Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxef3475ca-36c2-3469-ef8c-4a52fe9370cb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxef3475ca-36c2-3469-ef8c-4a52fe9370cb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Gnk7L5MntMCUtFEEH66ImpmbbIA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>UcvMUk708E9VLaC/MaiK0DuYjqBVjEtlTlDRQeFid1SkkywYoiIL2eoBWP88AXefYkAsBcwvZYE45HdqH6V7Kv6x2dMCq8ouPww/3t5GC0A7ZEiXdfVje4Jfe52VujIpHHWBXo2AyvVYrAVia3SAr2xGBHV7B5R/7rmrXGz0NnE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx47f500cb-35eb-ea14-675c-33ec04ed1e90" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx47f500cb-35eb-ea14-675c-33ec04ed1e90"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>q2kp16rwFh7Mu2ixd35E6rHU3aM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VDcdeTKWrWnsWlbxCxo0g4y7/rr+5u2/xBGkgarSNDTcON5eqOXGaNp7ZQh7bIdkqwbRyRI/vhte2unKSkpfzkxiA7inbVzExytScjfKeUbaSjF4vGxsXwp4ZRmB4RilBGZSoftYQdz8DKp99qcRc7gCMqMI3Thsu6B6Y95zPJY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb4057b91-a2b6-3b5b-ca26-c7e0c41f38d0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb4057b91-a2b6-3b5b-ca26-c7e0c41f38d0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0mJi5rGB9xxWqmVZ7fFKBr/ROB8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>gyG/2H8ZTIEJFATJZ2dBIxZvMwA1JONGXcf8eY1O/CMm9D2ZN+/UUGeMRUCqLbJ0w3Ta4iOvoNxw40Ndur7lvHOHSTfBxzFgV248sDMuWi31n+LGmzz6rQaFl/haXSYCT/ik6E896KDcXNKmHe1jyJkk7uGkp3g+62q8XDp6Hno=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxb27589f8-ea8d-cfea-25f0-39d0bac26aff" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb27589f8-ea8d-cfea-25f0-39d0bac26aff"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YtHJmHGhN5QVqHNWNXhPIhU2ei8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>HR4Hl1cHYWXOGV9iaP5wziMcFyzEc44M13Kmzjp5KVMAmp/MqFebsbVQizSmZI7gXC95yQLgDN60HYBkihD0jhPP+yHWhtJafk5JMjrrtvf6vRbr/2LL9aUuL1earmnqB6xubAlChr/QG+2MnS5t8FxxH+glMBPuXHnq0ngQlko=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>kRl3H9doYw+ocz/CKvMKxCe+D1qNwvJ5tet36f79ptktIJRVpQMrpsDirxUhCqreh0/