Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx9e95440f-af9e-587f-b447-ab94cd345f55" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9e95440f-af9e-587f-b447-ab94cd345f55"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>oyP8nfc47fPsCQnmSxd/t4P3+EU=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>HM7y+nz2mJ5ePtj4uEIyXAQ7G1ix67iylOZIhNKYWpO8OCAEFxPjmpTxjEFFBLlgZDAAJp61qtKJUHyDY21fW/tQQOpACr2xDz5sBiUzASHcnqUVwh2fzcaCXTtosyjeSmjFIqiXa/NM/xORuwglLKilSrzRWsNE4QW7g7AmiVQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx915920b8-16ab-247c-d92d-28a5db5b84db" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx915920b8-16ab-247c-d92d-28a5db5b84db"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0H8gLimVxosh60dJXxAIv1W4hmE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ZBK/gZclbEK6Al7Az0MKKhFZF3frv1ncLasfvpMNaE/o/JuU19IwN5U+601fXyBGybKt70P/6cxClfwt65dRCG8n5inLfJb2mmyGKtsB1kNWTiKFN6JyiPKrVtorPjgZuh1n6QGheIx8PtsZihOgqoQEjMOsxURfWIcz71I5qlQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8e6be846-f2ca-ee06-7f93-3a25b0327742" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8e6be846-f2ca-ee06-7f93-3a25b0327742"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>xhz6EyAAdhXRO3l0kBapffg96f4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lMeMul9BbIEkn6T+G8fHUyE2HDWoqRwCrcuIIfArtq9zMf7KKssa/2bnDXDxaOsAo8ZjIfj9K66qubnNC7Kc6JyfqxmTpi6Z26BwOGSrMr4OUcRRwPUzUKucFB3kokD3uov2kxY98hPYb69I2ygTT/YT+gPbwO8E3ceNF5mhImg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx92bb81db-fce3-f84a-6093-a288c2bfee43" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx92bb81db-fce3-f84a-6093-a288c2bfee43"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lHE8U6Q4ClvSuIYPAaRebKnWp/E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>z/bOialuicvsZn+AqIsW7PH6dOBOtTVMX+hKeSDvIpSlo8G8kTR7FI8phBooXwb6IVzsyW6rfdUsKuB3KGPszWeL/t3eZvnnioEMuYhG/Ura8gs57Iw/l9WwnlyJFCNUB3T96AIEV4ac93lkj+zEwIxIVq+SPo1/HOMN0V+muxE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ONJJZLS/MHlDm0OON+msIALEBqeStHiS0jVtvrbtYs1tponFGlt2wzl+BErxCT6pvR9ablOXZmhzj0u5rOsF4zjbyR6W8yWGFgcNE4OSxxBHzZPjyqS44tn4/cZXjkyrbYzo7WR11d3w6cBkbxEAz0IKG8mptp3jKA28cuIGTs4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>DODSoGs/VjYN1nYft+tyC3wtNnHC1wrosKoKb1+Lb2ayY7SW7N+tgUQxpFv+2kewhfVOPJXkPtrxSk4DYxbksL4XDnhucb5NEOrdAspi9ZTQRozCAO2DIDvre6T57jmvFwD6cSi92tcHL4smOgz6xYXQWC1D26IbOg4UG5KUC0QBGMsEMtO9WQxZcjiU/K3K3HEe/bqxIvldFNcgaoEd6L18Ka1jcCagnrazKsfmEUDc7zX2hcLWE3eT0sgo/PIV7jH78yZSF0Ibn8m1yfH7dzTlPDrQSINbyiWtjAqIABODSaR+ulOx/7oAfqj01YQZjXCDezxasSOa836VSSF1kpe7e3o3zSZz8loq2Fr5oF/B2Logf5xVcKrtFIof3pBRa5BWl85FOMX4TgF+PWhVB0lcqqoFFQ1udG0eclkYHEVI8fgXMXGyvEbFJH/1UozXWm5oYsRqxe2i93W7gCJM9/byvo12gYcIgMTFp6G5/RD5gB6bLi7Lg+pV1Q9TqqeCUAkGZkdb64KByxwHI8m+v3JxTRgBsQbrIPTaDdPziYMwRrGDwwICM/XWneVuEf+AkIsmu43T5XKuJySt4OgNvCln+LLgiMucmryWdyPoFdNjAv5+ZMRqGpzNwGVMnHd5CVb8vTdLXRYBHdSpowWhi2GU2VdL3exBV5acXm7uWvrFPKRUQU34BSkf83IjAzs5C1xqIdfmqELqxHdLpDd39S2jEyfdF7oNd6C8NJvhmQVYn6NutjGkpsW27BmE0GO+BfaID3/1I1PLLxMDy/L6X3jKfVXSiKm3oVLFLoHJx2Z8y8DygKbV3T4Eyl9JwT63UyLiSVStcs3CqSGaMYawmsQBFucfoZxdZH4MdLC2alemmTJQ2vud3g2AGub1fRGwFOGPM8G+8/hffX6bVmxG1K2WbutEm4hIu4FoNPV7kQVC8ywd11d5PXJ1/3AVfZwQxC1ulWQQdvHHczDLhNbSy2y5tjBm7iPyYCfYLq0TPRrwBr9EpN/+6mgWZjEZNIP/jdBTq+dHxbYqL+Z/WTi/HAwGZPjDopSyBZQxUzP3tqrjsZWSSlKkbVfzLYFCnerY2/Mi4wugmjk+fBQ0npgysCjhSDakTkoLFGxe+ZONdi40XjeMGrUWjtYIdBwLW28cAk1flulsLufdTxeSWypni6IoN5f/0DIz46tAf4aNg81jGzjZY4HwCffsD7Vk9xpXjrf7yc9xMnd9LyY51qg2r9XDV7i1ybt1vYgsLetiKJ/1YKVEqHnOr9dsp/MTQf/nmqIDI0p9W5iCtJqFAa1BfSF2PJPbwGTwKDwKjFeALMjwr0CNvN0Me/d0W1CicLfJ8OD7cM11JYzTXnLxqDYkJIohLYTYf5OwmzNHQB7RFaMUwf6Y5aqKIUqoiIDWTEhIk01RyGQfVfKKliS7TN5513C+aNGpZOMznm8gzMEgPghEk3NlGVJOEJCJjoaUR9j71pfpmWDhxBSteJTd1sNqt16xKrzGvNdUncMihENUUYlbxq+nxBqQO4elfEjPmqrepoyfulJA3JrS2CZx2xDiefqlQgkOTFWZl6q8jqd8J6rRjb4k6dqJjgylxTdDzJ4SanqUX9420HolmDdq04UPn/5uXnxLhckCPbP5GPR/sSUqOGqfWSYRnoKTx8hJ1jzQqISKAbPhMT72RakWKXFxw/fTRxDxIqsTSNKTqydF48/u+srHNqWOnTXSxf4aBmmrx5o9erF+tqxIowZONrAw5EPxYgw5vKxdKN+bzfz56q9zJpmoocemR4YQwc8FUdCOtoIFoc3KGGqstA6d9OuRcC+a8YwBhyX22FfueTTHQMhF52a9wQ0cSAK7rHXCmVobKOVs71Kn1QOFm9sqZqtkO27VlLFUN2qXHdBGWWNBlLA1SyLOpp5b7l1hplRZ9bVfMI7EthuuHCRvZL7uEgxfp+3XFxJzpHk791jbzQN0UtVmFu1TzGq7CkhHDTuQAtBEzz93wzsWvM1aFqBEPCbtnBU7pzJBo/lC7zzj2y9mbrtaC5tDREVXXxOa7bZyDOzRnGyRVdNSdlHEHUWweS+lIvq8mmvN8mWBv36GwWkTuuM6GgZsL1/PqZaBOuMebOBjX+J50ALfqeuX1q5EJPRQ0MgjgabgKx0xWJOKwx+zfxq6krdIpRrHpKJOHmvh07iSJg8dk3Y0IcHMNVViHAkVEPIua0ck51HdtNUHsjhrgByxUAaHGL1uOhxCtmAqwJKeEdDaps497RPrrlN5Bniu/WPvW+4NO6HnCTVYVFnKj1B+mLJKm2/bJusS/h4a7DYMOwnRVkFHdcxjmfW3fWmJJQ9/9K87fgo/HZuCjJXHlvzXmb+E/WVkeV8LqSkgnV3mTrWo2a8Jps1365+t8LiY40w7mXOsb3boGNzr1Smhmq6xrLHt5VbFaiSRag10eWH3sZyZfXtZBCXjnhEPN8OvaENiheTgwhKTXlfOapKO7vT8Ao0kFxvY2//XcucbMhsjHjk0fomew539F/TJAXF9xHpG3wWlhxEi3q3RBQRC2nQ2BjT96wqlseGRe+uFuZi2xmBurYPKBBBR0k0qOpYuyzKtbQ4rsIvRNSIPJIFtCT1Uu14VaeTeUayqrg5UfYPWGjt2hYwsAV2RYLIXkrBVqkmNDom8lkEJ6edm7hykTHO+91P3uKb6JX7B058x3dYZouYZ37LwlpjBrVe+pyoxQdOoniBkSsVKcNi0VywTldWGlDAU6IWm9kDVKj7vyMY+1DPKAPA+zRqs/r1DkvqubwOar0bd1opBM5Y6EacPIouIXVVzWCoX5m3CxCN7DHfj6SPA+8hPlawOx+uzAZ6JUr7MB3FGty8i7nblV828bH4RsZk17eYAYTY6YuigrBphzVLHtNsr3dU6+/axE2dlTzQetS1htifM+iW9tK+435c=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>BqB/X3v3ZuElboLRIit6A9AWrkN/SLS70wBtc+vT/p6u891ZWJLmRbLEuFqThecq8x6V6MrNhSUEUR/NF9S6LFEmjWvkbHFvzbwScQ/8GPYAL8I84/EJQtkaohg5NTtyGh1hT04ag0wl6EwXm058ajxmlzin2dEtXpjJ27n3cLQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8a403927-0f72-a582-d43a-abef248dcec9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8a403927-0f72-a582-d43a-abef248dcec9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>hfmnO2OdxQtZozAyzYp7UJNjS3M=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>a4AP/d30ytlWzd3JjVkJ8QA0Vb3pN4CptYdjNixpDQunAsNH3wPGemZPz5y+TNbvRJXvFCVSaMwya6RVAMW6HoUTke6NJgZ58h/dWHZ6ylNbc1VXgjWaZ/LQyGJ2vqSI/NBQehkaM8YU1GoUnliex3pwEVbNrGa1Ugjnq/dAazQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ONJJZLS/MHlDm0OON+msIALEBqeStHiS0jVtvrbtYs1tponFGlt2wzl+BErxCT6pvR9ablOXZmhzj0u5rOsF4zjbyR6W8yWGFgcNE4OSxxBHzZPjyqS44tn4/cZXjkyrbYzo7WR11d3w6cBkbxEAz0IKG8mptp3jKA28cuIGTs4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxb3ab0bef-7ef3-2c66-3458-b8de451eeecb