Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxbab31a04-a835-dbe0-8944-d9b7191f5e07" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbab31a04-a835-dbe0-8944-d9b7191f5e07"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>j2qzYm0LzfFakoz8Vvv4QB6RpQc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>0Eo2p7+6/e2ZC4IhQU8ZoSPaTL4rMStqIqFypWuVEJj93ukUaEO1bbINVJWxmzQizskluzgPpc84vI+Qg3/4HuvmpjM38Es8uj+dVyftm4y4KYlZzXt8lmEKMilfvF/HUHDN5aWoYXN2sFBUDh2pHCbfIv8jc8gXnNqAcxgZoac=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5713f72d-67c4-0e40-121f-032a44f7033d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5713f72d-67c4-0e40-121f-032a44f7033d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>AJeHyhv/Es0iCAtLas0WvmuWkXQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Dlnv23GRv6bNo4nyEx7s8cM2fiBWbSFSpOuh3cmPIPkKW2s04H+VO9zG09Ig9eXRLXvknf+MF565JTFgrJcLYYoOpJvcukia1gHaSpDmbRXFFG7EiYh7FF4wyW+K41nGU+HvTl9FFLKBCrfvvmUmqbSvNyoQnC9L3gAaHZ4ErhE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxf041bf91-546a-7fbb-41a8-fb8bb483c6c4" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf041bf91-546a-7fbb-41a8-fb8bb483c6c4"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>fa35jvNW0zmxFDYDaZeBtjvaWFI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tbnJUpQQm3715SOQB1jqlggwf+9vkTPCTa/blSoha2kwfPcSf2qB0Go5sl1CPKy/OVv7IBWGEAMmfR9ty2jElKwvi4fjsw1qmoLU9ZmVQIvGSTG0mJkk3Am8NMDvM84mCkRA+/f/h6okYyv/FyA8UpGwk4b5bOQ+d0VHzGhXxm4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9e957d75-72fa-9cdf-0975-22c62646135c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9e957d75-72fa-9cdf-0975-22c62646135c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>bK4PZrlgQUnhmMWzU63F4dlEe5s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GwZh/5gpyUQhG1XQw0SSR+zLYpD0emBAXsvQIeVeoTiZqQLdGVzdFURhxkwcdBToFo2irYkdefpPcyMRSBAjC4mGCl5DUCnBl3VIlRS3waa4vhXQ4eY0Ij8RexI/n8sqbAOQicSopZ5CSmn29hzQcH8RavehjGXFD5PKwwtYbwc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YNT/cQ3Oo0b5xRoqFfVp7E8O/RVgJbl+frYbHG7e5E1L/o8YhGkyIMGEnjwTr2tdGaF9akeKxCWPxJIzMBxKqr3OlPAz3NkiMFp6Y/5OVQYNdAgQHBFrigLQahh2/0zLfJu6HsPn8K0k3VHl8YDtGqIIdGKlXwtf4oTuse0Wry4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>OTlpMXBb2yQtY/7N6feuBX9xxK9Z+At3gOm/UItssKLWFxiFvUOw41E8IdrjHegIVlfYL1ubZnBCt86W/c0w8Ioiv73B94uDWb1OsuL6fsd7BwiHbHv16HfZV6wmO+p5H250ehGq56AUDfUh0fjMljHB7sgVYyy6lawl6Qazwrg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx40a90dbd-ac15-eddc-6fd1-10ce45e4da80" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx40a90dbd-ac15-eddc-6fd1-10ce45e4da80"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0C3tX9B9IS+jQJlfUsMjudXh0Rs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>nHUCbQqf4sRm/xCO1U6syc1AY4cp68SHc/0D6/q8tsPOKBSt7dMf4VFTBKgOQIS59r2qiKn5x7QK2MGI8tB61GtPLxAsEy2LISeE1mYt9xonUu6rQYzcQegF/nwxdj4+fn6eM6vNqwvXonUSSvGzn8TEMnAjytLdSqvh7v1YmIk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>YNT/cQ3Oo0b5xRoqFfVp7E8O/RVgJbl+frYbHG7e5E1L/o8YhGkyIMGEnjwTr2tdGaF9akeKxCWPxJIzMBxKqr3OlPAz3NkiMFp6Y/5OVQYNdAgQHBFrigLQahh2/0zLfJu6HsPn8K0k3VHl8YDtGqIIdGKlXwtf4oTuse0Wry4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe580b4c5-e6ca-d5b4-0921-9b9a23f07328" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe580b4c5-e6ca-d5b4-0921-9b9a23f07328"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>dYbJiSmMs83urtr/P8XtnoLbJDI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IKjOqTbMwD6OOoe4Ew06t9x9vKVFEw7xQl1x7diPTLtsJu8fxlorEyWvwmiE9WHFV1TXPsZLQhOM/I0o9NNbHR8dCf+pKh6nM0uRCYXn3QIW1I6l9g+ceCjWTJg19AWrUDDGE8k+S8XzQEik59k7euf4PACV9/HhP2cH4u7Gb0Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>OTlpMXBb2yQtY/7N6feuBX9xxK9Z+At3gOm/UItssKLWFxiFvUOw41E8IdrjHegIVlfYL1ubZnBCt86W/c0w8Ioiv73B94uDWb1OsuL6fsd7BwiHbHv16HfZV6wmO+p5H250ehGq56AUDfUh0fjMljHB7sgVYyy6lawl6Qazwrg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>5EbnnotVCGDcF5T7FfmWbnzPoOQDQxCYjMgYAbGQhw5MQ0t0J+RwxRZZa9L86CnDFGFXJY/t1eeAnwcyi6IHqoT/gBslelM1eef+ZcieqdsvihqIJ0Lm3ZiRgJCoHZ837vXcFjwyqW7OrFHBQcuIwwLT0dk0ZMbRWTQurzCfGztZZpmL2GNdwk0u5L2bwdSBhfSNGrGU7PGvfqdg+ZD2Kpxrta4RLkuxgsmGi2QAf4o7hQm4sfw8jJfPU0dw8DpdwcI/hawb8VA5xAJVtwnWISanCfqZDnq5Tpodn+gl9FphrCcN2t9Q3LE0mUyOwOCSthq7ywkkayfTwi7iLeyciluHfCFxp//1WXIMgUNgPBucGaZ+GptmhFqvAbXyXxBs6scFwoIj39JoCGREnwAKu+sb2T+wR1Wbnqks9OtSa36SH1fsid/Dajc4DefulXdNBHHDMEdwdz4WcrtIrRDxNMZstmQDBaUplSW5sOpTHzk9w4Ytb0jqwgjOrEdvHZJ6d/YsXgEgwYP/Cc86Pj0mW7ZpfqbYtoRh4ARB4es7dS7z9tJ4vZj6ynnxiw0qEswnSxXBayy7ETBKV5exS2szO8GYg0jFhAjcGcp1SwzQPzrAnwl8yhjIgn1LLEKpBhMFYAifv6Aral3c0E2BaOnR+6Kp8o9SCc4Jed/W8xe81ojTeFiOX2Q7aL5aBkQOEc6U0iTNXjFcgNwceW0Ihqtaoo9wnEdhyvqgAJZ2LNmY/8dtow1Mt+Bn8hmN3EL6K+2FwehVbhoQbe+rBSSsOkUSyfLr/P3lq6MjdM2omVflW4qe2wcoY6ZGudtI66bMep3R9DRpnyx444NIRjlyJTZ6m3zFX1iMQvkyN9Gc/nzIVWogxxgzoJz9a0AubMttXamfFF8GQLygOblTn9HHY2sirn2aWapBHnvheq4vW4zRO+fGMUfjpEKjnqp3w2/7eGdpX/EPD1MFcJ7wxlW8tJ0VrFvqdlpnSU8PyD9xewxdl0pCSbkZ/sHqDLQPddpSBCLMJkCjoNLNkRTzIUgO7b3BpW888gIwT8I8+PM16vxv/cPI4ibZQc3pertO2nLcKpE5Fq9NN2bM7iw7diLK8SQJQ7E3gnR9mnnDn5go384BzaQBqv6XvRLbAXgW8+0gMP+nMai8Q6Gpsz7aTGPdljoQ3awHONQmwGHInBEZUT77ymOm/iExkL1REMF57XTD6kB34XjScLG+hCbQmijhRazSes6sFxu4siG4/pkRr+B2gbBhUgM4G1vXJvJ0LepEGTZ9K4e861WFX+G1Mw0VNAZQMDYOCBHxHOf0f+Q7Gv0ocpS438bWfjm+MCl4DZw2dsXeYIHGp1h/8vD07cTEcnh6gw/macoeXOm5waGm2XxUJnYQNlWSBlqzF0qlsDvaduXFbmGz9w/9vH7paOTCFTTQKUj8Cm2lrq4r8lS194Y5gIyEsw43ho81h6xF/n3e4MuaRYUWlf92X4WZRW8lGs6w0/kOM7vhCzqu7j5FGQOr0HejiV+ERy9ASL+Knrf/N4ezzBDU8YEOGm6NUmjDNJvZXg0d+v2fI4uPyyhMFXzgdbyV1Vmt9mXrkxpLTGd+7qp9lEt/gkAsmEygX1FqpTsCgKzPO6dtdD2mA8XACbnwAt04RFwUKnoggx74m2aNKf2KQNxuXVOmLZ44BqGwo93Z+LNfs/isgZgiAsfuSV1jSp9uwheX/YarK6vqRDxEs5ST2qBcXc0z0prASMhRSFoweoVJ4RKaJq00t1BHWufHAJmO3PK7+IuOO+FsSqbPpLvgwPpDoyrFYUvJxmsJSc4cielp5P6sULUn5wEipM3EjdsTv1OTEa886y+lRO6rqQuP/HWsoLwFx9+hXixHOcawTlyW5Rou9e+0kqIIYmY9s48VHMCpm2se3YfDb9+Yin6wEY8s6lNb+Px4VkELpr6Jb+0BzOB1++Vja9YQTsCW+gOq1aC2NeDC9dARLNbGW1rs482lYpZb4tcIdbh1CzvO9gcyG7yhE4F3rmxhBR7tZh5tNlm7LvvFOmUn7ft0YE5Spqc8Cql5H5F4o2+3KASVLa1ox8TNOAmO0GsjQ78IIDmOD1GI9rhcLYRdHZHakk4XbnKzQKBCcoqmOwUtT15gMnaKTbL/gDIg1dgDi0ndHUSY6X94qAbQHgQwLVNPO6bQP5ApzyXfyQXJV86BV24cCz+5mL8wt+2tt7OcxjmojbOSS+LWdtjrB/EFWDC/vy/FMxU39QsHfKYv9UsWvjmEAMRGD5r/yEGU95l3J4ejD1wUipiLJjwepQIRUeWmLaafYbsxXmB17JbSLPHP9Wz6Xfe/EcuMxmdnyRf43BZlDTjM+mSFQB0FqR+rALnZPYqF4TrsTbz6AJn0gl3zRqQsUP2zhsdSBoMo3/8W+RvfA+24MBqw3raCqbAjvo0DPGHbjYK4Im0yJFabKdDlfVO4MCiMJfydEhGNdVntb9YDxrmXQ4GoDdeVYAy6Q6w5ZVVKT1VhdEd9HjRypNOvrxD+WhfkxgUrNEWVxpBCEdTdQNojYte/sk4a3IcEx7u0CcbTYzEzrmVtUhbyohxnwqX4pvPVOTt1C6Y2zaXYVeX4aI+CyJebMgbjqHGkpP5mjlKyR1FSc/6HzL4KtMeINmYGzVzM3bIN4WoDh8a6ehRWfL6CNTwMMJVqYElp+6MUKnoYOb8yIH0l8c2Zj2TYMakSN+wN521/Tx5CkeRuQILTiv7GxzUPs/7+EU4Zws2w58O0gUcZe+bGp1bL0B7H5pM/PbzSv5GtFQ6+wZDZyz5uQSZWwlUrhq2TfW7JMPNDWdcLxzwoa8s0ipQzQdr7yXF8UDuQJNcttX0WQS0ji4w/mefWLiCWqTtpTw7NPZ1MK9qI53UvZwxVRUKuFLVBjP66DGPDv3xEuyo4NAk9lyg3n/ffvuNmmmskmVK59lTlTfQNYp2kdsh4xgzh5S2qhwMbMJ5Fzp9IPt9wtYPo5iE9N5tr5QmWlYaqMKhdmmCLQCtQORcuYpEsoWtszGGNwejnBpBqjeyTqmZzxazdyUd7Fq/lxG97BkTlCnA8LfH275d8KAFT2fTZiF+cPn4jJ9g2LQqjSismPbGqojGo7MuHbw9Z9W8FVU+TDXTaq4XF69jjUA7DTo2p+7njfFSSLVLeBf/bfDRYmG4SX5aqtW3j/7bs/9EcN9q1