Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxb5cfe8f0-299b-e252-82b9-b14f299fb24a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb5cfe8f0-299b-e252-82b9-b14f299fb24a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>+G4O8Tu3dmrH+Dw2uBA6/OYgrRM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ToZYPYeBABLeA4OCxKiA+eapnNL67AnXdDB7N74rueh/mSiOn532zEj5/0DQ/uk7BUuBpUTXMjpRjCqdasf1EUlco5OH9g+w5hsFNXZkf7hBdbJUgu2fUdzGhwumG3aP1AFJj/+srva6Qq+hxbjP/8OVfwjCfs5A4qOHkZ+rokA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxbdd01b7b-6703-badf-cd03-56faa08056d9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbdd01b7b-6703-badf-cd03-56faa08056d9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>8pZBw7RlDyfNNKPo+jwn2SJvPSg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>JrhN2l4WV0kaBbrkfr7N4SF5R96aDr06a224yC7NTkv6r2j96hHwRSBeRdqAznLQN/7MGiBvynBFRM3bRCvA2dLIWk2yjxJdqFfas59lgPZiyWnquUsO8ZmqOQLUJ2cpcKo6b0Lw9w2OY4JKbUeC/rUd1BW4yGukRBVhJmyqvw0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0751104a-dd2b-6d69-0319-c06736e1471e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0751104a-dd2b-6d69-0319-c06736e1471e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LdZREz4QoTmsS+bKWqzK6NMhqxk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>A4p0hHpMzv2duvhjGRftr+sS/FqstxkSAHD1YncDdK2reoqGCq3uIifJM1bV+Gdr0h/vY3GB3NuoCaw2u/289LC9C5g0c8F73eKjSHrye7s7Ahp4NtgzUYi1Civ6QFc2lkCSAz5Y2wqc3Bqms5SRFbAEegbGks2REQZNLnfQqsg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxb037d74f-cedb-509b-e1ca-dc7a3ca65b45" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb037d74f-cedb-509b-e1ca-dc7a3ca65b45"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ukX/Ws7FYws/cwhCO7DapPF+CZg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>0yE9AmJHCoDvfLrwjZIHHrFWdrT3ipBr5Y7xST52IXX1v9cNXikN2VU7W2rqxp6w7WUjYYMHhrYX6ZQNGKacdaj4DmlwjP7QHu4jKcfkLj7e0G6SvF2GqcRtiF1gJNf4SOJqvvJmGemk5XxFyb3rOCr03kUlKD6sgRiKKdFTHxw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bT5LleAiAHSZa5tvTMKodqImIWE93m/OLgLkZcS25o2A0JGblZFKpLVE8E365nu5t/5YxY+3gpsg0fhnugVqSSWgWVbTcXtEMrNkmKMA6CFE86M5sKszkMrENBI/sOy27aS7IH9Ih07UMoHgNf44n2tehr3EZ8AZc3hUHYhsi90=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>eDPN5cTgVlIRJhJgJ02wjH4JmORZoiKAUMiKaSOV9bV5VzJ/PDcO4+VxbH4pbtjNOGMvW5wSoFYmNnUUpLgVOpPSe1gM+0LrJvpvBOhhe9kBhS4hq2NT4FNZn1SPHXykiMAzqlD7p5zgh4Pp4mJ9voCdeyea0MGjSA1JzVWzRqg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>VOnGBUfit4duKiL72Nu1b29FS/7r3uwv7UVMLdDvqmC6Hvs/5R/L+FDJUdzn6Keh9QBMKcQCMvVXAZFMrQuLmM9zb579bnjtdA/S0rroEmWQNF8P3wznWZucocrFiVgBmi8dUfJdbe1a6Wy/jhOm5/UU1knvs+OVjD7QDpp8ysyzsOKayyrNhU1NtFPq4GDDzJ7RVRnytRs2Ew26HqD+mAJPFOM6Jd/qux6ju/HRRbRNOBe0Uzwpd1C4R4tVSBb2P9Otw0QP6ZYGPlCtJgwHSyDCwtsh4SRlEcBpG9KwlorQ+4kVMUqe0b/Cl0enV29CY9hJrh1me0s50EIBeZ/hwuiFeki4xVEoWpynL8YO139xOJDDZZckY3zJLCpUtvmLLqjTEIRCXrOf0X1JYj0FC5z4OvQjzkmjWtnpyXFJ69stASJBV40vpIvt0RjNOR4SnkQdgEb9niWtQE6SAtdJGmJ7EJ1eLmSOKFOnAhkEAPQ1GIzqxr/8KF0ii2MIBs4uiUxSWUSia/IIBKINJC7Ck8z7sVOgNHtX1gcqEuT8yrC3n6iP4KkD9hP3tg49BYLX/0EcXsEiLs3YQbfWyyjnKZkRad9gTDUMbzDczR7Rl5aw2+l6b9cYGOhbc9BrkSyMpiTGy1kx0DplBkG341rdwEac0clzXnbwJHAoXaf/Zrw2f2FpotSNK09AQEhs4coziVWiMAWjTpStQXEfpRSXyADEso/StpHltN1ZK3p5cv8MGKMmCD6VUPXBleaNNnnP+BuNhgtzRRtofzoRputYJRg2gU6AxcvQa6hUFcfhIQ42+/VDi9vUS9bgaHKvDA45ya3mGdVrQud2ZhGFNp7SfqcN475eoQBX/X/4s+DJFwOfT+4ixdjnyTIHXB/qvhCEDJ+Wj2wdjNewaFh6DbXqmeAcCSzBZai/bvIr7qrbBMxmD8XsPLr8/B1xVz0Ekmm7TmB/bNI2306Df6Z/CV3OFjQP8L0W+QIUOBekTxb2JsR1n/0KfStjI/qQ0ATQhKCDPeuphmZ7OBRxw+QMPuoT9Ew/OS8CzhR3m8YqpeVgTScbSA2rKTP9jrj2l+4kbsMdB6/me00DbcZtRzCrbN2vamK0LNJNAS5UiZ+RjVvipQwIOnzl7ksvf9/XXNvyEMYZyohDluGsxMmVa4EI90ym6IqQmlesddcreO+dlBfYn+oZ5iogN/tC07TMB0gLWys4sXrY8d3/A5ybdzY7XI6zarWXpqC7L9odTCuZOoaHy40c5vo4VRfijwp7ItEfmzbIjnbAPk8cc+Ub6