Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxe21d2d9d-3424-9319-4a32-d62b75ff00a5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxe21d2d9d-3424-9319-4a32-d62b75ff00a5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>x1YLoFfAVTTPAF8Or9ZXeJT00QY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>v6rPHHuUN1EasEGJ4inpioX42YbstOLXAFZexmgtarQt8PlP0jYF096mpdQU/KY7h7UVAvmBVawq26Scou73rUDbtCIBSxJHgJVPTtQhf01udQFvDMSHQUZURyU5sVo0TCi4ObkTIDbxil6x6p+z9pN4b2MUy5D4tub74YC9g5o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd8c09298-4ed4-4403-cec4-97ac3b282529" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd8c09298-4ed4-4403-cec4-97ac3b282529"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3LrN4Uj41cLBOE1iFa4gKfE5150=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>E/dDIt3Ypcxq/r796DuX/MRwh8z1GUVohGAzNyZQtGyU86zNOjXB89b3yl+fWalrfSAU2UizQZKoGUbb5uzGr6L3jhyS1nEuiRU9LMXN7MS5PoBGDIlA9akwo2zAiN1sgXYGw0XFQJ1iBLAThbuIQL+X9oXvj0/eV3QCRN8q8ps=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9afdfa50-1ed4-fb18-7a51-43228b9ef70a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9afdfa50-1ed4-fb18-7a51-43228b9ef70a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>ymsgIDRuU3nrVAwIUrz8cHbvC2U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>0tsFrDWrdi6l0HNv+l5AYCWXwABpn13BBbjuV47tg2AZns1hypxWX6CktYLiGUiP1cmk4fhpVDYDi7RNDmFgXFqQuhXXLWU5uLGYvk6Thvz6k6dGOxPJVb0Z8ADMf30PGuOI6y3KJg9teOG55LP8NDZgNon9uxqN4Y0IJDocM0o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx42a2b5b0-c8d9-f919-3b74-e7def703a2c9" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx42a2b5b0-c8d9-f919-3b74-e7def703a2c9"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tPckVnfkPAmagmaIGxTXJAmAf7U=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YB0q5Xfmghhh4w8YKRZiuo+FKhYy0ZVZoJ00sgAQnyhNdDug4WowYKntaac0oxv+VPlf/T7Fv9UJrIo3KULZU1iR0lGvvXZbCkFszsRhu9DX1WZOH7WmAm01PYLSiMUlgM0SZJmDb4r8iBR8HxyrrrR5WEQoNCnmR5EW0XrnQi4