Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe71447b6-57c9-aebc-4b08-13b2d250a69e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe71447b6-57c9-aebc-4b08-13b2d250a69e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YbF9UvyqVjtjQZx56Bd9k1U3dVQ=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>pBlkv8XD783vK6EeVxuqs5r5mVHU+5edwApmn7+oPUbH8wrK7c/Erch6TIF5QewODTmnT7fkLFzPv8jIucgs6m+apr7k9Mz4bXAFELicfK6D1yW0KFeUcNLCqxZy783i6rnzFquWyX3yVfUu40FYicF1BDTjOzFFJJtQCQeL/rw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx61db4921-8a89-cbff-d450-74af6f4b89b8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx61db4921-8a89-cbff-d450-74af6f4b89b8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zFsvtGrP5OzUJ/T1C1E0pBevtxo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>kFGgKXfe7/O/p5Yjn7SngJ72NgQ9yBeSJaqDnQ20+uYhAFiWTivqKv2vfUEx4B/zXUkJNjlqUegZfSXLKLTSuLbfTgTak3txSa9I7GXVx8Po6YeWZqpZP6PyhoPFZanzNBynZ7NLSSocjeA3ExkSxn6R3XzKYxIrbrnFx0zD4dI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5fbfc20c-bf56-6e57-827b-dc416a3eeb4a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5fbfc20c-bf56-6e57-827b-dc416a3eeb4a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>o5bWS8zFtEWA3qRS2rS0oeDV/x4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>yBeTIGcy/hmsYXITvoPgyW1xN/fqOEsPJG687hVoN+nuELbzWOjZoK4WNuO2XE6as/hvL5wjBpsm70zkBW0d8EqVldfmLv+y3HMdSWt7xC4Se6DolUDiQ0LK3OP4+GtrWH83ba6xW/2hRKN+xIzZyQMuKtWAJO06zkBr72rSJNY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd5a9a731-703f-3977-604a-83035fae491d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd5a9a731-703f-3977-604a-83035fae491d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>YUpX0D5dC4uH6KqjlQGMr62Cx3I=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YrQJZbTrH2wm3U5M2c044ODVXpEOOyxsejCVJymBWVZeOZ6xqJxTqLr4dadJzI6qIezNyuVXlJVNYPbBwMpOm8dUjTxwlgSPNt0Gag8MJbXFewaSqxlIqelnnqkhxfrScvHWa+YPRzWPRTP9+k9hGDMesHXDGGEhOs8JYTy+Ts8