Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxae6b5285-be1b-05fa-26f3-0f8d4be6f749" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxae6b5285-be1b-05fa-26f3-0f8d4be6f749"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>0f8HdChFWCiBFR9jbjwFQDMVHDo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vDUHUvrNSwppPGjas1H0Wn1NUvC6qZfN1sffaWvietmkTmd1tjTdOWN4+GjFvKcbh3Qzbv7/gDPrkZHyM4JRiq3xOGqKT0ltFnpJ12x2HFudadqqEcjKcGdxZjgKmWaeMjULdqNBhevLZ9xgwQlnQ0ctverIqGW5sT5D4geuccc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1aee817e-bb82-ff51-78aa-9a7ffdbefd8a" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1aee817e-bb82-ff51-78aa-9a7ffdbefd8a"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>N/hApMAe5rmj1IGyz/bxXijO+C8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>HiQURKVNEiLLQR19SkbpNvncAhetPh09y70DUS7Wf41xpG+NKOYfc7kiMQ68jLVlxr2dgtXpUtC9rz1iSKzTOCtX39v2+juV3GG0eiFvrjS45qbQoC7cL/u+3Au8qga2QkJMuVK+HLcR549/67RHnX5ZXa7OuCklI4whXCaopUM=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx49e491de-21cb-cf61-20e9-a13eb11664ae" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx49e491de-21cb-cf61-20e9-a13eb11664ae"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1Aa6xhKy42IOKbeQTC39YKcelD0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IJsWxJjYWAWGRA69nPt5HcznId61SsiqqBr/kmUBx22/Avfi9QxIHccPaKqWsxd37Pa+myuCez9tdo5NJOfhSHWXiVuB4h6Fy2qESAueWdRWwz700vV7Tl+ArV1+QS9NJWnDZGCtRYWWqwSgW3+TVSAWaRb9ixlF5Fk4p4QIUJs=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx486ec7f8-0f98-0736-df9e-9db46d69f0bb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx486ec7f8-0f98-0736-df9e-9db46d69f0bb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>332jrIMy1b9HVLXW9KAi9xTd2qo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Ehd8jAlyKfAsKxYvxm/HWOux+W+hZy8E0XXQeZ75s1aaQEhghovl4Oc9wlm98V5O7rrEvPpMvYza6pYkN259YxSkUTMUcfYgOmEQv5xifIHKN0qLMsnygeR5DkOTKCIEvJIgPig7WTO6fi2kXuWP78f7ZtAidauvD6WFDw5ww4E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>X61Z8NjsGqITkpTNqPAyQ8YwvJ2y1RrUx+Gpo6wxXQKzjp03VyFtZ0pmoy6nMYec8sbk+ekJ6H3Wt8lmbK8o3PA3IZGsSX2WQKE5Jg9t7a0SheRfTuuFKP7t9p5GH08/itOsPzUqMVdkKbJkFcp0i88v086+0BGjRpl+IjHfdBk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>rKPS+QbE11Uv2Xm