sGXr4hLJ8G07+5C6vmYKw8IkXogjxFrXX1DRBLl605WFNllnPFvXn2FF3c/hYRidHqni8OJ8pX7LcXFf0rFueeztxCecdsUS041LBNLM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>veNcfIGya0dM2mCQhI2GKxdFFe/+1aD6DgQaFaB2x7VQ9W/5PnO/fG0nUaoCHxdrVwJfx6S9XukSwc54L7/zTMGSDw7Ovv3Nbdg50yTpj0F+7sGVcOncwAG3lAxK2WK+4vJBociNsUpTSmkc5117kNaUeVgB6ufXBMQ0Se3XLsM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9c8bea7d-277b-5978-be84-bfc68d435b95" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9c8bea7d-277b-5978-be84-bfc68d435b95"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>6JYHZxGBAgZedPdtahHzfhg89+4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>GSNO2BnSaf7fhXqNiB9rmXT1kUTnXuaWpwUoQEdau13F2IK1he+oYdmnxJIb2JKp8yfs5qxlud5z+d2qYTlTrjUyDBKbZUT16Vtht7jlYHCTXCGrg6MZcMLlPLmICQg+sszzICK+5jr64Hfb54sbRpkZYkUekSMs99Ha9xx+vFw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>kRl3H9doYw+ocz/CKvMKxCe+D1qNwvJ5tet36f79ptktIJRVpQMrpsDirxUhCqreh0/sGXr4hLJ8G07+5C6vmYKw8IkXogjxFrXX1DRBLl605WFNllnPFvXn2FF3c/hYRidHqni8OJ8pX7LcXFf0rFueeztxCecdsUS041LBNLM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>8NpjjECwLbPLYKOtxRkk0HrsVLSOm2KPbGSep71Xdh5sT4dUOotHesMllMXLx5IfOHdaklLgfgA/P/4jZmFm2Vo1HlGMktllxEBT4JNft5PYLIwQAnYV35igyqdBFJ1FQuS791W3MTGtoHLjG2pPznV3coqN5V6G7ql+LEvmx9WEQ3zWKjIiW3xLDcQIHw7ab650j4OjRzdLw1BI71v0knFRdGvI5yEGv4QDwIWexSVDCWH8ZCtdL/xKPfK6olQzxRRVUd7ioO2EINPu/P9hQWDjZTGDgJUB8ZC8iyJ3g9/jNsiIO0cMip+1VZtt+m8yOim4dmGvqXrbRqxltHxTah0dl1+sJsrXsdRL0/lGhh1LFMmXI2kIbU3vLjDk8YcojTVjzFnz7Kivqok1K2YjPi9XJpl0AdO6wnVeYyK0wTbq44Gt5zxR3yVeH04zNkYYUYzx+/4Q7AauXRqJ0fRTY5A3AJ6xcSD1f0QQNC+AlmXvsa1Ucg0MFMcDYqoG6HWEblh1WZXvuon0QnvHTIyTFc4A6kZPrkFIFbCDdh0+y0A/SyYt7K33s81GR0ECpVC/AIEWGYXZxqaBSD05E/bVvfXqif9C8d4qrtxMe4F/jTT4CZwQUrEIKoUNkocAeUZEVZXUYf8cmEM7UuEMdV5JgoB5FrPIGbXGfMjuXQyQX9odQVbe+5r3euoZCkVhpcgb5xCu6Pnf7XWTMQDxp2Hn/c4KZ1Nukzb4BpTEzb6oYj3cdWuwSSlYPo1QN3mndAwz242ByLLPpHL+9I/tagFXnablwx5Wt9vP6LoMfb+KRucPnEVgTOPS0z81G6Qp19gcD5MgF7PBSJ0THOMBfqte/ucWOy2I11i4b0RGFV+jROZ245q1mlYKmqxzgAwJqdddNhMsuCp53ybwLafCFnMGo9pudfVDwtNcgTGKSp3aCisKAHAh/CX72hQPNAVw0TfGZ/SvPeDtiJIWFAJ8LVvciXDOM4LfMUpL7JJpOGJVpLPfimm6OU728VYf/8P8nonBUOBbzPmDJy5iSBJamDXlBhJmImrOYpoxH54sJVGvjxKwEEudzRculPf3+ihDwOvMHnD5njvaZS/idt90iPs/Ib0a2p7iUf3i4BAcDI9IrH/efuGIxLxTFurQtEhsEH9Yj7Tq38E+Y8vmcXUbmrSFRrzHc6NUEwXriqmZPvHQJl4T0EP1XEX19IVHwHt6YlguQ3/kguTZSpkLb7nBdNG4Vy/+JGtqcZshjbrCx09Pz7BQT5x/b2NETmvERTSG1cF7qpwBk/M48cnVpnfToZDPibR3j2GOeMPQbFXXRKzMnWJg+t9/NZpcyFcSDH3iEYJ2RGyFi5MndnHJyOqVajofolRSmsHJZlpWJJuOnITtuNhbSSg2y2K03BJahlxwHWURC2RBbHfe07bE3+n8EvvuXElduKKl2gz93KewczbhA+GN/IWHSSiyFLn2HkgoRQVxWrWAO153HbSansP+2YrXxgdK2mR3YBK8jqExL+gBiMIB6hECVVWlhj6CwcFH3K02FLSWIr2tvHyCF15hP9chJpAhfK5ReB8fJRrnJ9aKmFCqozVXf7Zng3QQUmLttuCNDaCigAtMqImMWokWWLcroAGiXEPgAMZmJ4RwFUfQ0PSfFzVxZ90KdTNy76gU3PT4hLvAUsz4kmLHqjD3mTp7ElWOwfm64ctnBa51DtVFQ5jya598mZCcl+GxDALfm66vf78RnwTmJHCLdlD8PKRV9qoO8jwZEIfldfuaDIrMS9X4hJj0/0smhtKWEPhzai5pSXPyE+LuyA9oRL3jWLSfU65OOnSg02y6kgvBUKrCV4FzBKvNuIExC1+aTD7VLqUKQUPpFiLZ5GoCwUDUAuIbsd0L1b1gd+0Fk4pneqPxVDlv7berk6UAMfJ+Epm5w5PrZd7dJTSAgOD3j3fttFvdVgU0nNMZ2K3az/HnwXwBJO5gX6CJIOQ3QTeJN+GuQrFvg1WypNe7X9oKvPU8dEZtcef5OLg0TlfFc4xgGxoTUo8ckqJst8YFYgwZ1wCgC92rS78mNJUxt9KrWKDwzv0Hj/qVrpvnQ2Xcr/Y3wV040aqaBW2WDcs/LO+Qctx85Ym5X7YojDz85gM7uvzwUkt5J09/ICagMSVgvp4qQ/4OGoYUpb9kE0df7z+21KcYBmSj14VMwTahn3DhLLpcq+PgiPRbkUD6ROEKPwIFC6oywmD2gXpqwzaVo2/8jsneF9xV/vgo+s3fWgjQOYZNgjZE8CAaCq7fP6jPzTHJn24jo9gakBUcMe+YTE/Bq13jtVU71xvUgrd6suCKtu8jOB6GqyKZT232Al2BKVHlTwLVJirfxvV2auIeNGC48pFmGc39XW7vDlFNl+cMEVXAlWGbRmjvLdkWkwSZW5rg4j5YuWbG1zdbcLuyXFa75ZsKyVVcy6axkvVimjSTDC75K6SV4VtOQEK38itSBDUpJtyu+4b5n9b3SuqxIELQQ5AR8SdnNCs6zLNRNtP3SGZdShwk+em90+wTTNoiZsl/bsGxcLPyURW+oGs1+P8N+OeHQH7RM82RumTtyMGxBFzlvpzaSJlb/AR+Oy9o8lsBmZVaHjVn91iChmmKABIgeKkQMDvQV2rqq0Rv0CnwHgjqk3DmqCXIdSfcgD14nfEfbgGwLCuu05k5WnTGG7SoUg+rJYNpD5K6qbwBbMZ7+Pw58aGJ+U+hCsHWv4fEFtQ7m7XG/MUZPJazwtFpX5sklykO+8ZIlC2fgMgONYa37A4tnTM8LqEKMTI3UWvH3hzI+F3nO3t/18D5kCJqFB3WIzqJnQXRAVPzBLAyMDjIqTekYNUPMLZyt5JDhYAfHE0Zalwyz12/1wgNWifc044xgFoI6yEnhLTDjA/hz3vHLi4o4yhlgeSWDDbaZaTSZyH6DZO+uv0=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx203a2589-8a2c-9ad2-3677-4c8de0042ad5