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>z2ZluviOPfXxgxM3zu262kWFcCqYNaARXQkSNyrjvwVZ0w0XmReeTdJGuKpLEWhuLYb3g3ZLTsSrIzWYZb2PpP4TdaG8/MCnzY0coJs9BpI8DPxHrCCsoC8+uVzInL5pSt0dBdEEXFMLM/eJ1ic6i4n4lLAu3lk6b9PtVjiybBg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>yR+5GI1KeykvQAmfnXzfvMvNZk1p38XZic57U6YbQ6utKFHlaJ+ovjzRKA5pm3Z/Xm/PYCs7UKklH+POih6xbKuatRnrQ7R/Tm+g4dF4J/cPqWwxx3YgeneBXPtg9bSVRSJDaH4w047PtBtz0Y9HSW+KFrEQtO/6oyZlfQFq2dlkjpJCSwUgn6V/ngpYFA53bfEWBqQPNLtEG4Uy52E43lgFe4ZYeI5H4qUNkw6MONUTQtmQaF5X91pevZIAGGU45op0mMc4F6eLfNc62NPkQUw8Xv5eSDZey6V+zosqhgf4t9jRvTIv4IvTiRlORxyGzytuaev1uy2q9QYWrV3bToFykverocBMaQsy24xd9/RIDX66rD7h3ssIV3HLy/ZKuA+teJXhyKK0W4uwuvywvme4eddD27OX3YMcpb21Bd29BknZ1QftZ2IjEIJ/kjkOl10dS7PqY2yloKkcu+bZeEWe35FrHUR97f+kDC4l+wpyV4W/Wqy+/hPYVk6oKhdIiF8P79q8zg6UfJPQgz4nelk2q/qC+yKtAOowcDuy9A689Cue5hPfA7pxRf1bUBIF72Wowm0PiOg2RgMA7mBaajc6ska+tgULUiwcP1SvXfpZ4lJmOM4DSPInpF1s4ACekXajvmJbhhlWYIOBaArt7agtGbcHb0Rs3ysT1ef33WSpbTfQsgiAt8vrZ1MN7WZvpCIqV8pKDrs2NbQuMMD7LI9wdpTf5u3Ttbhpj4PAt1TCo66Ot6bY+0056rDG+F3TBvLuG6omFZXyvUTNrtKer6mVpcAtGtR8BfkvABYKusGcOG7ahW8Z7wCjhT/0+07lKQdm1hvEHmSXjNbDmpCNytBz3ZAgis7iRIxsEcedEt091njFAycEc0fbmP2MqU2t22uEk8m2fRkCDMFGmP3DP8Ph57gCtpkuOzdipeYcsgmYfp4p6DW8yRt7QYmmp1M7HjpUWygvGhBZp/lu3+2Xot7y2Cp/0qZv5JQZWGBabdIgJiAf7jzqrzLWJYaXVytrr+gfADPFu8S3OZ8kA+9m7CMA3D6pZxrzEpvTSrkvFQrrlagXlCPqmfU9y63m1YgD5BLK55X44/DJdPMXRyCQLH47qfXYPoQPjkUdMpTW3X7mw7S5sWEJuMxFxuo48CmHrp8vxmMFlS4s+H7HiJXCFr2Ny6W+qRLcQdY0ls+C4p7Wk5Kt8i5odBnGyjrWNEeIwu+Wrh0eRbouIbh0S73EC4rVmcHyWod9dUR9thad7zkpVe6P49UN6MXdeA8lNTJjf5hjy1AVtRvHZo56G9bibmSsyFSz4DKvuCqdKkjhivJJe4UlNIUly2XDip4c1ftB8dmCHzjZ9t/TKYqJfdOU+41TYGHK6NuZt8WJsRxK2pLaJXz3fsvxydeNbgxhj8ntMg21x3y6zEaZZvLqHEvycXd+tHAZsWWKawM5C8r35Sd40scUwOfnVL0/0tyIMmtesZWc/64D02yaA84gn8LKT5RYbhHArnHJxbxUS34rdOXx6LpgZW0d+pdX3EPeulPmejq++++XrTkY3dWfcQHQuij9Wmfrn+Lx3/t0xLlNHD3vkfgjPhVyeV2HY+NbOjSg2VC0UtMs/JSexXvLVcHiX2c/nqpGwbLF9cCYRCVciFiaVE+eeeXqtoCemeAEEWHif2fmdbCFkLaQl1n9MxVEGyr/YcGCNXdt3TdvU8gXUZ+AI+98yF0WqE10DDgNjxkwxuNq1HneTJANT4xETzuHDK7lB75t3wtD0mQhiOQPjhXi1spnPbBaDQKtlITPwpjq1YtWv/AX1SuvDM+91qjRRy+xCkP51n1qlRbirkHDTa8R+Lw5q0NEVTGBXdOhY4+cBe46y6HygoWXmOOG+36FgUkA0A90nXMyl+MpfhTMsMeO4w/QtIRgfh1n3glVwHQRRMpaD3r/y6torV4TE3oMgafX1lZuScj3QXGczs6PTr03i5nuctwmXvM4xnSZqAeXrCLZBkbjeGKUdSATSrO2Fd3dmYZKF1DPB/p9qFXiyvgqu5Bc9NYoTmL29wmnxGzOZnvsoh1yTEbedlPyLja0K/k2/hPNDC0NgS/LEFR2eS9IKkc8jMvzmx0gUOW1mQa+cjV/csXkeMGg/e/J0ZhicXB/Fn3bPvFnsPDZYXzOnRFptJf0BBl63TjMDGVm1YmwtqYr8UnDpS9uARJPXookcT8FMUya5WjRDVm6Q/5YpdlkqpuPnH5gVf2w1gQXXDuQRl6LRmrxDkuNFhpmPy0iuoDYkOUGTwbVDEkYD5p7MReLhkkDjNTnreuy2KAoNLgYODeSb5lJKPJjpPusUllr2PUykwm6twWTcB3TTe5PjYax+3l7fAsMq1iTOi4k5jNySqw08VyD6CztONzaLHzTsY/YB+xtIWH1w5Yr/V70d8bEEt8pKre/jpU8mIe6NkXK7EwxBrdU+yt3YcxtAVqcxTTTpaHcmxbjs+Ibd3PNQFUSEReylnuN1ah4eDTFE1NQ6VuqSgfcDw01Xk0w1UyZL4NMZpxncHaDC74nN7YDLMrbpCP5uF9We2H/I/IVT9cJAg6IAdLtxraVCDtNo4dUPYHd5vw2p0w55XSHm3T/6CGq3tYmSRNOgEMhWfrXAUJwNbqqgCIbeB275Vb1GXetmnIF01WwnwuGWOma8xIujA9vGIjc2X5NGlP69vW21amj9PLOL0HPW+0KkWAiQB24+zWSwJ/RKg5bEVyiWkRg96toGFrudhf0SMueW9KzhUQibDl7v/VBkTJkwm3jKRjxHXSvihV/gF4dUjVxCWJOMeqXfzxGHU11es7EYXKSOblhQ8W6p2CONyFoZNQVOePojP/AQgI25x7MDCgRZP/TgnoOaGmuPI3OYbNVCGyHsPoCh3X058E3AFLDI16R7XJImp/Jyj394spRn2cQo5uK4xo=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>aRnU4bp8axPsMnnmdplta6+U2fAH1nquG5RnxJQ1RQlLXS5nVUtqPpF9woJKXdgziDNb9n8XHCbAOrF8mloNe/18Tpw26o+Pe9jvUPtiVw3xUg7tWv/r2zspMrWBCRVBmaoP+wtLxv80EGZ2IaE7nLPksn+imZVl1RmRWPGTtFI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0a010d4f-e9eb-ff6b-9409-bc3f155008c5" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0a010d4f-e9eb-ff6b-9409-bc3f155008c5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>d1+HjBj9p2gXturolLYRK4Kf+Xs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Rhv7v0cLBtFUi0S1zbjwFdOku4Ybr3zcZHiYrrJ4WkjZ2FI5r5QZXJvebiNgsEBEpoLzHQ5LGm5R6ksXWUxQAiFNdZo58PHjzwvC0MUcwpN6gsbNF05DvkM2UxDoxsHm5ivlTGtvrnqaMD6AoHix9S5LpgHuA3LwXIUlKugXnQ4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