Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx261f2c29-a23a-6ede-af2c-235cb0dd4d67" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx261f2c29-a23a-6ede-af2c-235cb0dd4d67"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>vuS6WG5EWQbJNtO+av1gfLoVjwo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CaDZBL62xX+gEXh/WdsnHzdD+oPFazt9Q4FMTMXBiT/ntaxcD4tYOAC14CbNL6ZXKboAxBnjbJgYOSyhhWv0fHtqMG1qt9rK8F8blhjvbUR8oAyCwlF3JebgNpO4GgUdyftYH17SP95l45RYlt+fKe6AL0mHuG6YMUjMLlkDP2g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx937a4c0b-e1d3-27c1-fda7-908a8eeed42e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx937a4c0b-e1d3-27c1-fda7-908a8eeed42e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>d9BXh3jiYGVmPYfPVUGU/Ypfejs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>J7YqXi8zuTqNj2A/qc0/R/c7U64tKGqybyDRSPVVTsUjUjV+aeZbsnJRkgxntKfgP88YouNE2sOj8XtdZ0+uzltxH/W1mZbjQ6Inc8rKu/Sgu4v9eWaZEdz5rJ4O9IYdsvVZgWU7q0nunGLRGMWg4+OGmflxHkzUyy0wieEiSLo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx21c48e94-e8db-d2ec-19bc-ff3d317709a3" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx21c48e94-e8db-d2ec-19bc-ff3d317709a3"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>JldXJdK2idFxJnMxSuYUv7o3iKk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bAnpDRJWJ+CrZEJr7bSwQ+z+jOADNzNgLwumm3OEq/3pD+oMrEjwmLm5rtajv5zq65cCxWfmVhcFBBHdQJ4UHsd6cap09W/232rbROg4L5worItf1uE1oB6vdGKGHoPBWJejt6IoI0xIn2p07hyOUBGR1aO+h+9ATgdUShi6Ewo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf2ec7592-6ee2-c880-676f-f357b4e95995" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf2ec7592-6ee2-c880-676f-f357b4e95995"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>NjXGwcZVivR0WRk3dR2o3hEXVig=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>cvVyDQmJJu3g+AIWiFu9q5NgJ+gvcP8gn1E42BWH8vwVp22FN6RFB82klLlHQsoAfL8hfiCS0O+ZvfD/CVYmrZvNyV95iDQSAgOU9jTOtBNLk/5Jlj6NjdN9cs3PICRGX81/ZL7Fi5nXjY4KyK7oyHwUi1NXnUNQtOoIZ+viVsI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Wvm90RXWN3cPCuriplTUY4HQB8jystb77JByDXRkYCe1TOs5lQJ8sUd4C3N5yIlNUQj2KUSSE3NzNGeZ42Gjf8s2vtMXRMNU5YBuyWCbl24tHQqAzIjCX3mPjhgUpsY3SnsVmXGSI6EEI7ZKuHELAYhR60eBkdjuDOstgVn/o3g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wvFLss5K1BzXZpKUBTQ+lSOgspFuP2NYfN2/PiJksXaVOmzQ8XNTs7KrNvsp1X2RQFYeK1r70y+3yYOjenLxHs/kQt1cr/mFeKNK+2BrSNuG0le0SuCj4p9mN571Dy0GBmtw64ipBSZ+TJQ46Ns460MlJdmnfy7DHqITYnUBnqQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>vpJj3JSEXkLpiqB8BZDDWB/AtJ7xyAp0cfjDXtrxTFjUe5fMpfJSPnRwqCBQor0/RuDueP7z4d24if+19YSW7KWCG90w3yonAzDGS1lJR+G/eMDn3ac1hb6inSd0IhDup+SrWAuyRPNR3oLT2mCY4eT+qYYLpNMabrvpiychcz091P+O/z/8Z9gpWrIQ+3E5GLI2RzGVmYHXCIZul0xU1/cRTqFjjMgfjvTbq41vKFvTQnpVw2XbVPRMawMLG1sshcmfe0nhc4lUHC99JCghB1Q8RpRXrNxDRFT/x+tcmGgTWV7wDvRP6+c3Ay75i7jZVCHAhLPJK+pgtjEzbbm5Sqmzww+fFBfCStRF8dfreZws++VOyiINN7SkJrYyUESfSYLIRczXnN+q8cSPtm9gEF5ZC4dclJd/8LHgPwsFAnRZhggifM+3icfEQ296zbbuGaiF7PH7RALcF8sNfS1kc/yPD2cGfp9KYMUn4BFnAxuwR/68XUU/6SBuJ1/oyt9m/NT6Jk1JhineN6EtvlaXgbBmXBdF49AYUGYCKHsZceznmW1VWSwU64s37zeb3rNG2hYL6ClhR5co1+LGeQ/3XF4bVK6DD/ng7yJivRgL7wA9MEhP3K1fxGW5hnBo6kOa3BRKOOgdYQbUh38mIXylCKA8OQk3jfKnTIFpZqwHfQnnKXkB6ofJpvLz6NmFT2Sw0FXFCQteEOiAgDN9w6ZvkM4bhvmMwqhaG7g0ikedCpcd6Hy8KkKeoFNHEvDKcHo5aUMYwSwM6KGJOzTUqxqlcgalLTbsEulbVpmJRmY1vWQHys+dA+5o5Kd3Xf+yQ+hzYQsVoE8PWi2VKCO/XVGljDrNMrxckjc/LP8BE7FkqobfSgRVToClKAz73jX1tymYIKCxWBje8UZWevtUzM1CMd3w1Z00WpPQ6bOYR0fyNyJevRrvAhx+j7miCcbDbWO30HCPlQ4C62W1S5YE9LvKLPXcYq3lVYePuYyW9f3KGCweYKW7an1TksW6h0ExzK75hBO1RuKqBBfQksdSIs7xkkdIdf1zHp+dhUI+RRvoU74NrZeWV/K9qhSYywMcwhQGF8y/TWPvvwKiSc355++hbqD9hN+L/Zv7U4ESkyUWES058j7Q1J308C8jTZ+eseqtnDNMh7A0NTRgyWlyVS3jk8bWoXwo95aY7MiJMDUfLtway9yrnK5TE9cqo8wndKnvMbNmFLRmROUfML+rfTbGGhXw8B6DBFF6gxLP4M3FxZZfhim1eCpmm90Zgr1EhcSn8Ek/oqjXvNeGgz4DERDwNgnmqWS0mi9pa6gkJDe2cIkD//t3GwuVTyCLUOcO/iaemWBtuPCc8N3lgtLFfOGgMiQDLHvwC5XwlPba8jkHPMK8s6X27FQMVz0KlME8QlYLowxZaBsCRjKE7l9DfowVjqzp87DG/1kqVMRG15ut7tvcdXM49TIrzkSUlvJr0gLUbXEMwvAkChL7NWUxGgE2POInf9bWRErRO42FrNoMRzarkUp3ofx6Y15IkQT5i8GT+gwT/ojXgnD2NExYswoqzqYXD372rqtEEmTsT2ayAkDLg2Vvi2cvrOLzHz/coh9SEm+xdETGvgenyi/7DJMGouFrLAk/kS809UFXgnbsz/tuDmyHvaoO+w1QQtWnD09G3kz1vcxm+Ht9oUsgMO96ATmAtd3K5LcNyam9Q2Z6WYuWn5kVTm47aBN7xSIVnhqyK7g8p9kj/SLTzknuqR1iaT+DV9hlEc4axBYTclcupjMgdyxzdJwOudTvTIYEsd0Isbfxo9HKtj/x7qVrZ3IhY8m+flamcPNkWdAoXbTP0/y+UYUhR8x1DOFWga4upsk604ffiv+9XswGA85pIMWAWlp06yQze71R1bKu5qVF0llIlrsY6ZaGfu0Ud82ZflXKiztPGt1mN/2LMYv9j1DDiM9jNkBDgI5RW5aehk9xnodznp+z7HvkHW+x+2QsjP/vgu8FKItFSw8xg8lTLj2JxkdzSYSgmYBKK4LTnXvFBzAAfke98qId7Sb9xG8URNEcwSCUOA+6d5PcALUAmLgsN4SFC5XghbixMzhiRnocFDU7peA4b5G0gkl2AEe6l2HpmSbbqieOkrW1OwewgdnrPMeZ9fUCykWYDHedrM1xCKYUY5CmbjQlNgSnEBFmMxme674YYSG4+kxWoJduqo9k3RJfkRzezn8UQgqxEAmLCTMpfw9DcWfODjffRUGPHidd5KA8wrA75KxTXrN1UgsruFNa4eCZKsYVXUJkucnBoTKscR0iLYcoDEUZZEQUNVLE06QDPjrghpVNOB2ZCPYnB8LoUCLF9PS8Wtn2clESt7/UimN13zOuNftH5HSJKSINoI7RrJaXGt3//EsWWaEWrZ8caEwKWKcmRXQGG3bWVVzL4s9qrUq6DenS/fxLaqZTtSRiWf6OV5ayn9zAnws6V2tK56ai+6peCLT+V+Xwng4LFZ9RkNDaJ1eaWC61n0sojFK399Rynf+K2WG0wh5mTbrhAAU7jC8fIIXY4U0rAkOQuLmuO1+j8EGBSWj4PB54tM9vVp3vzfLfFJdIwS5qZVLg+j40hwIso+DEmCuUImjMS1gF+pS10GmJSMgYDQ8Zi8ccl01IsKPicEzD4EXJAFJfmoXHIgbc3zEH9zzznRogPpHTflVBLk+X5LXYV9cGJGHXTROAEUeYvTrjrqE/hLUF8QQX5xpBUjFtITL4alrCHY8VumBOItCDpmteUh2Bfu6l3avMwQb/KVqWxW9XhCu45CuJEnRNXbr37cx6TMEtem+HTw+GsErafFhj/ogfnpNgeamPLBKQ+G33LdANSTJlBw595uBRo1Dd3+WJrdrRGuX8H9X3xRHPPiO15WCitv3ULHCvpZZb9YPHpG4JdO4J+m7GkQBk+rvsKjp/KzPjOhyuy6EPhg5obEZGjElZaYasemIsRTAwMnnvoVHXoVQNexzzUe+Z09yIC3WMo3KkvrlPKDb7V9xMD3/A1+gDSFVC9zF8r4qwWGbrPlgq0arq+af/RPhppofzwzKfzPCSMLYpH9mGxuPK1YtoRTAdMu9mf3ePNtAWJtf4hdj9EygzSIPRHW+OJAE35ihnhujKTnevJu2vcXJm4FVNEe6DJshKWPALeaNbiE2xszwN2Wrk4o749xiWta1URHVJOuEuDHraUY31pWCEhj0winteRXgJYXYQri4lBf+CNwuPfUzUMas9fvEnABk9C21M2WBvZAWQO6ENyqXVUMzgqXGOGezGGuogpj6PB0uyql4Z0g3VEEpl3NFndiU7dBZXLxKwhXY6R1wkVUkoE9MQyMbxyqJmgu8Wi5Kycd7oJa6+mnEVq7C2w20zwVEUpMDfpF1GFHDe3CBHhoyxL0SN7LFWhpHlEkmkholFZTJnTK2nIQcX001J4lGzS/FYDzzN2KgdH6izaS4F7bEJWneZ934MIXHNdOJnC199J+t24I3DJo2HHrh6j5c96DnfdRM4cpuaUPDADcJLgZWr+iXSCiUMx6q5lBW8PIMFJskeSr84KpuZPUJWgzwn1eIV63DQk6QRAgrTJbY/OSd6hRgOPBR6TUjBJ75nMuQ5UBIoU+WGrb3e4/fzyOGEeavWwCKJuOwIQ9o1Coy6dTe4vLnVHx0T+aROm9Vi8inRhLnRtDJeCIP7UAlnhz6o/JtWEqh6lMs/Y47Blb41KfLH7hnVbD5/AmWA+V2H8tDwA1bwP6PT1ms3AnPKkT5wWDQFjXJ7ADEEoLYNteum8nsxSLvYurkr1bKoZt14V2ltrIuakVP55nMhUeXjjf+KIHiyJUezM8HyL4NjPmfaSg7nY6O2u54bGrZuE8z20iE7DJD30RzN79EzdbTsWSmLN30pY3pwqq9dZRAcZQKAPNZgxEf+mCEm2lloU+T9WsiRjbKYqal4DCNufEj8ShrkLlc1J+JfWVIvdtf8n8UbFildZTEaeaTWwHm8KVPQHV8iPE8ltNhf1q4+V6mubBXL3DWhCIZqUl48/F/1+YaeEipeMYdgnawWiLKbdLXVdMi86zfuikT4bdzerbob3dl5Drq9NqLPWE8f+v3f1ViFue5DQnBoFzaNliUpA86yzEXzoUi5yhxYfiolTgncy+Yw1l6au6/68shWzu7TTYmsfXT0I/wNtEbd0TTV2FSKdCSQKeCYEkXPuA347fEZQmzn4psMBRbsJmmrPp8c+Z7lm5l2GOjPc5lvCn2eWIngdYqMTqSm3tAYsjKXcYL+EbnlV/kPd+BU8CmX+AbTwJzShqWUAgLBO9UjHyF51yQ3PAeRhhUFrBS2tp6jPzjony6YL6ZaY2uWIdLuMQ+e9FV9TQBffzSqwlWhpTxTA7RuIbkRAtLSJS2iG6sDOGRKYtZCbh5qhtkQcVNW7U/MuWttB0QlwyjePUzDb+O2X84TsNeJ98Ufz7+tet3tnwb1WQIn6UYeVGj8q/tKw+BYBLR8uUHnLPZ2n8dQeN7XwSVF4PgcOD0a760sMviwgGA2Kpotl/TWppcRKat87SlA04jI+SZeNh7w0MabUDPUQ3KXfHdq4PTpERx76MOT2mbrw1ghoaKDthRq7R4hUpMJvdV4VkPFyqsmA6kB3BL