Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx43f0194a-81a5-45ec-4524-6a77312bc44e" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx43f0194a-81a5-45ec-4524-6a77312bc44e"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>KPp+/hENWHclp9y0A6gAvkQRXHE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>avM9ejYEsNDpzvWKoRDonw2cENHvksX91Nnckc4xuhdrbuVfZKnG11inwBmG8d7SLBchVrY4dEaFZi753mCqWxEDgmSaEKGoYQyzjbzCcKPC7nPwqJxSnN55odIRWLQBPyUTaTLu76+0z9mJnYUpeH7UhUzhYHurCQPVsoaDSKA=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx55ec0809-4fab-6082-cffa-d67aa4a37a71" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx55ec0809-4fab-6082-cffa-d67aa4a37a71"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>nJ3HrN2+k++yrwXgG4diHAdfJow=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>ceHAYGLnxJHOCv/E5lkDoCG/rwbcs2xXOkeJTvQMFzJT1ZHs9ZNTMhYkD0i+Zx3pKsfCDJmny1ll1xaCGFNfUW6Zst5guXvOXdnQhg/eNBUwm/D3qLlXyaJuzrFi9+EZ75tFbPKHlkRl1QTfUP8ep7TmexUVK4Hu7m+ezpk9gCg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx56ddea75-4e88-bcd4-e25a-1981cbcc4279" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx56ddea75-4e88-bcd4-e25a-1981cbcc4279"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>PLd1YbeJfZVXSajMKshr8GPkZcY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>DzzHgk4OI6PV6Cp4YwttPbMaXoYFAHGvJOgYjmB6SgTOyB/Hy6wFiB+mjin7iPLc79OIe8LOv6mk8UAnI1ldHU7D2wfHsYA5hTFlGZZ1gc8yM0+93QeK6C+FF6izkxU2uukLY2GyfLweHI/kQnnHeqhwa9EiPURdDdJxsy1T4zI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx810ce44c-5708-bb26-e57b-bc055dd44c80" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx810ce44c-5708-bb26-e57b-bc055dd44c80"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>k4xnT81tIzJpIQQLfxj0x+5/Lsk=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>R//ZEuYhQYDuriSixXuGyGbw9HqcvAr5HM1Xs3HyozpGN/UtZtu2iL/Ap0bLJD5/ICR0Od4WL2Hc012ND9M9tmgb12cup6/jjYb9N/XfDu93EZlgVbO3hz7/d8