xqsB5OMNH1Hf9UkXuTq/5sUtXT7CpWHY0MmnpMod3hxgfdZwrDZRdBreGXFhmayK1bsrhT7wz/DeAOF2b2dfSTC+KFfs+ALz+uLWyLKLoT9jnCCI97ux6ukheYqA+J66xuL9MuDzJTEXbZNmYsc+uumYx7u7OthscMx/AodxsrTcK+B3jmWTUgbjV3n11ufGqZ3nkb0K7Fi2YMdk+EHBz+ryH4ohrl7Vz/BOfo8R2V/cnByfCQT/6YNCl7C5tBnNoIdQhkq1Mtt2KMOIQsUIx8dyXGTWNHGvvnw56e7eU5Nf9UF6nHC6sSxxvorLIBjjFx48ufpimz6RJfpAR0hJFbGtwnR6QJYl0H22exhcJVISfIX3GPjdjt6XcnuKt+AwO/DMg1QCD/iczxJDEM43yspHFuw5SjLChnt5WQjkbwfKbG1XxUaOM8AvaEomQiKYx0IER7igMa2UQYk594qNiGhJgtYK1QXg1dTcNhuPvF59vumtToueNwQ5IZJ5Jw15cfNveE/2+unqLc9IndK3bwPiMvfRq6v/Ah+W0e0I42sfgv4HXVjPmvD43zN/SZroMcd2581IhRddWI3D8kFE87/kkPnzhtn8zkzDAOoL/UMZ0iTTaAqbVA0C0XyvFKdJUzdUn61TcJ4Y1Y+qv622K9Ow7kBFOTnl/zlbJrXg+f7YQZh34Uh5oGqPgvlgcpaezuZGwToYIFauzrDwcmFA7Aq2X7fpqAklg0+4t2hKn4iNG+CP8d7yeS6WVha6x/8cCwNiTd/vBP7ThSUBzwjDnSK39d0uRKKngdSRTVppjufgfmpIXobW8sntk+K78OVLYw2No0Hb/QLKeRcsWnxAIAJnpoaizZak/NJzEkiVoxRz4neFDPGnm4Qf1AUr7ac0iGJR6hQ9ssvYFqSFdcaHuLaCa4elaTOcxWVaz8v6wAoGmYMkpv+YD4tEX+794jbpMWDA3r/9MklwBhoJ5/odY+mb9/KAvrgq7/q9xrXt4MrdfAG8f46juOJoNEhwnwGAX805Mv93+U9ZxK7p3HISzFpE6Edak9skkA5yvUcIxy77ZDAGjiGhJuaRUAXtaUBfb1o3LZO1KEooUdsKMGz6SsOZqznQ2Mj3AGtkImdfHd+RiQ8t5E8mj20hGnOYvi2f9bCcD533LrUAj82HWjblmeqgqYH7GONu/RbK9Pvxoh2u7Pl7xG3nKugtWIngyY0/Hts3fg/39cZs407STj1FlNUv93aszWQMOzMiYnD7HMDVINyLr2sGhxNPHuMf0anuehKm9EHIOAHDc3B3P8J5POp6dFk6iI4xtF83w/YmbB3FMPXY3G0G/krTiQuz1uu25E94movOglac5H3wzxuoZglvmluEjHtckHdL4d6X59w+QoFl9gW9JgdCwxteWQbvmVvDC26rvfUV3YlZfaY+nmXUaP2HnuA//X2c2AvJqnTCj4zSj2Gv+rIyp3EsyNrljgUtD+U9+ZKuO8qa/Lkm1W1cgWDs5wyZYHM/TRQm/zQVQ719NhPFDkNEnHqGDaJs93h545Z5gElRJ5V+k3JAp210RwPidZTld8Qp5X6kEBTrhjJ4ydJpJ5qtXZ3OlMIoCy8Hcs/kAXcPRq0ZCxjNkGN2SpXlG0vos0PX37ujIlwuBw4Vz5oct8pSWcJ+t03KDSC9qJXuozCJgLcFYDERniGgEfmV55XPttbY/Y3CUoQ+7rDV8J6KpdFZ/VaV0tY8i5W7rUh33sNT8BTpVpZ7k/RheqoSIyTlih9ux1m1sf+W6nI7PoASn65GvoWI26laXtlwdnzu7glShGo3b3VLBUSWDVMqKpDdX0iF0nEG63/+R+I722qYf3cmknp0dupwPbbpm1B64V4jxo9MDeejOt07tc45nBzsIKcixDWpF6a5t8CRos0rX2KJYaCDdJyoksh0tlswmQs7dRlnEXRqWCBQDm44ygkzRP7LB6kiRMuu8HTp6FplyKBS6V1ij277PMYmPebxEJOVo5pkOSzw3nKigbP+551eF7UingEYNBCbGSGOPRqWkygYTRhVMU/XejQD2H/zGu/x992g4pHPIMrIXKAOuIx7MYzxNVZkGXfz5mb5yv7opt990avMAqX8IfgL8OUJydiCmxRA5gNge/y8ZdZwALqCWRc0V3DrhU7/fd6mig63YesrqO5vHSHMwrKXlPYtfv0SRntPj52RqU14RxtFfSJfYYRYmghMt6Yy41lC7hN08AluwdhfOrnrZpC4NINqjhM9xylker56gS4fLSAg35oh91DuYZMK3cj7x5qdaeqz+mk=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>