Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe8cd78cc-e544-c25f-9704-0c11ff25398b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe8cd78cc-e544-c25f-9704-0c11ff25398b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cDcxZe5H4ebn0ehHrRU5yqyKefM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>mW/VqCOiBVA5fCuaWvCR7soP0G+GZIpop8TYrLYww+5cPBccCDhveWb6IYQd2BePrBxz5i5YqRO1YJL5yWsyEO9av215kz7Cn8jS13doh+AdIMxx7PmhyEmeDnnbNhUwXMmPWQ17SHDfxGrjF01ceigBI4GKaOmvzNVHLVY+z08=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd1200e73-1331-42f9-6071-33eed8e88579" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd1200e73-1331-42f9-6071-33eed8e88579"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Wpp2pbPKWoL20j7Yw7tk7kUiMFc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>TVBAsp2+9fX119PYPUf8hK8NFkOxXh/kAgrf9fAEhRQp+V2WYqnA47kWV44NEna9S/a8wapTv1/ikbUpLy9k2rU1s9FctsFtxUFSalFoKY6A9jw3woJe9L8zIvGQ89YbiCOLgrLbz8ghQ2TolOMgp/Jcl2wyHE7nFLyv+Du47rE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx179bd5d4-74f9-3c5e-5278-526d5e62a232" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx179bd5d4-74f9-3c5e-5278-526d5e62a232"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>j/P1ptf5f43m9bFjCyErw0c7QuY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>BYpgCEwH1cBcz4MGbyNVTHJgWbgDU+/J3n++USvgioRgWvj01k/FhJx2LRA+9JWz0ixBJ3biXEcBI8luF+Wn63PLybdsBL9gNif2G9LW0PutArfoA66VEUwWiXPe2MhBJXj0yoBRHGSfj3+zDdWnKoAtkCWDsvEgIbQ2CdM+b7Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd69fc3c9-8ff2-d214-94f1-764c4ee3f403" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd69fc3c9-8ff2-d214-94f1-764c4ee3f403"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9kOfsHqLp1fYjVflrnu7ZraVL/s=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rxLwZATrCrFEdE45GosxOcWCLTcAtUyQOwAjG+I/lThxKhkLo5dcvLUob7Dne6eH/V+w3IR7zpsb+Y2gRi5KAcoomBzqQ20danGulzuxNGcjGUTtFkEopT1ftRav1L1wOo+mydX61hCm8qU9/R9VxHSWjXymtK6Hj7AqlmYtP00=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xHQCfQpy62dQ7DMnpwpyYWUkJjA3qpqFf/aVJnX1XNyZdy7YAN8Lc2+gEJsTSxLU/B/eDN7goticWzKGZjMAmMohtJxNVYPMi47DoRqjvCtuYb2W5kyGH+pryH1Vj728MalVpBKnido2UlQSa/Rc5gvWabLP6BprFl7LiTir6dI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wKFTbjldzR4TAyJgX5S80Qw1cuO3Tu38uOAJpdttuumXnShOHeJYWY4dDIVvzyv0nfowRRa9tHGVNYhWecHLfsweHpjaq+hgUfNl0lSOUZO9LDKAx59g/2y/3CZBd/s0//6uulRWRlqwdbXnlC6RQvLK96Ntxs6e0sQYMYhIwt4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>1RjkbvFYYkhwyXJcSYChON9Fy3D/cmqfDw2IgNbHvmTyyrte6eJHisxXZ49s6C550djbTXZdFs8ai+hbpwSX3C+dedalecDQur/khX1H8GYIviOTcu1+cDNaDTWuF4ZJvHDcUf+r1tPpIxvqoo9e2JVNozpPoBfhuGUAvVtonoPudovJPU+x+bS/RCFOzRTOzGOGBjM36PXCDGYszcZsQCnD9VJqZHsU3aAblscb3uojQABT/SybW1Ta4Mg1zGn5L94pI/fAdiMZATjMk2jtnfpV0t/Chys92XWjexomQJ7PrN0EccM4OpNHDCoXxMXVwFlVqkBbwyU5NuvBrinWZrPUztwbAQ6zSkAEtQzQF7SKJugPCPoUzu3PR3qXR/dHbxeBvZvqGSRW6bxPc67VzdWQrSBjCup7ePTHeFr8JHEfGKKu9b/tw28VXcuFebn1iMPZ32ynXhvyqfT/qMfBYq5sLmVy3HOnrTcEo3ggyIP0fvnepDMZ71a7PxQ8D11hh/RZeR6L0tqAVXrnMM6i8CfPvFHeerzaEOx2R+aRr/uGq9XwVvXLWIisepc7pPeTTBAVGYGGpWWYkSYD2yjVZ5SnQndR1/QNsMcnq15q+CLssD9TssRNvMEbBt19a+GiZiKBICmOY6AXSLqYOpfoeoighdxl4zjJEW9jksbxYhLd6oca+BTx075BivUXBeySKc0fc07qBKG/axjZyE7/R+GBEHb/8+1qReHetTuqiWo/n5FzS3C8CBuU18vUzHEYQXfKYeHi5lI+uOqVwzkRjh4VAM8ghoGw2kXl8YpZyNaPP1YZd8oTL0oNIMkDyLN0DKySAjNqTO9wpJ5bVOLCuXnrWAWA9RFXF9eaas8aFC6JUIIReNGSvVo7CUjNb3uiRsgm5NNSiNFgFNm2Y4/svgmzUQQsDedcqXbk60kK1WU3bXYrR4r8pulmeFsGZP21kDL0+NJpd0LsPAHbJ8yyc3cO/2iRjg7KGU/3zURGGzmKF6U2xgYwoAj3KdRDWWB/6/VaJ3s02zAjo7GJArCmINzArJb4RmyhwgFNUmT/wpKavsJJ6SklxdfQ8pMKySv6RjB+HvAdPvSydZwZnhHrY23OC4nKzJgGH5vsEJ345LGwfBTUfNMHKwYsMH8oZ803Je5IMbJxxLgj9SKrjgl2Due+YG2K0DDatnPLrJpz/dZcivx8fTe7aecIJ81wIUj7Lh3Vrwp0273LBSRhu3H1JN5Z2qnr/Aso+B81E7OaEoaVl0Z2LE1s+OaTzq0tCDJjGLaRnI7w3mv6pD+02/oekfvhkcQ/dC+wlgZtz8M/dx/OqbsB606HRyQfy2omhE+Uu0FfHYSmfeK0WajdOWfA6wfworXPgLZsauonRFrzoh4XjqwXmKlZ3Q7W5EeHsQE6+LqdzCnNPJFjF9vyb6jRqAzRobCVLBaJMXw7+gjAoKpNl04WiwBoT2SZd+thQ+vJgbnaGGD+b40GNHWAG8+P1ZRaxpjF/MribrQpTqyWq6TpvIiYEft64Ltkn+KRfJaaY7LXWKaopIBPqQmPZjQMFKqgWpT3IjcZNAtCs2Pn3MXAN7rPZrVsWgvwwjNu4xAhPeqD4IpL73PzFHKpWpcxB68POGUIO5BZ5Vhikmk5emjKuHFIGnQFRQwrbrTvpNuzAo2xCzmJ52I/nIA7JtvVIb4hfke3K3j/Su0yXnLK+KdLEHG5T6hpZpMsL6TbNWayfynI3wDUd6Uo/ELRSQKrWhInSTN4j2+5UVsW5GXjFgaPWkKeya/qJ6xwpjGeuCEFYtd5DsUuWL9zuxikwhMtAY1v669fAbTdQPnmVW+9q4n/5OnkbRXW1T3a2CCXEYh5GujBZW9F2YgK4vjiINKKG8uFPo32nWxMt7eU31CVTzsJzMMCzWFFHahC0oK9QAPiLQQtBsAdtoStL4wyFtbrzukDsyzNEmpxnRhQUsg+91cZuSK/SNv/UAHkKzOvLNIDwSZTQjh3ikNhomZVTs0774qw7DAYmIDooZCT/1pvA6O5ryNuumgcDZhFfgHa0w0wReMlzojI8ww8Mhb6rhPeE07Z4u83HU58T8yIGeSqEYWkoK9DUysLwmiLWLxLuedfVNT451KcWljYiq/GYoRkDyvkEPxUDM5zPFyeZZqHoTSLHYNPi2j8Pgz2zqh5AfGa8K8O7HeLiaEdCEtEXk6vYYCq60O7yY1xRu6FZIF3Il8Y//RnIBqndyGaY5sY7AVvmgFyCv7utu/FBOYayAKRImsMzyLD0l8Wub32g9VaFUvn6S0iSTqDoRrx5iXih2dVXFpCZGKqNW3gt85shfd5CQQYARt0z9Jii1G8YX+4vzbyMPR15UFkMwUwYFvhYmOlHbEDqQdHM7PM5i0WLSr51HtOBJGE4O7gwlf1zB3JE0jwGE6a2gj8DcceAQ1xwSdnAmTt9EjA+RlyXRzWcscwTt6bIjDO0DIhIXQLRZxUs/bHaoe/2QBVyZtqe0CGImxJX5/F8Nbin/La4evFxOZt/Xm2cfpdopvm7Q1409P1GlR7s41zw+0RkDcutOsIHoPPum7tWLWv4MHmebCIdw95ZDbdgsABBeCsSh/jvabMu0CSBpDvODwCxwnuXbjxZ5vOsjpk6U9sJIJGCHThOfYyPZsoc7V4a+yOxJU4ZMzo4uh6KqDXQA2FUilrvtijW/f5EbHNE2pBLgmdnacAo1XQ+eUDv5AX5UFo61FVGo+mhb9qYciT2MU+5zwiykcctP/JyoH0jK7+U35UskR/RpUrdnwWhF9rTqfYktvpp2rtdl3JxDXw8RnR/WOvxIkNh7db5+vY95uqpC1q6duMsj8rL+DZPa2cGDEH5kbmVPKEwSOa6XCgxq1gJn89x4AhMgyl9AxCE1KZZIjhrJ7GaakYLDks/A9KlFE6MItEERNXY61iyw1pZG1gcJX+Nko3T/Ffzz1xDAzj2DQBzuk/wuXg0yV2uENR5GOT2lAHvdUvkEb+6WPM23UeEBT8eRazfAXcbh2iTK+vDH/VGnXHCVei/a7KDlQqAZCOPi9pGcBxbXyrB+SAgJo8kugPNJvjW3rWEe72Ss6RVfiulL9SXLeDm3vFyVKQdGCYJNyxG/8Y4/eLIbtnUtMP1xrMcNLqBAOkvhyxG+v9o5T8y8av5APj1+S+koI1uqUL3fvlUEKQ5uH0rgIOv1YxFa/O5RI/COmZpbQoZY/oghSehxEEFVLq+Kaje2zeCaZVAthY6Tdx94zAwg7G9HxzVLKZ9S/4MjxRIx1pBCVay5TiXdAg9IaYA0wRqUuhJZsCuFgzFVis5GxbE3FJdnQXI2Nn68NSw7XRSN5nqCjBuV/Z0t0oMgpnkysAEBtTwLdeKv833eqLKM9v+zpAsoVvHXQjswFPFPJ2UZDXq0NUkZ+RphxHY9THvXuoFeXD5o7CZo8qIB46eqCliJTubWuEVyoP805CAhmRNPIjProNT1M4qQQtixqjfL8GlgJbq8nM7EEkGpmgdTMN+Ar33Z4zp5TJGkb4CU4ZCRTYMGjGBdB9A4r+g4cvz+UnTNSBtCIouWF6OlLFcpmy6J773wp0T66mXKf3YLH0ncprlJo7wrjZ2nF0O+5usfAQL93z7aGGAncp9FKhBmLgdFDWK+RfUoBoEV4CfHBCgOV0ruEm+Yc6rdj4ioVsF8j7hV1PVg4k9uTn2o6qj86hGNHCNOVQ8PNqIr5nHIienOt+HkjzDvddQc3TGnuvgaa+1005bfUDX6JhJX4uNNQVO2VfuCXcBANvgKpcn6/n3bIDuYGg/8Ie6VilCdv3No7GboJ02U1axOSdNcGaRdxJo/G4DiY9YArumDRGOiWR9oDJv+0HcyrOIatYGmk9dtY989+am8oKwAX9EvgYm9hzoMRMpsJ7z629JRs8RRkZChutXTKijClyviLnBNAguxLuHdM/rJJVin/rzwCMf0s/6afSbPCnM6gKs/djdUqwC+BkreFG5IYSvEeQG5qLqC6ZCaFlWGe4S7i8SCKSNDzoFV3tQBqjM4CYS+C4dXMFAYsANwf5tRNxfDUtTrOHBT2hz/A/XbrnegABKWWsDBE8To16PLP2ciyrIm8JWF0uDUTOGXRDZCGKJ2+BdyIpHn1eAIJe5acn7pyI7pL7RVEm4Xe9/vu7ExJYtVLibGLeP9uqOg68Yd2O4luyOJkrRI5pQ2Za/0R7e45xy/yfEPRrNugjU/fh2WI5ls7K72PU1Enc8KVp+HcNxMrLJbFl6wOQBKppOtxtNpBU1Knbc6t2u5pfH3gLkWETVD1MI2dFc4MWuyZgTchsWkG04I6gNmrleQTXJXBXD2B9v0le2A0LfXrwpC8cCNmcVoFTD+6QPBuuYy3TSiRXWZ+ljx0Gze37Mas4UZMkGE6cLYCDPeOPF4wZE8E32D5oryiNjk/n95jx7ZdAN2SHaKsJhjbpVvFSlx+2z4/cQy+XVR/niXNp4kIe41fLLFz3woB8m6Go3DmbSmu7+XwrjeLbKCDnOroYAV3lF8kRzXqPwBGQCFbCZx8HmqJSJ8eafruHuihe/WJpRJ4d7QayBZcPdEf96iOerohz6ussVkj0OV1xHrJm/NhrjWGZULilxghDX/ARsTQIlKX8BAWvMLKmrQB+E4ySi8qE0Y2H0Xc3rLWjUhVEKsqqB9lG41/vqnN8Si5iMrXb1UNmaMasirGYM9db6jnpna05j9Z24uetYSMIk9ogM0OPbKTp7dXrJo4K8cHmlA3PmvEnM4LlxmOtmym3bSd8db6DQCvpa2XcKKjJpFkftlE15gtykHxHox8H142F3r/A8ZGiHElxOww9iTq34MXpBrlc0KS+L4T+RqgysR907/5AHUZX7FL/mVmVFiWqXYF1JfVgWypCw0zJICmxl8YzR+uwj+KPJuaAjTMIHNe/3eNQXeyzyF4d/M0f5vyfClqeSJK1CDxMnkH34S37Ae+xg5igmKHOe3OhsQFswJYVvFxfaVuvAkZDyFXXXpb361TBLBWr0Hx+1/ooWdQeoKBOoWP1QBg8pgxvzjw5xIM+GMv8LOnQn6NU+NkXGy35nhZJZ0v8641ip5VdU7BGOC4JzS+ADlQjZR+9DIhwrV+5hVqnevVzn6+B1NuVuob1Uq9RykTxCCaq259DCprmCCNWZTaxHdu5SZASMxLh1SHq5rddx/32hp4bSZvMtS2bNKteSu2k+X/NQM8nvESo81JdV6nJ7NdzgyGShVCzS7yTBthOPjy6TDr+YgHXAjesxBJx4uvbnNC5GfoZ8/chsGV55OIom+GJMqmu6cVCxGjhwdU5/iJ7cqjaUdhR8SAEdH0naFm47+rUcPvpSacp09+aMgT+TclgjAEsjQdHCL3RJZb0DcCpn2lAUtGqRMzOdqzcsioowk8i8YTVQ8tbmhkYqgcbk4dfTy7wNibQOQkBwvCr1wC9IyLzXQRhnzVoN8SPrx3Iy8tI5ztpi5pahXCVOeWXIFQM1irHaVQ9Z5Q=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx33f25e00-88a6-1a36-b839-e6a4edc48703" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx33f25e00-88a6-1a36-b839-e6a4edc48703"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>FSnsFkWiBcw3Fh9jj/Vomjo/Tk8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vEFHInxo7x8g67