CrBIBonNiUrxDNmx16+eZV72IL3Xm6+eULy7deQWpPaN1LI0dv780p9HYqfSc6azLfxxthz1UuT2a/3rgPAOoPWy8eGRbSC34PZ0LahZcTUh5ey64tQ+5ln7kzYkB1DQJSL0R+L6eN332PTk2gEJqSNrJ3cvDrFeVXM1IXB0YQvfE6u2El2EslI3eB58csFnJ0GNh/SimnoPos5BLqhqcJ/cpaajj5eN6RNGZajp655h5LD2sZ8sj9NenF0lHi4Lica6ztOgoPD+Bi8z420SrKhd1W2FQOzVVq51XUvqmfwPH3Ch/9QwlIUz1rQ270Y/RL3Hw2JNrkOHwgy9U6mJUwIRPSMvU+uhkGY3xGhDmHE8wyHUDIYmUcCWzVkjG4JdqRNLFkjL1pqjI82fvweQ9fMQOl2VWvJJbwRv5SlAm8LMczWwr9gzYL96DX+AUSvw92q0cttupGYLVKn71M6bu7uxGRjnwVXcUiCg3ZWdomyrjRqWSBykQqmYh6j+qERfLMww+VueuT7bzVONI2t2qUXG1VV41P2b9/3ZpOT+a9b4qilrMpZIsITaLXE66vVvNDNk9F26L0VTk0idEOdf7RjNCdLOVIqbDDyuFbAXgZfRguAoCrIsoVhPNk+HMWBxYgOGoIgP5D2OCSzpvrWTKoj8L77ugREYtMdZ4xAWiwWbtZ95qgv0sV74ee7tGfclvM7e+l+qYB4gKk/GiuhaILkFeOLz4Q9XrSOeEfA9pTNjrTZJQZCBxeTOXjXhIOjf/0oQCMYEj5NFxHCm+KPhRPJrjj+yBItBYHDbZ20l7hoyHshXo6BfGVIv+Rn2kIwlyDgR/lfh7iW+m3HB0p60dui7xktSHsn+5fn/zy5w7ZL/opUEG/m18FM8BD8o6lffL1XWhQrsVDPymgT08kB8+pyybrgHMWdK2/1LJbmE3g2LCDMWpldtFlEGNQMBhijqE+S112Eq22QzPI3hyVqkTFNXMa6hZiPT7rIVxtCSnhwoyjPO4EtkSQG1k7XBCTqnymIk1sQO7tAE0LTxU1hiQxBLFk+KkmtiWv34pBK/RlnLU10WMUJugjs6g8CZAHbx5K4XPSU4jy4VQLMiY7Qa7nxOdXaIqBgTpHWgK+8JDsCaf3VBAeZ7371iA8aVaLR3gpiTJi8gh5kb5Vheahan4YfyFr9K+58JObIyLjBNFBwN3J5Ng6WDZI9/oTZIIEsjltMhhNPm+XbVV5hle8MxAL1m7n+/levGQ/KuhMyzommLLfoFqig9RK5xFSuYX/5Loj+zB0Jm1SRe4LWjAzY77H5LPosXgAbsSDcf57RRUktxfiFyY93DoVgTG3lv3iEEM+KdO0849aJoF4ff6QqvmlaAyHELCvTMnm1dwF1KbBKLJAdw4PHWbPx8lECmuChmR1XSpJDAsnBxknxEZh4fVzf3wv7QQaeyw9/pe070Zc75sSVz0M3EN1H64zTDI/HjUlmlgFQb3rU1x7+SfzYN4eiVfEkr2FcchcEg/kLCbLOqgIAoVXjvd/FSSaLSTCx86hT+SKKqs3ZG+7axQ+Cqf7QHZmPnpoJuYGA+0Pax+CUNt7vPXmEe4Ok3qjiQTD/O26dfS5wfzDidmMR3l8bV361R3/Hv8EWc/+xNHjDrHzaHcrFhylYdKWHetd3YQpN1VfaoC0fbOChHpugXRnEe5cb+WyPdr0zP2oG1skQWZl9KjwGZjrepLRdJFqgebzZfyNoEn9gw5jKpGVKUlnjTGFDeg2yv4Qc3kf2Wgg91OhNF3jtAvqgq4S/enZS6ukkfu5Vde30fxfnk+1JOSmKJyWDzPRQoswdlcao23YC4+a12aUzr1EqxceTMhO0IskmC7t3Jk4DKII3qQ0i8y20GS2ToP6X8E+L4TPvzl2w4s6/ps41mXPZZxMugqJ82/eZ9K+8g2NpRFgvOFYf/ruFXeLkdVt0P7nBMdvN6oeUo/6qw9uH5K6bKJ83+WTnfvMLZ6xL0niVqru0OcXLL1jESmMid+O2PSDtp+p2Kct1mG6jnDlu0JZEpNTSUyP3RkShjKlRqLk3hw8TiL83NdpYsjeLGYhjNTtYuXDT5NaesnhCCT8FTBiBIeRWIvYqyJxnFFoIky+74NUiSb351DAknOnMbUlvyDFIgy5C5u4H9Bqf99pqGOfBMwI9JJzGWXjehrGSkQWBzE95alVAxt2jfQE+3t1vG21xMDGoSDj41Ye04eUhKn7MTvtEMjlFankcALB9lBCFTOA5JtCSYkN1S+2wslr+OBSDBBNLltbKjnRgrsuT14PNE9Gr/m4mvvv5Dpq9pHx3KvAVDUGx/P9nHEsEOsoKVatunBFcKWANfXRTbtZFaAwU9Yn3GfF8dGtk84An3forVPvUaFC35NzvVH7yRjD3f4C0etsyTi0rf8+koHzqmfaXzwvR0JaaMsDgEBXr4qIY3XOC9C0PAeRO72rNCbVXEQ0OSHkqig3o/bGzqv7L1KXdH8Ftti2L2KtoHrnpsLpfuq7EwsGqY9UmJwQXwTvY4Qa6h8p4Ax+D0zMMUOBC3WNtuq5ff1VtlN4OrhVW7klIcs/vDA5BQdp3ov8kDVw7U5AkvajOtR7mL+PoL8vheJzbC24B+UrZSsAikWOXZz74J0VpcEvXd9v6BwL0hSY1q1WXA3gXmciMfKH8uoYnDzWOYvZKFF8QqLUTWzfE3Zs7zEUHg2O6sznR0t9dil+2bAOXBJ3T0ZhVj92wbLdZ1Lm/2YwL+0wIzO+HJihcIMr6EYonnQUilsXi/dIjwiv+Gxi+WGaH6Iw3bhbIKVkQ7p7bZLR1joPnJsYNYibuCkAndN/TONcjuD43/PQv72Z+mO2soD06kjULiqZCwl/gDeDD0ew/pBE6qeaqWtT+7LiNtxV2BItaBzp5ckT55gbQIORJ0Jq2yvILRqd5MlztftYZ47yMVV6GQnHqnHGt4vPE7C5dNcPTmyQbHcVOxW1kgAc5T9N00yEPbSJWxC+GXhPSONeG2vhCG8TCF2j9d7SbbS+VYL2OMSd0sWHjXs7gw8wQ/kmv0VHNrCSJ+8nN1UmfeHnDrxkjPNIVLP2LM1U+K3tKRWDCNC5Cn9djHyr1qmvve95f5b2lVyhBx5Om7iuf7eegJMSko4O2sa2w5B6I8DvGUTQOhX7qcOrc2xmNdT0UkZcqPB0/z8vGaCeJy7xARYSHiEk3z70h3jcBU35i+yBqIs6FNhcJwT8xCoDKw2M+WNm3Ea+Lat+/mIJcox99EwJ17ZPzUkN6eRd0TjD3khIC7O6MJ6IkEKnYeI+c80sQE9rjLawdxbJAN3TGA7KP4XlriIu/8wjGEYX2FA7Vnw0UmIZ9gCE5Mq0FYIoZ0ftHtB9y/yvBtAEbb6JV3tm1z5w+IXfv7fwWTzeTKiEgmjpWM0/E2AOGK2wk7K4f0jC9WDa01Me6xnMIlHC8wmW19j/JfIA0vQoH24AEihch1h+iSp6h4d/3roL5jw7vpJFOUYSCu5gLCyhSbw3P5nmZu3HlPybI6TYltq3gz7GGDDh5k/e0cg3xouydWOt7ysBwkJoXv7E1Av/v3aS3GA3m19tyDFpM9EsxNB2E+r3/jus+8f/TSqJYAWQWJ/NZv6KldixbZRw57QLI1H9PtlZMcgpIEcj4wWFeMgbx7A5K4X9zTXVmJ0foOaq88q+nH3k4kJq3nuy/52bGhA8uMGpn3l7T8aJSzV8OEfbRsTCxhUIR0sVpX6n3pm+6RneMmsuLbzvxr99NSFvK+ul+gcmzYx5/YEGuoacVnImtFfso6n7B7RxgiNxK3/crHqVeLwy357ByRZOVn2KuLxWzIWBAsA1p5vIjLlb0KFi35W515v6u2xJvsyGAL9iSRFoMYVhApslsmSLAv4xYfWKQcxePEyE00fs6zzoU3UyzWBnckrF+vYxZDvvfXCDhi4l+safrzf5SXj+PBJ2jdQkw74Sl1dCoZFeTw61xGuqacnkH1/DwXTsOHVZgL7OgHddKZCDUPgN+R/gEn5CFY9BKM6eZmbQhDfv6a5B8ajOw/6a2SjLRku8Ok75mk0i2UWOFtt2+1Vt1VlYCDR8+0M9FsdR4mq+sQfCXl11e+Bo6mFkgT0zIN4pdxADeDltiFCs03hTl8G8v4fjnwtvKNap4DDBZbUfED5SXNXi/a0w7llH/6APXY9rAbrrWx5V6/n9bi+s=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx985d65fe-8fa3-8602-8054-0e8844a14c1d" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx985d65fe-8fa3-8602-8054-0e8844a14c1d"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lDHa5trOLNObwMzeYqkqHS3S0Ks=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VjqxVE4+lqNshQ7tn9HGWGy3WSoeMHq2xZcye4KvXOmvek+b11aVNE+Dwdir+kwJavFpHRAoHxp1OqVIDsOIZX8xYVPA3sJ4Rq3gOVLu1Fd6S6vxHkfzG4WvrTgKwc4G9Rz8MzzM+vDGv1WY/wEClkOoa7mSenDcHGKBb7G/5oc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>bT5LleAiAHSZa5tvTMKodqImIWE93m/OLgLkZcS25o2A0JGblZFKpLVE8E365nu5t/5YxY+3gpsg0fhnugVqSSWgWVbTcXtEMrNkmKMA6CFE86M5sKszkMrENBI/sOy27aS7IH9Ih07UMoHgNf44n2tehr3EZ8AZc3hUHYhsi90=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa1145607-41fa-7510-7353-9381c76c4ac7" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa1145607-41fa-7510-7353-9381c76c4ac7"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>fvKR7A5GHMkCKoyFp/W8JMnJaiA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dYgKQOPqny52Ib5w7QqHnh9zf3Py8z8VEcnZIH8bSReiDWFWmzV2PKKP1Tp0jID0d5xdWh1llwYIFT4WZoMRfEdlQDel7YBWXMFvOMiQ2gRlnlC7knPp2Rk23feH3jmUy0MCSUJOsxTcfUeE0LjDAb0Shu3SeG4RZbvEXZ74iG4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>eDPN5cTgVlIRJhJgJ02wjH4JmORZoiKAUMiKaSOV9bV5VzJ/PDcO4+VxbH4pbtjNOGMvW5wSoFYmNnUUpLgVOpPSe1gM+0LrJvpvBOhhe9kBhS4hq2NT4FNZn1SPHXykiMAzqlD7p5zgh4Pp4mJ9voCdeyea0MGjSA1JzVWzRqg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>VOnGBUfit4duKiL72Nu1b29FS/7r3uwv7UVMLdDvqmC6Hvs/5R/L+FDJUdzn6Keh9QBMKcQCMvVXAZFMrQuLmM9zb579bnjtdA/S0rroEmWQNF8P3wznWZucocrFiVgBmi8dUfJdbe1a6Wy/jhOm5/UU1knvs+OVjD7QDpp8ysyzsOKayyrNhU1NtFPq4GDDzJ7RVRnytRs2Ew26HqD+mAJPFOM6Jd/qux6ju/HRRbRNOBe0Uzwpd1C4R4tVSBb2P9Otw0QP6ZYGPlCtJgwHSyDCwtsh4SRlEcBpG9KwlorQ+4kVMUqe0b/Cl0enV29CY9hJrh1me0s50EIBeZ/hwuiFeki4xVEoWpynL8YO139xOJDDZZckY3zJLCpUtvmLLqjTEIRCXrOf0X1JYj0FC5z4OvQjzkmjWtnpyXFJ69stASJBV40vpIvt0RjNOR4SnkQdgEb9niWtQE6SAtdJGmJ7EJ1eLmSOKFOnAhkEAPQ1GIzqxr/8KF0ii2MIBs4uiUxSWUSia/IIBKINJC7Ck8z7sVOgNHtX1gcqEuT8yrC3n6iP4KkD9hP3tg49BYLX/0EcXsEiLs3YQbfWyyjnKZkRad9gTDUMbzDczR7Rl5aw2+l6b9cYGOhbc9BrkSyMpiTGy1kx0DplBkG341rdwEac0clzXnbwJHAoXaf/Zrw2f2FpotSNK09AQEhs4coziVWiMAWjTpStQXEfpRSXyADEso/StpHltN1ZK3p5cv8MGKMmCD6VUPXBleaNNnnP+BuNhgtzRRtofzoRputYJRg2gU6AxcvQa6hUFcfhIQ42+/VDi9vUS9bgaHKvDA45ya3mGdVrQud2ZhGFNp7SfqcN475eoQBX/X/4s+DJFwOfT+4ixdjnyTIHXB/qvhCEDJ+Wj2wdjNewaFh6DbXqmeAcCSzBZai/bvIr7qrbBMxmD8XsPLr8/B1xVz0Ekmm7TmB/bNI2306Df6Z/CV3OFjQP8L0W+QIUOBekTxb2JsR1n/0KfStjI/qQ0ATQhKCDPeuphmZ7OBRxw+QMPuoT9Ew/OS8CzhR3m8YqpeVgTScbSA2rKTP9jrj2l+4kbsMdB6/me00DbcZtRzCrbN2vamK0LNJNAS5UiZ+RjVvipQwIOnzl7ksvf9/XXNvyEMYZyohDluGsxMmVa4EI90ym6IqQmlesddcreO+dlBfYn+oZ5iogN/tC07TMB0gLWys4sXrY8d3/A5ybdzY7XI6zarWXpqC7L9odTCuZOoaHy40c5vo4VRfijwp7ItEfmzbIjnbAPk8cc+Ub6CrBIBonNiUrxDNmx16+eZV72IL3Xm6+eULy7deQWpPaN1LI0dv780p9HYqfSc6azLfxxthz1UuT2a/3rgPAOoPWy8eGRbSC34PZ0LahZcTUh5ey64tQ+5ln7kzYkB1DQJSL0R+L6eN332PTk2gEJqSNrJ3cvDrFeVXM1IXB0YQvfE6u2El2EslI3eB58csFnJ0GNh/SimnoPos5BLqhqcJ/cpaajj5eN6RNGZajp655h5LD2sZ8sj9NenF0lHi4Lica6ztOgoPD+Bi8z420SrKhd1W2FQOzVVq51XUvqmfwPH3Ch/9QwlIUz1rQ270Y/RL3Hw2JNrkOHwgy9U6mJUwIRPSMvU+uhkGY3xGhDmHE8wyHUDIYmUcCWzVkjG4JdqRNLFkjL1pqjI82fvweQ9fMQOl2VWvJJbwRv5SlAm8LMczWwr9gzYL96DX+AUSvw92q0cttupGYLVKn71M6bu7uxGRjnwVXcUiCg3ZWdomyrjRqWSBykQqmYh6j+qERfLMww+VueuT7bzVONI2t2qUXG1VV41P2b9/3ZpOT+a9b4qilrMpZIsITaLXE66vVvNDNk9F26L0VTk0idEOdf7RjNCdLOVIqbDDyuFbAXgZfRguAoCrIsoVhPNk+HMWBxYgOGoIgP5D2OCSzpvrWTKoj8L77ugREYtMdZ4xAWiwWbtZ95qgv0sV74ee7tGfclvM7e+l+qYB4gKk/GiuhaILkFeOLz4Q9XrSOeEfA9pTNjrTZJQZCBxeTOXjXhIOjf/0oQCMYEj5NFxHCm+KPhRPJrjj+yBItBYHDbZ20l7hoyHshXo6BfGVIv+Rn2kIwlyDgR/lfh7iW+m3HB0p60dui7xktSHsn+5fn/zy5w7ZL/opUEG/m18FM8BD8o6lffL1XWhQrsVDPymgT08kB8+pyybrgHMWdK2/1LJbmE3g2LCDMWpldtFlEGNQMBhijqE+S112Eq22QzPI3hyVqkTFNXMa6hZiPT7rIVxtCSnhwoyjPO4EtkSQG1k7XBCTqnymIk1sQO7tAE0LTxU1hiQxBLFk+KkmtiWv34pBK/RlnLU10WMUJugjs6g8CZAHbx5K4XPSU4jy4VQLMiY7Qa7nxOdXaIqBgTpHWgK+8JDsCaf3VBAeZ7371iA8aVaLR3gpiTJi8gh5kb5Vheahan4YfyFr9K+58JObIyLjBNFBwN3J5Ng6WDZI9/oTZIIEsjltMhhNPm+XbVV5hle8MxAL1m7n+/levGQ/KuhMyzommLLfoFqig9RK5xFSuYX/5Loj+zB0Jm1SRe4LWjAzY77H5LPosXgAbsSDcf57RRUktxfiFyY93DoVgTG3lv3iEEM+KdO0849aJoF4ff6QqvmlaAyHELCvTMnm1dwF1KbBKLJAdw4PHWbPx8lECmuChmR1XSpJDAsnBxknxEZh4fVzf3wv7QQaeyw9/pe070Zc75sSVz0M3EN1H64zTDI/HjUlmlgFQb3rU1x7+SfzYN4eiVfEkr2FcchcEg/kLCbLOqgIAoVXjvd/FSSaLSTCx86hT+SKKqs3ZG+7axQ+Cqf7QHZmPnpoJuYGA+0Pax+CUNt7vPXmEe4Ok3qjiQTD/O26dfS5wfzDidmMR3l8bV361R3/Hv8EWc/+xNHjDrHzaHcrFhylYdKWHetd3YQpN1VfaoC0fbOChHpugXRnEe5cb+WyPdr0zP2oG1skQWZl9KjwGZjrepLRdJFqgebzZfyNoEn9gw5jKpGVKUlnjTGFDeg2yv4Qc3kf2Wgg91OhNF3jtAvqgq4S/enZS6ukkfu5Vde30fxfnk+1JOSmKJyWDzPRQoswdlcao23YC4+a12aUzr1EqxceTMhO0IskmC7t3Jk4DKII3qQ0i8y20GS2ToP6X8E+L4TPvzl2w4s6/ps41mXPZZxMugqJ82/eZ9K+8g2NpRFgvOFYf/ruFXeLkdVt0P7nBMdvN6oeUo/6qw9uH5K6bKJ83+WTnfvMLZ6xL0niVqru0OcXLL1jESmMid+O2PSDtp+p2Kct1mG6jnDlu0JZEpNTSUyP3RkShjKlRqLk3hw8TiL83NdpYsjeLGYhjNTtYuXDT5NaesnhCCT8FTBiBIeRWIvYqyJxnFFoIky+74NUiSb351DAknOnMbUlvyDFIgy5C5u4H9Bqf99pqGOfBMwI9JJzGWXjehrGSkQWBzE95alVAxt2jfQE+3t1vG21xMDGoSDj41Ye04eUhKn7MTvtEMjlFankcALB9lBCFTOA5JtCSYkN1S+2wslr+OBSDBBNLltbKjnRgrsuT14PNE9Gr/m4mvvv5Dpq9pHx3KvAVDUGx/P9nHEsEOsoKVatunBFcKWANfXRTbtZFaAwU9Yn3GfF8dGtk84An3forVPvUaFC35NzvVH7yRjD3f4C0etsyTi0rf8+koHzqmfaXzwvR0JaaMsDgEBXr4qIY3XOC9C0PAeRO72rNCbVXEQ0OSHkqig3o/bGzqv7L1KXdH8Ftti2L2KtoHrnpsLpfuq7EwsGqY9UmJwQXwTvY4Qa6h8p4Ax+D0zMMUOBC3WNtuq5ff1VtlN4OrhVW7klIcs/vDA5BQdp3ov8kDVw7U5AkvajOtR7mL+PoL8vheJzbC24B+UrZSsAikWOXZz74J0VpcEvXd9v6BwL0hSY1q1WXA3gXmciMfKH8uoYnDzWOYvZKFF8QqLUTWzfE3Zs7zEUHg2O6sznR0t9dil+2bAOXBJ3T0ZhVj92wbLdZ1Lm/2YwL+0wIzO+HJihcIMr6EYonnQUilsXi/dIjwiv+Gxi+WGaH6Iw3bhbIKVkQ7p7bZLR1joPnJsYNYibuCkAndN/TONcjuD43/PQv72Z+mO2soD06kjULiqZCwl/gDeDD0ew/pBE6qeaqWtT+7LiNtxV2BItaBzp5ckT55gbQIORJ0Jq2yvILRqd5MlztftYZ47yMVV6GQnHqnHGt4vPE7C5dNcPTmyQbHcVOxW1kgAc5T9N00yEPbSJWxC+GXhPSONeG2vhCG8TCF2j9d7SbbS+VYL2OMSd0sWHjXs7gw8wQ/kmv0VHNrCSJ+8nN1UmfeHnDrxkjPNIVLP2LM1U+K3tKRWDCNC5Cn9djHyr1qmvve95f5b2lVyhBx5Om7iuf7eegJMSko4O2sa2w5B6I8DvGUTQOhX7qcOrc2xmNdT0UkZcqPB0/z8vGaCeJy7xARYSHiEk3z70h3jcBU35i+yBqIs6FNhcJwT8xCoDKw2M+WNm3Ea+Lat+/mIJcox99EwJ17ZPzUkN6eRd0TjD3khIC7O6MJ6IkEKnYeI+c80sQE9rjLawdxbJAN3TGA7KP4XlriIu/8wjGEYX2FA7Vnw0UmIZ9gCE5Mq0FYIoZ0ftHtB9y/yvBtAEbb6JV3tm1z5w+IXfv7fwWTzeTKiEgmjpWM0/E2AOGK2wk7K4f0jC9WDa01Me6xnMIlHC8wmW19j/JfIA0vQoH24AEihch1h+iSp6h4d/3roL5jw7vpJFOUYSCu5gLCyhSbw3P5nmZu3HlPybI6TYltq3gz7GGDDh5k/e0cg3xouydWOt7ysBwkJoXv7E1Av/v3aS3GA3m19tyDFpM9EsxNB2E+r3/jus+8f/TSqJYAWQWJ/NZv6KldixbZRw57QLI1H9PtlZMcgpIEcj4wWFeMgbx7A5K4X9zTXVmJ0foOaq88q+nH3k4kJq3nuy/52bGhA8uMGpn3l7T8aJSzV8OEfbRsTCxhUIR0sVpX6n3pm+6RneMmsuLbzvxr99NSFvK+ul+gcmzYx5/YEGuoacVnImtFfso6n7B7RxgiNxK3/crHqVeLwy357ByRZOVn2KuLxWzIWBAsA1p5vIjLlb0KFi35W515v6u2xJvsyGAL9iSRFoMYVhApslsmSLAv4xYfWKQcxePEyE00fs6zzoU3UyzWBnckrF+vYxZDvvfXCDhi4l+safrzf5SXj+PBJ2jdQkw74Sl1dCoZFeTw61xGuqacnkH1/DwXTsOHVZgL7OgHddKZCDUPgN+R/gEn5CFY9BKM6eZmbQhDfv6a5B8ajOw/6a2SjLRku8Ok75mk0i2UWOFtt2+1Vt1VlYCDR8+0M9FsdR4mq+sQfCXl11e+Bo6mFkgT0zIN4pdxADeDltiFCs03hTl8G8v4fjnwtvKNap4DDBZbUfED5SXNXi/a0w7llH/6APXY9rAbrrWx5V6/n9bi+s=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>