Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx496f064a-210a-8a07-9e12-e2f32eb4487c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx496f064a-210a-8a07-9e12-e2f32eb4487c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lIEXucY6+mV5dwHNPsikyKbH5WU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>a5NwNA2UEMvBqDqkqFyo9huQGKc542sEZJmtRsLIx4+12UfIIwoSAmrJaZMSpElZsiG4G8CSHh1/i9e8EPKhdmyQYm0bFWk2xsLwxz6Qcm2GGJTfjL/sC+GJm6RRJrNSOWwROcfo2EHX/Urtwn/sYz1Xl6MezrN02fnXVuSN2WM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7b13573e-9309-9e58-c6ba-579172094808" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7b13573e-9309-9e58-c6ba-579172094808"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>snr6QQ3nPYIQEhL2RxIVXVB1E/c=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>i6/l0gIxQvNbg73a+hceay9cQDZddCa8SVZgndYptQdeLj9Vfi3Uxp9i7bABEMqAeOVmg+z9lKX9BVKJi7dOBED9Py7wsKZ1Wn2u7resp8OhBJ/OpRn5G3Ia37fQ2ae+Hkhv59uKgIy1HZ+nWS7JLhzeN3ZzmsMac/C/5YjL3Pk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx2af79e7c-0a19-875e-e45e-3fe7aa8b9df7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2af79e7c-0a19-875e-e45e-3fe7aa8b9df7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>MHhJWxs56kthMZABmF7wid+JdJ0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>d9rXvBy8+9zDjd+M1nK0UymXpqYktjqK1liYouYN5r4pL7cxNP6kDXSQH6vti6MsAv17Lb2HBRx1VJnmQxlbfKU/Eyzoat2bwuvE7oRjG6CFMjBDJZ0Em1u3VKFhTHJsH1rv2CjFymz99PYcDi4BYogLu/M8P1CuGCT/sKJmQq8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa02c72e4-e47b-6b1d-f8e9-3f20fe2ce073" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa02c72e4-e47b-6b1d-f8e9-3f20fe2ce073"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>e7PG+XyTAnLzql3aK2wbXWz+n/M=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>xHp6WvSpcuvIyoFgwk9DlV5UtwNFdKiHGZtX5yu3kD2Kib2nlc8d4ziR491xbwTfWWey/VTHWgVeGa+eYWqdskhSscT7B27XksGg3DnfgQQanp8WghxHezRUoBcYBa85biyTh2uzpwPwj1k/zb4OIS0CbnlvkIQOLXmJPYtSbzM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>AgPOeZvc4SS6OGf4oYCVvoLzt489bux5X+ZCmhYIhFrCyxjPe8HMQa51cTupgL/ERTh