Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx1f9d48f5-2c27-ff83-d48b-24fda1fde98f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1f9d48f5-2c27-ff83-d48b-24fda1fde98f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xYuDhYBQKsbjJvHLssczlpTcM7E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>uNIkubBsH6A/4BbBNnUB3vYhQnTaKjqvegAZxwG2JYYvmDv30SmqmmKJem6R1a86gz8OSr08g7GMKFZESyhfK+rTr5x/nPvC4+FXPNkcjvQZP4jFXYYqYPbi3dzP3azIUgCUKaRRii/wwEncLdgCO9SYdNhWM3aW8C2/qjhDwIs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx66aaec45-6946-fc11-6af8-a5bb36388939" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx66aaec45-6946-fc11-6af8-a5bb36388939"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>LY0rfG10K2xPsNG5ONf7ryqD9uc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>toqa9SFAqxVZ2898lfi/TsnH1y3ZkupXrVbjn9RWzB1ZJlgGVGtNV7DGKE+w9u3GDc49lfS8cCxONHNumqbShigvpiU0dIWSrckvaNEyR/RtlOCn8l+stwrUcf3KBKlXpPWFgvvsykk6rjytaL2xu9kQyT0HLmRzqFOkq6XRzp4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd97154a1-f5af-a04a-7481-abab7fe94e64" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd97154a1-f5af-a04a-7481-abab7fe94e64"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>oij8Ul1KSlX2HMB52a6RC4h+6io=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>dhtF56h3pnTLTtm+N5IwmxAfQrQj9lcr6JHBOQTeyHSBKUzEseWyj7/nbe3bwZO9Pfjz2dScrMUXVP8cL7Gtz3F3diyuUcNdsJfxBl+7XGEVI9HwzdPm0tRRSJQTGSq7ZmU94aB1CYeIDVj8lPl76jLX6zQnYPNQv4Ya3N9V3QA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7d0c405e-f1ca-60a2-280d-ac2d5866165f" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7d0c405e-f1ca-60a2-280d-ac2d5866165f"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>wzq45YEw07Ab7iw6RywXZUspG4E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>j72XHNcuomIJXO2Zd8nE1IeqpokCcuiFA1FQySPY48m3Lbgsne6qMDRfoa3p30a0bfDWEKNdz4/wEaga/56YxBbDSxDwhNbgq84BGlDaH2jSCR+j6b4bz2Zhwq2zZFzHNwEL9n0LuZJLWmZ2AMGZQW3WGoOhj8N9LYy43WZNFI4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uEalUJz0KKtDY1OREI6L2HdBYb5THk29r7/0LXo7y1TgCOTdP5HE/RHj5t6WbRKtwJU9fUyD8YNgJ4aM+9q93slwcaemVBsDFOMeQ2J1oSwIIYxPLAEiNKA7tyMLRwL1KXU+7t/acwqm02qIAAKqi1WcdKje6jIZ25EE9jp+a3M=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jCSsisOLmSp12Yoam26TXubElRYaa+Z7aqm5mYt83be7EPJBcVOOgifS7Vgc8VcT9kShjIHuOKLDqCTKxEcdAARuc52X+21xeJ33omnWanY7mUBvlNdecCB6bSvVxX3QHuIS1HjR6WNf+jDV5eIj5HGI8QvrHn/6UukIaCF62uc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>h3XZIqjvpuA/+ynSoGx2sIQbuBslGMG0t/rADmXucZ9UWHrfTg80YW/jRzVYkWzYbzHR7oxtIQ7hJynxR3UUEhxDOX14rESsHQNGd/ruI1TkMJIAwbUlkCaUuw5inebypdWSwTAe5PQMHdzyEM9AqDKoXFawaT6g/zShjdu26yI1avjgXvma4Soa1Ede8WXvvNIjt9naVsQEpegklPCIqzLgxRAe6RSO27Xm6pnzjlkTtkE7KkJ4dkGsRvvgmiUucSlV87uyQl/Ju0rGnqgi4hz6xSGFH6k+Civ8UOcFx85Ooh0O/GtrmLuRp3iUpjE1A4ClIxvXGxVPvfoHnk54GlYq+tp0mtaSbVlu43ltTWCityUEDf+re3trGpqvcbqudmLQs7BH6vVAWAO/ROwNTCh8JYQqGKziRC6PLGRZJqzJkGap40B32P/rOvhXmNeY82QKRX+MzdA73KpwwQBMRM8Rc9lm+a2i6FbNLyRGfCUTYbf39TjRiFV4qyfBNDMr0bVEbMiB0zHvWBeUYeo32JfTAYyKADoVJi2SQlkVcqHnyUoVpvdVvK57VxY16w9mWo+pRbLoeuW9p3u/ND3Ur7Y6YytGroSGLrcNQwzFe4agEXbpUR+ldQEs29IePXqmWKqCN4Mrf8LfsIIb5CjN63fULOlPOcoCb4l/PC8lzAs1pRtQxeJFxmLu3QkdAmM3yp/q2mxZ+dlxPQXKR9NbECFdLxW94nF2rgtty68twH6UEx2K/AGHQWxqcORxXX+wqcfkAuPtRsdEvmJT4Qh0PLb5jejTk27aS1bH8n8MpQpDqCRHgm9VxzP6WgsKgrgqHHaCBTAQmhViPzOK3pLLUni29tZjrxvVShMj4K53nLFAekLOx5zVjyvkDwvnCSsuy/xkTTGn7XOR2TFToY5DvGHqVf3Q1L9zy/6+do2ijWGM49dmr2U7GIlgQ1IeaHsaGq0l5Z7DUQb+wVEmKkECVauvsG85g8+sy2viGW/XnuuXsvgnx34PnnrdvJPk2MfBeNIbz+LGA2jhNbVvrzWrorfGvhEFsCa1f0TgNrCmKSqAf9PxKF5Nwz8g3DvfZ2F42MEmbucxmoTSHMJ8j4CFuWjbfXDGmVVq1XKh6hrQ6mEaPs8ojnAdGjDl25u5Ziuw1vBbjMpiy8JFmSFZUSzLGV6oktAdQkYlboTx8JZfGQ+uqffPNIMwpu5ZrSD6Om3fLJOeDIqCryXN3jA02swi3k/bPnNNzxZgKFNnLIuokbOp3Jt4X2P6qBWeRBBdgb4NH2cqcmB+mUxjJYeo1PL+GFl5l+abFfTulMnIAIbWTg927R30D/ZvNfewhY1BXokTACOvF+pael059yORle1fxLBtk0Wk12V1yHWa1uh350rgs2gxWi4rS+mwrHLFZenXHCJFhdH2zzRBqXcP8la/zmYj8b5AuRJTr7Wvxiz3VhYs+9BtaWnwFHd6053DdTtGIgtkmkOaff3bJSa+9y2ZFxM6dn2bUiu2Ysl3LWxbL01IoB49AW4Va6kTzUhrzEQ+8nun1iVTBRzFnDIXS6N5i8mzdNjcs7j07gyTpL2CNC41x3Fwt6zpnxvC4SwQUqkHwU+67FmsHnTot/kyDIa3Aj8m12S/n8bUZfxYz30KBKgP74w5bM3EKtnaAjtnE+Cjh3NIofjG6o0K+7QndJEKSfgTmqoOhg54d3bejisdCAFqSacAYi5qJaTzUX6rfyCkjIY94aiVbzIeO9D3NgIXtjANAPh0p/Ie9WJxicL9XiNiq6cLfPhCOt7bhmPf3uKQQ9jJGe/YnGW7oipLUO89fg7cxmWu0Jmeukq1rhGRNjiCwUN2z2sebbgcYX8kG1vCyKQB7ugGKVnJLkEVD/X4DcXoU3Y8R7gvvP/yh0K5dA4Yu4yKgB7wn+jzDNQ8EetNagoEotTUG2cYdJ1SD8J4QMrzNcmvmgn84VIBHXCC8j0ddJcTWG4vSyvHcb8UIeiQFOGI09XgGmoXlt/vLu1sodsAVThQgprMB52SUAoOACoZ/tdcc6s6Shzpn/RbwWq3PT/dmNUpiR/LPfYB1sSRuL+F+HkbETch8RxQAwZaFFoZxVlpKemSm/rAShOxSUv4VQgDbVBMn9rv6l/Y8f2KLdqSHW91I2Eu06T7vkCY+N6tLmoZdVgiLbgj3N/IiuGE7yRjOMF9BTLMSeIn/1zzrZtuy53QHXDyAaRk5LGkpduRRag92lODJdfefXVTdwPB3I5EtG9vmSSo+BHd