See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9d91a3d6-9166-4d6e-4453-1b34bf278a7d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9d91a3d6-9166-4d6e-4453-1b34bf278a7d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KZEaYQdAh94C1wv4fyhYMpgKoQw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>zx3P41E8acw9MZOLlyZRM38U3jLTFrg2YZL4ckW5+UnRjkI4Hgy5JsfjC5iPTJkqOscMWSje8g4xy2raDF8oirydfTKvtsSgFtxY8Bn/31LMuudodsBfJ5R/9u4TWsD9rmbGT3efK7ej+Eowxoej0yikFm183Pkk9yObr4R/+ws=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1de0c9c9-bd76-9f9c-338a-79a26bfc73f5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1de0c9c9-bd76-9f9c-338a-79a26bfc73f5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nspirKXsry3MEfgV8FqRWmo1ltg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YVrITwfOxDngGuEj2pPSxxPw9ioyWOvMtn3Gq8N6MVxXXHC8GWNDgPiBgDj11KBn7Z1M6wSIkIBGxJFlfbjr1ZkcruLSXoOI5Vq1ock/YQCInR0Kd+lQBbkYZ0k4ukwrATLggtQjqTDKUSNhNcM5w7CVBQS0bw+PQ7my5oOqlUY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx240a111e-1420-6543-7c5f-0ce41c70c755" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx240a111e-1420-6543-7c5f-0ce41c70c755"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lh7c2LKi2Peeut6ver1oBlWyPLg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>N2AXRdUd+LeI7FQNJY1O/DfCYko+n3nxqTc8fIHmDxTHH6k9Am5DF3NJ2w0Qe9DqLO8j6CsLZYBbNswbOPdFZ5rnffh8G/WmYK2M1E3Bf4c94FHk+oQJ5aHp8sYmi80eoOOCIhF6sFRkNkxvCuisai3i3pDR3T7YkXxIOxppbOs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa6ba2e09-219e-b49a-8534-db9f35c9bcee" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa6ba2e09-219e-b49a-8534-db9f35c9bcee"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Gj3odyHTkKy1C1jhP7fF+4yAMcI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cvWxeCO9T5GgKbaIFbu93jjMxrqurvPfKsi0y12YkXpnJ9KJMmtCOJ9UtDY4ckNd7WIQC2y1tTUnSonZU++LQ6fFTGJB3RgonfdYqi+FFIvbgO3ZZqOaXeSPWqKxAbgQ5buMie17CYGPrOLiHEdNyI+UdI+2oEdFcjKCUNOIBk8