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxb3ab0bef-7ef3-2c66-3458-b8de451eeecb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>U6fneLXSKX3yEYenQCIsvWAvTHo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lK4TrZ/Q/kOUXoborzhQZXYp3CAz4g56EFxPJ9/NhXEW3gVYtIrL35DICrn6SOSPTqlANvHjVKOA7GjJwJYCdZeymcJp7LGPS+TGssVlm46wC+yJQ+JhVjnQSRifoYPEKdHrjIYaMybfoZGn4VLtHbxXiIYcMwABjBgkOBjlzUs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>BqB/X3v3ZuElboLRIit6A9AWrkN/SLS70wBtc+vT/p6u891ZWJLmRbLEuFqThecq8x6V6MrNhSUEUR/NF9S6LFEmjWvkbHFvzbwScQ/8GPYAL8I84/EJQtkaohg5NTtyGh1hT04ag0wl6EwXm058ajxmlzin2dEtXpjJ27n3cLQ=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>ykjxvgyAJ7A6GIgMEa/wfM2dnLbtzGLTRZ0kwAL6j3pP5TFUVWaiIPRHLp3xjvIiVYIY3hXZNkKfzwlVMmeu5ofbFRufsktoOdBJdfoWjHccsHQ0g/QBjOCPfZnHfHJROvde3kEp0XQWV5S2zPzTILUnCEQklODyezcNLYiCDT6YnI/xWtfozrvltLo8e+90lfw40v7sdZWUQq8XlDcthmFakQO9YXNnlWvEH08yRcgUPiPMr2LgL3fuKy/QECH5pFO5EeIVZQvtUHF89o6y0q+LLWHEg87+LIp8cFe7vBzOz14lokIVbd0JsD9/Aj7uiolieq2WYHsF53N0c6WYFJsRFiHM3fx1evID58QMw4ZTXXuTN5Nn1/vYjHhIZ7ef7SCMVEJf/twhcVH7HVVd+zwfmgUOI951jLFAUqgrT/538Fd5xF64R72hxuPifb7bbHgJBztoED/7h7tJyCoNFci5erS/mZXZKIm+9pToYUQcxjH4Bz5FTgBJ4yzL1ITTvoqwXgO/0PO1y1QASCYq3Zj/W8p/MZQsq+yYT8GDPs9JiZIzH0+7frsrZBZ01leldWE3AC7PwVPklJX3QY4g/LZTRK2y01hJLJoYW0SN5qkFHcYrzr6bMhrYhOSbxfOX/Yew4AHCWzn2DuZIKFo30WwE+4/BfAM57vYKBDMu88rkqiBZRvuvZUC/tEx3RMVXrpp9msqr3bHDwyOhKGAlDyphYT+TDWLdEZNt80/sG/s1u4gaF22maGYYUhcAXgWJS1nek3OHR7ttaF9cLI8JH0X0PWLx2l7kxtUEEjII0ewFh4YvF77Ykr8FIDBzub4b6xdztIeZVVht3p88ck7oJcv7BqvvZphpjQ24qhtmGwEdAL4Q6Xk8JsTNMkGbMv5g7//3zoPJemJVSS0V777X6D0H51C4atOIPm+8CLHDrtsYz6rSMa9Begqu0wqz4C1Pw6bpDNs4iMUfj7uPFF26Xb6ea01v1P19AvAh2auQT33SKg9DUBSVC5uXuGt7xXqYeUdeaQXsh/sYndJQ9H0uOuC3QByQVE7JzvLJPrY+nlb7tqIWcLO9nPc0OX8Yn7eMRdGTid0zz88+VTn4PvjlPcSZA89o9qT1j66FWRWO6WZCFpyiozeF5S4Ryh8RLFWgepli8dc+W//EEXYHXucC+GG+9UuN1+xwjM151mmFNut3hewMg4rlIOQsQm5UOachYpGwGDZ3U3fkyc40hfZDmUMl8ktv27QySqNlk49Wsh/ibyM90IqM+KARIHhpcCk8A/7h2deUfp4CuhdAcQ2dSyo1o28/iShQbc5+ql7PfFLyFC5yEdlrVTuuRxhR6OlUuvFlbNvNakrTpwGVePoQnPE6u/8pFLPwjx6gzIwwySdMAW3TuvJcGWbTvlNBBcypPHJJ5BVI0TD33UNXE7w2l/79wtivpCJ5IiihpeI3hTqNunM/lpE2BZguqZY96/SLMV+kCGHCXlXnfgERSWV80zM4kYtIm8Ju83MBtMyLTJdfehafQa7WUbAF/KtIBIrgmdQ2Jp28b1nZ5rxuzIytpsqCOdiAe9HkwyUjKKzNrvT9a7SYXHVr6ACQrZ552fncwhMisRlm0g27p0MpocIGvQS0lbYhQdxdSHajFk7yzHjIokuX/VHlOrQdnD0rx6qMxx+peW0PLaYZp4QvYqQrTb3pKUPSjDe23ID+mnRW6HvJzO193GKD+FGLg9UkyuzPHHSuq5FtoyNEGm2V9sWBYfIb6M2P7GOuoGv0xG8k4IULPXy2P3J9DjrdbTnFZqItrzdvBmjaA8eD634dn0eB04dZHRVxxXnsLV2kp7wdlYlKkWk0HuHf6WTM/4PXZcuhDOw8OK/3cG03LxkJQkG4uuF9u2CBxnh+/ndlzL4fTHVXmkWXYxxoAbUMtpYkr4cCUZUyZTIyUCsECK6hQxGEBK3mLlReblzb3B8Z93r7WjD3DtaB3uyQwRgcVWWfiinQrG7eRVsyRcmaJrjocWIfTCamKEltRCsmw6O6pa51u08kjTJIJtrR1pewcowzduaCZ9e+GNAlZlyCFZ1kN47HEE2BZQjkpO+D8GYgZQfahGc8YCQ77q/Guce+TNArCeuRHZToHEvnzwWyNwsZL5LTNDc+FjgpXlAMqEe8nauYOhMrrbWYsHOvBpZE8DtjiPreW0SFpdjdBArJbJ4fFSCv7ZRJcxSDaTt5SPmzJZoFcMGfw9dsixm+cvnQRlXKemyqPuRiUyvUJFitXcncJcjrEknF4DzQWPYJRLaqEEgejKQKsmPbw8WLysleixf65M81GeGbLr4nlR5tFJ2dergKvNq372AwdEAvLaU/k95Rm56XO2asfDGcg1YgdFtyTaTwUgTe7Si/jmr2USEgRWfQ3a/qahVi6nIBW1lHJiXfwhWeRrOCdHvFsxcz2IywBFYGBHvdZL+/+whrkk7lmNA2ZLqFRx0uGOBipGBSgQbV8N2fMWbiYJR3gwRk4BAWOj2XRwy+RaWUDTkPVrCerS3joiK+LGcaANrKMcwAWXitZeodcFnpr5pF2f9xQ1Lf+/SDAsx70KZrFTmVB6Uh1tjYuy31x4Yq1A0Ju1ZGSE/N/zsC3fE+wZTnD/oJnAVfGno/ciX0Ynq9ZG5BuNBVrw/IyEo+7rfPl3kZjkkST2FfH3f+XdHjjyaVjZOrEWF+x477gC2wv7+LyZrfNhrRKl0rMq8duuOPHs65ucYSJsxo4W4aEMwN6IAOMuWT+hDqJp7Eur9SB0NcHxfTby0JcW6fvzuv5C92Kmy+S14/Osr44/zqidzdrRRzQbn93ZAGy8CSnJWOLljQtTZIbmOsHrzJqCq6Vcqyj/0J7aRZ4bQ7yzcfVzmwfQ2smoWTMxdKvTkvjjoqg4Ni5RoLmE+Sy6Trv37LpVczQuaqcXcQc8dfD/PVQsPzQE2sCCj5CNwOiWOJDvXWXePJlhldrFcirhSAnJr1deM6Tu+2jsiaGEz56V5xUI3cF8WTfRAk7D0X15504N6ugljWyZZaQ8mwAd1x/IAFC+vev3j7v1w0Ha/iyJg4nlDsav7qW7ox0jinNFIlKYHYfaZXs10wGnlg3cpCj2pF5wbWaBeq6TMSuf9y7SrK7TQ6TvcLQQaqmN6/EQxxUtUaKm4Qd+vuQOMDNPseHigKktmd1ckDh2KYmNOSW3pvQTLUF3SQFAsJCI8RdpsbzJaFf8ggpgB/nYAA0TSzMrTEHCHwHxOvH+JzWnixwjQ6ZaC3+eUHJ4iz8vFcl1a3wmImCeYupNASIwh2MiS2HJYdI8rS5ZNGN1I/pKyGge9QPJ60ZI8LJIYKePWhaJzQHT70dy8xn5oEdbADSpGtZDJUzV5td9sm0VqZiYN0F5XAmJkvp51ysyCG9cwbfoyDkz4Lx5llnS9cTpdY7mczsAH2BCW+Z9z4yokEAQeh5+yk0KqVuvyAj3icqIMbA10qp6q3S4pJx8bUz0vA41