/LAvP2Rai2+Z3ykmQXhU8bBVtcq3mmdYcTmbhDh9BWvZQo1e68zsMsFR61ageVx2TkbyF+6FaHmSDp4RLDg5Jr4KJhIqAndCOI4949yY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>H8Sv6v/VFf3AqYPRy8EwPNlkEycn0esh3DZT4Qk5t8/RE6YXcf/txbJPJqhMLZHbaMdS0s9b0VoEFjEm+KOAMHwfQapHn6cq/OJIYc5DpsXKU1UANemHTgV/gws8H2MuehKaytuTNP2ZvO01t1fExyPukmVOuAfhE5cRMl0sFBs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx26ed7137-6f8e-6e44-9c06-07fe3dddd948" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx26ed7137-6f8e-6e44-9c06-07fe3dddd948"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QrxejyG75KcpLT+0f5vUwtsznKc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>d14wDGsFmKAPpMDvws/mBza2kC6jRYygyFUwKxabVPQIApb6NO6epNYsPLJ+i5qYPnE+CcYAy5B1uurES1lrh7R/O+QtpY1e6P8Vj+/fTnXzEQusoEkLn2pWMvrHOB2UAlvfZL1Cc1KjEnMVDfFVNSQQZFNwpJWC+t/7NLApgO8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>AgPOeZvc4SS6OGf4oYCVvoLzt489bux5X+ZCmhYIhFrCyxjPe8HMQa51cTupgL/ERTh/LAvP2Rai2+Z3ykmQXhU8bBVtcq3mmdYcTmbhDh9BWvZQo1e68zsMsFR61ageVx2TkbyF+6FaHmSDp4RLDg5Jr4KJhIqAndCOI4949yY=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>Txe1S+/oQ0m4Ptzbwf2sGTQ09bACjZSiO7zGfMtU/NIfmEgbkqQ/qeg99rq+S2JNGg8lICnhsyq0gSu4ECkz6xvG7+yMOO2ESM+udaR/sSmeYKGsDbwWBROW43Y9A+rtm+AoCsm9aW1SEp2kHz3VGb6a0EIgGzw2Rv/to3DgECNBhzdExcmdw9aGNVDeXF3/Mjgahz3tg0vRGViqLeoHMWpQFERN7gTbdgvH0OGUs/NHZnFaYH+aSXiBf6pvNWRwH6fw1iqBIOqYOspBM+dsqq67gwLiZnM971ZKDF0/18U/xziUwpY6rGGsfebZThQx7Dzha/io1QDKUSLAdrRJHuNu5xp+OtwLkEWtdqMQ7aGzVm9D1yPfrTrJ6lEs1lS4t0cHJViL0yBPpRAbx1FAGPOAWdBzUefDbSDy3wnJVJAkIPBNlw4t8wGZ8yA+HbtLqzIk7R2XFTzTSttuMcP2eeHZ156CLpeWw4XSwb4fRntqRIv/RqQ0k23DC23WH+PpcXIPbMV0uzfdz8XkMuK6oPhrWuvDN8Az5ihHhDpTdlOWu0pQvzPD2U12GrRpC/+u9A1HVIE2hH2BAVCJsiMttwDTKyuGK7MwTbNXMUmy7UtQIUhW2qPDIV7xwnAge1xG5sxPYuA3/Ubd1/BzkzszPP6RrcVOHy5iaE8p1AglYRHG2uAikWbwApCBvDtDyiUFFJzn4lTTkniwtFeVMAHVHriB/30p9LrjjM0sisC+SY0jBK04DmLzkRs2nswnbIahdj1wpmu3SBt0rHiCvO+eTXiL8nRj/yDDagZQD2P59FLU4wzLfGEWk9XbYurELeM2wLnnWMZmCoCL5s7ajz0ASUHafgKaH7hpBLHtPYnrwwmoZXQSbyzmq/igFI0wU+iB2PXnfu6seLfztwXMSp3doP7rhRzYY1cGh2uljlTQohDxIdnxb0A+QV2abatEUkWwLeoTSBjZpAcmqYxAfI5014yzzig4iro7Uy2ANUSGVeO3oCCb+BvFEcZ8wQavY3QaP6pA/UGqv0wwzuGnNL2LjizpzunPrcNRzTM/bdr6fwGbII7y4rInKE7P3GCKM4tiLMSgwhjKxatrl1vUdpUskLyXrpoclF0Nd50KBO+JG5qTD+NQBik9DyhBVrDoK4at3JhUKnja7YHlJhC/30pB/OqvZR9PLryjcIQQZKtmy0kyGUi6omgoU3mT2GpT2rtC9saFrnkyGCq2EWzFqyPG19IJFvdtpTyDTJ1BJFA84ZQiMFGrw5rGjhOhdMsr1YHG5f+07t2eZkvOL0i1BptV9FCunpoJM1saeCzY+4pAsecitZEk6zPHjJjylC5mAn79vaZZ45GaAUOhAZUAECYtvJLCheo58P3TALiXT8OXNsXgdDkGk+R/AmGKYAqVbDjnrbDzsCqzW6kcSTrDdi5IBNrbMwbiKH/ddmaFazTqWj2IYhpFJgvWeNcRlRdo3nZyPpcpmGzmox2+yQ72P02Zhy7+z+o199gVakVJ58C73edQrF0F2KorSYZND4WfBXwmaZZbh2rt8QYT2W4Mhlg/b6NI4nSy8soCuJDYO23H9sZsY457X0Rl4e+SF1s6cnx5RQsfEPv+JE5San8Tdj+HPsIOo4lyCdF2mKcTRwWshnZ0ns+Am16v8rVTzdLDEq0fjjrUNAEEmSgUD6CokFhSl0/OkXITylLrhcDWo0vBGJHUBJbHp4NCgvoT5IMph/07hJKoDgUxVNIpGlUxrSPuiqHWzF0CFFVz1QxIPcdWiNsemVbIis1MwKou3LSLNsr0XiBPkx+T/o4t8lDoJnHFAv00n31MRGndiXtu7VSJr9TqujA+mITj04474l+59e7VPDkwgTO4MEaEb4XtVZ/DYucV2ZKEpYRDxJQCm/HrOeT75jdEiwdzQfKVReElqp9DuBSs3RATz9JOlFWmI0rXDzt0VDKuLTYBkgUIa6mXwulZ6Wn1/q73JqiGKNmpOmLjkEAxHD9H2gqPeyQPcegT770LCN2vYZn8BRxN6Pp+HbU+4mrkmd5eL2V0jOEUwZIQL94GqQe+/9YZ49cgrKHUZrPyhcVzHQrKTp8rTE3UJo2n9sHI3sXUviTjcCtZL4OjRuIBm2g3fBxJMY4ZzL1AWjp27yqUQG1iBrAMhDPjPDNNoTGQEev/g/Dd+wNzRQ+0RgSyVmvYkLRCRD+Mx2oPPtKBCgTDD2JySzbkYiUpwo3YERR8hGXspTP/NnmgKWFNC2LlSwCvQofWSsuZ3ryJUNyAJCRa83dH12vhJYlvZGiZ32wpwyJ7YT2CkixlXOig4OD9YaMBtO2DKZjd+yeHumcFtDNyJ2YJJABZnE1iclnwsCUJZsOudn30QbeHLduPA66F687AiBm8ZNH7YQ/3kkzjnVexCy/V1xCXXWim35pNtWbP+iO7BrrqZja2hAX2oFW7ANX8wpRlK6xF+hqFngsu0Yyuo2y6qA9QO0fQtRMSaECYFO4ON01OjsVaqmzz5ryMs24sD3NsV2iTNLPlMFZCoWLbrRJwG189nsxafJXePA1qEa3FKYIeoPQxuLYmEy0QQTqfsKQL1fZsObBj1g7ORcHz1ezfJjIFAGYkkn8voTRlrlq16CuQY/Hjwnww6AdpVWeqau8Zqz4lkrlDvBu9XguI0e7ymHed+tLeK3HcBGo4mlYvpIxG+zN6qksy33G3JLnVcs4wGePeJlHwF5oxX2yUtAXYXgRfARf9oyrkY1DCwk4vtoSWNxnvuXZtHTPJszxAlSD4UYl1vvrIZIiO0ogdVEbONn/7b1XrE8Z/HqzEepE0RbEtu5Xd0dfaz4PO+oXpsdzsSnJpmObdPAv0W2oX1yYjuQMNd13mv6Kdtg4S4xvPsuufE0YWv+OLm0lIuFuaP4FTZUWLuEibhPboDHNdRiAvIs+6VFL47fk=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx53e086fa-cc6e-be6e-e3cc-7dc77247c430" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx53e086fa-cc6e-be6e-e3cc-7dc77247c430"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>MmFfzRotDuYWRJeoRO8g1+A94w0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IKoHmXzW/B5FqmZdIZ38CRd+rDN9JJ6AooOBK4a+VT8bUe6bg+2PbSenLZswPwAo/vQM72SlhYFb1pyFOTw95mkESBRNUyHkDCEvWFtdBuCvQpJcUTYnvZgt07+7Bpdp+kIOKPoQBCHG5yt9/BPnqRVBng86SdBBkJZbHN/Vgm4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>H8Sv6v/VFf3AqYPRy8EwPNlkEycn0esh3DZT4Qk5t8/RE6YXcf/txbJPJqhMLZHbaMdS0s9b0VoEFjEm+KOAMHwfQapHn6cq/OJIYc5DpsXKU1UANemHTgV/gws8H2MuehKaytuTNP2ZvO01t1fExyPukmVOuAfhE5cRMl0sFBs=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>2yxCwliUUISm2IornSGEXfoKDamdjeEDa2m+rS7HrttMSQ0E8W0RIM13q5fFbaTzpdrOw07ZzZ6359NA4+YxrHIgnfUGQS4OT0xFsY2JE6frNii0IvJkRQq65lnI3svCoki22vx2aiArXhXBQm16QmlhEST49MIDZcFhpIhsbDhYW3nY9ykxn7PoDTcRgUj/ABcP/glxVyDKqKgs+LnV+LPoPRTlO2JvDHaJ94IERD5teLYKS62s+58DU5zRxbb3TzlRxmMjhLkAT5uvSlB0bLS6E7ST9PA06yYgJ+UzIM7C6NjZZ9/vGX2i5lDyo7+BvX/gbmCJn0bXVPWK468lS7YGIAhIkwPbOlvVhEU9RaObWtudMBOcQk0tddrSby4u85MYmHpNK6fS5GohMBkm70m7XVuiE2j6RstgXwRnIjuMqqArwEa3MRD+0r6I2n2SMgZfUOXILLaIeFnTalSilsMISAleBEJPeedR9hXj0fqBfjurUOA35P+oSucgnsfnnxtHI0JFWMwiLuAAwmHkWViF/herWBzimWVjFeW6QnBMPIuFi2QvNudU0sQDFZHXzX42UuvtS8gUYANaWKCsYsXuvqB5HR2yqMQTl2T+eciaEooN/6Kv5w+w0emQZIxkl+YIaApOXSy/+wlWlySa+xoYEsdotTsItQ+gbSeMMbTALg+BsUe4NDbCcR9HDboyqWt1bRPMBg2sq/58wNRXINbdLRHoJ3XP2SbEm28XMgVCCrYrK4SZGHVI8OpKfGFlUq20ln5wd4ivSk/OcpI1NH+6HtTVKIgj6r0M/t6AkMqr8+hG830b9XlvsgVqO0ABnG6dIKS4kOPzVKREouAMY3u557+yFGhu4+chB6kp7bF5bY3VC7tGDOeMtKdmc6PI2yPvte+j0aCjp35uUz+eOLryTtWi8PbaXhUsYH1Pnszcmt8B1YqOvDIwbOlczfesl27kIqyCfS/x44X7lSWSPvDDl8Ovy7ucavh9JbOINMuFMgkI5ZzLYDbcr/15CUrAZxRqdx0ADfF0By3gJQugAUiB/p5VsmX2eeHFrZyf0y23p5w337A8IaI++vdfWRxDSoVyUACBNooajd0d2RBj7sNaVk9SeYDJQ94Pah9B84lZ6Au1fJZMJj40okwf2dbzgcp0rhKIVNw7idumJQjjY2ensYPvWpRVuABvmICWO8DuID9MOoDpV9N+T82fenevLmmFdXRA3M6Yrh7+kImpjWlz1oO3+kt/DREvvA93xTmn/4jYruqwDoAnDRnZoGb+wq0S7ZoNqFwN0xyFRVLN3QahX8EugLzhoQRJ/bWAo8+nOW4OZWEpSRKOXq1AL86ILcCY7/zKglaF1aGAP++EUCCx4kJb6v6Ew2UVoLl0LuLwewyVa4NK/yUDN9ZoubT73