Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxda6415b8-501f-1443-a9a4-1f612e290796" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxda6415b8-501f-1443-a9a4-1f612e290796"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>keO3ZRZfQ0lYpf5MuSQQKbJxgIM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>sfInbuhMbPfqOktJ0l5NShOzFeeVMRwMtScLrmOaErIMx+17ST00nsBiPqk7nEUOKTuuhVcZpw2HJe41Cs1QSMvXYNFM7pSaTi5AIR/hc253tBGE2j3qwP8yUQijng4jKIMI+ytx/z0Dz3wlhqte3cME33EJGQpWJp2HExjHZhU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxcf771da9-c2ce-84e5-c978-4eb40d9f110b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxcf771da9-c2ce-84e5-c978-4eb40d9f110b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>DtnZD6eSPS+PZ6kS8RBq/IBxTJ8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>omUOBRBsD7rhyTZXNslg1dp0uUZIkq6ZijLtfHYVTQmWofC6ezweKZ3WAtd2Q3Peo86yPpcSTXUn68l+12LxvEOQ5TWdhEAk2KTFJ0rvTgjayG4azmGNkMQyZ6NsiFKyHM77LZrhixc2BQ4klaSJF2M+Zqm90Kzi5tZq/46/AzA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa4d5538f-3ce3-27ad-9be8-161f8160b2b6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa4d5538f-3ce3-27ad-9be8-161f8160b2b6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>MjIhMTurQEf8fsFHFaTNp0WPt/g=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>hCD2LBEmW/WECpwEOEzlzzOaKQDwQYMxkl+ig5safXhGrcfzEJOUcQb6ahMH5jGWCrZAGbvdD8+RXLPLUUOdjn5/7gsBGmF/k2Qufv67goLqgwsmT2JWLfkB+DnwHxgKMN/tIAaE1T23D2gNg1HCjjDW2NFX1uUM9X7GAGdzwkI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx18734570-0fda-05ca-9948-29ff7fa3a26f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx18734570-0fda-05ca-9948-29ff7fa3a26f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>VyaYv9VP4EuL4xgztldH14Tc4cE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>k9oFWZSPiai85YwrlN22Kp1BkeGDC/HUwujU8th768OMB6vN0iDvciOy05qfDpi7+CwdB9Ns2sa+nHQfxwH52n/y16HJXF7NexEFSCx/av2q7dQLE7IlCIYjiWcTBUpdj+BxsU29KoxVnj/18pwXO9OJK6j5tl2x6MaKuav8veU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>PotZpnCg6o5YerqrIz7hVe7ZF3uQc7QZ8g75cAA4cKSvlJdl77ww/slL8fembvYDtQleUahLipMPvrbiUrG6zSm3mmcgRj1JWljW2DqZoBCtrSMbm7YrX+2VI7qI/+ypfjYUgPl5mairjC1t7GwzBf7c7YUc6l26eKc1kxScSy4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>yNpaFn8GVrSMHtAcSYnQ2u+yzFgULF32DaPz7Km80lbQkwlycBQbn8MhaygB+nPX6I1T+7E0HnUmmI5okTQtLDcXbcvGsRFPf4LF8m/T8c8SfmqR6cQYrBBdBcsoQB3vok+WFc7CADpCzDWYDc0cYntwEH1uXy/UTt1/JMtaA1Xd5IXGzriIXbQ/PXwhN8VNykHuTSyZG0jsZVhIF47GBM13LNTm771D0mWUc6Bwxbb8Axbym0hXugkvvgppt2eV/G2D5Fe0ZlQ/g0O5prhoIvtlcopQUWjDRQkGxLQkOFMr3vIO2XMhNlrJxluIHvdEkrr+w8/ecARC0sTRdsP2Y2qYbJ7DvhG08Ik3Z8BvzFl+1EO/Fnf6d2Md6lrZhn0W6lLFPTGlyF4qyFBnnwyxqFZ0KChdyM6H3gRxhy815fzb1EOq0m8D2+zAFElfbwTvl/9Xaxcn/sfVxfPkoVGwTSzStWQEpHqc2ix/ni86nvF7Xy0LuLGV/rqa/RZ1JQFhFcXH61+4KIc2yxQGNU9LBr993svdHNzdQf63VQwa9Vbhh3i+nHCBovJLYDeJnDs7QLbbv7RPyZQG8y79ucHt2uI0ZPX2PVNYj5hndAyXXrZNc0DfD49fhBPrvXyaQbauEbvlOlwTaX4qx8I0fUtTOx6K/6MDWdVLq7pcwAel0Q0iGktKv7UxX9pfBArur9DnpZEjch59aH4kyk2ZRI1wv7AGH6ROApPl8Prn19PI1LZP/kBmwzHj0ePPbZIHEvfIL1hF1mTMGWt0VH+LKWI9Pov2E99jUNqy+3dAC3m2EbNaBmQ+tcT5/Z0uOrvRsrNqWguImpWCy9ZvgKXXX6fwOTbnst7H5RdO6hO/qpPRcyMk3xHRUl/lLCf3hf6Ropgxx2J9n+UwRiJZuI6h3qdMghOJ9T7RH6ywiZlGyGN/MRgjvJ8TNaHHUjzSmt2BMb3Dn+JpKrr3XscZQGQEU84dHQbDlPNv7WoIusWo8PpUjCGp5aN/9uv/0bLBzwRPrYk6X87mHmUvEW4Xw3/VBVJKGf9zT0LPeXDuic3bPa4ADIl3ofGLtKoc+lmA4+U7M4SowjYMoxeV60BzExskVPaoFxJiVk1yZBboLqVyAjVdKz6N8eX/kWtMPJ29fPmAVdIwvugcg2KGGv8Rgij/4rlzDoa8EC9+M7Xw7NikX6jqazQIngVYKbHfOksp+m72+T8W7tNCErWiNQWalAtxMA9ZeMO0TMXYEZgXoahK+AjsYYchjI6lO27TN3RsUxbyrvR1TtqBu1Dfpo7Lq2HcOUPSEig8ygQT6Aw3c9ug4da23kdnbBzphbY4ooQbNMopV2BsIv51BVDIxYI/kUemMENmeGd4bjmYU97NwIKhCXTSkip5ceyCzkIP1UkpFrK4lRP/ybZqOCnMXO4CTHCtJXpsTrTBf/MDpdQ6MjKQePpEucf37MUHCjdrRgIcaKbK8b+YHeorAwyvScbzcGzdL+UX+5K1TczwrR6I18jHDlGw+ldB+iBKpavEfNRnVlkuBULkSjFWIYebz2C2OpwheLspUo1NK4FOU5kV7ORjW/00xQXCMYrt6aZ/dZVjFigruTPmm3SQ7tmNN3UjYXrBJ2tYDqMQ8u0g1ad+niutZfyCEOif1KqWgzaiwOffUYTSlyiLsC8QspA+UGuWImYcBNOzYxXB1UEZjMCHdVdlkd0cirT0d6SMU1nW9VMtaC3nvoHwHk5harawZiVko9dKmpzYXC4bs2YhKOUxLREjPaVZRpuc1h2J4M/lkYr4HBOcFqoG9vpDKFqDPns9zbTf6dBoLW15CaHqLQk1W64bT6EdQckj6HPcGfvDcuiC8C14yvqFerO7ueIr7nduSkQs5KVidOBp9q3+jTFXlWNP3dqwwThnxBBkUhgkYcdzQmsML/c7UT2SAgHDT2uiomZsGO2sDlur3Sj5g3h0gjdsfCVmoUagE9Wj/kRwsGQRMs6INlrbFAoQ1VA8yMTjelT/ndz/+d0H8wVVv1QqGP/umJoBMDmccATDV0qVtllNEbdDBEZhyNUB9Fa9YRhrG66CImL/3YECeg0wd6NecjeMsoHP9T8cGOEYno03juM5P+yKJ11fvNlhhde8E275efBIuhGexSV8oiF/o8yPPaivIJ0FBkmfvSp91SC9gqLJyyW73fnqlPZlWvQ98p+i5Rz9N+Wo9AZQbB6DyJhxobU7V66ML7eFFol1PS9ri3Q5FuWKBRo28O5QWzQesCv4lejD2wkCCyiyNi9O2rWcZwJiWt6WoTywflsFDNNvnrC1no9jIBUvQNFDDDAXQvOE2MJykqE+uJXAMUAW8bJXkh63aJo+z4+a/nEzWRwMqWN1WLOuDb6iAUlyFWVX3L9KY01xDRqn5/z1pBLe8x7GZLhp2cDLD7HkT9J+ExMBYi+tbzJs1wrnVepPI46WFsQV4a/WqaQNYi71CI38bF52t3saBd1jJeNpajk24AFkXDBql8UepWNoO90Abzl+YKttV3/utkJUBJ3anBYtQUMUIMYyULzeB6a5DVU3w108VI72dQB0f5Cg0BoCzJpJb/6g0wpKQlgGPxxRi4N6DAgkLsCOEdxrHrS2XDvzdpsdqsG/2/tcBp6RERSw4lhkYL9kxbPGmXpvD8+nDAmRVKIhaNvSyONSWLVa+idcDrEpCeoFTqLzcXEshsicRoaatbfNoY78phZOLytLnQiLJluQyFnXiE/E0jNknqnxWmHLqK3SWpAKBwYzqht2hbiW2qUhyBpm8cNTMucYiF504bmqXHTRCKXypW7LdCZuw63vLDcOif/eH3i25WDiGFPLY1bXMZP4ry+q1M2dPQY1zY9Sh94zxFcpTgAcHTp+BcwdYuZTt9PTvnrc/aYe37wTzPwGQLnbjY/DRtul2IoNWHSwWY3ALF4g/K8=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TxWkHVotE3LRTL+61BUvbx14EttYLECYJNEX5wWZIvWRlq0mf+B/d3RTGas3edsCGQscPjKGc4eTZ1jtLAeYIcyb4h57gtSRJ6jOEJrJ/T6SwTHvbzQhX3D8zmjb6XaflPJK306JFTLw+XZeYuUetO8CVQwlH7jZfZ3zuibyL8U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>LNwlUUMBxh58FB/2rrxUXTIR3Gv8KyukrMhlIi+J7i633qAW+dheo160oKNI/7gDNnlkEvC10xh3Mb59XgTIoSRX73D+mw/6lCrHgS26q9UBZqAP6rG9hd0UYZEbpVnnxQcQyhfJTpAJT0YcPuKcx8NiOaX4YQV99apqI00cJaXKT4Nu1XYsvlivVWrH+iSWLyLl80pF8aQN/mWWGnteqQuQmY5naMMmCKyWxpJETSQqaAEeXhzLJb1NVjt68Q8G71/1yBD8GPkVcIsBkyEQoIPChGh3TDptqkO5FfLfHMLsUs6/PueQ0fQ2aIs8mNOgL+AxUrWa5pyOJfzH2He3EL1q3GZO2YluEqR1drrMG9NK0ks6kWQ4Wg8I/NORMinVYJpTkf7tpESArurbXs/ZanRLR9U83YryEYT9nVVs9M4SvotrEPWgddcyg2o4ZlF16KI/37FHIssxqimSk4PWM0AcJvVVO6jceiOULI6C3V5v7qMYzbWubUGFfG7Z2XrxMVTHXXEZucya6bpIU8pI8I49MHgjw5Etl2Yk/uKSYabc4RR0qy4Uaz/ONhhpi0TRLi+VnyQkLgWc3A7lHtYVSFwDtITYisK1mkA4z5lF7ty9VUOCxmdkUCy4MJcBxIKb1Jhfo5EgJ2RNWGZUlQzNG1+APTqyt+bu3iBvQtbiAXj4JXQht09PeUtC4wErDlyQU8T1qYJIPmMRhHsGO46gCIULMZs5t/clcC7L0GnhO/d/8Cd9Z0ZDwXup6VYqm4S