tmmf288LfiX8SU9hhnD9PkK9vs+dwwEwS5eA0y1UrLBbt5+a8=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>s/Szq648PrCelcD/Da8fq+kIsv9RnPiwSLZSVo6+eREYKrbUIPcgG/V94eYjucCBjXWFWv1/fibGdvbiVAfn+Dy1J9w3yGimQAUJIPZEDGSK4KD4l2/QDl2EwpRd4rYpuThn9YxOZX8NjPgmoEzY+LLTWxQ95c1BRbvVRCyTuj4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>griO0g45EIb4WIXEceB1rtHBaYXX9oy0qIeu7Gc7H321IjF6FTUjGJjg4v+gGJ4O41U1ITQ06e5xc2iZz0H+lTJ68SLbMnADqQjOVmLdH1bU14s7XMVceNYl+TszqwBGtMk1wjb4ZA0FQmOTjNhZGVNV1Os+/mtIusXpziuACLA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>tGwqOmuT1v1yqWwEgATWZJ0MNSURJIsOzmMHZpALxobx7i17nqiV8N+mgIm80pmDIzuxjvkXiNZHwX2SQPQ9S7J0CbV2sR3GKpip9rw8slj2eJqVVuCmje7g97QQMZAh7eeWh8iS4jjTxZBmAlcxSKdZYixGH9jeAyF/l9ALV7Ld2pWY4tiHBXwzOuZhP5ReAxAKdVh2lcvsO/egUevd07I82IwoAhF+N6h8YoftNo2Kc31IMkLcfil+3yNsPSJ0/FztyThzThNSQ8lRg++d0BgiXmr1z8qXk0CsbAW3CcOl1vQhgvUhU7tvjFDy9HyN0om2HAvDRg8LPSOn/jy4XT24LB7+9lRf0vni6O1P4xMJujaXUPyN279gF4vnuL5gy11mJ3GDLVBy+/dqOm29Ur9wi176h5o3PkQh9S1MgsytY2XsWd12iz+j1GNac6WZdLDABF3wdQdxOSF89zy0QEKFCrxdACxqhmlUxzmABJzvEL8cnT8wiiYwryLh6iBwUMPox3q4fVrwZe1eNo6wguFy7ylXWPAXD12mszVo7n79S0ENKA81bCYmhvKnRFROPXmIAb8r0pWhlkC7G4MFbGw2YyeDH0YjrSlA2U2m0WebLKIYA1fV/8tWgoRxVnERuuoBTRVskL0ih+F06XtWd5PNzJFBu2CA5TFnlGeErRSd3vLQvuMiZh8dfPof6ZadABUqrS01obNszH5fexzmTaqlzE9HFJzxjvmUOWE/j/TNBsM1sWR9DRcWzOJkdwweMvwbKVzankQfbBR3KrvIUtS1n0yCFINXyEOIH9GL+Gpa0vjpQJzktVU7coeD8ITxIjWkTStPSfycSXhFi9TLRMme/iuaSmhyibJL3F0Xbj11EWz++PROTfE+CeV5lKQvv9TWu+YklXem0CWPkzF1w6J1q0cXevFK7snlcwvP/OJYHsjXRZInRzgh+x0PxNep11nWVlgwrgBnJJ7GKSiJW1g/bl/n5s+XfqmNBZvAe5h911wC1VJwmtIhMy8kKioGl/wwDMKKubjqzHWJSweTbPW4ZYGJAOiraOCzgsSKYfInktx8HD2KejZLmTX23n0avU3u6b4bi5IxADBk3nqQvtE50d/fDuTRaWPdVqSPlrNWhqPYahZ9gBNNIdc57WL3TSnOOghst5mbBJ9KXYpxaP6LaHsFOzDE+dAk1Q1durlTQk5AghLRdZ4HNH+9VjqxnBq8dnNAjconKEo2cD1Y+u+kf8wpFFWU0hjfGX9tSEEp4dE/v/JUI+55pL2pcUluRpuwJC0L+4iGFAr3ywqdWIxL9ZaqwbRLwE0QgeDaSy8uDYSAgN+PCFBL8FsTwzmJOf2Vh7/3