See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7b8312fc-2237-64d8-b376-2e1c235df6c3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7b8312fc-2237-64d8-b376-2e1c235df6c3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>TigXLbNt7JkifEZZiLUzFZMJH7s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>atGgITU313VD7Mj8VO2bGZAvMKA3DxHBRXRnHzhQLnJsa1KrsDcu+9ULhKSiv2lazvWfNuB1pcjAEn/8rg8GSvhuxIypfAIYgzPzUA+eOlQOzbjg9esOhskvg7jwZGPmShpQpbdVTukY47TIDXbgqewNunWLzFxFG2BBlfIj1Iw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4104b5ec-b863-9c80-5075-fbe554a1fa48" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4104b5ec-b863-9c80-5075-fbe554a1fa48"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>iFK3wSiRY8b5k/V0EaJuCNqOgIQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Z/xt5OiUPl/QRfu+9f1sdxw70uCN0rkErmJfC050+x7lq0GD6N2T1nCJybpdMKpnxLymeUPW+CAdEYdKlYiC+QlH8yavgmXtXmJeiQ+j69BXubarG7+ziEcwox1AVutyvdl9jUQUIOv+Oao+orFS+fkfffAtDcfaw3s+fyNeOpU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1db8a91a-0818-9b09-3f8e-d1574635c993" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1db8a91a-0818-9b09-3f8e-d1574635c993"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>XhCqQ6Z8WCVcc/WLAi7tn64Wbg0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>wrSUMIU0vmcM7KZTw9uc232mDJkxAqXCKqgIsznpSqB6cSuvrCP4G0U3xzmeK1P2I7gBpqh5Wsag87bfnH8v1GynLnHDM70jR8BV0UGUzVBt3CCAZ3o1Pmu8EzH4orulyjctX9CGVNVJM7oxfLiOD9NUtv3ReBZTwfuCjtaUok8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1d10ba57-abe9-c746-4e9b-466fa893805c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1d10ba57-abe9-c746-4e9b-466fa893805c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9jBHoSjnPbRch4lr9BTE545LIyA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Fi74TFhEdUbCxKo8aDMnrzMOAnVGgo004dh6vfVtOudSUxA4qkrKC6vY6jj1HkmleXhFn1O/dOKhXRy3qu39uTdC1n2SxRtoXti6CsYvADR6UCK+T31GWLDy+aNDonIC7eeLtt1B4ylfyyAO4KfkF/2Ef8SFqgfYZr1+N+RybLI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>SZhFNJgdAMrW+BqG2e1lvdlxp0G4QLhrEZpO9oZQRgAzZSCBcgbAZ/thZedg22isnA8K8RbbB90HJSxtODt3yMyDgckmOq5dZExF7XDit5BCPTuywQkoeA0FxXyvt3xQRXtKS/C5yzR1hXLJEcrm3RwEnjLMZ4DSv0IlSsol6yU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Vx32YVtglpLQRyOg7DH5yuK3Xy7pJE9wzMNW9aJF+WUxWrQVa7/GXBwXF8WEZg8p7xycJ59y1VfPtegXbdioYLMxBXV2SZVS9lxICr4jMj4GAG/rM/IFSWGeEbAL1XPjy1sZf+hVC25hXTL54siIp/471qiNaRFmhLVnizRCt2s=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx20f6186b-9f2b-bacf-e380-e1e4c244e05a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx20f6186b-9f2b-bacf-e380-e1e4c244e05a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>SWWzoGgQG72a1SQaYoi4jQrej+4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oGzXwl7UZsNyrqfowTzawIcifT/O5BvFiK/4nXxrDRr4/7bqLJat92gE8+9h6vz5/VfD5MFg3aLXD9PDz3qKeIyS1W/ENQpD9i4c0MBiDjX12ycJrFi8yS0oNrUmPXr8dv+JRwtW0JSs1FcrDTQeGEQmozFFBPxs7cT0zTJiCDI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>SZhFNJgdAMrW+BqG2e1lvdlxp0G4QLhrEZpO9oZQRgAzZSCBcgbAZ/thZedg22isnA8K8RbbB90HJSxtODt3yMyDgckmOq5dZExF7XDit5BCPTuywQkoeA0FxXyvt3xQRXtKS/C5yzR1hXLJEcrm3RwEnjLMZ4DSv0IlSsol6yU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0af5f264-d4d2-73b2-0ce6-785a6d18b5f3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0af5f264-d4d2-73b2-0ce6-785a6d18b5f3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>4lx00y3qyChxqXWluYKxB2m8T+w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TyEg8xCiEoy4+wCrQBOjkXqZUBTGTyNkzHy8QWZW8uBJvZU38dZotVJ2PpN1n/ExKXH4ymRO2YsqnI/kHE6cM2HCZonntb5bYPiG2eC7+eEAfJohQs0dZJFgQnzhsGhQkUHJjTdgw6jb0wp/CF5EkIB572EUorAtn64V2IOfJ4s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Vx32YVtglpLQRyOg7DH5yuK3Xy7pJE9wzMNW9aJF+WUxWrQVa7/GXBwXF8WEZg8p7xycJ59y1VfPtegXbdioYLMxBXV2SZVS9lxICr4jMj4GAG/rM/IFSWGeEbAL1XPjy1sZf+hVC25hXTL54siIp/471qiNaRFmhLVnizRCt2s=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>KGGwu0b9UfRICPs3zNyzEgy75j566T+53TyE75HyTdnxzTHo/tlDdISkwhl3nty2z/l3LWVm93V3ZiaSvfDcGpyc3jCdOHNYHObI6zyP2r4YmZK66JEpNEfppiIvaiLBkBUTx2byNKYFDYQg+sR/tz7/ml4ht2yCJ/YW66HYn0RFyKHcM1kG/TCr9giBGaTKaksYKKCiPGl5IpBPF3rWPCx7p6/EOZdOV7Q4txauNuoCDgffsj5CkV129Ec7S4sgIjnkN1Qkz7v1ooB0pnOYj8IkHG1jz8WJGoxoEKzMtnWoptPg5Z3/PZfYMBMXmdMWnZs7hibzVxK1tXoTEtVi/pG27DtkXv4lF7fqXpV+7ue2xqVrCTNv3N55SxhpEJNkalLp/VNp/xcViDbDWLHY9S29oiomBOGDI/Bdc1d3ySCrFFMz6RZaMTB5LKIi1Uf04ZFDuBpicOcosCpx80184EnN8Xk/1dRlzv0hqyZ3CbRiIeZLLNeV+ad5FOQ1+ilKpbnVbi7d6R1JT5U0rNQbQmIAs3YcquCXN0jrqm4+3BHt4zZNzyupi2bf7OkhGPOsUqpZUrn10K0iXks2uCrLUM9zcZX10VEY7xEM8w0vyobfQmXlr4KSKTwCCQ7Tgi8ueTwP2z+lI/H9uEOsjCEqjZn0DC6s8lK4iR3LqY17MLQhhppGWzKgHNZopz9vfWY/iFo6+diSRCJW8919Cy/AnizLjUe8KGgx6cle3zhC7Msf1+KIGhJCQqxR1lDmv2jbyvzxesJjC9xtGw1BTnupAJ2ufthAFKe3gb2j6vf8kPMv06qT8VHgnkRc4ekFPB3TqMmBIJyyYOvNOTvB40YtorZlLEgSuWgA/8/OnURZRHb0rK/lIp1VDM0HvUONumT1aljbym1XX2q6c9Qsa15BohWaQeQIob21oUjiWhbLRMcrdIFaYZsZKXfTjweh6k9sVceG8tH/oOcPGCgZhDOZvDn4poZP2WZZEdomkmthUU6kSHF9CvwogdJrvqupuFbrZkal1H/irxjVTYDaaPKp14iAEXmN9K3E5MzqvMwwxjjnsoVMdccAJM9S9NfozRELXfFtdXbacmww66S2sdNZPrJioeL8LOm3rcbFwCi9Syjw8fmUDzXQGOZLbwairpOn2O7sbzwFJXxXn1+xqeAIE+auaF23RQvjO+YmslRZYjQTSmpGRZbBXq58kSnc320FpUtbRWAU3g+prisVaGtLkg1oo85JHw3v7FG/euQHK3daJQp/DXv9A3FdlbICu+7xXkx/hNqaBo0uVmX2p09vI+rmuIWSojAcQmcbBes6N/Dv+A5w2NYVlkaPhWlHHQyos6p3wMKT6uzrjqEBjo6kn65PFZv+xtRVaPUprQa/11o1WCaKJS/BeTHkwWKKb5r6kB2e4YRC0l+DP9/EM7zorvRqxWhzVf0DCulgIYDlLSeCFy/WHg27DCYPb7MFyYttEeQJIo+Sh3PQ4U2LbO0Md1uuqMwgV+wfKI47Zlxq6VUdWR4tsJIBjDd6yhA8lHZHn09OVGqP65nu4khL52xkUFaXRhw9ueMwKgyuryZHOZrPjnpst7QpiLvMdZ8TyXi7Al+SEMnWiSUoeVTjDyQnEfLsvjWzmBpUUcd9Igne1VAa1Cs0jWwj+2hkHloznui76Z8+BpL8xcem5KWr8OZbCO+eN1tSWVmF4oUnDevArOPTyt25/vu4H8SPj47V6ehJWJl279bxSSxa0qbgrTV3Un2BShfUjLMx/CP4jqxsMGc9LpSUmQz2/fVEwZhjirSAnCobzCACO5q+TUOgMT6bQ0V68uXz0nVy5TO1m/tnmeatSNGIOAH2+nVbt7kWRrjID1kmr5zpvI7/E9cf7BwqlyWkQk71SOOlw7zEeN40vf6ULNcGYIc0dUoalx1ySY80EX3tatcOV/5HKioc87/cp+q/SIRSWejkwnUVOqA4+EaCEv76mkHiOsZr3DGEQpQP7lpSBx8J6C9jQ63KmYwpal1gmjzFsFYGibbfu/5S6YJpdlT77/KQDTrCN9wlX5yQ8T4zuClft7FgUeHrwo62sY+omuUsDkf2lk9ilwLY3Wq52kH9QGgRaIZFeDQy/h/PP8ILAQHFnT9v10x0MK3zl2g7426czcH8HCLpXT9tasGjB/bLv7chTJtJQUeAQKn/p8g7ywtmC6IFV+0lXhUx6NS5OVHOxNr7kH/tdtyzKaF8w9XZB+sicFItQJo7334KbS1scTyZbmiJnao/bWdfF7TgwFszNgDjDuUTYgQ5Aj3Krba8jxxfppeXVv4d8XD79b+qsxTjBj3w+865nnDkIdK4IsRJD0L2dcOezSswI6P/iGTnRC5eZMd9lAND4yzmBUZbQ3ALKNkGQtK3O9wLBh5UzM98Hy3wmIqfDY+TLRE36aCWCRfI6m8iiwamiJK7UKa8ECsfQ9x/C1tcjQZNtEvrzj7BQ0nEG3PQnAlRAKDoK8HjbazfhGw9422fKJIUiyiZovYOTNFr1J9UryZoeoKRCx4eO7hSPCrdzui+2ZwG7dt4jzu/SNEgLw6vMR8JPzdbXWR2MMwPeY4l5UFkhkgDxqZdTHyj9LJ0gBqVREOfm/XzrExayPXXJfMA0p905Y6nmHGRQazCHS2kQbvOcnk7apJZvGMZ++Nye45DWs6b5154BaDaS6G5/WEpTv5lXFUvsiZQB4KH3ALaGYsesqNUc7BOR5hYMeWAmzwoCzzysyIjwDDJkUYRenL0yA77xxm4MuXt+sS/91MB9MkBVYwqORujKfwitFmXUyUY8ofW9Yx5VqEig8ieuBq9eFHe3LnXX/qHJj1+cCdQw+BpJ+ytyX0DhWcOrKOq327dSRy7+bLjzYrfLYCFgi8UEGaEq+UvH3/TR8tg6c3dHbikk5SYWe/hUbZvje9Eb1ghLASHw5/w4/M6w4VBdv+tPMlFnqcDsHKXZRPUvc+oqctFTOJsP6Vuc7qWDXQPw5cP6J69GfRGMmiCEAHc80HNgikrqBZ1ZINjjxeI+ugJ0w+Hf75D5pkbCWbYYB/qrj9thCa9+cn4f9NItha5E8mVmpve9PGMVaLABRzJuj5ugfzHkEy1yrRzLxsTUeyjKGRzHWImgh1isWch3tnXuFiawQ/Vvlv55r6lyFiWoQm5LzjaOA30kzE7sfvJyfjcDXYP0Kt5rwn0kW5oCRkalyRfz/0Uth7Tffvk9eRW2Q8hGdATdM2HSz27xb4OGskZh9h3BoIU1rJtaoIjxBIjoaYmTlE9MLG4mceOpZ7JV2T63OgrPTOh1FhjxZU45b5GwIRftL5Pn6YJ8KpQecgHgmjle/erG561coCTd9iEx+yfz7Yli5eUQfLXje2sQ35fI0j9Uzd+V3A2XYwMTqtI948wXEK5DAMAZzQPhr+4ALjfJ4Q9sTfgJPnZULWecw0Jv2xnpCSYm1slLfHH6OgHQaSoNosOrwvzNmbE+noLaHrJb5H6Q7WBmljvIFNsoUoglVZWqRI2ALJ9UAKMREFlUbmL3vGoluS0nemO75W6f7CcoTv6tLIfuU75c0316Y8OJVmqY5dAkd2cfa8ieBCaikhLjW5MmlazG4Aj8Ud3nE3Wby5cvqU3xlPJ2kiolwICcyx4/ExOfrzKXkpTGF2HWvfgID22M3mf7mJhIdk3L+vQ94Q7d8Ra6aW1jPV/F+RkbvYD5w4/OGluaa1Rpvb/cdo/XWLTZDV3i15XqrR3VDDuE+2JXZCiVC/2lCmr3ZU0W9XCKuavH19KqHYlwOcRWoNidzck4kJIVm0vc5WICe+6PXOO8CBt4YQZXaXzBsR/itu2BDCL5JhovySgSNTszQv+frgRpkeqZvCjMPy66BK+nwX5QbvVwjGo9Fx1Sj2qa+kVoEMudbWLSAvWxSZGLo3Vr3JInvydppmMU5PuTyWTAj6vRJnUnUPk0oWnUF7j3lZfzb9FDbJQqiVcmSIXA1Gy7DzHDBC5Uz3uAqq5NbSLOK0EwkazX8gAPVgdGqwQiL0ocDDOksYORB+qmHhn4UrvoJ5I3gKwqWclkCUEO9/dkE5uC0V58GcD0t+HHYsORXdmG4kwpNpMtgpTPL1FKSV6sJP9PhpAe69JjuJI/GV/RhOGeS0664GC+l3IkhObT+n2YbVIK1Qq2jGy56NeyvB4RqlRudmelO7uuElWcsm9i/eGPWrvSD0TeVlB4Zyh3nGhoyKozlWHqCz2IxVZPLsrtp+yXVAsiskdZWhnriVz1LYUd1z2HgxN5AzK7Jm4DhNAthsqpHLgQ6hp19SxHGg/YEKgnMkoATdyAG4CzvQKXJPRz2mz8pJNqID7Ywxm2PPlIuicEipe/tONSB/IEpHnVQOmihy6gZP3D6XuaZoQyAYJ5HwhJmw1QOzV0GIIf0pSsBOSD8dVFrxNXmgO0HbGuSaU2Q1bC6s9zhvLs+ZmxAhGUTbgnYQyiZp6DiyHcTjgQtYWsepSdPc3J6mM8KDui21dOjdMSRETLV0oqJpBRMRk84djG/hcs3hwolsH2SVITjgHqu2E2aPrhWLc29dCxOg1u1Xl4YVU8ZcSLXgAHXlUAmSmZkuuvq+C37NpAl/coB+J0IP4MM93oZWcdZRBovIWgwJ9XRfSGMBAZyv8tk3BKaHDp9tDE5FVRQusizHUMJpRgz0YZiXBheDXJOnvVM7VJOQ0zLayMHk7J0pZyKY5+43p2/nMpEgMpdASzNTlnG4YDmDggtIR19rrCZS6UkqPFn5cvMYruVFHgwsYXg2e7/NW2U5YJx/Vq8Um8auh4bLb3NZ9K6TUvjPU6reG/b9qzQ2nw3LQbCCJPYRwGuWcwHF/4a6aVPP96HzsWbLuR44q2mThzi6lsN2NXQnX9TaYXJyOrYsIzWxVcwWJpvuhL3gUhPwBFQE42bwauKXVeH5NMhzG50kPoSiN1IfI6c/CEykcJ8oTwKooH1E4EeME5sR3SyjXD0sZBRZHQh6nHjawwitmRgKDl3DGgKYEvWA0u/7iKK44INWwp33bmx6J6uphZ5LPPKPXOhCExmuiZ7SRIkgZyZjIOXrwYWoAkE9uX/c7VmwDkGFS63uMlpuv7AAeveV/avmv5j0Ln9lQ6F1OfmYF2RR3qXOOZefPQ1PMwqtUSPtRmTws4d0AAb8u/eNDti/cCtsU616JhIAir2GOU3qkP+vtR2ap0izM5fCedFXxfw/5GIfjQNI6s28m6sTMptqluO6YBEAJqWMVPbm4H2EU7cZ09G2rec2qDnZYzk+yIFK2Ap46KUizGGFQAezNDTeiOLg4jftG6nB6FvEcuJMSS/jN3NGu4k4CEtxtdqJSTHHNKGEHtTn06eP9U88ezUQvLnxjIDY3RH2rdBOKvU3uwjs0afjcuNvCzGzaMoubNn28Oom+obK5UA9o8+LimLQS4llfDUia9sr7M6Gde7Ugt6aBnad1IRyNXqJWrLUlWG82b5Lbvohfm8wlhTMA6bjM2LIFuiMnrz8jQB0=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>