+YvI0xv9HGQRURZ7BBuV55dO5p/rG/5iKnaHxINkHe68nJ/3T2e3Et1rsKlhu7hGDJN//yUfRLqyk3i8DX5vZjiE3y6hDnQ5FGLJtVUEZZWC32aSE/AKtDQPBj3tP5PsADX0OtrRGZQF2kuiiSqEiDwWCp4lf9ud5/W2GwmyEOmy8E1RH1QjsNIB3MxcYUP9uiY57/0Gyu9RTz2q1qWlJkuYR5zwBNvCI9Zq4xX240VfiTlcGZ3t/XeseuMAk4HpFeIfiP8UhjgH795ekZMZ4q5gEnKZHT9fJYREktz6SeomavqrNvwgloNZyTy1vt5FmwqXD25Wk2wdRJL7dVOLQ8c6AUcEO1V9JxPRJczcr58imEALt3GhjjRyprPXrxmxf2y3hkDQGLsIGLEooHAaAkUxH0qqqN3Lh71wmPLhLKiHJg4F4NOxwCebbkEtgEDaVQAEMjnYYSEeEmSZsBBM7WoI7vHHA+VXJz4BO8vVJz+Bklrrtj2of/fucbwuemXi45slR2Cmf8tVXghedSEINagfT1N+YG9drx2De3QWQfD7zL9Rk6lXBhUoyupneYymqGOK7kLSoh4aYOr8TN1p5GdDp1bcTN18zS06O4xFWFdiiYtFp5vEpD2XkDOlKFO5Rr7gkGPl4vBegrGQFXIGfPHERxEwuCYfdNfB248XO7ZpGTA1LpLbrsZORvNOV7QzGEA/3pRrvLabANDUAc0WkZ9jGqyBZRjWLssWk1qsvoOh9YLaVqANGSrh0ZHQCFzJWxUfvBw/zUuWP1CHFmI3tjMcR1of+riuS7fUBhtW1Ua/QYbocnQbTAWJ61AglIqi+mGkAJpKVBWNfp3FHNwzP3qOe9dc3gfxHHC1vKCh7xr4BX8G2RzROCsNsrNBytbS2PcwhJdiIokaFumgB7wJYN5WzCncs1Xb7EUaJx29O7sDXeIGAC3XQrYwSgxv0zGFixf/AAPY5k2UbeyWQmYRi3mzQTedjT6yMEjZm59OtLbzfAYWuvxJxwdnAgclRXFvI/nv12TIEjxn9m4iT061o1CQAqJ9cTnOnxOp41AcOMaI/yx+wUosfgoxFkk/heo7z1MVyMaKR5KRIHv4LnKQ7JHLBamfUs8kaaVh1lUmjLg2vrwB/5JoVP2wt9ZHzNOhXS9wupM+PFgti7THqMDY/M+1ML/1KGgDcMQ1p+24vOuug9lnfEJ1bf/Dd8YFolGlKlBj+qDZHVGbc+nyVu/4aH54gso6y05riuJOXpq3L69llToa6UtZ+rWvqXba9S77BgM6KWZKNaDGUdXmAuq9+WT3/KSirbeB/2t4cyM40iVlOwxGVhiuab6+bzPTwaqhnJQW8mm1DL58E1n6s6JdvStdui7PCNHtN20lJ2jh8QMt6HJFa06WdGqQEY03FB/j7AUHugEHXOs7Ft6hW9tfYnvqjGwSiptspX9VqkPsRyntg4RCLabdAO34q7hj+6pSwlrj+fE34mYLgeRf1wvvvUxoJnW+mdBFrtnZwakY4N/gh2StcI+hYwV30aiOqsWWdpexML67ixnNnlLEWfdZep5AVTWkUIOuzDgRKeX4Maippf9hWOx5RWfNm/2PV+2Ls3YC6NxA4/9rs5RKhc3Gh1F4yOfihArHvAT5NkVcs5e7QaO5vKwDvSdytyuaR214i9dHNsKC0cwL87aYBeYwKuyL3huthoYeS0Q+4ty8Svp+C0dzpIab2OdnrXG51W1wyvrniNzjE36at6L3Jr7E7Pxqwgs81WpLH0l94mVF45XgZKDQYCMt7z5KQRmSo95ICGo+NhF8NSrcFmVBrxOMKAXtzxRgn5gTD6Js/H+v1IhvwiwVuvPMDZ9fU+B+jvVfc16d84SXKi+Mv/H22J3FYHPpHXVCVNT3ktewA0OewfJLWQhTR1ITJI4jAl5aCKdl45l/p/+lvqm4Z9YKWoL9pLISFSnJNQzUkoGNz2QtTYG0GEzpQjQLbE6c7X4RnQSSofH0cpUjkM6ea9lSt7hJYJclk5pD484QEDMonBKy0UjCsetf+2iIG516UFVpk/WYlWFZD2V7IRZGJEdK