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>1Gh6rMAA2vtNiXzeQp88GF5M7rKFHEUfaq5d3gFAyman6SOgEOeIaSQ4ygpoIS0sZIEoGG7o/dX3rCJVNqdypis1lsuu78RmORAahKolz7g6bePX5m0t7TrTSkWUmcgLuRBY2H42amhFUAtaqpJPW8s7HRYVr11qokBSsz26yPE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>AsWBPKQb0w7rw1Dyu6bDOVauQQb2mXgTpTuTlqJB/JPaU4t+uc0Q4X6hEykESmVTOqjQ6vI9e98ZBfJRC3QL0MhE3lAjyXVIkT3B3zv3yPkBLMUGKKPOgtqqOE1XdRBDhL0YQHasnGsjRobrrss+qx4fZKN7L/g4NNuGaHImAHkSQJEmU6HENDgRRR+fJ2wu6rWO9E3pO4OOMkpORGeZkxMrRUZlF0dAUkd2FLwNbS4XDUho7SXqUADFKPzRFFN997f1uDkp19rdlvhxtx0PNkd3BRMLggRamMFj3oMDTzE1L3IhrpCYQNoG4w7wQJ6QFhN7WT/T7FXg5C79X/X7uY73cZl6gwM8WepYJ20GnR+vlrIm2O7rZw6fMHD8S2RgdJW8x3batnZ7/QjrPhoq61+LJ9he6LZTZTTwbZk1JnVD2M9YlmnvY2aO6qEw9Pcb+LFIQ4L2S4RHa/fJL4eJ+N7UExNNioAwtf7VnWuOc6P3VyLhmTGRYAsOm8Va2ylpPYTrCG4fE6SBXFF5ehez//ejXshbHmyp6PpmizUXZcLaVluPWARJo2B8qY2p3KLXNLGypn+ahPbRn3fowoSWQLZgrUANHTFHyiLbHHexgav4GlNRsox5iCzLMeZSC9xJ73/7Y8TdOieYvOJo8kj9+oMBdSfbTQnDV3bsjG2EQQHzGZc9xJvEUWPQvyKNaLw5cFBRuJ9V2590oHdMOYNEaDMkFoLIavwAJjIg7zMvfvOXzCwRC2XfYKjab5U0u7AsNvrKTx3UqdTP7m54Okr0T6tSUdJZmLbMg0a0X729YcHGoA9f0Z/wPzqbuHoyV9znD+cvRVp6LlKBNaSDWX4NQ1eC7SU9xdt+wpxqnOPrOdmHBUCVjeZJg9qKx+JQPkQdLxzd9hqUeVgjlcqht5kwe8r0CKUa2zYMri675K4OILaUBegqDgzjyiegUxZIynoqL4Q7SaMHQkKQJ4Zeb+e7pT/vZ21n35OMnWiwzEskr5sBsSZh5RSXQtT4P7xXPhrgbhIvSqCuR16c4aPHxTM2G0m8K22YLI8Wl4ATseqRghYJc9rCqva+MCqfyR/KOVqHrlIIt4af1Ph0gAxOK0t/Ax1y7MA6nJRe4ZU5z5MIM68DqsoAnDi09cOkctRO6NgdxGnitvzHt/0nXhqId7V3sbe9H9GCBGqOaE8/czHN9OHwyK2Sb9GBESkZFYoYFDlyz17S72JFgvrDIUFFtmKGhVFIiuo0wglpmHlDRDRPojO9GHhg8g5eO2gXFhZmUSPPkavtoTyRbOjyxof67zGuJsPAnyaSLDmo5I+ecnPved5uHZ6eGI1f+MbgLnI26GV8D+eKZuXTKtwomlpHTHbxrJf2C2I0GT4fTh7i8/Xxpvlvx4j8sFEm7BnNVBB6tZr0oF9Rp8N8p8ZONfoxL1ipw5h28Y/vPolvIViZzPO0h58MRcU+bWTXq5MEVPvhSLr5vEZSrb5+NGxlPqQ66yUnLmN6e0hI+IXaf2Va8/DT48R6RDRDwDb6HzfD84+0buFBHDrXsY92f/8V0Us0RPxZEUmePgIW1QpojIvZ3hEQkdPpiK0FyO6FdUugjdMHC0elW0y85qJk2FKnicEOem3xT/0xt3D0DOHl7pAtBBDNiQQv8HqqVES6TZYpk6pXEAV7AHLY/ho1jrhR8RbTcq45cY08kgVHe+tZjonvLR5cm10zab