2A741zvtWpUpX0H+YBEoN6VsCbIwfG0FhZ7D6TQAANNRcYXH90Sy2M/GD85d9NUzW4OITJmZiXAeeqeUlxGn43LMYAaCnQ5xSu2ZxyAjdx6Gk7cEBwbAQIhdYNPVzc4OyeV2wxIXA2amI2t3DeHaNHPhCgnn2uyLrq/HMM7dnhvRNVAwI2CTPJoYS7xpQcBoq33McOptYWjdS2z1mF0Qv0S2gSjKuKW6tHwlogk/cJwfrxaDPfYlIIyzBPNB+GKjVqFIy5ZcH2PVvHBTk51f8VTpURc2wh5LnyB0Tk4w26bJ982Qy5n5sEjKJ1zG/i151OAEXthiMFrECcxs7oJe+TZgzAmWih8buiT+rdjHwZHoS5ZxTvyxgbz60idLyESCx2QwQw/uL5TJNJ5SeIh4tg4rwFESYUq/cyGTkdILWI0R6BxTKZHCaP+5KQR/VmQbO0Miw8n7vxendtVNLx6oItGJU8q8Wiy0l+Be1bOfSyXMoGGysVXxvYZTAQp/dkcXlPPfP8BuL+UQGAWz3PiSudVPun8iv/0zQfL9frTxllKhztjPfZBaO42Cnd24p33RUI+fVvwfj+ENEG8KeSVyQg7Q5B+dPyxlBg40FkP2t9weGnCwAu9XBt1Qt2DW5L2wA3hHem/1oNu07MEIFuhytR4mPEVZpKCTheE7ai5CWN160Zbou5tFBDlxQkem8eIfw4XtW3JwL5uwpcCxccnM4zayivsNuAy8qx0puKEarFgYQ0j/VGadX2ARtdA/eNhYilJA7kicBSy6XH8QQcS9CM8w6odl3kwh5gJ7r9dzk+x/3oZzGI8XiEMcZA7YOrntl8Qe3IJq2OkrtBcCBpNNarn6h1NpyXPzi/7vYCgptmh/ffYOXOvKPOlhYZzyVAV3hWC1t586496F2JEQAP0preJiOwFqtwcFVuNFsvNBzxcULYb1i5VAcTCWl6znVlZfy1Sch61KcxKqQ+9koBDkfMWnUJO5CuS/71Sr1V2225vNPyqak5NIv2Euy+MMS7c1NGv/tC426L0WQ9iDKyoOtW6/KvbH550hZqcpeR4dQ8XTI5teyYQMYJfOFL9ROKudSfIsEml085r5gA5UmrCbDte6J+i4234zkEPSFb4i2VQjNgKn/dYWZK+20X6T7tYhVNuSa4UcNFRQPYYvEmgs5BULp8CFoWXez5O3IbVeBIN2YdBmGF+NY5MhghNkQyk16NGaz4X9Y2qBplAdSCGW39ukV7GnbYWEYBNP7I2yRlTX6AoZQuHVaCyJd/Kz0QXYPjI0lP0gz4eO4793RT8IjXn5YXjZVysRRuCvWwVv0+v696ya8nghRGgHFv/+cdTpKsKoLzRJMle/k5AX1gqlMzcXKCZfh/xa+q/1bwPZRz29MJt3WCNo/bMQqjFkzpFTsWK+PFWVOwMSjsKrzG06eez+dehuZ6NjUEft+nBqyNLaz80/GCTs4qWuGKRw9ztKohKez0CxfiTxM/NCt4dYdz8SGwZX/6L66KZVLjrr1T3n8EdeRaXF7Uhafluz0gUv2zVi0VQ8IdO/rKDcbIvc7A3OWiA/Jl/Iqkb4Hb4PX+fp8IaoWGoRpzpJYYSBm+PcgKfyLMSHVFinsFzs9U/j/BbeLlU7ERNxsKsRhB3Ad5xgiWx+M26ooS0yuI606G/hmtkRqGg13tyzNE8x71PwN0J3+0m2JhfUpKmDW7jwgTL36K2O85/MOjzTx6O2jPwcG5srghXqU80iMVuKEny0uwyxJFGmiuBh1VCblYuNMfyft75RkJorim0jShbUb0K5IyfIgUEowgh6Ij5RjzTl6H2WrmvJAAN5IMjHbU3QjZg4h+obUE2g1TSjrRuMBE/ATWx2g9frq/Bxo0etWlLgxZ8IH64ZGGOMw6Gm/XO0W8UfEWy9Rp5g6UToc2Vdn9jX2nFTpyKDYIKJU2icmmcrpFG04QvtCxnhDm1ZMeuqxYVYhRBCoxR9GYN36TlBB7HA3RCXiP3HjyZCjVkoi29OmHNz95Po3p6LIgt/6Q/5nv940W/v/CieZTKrjYckuAtlMrvNaCAcFmoH6VY9krtSSyDNbmKfPBJr0YBMXp5dqiB0OBbh3+aNMw1s1T3M0L+PpblsHcsMbAekc3GEyw7E09DGc9pKqtdbgHFWX6XQqnuJ7nK7+sZ0khDu/6/I77T3V5BUCbd+TOeZQVbrELIojRXn0TI+xBgXJCPyvahRNJN8v37AO62Vasnc2f+T+ZVi3