wxfWpgKUeT5aEjkzerzOU3KKkCiMtTk6erKT49E/Lm1tydbd95pZgKkaxK1F9x+h9AregyQL8Mohmjhp6xIVjZfgdNak8cclEfJbrGI3PVyk+5cn7z4MuyxBfULGDjBiOIemmKV7NVhMNgsU8sZRrE52zyH65P7uTI2JhL34EVWwnOCGoA6Hfs8OocnZHM9hQZazjQy+12nkMbPHMWblwiwlExkHLwwYNeTi19tzQKUQqQX8NopjX8ldlPELAGLysracWRWri0tbOeirc3xMqit2tZ7Yl239p0MqaUIEDXlNv5wTW+sveFMdSYfOzCcNrjhtnP00PvijWFZMqsfhAO4rND9AwovjbauimkJ0tJr8+89TuYx/jLA4ePaIzEHG4vAmxpnciihS5T/PNalm5n9L95B+tj2ClyP7tM3uPcYeO1Qup6ZICixbURK7C1Czwvw/XWYkMn5z4sKyyPjDIG0gx0MYlqRFliBAgLXjaP37O8s5IiC2uisI2+6v9M3vkKm2TwHjWt+ey8bj18LzzeVOozPfzuFIEoSb0QtHIOANxWt7pGKTUh3aggc3/jDkpUfpvlFOXTnMWotAz4mqo2H5y4+9+5CECDa+9nsj2HmjRObE5jC8/RwvFhJ1uTAHI2qAMv5jNATy7v+zh4PI/RYS/DIEstQWSVn4lvxiQAfxbmojah7iTBw96RoIXVJ9j18fjT7XTnMbv4FRzbc+oZQJZZ806IbzfFQnADWPdZ8GsEBUtLo1Dh4fG7r9NYM6kcn1AsO3ChqxgkNA7COijVXfQkCKzug92kaY9BHQqbe0GMzdLuut5VZZjSdia8K3ZYEgsjs3XlrQ3s6EdKPykRz5kiGXZ4YEQggnjTn+gAJG6DO4+4mrg4C+j5qz1o6xot7CXyX2BCRrTaKhaXCeLQG3qHp0sQw0Te41yCtU73VKGG+SXlyQPLmTXkjA07PtWv6l2g+uHda3eCrxMz3Kz3eLQR4mhvjUXnQFLic1p97vcwXc9PjzC7Dzqck8z3K+UBc1suuhqxMxnAQGhT4j7qHXPrdMjW/p2FdFUZ0WsPNSm24nYdR6wGvJBEk+5QF8r8E23s/5Eqv7ndTV9mwzr1XHeYM5FqAQITnRxbmJixMTNQsvCt3FHla65kNaZV1hlUAM1wNyrvEOVp6pRxY8wRZe9Nl3/HiKbNKShpDV1/0GuArMu52NKRNkiJaV/qTu7Mu7+wf17/bq5jX+8uicHlXhEoF6V/Lr2RdsFPFYBOYxfTIzsPVobq3i0pgeoRJ8UO1wvyJLEcFHfhWmMIFUsBld14k6AcuPTp0aD77SZrdhO2tuv5DzRwzxUs3jzNYp+fwF4kukXeLM0ZJAlJIhvdEvdJi/J8IFcbEZyYOqOutUBHLMVgzqeUHal0W66V4LHWKGm5Y3ZCoeIJ06G7fPLcpZso+T5IOfI7PKPRgkw6/lVukcLwaPYKFkDpwDUkjAN8G+NEWOeWLRs/DYf7Q3vQHV6jd+B5ME9F0TfRvcxmfxso2OtCzcW89kAA7a2y283B+Hrso+8TYLGpJAvacACCi2GwXl1BeH/+ssvmVGj8adabnlOSrWL8vw17WFCwql2P6lYYF0JU9X9tLdxi3H4SCXlmwiEwJN3ZAVREbKSUTD3bgs0uD8XJc0TwCFoRiWzqnHYVQvJ9f+zFysv3mGdKivzDVfSwOLkpwxyStuXcQX4F9Fm62MT2msoBIgQBQ16n2TLjudyN6Z3HZRK7CSta/m6ufJ5w7e93Ki1mFl73EbQWYozfMGdMEaAgKelu8xkveNw695Hk4do2WpsCbri4EeTeQ81Gcdnmv/gIDU7MyDDK3UFPgv6OMHG067ep1Hi84P953CUv81d9XqlFwdwo0KzM7VeMVu0Oh/q28YLI6GoskHu93