSWWcZe2iTToXra3ohsMcrHg70TIkyNHETEp2L64ePPAFg2CS5+vl3rQltnOLeWY+aZCzSf3XSggNwC6flVYajMWKzfETexBw8/6CC8J9USWOCjBn8uacs81foJn0vlsdZv0OtnBirBaB+U6qtsMwIt3HruvvonijUMHxI7kBpM7Ap0pcRaHydi3dg3AFgCd4MuG4OMd7B+0eMuIQ0iMv8aP8Llt32QavSXpCd0zahoKSmPKa3VzqT7fNRS2UoYAp3ZmjacoDwA5ZwUSEuOLY1+htQbuUH8c9DRvb3nIuXYuEmCBxig7AP6nsPHazTMXNQLQbeZrki8sBj04PsM29eUbEthgacMXhGIJQeATfKAQIPMOt7NxTrryqi0E+3ODQo5W6HNptMdw6iwXqfhwscXpTQWmSBfz6PQTO7oRIY5m83ElLaFyYn0qHbExoUy/ikZMqDoIGp0tlKEMerQONNNpKTJoKxWRwcYxD2JgF4/CkUYVrxA1eg7YUFM6gpfLVM2f0YmKyWgNJCC5vRzisNbyGGukwFrDdrzZdt+hwjPvEnlB0+jogwKmGHyKBzWArdeyrL4WJRI7CggJaWpz285UrvGsjxY7+r2sdNoB0E/zF+/Nyu9jFggtTPqadqgvAaPmmGDBJ/168OVI9oSZc8+JieVXg7L4D9NYzpYVzl7FtDEYUvfzfHFRsjygudc9Q3AO06B82CDvHMCti1iLA1Pgu2UpWkrdA5oEVFOKy39A+zHmzOIQpmI8DcogGke0qwuf3ShL54TnKnkpHu7ZjMoHZHqogQYNfSt2xkQunCmVaw2Bym67fwbigiNJ56Xjxrm+jDF1RuIqSLPi00LVr3TvyrNL7Id4drp2sHfl9BGUaQt0MuyIdK6Q2EsYTx3/L7Rg70thkWFz5NNhgpNzFn3UIKwD83X/90qI+KrBLc1wYSbFlFkJR+IAkRrh0GWnNBbw6uDm6CDjoMuDCVX4OWIcEartcKEAv9vzmkHb9NRbTr7cpeEpsgdwsZL90KBdurtHX51LElrYxgRDp3eOaEILOXCyV1dyzjTET9HG7pJ3NU1HCR64tPM8jU9t+mmYJtD10SSBT4CSvf5t7o=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

SAML Response with Signed Message, Signed & Encrypted Assertion

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx128561a4-3245-8dc8-d25b-95086cf8e21e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx128561a4-3245-8dc8-d25b-95086cf8e21e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xMyO9UY0u1+O7pfHCTcO3CXZFhI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iLBVhWVvTkDrlyW8jCtbdBgdhnmednV2cK7PCffABftqHHABgAASgY7eHimPXUFd5cKSfeoM5VfBN04i5+RNtqB/VXGnNz5dkPW/sVIJHFN/M7nUfIRhrOZXk6HaxPdcrSKWh863ddhvbB2QC0Y9GvqX3msp1aufhMxWeY51+bU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Eyb4Zyf+BrbpmPkqei+1ISj3//KP2uuVO8cund7XuwGG09dHIyW53Eom92GVX/pLJZpcss6CsHYuNAiOp5EYp6J1AfaLwBkIjGC1a0/CoyQriFJvSfooUysi1ru4BOTlowPOFGSSezmbMZEixVk1aZViQSPy9fF4duhKsghF2+w=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

Have a Question?

Found a problem or a bug? Submit a support ticket.

Looking for walkthroughs or how-to guides on OneLogin's user and admin features? Check out the documentation in our Knowledge Base.

Have a product idea or request? Share it with us in our Ideas Portal.