>z2ZluviOPfXxgxM3zu262kWFcCqYNaARXQkSNyrjvwVZ0w0XmReeTdJGuKpLEWhuLYb3g3ZLTsSrIzWYZb2PpP4TdaG8/MCnzY0coJs9BpI8DPxHrCCsoC8+uVzInL5pSt0dBdEEXFMLM/eJ1ic6i4n4lLAu3lk6b9PtVjiybBg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>yR+5GI1KeykvQAmfnXzfvMvNZk1p38XZic57U6YbQ6utKFHlaJ+ovjzRKA5pm3Z/Xm/PYCs7UKklH+POih6xbKuatRnrQ7R/Tm+g4dF4J/cPqWwxx3YgeneBXPtg9bSVRSJDaH4w047PtBtz0Y9HSW+KFrEQtO/6oyZlfQFq2dlkjpJCSwUgn6V/ngpYFA53bfEWBqQPNLtEG4Uy52E43lgFe4ZYeI5H4qUNkw6MONUTQtmQaF5X91pevZIAGGU45op0mMc4F6eLfNc62NPkQUw8Xv5eSDZey6V+zosqhgf4t9jRvTIv4IvTiRlORxyGzytuaev1uy2q9QYWrV3bToFykverocBMaQsy24xd9/RIDX66rD7h3ssIV3HLy/ZKuA+teJXhyKK0W4uwuvywvme4eddD27OX3YMcpb21Bd29BknZ1QftZ2IjEIJ/kjkOl10dS7PqY2yloKkcu+bZeEWe35FrHUR97f+kDC4l+wpyV4W/Wqy+/hPYVk6oKhdIiF8P79q8zg6UfJPQgz4nelk2q/qC+yKtAOowcDuy9A689Cue5hPfA7pxRf1bUBIF72Wowm0PiOg2RgMA7mBaajc6ska+tgULUiwcP1SvXfpZ4lJmOM4DSPInpF1s4ACekXajvmJbhhlWYIOBaArt7agtGbcHb0Rs3ysT1ef33WSpbTfQsgiAt8vrZ1MN7WZvpCIqV8pKDrs2NbQuMMD7LI9wdpTf5u3Ttbhpj4PAt1TCo66Ot6bY+0056rDG+F3TBvLuG6omFZXyvUTNrtKer6mVpcAtGtR8BfkvABYKusGcOG7ahW8Z7wCjhT/0+07lKQdm1hvEHmSXjNbDmpCNytBz3ZAgis7iRIxsEcedEt091njFAycEc0fbmP2MqU2t22uEk8m2fRkCDMFGmP3DP8Ph57gCtpkuOzdipeYcsgmYfp4p6DW8yRt7QYmmp1M7HjpUWygvGhBZp/lu3+2Xot7y2Cp/0qZv5JQZWGBabdIgJiAf7jzqrzLWJYaXVytrr+gfADPFu8S3OZ8kA+9m7CMA3D6pZxrzEpvTSrkvFQrrlagXlCPqmfU9y63m1YgD5BLK55X44/DJdPMXRyCQLH47qfXYPoQPjkUdMpTW3X7mw7S5sWEJuMxFxuo48CmHrp8vxmMFlS4s+H7HiJXCFr2Ny6W+qRLcQdY0ls+C4p7Wk5Kt8i5odBnGyjrWNEeIwu+Wrh0eRbouIbh0S73EC4rVmcHyWod9dUR9thad7zkpVe6P49UN6MXdeA8lNTJjf5hjy1AVtRvHZo56G9bibmSsyFSz4DKvuCqdKkjhivJJe4UlNIUly2XDip4c1ftB8dmCHzjZ9t/TKYqJfdOU+41TYGHK6NuZt8WJsRxK2pLaJXz3fsvxydeNbgxhj8ntMg21x3y6zEaZZvLqHEvycXd+tHAZsWWKawM5C8r35Sd40scUwOfnVL0/0tyIMmtesZWc/64D02yaA84gn8LKT5RYbhHArnHJxbxUS34rdOXx6LpgZW0d+pdX3EPeulPmejq++++XrTkY3dWfcQHQuij9Wmfrn+Lx3/t0xLlNHD3vkfgjPhVyeV2HY+NbOjSg2VC0UtMs/JSexXvLVcHiX2c/nqpGwbLF9cCYRCVciFiaVE+eeeXqtoCemeAEEWHif2fmdbCFkLaQl1n9MxVEGyr/YcGCNXdt3TdvU8gXUZ+AI+98yF0WqE10DDgNjxkwxuNq1HneTJANT4xETzuHDK7lB75t3wtD0mQhiOQPjhXi1spnPbBaDQKtlITPwpjq1YtWv/AX1SuvDM+91qjRRy+xCkP51n1qlRbirkHDTa8R+Lw5q0NEVTGBXdOhY4+cBe46y6HygoWXmOOG+36FgUkA0A90nXMyl+MpfhTMsMeO4w/QtIRgfh1n3glVwHQRRMpaD3r/y6torV4TE3oMgafX1lZuScj3QXGczs6PTr03i5nuctwmXvM4xnSZqAeXrCLZBkbjeGKUdSATSrO2Fd3dmYZKF1DPB/p9qFXiyvgqu5Bc9NYoTmL29wmnxGzOZnvsoh1yTEbedlPyLja0K/k2/hPNDC0NgS/LEFR2eS9IKkc8jMvzmx0gUOW1mQa+cjV/csXkeMGg/e/J0ZhicXB/Fn3bPvFnsPDZYXzOnRFptJf0BBl63TjMDGVm1YmwtqYr8UnDpS9uARJPXookcT8FMUya5WjRDVm6Q/5YpdlkqpuPnH5gVf2w1gQXXDuQRl6LRmrxDkuNFhpmPy0iuoDYkOUGTwbVDEkYD5p7MReLhkkDjNTnreuy2KAoNLgYODeSb5lJKPJjpPusUllr2PUykwm6twWTcB3TTe5PjYax+3l7fAsMq1iTOi4k5jNySqw08VyD6CztONzaLHzTsY/YB+xtIWH1w5Yr/V70d8bEEt8pKre/jpU8mIe6NkXK7EwxBrdU+yt3YcxtAVqcxTTTpaHcmxbjs+Ibd3PNQFUSEReylnuN1ah4eDTFE1NQ6VuqSgfcDw01Xk0w1UyZL4NMZpxncHaDC74nN7YDLMrbpCP5uF9We2H/I/IVT9cJAg6IAdLtxraVCDtNo4dUPYHd5vw2p0w55XSHm3T/6CGq3tYmSRNOgEMhWfrXAUJwNbqqgCIbeB275Vb1GXetmnIF01WwnwuGWOma8xIujA9vGIjc2X5NGlP69vW21amj9PLOL0HPW+0KkWAiQB24+zWSwJ/RKg5bEVyiWkRg96toGFrudhf0SMueW9KzhUQibDl7v/VBkTJkwm3jKRjxHXSvihV/gF4dUjVxCWJOMeqXfzxGHU11es7EYXKSOblhQ8W6p2CONyFoZNQVOePojP/AQgI25x7MDCgRZP/TgnoOaGmuPI3OYbNVCGyHsPoCh3X058E3AFLDI16R7XJImp/Jyj394spRn2cQo5uK4xo=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx5b550a3c-8b6d-5f09-a3bb-5db4e709a1bf" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx5b550a3c-8b6d-5f09-a3bb-5db4e709a1bf"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>N261KKcVpOs2I4o1DmKfjYWMin8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>s/q1Nt3pY00Fb7g/xpOYiiqSfSWWu3hhEh7g8ng8YC+bnoTZ3QEkrCcLZD7wkdD/ufWynhnBflTZKd6OMpmkNH7s41FHfk33tK7RYOEpvUbMff2StanF/gm8g1tWOuje2xFDnAe/FZ94mlNurto2WbYsmoJVycOlyweDbyYDd0U=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>aRnU4bp8axPsMnnmdplta6+U2fAH1nquG5RnxJQ1RQlLXS5nVUtqPpF9woJKXdgziDNb9n8XHCbAOrF8mloNe/18Tpw26o+Pe9jvUPtiVw3xUg7tWv/r2zspMrWBCRVBmaoP+wtLxv80EGZ2IaE7nLPksn+imZVl1RmRWPGTtFI=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>