1C6dj7HI9W8DpN/PdycloHHXnCUn1SDdJcv6GlN/371bNIexa1Y9ck9JFkDyTLYwPsAgJN2P8GwoU+nwgM5RZc5+VRUR5SmSAJHNuzhlQZbEKxNaO5iuzqpwsQGKCBHR9WnjBL/BNC6Z4qwT/52/UA74MuAjeO/51P1+zgAXh5Y/fCada2cSfVTUbrLTAelYIPhzobnG80IaebCbAE67IttKy67lG/yY9PoRu7yqx+YLGHfDHTgyclaFsuVpeBhen49VNyMM9PwU6vqyv1byekV1YSMV4hPVYR9dzWv2mKl5xMD+GD6bbJ2xes612zOVilAtkU7JmDlhRjn9/lWxBOONkPNAgV+CwhYVZs70mZFVg3ZheXTZ9xEv/bML3gmlP8oZ4JqnQPFH1piBLDTaa1vLs1/w270Ew8wmN+jRV12E5p0QUjAGgdshJ+1mqpeLocOU0992YhA4YnbhErHDoEN+qzMfbTLVfytTjdHqEMgSOiOnDtbv5U5/Ze7mv19RqUx43SikteV0wRSKHu7G9qooj+detNHJOrbooacfs3JIhKLh0fa/AenOhGHPwdCqQH3Z9SM/4aAggOKToEQDse3W+giotkxpW3gGsankcppCDiy3NInDSUpbgMuAkZAeDllvlqm6CW9tfr5qoybWaGqYGOGrHcqNvA8EKWlNmcK8SO/A+rwkxenoDouERaBRmQIXnM/asxMXAmo/847lA4iBlQrfLs8RIzlpSPtjLKbkaZCcXDMLAdivJBNv/+KCaGl2QZ74qFo0E0MrdKjPGUJKr3P3muEae9eyKXPRyJyvKkLcTvak8gZobBT0vWjl6l5hBeHtzDOwF4ZRlpI5SXkl7/bdZ8HwB4YWEj0oQ1J07fw5D4pTP7aALOG4V9hah38Ah1wFLeCk7Fxgc3MFqxvDEGKxLIDeH30aBuks76yJUto5GCu9RD3GPaAdoF3LUDwar8J3yzrHptcka8yAJiMpDEVZoQSNhYsDT/gjWp5K4I4yzIyE1veld4coyyZNSowHVKIet5GFJC42m3Waj+Bc/oc5qOayf85f2JUiR3o5Z+wcYzNw+5iS5hzm7rkpsNKVM0oWjPM1oUc0b2o5cuJc0eYAsCqTYpvfX87/5S4Iwe8j9+bVjvh1OYPuv5ocHhj5fzxQxTvCH+zVUDhTpTxhcWrML/j9RD+Hvg/rmbu3U330ASeLcyd5ZO8uhSviwwRgFwAFAuBvqY1YtHdcTj346vsqHGNQZUtf58uRFC+jXIT2fe/VymtIzTEFa7P8V5nr6JIxkWfoLdoiE1VSfGbMasC4lSCzXR6uI2PvznNFl8OAcKAaQZPdcOq9wC35/BMnTSHsaEGmQYdWXxiHJmUPRyWYwqEZMoN9CJrDMusbKgUSufzORhJocjxu/RO2hpl7/4Dl5AOODb4ZTVmH1kIGp+MIh98VgTwNu4Nxs30blMahS3dhVgcCqyFiTQE0DrCDmvnheZ8U6yYxKbT9BZyf7WQidQkk+MmJTO+4LE1VdUtzSR+tQ325WNQRRxHyiuN03OdUtP/tT+0KoGyQgICh7N7HytDN6GKbY3E/JvxLGDMM0oTsFf44BLoKMm9G63fuowdwulnbj9jOIsWAtz17OuR9Qmx0MlzlqfZBQCFu1LMo/vfpmV5U7IMWuBtwSeCazleimEPuMA1rXqrwrRDxWaFuwjTb9Z1X4tzm3fujydWrN+VJphPyN9LNcYCpVYXWy3xQ2fcwWE7BT3QOdn7TYanOi1YIE0zMJbGVddFmf3szCbqOAUacXy1hip75RE+zEvZFFpeU19Dg0R6fVa8CXJLSI+ixkEd7VURs4JxLBi4yd0FKzJPCymq/EjSP6qk7NWjZPbmPXHIrEt0AtAQ96twRvrNtEbh/zplD21/ohkDidF9Z3fgJ2eO7VGzWyTpiyHjvy9i0TESao90VlNENpXXCnTfqBzp04trMrVgCWscW5yL3gIvCBJlcRbacDYkZ55bJ9w2ACxv1BAxtxDoufdXSR9k2zgkO7OECbPO8sIk0b2L481UdGNWJvJgdvBvb1+vN1vkzSjrZc