Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx699df4b2-fdff-42ac-2686-d7e2427e2572" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx699df4b2-fdff-42ac-2686-d7e2427e2572"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7Fyrk/ad/Rm+uKCFXbb86zKGhUc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RmCZSY2v1AVS2sGi2xx0MqqAXKiWL/DUMQpQGdkjYy2P0s09Kny1CbqKDzcQ4h7MvMMxxzrw1EajE6+VkRKCZ5UBKwb0vEAUC/9nPlyf26ZYfjZIkEZhSP6ISxVFgZ1DXqE3vRFrxxI9UZr4EW+84KIv3euhvx5cL48B/RQ4EQ0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx4f23b5f3-15d1-e307-5d64-310056d87a28" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx4f23b5f3-15d1-e307-5d64-310056d87a28"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LpMwtQb9+iRSfgwHbpIISa2c1yU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>gdfJyfvllXwLp6I7UwFzZRdxdk7ZbGmB5tLLkEkI91cDoclh/xhRl/nquUoZRv242qAmFbM+5+s22iTLh9TlObKdTCfHb77QYy/CuWX8VAcz9NFEqx9grMldxf5j5qMwylR7abkji4gB7KLg5QRds/4e+btRzCnJl+Qk1Igkpsw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6b0c4e1c-c5fe-ae98-2aac-2685528fc03b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6b0c4e1c-c5fe-ae98-2aac-2685528fc03b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>iLZirvHdWs0T4gHoQHkrGiALx88=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iEwiZhgYxuT+D6EgocUJbtL+5s5YmyX6B71iFKatpCypRGfsXrgRNlQ43oGacm8LrDIok9Ppb1pL/HPU1KNupjdAV5lx3k4xb3dDy1eY2dGtmWeUHlOwO8G7Ns4wTdOUERNPMeuze50c0BIFw6VoeKOipNt+nIAe88mypdv7KBY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxaa774c12-577c-c6ec-f6dc-87bde6ffcfda" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxaa774c12-577c-c6ec-f6dc-87bde6ffcfda"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IamWVaf8cm/q3tRRAnzmdlc1eqg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dXUi3lDXl3+9jJbSFyR+5+q59/PReFcYWPaLM7h9m5g10TKrINvor/4mGTrJ6kwgystNCheu3hpTg+k5k6NRWPbf17zHfok+bSie3L8g65lE00f8W2t9K2nCAAoI4RzHHnBUeSH1nIfO/X1MDuCqR235xgtrQtSQOgKs8qIeO08=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>RY1xv5IW8XwAH+stv4sez0YBRVk8V4l5RODX5fysmhmZt2BOvnVrMMW/fW75CfvY/5xEuLpcnriVkF4cYpRjnIurTFsTfiJm+LOdcB+olTsH7OEN8Dayyl7H9WcGZ7GOXevtkWfJ0KP2xlHrJy9HZJl40JJnCA6JRfBzssDUmQQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>vX5O9mpTwT28g8r6/+UaEQ0lgSe/EPUG6mQ91RkF1kbKrqy5q+UySjLLrnOyQfnhxQpppsNuBb8E1FYwjE91rsDsBuj4tyHqorZFEPO3Y6gOBz2+7tDQ5R5vtNBicNKHltk0goespSwE47a7Z3NXlCmPnCa2guQvC0rpSB2j808=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc45c2ebb-7697-5d50-5267-a244955c1af6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc45c2ebb-7697-5d50-5267-a244955c1af6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ICf3je/Of/DfK+2g2CvgWLgHVI0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Ui2H2FpUHQvFCRqn5N+3S8BX8FEPZeqnRhS6SgpPTniiHnSYABeTLtSG80FjS/WFRMbLH0kQz7DlfPaPFUK34IifsNgR3cM2FpMwKrQVvO6IxknhurS9NtgZlnUmTa+oUimp7eEgSvxTpubDWxZf7eSP7sXTJwJDNzdozrYucU0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>RY1xv5IW8XwAH+stv4sez0YBRVk8V4l5RODX5fysmhmZt2BOvnVrMMW/fW75CfvY/5xEuLpcnriVkF4cYpRjnIurTFsTfiJm+LOdcB+olTsH7OEN8Dayyl7H9WcGZ7GOXevtkWfJ0KP2xlHrJy9HZJl40JJnCA6JRfBzssDUmQQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>YVf9Wdd5V0YIFsf3+ZA69xEiclTOdP9HUKH1nWlnJZT5G3WaGNkdf4o4kuCk4gnwGYsyButUiZfSeluUbZGlCTItfjgckjh6pSvm3kslOnpmIJ+66BBiz2vq48joJvYjAvjVRjGFwx/wcPSbCN7wD/L/Sbt1uFL9KKLN3ICK126aI5nromD0eRcxfdJgDdUCoWiDopL2LKj0PIbYxYMmIQwkbbXJe5NLDkeTo+7zRikTYJ0dZ3D4zz/THuzZMWe9Zndf8B0BItL3RU6Keo7Ct4Ogo9UrQbA7j124ON1ysHIaB8bA4Wb11rGF0HFiqzCjz5a33gtdjxPBoK9J4RBzIjhM8hDjPk6EkaeQUHn5kTKbZCEIm7fRiBj20sRapia77FUCYKEQW1tX+Yk/cE2S8WjVcwZ8TVkt+1JocuDDaQEMxI4UXaDa43CB9yoKYYtFLhHm0sKcI8RJIe+oFmXp33LqkXRj4wE5uHsj0krlIeOn0p88RockI3bcVMpuHCHuLnXb6CDFRAenoiNLX61TIe5dwl7dE5N/XCcs1ecTZLmJb06PLx0b+cLgPgFTqVV0jOk08BtDEEzuYfSYSn1LQelfcXW8xE9oFYJslW9glQyLFvPrrpS12A98AJI2Xz5PQjfZ88MeqRNn0rJ23Rn+1QQl6Pb+PXkc/x9Y+ibVOlm/C7GranN/Z+SEx2nTYoSpZbw8CgFXwv0yrrn1p7U/9l12/L7SlH7p3GNRQm5YvmEr/XzJxYJWIMDFo93a2y3CxISKc9eFRGKltXZYjNaGNcX3O/eK8oxiTP/JieHaSVfBe5k2gOuqqQRSBUiXbRoijaKCM7pm9jLvx9wbZ0SIJCvphNT5Pq9tIhf3mJfNEpA62Txsi87Q/QHwHPbfH/m2CBcB2l/1x8RHg52zzgiKCutY7o77Fd54N9eA7Ae1hmY24D1T23g7zUPFsenv8nQyevg3m3jhHwxd