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>sXB/EVgkGSIxLFjXgXl3QhPEHUCh6H0Pf5iMbL8tKX5Xm/Wg+rBGnn4LigS3x21hrcl472OIOuiyBM2e6p9THprC5wxHlQBBKQQ/eVOCy7FiKEbaxQcKGBm+6NYfUv/zOCR+YvGbTC4gLwKzv4Y3kbcY8QNDDYmDvbAqKOUPuNc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>sJkrr3A55Q0tDdYEYJE1xOjMw7r8wcKnMhaBnkXnmwL6wndxOMpV7pXFU7sEihq2wAWNQGkOTJhHci0+SPjdMhuvXOJVqHO1ZZZoBJdQPIVQ3x2X0Z4oKH6OpfETQUhqF2Cm/4SkvNakutlJPi4Mtx8i75bmEUmlA4hy/nI72tqkD/Ej+yzeMXwnMOoAHfYi7+ySRG+gnG0i4/X0ovSexE/wqtbt6WaN7t/ePB4lYOBd0rKGdWc3hVM3S40fZ3wl/+/JFkDOQiQEXuMImXQRzYB1YfxqIhd2KYTiRVk0/QHI3fycLwgv4Xr2RfrZrSyrjF6xYog+F15NehJPy5sOvxVhb54b1GXFlzRw90LQzHCaw/2rutUoUH6nI0c7ltRmMrzugrsr+vVSjleuhe01EqT2xDT4kSbjkr3VTyvmRn5BKTFgDD5GAGnfE6IV4U70Wf6ZRAqvfRJbvILCwSwSc8Rw6ygSKhieIzv67ygDtM7vLDaYdVwM0IybvA4cCSh7hbDcfzlpPDPWsMPVGnlNLx3YRYlrjX78wqcBytAC++V8d6oriqxYTXwu2kGmjw8SV+mns9Vfm+z1VxyXCgMVhC/8hxMEII8/BtLl93o11tAv2338go27MeZkMBoA4lD/E+UADqMXFHrogZeoP3a2QW+KAGtIuUz2lg22mY6yKOJYJR8H0H9eQx0e6CLYfZJ+dSmKg4g1k99pJ6EZnr1vgSRpw7XavW2c1qgrx9FBx+cP219o0ccKO09I1b+ywEPqcIH18MqEboZCr1qyU179J1UbtuYYSgPKpmJqDqkS1ThphxrV9Jankbgnyo2QBrN0VmSCF+iZCDikVtRb99ukv88Qv4nRqemnDEfP5YFBOGKcrA+YpZghYAUpbAPrX70Q/W9eLSJPpYuMI6RKltyjI0BLmOvHwOselhCZTGA/Dn9qITXpKg9iSA72SB19449oEI/hqEKtofd7t/k4ynmcvEtlLnh11iKISVYpmjmPXh6BhdKtwhfPn34ZZKmvCLQr+MOxk43FuiiHLcS4v/L9Kc9msWaVzqlFulhNn/LKm1i3wAKQNNBIvVqiSoQVCIG3PLZlkMZBcYRIDnw8RzExB5fsTMtFUOZq9pcMioigwNDtofu6l5E5v7ih1azstHMlUylK1hXsu6DSUMgKkVVY6XVz/PINLLMQ69UoGmXDlntcYgfL4AFXVMK5ftt6gK032AhRdrPwmRrdSznpB1hqxODPzaL9jbEUqAKPE83b8t/uelZv3MA9fzd2n7o3ZuoQpqTpshdSUkIpBOzg23CorEXNtoTzRKrDCDbxtDgiF7YT6l7B2hcNAPP6y9FSo7dfn22m0aD60CLUbvZvH93f/aUIdlzpDFyMOGVfhjoV8ChyNC5SyX2DIGj2DgVa0T3zm8cOFN/OyAGJxkvml9Qvx9HQtSdonBd5EnnqVzzrfwtKzoWVxpzdUwwvZk1EZYJpJ6EjawXq1I9t3mbh3Xwyi+KFNw63y6boWEsUa0NeGQJfFk/65l66l9FVXa9LYBWdXruMgYwGww0A1bgZdFXNtcN+FdiXi8fEUeLYms8UWyHg7eWQHZIR6F10f4x2fCxHl6qb7M24teuYg4ZM8IW5ENeo7pjuaEAMntrnjp1UWohDKpMjCU1bb7/pg/DAJWxNJAS8dGs3w6fscqXeQSvKZlTeNQ2NQDMcsl9lqsyllVbbLksZBYIVH+xpzVuZm93MsjXAn3Ll+Trpfck9DndWQLFdb5n8HG6p11sPagaudfHL/rDXQ7oMx4u84UZPIvW5zc/f2Crvq5CdPa6nWQHRDs6I7mBcDo0EzQCYMH7sp42YTMGOlGh6GjJkMuVEkmJELXvjzJHxbYvYOi5v0DiV52XeRAXrhmXiA8dZUY1fxZSFpRzBc/e/f5aKRn8XXn77adaDrTu3LMxN3YlcT3dOvNI1WhBac0KNFS8ogp3DYGfI6bIIA0VkeusxG7yahoSusCE/UWkI2CKibNSQRmn7waeykcCXIPvbME2sJOyeibBNsLSJjdKtuspPhnFHXcnjMVeROZQfrPPK5xN0ccnug/mnbgPUtvftAjxEnHfKQPB7YDE1jq8py8VfqSa0I76XJipP/Q9QKSO57MpebixUJbnsxeaMDu3B9au0FVzz/JZl7TXwd9IPl+GO6IOI9HX2hzCHKTc7nkvbU6E+1+79sZNzbPZ5Vnhvr/PhnX1/PJWSiLX30YrdiEfDbAZUi7YFBwEcpXg802CFJBTQuDX2qjMhGASl1rsiD/BGbGeNEjJgusFESoHokRcSx6JD89oC6eEz4S8f4uNR6sRQ7f08jR3KwkFM9Gi7EAH3zhfNZdABtdidErmPMPKG311Cwiy9VeK+lre3wECdthkXGy/7dE5/+szxCQDflcvBAHoSYopUbHUmh7wGjF7tLiW7rDh7suItVf5LN+LkXCxZ0pza+tyfZshKWxCj8dBjAOgJUaWqKCCAYPyaw5df7S14avo5gGhAQ/FlMqr2zQBr1IR13Dw1J4hJOTWQdYPcPwxZGKBoB/pOQ7AItnqBuY2hPqdcQITivIUtgyhpUCGF8xbkQaJCWv5gVHVLUsqmzzMpXlthlpIj3g7EtCrLfrKZsOrYbOdny5kN2kOUdSI3coBc6JdHzrb+3nP2jhA38Qnd2krSewhoCps38dDCnBs2uZNHMctMCxS6kBJ3/hKZbbTDo+mJEmTKgy+soZewgwFqHea0uIlVHpEX1pi7CJy++6GZwisI5fDT+a/CUWzKGUeQRaqGR/4xMHown9VAdwktms0O1Svh9D+X5ZggrZ32ABxcsnfSXdnwE89SdyReucw8n4Bw/41vH+n4vhpVH7ZFa2hJgAngrBhBxcr0GevH9wMvvyunI7rQOH0AprxpQuQDROin5u5y7hr9xKJwBByDOSo=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bpRJPQe2daKFQz+q8VxAhvMHvwcMZFFYmGSLf2vB7k8c2Xu9GPURB5ij3v/wKaI/NjPp83yQamMNrBJaxxhVj3aOzlY5raGhuDnagEawL783+nBeG7qr/0+Ag7bmszJ8q8YFyGd5HLo6jhvqTsiKf/QYiyuNY8ghHPxVkM+6zHc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9513f8a4-6a13-be7d-f08b-69a585aa84de" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9513f8a4-6a13-be7d-f08b-69a585aa84de"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>jXebFWNl1xJRFPqifl+/1MvO7y8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>OvrW6/NI1NEvUSbPl+H2oEnYLyhfXd3r3IaofkwiqpoguzNJPkxWk0UaCaxBMZH/xHvTzpEOLns+1SA+0wt9NvLxm0pNzLxKPUsTCroPgDfwED9tYcOmQHI/I7WnQTWfb0h9d05VsFStYLWdm7s+s8CKOFX0yYq81PAcyo6xdMs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