Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx5c3d9bd3-0c57-b082-51e1-42a5f1426a78" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5c3d9bd3-0c57-b082-51e1-42a5f1426a78"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>eua7ZxPycWiFVNJTd6r4Weh7zRM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>FmsoMsrnRzwDItn4LDqE9YX5DGgn5VAqj4F42KRWD2D9Pq+cI2o6zUtoUKeZ9qyKFP/Cve0MQqvEjJyaXRS1hvgH5g5cj042Vf5GC/2VeHY++qXLVzqt61XSh/9yIqi7dGXkR0jbmYSIO/YtcDEMeB73mdw7O+AfZGrH/PGxZNE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx76014731-84f2-6bf2-7f07-603d356a8cb0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx76014731-84f2-6bf2-7f07-603d356a8cb0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>UlTpwmCtbp7mB/JL2wXO54qRXGs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>BQFayqDqIYTht8RbQUAvYWOOlSaPQ1ix8+XuYsodoI0g3V8u30BppIsZML5SwbCQEG27p8AIIomdfbMA59DZE+hPB/TvFzCe3/JxrL+YU7Et1CzH569AGMCUf4vPgHxiu6klw3eQwKYhQGo841f8jgw/y8o0tREs2sRXu/ujBJk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx05e82207-f4b3-b8eb-5ca1-f586c832d36f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx05e82207-f4b3-b8eb-5ca1-f586c832d36f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WPA8Ax2Io7tIZ2qQm0iPOtohLCw=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>l311C0fSLg2jjHVPLE0+KKtpAAkRqpOfdpsNRktP2zPvIIg8b9LM125QL75IBuKSRm6OajE0LOgfxPS4YSQVE3cVGnpnrCbwprn5w5g+kbLtdyVQdxuc5PaYQ3YYUpZXk4ZR4WM0hHTRCRwP4vyLa7vjkmf6d+co4faP49fXwhQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxa24341ef-1212-b2ec-2e1d-27a1ab33e7de" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa24341ef-1212-b2ec-2e1d-27a1ab33e7de"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>G/Nl8/FTx/T0GeY3sfSXU3X2ALU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lpy1WFfdmcgTnv/39C+U8LIxQRp2MXbwyTn9xVvwTKJy1OUxb5VsgSPLs9vanktOfYjzx8OxkcWNep3YHGgsrrreC1vqyJJM7gxdAB9Tu848/A+uWfXWchdoswaSLB1mTEYZBTl5dPRxftamIjKWGkseo4j382dawvq2MQjhJcQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yY0E0U7vuYlWF2VEfrv8jkJM6TCJZLssh97VZQiw/qpm6lrRRxFIpluCm84JrMj2NqzPjZaq4EfBf1rzeMJxBEobVsEM0xhpKafkJQboQywXUkiaAvj2S4z4WPXll2sIvE/+llj8pdYQF4T8xCZr2Gkm5wVuz0UHNhZSle3YCjQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>RTp3pKWYbC/4RCxklqBbpILNERtisWZ6p81VNuIFzIAewiWDcbYwoyVXMwsucNhE7mkyf2HUwFedzV28lREnNRt5kuTXAGFphFY5wXSbdr8QLTfJsCI8eSRDweXMp9eydm6WPDq3dZPGGcgQ9Ia6f6NTpK+atDszSt1mgEqG1RKMSptWTCAfknQ/car7e6PUQp5ZbO2KPWGy19+OX6RLC4IEvk5WU7haKm2hMWh8ifGbElCUnHPm47gTw7Fu4qFDkivELA2IK/4BzS1NU1bCoTmcisI0Y9dSM3E9e0VvntnkNkXhIMAfmfGVHs/pWl/22/S0SFNEgsgYiNCPgDN+7XFj/j/0r9WqLY7C150oojE7KcBed0ZrQDz1+t8+n5q2hegisTD0Aq8f0oaW0oB0bJB9fZOswo12TCWHGc1g3BSo50lLMUj2ZtRtlw+Xma9GY3zhCEpj7Jq6Y68BA9Z+Uaeza+5PdhfcJxuvn/tfu2yvzDppPNOgC9BaqUMfRE1DVozg7fbu503svf6DTn9zVaO8JKFLqP9OPNWd1dJxweRJfXxAVo4xGR0SJzJQk2jNuxn8RdNJHHMxtHv0spzrX9G1pWy4sZCVRFDtOQwJpCRwmh8C2lqj/2urmYuWyXGk6CfKn18e5+YxKLU10uEJ8SyMneHvp83l3gqnFDUJkYYHTKosX8uV2E5ZRpIYwVUDDmuM60+kUrg6+FwYqxAQkbDuRiOp85nABj6uUTZ6HzMvTyZ8mFfrXIyNBXvgfCVhYDiBxgBqxe6msAjZMg7bttDw8DpTZhKDZO9Hpe8G5rHzkgeauCEv3y0MAoT5ilshgVK+fHXJbvcNNAJWyPLqBB4dRnWDK5ay6vVwiR7IybvPQnttplcYPxhycID+2sNk0g0qwBnxCxmUOOmKTdX1LopKhwStxL6QTnhLcxhJaOeOfxhOYUqCQ0BYCsHzAWGYcGQe0Vj/PO24sdzd4Jf00nPsRiGx3osuzA4ZB8+qzrWrNPNDlv/iSfOirmr/PjL3J6+oYLLrO1u2l4U+OvygDp7Xb2zTxAEupJ4TnyAcylufjkdT+wVD9fqo8pPZnA/JPtHvmn1c70bCwr/1tVl0tbyRsRd76CYz2Il+QXhJ6QObq4VcmHsixBxO0RcYQVtsDla7JeXk01Jr5kpelKG2PnzbN7QolLIzigN82hEOsD2vjhFdXr3hNkiYwdFCpHT2GJhflIRMjKXqEtoLYmaSaFRsMX+n8d1NEOLKUcLDYycKFXX24fb20vusxl+Ts0/TFagmMM6RInEuB4JpwgWYwKHbKb0BqIHqahao+hQk9ME4x9ox2PAOmb1mF/Fyk2TLDVN1ttKc1GV46ENRPCdxOdH7Z4vVaZRTYrKmgtSeEAD16P+I3jJzDz71xtJV3OBvLEdSsplnoffUBBDhvOJJ8ArqddJEy3XRbeqw8rmVarhm8jRXgiEUd8tPJUjhqzaTq1ldvEAe9I0BXezWQbfWc9ahfu4mjRfkHnKgG3wmCGlStqnt8Ln4u7DWQrQnlddAzWJlHrGUAbrSJh3k+iJ20vIgy8dzMASDJM2zOwfuKYNUV1dARav0ww/wu9Qiv5N6YZPW8yDtpycQ1P70yRfAMYmpPfCcUS2cMi4gvuD5ZXyEsCMkX8jzzF08WGLQWCJ19CdXFa5cGby1AGO5s3a1SJiG59KUXWLKxlGm1ZdhJdSqTbEc7Onx/geM3oWPT7k+yteZJC1H7IXGKSnb726zIHvsApULdr9D/dxDawPb0GKWfrAwPL44ZcwZvgnDPjjXChNEuh+wOZL/OVDDmQEk56LgdZgMEnTxJ1a8hjfUReg//+h1eBslif1xCR8LYCwBXgjrrG/KQIMXkXJrckPU3PPoMg1eJ1o9RVO4AFPFLqfmnvWNvRdXsQSAnI/kYoskKx7l25jfjMAg1carooAP2yQZ5kO+CJ7GXhzfqVFFf6I6T+bQ9v0D+6/CZJKokEa5fLA12YPlL/vX0IjYRlJQk7oo+51aY30OOuPcvxhO/NUWYM2ntRNmiKboPuwSiAIaax5EfZZjMqA77HJZTmSUNv/pjMq14TvxEChLKDRlng8SOBc5WTWRfdymQGH6/YrvlBFT6CaOqLXd4zDgQKzThFvs/3ReeZ48qRnAs9nEuA6eJPGiJkaiYle5qbNdxmffp4YTGeme3HYpQrbguv9KbeXPgjcUDp46dKkm3ZKa3mu9k9MGSP1AjY/JEzRTaWeq3pljZ+EmKGkrqek9F+r2P4LWLgjMA0noyZ9JIwpqhS7T35iIqPzrZpgojfY7WDzwRPEBRZb9LuK2XnAEAOL+WXYuf3t92l0BBwnAotEH3k9OWke2Heq9GcLC6C28ueIdCYgyf83d1HEm1dpbl6sCaZnkNubsrEVoPN6xTGi1ipMqIOAvkmInCq/8eYBrW9nwxJMKjkdN+10isA0LPZZpLaqQuA2kqwqjngBVzbSAsYhXRfUeThi2qzeiSaeON5zsEcYOukZNR0Ms5pCV7ErWdeuRew5H+6wKhuSrPcz1T/uM1IcKjkijCfH9BI3CqyV11YEFM/rzQ2SQFKhqhoanrBLKDCo7vET8DkPOWfndA6H6tkpAB8WgeMx1r/mDL26XrIO9vDkINCKlR866yzLbBUMpoBXgJ6nQaA7y0ybPoOBXgatdUQmS3WVDnRUSmHh+QxlqwFcxy8pWQlW9JqGFRhwcNa4lTAl3TtadBL33IkwlJDNZjspOan27214QE6v0TIhlPVNd+BuSMuLtRb6bVFnXsI4AbeQLUUlL0Z8hb07PW/7jDsjaiw8l8uFhcxijFirPSUbe5SwlOGt2n0uQ8b4SV1Mer4dWbrVHjBeBDzc94v08jGrdR7eI5H6h2mnMLmABfIqhhcGk7MuYQcAnIE4WD04gVOw/jWW/OFSq2VI=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>tPgsyYt+RIfE8k4R/UkmojD72d5afMZQER0dIbvpNbfB7jztACoorXbb3LGsrdlFVnIC165HapAT3ckbIKFeyoCPw+PtHhxHNa2ofOWyLRWebrUtaV39Fc5N/u2Lya6WbcOCxrjgbZWKnkcQ/h8vAN0Y8WIs7CwgA8nzGxUJ5vU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>LxlDiaK7zNRki6k4k/pBKeFEHvMhooJwMtEBFJv53jw3MRG2fTEKN7dAfQbQQx5qQ91JfjX37ADy75e2WSs3xRivxMP/gYPdKhFnbdHc6pJtAdGPwpQeKaU3hYEmbr9lbksLA9xoPyIN7yndZuxDmVsJgcf534cy4rd2Zm0sOCWF83v9sJ4KogmA5z7h3Rlhr696qJQcGjNiKCAth8KgeLGOlujJz90yjfBGdt1aRx+Yh3kjP0tVxogGkhowKX9GXpJOcBrVHzYTNmXjB51vb8BcEOwa0BOcSEOEppFt2rtrFokDogeuvnVQrw1tv8pKZXincmJsImK8u0Q5WH1X4uo+Lrf4B7xtf8EjXa/BCeCAxt3I1osDQc4EqikZ0AFMncfxY4JbwwIkgrqx25Uf736/skCM75YjLPratH15NfypR70Jl4mTtPhbXJmHktGq2VAke2ATqLOFqafgdPDTU4Mu5gguXjdaXhUojMzaOKLRICtccVanupDdqpp0C8xYi/1yBwH6J49PE9SwTaB33Wgjcjfff0viuF0PQa9xs8B5RMO2whSpEM92PXysP/1ZHWThEVspj7zYP2rF1DooL2e9e4xzssaTe/TsBkQIjxBW6lqt1dId/HUY0v4uXoSdPuGfz7IHtf2fFkXg9zFBh/RGHCR/LeHJ+FQXRBr61sU/pU3fqLXoerF4ACygSGDKC5lQm52hKWqNi1aTpZBRJgAREtvxdOse8lSHvSTJHkYw8LjkSKc5+Z/mfprpMaVm+lOcHH+SbaQNURj01q6i1b4lfAOkRvzvPCPesOPmMPXElk4gTrqqiYBD8bHwYblCHJZ3xC/WqLJY/oh1YeN/CTxpL4OZftbK11mLf1oWHAeuee5V8BtMbD/z7WURTGdbuY7wTsrHzKbykjJ6A09BGSg4/Ty4cgGUYrYSZNAE37eEe9gSyGRsqbqXBYM1KwiDjNq1+8UsHk8n3Rm0O6MNL18RLeUGZpcqEvbIfL4zxywcqQHToIsyhRxg1b7VNXq1gkyGKU5ZtdbCvgF/GRHaehjyCoWUquRzl7bdI/fei0nrMDFxpSkRmfqGitnHbPrftDnWn4it6LP2Mop72YWnktLKYZbwDDlSvW1axtmFEpNv3U2qtIG0vQVJ4X33eNUpE3gRzA9XuAIIOeeR8GTdZMnVh3EA42ijVEX4ytOkWgOuraU81CPnCrwMwG4AOc9y5ywPUHAZWbYJX0/gLSNbu6Z00G+FRYNcBYlcmVTLv4oa6qScD+jWcyIwJZL/UCXmq9+U98ki5Oq9oo5uS0WJyZjFdErgfGtqhMNPFTVEOOm8QesDL3M+nDNGaWxM3TpD8JUn3yZCRlA2P44wRkgSYg73z5fq0bZZYYVIQic5SGQISMIqinW4zzF3C/xMY2/bV7xA1FiHY2ic18e7f3STTXp1MJfhxVV04sDnDgEVmPBXQzTC9fZvLSzIjpuBWzHZthjmbWQhODUxwOF/EullMzEQSg8MRtSy0JIrHnY+WvzRYfiV1IRkR8qoLLUqQM8c8ue6uQlS0X/FwhJbV3w/HcTGjCJjLYlprVFOeoXu3vqU+gT81tMUGhxYnS8JEKvGIsaXHQyxyW7DChAem8RZthbckiRd11Py/ksxwW/SSGu8LctgWKqwB382SnvktQbciF7rLi8DVBQ/8Zup5IQB1lPPxgwClu9ZNeiaYEeiWj0SlyOr8DxOfgVzMRCl5R/Ayj4wng2lxoxtyN7LdW+U1bIPjekiRzkr0CZGxDpvBNuX9qyovGFR0x9aRWlZ6YvU7abx1wgwhnByeBWHR9zl+6xdkOyzZ+xXlMF/Wl51QLhNFlZBvvSRRzUWFUwtf+prwBrb6LrsDpNjRJM5Rub5VDyG9dDHelVI7ywqgmRcEkS8c0UvubY67k8OlfwcM3kIQDTv+sLOwco5iaTF2JW8/CM92JD+JqGMe0tN49y3m6U5Q+7uqGGojz8CTWmozxuMM6C47mTEhHDtx2vLNJpspth9dn0YcUiw8E8bK+xn/xq+XtQpH9N1UQCAdH2kEXwRh/9+MsfCyXWp29X5SXQifkJlambXGqLomgBfpSnuGRULd0vCgIn8q6FCkUPYLUGivi0Gh+zGtHNqCCc4wFmTrjOPeZnvu5KWZrwFzw8n+OXZFqwBud6Mi/zSLdUzXIJzKocyRtpArX+ynG7vecr2xCeWXkopm7uLVYJVc6U86QPL4+5rGWW/sRCyzCnW9dnVez6/xrCpeuPqWcXgRuo2nFK4UVgjAogyB3EW0iHbOv1so3Ti/+CicrHWTLT3QwUMjAxfNcorOEYnohdEcgnwyVWePNGzuXodbb8AO8dFGkyeGiapLR3hlbHxXAIhti+49etqmIzj9a9TbNSfYkbaBc58AYo+eEQszeL4+kHP0sp/Q/K2dDO/ZFILkMCG6elT+hwMgn9eNx9y3d78B2IwIz//qQ3oF1bvHTQ3XIepq41gp3vg5I/o8gKUHeV9+Q+ORl4w/VM18jxWReAKCChxEURrVhR1hJHB+p0MfldFFJOi+JwE/01IpKAL9KMjCilqFuYRdiINM1lrICSvbggFMov8RseU9pqaQv/U7PZ+pk9l35hU7yiWBBYJtLOMGwsiIcTDfr22nXtUErfMldM2a97bPP0AmiwHNYO19yg+Ny5j7N1LcuwJz0cw3EtTsQ1LK1bp1Bv2q8Yn0ZXAoBjm/ApUdKAiPTbhxfQHfJZbbLYnfT/dZzR7T2gWe9J5r+Bo8P0dlZHvtF5J2YqIn/8fxIs5YBOBvQhI9hQCHTFfXghOvrbWFT7+AXTtieU6jktlgkxNzR9jSq6kPzMPWgtou2Jr75P3IQLdEqNKUP0BZTamivBjz4wiBhsThRjDmBM6wEIQDh7DkPl56ZFTw1AfEVROUV7s1BqsmmkWrkth1xUl/K+tnFjVG2ATOG3or9R9IrjUf4c9d3G7vwYngORSr2vc/aPfkuFC6wveL5ZpOxJ7occJ+cO+oX0J7WF3XIpbTk6evI4AUDIFMw/LSFQCfeTWneph0541OKQ7WDiDU1Dqh/3gGlYvZgR6NKwr4P2QrgYJQ6kEer3VCLVU6p8PbSjcrb+oCo4dHeWZEP7qlrzc4gHpJRckZSsyq9iQkUHFGuaCcF3nwS5XKIPJTdNRvx5LpJiFhYCD/rvmzt53II2maiL5x+QXnDdyumd1Hs/yMuKRSY/pF7HMTpffmr/kX7ICHx+lcWGVN1GaieE9Czg3WWkdtgaS9sul4M9qe42QYTQRAETiFLT8RWmgqA5NkoGkRrs5xOMP0w8HFViOASNNNmb5dewBE0+O7d149pQjv0LEChjgV8MVStszts6KK17re5CtypJIJbdD+YUkOef7mC/70GzI79vR+vdhNDKGMoCH8CQH4YhxVKh3kDWjEhSZut+sFgK75wr/Veyh8+dCoUKGuJis2Qayz/96WoSS5QXTxCOM63e/bK6wyImQ9n8sB5RsrHVoXCyO9hVDAxvdtjvV2Dbn718smnR+/IN7oqbLucBjWrVhA+jqJ8J3rdwMktsXcMYj7WpyCpOqmlb73TfrXmOTi0Trabf+N62IVvRAM9/+4O+fqB5WMJM+N2JHCECCK2QWIW8T64ihTnioHDMlQoLoYKYPLDSTquB5gBr9ZA2mrNI506m+KDSxMBMl/Sa6esmGQY+yZXQSINhSug/EheuImiuKFgc5/ON2NDMH6YI4qwIhnQGD73GJ9+FOP/pFgw1BR+EKEAeoS6rUs4hzvrq2UpOUmvNwiCywOw/NlRbqsgqm3kMqxA94NCi8H4l3I3ixIfsHHuglZ2iuN0HEPLcaN2bJTMfM773dPxpGKrbrGqTiPY38w5BlpcW3QFqRoCvHb29QF4CyD5ZWSzaCqnNtdXJ2qzRqw7qZscAHIRitHzr/XJO8NhCZLwkC5KyT0b9Ixr1jzn9q+lxSjk5n56DyufJvUrM1W4whOE5/meaST2Lv5w0kFuXiGiuRqIHdZEA/L1IPJhOZ7ZzU7FesU47z9R4DDXJ9Vz+codZcjo2QCP9Vd0fNlcLgjoqSL8UdBj567On7QlHi5Lp0rE54R/kSpLgW5NmOBWabY0ICIyduKsB8gMKIA1QN+5milkxclX8a7dqUcAdmMHcSsnKW0MzeiD1orkO+QvJ4Lhh+pdP6My93zh9aBSXsVpJ0rq7NFB3Y/zfagUhFqKKLRTMAnkoSaRCDbVM3rtBpP/ePN3U5xUD5th5mw4yij7QTl2hSN9Auh2fecXAfoD6tj1DmJknSr1mrCJImNmbz67AehVet6QqWriEY7qLriPL/htgeaVvW8XqrNfs+b3M7857ZKfF4EXtuLjZ5eNxAX0GeCxOznLIswUqvJhZQexkpcuKR+Y+uNx2kGWVvpI10vCT5V1Sat0L3xhzCqzvIGxYR+lLA+YJhCpHhUfFmO3x5cKIUCSUcj6Zh+fmsFc+xjWa9AntXCgdtuRK4OB036Qg4smcmhDdZPnRa0bIjbZ2e/T8RYAi5dbRfecuqcbVWsTeEC8wD7fkQugK+p2FZTzgs1HjzdW3SGM44FExrKkmi89cqAV1airTcuvZtfkMRuxJwFPk9gSVtZJ5LMria6o7diW2maj6J8VG90eNWLrNg4rR51ujMMwgT9QX/K3cBGnZQjzGqnifzywVnERvMQUzj4x6QW9MCpD23Gm3NgTR43oKMJY0HSji3yO6u43NaBv7uQMF8tRtA0a53f7mB0OQJ9R/PNZmb8KRnacuu+ekIL68eKf0bV7kMESNcofR4gKHUYnDYCkOD8oQgyN8pfu9b04IDTcNmQZx8zy7sUQ3lDdUUgbCqYRRyPdnanbAV0UPe1f2kn2OUSVGVH3NFgGMnGV41mVErRcGpx3KJs7NOUTJ+ofaGwTvO0f9iQqxpJQF+nn+OnvYSuUHg2D9S4TMOHtQpgLCyh3oGx5Z7VuJhzPSgw0frtP6HsjiRxo/r0MLh9v3SjtBjfU5Me1zXPENdg1xmeZvwTs2ghdIlhQQMyMF3N9lWEfd3Z5eqlYeafF7oxi/kgHcawT64nVX2CvKilCx4Qp00rbo5y3KuXBun5hFQl4TxagDaEa1thoTWMUjB5iZjYKXl1Bh3VQ1xSkg5TtWL5CZ1pKRAktJVaxpFTmt6mX6hwPD1CncTSwQOaEMoYg2ilqJrjJrqQZCOyYEBsYB2rFzESnWwmxMUi60k96Qxcr9/7y+wOw6HC01vF5rip0VZ0EcAq1EQHpMLMv9qriHiORDJ48LkQ9VzEuYj/jsjIkn6mrKA9K965KWP5XPEZzsAYnSQXfrhK7HxWUTMch4s/2nTkYRi1vACSh8w3bOu1evlFRguA4yjlDEVbukt29Ic96QvPcBo24jqG94tZ7sd+Bs8jf7ItZtQcQii/m4Kq4FsW2pBNvOa72QNSh+YLvozHN5QipkQyzqgUGjoSnH568BoCpOtzbI8tCe8htqSQRsMzelQljDjbpQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxafd2c4d1-96b0-8cf2-2b80-c24f385a96f0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxafd2c4d1-96b0-8cf2-2b80-c24f385a96f0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ON9hNWNzoOduHK/4lKt3Ixe/Zcc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>AI0LGuiUONvnRzXlj2heETJlcQQg4oHxiSFfjFQrOA/33tMWvomJy43pjliJqsKl9lKrxJ27swl1xngaf9IlAz/w3vsTjALNpGKhsW4Hs9vCbDCnjSgSIB0c/1ht6xogyHQnJ5Ccu4w6r3wo53Rf0s8n8UxeD1TdPCi1iY1C7nU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>yY0E0U7vuYlWF2VEfrv8jkJM6TCJZLssh97VZQiw/qpm6lrRRxFIpluCm84JrMj2NqzPjZaq4EfBf1rzeMJxBEobVsEM0xhpKafkJQboQywXUkiaAvj2S4z4WPXll2sIvE/+llj8pdYQF4T8xCZr2Gkm5wVuz0UHNhZSle3YCjQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx6402a70c-41f6-2cfc-4f45-6030db8d16b0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx6402a70c-41f6-2cfc-4f45-6030db8d16b0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xVwOn5EVNgoiRVnwB1nzCODhwLA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Lzgm2602moXen2jGLJfAGqQSRsOeATQGEkrIdbVR+wg2R9tUOowf2FTBhtyjaeId7RF/MUX3+NYIyJjlc5Igs5IZtK7iLW/O4x8HRCU96LL3xR6rSVxV2zv2WCBLAJN7tke0HpEw+KBEjdw3v/qFEPuQjqiR19K7rUJb8GaT1DY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>tPgsyYt+RIfE8k4R/UkmojD72d5afMZQER0dIbvpNbfB7jztACoorXbb3LGsrdlFVnIC165HapAT3ckbIKFeyoCPw+PtHhxHNa2ofOWyLRWebrUtaV39Fc5N/u2Lya6WbcOCxrjgbZWKnkcQ/h8vAN0Y8WIs7CwgA8nzGxUJ5vU=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>