See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx28cbc58a-d9af-5a5f-8a6c-1294352981e9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx28cbc58a-d9af-5a5f-8a6c-1294352981e9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xF0nE7Ng53lv8byszQ/7JoxVUXw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YqBUFljgg47Z2meqIbSGkF6zD+mmbeHsgzbxkktbUE+q1PH/K4pkREP9qPrdlLrDuGoPWAOIdskVw5kjaFTsYnvF2N5NOLY3e2xzEdeEa38Wnp+RVKPmBXDvDmiIurOaD3FLhAVZYXq5f8NIrWvgyrNJpjryF24iw+hh9weEmLA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx50471013-4ab0-8f4b-0416-d870a6e2fd36" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx50471013-4ab0-8f4b-0416-d870a6e2fd36"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9gquEpPRcCLmZUn5chygD3f3mws=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>eL9dKSCq/ACqAM02jNl/S92n6K+AYSm51sCcMACB0YzNj2Ya+IIzW9lw4FrJ1hkJ08odGMmWEQPUD2KlI6olXBTl987/xPIO1v2VzthNq0whVLWNCM3DKSFHzLDB9EqpFPatloJtL+8Tl0Uy4GKUylU1pLCS34KxMm1iTP4FuJU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb1ae99f1-ccf0-60a6-1089-2de7db56e703" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb1ae99f1-ccf0-60a6-1089-2de7db56e703"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nxCTzEN3mVT2Zhxn5dw1Q3d1vBY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>y0kg3C8q6Gs8XJsH/5vorDsMoUAMDEfN85r/IVuEnzlKCkBdIoPd8//tJGPn++kprFFtfE/chGWuRxVbH3C3MQmMzvq8tKbYyEJSODxDOGjIBJJE3JHQlb7luh8JEaA1lv+2T8iiUgXeNnHgYxwTufQeePQFuY3hNCop5YGRmlo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx40bde52f-cdb1-a2b8-ae48-2d9cb539769a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx40bde52f-cdb1-a2b8-ae48-2d9cb539769a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>XxkMDP5LVZuHopBNIwGiWcXFvzM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>i+ytBjxYyt2BSoLfBAa5iiosh43WhsANjtd2HDt6CqIGgeekjfcENOFmoTN9b9OJwUPCSfLKxYg3GNX3UO31fa+4FysS7DUj8z1jVALzoKg5iulE5CsXS9tsf6T6f4+UyCQPeqw1Z6IVVBIrKALd2qSlitwtgqcWIbRYb0xHu54=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>rs2H4LvovIfHaRNJnZx1imrprWu7wGZ/WqUWkq8fKfozSra2VddzbSPRmNFYNAqSirmJWVuhJtu/cWYaUskNki6sRLfX5wtJD7R02/lBmliGtHMa0kwYC7hW1u9sUan2w9Fol25yRuobvp16PJdk9Gx4UGqL2oyQakjJdTxlz2s=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>dv4Dhv0vej0uDa89Y5FoLBrfvw7rs2Fp+/pBPQczzZjdoKnB+nAyJyza