>sXB/EVgkGSIxLFjXgXl3QhPEHUCh6H0Pf5iMbL8tKX5Xm/Wg+rBGnn4LigS3x21hrcl472OIOuiyBM2e6p9THprC5wxHlQBBKQQ/eVOCy7FiKEbaxQcKGBm+6NYfUv/zOCR+YvGbTC4gLwKzv4Y3kbcY8QNDDYmDvbAqKOUPuNc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>sJkrr3A55Q0tDdYEYJE1xOjMw7r8wcKnMhaBnkXnmwL6wndxOMpV7pXFU7sEihq2wAWNQGkOTJhHci0+SPjdMhuvXOJVqHO1ZZZoBJdQPIVQ3x2X0Z4oKH6OpfETQUhqF2Cm/4SkvNakutlJPi4Mtx8i75bmEUmlA4hy/nI72tqkD/Ej+yzeMXwnMOoAHfYi7+ySRG+gnG0i4/X0ovSexE/wqtbt6WaN7t/ePB4lYOBd0rKGdWc3hVM3S40fZ3wl/+/JFkDOQiQEXuMImXQRzYB1YfxqIhd2KYTiRVk0/QHI3fycLwgv4Xr2RfrZrSyrjF6xYog+F15NehJPy5sOvxVhb54b1GXFlzRw90LQzHCaw/2rutUoUH6nI0c7ltRmMrzugrsr+vVSjleuhe01EqT2xDT4kSbjkr3VTyvmRn5BKTFgDD5GAGnfE6IV4U70Wf6ZRAqvfRJbvILCwSwSc8Rw6ygSKhieIzv67ygDtM7vLDaYdVwM0IybvA4cCSh7hbDcfzlpPDPWsMPVGnlNLx3YRYlrjX78wqcBytAC++V8d6oriqxYTXwu2kGmjw8SV+mns9Vfm+z1VxyXCgMVhC/8hxMEII8/BtLl93o11tAv2338go27MeZkMBoA4lD/E+UADqMXFHrogZeoP3a2QW+KAGtIuUz2lg22mY6yKOJYJR8H0H9eQx0e6CLYfZJ+dSmKg4g1k99pJ6EZnr1vgSRpw7XavW2c1qgrx9FBx+cP219o0ccKO09I1b+ywEPqcIH18MqEboZCr1qyU179J1UbtuYYSgPKpmJqDqkS1ThphxrV9Jankbgnyo2QBrN0VmSCF+iZCDikVtRb99ukv88Qv4nRqemnDEfP5YFBOGKcrA+YpZghYAUpbAPrX70Q/W9eLSJPpYuMI6RKltyjI0BLmOvHwOselhCZTGA/Dn9qITXpKg9iSA72SB19449oEI/hqEKtofd7t/k4ynmcvEtlLnh11iKISVYpmjmPXh6BhdKtwhfPn34ZZKmvCLQr+MOxk43FuiiHLcS4v/L9Kc9msWaVzqlFulhNn/LKm1i3wAKQNNBIvVqiSoQVCIG3PLZlkMZBcYRIDnw8RzExB5fsTMtFUOZq9pcMioigwNDtofu6l5E5v7ih1azstHMlUylK1hXsu6DSUMgKkVVY6XVz/PINLLMQ69UoGmXDlntcYgfL4AFXVMK5ftt6gK032AhRdrPwmRrdSznpB1hqxODPzaL9jbEUqAKPE83b8t/uelZv3MA9fzd2n7o3ZuoQpqTpshdSUkIpBOzg23CorEXNtoTzRKrDCDbxtDgiF7YT6l7B2hcNAPP6y9FSo7dfn22m0aD60CLUbvZvH93f/aUIdlzpDFyMOGVfhjoV8ChyNC5SyX2DIGj2DgVa0T3zm8cOFN/OyAGJxkvml9Qvx9HQtSdonBd5EnnqVzzrfwtKzoWVxpzdUwwvZk1EZYJpJ6EjawXq1I9t3mbh3Xwyi+KFNw63y6boWEsUa0NeGQJfFk/65l66l9FVXa9LYBWdXruMgYwGww0A1bgZdFXNtcN+FdiXi8fEUeLYms8UWyHg7eWQHZIR6F10f4x2fCxHl6qb7M24teuYg4ZM8IW5ENeo7pjuaEAMntrnjp1UWohDKpMjCU1bb7/pg/DAJWxNJAS8dGs3w6fscqXeQSvKZlTeNQ2NQDMcsl9lqsyllVbbLksZBYIVH+xpzVuZm93MsjXAn3Ll+Trpfck9DndWQLFdb5n8HG6p11sPagaudfHL/rDXQ7oMx4u84UZPIvW5zc/f2Crvq5CdPa6nWQHRDs6I7mBcDo0EzQCYMH7sp42YTMGOlGh6GjJkMuVEkmJELXvjzJHxbYvYOi5v0DiV52XeRAXrhmXiA8dZUY1fxZSFpRzBc/e/f5aKRn8XXn77adaDrTu3LMxN3YlcT3dOvNI1WhBac0KNFS8ogp3DYGfI6bIIA0VkeusxG7yahoSusCE/UWkI2CKibNSQRmn7waeykcCXIPvbME2sJOyeibBNsLSJjdKtuspPhnFHXcnjMVeROZQfrPPK5xN0ccnug/mnbgPUtvftAjxEnHfKQPB7YDE1jq8py8VfqSa0I76XJipP/Q9QKSO57MpebixUJbnsxeaMDu3B9au0FVzz/JZl7TXwd9IPl+GO6IOI9HX2hzCHKTc7nkvbU6E+1+79sZNzbPZ5Vnhvr/PhnX1/PJWSiLX30YrdiEfDbAZUi7YFBwEcpXg802CFJBTQuDX2qjMhGASl1rsiD/BGbGeNEjJgusFESoHokRcSx6JD89oC6eEz4S8f4uNR6sRQ7f08jR3KwkFM9Gi7EAH3zhfNZdABtdidErmPMPKG311Cwiy9VeK+lre3wECdthkXGy/7dE5/+szxCQDflcvBAHoSYopUbHUmh7wGjF7tLiW7rDh7suItVf5LN+LkXCxZ0pza+tyfZshKWxCj8dBjAOgJUaWqKCCAYPyaw5df7S14avo5gGhAQ/FlMqr2zQBr1IR13Dw1J4hJOTWQdYPcPwxZGKBoB/pOQ7AItnqBuY2hPqdcQITivIUtgyhpUCGF8xbkQaJCWv5gVHVLUsqmzzMpXlthlpIj3g7EtCrLfrKZsOrYbOdny5kN2kOUdSI3coBc6JdHzrb+3nP2jhA38Qnd2krSewhoCps38dDCnBs2uZNHMctMCxS6kBJ3/hKZbbTDo+mJEmTKgy+soZewgwFqHea0uIlVHpEX1pi7CJy++6GZwisI5fDT+a/CUWzKGUeQRaqGR/4xMHown9VAdwktms0O1Svh9D+X5ZggrZ32ABxcsnfSXdnwE89SdyReucw8n4Bw/41vH+n4vhpVH7ZFa2hJgAngrBhBxcr0GevH9wMvvyunI7rQOH0AprxpQuQDROin5u5y7hr9xKJwBByDOSo=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx21a47ad5-5cd1-7a6c-5e48-e2522031c45b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx21a47ad5-5cd1-7a6c-5e48-e2522031c45b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>t9nvrYWFouaeZUN48WofoFRgC4U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>KEKPh/KdTS9tDA6uzc7t531h3FejwkwuO4m7n8DfJjsn875aXmZrJzV7+96AoUGBYSjSPuR6ax8eqFKDIjBeCIs2kAcqvTMdmMNpPswf1fkcYFFBSC8L5SuH/UIO3wiKZz4C91pRH5iv/K3i4SzCtcKl5ub7w4TzwGJcUNRhwzs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bpRJPQe2daKFQz+q8VxAhvMHvwcMZFFYmGSLf2vB7k8c2Xu9GPURB5ij3v/wKaI/NjPp83yQamMNrBJaxxhVj3aOzlY5raGhuDnagEawL783+nBeG7qr/0+Ag7bmszJ8q8YFyGd5HLo6jhvqTsiKf/QYiyuNY8ghHPxVkM+6zHc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>