CO1JCEM54i5ZO4AbVPTUbSuCvJCLcldW8DISMgCtwa4j8hXO+k2usKVMcMcnTfWglrORvTHR4kqnLYS6n7lAkaqotiA4wjiRrVb/W11b35xB/g+2ZkZQoFZQEFm2HZSvwFadquhvIFEku0mx0P26ayXB/ndzvT69htpZVHRMzE1ODU/18gwQVSDU+9ITuI9Y+s0g6xXphnVjFHwlmD/0S0BP2c1xMKtjGLwSGF1+0Pevn20tEuo2H5X1GP3XRWZkKL3b8702gbdE38mfpyLuUlVaVkD0/C0sBgysMD8Yczoew+achArJD0Yt5FVOVDrUDIEG8AZSC4/ZIOKN8+vBDhr8mtrjrRqHSzAtxUxd+Q4LzIOz4u8uPIjezcRByLtQXxwrMpvSzRoZJLECv39pyCTXQV0RpaNbwnx8kNOcc04ox7Gl8q+y8fyLiN6dXcMajBnL2FK6kYZjRG9KilBv7UmVtB4oUVYxLx5M/t8XDD93ndi4G0gKYyNRmzQbvSFFGLn26If3OrsrGWCA7379HKK0VMglLz2Tp9IJk3grjbJBkxkgvukSdJMO745JZenmJXxEmSFi4eu/VWQ9FXMEoTB3wTRzBhGzX2C1twSzlSPU9wV0VAEvlMYBqL12bfR3gdEUzFagWNGmudcxcIy1xq/3b4c=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uR+ZElC5k++ZzHrzDQCmDgL3mUdK6bZqz0cKKlCf0mkx4w7LKAOjwRSUrmdXkNpT6S41SLiixoZLxselYMcF9wTHtw6P/LvpbV75Qr0NTUCpfPb6hiDqVjyrNSKYgsZj8HFxEpH98BTQVjsox6NBfCe6WntRFhREAgs6fdEmHS0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>taeE5QyTz/x8uvuwD6oez7JGfs2HWqzgWwoeGgMwwwRFivX+c+gt/Mkf61mhBlL3z6UGgae2kR37ZLZ5KPOFnusA7QLSiKdI4HDeMp4bR1j7giejSxXLlA6gequVCwBN5gGtWaNeG+uiAeNTj45ntQkGL2a1nR0cgMXlQ6i22oQtLoD3h7oM823MAZiJG23huJ+z8NGeNadextovVHbf65ryBILPoY6isDUXtZM2a7vFESGXVf8Aj09PlnyQzqv8D753hTkTeJWJmjk47TVpfd976DkVk7nePwNADiK0yZbfhGINdI6vGpxussZGhglh7uE+kukysvk5NUTvo5iKW9fRM4sX3IUak9x0c54moE8EUTDk5rUbyrVtXyyuw4bTN3gd+yPy+PgmnfTGJEVSzPKFicEAUrOA2+0iWxWm6an2+fXhIrp6+TEXHwcu84Je30LlPPyTZjieI8t8BL3N/uoxlRm27TX4MRYoKer0kB0acQrZf8PDMsyFkqXPM4b617IUSRG6mciHXfFv/Y948PdI0jVX6YxhtqMBVyKeisk1H5kR/c6Vf7CFFeN3UEtbEEm2NECsurbiQ6q6Q6nW6/DchgcBnSgC/kH52abZKNYii3fZFyZ4RrPfQQmGELER/g4dXkU7oIbMN7hVrIRkDfcEulkdT3vfGQ1OqmPcRXvfoMdy2PzZTyl8ckftFzDcmeOEFwR4eaus+qIMlJgsRQrA0v2NA5RBPBLa3Q7xN1jm3hyUk1Gp2gI5jmVc7mado0vRdkkew8DdM52NHK6bxO0dZfvGpKy2eM+A0W/wlbRR3e4BcChYBGZsOCJN7cvCKtrtEOiUBB5g42wUfOrGFMiiUHUgpLZqw0BGzeqKYuZ8W2jhWR7NqiO4Eq4BD5F5bBvczU3pakKeStCkC26DD9kNi4i+Oc47fWCzd7+2t5ph0CB4WF9LE6dGmq+j77mtsA9Bz8brUpsXIo1FvcX1M1Bzv663bjaRbdnh5H2kDQYH7CNeCLgbE30YA74EsMJIK7rmNUaXOPzMMj2aHxk8E87587UnilC7dO15rufRmAxl+RqtPR5FRGad7x7k5ptxxwYe3WGyZQZ8NCcxCPTozl87UIhVUzvjJ6pyr8Wm2AwMq3qfsuxHQmZ8O1jRpRXgVDL4ig9hlhOq3Wi1V84cE10V4XZyUOgkj3ZvE136C+D2H7cO6cHum1k/SoZTH1MY71bLTre7V94YuJeDRv2l0fBNbQlLPENuoNBu5DMkMYeZ5axXR4rfe2e9l+Fd3HJ0f1CbBUZT6xoOoEVpt/RrTiBhrsX5Ksncb9ZI7Ajsj0PVhm39I74D5pqtAooeY4VFJPFGywQKxVrD0ky7InkRAWaq2EgfU+RIGhTfqDame+tfDFRNL4BCr40I5Wh/IG+gBzJ9QY7socnqu1e94t+1wyNk+Vu9QgW56rDT84s9vlqd0569leb55DQPpEer8kqd59oT1NLvgOj78vvg0BzKtfO8Hv4xVR12WvsQivzMxsWeI5YDCMhxOtPyHobnTlVDc8fFOrNWyhA+sLvdtnJDdW26LCZRiL3kZvXWPEmmnU1e4Svkupnn05y2fyr+ThP829/w1nen84q++TZCH9towGBJD2CFw1UkbdqMSCla0DVxJ/DO6nyG7wj0myxHwCXh/TguH8bxS1XYsQBzWKg+XYLHTfmtVlby1mpvz18gY4+xy4Jlyr0e8ujzzF1P8PqqtKW5Aqbg95EDS/5edp+mCLrABdAewIYjYr4ZivUwsRzS+RQWWWMV8FdVGZh/LQ8RgJfTLd5xA8xFAWsU2hPwqoHturyNg2Ozef0qPDQ/Py7fm6bMZE5cM4MqWZVUOIa8YblHPB0Ximpd6jvNfFcU2IriZgAmuXsEnKUC0qhIOJb/jmxHAD7S7HQvUdYKO70QB2amKMjw0hW1zUtxNnOfre6KI4nykpkClTBJJvkEgUT1JNw7YFC+6O+8pzMrAexKfvdfVNmzkilBHKO92iUl70tN+F+Hq9+09HaWMS/ophSMlMMyuOhOq/2afY4BrAJU9beP2oJKd7opsYnHS/SXVCZF6vmtzy+40E1sg5pYsF/YAsshKDpsGwhL+mGnuv6ZllKdXpFHRRfSyvXw4bi7u5wZJURlxaQ2xQajDB/1b8rwYKitb/6REVYvtr7GCwSnnuL88vZjyCtgz8BCTr/YM21qxVaSWv6/JTCJQQymR+YvSWEJQMlB9mloMz2zP0Wo4hjijxu9wCCvqCjGPFADt/Of9rlNnEN+BksAg84s3yk1hCmQr/dzyy2dXzJmNHZNzgUgW0giOC90DsoJwY2W56Qk9BCvaOqxubd3FotDuYn7wO2VNZxi0nwEFCLmbcNyWXaS4BJK9VQAq5zVUW8islZx1nIfGh/jVyz9L0kbGUO4OaR0u2fqxuhzLgBP6BRI4gEn4LIVEXCEB5uHddnwW5XCAmiaSBKmsYq6sEirT3clYMO6WIKNMVRtOzL7E0j54vDFNHmL6ytWBO722PJBIHVkIkWSF8PdU/n5zMRajEh1nYlgUNWoWSiN/DNzzpP5DNRqXawGefl3fcUHSGKST4ViuqT2BWaf4dKQ7V7lKOB6tRIyp+TgQ2NT6rhXkF8+BDB8HVIxRqupqNJaypha9oNf2mxqPlkg1UK5pg7L/jkCyZcOvE7KsQm29EkZSkuR/LsrhrCbgzG1Bx/ABU85Zk+8IHmb3ptTobiWVz1SD022vAujHimg8PUzb0hFuu06tQQxjP5XbwvtF75Yd3nqrcOyyUhdjEn7AGOqv5akE/v5gQ/NAaAvUUmwogRbpruWkSycknYmVkaik8Fv+8UxOPRXlsacjqkRLX533HyHTfVNhlqIKJjZn3aYnFfSN/Zw80OeB0Jkz4CrLWcicwn7S3oZmML3bBzSVajN/tQCgIg2VPf4zeGQvQMO79H8Pw7smI3dm4C7njL4JOEjE8oQSb9/Hnxmn6r2vcxWQts3sqD1n89jfrLY32HUDt4SI/itPQ2jagYyahkvJl+jfZgnxk8DjuW5pIgsjh68KAwiR/vLpIuxyPwu9NytSW/ThucPwHBCgHflC1YGN+webXBtQrxHF0z3jIAzypM58p0cJt8kz69O9zAZNH3fytJ6/ogUrkaZvZVgyIPDqURArpMhTgyu8MaAK4rWH6c/NINUk2AFsiw7qT6yfBf5tmyjrV0VlWstovuUIuXf0iAnVGp0wNo1pzP+JiueegjkxSy8zDSQpLlMCd7C/4zymDlap1l8Z7D3IGjnvC3ydTAAnxRLSAA8tcZrHmN+imVll4UPQyh7MMEEVDJQEl5FpyHnlAkeO6X/yWVPFTZ7x5jcsub7xMUcYOpYnkHBWC2DkyDtFU715k0cgbexjIV1bvjSKl8IXk5ncDVwxdyvaCGPMbZ5GrX9OulzpVw1NrhNB7uVQNMOU3dZp8ZEJQb4d2/W96AaDGwcDn+f37vi1NUTbbt95ar6Phml8ZVAyq1myTRQ0giGOUpv94pib0Zk2GHe2NEP6BvZhF8qiLzU2m9