2efap9hR3Zr8rsU9r7WRnF/eeetPkkza/rAi4htEip0gzYV+b4XQdyFQvzIMEh3NuhRu0rTYkR229/UpQaDFSbTRBnUYiPXDDHOu+MdFe9/xizUPgT1tvUh0tNlv5q2SxhnUBrKMZS17KKdllageWYtHd3yhVKCYgVtXqm0nmQgXXPqlZzND5FxDmJg+5UKVxS5snRXfL2u68QeGz4oejPrfcLqRrmGxHlwDK+07B2UdsaGnlVJUqBWSUfeqt4qZZlEK7cqEKW32Sj4brU2jB5agaWIT3pBDmQDMzcNpJ7OCoUbKlxZC6+spNBHyHJ9wqfLIM6WRgsHwrNmsJUcwqxYykD/jyA8hes9XfNxdzh09SUuQpjhP5f14KyY55KdVaqfcQ+NkxcYH1s5Zbkk59tUxNGEa20xkMhlFJ3EhpyrvCSyM6A2ER7MiQwRDG2zI0IFqj5pOB72KR9u2ovrCfjaUuU8b+fJFYcFKx9kzU/NhvyM8UaOf/atPisikOGTmE4+CaCyM7QWUrkBnvMw4F+FmOm0A0ZAmwTzs4SjLT79QovIy09/rlB0H3vfnUj6uaL12psRHz8I=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb2226c3a-f6cd-d27f-d8c5-9071598802b0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb2226c3a-f6cd-d27f-d8c5-9071598802b0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>r190+SNuVkW2QeWT+3maeLMxm7I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>b93D0D9N10xPYejAb16dt+HoI+XrVaNwhG2WwpmoNW9TSE6n+pTbBi5yzZWQfzo1IfFAHwRclCfsEUQTNxCh4IkjGRvSPSqzx06+Qa1xobD8F6P63vpYyCoc/N/JMDCq9A3tWLvuvoFtw6TDhP44wytWBHFtiaz9un1YTICce3w=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>PotZpnCg6o5YerqrIz7hVe7ZF3uQc7QZ8g75cAA4cKSvlJdl77ww/slL8fembvYDtQleUahLipMPvrbiUrG6zSm3mmcgRj1JWljW2DqZoBCtrSMbm7YrX+2VI7qI/+ypfjYUgPl5mairjC1t7GwzBf7c7YUc6l26eKc1kxScSy4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx28b0cea7-580d-cd0c-b106-67524350ce0a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx28b0cea7-580d-cd0c-b106-67524350ce0a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>pI+XKHf9NO0ZXCLHOtsatbHN5rw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>UYfBhkVtHpt5KONQm0cQi2lPNCQoKbxtIrghjPYj300osRAp+iH9DRXwocULJbFwIXA4qUI1hjpVijs6LnPeDpC9zvMYyWk8vBSjhARaKuEcae/VsuVBx72ZGlzbYWeGq+N588SFeZCvfVregMi5v5MQpDl2penNPfxI5IMo+AE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>TxWkHVotE3LRTL+61BUvbx14EttYLECYJNEX5wWZIvWRlq0mf+B/d3RTGas3edsCGQscPjKGc4eTZ1jtLAeYIcyb4h57gtSRJ6jOEJrJ/T6SwTHvbzQhX3D8zmjb6XaflPJK306JFTLw+XZeYuUetO8CVQwlH7jZfZ3zuibyL8U=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>