dQFOifwj5dDiNt6uFbdA2/MKUBhOhNokErXIqtQ1FE95zlLKxSN9uFlbvrv2Fo59vUav9HJ52xFnpmHkPhnjn59h66iNlMRDZQ0MFxNy0hJ6MPAMTVHIT6tmTNUIAhGd1HBTaLdmNgZFepfkPbqM2Y3ktDFTz9cQrBGj8RQ621ycb65HOoRPT0FQc/DsyopamrfXSVmWKp+G4VBIsVi2KyoVTTPDia947L/6V6w+fS6jnpAG7US/ynHYPFUrZqxOLOQPas0ffXG80koX23kOGKz2NS2d/CWtPUsI3+CpX873IWSixy2VMN5CbSpqXtrnkCjTyZJWY8Uz7stoHrmytjmdKlS9k3fGLahDBYZ74bnwCDbjJIa2j0QocnF/cB9t0mF4YOXXSaZvS9ryOPpi+D/ErkvnEXHg4TCNA6xxps+65o/Y9yz4ZNpZy2rUUpsCKSxUYReZeUrpxQi1lFwZUymfQiTYd6ANwEy8TgDTZQJB8uTyezUQaM7GvQ9t+UZxOrCupxdRkqOltHf+w9N0kiBaE37602iazBeNicQOkWh/EV3fuN2bI897b45flCkrnQTTWJSmi/863ypVtib1yUj1i8kqdckp0WaX14Z3daYlPy6b0PclJ83dWITm/uG7PYK/acaG3GT2C5AjX48IpUbNwI//t5RMpD+VthwsFrEYhz8+sBW7YYVT82L4CW2S14+UQe/wwhtdN/aNnS/gSmQ+/e5XBw9r+rUYv1i7tDZxQnj8BgS768UiREhJtXucaa9mDsWb8bCDHeU7l4F1jom172smwH7c3P0XOKK5XCkJHM1Fsd2pest0YCy2ZsGIXHMOU8USXCK9ZfRiuGmj/NqDgQTQZhSsye7q9m/4j+2cxcvEBJKV3hohRX/nibodw8e8Nri1/wOlQ0E0m7fNkEmnZiyHHqUbMhgp047GIJSCPbET2/s8+qVFZwi2H930VJmZr7JS2kZ6jWFHWvaBgjvc1GVRfa7qOLyj9MDbbbRhi5Ytaf4AL6gZloguQcVD4n7ytH4WhQXu6/EUnGXLaGivbjjCK+2DlrTdMHs50qn5sgLeEJDK34qHUYLxW6nK2JeIma08wtz/bR//+W+CjKO+BOzYQO3SbvdsbBcj/WUE+wSpLFmWJzwAmsZYlJSYaJuMU5XHnenfeS9iylXC0rK18FX7rW2md1EsNAAUREBgVtQUx3wZKihHY4hVH9zhrRjJF3tITDOEPNK0QsIx17X9BklQqcPPtTDfZhz/p57OHz3wXkHIoObEgQmFG4cn/kkhnrd5qlPO3OluJk66HKnT6boaCKt1t0+3SAzpNzkDJzLQndY52emOEnsIPMXbow9Qc8pov4TPYkeZCjSuA2GiyNh7BpDZMZDDEiwfY5kaBRqO04aSPrfKrJWCTZv6Hidrge0zycpJvWrKY4urrw1LTEtpaPCXl/qZeGFyYfonOHUzOHrpVolLtyRwqDRorsFepDrlyiGl+ecA6gAYS6wk2djgDLjD4J3Fg6TNRAmOWHmGx3awj4pw7rDNkPL/oEIHJB+Ia+B9k2O/txIkLvRyHI7YlGqxxEv+B+2wTO1ZnDtsB0K+/HwfNW0tM6WABjWrtxXzD77wVSxEDIq/UHA++5NM8UKC6zUBNmWlcNG5zzIcOpA3UXCf2kMjjb5ngGxVhyKuTSPs9NtVHi05UYXbqUh4ClumFmj/MnCjPcHvSoM/OTde6ZZvGDpr7jKEQbRZJ7umYwHhCBcy5qbrT3tUEwqAYthojfvQzFtuvzBTVlPsxDqjkjekib2yLhSRaPhMbyubrCyNu/VGqdj/EoHL1DFWZmtpLECA1MvfQ/r6JL0vcQx5JbNKXzTihpfNsbnxs52WS9S37nf7M3GKzzmw6yfbrHSJRP1Y8y9q2PC4fujfb0bt0Lh5itG/gkHRYQoxYnP9NjeTXilxilex6DlvgaVp/5e5zFIinO+loMN1/vz/RbJ1VYvXOQKRrXUzFwA/lqyaSFhQw2mBHg19ZlI/s=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>