1yOqXLqaRBaDGUnp7alVfBqO1eOkhMoXpSxdpCDbBUgxaSdAORQeiO2pNhDl9mTLS0rLpiSrM18xGsEnYPgiw9K51P5iu2yE9aYR0Pk8Yg108vMBMKQ4xbcnZSISDNHutWyiJA5V52bJ+I5Y/gjdlBw6DSGHNPxnyn120fMD0YCrm/SMMJqDAJxigU+1pZu8JfoTat2e7j2fIunAkOpGwL2XMiRvH2P9ZwcylmKTGBnTb1vKVk03kbKfBCBc4hQKflZQjQDgUyI9w4cnp383w+kPg13SfnKNvJl48MNSSlE3bOrrrogAX+3ttacZImrkV3wSDhplpRLzfphx9TTX7w3Nohnw+SjMUnEPsVymIOHxK6gx74YuFPO96ldLEMk+DSaUqJnzerKWIZkCafDIw+m4GaHAFhpRcPNgH+YTwcbewBCDR9vSjJ8HT0Ym56lHF7hOHdzkIsHKl52GZH40q5klEl7x8EenGsCAnIJ7M+Ub23pcxVhzQyoz8EUzeRk97neBk3sqOqoDL0xk038obO52hXbhb27am6y+1l82TzLFj0ds6qvAchAu4UysdLXrkIoy9Qf0sro3GT+EjhPKAv6mRK0YN0gP6fHtNKwGWmUvTdokjenZZeX7CFtpUn98fJLyEeGBix0N1+2XAudwFJbqGCu/TChK9snesbSxBqaEK1+0nFEKX8JNS/9ay0sVtoqXMXHF3/VcfCXvumcKn/sl5iKfNhN8lvCdde5IV8dB44Pb2sKPswXvPngQ/rewwsVd/BYAsI2WRM+X6rePsa2lwBZqOKAy0437rLjEe81ujKlAMdt6qjqmMTK2HIrrbdilCKct1RqGXe4ebfhtQkfvw9nCEY4qfBP+uqX20Yx776/DLiENEEHezjQqtk4kR/62rsN0Cmdcd67MGOP0UUcs2jCyNM/4IGR+saC4Kpxyz+BYDvnvwS3ZW7UM/XjeF7Kw8s7TvjUYvGbSz5mXEd92doi+TTFakX1J8g/7JX3jFulBgLo8eP4tWE3ADegLEIOfcihBar8MqnVT0/RnmoJyvAPeUxhY/2h5f/4gBU7rG6h43Lky+91+ka5jc8Oe9Col1SvgBmGmK/aAccg19HIetMzcPT6tTWMR6/7vJ1bibelwmjbQqJlNMSb/0JD+7Ja3q/PjeASWR0cw4X+I4ER9hPZcU29+lFCDHFCdAXfuP5bBXPp2KekUTLoBs=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Rxsqwn3Koi3Ac12DsBH2GOY8oXG++5z1QHncWe9EWG++R1jtH/Hxl6Jy9VT4Waik4zTQ0TwsomXECSdei33zpbh85t4M0Qux/rLn7F301NXjwnxqBXPPll+mRDkdn0MKBJJgqQxblBHSAA4unC3P1yrcq42S0MtZ9zacT1qa7e8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7c28d2f1-639c-fef6-3fe8-e9f7026a7bd6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7c28d2f1-639c-fef6-3fe8-e9f7026a7bd6"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LlBWgNR3n8gdZqY0rmukGoQyI1E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>u8KXC5KUWEEyJADhr4ZaPfMZ8DHzbsFEBaPLgmFt735FnZDdCON9M3rWN5YNivD5P0YXtwW/ADp1yx2LtiUKJ+13sxBKk5kvDr0lIZqhoKTC+MeDpY/5b/ziMcf/S/6BL/nnlLzMORUZzhOPJAfFjfvZlGzzgIltYvREMpFtuFc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