4NBlnYzaoMmCsHNINvYzz/NMUVjET4dECiUmIxmiTRL5+YqSb8IfxwvWj3hP9hZL/y/NV6ZFMlcT/KYapN9uz2BVDYQExIDL07RjKt4xACp70Fl7wcmD+cEtQ/KQ6/Eiqhz7yqBkNbb4XqTEv9rpWDSyxtRrdi98iYvLOns7zWsZ/FqwmBfxbEB1WNcM09KJFQm9L3lB835O0LUhkg9u+k8lZFtlIB/6bsxBse0wZ0rZgDOfXYK9wjUm8188K7L/tudC9KDVE+os2tR/qyk1ryN2KvNj/VmrHbT9sn/oGILtrkcN1BcK6wKNbZTZHcSVDNKOHdqwdSzodkSLyHcIEFf8HUMQRQU9KXOth2Z6btPhGU/Puw0mXUY+TMgvMydi9hGg2dQoJoA9BgPsSMEAQ8tqmV6X8sfJLmNAGX5dnsDxl5koIld5pwiWONRnLkryc+zVRnCtLY/OtLEE7nh2kbINFB7zccCn2uOvCcOcfrnXMLTc0/yJeysu7oygpfdwVNXy10rZUjHJ018IeSFKmSt3hC1ify+k7iwL03ViUE5Gkuh+7oIInSDu1fGQOLe+Z8h0C78jNM14Y+iZ6ixliug6P4kDDu+AQTjd+AY+JHM7o231jxgqBzQuXG1GJhh3+lV2fVRgMcV3x/AGymcvzluS+UONZT8hELVUSlSBGoxhEufrZP/Kc/Sy7s5yE+ynNkvFCARQKRljTQpV9mM7eOL11dZjborXbW/JyI1NZ8tMyG1ckUBAU4YHNib3u/8eF8ksLYXUjiaA/5jiHzDixihUMGWuUCJUwjro0JHi+GAt6XrE2TMJtoY865ywnHkhdF9RA09/mIakOA6US7E1Jry4Ei8ErJBcHR+5kKZOTLc03DpbL/x2OyDCJcxMx1bbB3AM3ypKqwveIhv7qDcffKZxoXJMdkebNlAkniKvU3j/1odhJhmDJ9nvD507rxabI7wMXaaWCoW0R+8Q5UGdtdgFeAGNXh4WliLpTRp++7XCEMv3mpZqEUduROyuQuCKl1jjCYCaixf0r2xrYUt+hpjFM7P8WRGcj8WJSG4wSFTTSUdKk835Ao2aRmUCe5qerAuXEhs+wIkJ6FlE2NATnLP8qiPTno9myLGtXtWaeIGvWqqc7Mv7n8j196H0mvBmvcd6/TZNl8gMHnMkQZMh9KL8Biia9vzIK/AzXDz5IRn6rPA5yIOlZz/NDGDpZKQcitYgzGNeuMqhcmHDAwDFcwqg2PyiIDR1Hl7R2Oi3yAOLPICJ66FDF6Aelq0coAIYa/WZr0jHc7aeyNEZCGL4zGdm3A0HGvKkfRfmOPRTM2oEAlXBXUCvY6vZMxIqigJTnxOMmL+EVwgKGWAvLtiUYYjcuHNMYZAHAeLlEfG5FYo3MKcwlBnO+B506mYREBttONt0yL7aBFIvus4VECzEe1EuxkfMzndy6AiXlYri+nZhAHmx2A2b4A/SLwK84TucDtjly7GKkCl32YCqoGsfD9xB7bewpgqiFm5uAoeq1jYfZy443n4wWkX2FjlS/2bl0+2nbra1/hV+K+UdP6wj9Y49sp927cEbuS8BA3V0mSw50YouJRkJfxDk4BeibK2coewmg8TNSkPj81vL253f/HoHllQQcx0KLlL3hbfDgCN0aKov5tH4e03pJeIJjAVlqCoEX+Z1wabG+oNzaTE8pj8/gj1BzvwghYuInJDu3mFdKHuoNQ6KZ1bTcRfzP5Zt1v0y6mBxMqkFQj6C4ENoESms54XfiCX0dK3sbeThmIEfwyGNP8au6FU+QyB+mCpQ+zHG6SqZjoFIuDQ/XoZlCcr8n4MYiVaMhZHKZ35mTh/otZfV0Nrx2fWdjZD7mlQZzA59GI2oE7vkYhkdEWUO8Ik8JGJBmnMGV8NwR8+MUU/uXe/r4PYroTv3K6A5gbOO+KED67a3Rddtm4yT4Kjp3BNrWbMtFBc1NHeE1qme3QSj6+gabA9zVNZKpH8qOCTcdxTLOZANTrwk0AD+5qUD/3P8KypbC12pfC0qz9+8DLC5bY0D/Hr3IRmpyJs3mkaReCkhEzuCohCQuKV8mPQPOdMA1mrUCpBDxgxHvxRuXx4q3m4Z+zpaLLhKdmEt9JIp4jKwBquhgZcP8G94qrN1K0F84mRs3g6eYFq57ZL+5I0/YepbTHGgplsB00/kuEgN3BCd3uvp2En/bazvakS/inXiz7B11DaDs2NMfd6gXviw9Msm79/DalC9B3eVsw+y9VIeeaKogJdkGq4l2LPxrGeHilKDQuwPL+RAJrxkP03JcOz/gRMzlzieazk2CWNXWsPu6MEgwYjsrvkbQ8AM2kkCFKaC8uSxpfevreStF5efejLkceQbmkWMtvSWOWO3dx6Smq3PWY6PsU7zi0kifAqB5CM8e7NoEgUZvNz+QRlhxAUXmYN1gHtp4kj88pD84PbkitVwp8Rh5vMApV2UiKk13BYt77EqaFW66lDLf4FWr1gzKiDd6k8BkSUv3aw4MBwPLbIj29e5uw6yXcerZ+5Sxd/OYxxTg1tIv34TD2O2lxbGqFLHQxSH2KSPQKW9uS3V+YZfNu8tZcgHV2BFQnblT3VRwb6X0O2TdPgckq1sTzA4wf4KwMzNtSbUbC89bbFkQFz7PWVnYSD1eL4qq0letP5mAjQco4SlVBzzbp13msODlYrMIBCBa4S0U7VBK2XdX1Wz8bnNbn+TL57vbrzzIlfcMHRPFcMC1A9v+faFp7CIealldK+iiDBS02oD5DtoKm9YELi1t/e8y37x+nSe+WlW+5+IKmo/JuMuOAI38CmMSKhPrvGYUSrLry4JmPLzz3VtjiWkRivVYAa7zk+t2XE36sD55qMu0AK56aNHHKi+fNw8Ac/9Gcx9kG5BC0u3wafkTQTWulNyKCfIkgbBDjU973v2bYee2N/3Riqt6fn4zTGvqS31/4W93PvVP1dAxQRlLqRzyX3bBW1t5183lPOZrc0P562Vk8cKlkLqEuaM9/7JR7upAPpj5nJDrN8QOFH6i1DqI1BS7XhCpK5noUxnySsmUVgWPr/ylt1Wio+M7gj6I1jSAPDWTnrOO0Ul8wPFc7MxIeS97pbntZhm/4ohhh9Y6IDrJ6YpOGLQC6rLgcVmHP8MXLPsLzKG224MSYbMN8MBWmGom3bhM8e6uOVAco2dp9OFfo9pmwQAqp6eeY522h/q/+YoTxQF9WYTu/JLydiChV82J0Obrtppc9w=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx7abcd9e7-a6d5-03d3-634a-71b7abc52d09" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx7abcd9e7-a6d5-03d3-634a-71b7abc52d09"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>WEgHIuqCrEDFH6vjCPIjq6PY264=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YEF3hNfU3b/RpQczs6Q75nm29hQuSHFlchJzf1K6SDr+yf6ukhJffy//3KJRXFk9guMAn8msF130YqYh8bX7JZzjPTEi9nyoWiM6ZK6VXEUVsIsu6bwRC2ZQtmK9y0+b3APT62SYLepkM1+kZR84gqrWjKbPPDVhtRuM7S9XLmY=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uEalUJz0KKtDY1OREI6L2HdBYb5THk29r7/0LXo7y1TgCOTdP5HE/RHj5t6WbRKtwJU9fUyD8YNgJ4aM+9q93slwcaemVBsDFOMeQ2J1oSwIIYxPLAEiNKA7tyMLRwL1KXU+7t/acwqm02qIAAKqi1WcdKje6jIZ25EE9jp+a3M=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd3fac8ac-0f2d-be13-d960-2d9f3f50040a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd3fac8ac-0f2d-be13-d960-2d9f3f50040a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1HIZlBBCYQ2QbGZRxS1CPT6oMyc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qKBcYt69n/+VCiahzKKzPzPxBV6bPmhrYXkWPPDDGiA/mnJwPZz7W5sKn8Xgnh/e8NTBXmFN2CW+7oniwI3MWtnKazh+UlYC4/RvZvWtiOgrmZAxPrbNQL3o7+c0862Dg7XMJtK0HR/FIPO/soHCruP1CcFMx0I67Wc/SSc/kuc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>jCSsisOLmSp12Yoam26TXubElRYaa+Z7aqm5mYt83be7EPJBcVOOgifS7Vgc8VcT9kShjIHuOKLDqCTKxEcdAARuc52X+21xeJ33omnWanY7mUBvlNdecCB6bSvVxX3QHuIS1HjR6WNf+jDV5eIj5HGI8QvrHn/6UukIaCF62uc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>