3UlVrAHi5jY+yb3mDD4Swi7zuIWpo7U53cCK+26AhgNzxBRYWI5fqtv3e9ZQuS10JMA15K7sUA5ebgWGJ9CPTQxPlbStLN10bti71CqXMkjHL444PkU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxbfcf7f3e-08a7-640e-55c1-599d82117c7f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbfcf7f3e-08a7-640e-55c1-599d82117c7f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6nMqORwe71okXru4VVISTikrT7Y=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iqNr/PG8vUjGotUsupPBBvU2v6PNLLrn9Aub4aufhCpP+DEbwAhGThkvYrotXSsLCLf6f60l1gqYdZ5tb6oL/mwPKKeL3PEwoLgwOHsCjXLDPOst71zwNwtjEgac0X+zzyVFeGrnrPp2iZAfeabORQVkXNw+aH30PO5yogsu1H8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>rs2H4LvovIfHaRNJnZx1imrprWu7wGZ/WqUWkq8fKfozSra2VddzbSPRmNFYNAqSirmJWVuhJtu/cWYaUskNki6sRLfX5wtJD7R02/lBmliGtHMa0kwYC7hW1u9sUan2w9Fol25yRuobvp16PJdk9Gx4UGqL2oyQakjJdTxlz2s=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>EU1rU8dB7qvJBYDb/OtOxTooVtavLm85/Q7dvhRMiB0lYmRPkaz2MyJbbpnmU/Bc3bVFZze68f/eCa8EYjc87SfFkE1LilUu1U8HPudXDmtO4xRH9EGoIRl+6bb42fo/UD4JFPcaY1v+Z47BMZt/vguNhC9hw72M4MXcK6Mol6rGnrEsHn7OLoNXAj1NCs1TR0YAjPDRaR6iO4cpXrzYWpigwzVF+gTAn9ipLdJgVf0kDZZSpj92FN12xxJVXM2VVbfDHgyA40x+dDGErtOxrH9p1Emp+KNEIyuj00Cx1kJ6TEsHCod29a+FtOFz5ylQaMAn58mtHYD3TTTmj39WuK1qGW28o1y5dzD+eukmzq0glJMy5+nTTMlqxW00qfg90otbSGCNL4aRPMpadWgEi+ShflEqUHFQBm2R5qR6CHBS13n8xzLx/lUQF+jtJyWKd+K70b7ujmGVIIFBJUOohHKw7Ur91ZNOW4A1FB7KayEiCcxEbLIWtgI1mTNLij5nXzTdSEBWTPrOZMKfdzfNkq6ymOi1kTLw320PSOo7veV6tqWSWKfakAJnObi7djkpq5fjvEgKNAajsKRmsrkeYV6e6vzDma4kX8NEIU6pjXCwvCbbI0v6LDjNhDf+7Z2lLXNksl3/MXC7uGyDSBN7N+6R1ATbuWIq5U9pGhldHKWYVH/ZlsJCAPkD8K20nLyeYFXEWwRrDaLRtl9UNsACievENMTjb4fL0E5kOjSqCdnD97Ev56ZWXMjh99xLRfb3cTPV0HTm0Zu1wvxziR0KoqyHyNM8kACW+RWUTimzLkNkeFD8AEADOUJF5/PSNH5qJJAJYFQQ1a3NEFcA/C4VMe44utHiFbOWNzlQiK+ThgCXwaU6dGR9vUOXXyvq3FBwAm9kXYw/v+ssBFhwJMrjgqzsmucl/5UgB5XhsELbDB3/vUvBMiprdo7UOP2CmuSj2EHqLDf7wXKDo8XK1vt5/vM/C+XxWJeJKWMAdcyG0n0E1L9y3/hHeyG19jvcarvGPZ4RW42cGpBTlL4IavilzOMyFc16Uaacf4x/o2F2DIH+8M07aaUZ5KtLbCl4IYqCer/8kZeourQ384F5sptMRVGQW3bIV7zN4Loq5MeejyhGCTaoVy+2dEYW3zjMXpPBxwpF9tuawZvKZ6ynACN91n4jlMFyVE0pGxEikRFrRfqkPaEGEmTxWrRAAjB3Z3/sq5tMynYh0WvKKKVU/4vNQfybq52r6b5xnz2j0TJPQo7GE+5kROyKyJBkTEOM/uMF3E2dPEdE6TFMdp4r9IZ/hVvg0X3OIQ20d5QtZmBmoCTD8gYyndPFH2pcu29tOJJJmr5A1+sPER37cIlTx13fFYHLv/stRKwuY8B/3dPs2FVI+ifm7S70AMdjVbrwfujVSHfibllc5CKYDX/RmeQW3a2XORxBUZiWfvmNUNyU0fi3kW+RXPnsmD80e5J3C8ndlTf7T/87uFmAIncATZdF5IpRyGsStF0fCC4MpYYeQpBsjjaRdLLf+giLRifgCAihZuprzOdNraPbY2bgdaGf8Mnfl6vUH4xKBFABk/Ts4JfKA8ZHjTc5RbNFFWlxs6KOgvyKTSvBghQGlcOg2YL5mR1NHIEyqKyUdlylz7gJ48Og3uTdkepxXx67741vZIsPvbeeN7/UyN3kNyCp9wZ8vmCzQ1svEm8jXW+74aVuD6dQvNmr3VH4ILJqK4HSh0lVkfIGmhi5jIm+dI75p5yqs7craHL6CMM2qmRhANwW8rxlRo22qdJN+AhT569LqKXB+ScecHdsNp6ci5BGt8xo7jw97eQpNRDh2xA0OaAhnzEcaNURdqNkZ0/+Tz41xgeDSNUz513c4MKHsmLHgD2DOxb7kEnr8Q6Btb0HzvEwL32YZgQ+f2PI7V9rhb0FLItMCu2Va10f2LoMBsfzUQe+sHXUtQbXw7QCDQndZmP/w2obFpyZaI8M+HnADg/N2etDlbozeEMHxGHvtmdqpGqm+tJvYaAFrvX5+xzi90+LcFMOVPTdRnkZDiGitxaHiwFv0yY4Wqvuf7slFsPLE6AhQwGXCar6yq4O+1BboDOFOZI3mpFlowJ+H5FxeB6VR1Xi6KgubhxqM1TgY+1qz/2+X+XwQ6Q+djKDva5b9OnNxwo+Hb1g7CEI69OBHhGtQekGtnX+H9F9zZ28BPKQ/KLWg5LC67Er4Cd5qyG7JjnNnHuNPIko+iQz+hNI5hf+BsR9GwRWm8ADZpJYSbyiYbEIRzKH/hroq/HNgN7KjAiqfVny38fvy05VoywwOXq2K+qV6p1srgu//2fZufs4rqoXCfJRx5lFnp8o8dClffQuRJfNwYtNIT3YAz2v0TipprLxOszZ+A1e6Sl/WouTViYGz6TAMCCUq1qsGXoZlxiA9abAqovMCkgGEMcyHXOaM0DgUHhX0wLyfGZKtANibZ32xjWuC6mQ56Sy/Ekp+vdU46AamY1PwauZXD8P5QzeQ00dN9nrFnb0WhSLg1tGlPuy/rV2pFt6WLHcqyNSu6Ad5nx1n3ekjAVyS0kLHpT20XEhE3Q5yAS4SOtcbjNlJoZYosAKZlwESZ0waKFDIZxN/cccrwzXE07xGqe9MAK3KMqgfllqq4YL1J7vFqkSMjPxosYEY6kwYGuVtDE5yUkSIqJDed1WOh/PVZ7pXoDLUgZ23OYNpu7fL6aVE2jd+r9Yn0QNfWJLZHi+Dok/X4Lii0P8BP0tWODmqzRlc8qcvBbO3xt49EwNFcxOoL/b9Q9iu31fSMhrpUhvyJrMXwgcaIjsvFK38DAVQMzc47UrDmw9cAkrCKCFmJ333xHR/efMapbBVwmdhZ5iGN9rGY20sEPC3Ig6BGbUnjlPtcJHne8967jjhbfMVLkmlyUhDubaccrhEfnS0FnWGtmHbSNI0YA=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5fb3631d-fa2a-ab5b-c850-392389131419" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5fb3631d-fa2a-ab5b-c850-392389131419"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9JWoeAaZx6CjzHBWcG5Tc/7O+mA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>l7kpRV0ZafNJcPQiYEIzF6+JKR7eKzhVutU2ndMqSOsGkJWenkwnuJJDoP83RqUZW8WSbU0/G8MXacC/tasRGe+4Qw85VXT8pEPenP8AjfW1GdnDLXJekSiUtZLdux7+JlPDisukEU+qmhOPsTk/WVoqpDv0e49chajyrG5llOA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>dv4Dhv0vej0uDa89Y5FoLBrfvw7rs2Fp+/pBPQczzZjdoKnB+nAyJyza3UlVrAHi5jY+yb3mDD4Swi7zuIWpo7U53cCK+26AhgNzxBRYWI5fqtv3e9ZQuS10JMA15K7sUA5ebgWGJ9CPTQxPlbStLN10bti71CqXMkjHL444PkU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>