dAhLsLOYE0CMLfxQrbx3bEUrRuGbcYDyAy7zjp4czrj7oCp2tBu8mUN0SkADYFtyRFjN8w6K7tTLTt3u7BWyv2X0j1zrG/n5cTGZ36lOJmDPYyU+9/0xrim/yr1yTb2J3l2ZFG9wenEK5CI9QUirKEl9qtdt4M9WMaaHmS38GCJZtSjJtKUYc949Q0ovBpQGmE5I7e6lqc6YfNANtIWeJCfhMnGEppKP/ZM/KeIs1kcBblXdamuaUNDdT51pfh1fyh0og+Q5f2FlF1i/F+BfIbgQ0dkVuHSO7EaC+Mw4nBwGQEKJteHTKMFGSZjFTsbh2fb99MZvtq8NkZU0BpWPBrr7j1VwW39m5EYr0xRaMkosS3kQyV7khpK7X7K69INaOn+2xLKZ7X7Bsw0CHaTiLtSkOa1GFw+9idOmz8akkf5uJR6OZX7qYX7MZ0Y22i3c+MeXexPRfb8CAJrjeI5brDHAysjTkXEf57b6x8vMGYNeVuJO1WGqKB6jp4kCTYuRFJucg2FgA3zKGCKYPHzY++JgmOXfu7yCa0DHsyo37wTMMQ/PY7TDcUQFRw8mRezUOSyXmjERbjLWPbtn6zZDwq6EkuEP+xMhAAM5tVeDdHzbILopE8FBM7UykF7RqIdyT1ynfYJrWa9ojxwabunT/Ov9toKEDlMNWNxCvlU5Y+MqK82VIFbZrwo9tAICWz5WTMWhKE5PlEF54LwxjQCQ0kspDZ7M/Enh1voBars9FVW2NGZF27gVuSBLs/4klTOlbwytQ0WeasSCN8GgXKb+/3RIAgtYllvlNSOaaFvQzkSr5/D08wQlVFWHSWIys8u3W0osc951Mh1hQe6k2GMyDMld3fvm6EBxEE4PQIBzGS7r2zx1FLx19YpkB2b2oK9iI5D5IM/5p6GFzE7DyxW86EAGe8Oz1+yATN1e9uD6A2O0AUgVe792AxnuG6UW5MBhdgq9wGSKHTzRTq5oyp42PdBWkHhKXHfPnYJNN91yI5SO5plaPKa1XQBKLH0JMSlFySqhdJHDHXVrIcVFFu8DNjQ95EwMCZjyvHg+GOSK5nmbC38sLF9+W2mJoqTVJfGtoikskW63PmGuK+Xe6VLoYC5WvYxuNPutVMQthDWpwidlZ+uLTdtpSGevimsg4Dc4g1r0u8KREEJTavFyfQJEtZeLYNpyx6dao1RVG+KQmedst/YSrlronEwgEeFlbg9KkxXmkVAGbfavqXDWU+GFBs7RVfUW0tIAHITelsobtVMR42kZmie5rnbHcheIjVwVwQNuo19oeR+6UhgEg9EwlZYqaRqmHFFC8TwDHdCJsxHdtErJyWJPs+DIYensHfQf7VJGHkXe3tn5If3N8DkLTKEzawGRQxjE03Gz5zuByOoQ5aMnFTolSD1t0Me/RoYUPw16F8+WCIq7yOy3B2GiJCZeUwU+IQAC9qRzi33rm5CgwwXqevtF4zs10gp3wNPAGBEMTPpI1vUUDVPm/bQl6hYzKYaoxYVEF/iqoSGDLCUiKkr7vDb4fKCsVDmoDI0bIIsiJ1MIa1Wctuwt+w7Q7dDDlfQdiSdLJH2pRuqI2sv8hGHRKvAWCBk+Q8XwYbPi1yUL2zPBqm89MX7UnsLFBTPUiYkByjvVmFFsTDn6KRWGbZ3I/AsTjX2QdSew+GfowoyXjllqOViriDwTyUUPOdmdgTI+9u+qGQ2bsJj66EmTFykME7CBumHgf5f+bR34WabjbYF1zBJ31Ute9i8rSznBNScKZx6KHjJDNKTH68ohWqCCZvRu06qsjLwyr51uGIDO/dDygiSsbSbxmUpfZEF5J/33eCJ/T8lKGEa49KtAjSTyd0BEfIneY58RZGcs44mHAZKvwSh111Pp04R6BhFxZvZ31bG+P8ZTbK4F3Teo4apzkc6kAHcKh/U2k82wd3//t4yOC3p1hl12qwtN/i+iC+m9JWijInygoFAusXwKNmvmcc8DiTAtm1PfpnDNvx9wM9dSh12hzigldBjzX49QKNXn0OA76bHO9p6DuYWCRIPTrHcVSe4z8wGQjdbzU467kv5vNN5jmUMINV7moh7HXl1dQiY9kWeXOTlCakE+1rBz41oFRDFMfOuCzWGMiFSjgTxG1qr/znL9Vf1LbBqt6l8UyJHXURhC6B0AtYr5E8MKORAahvqkTMsvirZHOgf2aDhcrCjFqBVusXd85kMJL2ryrIWiO2g0fPoDbgpp8AoBnxIoHijOSAFBVXbofQIKVxkc89BEOZ3a9T3Y+Ze1G2TTMvEqar07MekDZ0wpEUixnRFFeVNSodlKTA9SZjz1ykzlaQ1iz+ukCaOw2rixM59ej8y99RzkDOv6YNEK7jUBG+4lWVNP9xsHrLudqJnoUPk4kk8Sykt0qbnONqHDlSP7FgUnV3IK6B2vFe6h39gaNLe+JZLbAflhzG2gDP4Yo1IBRmpnMFJzIW3ofSibLIv5hWsHK2lZqrr0gB8/B5Joex1t8TZjDXNxcSY8PR08MY6d7JUZvaGqQ7JNXCFkV+iAVcTVmo46+tlrqZgP4l4K6xt3qRtTVCjXWziiKSGqTqVoqITrxZSO2KbNeEAznyjkGHKUQADjr9ItHVbLvYtJCl6zI64t2Tal8XYHfKnJEJUEV/CrrDaedrK44HOsgzDIsLXEx5wUcpvfdJfSpZdZDKn0u10AuiQAfzA+XeiJq3j+fGIKDOPAhEEcngHU0YdhIt/MDbCxtLqkgI3qkbLt5ad65xsSVLG40FVKf0AndpbWnQtT+XhcxlmGpEiT9SVOJGwGRyZi+Irdp+kOIhaeeIbpdMUQdEOwpxAnGT72dINAe9ynu/AsIHpH4MtI8aM5JF77BaR7Im1SjpSk5uPS8YshTr3DnxDsZWxogYAR70/ilQcCigiCCO8ZHT6/OXGqwwfgzLwNhIsrzveCzwXElmEmM+AyLIaNIhrP3ClWqFcOdF1Z0aFGUGYt2RhuL0S+v7i+MvG+6KhXbPHHK+Lq6ST+ySeiR8ogccvC0TD0a8EGkyHFWibZn20py+TWCzdn7hb31EECulVjfz2qw0gqk5Vl2/0TJJrsBTpX9dqRKPmmU4wCCx3OniNemBI5oZqvaiaDvFNSzBy34fMaxPFjObeOgiE6ye9bFRk1iTdXxQBmbPJTJMqo+qqMHmve1TCHbrihKpqtpePKngtPNtQVGSEwKdayOjNMkGq5rESAubslDZmxqnzZ+t+bGO4bpuIREhK/lj0++8gLrrXLI6/8sUfqJXcpojVfcObPXrjNDo033NxVILMll3J4yrOHQghLUbntt1Uce9WUObXEx5nkJoQOc0Vc7eTNzpAjNWzl9DKXBnOdcq9UtscdKVRyfMBRKXpkkOsG7AvO6SfgKnHaPPTaQofwaNgLIQbebIl23NoNHUlIbRN59nzTNwLoYY/11eknaUx6C16/peGjb0uyPnigVBsygKNN5laOgftWr4zBLUgVg6G7DQ3z5RYcWRZ5Sy1JXgMjZUsu4ESEEoe3BthpvCgmTW5gvZBkzVKV+LRc3MgxexmPvcTmsDRI4bYNV/LEhJ/eAKIOAASqCBfNFQjzzd9gBf8A7qqYIjbNfbvWyDMkwu2dejUWAZRxwFR3CeJ+Pza2tTxBkTGmssQM/mh3FbGPLk+gfEjKY2Eh90Ob0Z9SNy8zFE0gxezInIUQEeGONNkCbNFKRnkU339nnkDuPHqCE6iEqqrSms/7Lw0M6GDl1W4UYBVgNqaN0su4a/ukenW1CScEdKKkLZiSxU23WXtCoKPx1yq8GbAJcZ3HI2NYQ8xfugYU5xiJcdVAbQUKYAU+e2ijbKa3bXiwQF2q32C0MIrYs4AfNrqI+UkK8h3rly9VZaZVprzVFseD1vyx0yHRg36IfF35q4U8+iwKta4XmUGi0UAOgd42lLM794MXVlTSLw2KJ9xIulDVQT16a8hDRqWM+y7WpG+NWiBaCNDuwhhUdDccVjLgdQxoANApEArdky+1TzgFZ0diD2a7J4BahMp/yhX6eeX2UbUa/ETed9zgM/M+58qUzW9nPBlhxKMBzxV+Pt10Dby5II1OyYRpreqLIY=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>