BvPWxmd92plcWQR8FyL9mPyInuPsaLfm+5FdqV2WfsVmpBt+Sn6PMvERjtrAHqhMEd16RPIujpx8J6S5kqJ/86a5EizlpVpjkZkW36mY985YNoqP6gft9VaWOzBccr/R7qoEJLi00t7Co8u7wuEpn+hQ4i6+L6BsV5LkHIwcXfbsljGJUY32WmSTFMZDU+4Ry/s5a1cJ6nHdTCxE4jkdTH2T1lbob84cXXvEGNNPpgSBtZ9D+cLxekc4jjXavo+PXOzv1FExQSe4hyqtFt6sLJvdAnoxDJICIeg8g0vL6ijujASh+MT4+vZT8l7MGYEqy0SwMhnMbSrRFSzlHPofIEldkZ+hB+/adPq/mL5Qu91c6qe6+qG2qWdE485naRsWNdBAUce9aoBZaNv3et5qwGTh7MCqsxAQ0nP/h/wcEls3EeSAcLy66JuhMVqOmgwBwZTtfPDm+s06gA6pp9OlQ1Sx13ZcfxoN/NjppXsokFct9GmiFThzjaB+RnEP7bYQWwTckSdqdPOSPcC4EyU3xPhcM/33cWmtjzAtDHbBMFPxc51mxMvY3AiaSZ2Cn20yLAVX6xgDTktqFm6BXP+GFUzCHt33V/Fvo75Wy/a7uAaXHQUOCYHYHx80WdNekp2GFejNFZkg40k7vrc4Eo9/BB4lHcTTyi/lctTFCY7TB3P54v6j6h4wFitFeqK8gzbAQui162dWadYTqH3hFpp8RWt5S/bQF+mrrjYpsxKSTzx8uauKTC+Z+OiCYUZi0j5UlM8lfMXKDImwDDvJRZzyef+a9CG20bGtJKU2SI9FlJ+jViuduGCl6ts2j4XYtGiCbznuRJjmeQsjZELaqI0zfNv3pCBnFxS+dzmHHaCZnYsetJevuRs9knP54ElMBJnbK2MjjPlwbAiMQbpXv1zWON/lldnI1Ayeq7am2cj3M7Gcdrsx4H3d4rOgvClFTHEHTr0JB1tIWasgtkqJx5rvS7FS+PY/3XugaPtdAq+YNNjqHAcOLgPvx8tv4UIyrQZPkZNry/PahhHas5pscjtG1lFKMtCd3BsMD6JXHy+tuAQ0f1dVbpWAakHnz1zZsmltjJTuZWQlWIHBOSwQEpOGpMVLSjY+qEd7NFxA73ECJPDm9l27vlPWQve1F4D1sUdJqzPxg7/g6BybkYnoyVeIHvG48WIBTC5QzIrHezI9z4Z6URwjre7sc944Kvt7x6eWKm0na2Y13c93EJc9FFqChmY0lYEpdz1yJL55ckNBXY11m/kd8QsCplJ8en6603gudSbjsJ5XPoUwJMBVNz4CJ1iFgDVi5bxYaQep3BF04h8X3tesmkaJByGvwGG704ab2OfBE9MFIIFguFB70JjNxg0qGj+tzOw3uOK04SbHzMAHnlmZU75lF8uYIGi3MX6+j3P1thpI8jByMf9jQAvE7oDnypfq/rO/Y7as565rVEqgJQoaR+Kzw3z9ZRhMhBjpgu8HJjHROw4Qq1eA9jTCqrE2v05QK8PbXujctWYZmogDXDtgD3kQIFiA+HAFQ7bICqMq5CkZtpVZEkLLd69gdTUOjYbIMqIYwbIjleFF9yiez/jV7jqZKfOKoY+YVNfJ2eMpLYSI0gWYS0mq4Bm7Wr/O1r4q19BrnVv9Cesqh8do6KzTu7CA2KKPUVYgRqxMCyYk6ua4G80lGmSrgE2U0CkXfHT8N+917ClzQaxbDJ63q4M42/Iavp6vxzdA4Jc6owVNLuzG8gTEw/Kw8B+u0wWvAO/52vEEWOsp20b9JBIjE1FWXjOPOoZvJSx/QbJxUkmrkGQL6/ErTlvsu33VGI01yE1wBdMUKMlsqpjJp8Y83kP84wGBzprFyCSupxaXydSMDJCU2kdhSBWI+1BCil1vmEz/0QH9r1GJ/AoPUz1yR1G4Mlpqd8LGsgUG5JkSBECmCGrbv/I4LGkFuv7/BmcSy8pQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx068c27b6-ac51-e70c-eacb-6e884ad1755c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx068c27b6-ac51-e70c-eacb-6e884ad1755c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PhpINnJG6NDGmryq/iHByDXyfL4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