70RY0qKiJi7WSJ/ReGzg7orPXnqoKT0KY79d0S5WPj+7jKKH8PSBgD3BCuPPuHCI2zsOdMnMyp+OMaiXULBOQnQWs/S/cagc+JIWAUTbtM/7jbsSmXb8y+zB36G4VC7cGgJcjsJ4F5ezCB5VA/6WhpoMAKK0c16NmNxcctS1dJtPnPrD6I5sYUMdcOmU8aab4gOp0qXT8eJwQhdai9Sz17JQ2A6LirUn0otxE/lfDjyn7ZU2PuOn1v+G/zSwPDdn0jE6leFCLVEJFltiSkG4R/ek9TzpOnvkCg83Bww29HOSKzE1zGGD2+9yI9xUg2suI4+FEVw8Igx0lbRORXwOY2k6Vnd+Iwr7nowT4QuYZ7zBXkuYyZPYYWKKpwVhBxaCHU/9No5RrF9dvagTaD8SfndFKj1dYIRaslJkBbtLGZJQ1E9PrC0lUonMhK3DbKZuxc5e0tW8cHMK5TudNp6g2Gg6hmybVu87/k6KDqasj7b2zb9Q4KJboKbYzqu4XXtg1Ud5z42E6EUrfVGVKY2A+k1GeMM2GpAj/dnDlc04OKmuQJZ0tzSJn/fzjWRZMqhKXkq0t1lttqR99ddeSMaHo9f+Ap6K99D+sf82hx7S8kXN5FvSXJeQQ8m3NG9FPVYs/hoWL6nI+bEKmmyN9pme//Hkw55H0b0e9L8obhTk2Ep++UD9DgqSciAgzNj+51kyRYCWX5nSB/+cnaaCbyJDw3aCadRfPudaIO1BSo5eFpYfkn3TT8U/ESBIAYw70XQPaaYzGukRDt2O9Ex6yApmMLZEceQmGLdgg19yT1uGObicbh54B8HnBSiymGD9v0QVpShoM6B+GPtQqyPjUtL/biz6194z/5ovPNPg9u3F4AJKSHtLzSRrplIl4zU18xIzUHXVOp5jHSj7FzMV8OzVFHnFML3mCGKCEegLUUTrtzrseQjXF2qaOnN/VEmHlQUz8tU0yUXsP9P8Dh1e0sYFv9Rtb7pjkZes2m4b/wYeY/0lo88XDsYN6ZhorSJPf0im0nJz/cx97OQc5OYQUl9yOjjvDXRNwfZ2iBKpDFEsIJB8mNVdd+O9nmBFhbuotVqKxNZrqw/mbASXmSUziEgvxWvZ7sp7exVxhrGlC7S7s90gCOVA469L3inokShbb2TILttIyRGWtMMaiX2sBMDBs7O+dv1SO0iIHTPMLV+Ie9g8rjEbTdmbZqtXxIjaDa5vzlCNf8fFf5u8R8b11XIAdXiyVTFdWMGP28W5qBCxFghHD/8TN13zUqWvUV8AKlsIIZ8lXQJL/QdBlDb+/pLG6HRT9Jvi4a1ucuriTKoAWB3S+X4o8OQjSn8/VrHIVC6mHZwtEQGeY2Ybk25L+2JWnsbEtI1ZVUN1ge3NaQiU0d+PhZYgTv5mbGg42mxqdGv1XjDu1GJaqKB0VH8BDXW4oMK3y4KbqBl2ZWrWIlsd8t6h49XrpEJhA/d8dHQti+ez5knpMjpEn5zh8SHdJr0nGZ/B2AAnhSB7Y++Azr0cAJruAIatSGOWHuel+u1kKaWcEeb2ZQYXI3739J57In3+NrCe43JKf+vADYcsvctfAOwinCwsdvsHypRQWiCR3UK9JGnbajXQLjpuJGiQEaHF1mpFJ6aufRMN8E5bOQpMnHYu2L0nKw9RsGWF3VhvNe86CuyXoAAcdkglFrpVsxp1aAX7kxDTG1Ma6qwHXhl0mEhElqyuGN6BBAmX9pAgu/Gyl68mOqWl7SqRC0DoN5oHd32m67Y7gh/f8WZ1yeR/86Q2EHolM8IXbS1LlpicWC5fvf0DnHJQCeMLx/L0cmk91i1NRa8voSHyEBGK37k0bK1cVlcXwOFoTEy5k+Elt5LgOYUgzYyYMnljQnc1jI3h+SVQRE8V8KvaHFvEtqmQGgPhzOMSL2K790G8Bm+f+vVI7WYloB2J/C1W4DI8+Wz1QfCw1WayuIY=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx29fe22b7-a599-fa64-be5c-799a31298fb7