Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxfe0ffab7-b4eb-22da-4f46-a1299bbd957d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfe0ffab7-b4eb-22da-4f46-a1299bbd957d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>fURdMcj59tqZR8uiGgvDq2RCkIk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>2AxqyC2WRo/OUp0PQSiGQkvhjCkUOrX2LlRSIMoRcraByW8C+ow6K8VZVk/9AlzWVJZLCBGhotzUaXo+WxuyNbmDEzA6nHYpvCd3eWLFcE+XPA7xkhSd3NIPJlKq5zgDpJSRzPUPkFzsJ65IL76iFcO41zaFyxOHxyp+tmGt5Cw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx116d41ec-4490-1178-c290-87abfa0d7abb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx116d41ec-4490-1178-c290-87abfa0d7abb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1+Q+0Gb7+Mu1WhBrad9/yLeSFe0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>R7O/0bdhV112rkE9rk4mHGjJMZhQe2cl1G2HGSvJUIL5Om9L5ytFojJFjwjl0yvOGxBGFWWds3iJ5BColiWquXnuKo7Gs36KdNi5fEKmsaicb7h5O+nCjim0qsfs4JLbIQW1crDDi6F7GTm2UFdmrHXThP8/0LlfDCCRTneH0xU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx147f9b47-da50-be78-a3a3-22e2d833b530" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx147f9b47-da50-be78-a3a3-22e2d833b530"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>42MQ48j3j1tEAJ+o61T1qkzeLFE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>wOd3eNPpabhmIy+K8P9PWbIJ9uhkwzvpkzixlfJAYXsB8xgEB2a94N7RfQnZMqFVPfPRD6WRWCjkbDVHgdoLlCpPJWceAH3sVAEjGHnp7Sipc/XewB6YccjrVKV0pvCpi495NMuPshg7Cw7Wlm6465JkxNoib6CO6SQQIpk3T+4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxb15f8d5b-2df8-b84c-dfbc-47b84e4dd84f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb15f8d5b-2df8-b84c-dfbc-47b84e4dd84f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+osIWH/DxJYjiH4Jrqt0nMJYsOc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tjqvzSlmL0jSKaQDrcZQR2pXUy8w5QhANVfyZgnZGAnej761MVtnBuvDOS2BDheYCVEDOrmOSXXr1AiAQBpesmWVO9HzTCVuvomDKERUBIQ2vOZ5HTystLgvxs6OYMpBhQdx9EXmW0J9uEXXIV/kTApsYOAOZNPM9yEkY3x0YeY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bQvrpwzj4Zv3xOAAca4EMrvpzNwKDMl7okVq4VufpM907s6aBNhavuQj2CE2LvuWcrKy899tplVOwH6oqWs1K0vU6TSG6rOvFsjw7b2rTx+2KzijLxJxMnYLIdbQiC6MdLxtfJTARB+LWhXHZxzXg7E241/z3tP+oTrBpJO4Ino=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>R52Lir5JzacSsSwF6Vw8s/4y9qg0P2wI2OH/vGEiP5aFRopTE4bF2qnGfDHe99di4sPo6hrYWkvXzsrApsJ9QNLrM/qbx/BCQOaHWtuE7zilo/p3rBxlokyMLFmIHbzFpppQ3PYi0jyUU/BgCK2f1vE7QhrwKpcn4+gnvLkFOW4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxe0611f61-601c-cf7e-996f-cecd70725265" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe0611f61-601c-cf7e-996f-cecd70725265"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>cvDmbnazUG1oLm3DtXKYc/G5ifs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>QfEaqvQknjtYoWH5RCrWkHo0QuzCkR+BXsXzjsBxMmoupaHEvgrLdgCb3v+QrfdhL7j8utVdMbGwqY1YEe0iQmsyg/7FfJrrbblPRSFE8gt63AAvu+fakrO3qum6lB9iGD63dgQd0Oi+eNLadvwPKLZAlbHvW8/nIJTVh8TwCBU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bQvrpwzj4Zv3xOAAca4EMrvpzNwKDMl7okVq4VufpM907s6aBNhavuQj2CE2LvuWcrKy899tplVOwH6oqWs1K0vU6TSG6rOvFsjw7b2rTx+2KzijLxJxMnYLIdbQiC6MdLxtfJTARB+LWhXHZxzXg7E241/z3tP+oTrBpJO4Ino=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfa29d898-9ce6-f927-3d42-473574a8bbc5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfa29d898-9ce6-f927-3d42-473574a8bbc5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Ft8RHSAHBBq64X76i43QhzRvEDk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>MsNoHlZLi1YcfwEtTlLM3462GjlU+xtiM7z5piu0v1NA+AAyTNffcDL4PrFB66YqEAtNR1IYHDabA3heI2D6cswo8WYd9fetGQio3RAmbfKai25FjEEhTmUijyqY19b1JtLZvcveaoEZQL6cSKaAqgCo7y/fzWO4/2EqieLX6oM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>R52Lir5JzacSsSwF6Vw8s/4y9qg0P2wI2OH/vGEiP5aFRopTE4bF2qnGfDHe99di4sPo6hrYWkvXzsrApsJ9QNLrM/qbx/BCQOaHWtuE7zilo/p3rBxlokyMLFmIHbzFpppQ3PYi0jyUU/BgCK2f1vE7QhrwKpcn4+gnvLkFOW4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>CgW//QJsbY4kq856CTVbNcMJWLUouHiNRz0Jr0zeG9heqGVzqh2FQMkVzSJW+YLzkej0BLc09AlNWB1+6+9r8/lX2SLSQ+/739cBn0VtbRLoA9nagj3B9b4HXAc9iltCnQFviTeqQG1w1hZwvKys1uDshb5BLYf9ViYuA5TyakfOdgdxQXeeUeSsR+PY0TjDYlvYRi1YIAiYsgF4xI4NY9sLGqiun4ZShxFKAvnVdzsqB7Unq9C0Fy6ALeHy1J0oc+1BeqS6+XUsKuHXrLZUzXohDYbq72qhZHTpCPvXjGV2hOUb0730gwRSU8rO/uCRsnGGnemFmVTppiP2yUYzIpTgAuN+JNOV63BSCgUdoYGPCikZw0eL4sEzz/WERGJr53yG2EMuWIlRcrla3Xw5XLhfATgOcuJFcoowhuelZClj+TkoltI+PFMbepS+pumfJgRcbZp6WAzVsvZ/lhFBdBBunyOPt/0PVyz1UyXBF5e7uKGfL6xLABjncwEB7TgdK5eYtl/fTQD/iJO83lEjNIx4js2MSLO7+dmu2Oupm5ZxPyZF4KX7djRHjnlyTEliILo4p/eqofooWfy9CUJWy7sb1jahtoIhsnOpWTHdWG7vhawfl3Ut6I8J9slL6bCIzGhPDOIpvnWolkgVtZ2TBnEaJLJhfMNksCjszlw9C+ondtwC9SI8UaMVZdWgd0zhVNuW0FIpvtnQ2FfNWuZpiOcWbIoLlDC1lZjL1sfL2icYdoJgbLfFivqzpzeIUec94UUngVWFBqZX92IdaeEwGTAuRUOQKE/iMzCdEUQh8bYRaxoXpHaM9o1TiwtmZupZYnWNzVEiEy3DqEaSo6FDWycih2do9wX5t7nWpHlXWRGe9aiyr11/vGRQRjJc7KJuTw9eW1X3Xbxr7SoJchPc/vddWeXAei25P6oiMpU98mVj/zHQRWLhlfLN3nKLgGxAKS7BBQmzU9CuIFVBgxw2YU12/uqIOxdDdK77g3ZYCMUwwYU/+vbprC88+GTTHBpx6u2SnU9PolQ/dLoClfNciYp/ze/VY1tVYGbmpZpxLo5GoxH5SX2HTN8y56JZx12ROSKdIYdO9SukB3eHCxWdtAEhoVuvOE+vTQKgrmsdTHibDRCQWFsJTKo6mJ4ROVoVyhTvTEycEX6CoqGrCDRyDIx0cnfAhAuyUFMAZ0xCAUBuJZB1HTxA91k4KCiz2ZuZN3TWxOMYDGszlL/yfUOsvAN1Fd8DSemM/Z/f/VoazkpiLQ6Rj3OGaT0FYFaW/9V6kx+C62CdzFSMRbZXtVdAAEoutjESC6BMeXNCYnuWlL+ZqQNOu7AKKhOyPaHbS9Vy6v8sGA9QICNovkkvjC51GHHd+rHWq/KZ21Gt6ygrNVc23ycRZ8njCahx+Tt/tXaUK6cMxjcmjdm9B1aFnN4aNQwW/vJO4Kklj2yshFYCrPGjLd5f1RWbuI7Ik07s/zaRr4hIRqnfw7Mp+ah+DPu8gFalKp2FYrFy2ovUWiQ/sxwEBRf+14pe8p3n3BU9ZLLuBRq69t2M3Mvi1BFoiznqA7CkURGz8/f3Oc7Ri3SD3Mj13tNNGYPr0D0GLSaxKISvudCJwJRaZcI/GCWa7rsaxDwtoKHBgMH91yuUdI/oHYYtmATSnsHoN9dp6CpljKLHFwupzdKlB2CqSLpuJ2t+nd+dVVqxHUODGdLzy/AC7IeV6RhKy8eNBT11FfRN2rK8uo+0kjs+qze+YRSZK8UnMq58cqibY2qMDl2f9ndL+myxUI6MYyrmuCC5FCzS/oRQXjSzqnGbbSH+Z8CYHQD9eyV2+vV+RBH5gzOj8TEG+g+DhhMQYG3axnnUrQ48eCVc11A6b5CNX3Tp9DmTv7+PrS4LYXl0K/1ThxJFtEWeAFVZ17slBO2IQPa6i+YhL0WSHTYknGl9K6kjB94013XTWOw/axH+wfVWFOPvRtmYbXHx4mxZmiC5LIRlYIFjS0B0+VY0P/8v3lojeF8iE3kQ6Mxa78YoV2HpERzY4hzCWwU3RAfrbktamoNZF6+msblfIe55RnCw+XOXvgEPgl3X0Mjg22q+G45DP8OKsfuvB74rZRhdk+uiDQ6sbrflIcOltTTJxHJvYjGnJ2RQhMK1CpIX94JPoeZnBLv7vlQ3qbUlKoex1GC7+CkZfYHh13CongImUkE5lrbbPFWoZG1jlffw7f4WxKrR4nEMHOwAsE1HFdyfvnzDturrJamDh4krwrh8RpEs0DtRozjA+SWDPvZovfZaNznfb3IFFRV7FKfGE9pQnLcnHeXJrbvY3D/0ey7WDAO3IWY0XCmQ5Y80OorUScVIVy2b2+6TcZJiiV2UaaGHFbkotAthKfED8HgzBcjBFFc/KvA2icDTBHecVkGcGJxOt/1OyU4ryidKZ3J2vAGxhwHsAFCr5E00Ja+3U27hsnhYpiylYCO9/VZvMWpQU7xlsBGG5xQPVKS+lI2t3uvMGoSxLGVyhbWSgZ60uI4PlkcVsMwt8ZVImaPRUDq/P20CVFB9pHY7rtwvksAVp9Jyock3wEh8SqY+r54Ou+hJ3sjiioLGhJIL1qjzdKGrZlv5m4pPJnBt24LjML0UTjalsyt+AbuR2sCW3+WJQOiqJ3obd3vt2LRld8jpJs49kD29Jghxj1cXqp4+VCiFlq9ZdDooj97NWwARN8KDXqF7O5FbBk2jFEUGptHc3BLun6Zv2SeXRhIwjxEib7013maeGlHLxXVTA2kbKYQ24YZ+IdxWDBLk5CfiBBHX9h//2uUxF23dAvXXWyRIBhDr9A3S/Iq5zjQyihMcslvex2RGNE2SQJMbua2d/sdj96PC5cdAijUlLpWcK+Uw6WRAbCUxoCREVKXAWU8sEd0/GAA4VnpBTXB1o2edv8Jrek0Gspg5tFqj1gM9WMYYIEwvcMZZ/amp7TBkUiAYLuQdYaDHi8RHY2+a37G0jPnaawokxHdMUqoxYnOCxqOcCqYKt9Z7up9tveYgdFABog/b4BmZMtN/X7e8FQGt+wanAbYPmRgrL6/MFWRkTy1Zv/pPlVZOLLqU/KaDV3pmWVSyQayZCFajE+RWEW9evV2ZVZurXUtnURqink93rUE7SHxX8fYRRub26ewplnR/3Cht9FtY1XIllPIPPw2H/4wFSZuZJqNRoo0WfXfpjY8oNESCH7de47Tsoqr8ttztyjvG9UHByAbh/zFm+QxbkO5MUDzlIycxkmg2isUpUzKmY0B6BzZgNYump2MUKes/6Li8xoVFXtWUf2J+WWWlQOFq9kbAtVPXaMZ2jO4TMdpL+J51vfgltilN1FNu/ihHyVYEfq2m7lMkU5wMm19s9KTHaqv2TsPcoxvrZ1Nu5YEg9ANGCq3ncOnLJegIipUsvcLSkIiRNwdHfRd1VmpGHE9ttrv32cJq7y5LhmF6b8oDxd+6jHX2CnMCpc+wab9ZOBCRWpgKdGPxKMB4G3ctuwsae6AuLeLA31cTtdss2kxpqCgcsgCfFlktrHDtdaBMl+Q+67YjAiXJCr0IyOKPSKBbopqIWbKFrDQplGuPcYIfDJ1xfUY5OaY/rKk8QxxVJ7bgPDtifJa9SnsxYOGeBvKlF/G+r6LHEmdCbpRN07zw1sBGUNEH8NtnG0RoReUgmqXxE5neT+zRm0pWeQbeVYbI5xN4Hf0Q3Sm/ZxIu+8KPKNTl76kJ36mJ+xqkqR620Uo0jMHf96xcUdwvmIg7wCErUmT+6Nt22wbIwYmiESS9cbuYbZmMyNhszrkoEgnBITYw6tS1Lvksq4Who11k2HKAt6oQ1wzpMAqANEXJYTf/79S2jey5Yed7VTCvS1kDJMOBIE1CJklDt84f7hCM/qmYPcNVui4z2XTmL9EETIdUIHy43uDcCvv6JPON94qGKM58vfBhV1Zi//58MqZ6+bHiskFMQh17RqcNwEy2MEPYFq8SUgWdx2B0PD6vKBMxo8KtUoTagochshvEU2tEUa8IOzpnAydp/D0kdHU76Al2DZKvsg60FjSQ4kfpk3B9kUHYiofrnaqbXHfSaB7Aoaefr+u/BJdXfiQRHwK0+Gd4P5YRWdrJyJ+94f6CzDbIpnBcZUjhzMGnye97en2lJmukJpYwiUF8MUigUF1ATPrrvLA4RezEWb6v0bU4HZSk6PXYDQ5OgpoP6fRnza/l91kfb3Kqo4nRLIjX7rJOFYcCx5FAD4AiCwQcFlA677ef5XDFHu54gSfqB9PQ95pWvrBTSkNyTp6xmFnJCRz943bUkPGmP9wFzyxQGPmxJSonCRDXovxH2Ul0/zQv1Fu5kJWchhp/0swa0hw32djhI+tU+DiJnAVgUFVMZWYqa7z26qIzNQzbHjZ/467acqxVf4QzQgMc9rs5nbDaBy+QCNTSTZUphLgrN/Pvhs+PN8BNQhDUT1BiSVpCgBg/jGfyHHtGJCsVq17uB2G6Mr6O87baXt4NqcnsODUJHDuvJnld8KkqvsV0M9FnXDEH3wcePsOr8sOMu3AZlbgjEM7g0FOlyvzTq8QDJuOgPTjW7kKq2RN5U50f93thBssqeQ2R4tklRLwM4JN6aYKQoY7i7/LZ1V0iFuyoME9lWAmYhO8mklvtYNdSKjNsJIVmBCgMSe4DKjNpqm47dc0es1mee9xXLU61nb2SFJfyU7j+zsbVCW+Cih6K2mDB28SwPh1lsbsJteHo+Do7SbSWVXZ+isV2XPiHUi2FlHhiICW8y7rQ5y7s3NKWfZC7ZbyacKJC1eKOcQ6MyKW4q4T2zgMZh8N4TOf2VYpcxTXX+pah2T6y83HMr7fZkDu/a/PIztj5CQY8EYfMMnSPi+VuC+6+n5SZXMIxSD7lNLualz9CKSv9NZXa8euLdEYGs7ugTua6YF+iIQfXba2iq3s+jIT7KPcMSAU1shIkpMKdTOB+k/qfZCDyoz+r4U6rxKtHm+GBu8nQf9x5C9n8P6FhXRmU+AkqdSAIKXoTrsI37vwVmdTGO2QddQBg1ZPs9H81+PHbjXXkgl3R8iSRAmfRWprnv+zyLbxf/e8uujBotMrlklMLeKKuLu82U3OhWSzERVOen5v40qzRpnbR/8tt55Are6IDhtzgFPehjn3AJFRRTKLKdWefhRE9dCgjLxvqrFfZdk70vW2oTPgI1TATIYlZDnokfaULqWr0mPCLqtTCw7i2886n+L7Ag5W58dvn9scem3REZpJq3FkaacyuE+hVgocDSGq9N127rFyzXH6wNL4aTlgRF0V/yGxACgcyazTKkTWKxUHdbycuX49jIIe1YXPM+nmNtiMzrSrlSNTEhrg48GZ24S0qciNLnn++CGUryDDV9/9uM26WFDcaahdiAFaWSuwsg8ie/bD+rbuuFsBTrTBy6tK+G6X2Gl0ExKwAPTOQqk1HX1+QDrcLXeG2NZD5qw+8AffC9KjmQYvE/BhbTEQuRqJVVjslsN2BQcRKOddNah6dL7kt6PYOs2Ci6cQJUrE=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>