>r73iJ2n0CWFG3dVP1HhCQtW317oxu2Ts7tud2KtDFeFI55qXuey0jYGODRsRL0+wX5MIsmmfWgsZ2Dk3/bgIUMyhKKR9xM1ZrZ0I2XrDGztASp/oWap+3e1LpwX0fhyx6zjGax1nmKV9mP53UprkvmMkQ2t9uI8gHO2nWwBs6bo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>X61Z8NjsGqITkpTNqPAyQ8YwvJ2y1RrUx+Gpo6wxXQKzjp03VyFtZ0pmoy6nMYec8sbk+ekJ6H3Wt8lmbK8o3PA3IZGsSX2WQKE5Jg9t7a0SheRfTuuFKP7t9p5GH08/itOsPzUqMVdkKbJkFcp0i88v086+0BGjRpl+IjHfdBk=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx377bf98b-e455-046e-a731-f920b1bfacf2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx377bf98b-e455-046e-a731-f920b1bfacf2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>uRMkdG0vYgDUO3uCrVj0LNWGY40=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Gw0rH9sRn8+bWO4sPlvar94YEkMovOdDfdknvkxOnkxOXzqraxnyK9ByNhLjjA/dB5O1DhpQ8IcsCdSN6ILLLhJqlTiq11u7IcfwxWzlxRtpFPcl4JeVBQQjsTlPaj6U5SEOXBijmb6g2RbL6wd2KusaJtORMFLqQG7qDY9j6Aw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uR+ZElC5k++ZzHrzDQCmDgL3mUdK6bZqz0cKKlCf0mkx4w7LKAOjwRSUrmdXkNpT6S41SLiixoZLxselYMcF9wTHtw6P/LvpbV75Qr0NTUCpfPb6hiDqVjyrNSKYgsZj8HFxEpH98BTQVjsox6NBfCe6WntRFhREAgs6fdEmHS0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>taeE5QyTz/x8uvuwD6oez7JGfs2HWqzgWwoeGgMwwwRFivX+c+gt/Mkf61mhBlL3z6UGgae2kR37ZLZ5KPOFnusA7QLSiKdI4HDeMp4bR1j7giejSxXLlA6gequVCwBN5gGtWaNeG+uiAeNTj45ntQkGL2a1nR0cgMXlQ6i22oQtLoD3h7oM823MAZiJG23huJ+z8NGeNadextovVHbf65ryBILPoY6isDUXtZM2a7vFESGXVf8Aj09PlnyQzqv8D753hTkTeJWJmjk47TVpfd976DkVk7nePwNADiK0yZbfhGINdI6vGpxussZGhglh7uE+kukysvk5NUTvo5iKW9fRM4sX3IUak9x0c54moE8EUTDk5rUbyrVtXyyuw4bTN3gd+yPy+PgmnfTGJEVSzPKFicEAUrOA2+0iWxWm6an2+fXhIrp6+TEXHwcu84Je30LlPPyTZjieI8t8BL3N/uoxlRm27TX4MRYoKer0kB0acQrZf8PDMsyFkqXPM4b617IUSRG6mciHXfFv/Y948PdI0jVX6YxhtqMBVyKeisk1H5kR/c6Vf7CFFeN3UEtbEEm2NECsurbiQ6q6Q6nW6/DchgcBnSgC/kH52abZKNYii3fZFyZ4RrPfQQmGELER/g4dXkU7oIbMN7hVrIRkDfcEulkdT3vfGQ1OqmPcRXvfoMdy2PzZTyl8ckftFzDcmeOEFwR4eaus+qIMlJgsRQrA0v2NA5RBPBLa3Q7xN1jm3hyUk1Gp2gI5jmVc7mado0vRdkkew8DdM52NHK6bxO0dZfvGpKy2eM+A0W/wlbRR3e4BcChYBGZsOCJN7cvCKtrtEOiUBB5g42wUfOrGFMiiUHUgpLZqw0BGzeqKYuZ8W2jhWR7NqiO4Eq4BD5F5bBvczU3pakKeStCkC26DD9kNi4i+Oc47fWCzd7+2t5ph0CB4WF9LE6dGmq+j77mtsA9Bz8brUpsXIo1FvcX1M1Bzv663bjaRbdnh5H2kDQYH7CNeCLgbE30YA74EsMJIK7rmNUaXOPzMMj2aHxk8E87587UnilC7dO15rufRmAxl+RqtPR5FRGad7x7k5ptxxwYe3WGyZQZ8NCcxCPTozl87UIhVUzvjJ6pyr8Wm2AwMq3qfsuxHQmZ8O1jRpRXgVDL4ig9hlhOq3Wi1V84cE10V4XZyUOgkj3ZvE136C+D2H7cO6cHum1k/SoZTH1MY71bLTre7V94YuJeDRv2l0fBNbQlLPENuoNBu5DMkMYeZ5axXR4rfe2e9l+Fd3HJ0f1CbBUZT6xoOoEVpt/RrTiBhrsX5Ksncb9ZI7Ajsj0PVhm39I74D5pqtAooeY4VFJPFGywQKxVrD0ky7InkRAWaq2EgfU+RIGhTfqDame+tfDFRNL4BCr40I5Wh/IG+gBzJ9QY7socnqu1e94t+1wyNk+Vu9QgW56rDT84s9vlqd0569leb55DQPpEer8kqd59oT1NLvgOj78vvg0BzKtfO8Hv4xVR12WvsQivzMxsWeI5YDCMhxOtPyHobnTlVDc8fFOrNWyhA+sLvdtnJDdW26LCZRiL3kZvXWPEmmnU1e4Svkupnn05y2fyr+ThP829/w1nen84q++TZCH9towGBJD2CFw1UkbdqMSCla0DVxJ/DO6nyG7wj0myxHwCXh/TguH8bxS1XYsQBzWKg+XYLHTfmtVlby1mpvz18gY4+xy4Jlyr0e8ujzzF1P8PqqtKW5Aqbg95EDS/5edp+mCLrABdAewIYjYr4ZivUwsRzS+RQWWWMV8FdVGZh/LQ8RgJfTLd5xA8xFAWsU2hPwqoHturyNg2Ozef0qPDQ/Py7fm6bMZE5cM4MqWZVUOIa8YblHPB0Ximpd6jvNfFcU2IriZgAmuXsEnKUC0qhIOJb/jmxHAD7S7HQvUdYKO70QB2amKMjw0hW1zUtxNnOfre6KI4nykpkClTBJJvkEgUT1JNw7YFC+6O+8pzMrAexKfvdfVNmzkilBHKO92iUl70tN+F+Hq9+09HaWMS/ophSMlMMyuOhOq/2afY4BrAJU9beP2oJKd7opsYnHS/SXVCZF6vmtzy+40E1sg5pYsF/YAsshKDpsGwhL+mGnuv6ZllKdXpFHRRfSyvXw4bi7u5wZJURlxaQ2xQajDB/1b8rwYKitb/6REVYvtr7GCwSnnuL88vZjyCtgz8BCTr/YM21qxVaSWv6/JTCJQQymR+YvSWEJQMlB9mloMz2zP0Wo4hjijxu9wCCvqCjGPFADt/Of9rlNnEN+BksAg84s3yk1hCmQr/dzyy2dXzJmNHZNzgUgW0giOC90DsoJwY2W56Qk9BCvaOqxubd3FotDuYn7wO2VNZxi0nwEFCLmbcNyWXaS4BJK9VQAq5zVUW8islZx1nIfGh/jVyz9L0kbGUO4OaR0u2fqxuhzLgBP6BRI4gEn4LIVEXCEB5uHddnwW5XCAmiaSBKmsYq6sEirT3clYMO6WIKNMVRtOzL7E0j54vDFNHmL6ytWBO722PJBIHVkIkWSF8PdU/n5zMRajEh1nYlgUNWoWSiN/DNzzpP5DNRqXawGefl3fcUHSGKST4ViuqT2BWaf4dKQ7V7lKOB6tRIyp+TgQ2NT6rhXkF8+BDB8HVIxRqupqNJaypha9oNf2mxqPlkg1UK5pg7L/jkCyZcOvE7KsQm29EkZSkuR/LsrhrCbgzG1Bx/ABU85Zk+8IHmb3ptTobiWVz1SD022vAujHimg8PUzb0hFuu06tQQxjP5XbwvtF75Yd3nqrcOyyUhdjEn7AGOqv5akE/v5gQ/NAaAvUUmwogRbpruWkSycknYmVkaik8Fv+8UxOPRXlsacjqkRLX533HyHTfVNhlqIKJjZn3aYnFfSN/Zw80OeB0Jkz4CrLWcicwn7S3oZmML3bBzSVajN/tQCgIg2VPf4zeGQvQMO79H8Pw7smI3dm4C7njL4JOEjE8oQSb9/Hnxmn6r2vcxWQts3sqD1n89jfrLY32HUDt4SI/itPQ2jagYyahkvJl+jfZgnxk8DjuW5pIgsjh68KAwiR/vLpIuxyPwu9NytSW/ThucPwHBCgHflC1YGN+webXBtQrxHF0z3jIAzypM58p0cJt8kz69O9zAZNH3fytJ6/ogUrkaZvZVgyIPDqURArpMhTgyu8MaAK4rWH6c/NINUk2AFsiw7qT6yfBf5tmyjrV0VlWstovuUIuXf0iAnVGp0wNo1pzP+JiueegjkxSy8zDSQpLlMCd7C/4zymDlap1l8Z7D3IGjnvC3ydTAAnxRLSAA8tcZrHmN+imVll4UPQyh7MMEEVDJQEl5FpyHnlAkeO6X/yWVPFTZ7x5jcsub7xMUcYOpYnkHBWC2DkyDtFU715k0cgbexjIV1bvjSKl8IXk5ncDVwxdyvaCGPMbZ5GrX9OulzpVw1NrhNB7uVQNMOU3dZp8ZEJQb4d2/W96AaDGwcDn+f37vi1NUTbbt95ar6Phml8ZVAyq1myTRQ0giGOUpv94pib0Zk2GHe2NEP6BvZhF8qiLzU2m9BvPWxmd92plcWQR8FyL9mPyInuPsaLfm+5FdqV2WfsVmpBt+Sn6PMvERjtrAHqhMEd16RPIujpx8J6S5kqJ/86a5EizlpVpjkZkW36mY985YNoqP6gft9VaWOzBccr/R7qoEJLi00t7Co8u7wuEpn+hQ4i6+L6BsV5LkHIwcXfbsljGJUY32WmSTFMZDU+4Ry/s5a1cJ6nHdTCxE4jkdTH2T1lbob84cXXvEGNNPpgSBtZ9D+cLxekc4jjXavo+PXOzv1FExQSe4hyqtFt6sLJvdAnoxDJICIeg8g0vL6ijujASh+MT4+vZT8l7MGYEqy0SwMhnMbSrRFSzlHPofIEldkZ+hB+/adPq/mL5Qu91c6qe6+qG2qWdE485naRsWNdBAUce9aoBZaNv3et5qwGTh7MCqsxAQ0nP/h/wcEls3EeSAcLy66JuhMVqOmgwBwZTtfPDm+s06gA6pp9OlQ1Sx13ZcfxoN/NjppXsokFct9GmiFThzjaB+RnEP7bYQWwTckSdqdPOSPcC4EyU3xPhcM/33cWmtjzAtDHbBMFPxc51mxMvY3AiaSZ2Cn20yLAVX6xgDTktqFm6BXP+GFUzCHt33V/Fvo75Wy/a7uAaXHQUOCYHYHx80WdNekp2GFejNFZkg40k7vrc4Eo9/BB4lHcTTyi/lctTFCY7TB3P54v6j6h4wFitFeqK8gzbAQui162dWadYTqH3hFpp8RWt5S/bQF+mrrjYpsxKSTzx8uauKTC+Z+OiCYUZi0j5UlM8lfMXKDImwDDvJRZzyef+a9CG20bGtJKU2SI9FlJ+jViuduGCl6ts2j4XYtGiCbznuRJjmeQsjZELaqI0zfNv3pCBnFxS+dzmHHaCZnYsetJevuRs9knP54ElMBJnbK2MjjPlwbAiMQbpXv1zWON/lldnI1Ayeq7am2cj3M7Gcdrsx4H3d4rOgvClFTHEHTr0JB1tIWasgtkqJx5rvS7FS+PY/3XugaPtdAq+YNNjqHAcOLgPvx8tv4UIyrQZPkZNry/PahhHas5pscjtG1lFKMtCd3BsMD6JXHy+tuAQ0f1dVbpWAakHnz1zZsmltjJTuZWQlWIHBOSwQEpOGpMVLSjY+qEd7NFxA73ECJPDm9l27vlPWQve1F4D1sUdJqzPxg7/g6BybkYnoyVeIHvG48WIBTC5QzIrHezI9z4Z6URwjre7sc944Kvt7x6eWKm0na2Y13c93EJc9FFqChmY0lYEpdz1yJL55ckNBXY11m/kd8QsCplJ8en6603gudSbjsJ5XPoUwJMBVNz4CJ1iFgDVi5bxYaQep3BF04h8X3tesmkaJByGvwGG704ab2OfBE9MFIIFguFB70JjNxg0qGj+tzOw3uOK04SbHzMAHnlmZU75lF8uYIGi3MX6+j3P1thpI8jByMf9jQAvE7oDnypfq/rO/Y7as565rVEqgJQoaR+Kzw3z9ZRhMhBjpgu8HJjHROw4Qq1eA9jTCqrE2v05QK8PbXujctWYZmogDXDtgD3kQIFiA+HAFQ7bICqMq5CkZtpVZEkLLd69gdTUOjYbIMqIYwbIjleFF9yiez/jV7jqZKfOKoY+YVNfJ2eMpLYSI0gWYS0mq4Bm7Wr/O1r4q19BrnVv9Cesqh8do6KzTu7CA2KKPUVYgRqxMCyYk6ua4G80lGmSrgE2U0CkXfHT8N+917ClzQaxbDJ63q4M42/Iavp6vxzdA4Jc6owVNLuzG8gTEw/Kw8B+u0wWvAO/52vEEWOsp20b9JBIjE1FWXjOPOoZvJSx/QbJxUkmrkGQL6/ErTlvsu33VGI01yE1wBdMUKMlsqpjJp8Y83kP84wGBzprFyCSupxaXydSMDJCU2kdhSBWI+1BCil1vmEz/0QH9r1GJ/AoPUz1yR1G4Mlpqd8LGsgUG5JkSBECmCGrbv/I4LGkFuv7/BmcSy8pQ=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>