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx29fe22b7-a599-fa64-be5c-799a31298fb7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>d5ADlzPG02khare0Ls1ixfDZX3k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jWx6elx2zFSXResIVquns+W2ssCZ25wtSHdlKqBP5AbK+0woFEsVjjh3evtaBtfmaKkxz3KSikfO+/yCX1hcHMaupuXih124i3k3+R3C9KwtEnghT9VQJe3i7rP2brJ/bPfkjsFzYFCSLUOH7z6sO7YMoIjOjk/x4QUNQd7xIb0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>vX5O9mpTwT28g8r6/+UaEQ0lgSe/EPUG6mQ91RkF1kbKrqy5q+UySjLLrnOyQfnhxQpppsNuBb8E1FYwjE91rsDsBuj4tyHqorZFEPO3Y6gOBz2+7tDQ5R5vtNBicNKHltk0goespSwE47a7Z3NXlCmPnCa2guQvC0rpSB2j808=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>3HiJ5NZC/CLUZtyU4iRSOs/cHDxPsWreiL9N79y8HmtTXnndX8+Ni57AnvKrRzyJS/e9UVwXcleIZHeOpMWoQESjoKBGXJerbdDxJZ0ymQUBbcVs0mR57oB5KcCOSxAmT67r5ghJFQ7JMNiw0KbRGaiDEw5cHnSu2xrGlGBlQx1PJF0+Ugga0xm5QDH10FfCIjtZGLRsa0zM4PqVzQfk0P5Iaf3epvr5ddDuvce1nU3z/KcP91BGuygorFE3rLMT0thfmiEZzcNe+XWAOw4EqvS7m2QVhsWCe8A8qCQcQ0Dx95q7sIb0LExAnf9lwXIBhNOw+Qr28o8tDD7zh7DQfsjatPOV6uqHkDt/8PftsqxDvr9YPtzpO9foHSfWo+eP2MqtFVN1LrVV6fWtoXGio6PlpCKjCY0muzQJN8Nsr4LmY6ZW+1bFvj76DWSwWRJ60GW768zG+fIPOM1iXo5baNCB1a16eIz+J2k3M58xGGDKtXlHp0Vcg1KQnAHaEeaxyyU9Re3eVgAWAVBbdDgUHURt9UfK99hxrGnBG6kD8Y1ajnkmFIIOii8R4LElLQbXIQRQoufqX/6V5LoH7tLnLnJ8cV0U3Z0ULOu3IIFSrEOFbq0eo3SkdwqeFCGfzSSJiFyaFBTqf4UGI+UMXWnoGHaJsMH46pQhdCIMSbZRCKJd0NaGuP1JldTpVj5FFc+nvNt3rX8UZ+1dOgVOndkiLpBFKtCWmqLpy/TEbWR54HJh7lDn0KP2m5878cjYz72HjYQwwLZxhYmoEzXWagldrwdvFgntbezXhDAlSrzoMV20bqV8GiSvBVB+j7dBiQ/UG3F0eFPcdFCIgwxIDVP37BiX2vscQwaXjrlo6UOIvU8kTTJ/SW42NfFhf21j/1G6KQZVKDHHLm/bGwKcOAWnib4DOTH+SklqYyZtxlKVKYQBfMQxiV54FPpHuLwWFJVlADQfA32Tg59ISHHWyPEP3iGhX5NNnGHNSokc7707wAdn4GxD0JcKm9GMJm9fBnuYff4mb0mjZtX3d6bMm6KYNnltGhfE0DkhJmPjxy/eyVrArQHAMmzESGVxQ7G+2wP+QppDPaW5Mgvgf1GnvzcgpwXx74ZFTE399wUFrXqfAbJIwbqViu4ArMfyApdZyFrb+GCPgn/URymKXfNZBxibNqKITweDhiHh7oSfo3dqV8nund0aXaaY/qdnHMcYACgijTZ3xhbEvg0NhhKamDcHlnDtOXlLyQ6WBsr/dvM5CNmObPJAsAc8Cp8PL9zlcqYmPrFwhvaniarMaApzvEm1EKABbzvgByq88crKVno/OHbjrw23TTLBVsW8tv3MXQgHxdVTjb/vVfgF5jEqa3Hk+31X5xZ+6nAw3Dnfg2DjbkE1DgCQb0dhJx4UohclddTzz1