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx203a2589-8a2c-9ad2-3677-4c8de0042ad5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>K20MI97DSda6lyuL022O/CwVIuo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>OTSW+q/SBTKz7fC9BAjXFyIG44lkpZ/hxJiD/nzJB+G0NW7i5tRJVU8I/WeyXBxBc0xpSrG0fFdIIYisdMf0Cl2fIkohSXJS5sOUKdgDx6jSdbx0BveWHrZmVDHiGG6VSEXMlAsZTfAiS0GYy7i8THDs5EdUZ3lfYTJQMqIiyAY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>veNcfIGya0dM2mCQhI2GKxdFFe/+1aD6DgQaFaB2x7VQ9W/5PnO/fG0nUaoCHxdrVwJfx6S9XukSwc54L7/zTMGSDw7Ovv3Nbdg50yTpj0F+7sGVcOncwAG3lAxK2WK+4vJBociNsUpTSmkc5117kNaUeVgB6ufXBMQ0Se3XLsM=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>dGTCoxxKutkrtkHmv4awrev+EBc4zVPPuJn+xyBeAostWLtAqTmKtmyz6KtXdII+TShW5Dyqd6WzVaiUlvnT/F/oP8pay51UoIAtfM0l7jn04ZzUotL3HBK6UEDfaLjEsrqkmOkWqXixCJyDiUZLNm6E3BAypfBV2aIvmRu0JhaoWMqiNhqdmKSqggmLNT8jsFzNOaoethT3I3tB9Jvsz3+li1Jt2SgFl7wG2xxPUAsa0avsVfbIzcefVHu0ySXs1cjGtCCYp8sg9uCYo72HRWPnJ4Uik4dP5AL91PBYoZkMaoYB4mruIjm/OrAGFj84BXda9HXOg4Lt/P5qiwQOirLaqkbafMB7Gk8hfi1H2TlqyxweuEz9g7DTe1ItiY06JIJJuN4nPa4wnskSjiNU/ethBxgPRDo/cmKMUOyBZiqCPQuebwrcDe8H8/IMC4fgwsSqi+A0C0HsbanXvPnwrdN9muC09pCY9S506xhhfBZoZatg0JZBm9UvUq+joRKo3bhxkeJjM5oveVHyU6CxAxyERHPm5mfS8pcHecnnWuzXgfaQl9zSYbaKep+iJfm6xD5bD+ZaYK1yn8LKjELbQotQ0dQd7hXA8a2tAv3NtasRJLctX5+NnXoYgRo52mMPrWFTyyZcp/qZd8cccEm2kwlQi6CosJgeinKgfBub60FBg9UUihE7/BLbjyr8K1LnzSc7tuA47GshSAgVxx1vJQSqW+oZGzpPA0fRz3h1AKca9alg3YYeC4NRkGsMP8WhTCzueyVamAgPCObFaOvNuwMYl4O5pCeAYU8XOaINXHp5SS9+gtxGArNX9PgFJMUxlTim8NeAXFKHO5H6mvCm6pbC2neKDvkvq5JIy+x5s/EVZ1/BZfwjzbP+Dt+xFcqlOcVRKdJ4F7PkWB5WOnV4cHqlnUg6PGiRSmQodk9NCvIijavGyt3H0QxvwjXuG9NCpXMxrQmHJlz2S0SSkyjaWRMcj/F5ORpEilMXMfO6GmA6JACd964ew7Qaj+hzkzRK1+Ocrorgm7w+nmk0suOh+e9XtewGIKh0HN+X2Z6MCK1FQwLVU8k8Zglvi81cGRiRTWVJbw0pf0TXEeHmi9foG6KIf+qW5R4hRPVsUvLWf/ATo0hSbgqNdS3yEkjEoYh0CEucCyzQRBtAOlNPB70BE9h9k6LTPbxX6McObs0W8wLoXaaxF5yeL47+iQsFUJ2bFkuDUVJsgyXAtEVmyezOguwNYvhhBXq09n2d9NRFRzq6N3BwNNmAUtuBoDgoqCQFsf1cLq5CQXixcS+Mb2d7H27IRhpWMmKdMvCgZMLaqKhiHFEW39ZBlvUjI2/wDjbfwfat8zcjrDjwTlPNERnDf++oN/OS/SNSEPT2Qpy9hDSXsdf+MkvEtoruK2b2cGvYHXnWL1jYPys4SzFkE7XSZy0i0TRGo6a7a4iKZv9ErmDijCPCQw7/n86ClE9X6KyYt+otPrH16iDW818rBu1UBmxoHIpTS4D9eNzDgbABWD90SVBhFJi3lLe93G0LlMo9XAA6TZ06W6BQvKBEVuRmrVdn6m0aNE7cGbu6n6JZxMqvYSCCOYD9fWzydolshPCCf8/CdIFDbEQvUDeAqz9rhZXtD5x+sOTMx4eCviETGGW/inm2Om5fJcqS5hnd2EfPlYSfHmnm6fCHamE/Bmtz4NN0HMQNc2xGC4mjwnAZeZWoAX84d7oNy/AJj/f5tAvi9Ilz80w8hdKjQ+X/NzyqsnIwN6+Yrxdg2XKiJidcRFgEAH0BJrIdxJbJVZ3ZeUNjgR0i1S2xQqu6PQsD85KzCiF1YajojqHyVj2LGmG/S5xf93AsmNuNPTLFmufTc71iew48wq2Imf5+AJxcHniVtTJWhX9hxdo+u3Zo5cdafCEMK9VZdO80/Y/EhBQRM/qCBVVJ9Ug2kZq6+RQw1+zRkDwqm1UMrWBJhTkMaMMZ2edMGSaLinogcdPuGr1jmBeodxTewf796WjBqL9P50iTO/mwgG9wxw7GRXoK82CWK5NDJpQkt06UXmmdzcuqRBidUM1HuVLbqhC405A0+B0JwTPQAjHlM8U9rIUswrCbvL83cgML50pFd5qY0dvFFjdTpuETVJlNFCkV2pcR8ok4YctEoW/Oxp4pGXwLL0P6pT5hhfDbBRpj0kbQHrfodszR4kYqc2JmqEN6KmVfHXHhZcrvDIZCNxKWgMPQaamfVYpdg38neX5Gx1aK0zDUp+Vaxu5jD1CQw2tC8YmxOB/kr1jNo/Wp7/c1eji9JhH8Uz9WvjWA3QU7q2lz1Qlii7uX5SXpVnMPPIjap3K6RR9WQSFfw/Nojkok6PWIK6Tox3SmVr4o71lzawxu7i7FFZX3ntoD0TqhL8apjhw+UoCADOhURSJK7spXOWfaYU2fs6gP1DY5/0OBmJMP9RtcvZ9OBFa5eu13Z7MnqxQdsSZ5u3rJTv0C9kzeg1M5e4uxRjxydBT3X2F3DSDWJukJ8w9MaVMIKeipgkRnsz0oh9iqjnW0LzFMLtPoz8BAPigdP3z98wJZezx94el5xdOgEW/2C9a8mUIdBA3ENrf6HhzNmz8TAw9uAnIN/CSD1/9rT/9PmaS5fZ21qyJht/zqQKY34sjrLxEhnlzlEsADkGfikiFuseTKnOPO/rUXBJuxXVipNLBB5wUt5QyQHBVlvngGKEC92ZB7uTs21A4dkpHgzlttv6wON2bZ81/n9QOwNi4fwNTHYUNfdCdsAQfHOtE1M9GKzC+xnGJKpzext642y8+JT0hOwscwUwcUuLSM5I9L+XG+fRqNTg/M+464TniJyIez7FkFnL4XTHztQ/nODfVFmQ+O+5Xxwh32c//C9e8812wN+aErzE4B4XeS8iE0gohIQ8oJtT9Kg4UxIHAOhn7WYftLOPWvBW8WdzEz4pFgD+VmiG3EqjYlfcOe+1BL3hUPaxYrSmehMOucEl2iHqVL+TCzu224vyCwS9Gzyg+y9ii4gVb9J532VXrSIqrVRMoWYUmY97GmdLpopkn0fQmqLBBv/cLk6iwuXChhGARYHdh5n+uPzM4WfofijmYCZfNeawWGzHZ55o+0XKpgwkKJ+2racDE2ckqfjt/AFMJnPgCpmYRLF2OG+SuCTruoe2zKLAkn37tN3Eq1bVt3zC6J+2mFtOwFhXfVE5fzJcELocETphFbIxaUpVobMU7LkhZKufDmUVrMtc3Fm9h3OC+eAD680Tqm2El4W4E/mml0KnJyBcQzCKusm2O/Xjk816RwemMtHLGOU3DHs689SbjMR47YfBWsb27L91Xb8pqdBymqcfCx8uDZChQkEEfkzU7eJos0F6VOC9hsJPikK7KKs9AfIym+0hp6ehpjW56IofaSYq1WaBArYzU0tJmHLMOC0u1Tl6mobFwQGcZzVTc8Ml7mKwqCI64OvMEgej1zy5EkTQKA+fHpQbz+bD6hjPPnxQLQnJ06JYKW9LteUqhAvX7eYg/ZhQSIn4q/A3LsteJmTEBa0JErKMLmmDu+XsmYi9wCKwnFQCjuddQqyHAtXhDRkIikIEJseO7sySFWEgMibtRbkzJ9ySHURfjQZzBDDFmidnGXVtLWzKW2YPUz07TnL4/FQEEcj/0CyS41caUNLLp7N6RQSsuemfQ0n/PrchdEsusSPbOdX/B9AVF/OooqgdsUcXIfXNVvJPzcSm5S+ppOaP7A5sHCTt8KceJI0NLMnS6YPtskKuGHpGoMjwcbpasOxM7zAwzGPyfMrf2HQQAN45Px7JRj6m2j2JhwOmRdnXuHgAeeKcxKYZBsXdN5JMXuBqlJmjl6K1GEkwbe44wqP/Wf65SrWKytVmW9fMOYZ0df6nhEUvyV+f57b+GY3vRsQNc49Ok6tEyv/Lysh36v3a+H4ZeiIN1gqUqzH8g/+3DpSwXfPL3VO7gnPZCWR3qQrQyxkZMQQ0rw5j8HDb/46Rbwr32z6BTcq3H4VSAdYODlSQMCTit8m45ogV31Yzy5i43EKEBC+SXRw2ZLoeuLn5wByLRA70B0EEMEdndCUykDOYQ74BFcMxth5rNJj708GnE4I2+E/pz0LD/aNmL95qtrfOSORXexohJVcWAl6bAhcGu9Y0oBwfYgBTPB10e7cl4x2AC8ZRYS9b6SF38jQT+S45ibYglX8MbFyZZPb8Bkp2F6dv43h0Cgi2A+zpn5HUZV/1igKTX3aLY9HUhc0fgFBIsUHUTVOU+igpoNU+P2lOSIpyVvpRBT3b12AykwZUKB2jJ7h/vWb/q8iFs1ZzIZjWvV7IG1Q7i/PD003J6oP38kaqg92i4Kz7Ne9ZTQsBfHwKo8fY5n4BTl3qk2pVlEJjf0yznV+M2xBLfUnZAgpltpIHDuuKzsTTgZDLzZIMTUhDNUnM9lPbNjuCYgZQJYiXasI5pmOBJHN+im3OaD01BDjfsAXWOGXIKmEtjamRTz8TC0Ldb2RRvjgw9UuTgEW2GADqHJaNsuPxVnv2RMTMh54IVs2pwxBMyMb9RRzM+vfdWDdrcNfZS17J0axKdVi4jmWmHPr275bKvuAqFSDTAphA9LUGh3VtXIBCJUCDj28slFyNW5MZgEBJ95zov0fogfU0ezb2Lg1H5uAU+k5kP1nH9N7I1XfiRUEwfOoeot7O81wsSr9NSoBhdskDbmbFK6CVBMjGgAkuNUJahw5pZBmxGK7YZQy0h4Y5QR/4s/yE/2mglThjselFsWH+6sSEcf17PwKGsE8EIsO4WsZGEIHE//5vaxoyRC3E+i1H24VW1IQH7ONejh/UFIY2jsIekIqAceVW3TzFNTNNyermUYTMv9Y0qpJkKN22gD+uTFAwkE3gs3QR7YOmnT7J2YNiYouTiOOfJeWEecOfgoZPdaEYLhJD6GblkmImruku6Z8f6QW/70YFvgnOMBuEOhXL5Y5TpEd/9BfpgBTDcOutXcaRoxIvAh7njN40khPieGCtSP83vrT6INF2AV8a2Vlso6iAi8mTm0DHcNX/MJ2JLGCIeP4abOto4vnVKAOelfbMb9U857D9bBO7jZsrp1iUtEguPa/VvcJ+1ydh8jwkL9qLEFe0IVAxdvl9+6FphyJsbMd5vSmM4K7bhgp7tj302xxbZY/BBqR8pl4L13/1ndbrysvQj5/a4FbRO270BRfXIpYJD6tYo2aUUSa+FcqEptwY2dOILjChVu5V+Di65ikXcxWsRsiHXyXxsbmoI6F29oxPPE0KHezEf93YSubCAjhPjAYVs1KYcK55ddCjUepV5gKIqOYQq9I3QuXdzOuInsOVJ0SKZVG6P6QTEIL5k7mFmkrGBE/Nj5SsCzWH66P2t8H3xegtYMVjO4dH8Yo+QRyao43keSYuBZMgRe37gKRNsE+5Z44QZ/aysAMR+B8uodAZTrWuyMFOa+FTG2LnUMN7pgx/avakhfLRgVFuiusoJHXLis4omQ2Ga5RJpt3nO8Q66629B8InnUBvjURlcOFa0=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>