>1Gh6rMAA2vtNiXzeQp88GF5M7rKFHEUfaq5d3gFAyman6SOgEOeIaSQ4ygpoIS0sZIEoGG7o/dX3rCJVNqdypis1lsuu78RmORAahKolz7g6bePX5m0t7TrTSkWUmcgLuRBY2H42amhFUAtaqpJPW8s7HRYVr11qokBSsz26yPE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>AsWBPKQb0w7rw1Dyu6bDOVauQQb2mXgTpTuTlqJB/JPaU4t+uc0Q4X6hEykESmVTOqjQ6vI9e98ZBfJRC3QL0MhE3lAjyXVIkT3B3zv3yPkBLMUGKKPOgtqqOE1XdRBDhL0YQHasnGsjRobrrss+qx4fZKN7L/g4NNuGaHImAHkSQJEmU6HENDgRRR+fJ2wu6rWO9E3pO4OOMkpORGeZkxMrRUZlF0dAUkd2FLwNbS4XDUho7SXqUADFKPzRFFN997f1uDkp19rdlvhxtx0PNkd3BRMLggRamMFj3oMDTzE1L3IhrpCYQNoG4w7wQJ6QFhN7WT/T7FXg5C79X/X7uY73cZl6gwM8WepYJ20GnR+vlrIm2O7rZw6fMHD8S2RgdJW8x3batnZ7/QjrPhoq61+LJ9he6LZTZTTwbZk1JnVD2M9YlmnvY2aO6qEw9Pcb+LFIQ4L2S4RHa/fJL4eJ+N7UExNNioAwtf7VnWuOc6P3VyLhmTGRYAsOm8Va2ylpPYTrCG4fE6SBXFF5ehez//ejXshbHmyp6PpmizUXZcLaVluPWARJo2B8qY2p3KLXNLGypn+ahPbRn3fowoSWQLZgrUANHTFHyiLbHHexgav4GlNRsox5iCzLMeZSC9xJ73/7Y8TdOieYvOJo8kj9+oMBdSfbTQnDV3bsjG2EQQHzGZc9xJvEUWPQvyKNaLw5cFBRuJ9V2590oHdMOYNEaDMkFoLIavwAJjIg7zMvfvOXzCwRC2XfYKjab5U0u7AsNvrKTx3UqdTP7m54Okr0T6tSUdJZmLbMg0a0X729YcHGoA9f0Z/wPzqbuHoyV9znD+cvRVp6LlKBNaSDWX4NQ1eC7SU9xdt+wpxqnOPrOdmHBUCVjeZJg9qKx+JQPkQdLxzd9hqUeVgjlcqht5kwe8r0CKUa2zYMri675K4OILaUBegqDgzjyiegUxZIynoqL4Q7SaMHQkKQJ4Zeb+e7pT/vZ21n35OMnWiwzEskr5sBsSZh5RSXQtT4P7xXPhrgbhIvSqCuR16c4aPHxTM2G0m8K22YLI8Wl4ATseqRghYJc9rCqva+MCqfyR/KOVqHrlIIt4af1Ph0gAxOK0t/Ax1y7MA6nJRe4ZU5z5MIM68DqsoAnDi09cOkctRO6NgdxGnitvzHt/0nXhqId7V3sbe9H9GCBGqOaE8/czHN9OHwyK2Sb9GBESkZFYoYFDlyz17S72JFgvrDIUFFtmKGhVFIiuo0wglpmHlDRDRPojO9GHhg8g5eO2gXFhZmUSPPkavtoTyRbOjyxof67zGuJsPAnyaSLDmo5I+ecnPved5uHZ6eGI1f+MbgLnI26GV8D+eKZuXTKtwomlpHTHbxrJf2C2I0GT4fTh7i8/Xxpvlvx4j8sFEm7BnNVBB6tZr0oF9Rp8N8p8ZONfoxL1ipw5h28Y/vPolvIViZzPO0h58MRcU+bWTXq5MEVPvhSLr5vEZSrb5+NGxlPqQ66yUnLmN6e0hI+IXaf2Va8/DT48R6RDRDwDb6HzfD84+0buFBHDrXsY92f/8V0Us0RPxZEUmePgIW1QpojIvZ3hEQkdPpiK0FyO6FdUugjdMHC0elW0y85qJk2FKnicEOem3xT/0xt3D0DOHl7pAtBBDNiQQv8HqqVES6TZYpk6pXEAV7AHLY/ho1jrhR8RbTcq45cY08kgVHe+tZjonvLR5cm10zab1yOqXLqaRBaDGUnp7alVfBqO1eOkhMoXpSxdpCDbBUgxaSdAORQeiO2pNhDl9mTLS0rLpiSrM18xGsEnYPgiw9K51P5iu2yE9aYR0Pk8Yg108vMBMKQ4xbcnZSISDNHutWyiJA5V52bJ+I5Y/gjdlBw6DSGHNPxnyn120fMD0YCrm/SMMJqDAJxigU+1pZu8JfoTat2e7j2fIunAkOpGwL2XMiRvH2P9ZwcylmKTGBnTb1vKVk03kbKfBCBc4hQKflZQjQDgUyI9w4cnp383w+kPg13SfnKNvJl48MNSSlE3bOrrrogAX+3ttacZImrkV3wSDhplpRLzfphx9TTX7w3Nohnw+SjMUnEPsVymIOHxK6gx74YuFPO96ldLEMk+DSaUqJnzerKWIZkCafDIw+m4GaHAFhpRcPNgH+YTwcbewBCDR9vSjJ8HT0Ym56lHF7hOHdzkIsHKl52GZH40q5klEl7x8EenGsCAnIJ7M+Ub23pcxVhzQyoz8EUzeRk97neBk3sqOqoDL0xk038obO52hXbhb27am6y+1l82TzLFj0ds6qvAchAu4UysdLXrkIoy9Qf0sro3GT+EjhPKAv6mRK0YN0gP6fHtNKwGWmUvTdokjenZZeX7CFtpUn98fJLyEeGBix0N1+2XAudwFJbqGCu/TChK9snesbSxBqaEK1+0nFEKX8JNS/9ay0sVtoqXMXHF3/VcfCXvumcKn/sl5iKfNhN8lvCdde5IV8dB44Pb2sKPswXvPngQ/rewwsVd/BYAsI2WRM+X6rePsa2lwBZqOKAy0437rLjEe81ujKlAMdt6qjqmMTK2HIrrbdilCKct1RqGXe4ebfhtQkfvw9nCEY4qfBP+uqX20Yx776/DLiENEEHezjQqtk4kR/62rsN0Cmdcd67MGOP0UUcs2jCyNM/4IGR+saC4Kpxyz+BYDvnvwS3ZW7UM/XjeF7Kw8s7TvjUYvGbSz5mXEd92doi+TTFakX1J8g/7JX3jFulBgLo8eP4tWE3ADegLEIOfcihBar8MqnVT0/RnmoJyvAPeUxhY/2h5f/4gBU7rG6h43Lky+91+ka5jc8Oe9Col1SvgBmGmK/aAccg19HIetMzcPT6tTWMR6/7vJ1bibelwmjbQqJlNMSb/0JD+7Ja3q/PjeASWR0cw4X+I4ER9hPZcU29+lFCDHFCdAXfuP5bBXPp2KekUTLoBs=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc2ba8b82-f94f-8e79-371b-37aef0d9745d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxc2ba8b82-f94f-8e79-371b-37aef0d9745d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wR75+c64Bbt3eoFRdorkeb69N7w=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Fb9ieu5DPKn5yE7q9G0cmvQiSj55EJ5moIWtoHUQpK1B4NnUbAdu6TjTnVUamTpBj7Q7rJHn9PhkHxLVC3iFWz7bfXvGkXp2smiJKRDCLVMMgXWtfyouyPnCBrahCc4z61juPhe5C4Sh2TbpquUB5ObFPlPtLOLye1ZKvd7KCgA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Rxsqwn3Koi3Ac12DsBH2GOY8oXG++5z1QHncWe9EWG++R1jtH/Hxl6Jy9VT4Waik4zTQ0TwsomXECSdei33zpbh85t4M0Qux/rLn7F301NXjwnxqBXPPll+mRDkdn0MKBJJgqQxblBHSAA4unC3P1yrcq42S0MtZ9zacT1qa7e8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>