C2sexoT0gF4CDy8+PNzPJC8bNvRFYycqP9RcLKOD9bVVYEt1xiuH3f8MlQuzMHtSHn8R5V3b/j7gBOusT8weX9p+rQSAfhNzwYu07PTjTq//N3d40zApWs5AKIleY74E0PTt1eQoo0JOpAc4kxGbqqHgNvluVyGAasfkPsa7f8qj6Fx9CdwdBZWrKTzocoyislrgZHhEC0rC+IZjvxUInnFu67eq+DytzsljHT62bbUQ9LBjwDpBh6xNBaEZ2eTLtna+Gg4bh9S+4iRnqVx79JhN2Y+jEYXqjDNyXIE0d4TN3dYtbK48CXwgpqVbUsD7ESYrrCKDANYySDAKgoXD18peme5VgB3TRC5yRYHW1Bp3SQQ4GrMsPOOdsc2Yu+sQSlqC9uOwOgNDd0soNiQ4BL66HKnNBCaXsZ8bCdL8cBa3w3ovGdECUiB2FHl3pbjKc+ldIgwsOQOmKrLuHq+dRV2tyYhD2wXWYGwsn3CHXC/q+Yoe69fviwzh0KCAAQ4a4d9FirTkGzp+xvGeJiJSCNqsLrlwS0ouJ9yo66A3ZgBkZX9Iv6W4mi9S8IIgVfnNTCst8veSH9HuXJzxiNO4dm/cSHHqGK7fUnFfVkgpclvvwosixTqiO6TRuVD68FY/Mer4vzgEnPHtFEleQq2ke8fTAfBbtSCmKaQF33U9McnAeMpFZbUQI6Xk2bUsyfgBy1X4LV43dyUmW17ucXnOGnXAF9tD1K4nKsxcXCbhTe7ebHRKdM7AA6jfUAALvDUio2ctYz2XCnpLrdDZwUCatmKAE+lFdItdWAxRj36BdmiI5ug2pmhY6QiOGnn3g4v/YWyVhe86iiYZP8ie/SLXh3iXtMVJ97iNqDvZasRZlFyHSLJePmu0c7/FLoPXApeyquR3lCF15P8f1uPGvpj+2PnWGVP/Asn4s9nr/3ihETFVInzOhxGirH4KG6C8/8baTddawR3yzVKrLwhwjh6KIc9XJIOTG74zpIlivroRbaxHY8hAhdXtfMUXn4i7uqlXWmUDImFd4XsWGwfE1+LZL39AOzienU1bsCU11/qoAiwXn9iqOWN83tIWH6MJwkWOnAOVseCVImiiWZ84Wj1IIUdh4VkFnGi21rlmnOgoxXvtZUuhigKTr1N7Z+uXGl2jbKbtS7boG6ZEGab7ub3jQ7ChsPwNS/LpbYTx2PQvcLb29PuYqOaboZx9H2CAzGMTM7TY9icO0kKYP35/JMr142voZ5QmHoKahF3oXDcrpRK+v7QkvlpVioO2A3wLR96Mb8Pc18632VxWd+c8TZragkskZAyljAHKqsRLgNftj7gs80j56xJlnbT8PlSFgPSXPP50iaAtgx//93x16xt8F6oz5Y7BKFBUfdSy0pgAi1HZ5FL4rZ5+C4NiqUi4dP89xigBQtkD0a/P/pi+qMyq1Qv3dPNeznUQXyr+zFz1INKlGTdAkXBqpm3WRtDIvTY40PEjc9nxdJLHHqmAuzf/zdwYPD5AYkHjW1qjWZbm4oTIXVFerow27VEIIeAqR8z9nxNgW00TZBSYHnD8iT3qmg4ghYovMZMtnO//MI5+G+xgKWK0d3pSMXcJfR7D6myAx9G1rEBDppNsdfT7Bz/QnMFVAuX2a/MqUETMVupDGUad3yrUfVyY30ipVxAi/8J2ynLxTeYN5ahZzKLqLhFlvh/5t74Ng66OjE0hRlqoghnctVzCnJUY8yDtwS5oFQqG8jyVjs+XLdost20cB/uj9g02pYexg/UfMSklSSXQQco1PPrIxTGpLzr4kyDZbQwFIdwxAc5g+QLr2z6DIUBAKhH2JgPTUZbMB0GK20OW3FrFawQgYXKkKrmSSSnaXsNYocpzzFjHU84AdvXpUDItn6b39+Pe8iwWPoKeE7Ua0PKzmgndg1tQLwKDI5JMTdipUgScc/waW4Tfm0vb4RLT+dl9hAkRW7xq3E5RaOaN0PvcORhww1fNz/Ts9GaILXjq+BOS7ggEp76vMOxRcGZTKLKja3010ggBT3M1FV5UF5in/yTQ0KLqoUbleguM91Ja1/Ug53XkSRYdC0xVNwS/3LY7Yj7NNfCMs8r+0RoYcSqnVuSWRmHqq8iHXdQPoKbocekuuWrMrdX3+w6UlW/eluoEsbJ8mdfqKJYntwxyFA3sDaQzf1Sb29EW4ez3IwUq2HovVYO/4lFPCf84qYke/7QnNS069CTvUtl19ab/jnaiHIaIjcMZqlVBEBne4YIhhnjxKV6IH6TUS1ptWPd752DllajuJMQBf2kzK6/bIhoa+qJBc4NVi2wXYqGnx+66QiqZtNscTOcUirrHfynOMxAy0pEVqIkX0TB5cDNomu75ewLGohc5G4bzelwEn94fTCKfiQjp5kpJL//Yy/3G/blJy0lnYrqSdHy0PU6M3AHAinetyOHD0Wek3kiCnd5e8LKZQEV0a5N9v+lgFHOSZXFl4WXlP66+WOGywVrE2MpMTKvVbnOl9kCBQeLUvNMTHD+AH4POEeg3uNF9BRkvPUDbWRjfgtd0YbXK7yqT+FE2KuEKQ+gv7/QJELCgC+qXsbcv91rU28bLCNqgSevXpdbK8E2A3Xn76n6RYyCETfU/ObNhWrpk68gQ4vOWsN9KpsliFFRX0uOCh+6MFioyKFgXOshgbdjRProMuGKi9dzjXBrwmmrIy4OiS1+eXFbYnvKTjf0bMODLDolls41P2TpWeO0pPVenoEX6bX1DoG07WbymEkFD1RU8ycQOKP2D4wQWlNJf/iQi6E1uDrSyvsBde5u4wGmJOJYmyzZaayB1jfP/s18HBA8xmyO1s3IKBieaYte4nNhZ2yEhQTEutSAGul2+D4gn0hDWoGJaHwjslLvcK66r7hg2r6rv8yAZTR0g3419aU5Z27oAQS+YlFmNXca0VG+y7rgSVQC8z48uWsuq77L/jFt9/CJeg85xU/invxw0coTy+mJGt380DIbKfeVcFyUZVhcT/wui+vaVMI57tjdi1NvktpiucvczWhYZ2/g4EMTNzUyetIz17gxoTE7qutsGSsXCELsDYbFf31KSpeIqEuhluI15LeNx0SOMe8nUuCaT3A6ZBNfx5tH3S6g3hDBUKrEbJsEI+ArBCC18LWahmUiIsZ5YiFmMUaHMzGNxmCL2lsxPw/I0+sI6PAaT6QJMBDc+DotuAqiAOM0G+DByb+IVBO4TuAVVjd5xpBKCWn9+svER+U5HW5hF/zbm1tPenV0STKfyfe2ojqwmPBdtaW8oD4GqRb+LuTlZtA10ZYhgCggrb6w6NazoFWQwWelXxsFcbXl7Gg4opjEtVxtOqPuf+qRouDqv6l6jq93zW5CWrrE42/nZu5P5+SClgOytML70Tu5MerKaXH6tGTrt1nFGiCJM9NRFBaKzGlJbZWXO516XW25HRYnaBBB64LC+qx7okAEEv85k0ij5KhOnY+ElRIgWL82DKXqEZZBqVAbMp+fxC0q91OiC6esmgWss8aNIGY2vUMHrvTbB0wRV5/lKTpU4d0onD5iFUDGp4ySv5CdS7lCCI+h8fSK5zhl0DUB+aZeFerp87EjzP8v2ss8W3E2pgudTU77Xq8Vrx3EZMFNJRqLQWUh2O6PzmEuY/tBzTgvA4MNFucWSm9LId8JLeg7BMLz4x3LkfZcy0Fmydnw8L3QiPFMcH3c0692Zc9N1CieO9/NarOq+DCxnfQP6Ws7fPANHt1lF9hmC3Wvl5yalIe1Vv5s5ZX1pVDOzEP9RWz7DydhhTRwbXJtqVbjp301BQWEvLbUEydjTZqefxhEmtJxLv3M2uVJOH++/UAD0A6pVBLz4sRS5yuZ2L1s8P8vm4LG7j585WZtTotxqpsgv93uUlFKjH2m1z3qlUZ3RhvtRBqUAIR5Ar6lbEjZpy2CW76UOtbsjopscHG3EmWmjcdrumMME93BIBTEoDUNBrp11Lkjab387qoSpvGEIW3DMMMNgCkKXtaGq8WFSnh+4ezuySUfdIyesSWq4NdF53INyK9HBtuoI8ZLGG6T1B8n6tEk//Xgy9rOQ2ewHmgZFHSqg2Zb3+8wuDOQ5AaPo/7+CM=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>