9XUJouaXi+yY620fr/8/gRvayoj9BDST/zus0Q8/BjvWIwf1Ct2FPt/Nw0zqtom3w6K/vcNct5GIDRO/ImYMRE3xL/QV422/Kl+rJtUflsdOTilLR4rr9BA7idAZfNJXcrCIkke8/6nfu1RvQFXWJhVmeKrMm2F+p/OtyQz0+KddfDxRbbg4ODW2v07CWl567MYfVJUzmIIgfs5SdcSZTmVqjScQzriAy15etBF2NwURfDM2LSfDaVIuq31s0HNtB7H348dJ0cufLKIkLsbetcfDktiZtninUvprcyJCXMNhdDH3dVMCMWcA3fJjaAuYDMKprG39sv8OY3bbTa3Vh5+MdWzr+Xf9ESNkDKcz2VBAMg9B6Iy/QgfCmQcpwgOxjkVxSBgBOO4/vQY2y+iWoR4Pwu4ekzt+noeqtOQDibhQ/4edl4QkqGcQ3r/GLNZn5I1NoIVEucrhYnFpt0Is8tEXCoLeQW17/ZwGDnWsTI0ZRFVvepiclx9H8xS0E7wV+QvyvH9H299CFOYVcAmkiJnaQI87I/paMQLHt5/+ATpeXr4RkjhmbG1XfNumDKP2im6emoo2i61EbTQefiH9ziWJQykT6XxuCuC2qwkSRq8nTJwvR777mKscttyNCCLrHXs+M0UIXVcwvOEoo+q8kVTN49mqnQUlTOfpW/Wb9uGrgee6A80KWhkl7nwn2CaJwkHllFembHtsC8CZITfPT8U2mGedhLqT2Eb34NuUxRMNfjOuLWwH2Eo7A+hUEPslp7NZvWupKEngfw9vn5IEkcPrw3JP9/nqDRDiiIIDvRBo0gPjFddvWDUQ/t+SnP7XO5Ebwxi4v45Oc4Q04LexvRj6qeikifvCmnAmlgJE=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxadab8116-bf37-9d82-677a-8246c302b881" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxadab8116-bf37-9d82-677a-8246c302b881"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>L5GGCeiTg6i5WlZno6dPdH6v1p0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>OAym2tSaZ8KtMi0q3AQJftYNPI0Dftrl4Ud6wlFyhbCiD72n8NpLgtVUIvwe5ZoMWaNcktthMY8nG46/mCXbB1Qw7OQNTD3xOjOxa2tkB0cR1mp5/5sdfxs8ERJD8q6RfBLeA7p9qD02WR6wGxlae/upSPnk2FE0xYl0aWdEcLI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>Wvm90RXWN3cPCuriplTUY4HQB8jystb77JByDXRkYCe1TOs5lQJ8sUd4C3N5yIlNUQj2KUSSE3NzNGeZ42Gjf8s2vtMXRMNU5YBuyWCbl24tHQqAzIjCX3mPjhgUpsY3SnsVmXGSI6EEI7ZKuHELAYhR60eBkdjuDOstgVn/o3g=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx24c00690-63d8-9399-7e34-2dd758724e06" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx24c00690-63d8-9399-7e34-2dd758724e06"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PUtI5pn6j5EP0EJ2bS86WapLIis=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>SK+Jhad/X1gOyuecn9QZFPddyp30Zz0lJmZ61/327cLWy5wC1SVKTmuk1rUw/NYetH2+k1PoLgQJl9djaTQ3+sGJFcjkepiV7JtlUCjFXZy7CLXt8wCBLOvhPUwXHPNcXQSM7RanzdBTwBeDVx3cU9pwwj4hAiXAj/eBD82eRIk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>wvFLss5K1BzXZpKUBTQ+lSOgspFuP2NYfN2/PiJksXaVOmzQ8XNTs7KrNvsp1X2RQFYeK1r70y+3yYOjenLxHs/kQt1cr/mFeKNK+2BrSNuG0le0SuCj4p9mN571Dy0GBmtw64ipBSZ+TJQ46Ns460MlJdmnfy7DHqITYnUBnqQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>