OKbJBxGRnGzMSv4C/SEGZV1ut7wTSceBPCjVqAfz+Hd5rsesQTrKDguM0QdAGl0GcVxa0E7j68F6ViQc5rGJ2kOJ26Gu91Ut6KNnX0+FWnNtyYMPanoiAh5NDUOdtLVWkhugZN9lkKjk+OCZMDETj0NA3DMHs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>xHQCfQpy62dQ7DMnpwpyYWUkJjA3qpqFf/aVJnX1XNyZdy7YAN8Lc2+gEJsTSxLU/B/eDN7goticWzKGZjMAmMohtJxNVYPMi47DoRqjvCtuYb2W5kyGH+pryH1Vj728MalVpBKnido2UlQSa/Rc5gvWabLP6BprFl7LiTir6dI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>/tgs0++z86nkqexkt7jpZ0LZHbfsRAT7vFQO4pWWkgVT/rlG9vVQy0x5cit9T+lwM9QzQnfU//TwsAF8Tz9aWXRmjVWROlAL2QKlfL/MlPuGYLuY8WKZN8QHWHnojefnK23VvDfaE32QSDIu9TNCRdmksQFcPgamMe1ZTBrpKB793XrTquSnpovJP/7923YoFHMM1ZTPODwjls4mLmHerldYhS1bOL43DuKrwxGc/zwWXI8V2IEZAvge23DXPBBxoCHc4mAlTFa/KA/qV5W3hvnbcwINbz02u3Lo6sdjsJozQTdRr/lNpfoqy6ypNq35BAIY67u6pvDcLuVmG7y0ENA9wQYXQNwDUv1yL7Wufn08Ah+UDO+Zu+w9erb2sZc96LSrkQ+VDkBtSYWERrzYXXuIVuI1rVe3Msfvd8C52HtVRMHfQYjqtJfgjfP195Qo0miyzbIF7rUIgSGN1+oNNr5qar+BjcsVi0VRFCSarS7Iq6HzgqMAyST1Dj6PutxFxofLyQB6zfKDDOkMJ6/c/jcDvUzLZjORBTthWyPakJEh9r0o0+u7nC/aVZpP+9tLsinDnutzU2DKKTJXcxXo3GQzfsfWOG3eukUNO6hHSiIc2ASCOMlTOGIACZIFWYC72lXxMQRVWHZx7uP0feBVQc8CvawR+VG95gV3RiEBx82hQCgClLtjAhtamgBOsCly+Y/TWpJCPNsbG+UJiYYO+U8GPFbbipP/5ncJgNlGu9dPhLQx0V1ueUcHw/Csz3MI4k2QC0vLH6aRzSejXwj9gv/BHLH+E01o5FM7+cRfFMzaFkHGFcfJ2jtMkxd5kkPkVOZisuwAXY93tHqp3zs23Qhxh4PeBkJZELYGmCfS9eyea5Bgv1U7XIixg8Frbes2UKod5ZljTxo9iU2wQ5VwfXD/BONWHdpHVsd1TEazCHALVhEVeXBtNEeNcHQjJzO5wil0oBMY49VAV+P2ogVCbCpmIt0m1FUhJxgPGsT+B3toiEwQIgVju/nee7Y6Vn9WTkxNIGP8zU8TeS5sZmfdDuW2yweMw1Zw7mSs0uH/pcPfvlNapFSsFNmHdcJsRD3LaftnmHPYHU/2rp+Y/Hpw3VhYT7ph+GAyJICm1ofAxGvZtR3Hc86ElvwoX+6N1Yi+V6nyx9AYZy/fEiViHD0DHno/16+ku0dSGVkgXRTdq3wggOt5+bAp+DYsbE68om9/QbvxHQs+rBt203aLrBJY2iodr/F2uEsq0Xj5dxLvQ6iYunw/jQ+GyKTsaymxR56K4l+QTQXxUIwb7c9AuKa6tICF8KfF0AE5Jt9kIfACCG3h90dUWEPM/C7AFr0KNrgVv6YpUvSA+NYRYX9KHJGracwHejMvH8alRbPiXprdX9KBccNBn2vAUXp2eBk+DYHtOcnR3PLTcb68TJcAF4u1V9pp/n6EkFzpThue4Z5ScLvzGjsHj8lQQFvQwxpvhK3bwHKyDFzStfcyqdcR6pot5hbrWjoV62LdHyy0vVnhKq4s8aJFZNHm6hsgtVItB1s4LOTHoK6Ixv50pnt6NcYcfPUzvO8DhOoL5Iz6EluCKkVwaV5fJKWFC/XuQJVzzW2blWlis6xDDGSFyH0iasIp469NknOQUdCRo7gxDJi+Hgs/g0xuQ98OOqgZXKIO9WtKQ0oLZi0L9tfWce7Be2E4o8Q9aQyyguVekKCT+bFRxuWhW6JMOQbiYOqDCC1xtnzO3jbzs/Ij3wH9o5EKrjiXL3AIQxWhw6t4tVo5RGJdTV8CxQ2QL0g6AhaVCqIqZDXCF+4j3yO3zbzshLVaKCFp22r8kbf/g+yshCRGtPsOZpvKXqmtjhD2bd91AjAdDuLblCrn7YEAMLI+zx6pooxIzw4SJjo6gA8SAEra8abntANEuz7WCm6qAirR9Fgh7uwuHB5G4a7SntvkZpXqkVvoX+r97XZS0TL4GgIz2t9UH2BSBVu/IkAY1fCC8ueJBuV6ibA26IxsIvzLc7oLTT1gWcmucoQxRW9ApoB24cRNpbFRM2XtQ9ZTCe0M55ucE8wG8NDnFB7hGXltnL+2+ZBu6VqDRHeIJKrqaLaRhZVOQVlzxDdaVERDrYlX8a6+faSlSMgawhRcf5w2dyEtD5nAMtfNVATMuL3gTRQSQm1NWn0vW0Pb6p0Mw2dbYeWSJMir5CI5KvuERqkPUinBlqYPwemvZNkxLy5lTGB6DEgdW4blz98iTRe+aHCcKXH/WiPHLJB2Wg2JYEHDK4DKT08okfEOFPQIwzAnUewah/+bhTvEmznoVEzZ6w+W0eI8AXEVYERPR4+UM63EdFeHuWB9deQkpzj6QiRFF+IVTxiBmDMzM0sA9TS4BSpaNXVyl5dgaVirhj0OoE1uDaAvkT+xY99ngUyu9wgevkKUL7aaMIyc9o8QJdBN6t7pnSUaeBxEQRFLPQqBzKlAf9/Xnt0Zk6mjTBY82Gleed7foV6ALYIOEz5752WtPOWUjz9uKpYY9Xcs89Dnx4U2APvxLqjUZOgBxWivATjlE9JfvMwIm/TdaqiSZbk+rknRFsmZ5tD7f8hcKU/vnn1wTWLi1x5kmYOjtfLez6os3vFU8hNUxnXJOVJL8bvqVB1/KVjnYSo+eQ8+5nIer5bV8j7tGSjvduMvkvZM6JCR3rkx6Rz08AR9IE/Ff4dRA7vqaN2Gq0Fez7BgH0Zx5desnTQZ71acmnXL2h5jA6O0+IySWZf7+2REIG1vFR6W8e6FzA8+TrtQsT2v7sDr/aLJCZv2IwWa10OueAfeF7js8TRQr9GxB+L7sTHUy31MH3LZQQ+Eudfl3XA+yrVNdHCBMC2Dn40ZThQzq13jW/L5GYL2DcMZFVEi+kv4QACgMD43c21VPCrUiOOrUDMF+0ySvfmx/dZ3cUd0e5Qidr6/K/UFLB6mhlY=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx3c0cf765-33ad-a881-9391-ae53c4c75494" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx3c0cf765-33ad-a881-9391-ae53c4c75494"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>9DrTwFeynk6SPN5VOfv2qYQH4ow=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MB4TZd8NQkW1mBmhmYKPMwPzage/b0s7C1u+2WZK3ftEvipqBTrkxBCt/TALGJj6JQPQGfgU0llU7x+7qjGf8GsCJOLkmhnwTh0dmndJK6RP6K12M8Di6ndesD3IslUZ9qD3kTB4kY7mBjUsBxDRKxWg6egRzJ4wMDe8cThfk34=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wKFTbjldzR4TAyJgX5S80Qw1cuO3Tu38uOAJpdttuumXnShOHeJYWY4dDIVvzyv0nfowRRa9tHGVNYhWecHLfsweHpjaq+hgUfNl0lSOUZO9LDKAx59g/2y/3CZBd/s0//6uulRWRlqwdbXnlC6RQvLK96Ntxs6e0sQYMYhIwt4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>