fK7vg+g0xFcFY/uDY2S3O4gCREquNgII1i5H8ZU7dWaipRZ/t4dtEfCvrIWRH6vm+AQRdw2Q+buj28ADik8HQ6AgN3WCh+0bqB/TmxYyZ6CLHKmo1zTUCCpq+2GN+8NovUL+4sMtYpenbGRzG2hBZUXr0zD8/R/5t/bgz9FtTLqBrlLNvgo4lR9K5HjXB5Y442tJZfxe1K7j1N14AU9vxoarewSgSmBK9z20R6Cg2I1RwYL2egCwxGm5EM+rcsr0Zw7AGbD9s55CJfpPY+gC2n9l1Jikp37SNsA3PUxnuPtmnqvDmzg2sKQn9AX87yIg0eeN+B43cB+wZhWBwAA3Kw8M7vmBpIexEJ8bnbmjYD6vcy8qWVGDB5mPj0rJ0TVMRxZz6HYgBsKhPKufiH16OzAvDP9Csi55vn5rO4Uj8lm6k83/YcfzyL5yeoJs4wghkzH1ior06dzlsknj3sD5S7hwQyKbSm9dEa+/5wdgkmavUA820hFn9JKtzrAHRyun7kQ/OrwVPuVZ9Dl43WX7Bv8Az0nU4p9PdexwwWoXQBtoSRSRuE38+BcYCL92EWsjeyKXECHLyUKTKLBtopSXx2Ad7z1AGE5quzfzRlfMGAKVecgHSN0ye6wCc9Ll9Z0Ey6hE9Lrh2O1MRbnHK5CwIlEN8UZZ6WTIkgk9heoysU8YUjjsXvJak42tLfO270mIgPzGlh7vOc/g5Jkp8jBKWSq7F3USToASBwcU1jZ1RPzS929TPWWmkbf7wHNldBd82Mege0GTvzmw9wKz3GoF40RiEAA6VokWCgNdGK/hLvWnJ8nmgtRgqQ/Iw2oCdseslY6Gv8a+Y5X/Gt4Rd4hbFCkxMXrpm+IFd13vyIjiVuRQG7c+XyQ6cA6VeIR8mRlMZfwDBQ1+I2m7MyELwGz9qw/w0LGwjdY2TS71ZqS7jqPTG1JdGERpVYdrFtlsJcpd2na4amzwxuKgUhV0tgBeJklSda5PVGczChEfsBLBcS9Vs2Xwc0b8u6IkxBA4SRVKG/PbpRKTwmA9TJQTOjchJFdVabONpmM+R+j+l9yfgDNrb0JwwyEc7p92Fk7QrcaGcocSuAmchptKaJY9oWrjYxDPyPSgxgEEIrnyU+mjgLXC3aGMphU+o2ZBzMJ0tuZgV3Zvd0W0u7oHbBb+jXDMtvu8UADaiR8cRFiJsN/CMQFYyjRfPurA6rNbsZoipIccCEsZqZSUT7lpydQHNPRygIBMnhH7Ryr5HTyuw6tuPrsEmQM0alb6GVmfzKhJa+Dj5+qjrncuwgj1eqpivHS+MTcFWdNSsoR3sBAjY91OR4DmRQ/v9jtFsCw9DTCk+w4oZFvWu3jA1wp2KRhR6UcjAH8a7kuQJZD4aSFTfYDe1P2r956d4vnJNah7PMtFDTBJurTB7bGVxOreOdgQjL8Ynp8CejdNjf4fsZ7wjcXDxLqLXuREEwcHmjX7274haus8FXjPdd5NL57Mn1w6S4dCg11mnwNxDsI3qSCxBL+ioWqDaj8PtbWvvIyIWMMvvy5sZ1M4BbN249oz68DddRe0Gfdt6SyUHOQTwyq9l12KFgDpkU6GABT1MEfeh6Q4m9y3buY6VQSs5z84D+kTNkRByFm58th1sWlZjmCClcC2Ww/9NlzWotTXGBNcWvLk+cr+u3B/Aa3nEJBUG04Pg0AmwcQ4wbHf2JuMsZ9dEHi3s2PqVy55nyt6P0mgo2dgdWBOWp1mVni5O2vP5pOAgl6NydMkH+uv4okORe2lRYpNEeSLwCwsthw6dlCqZjK9a8OJlFF0K2KNiYlb2H09fEhCI2cb/MnEjUEOEB7YOgG2oRim2JRD4fM7Tv3bdgcXXAkb2T26yckUvWm3rdiAh2gsuiWy6brooEzdX4zcb4rJ6Z5x5kQ6AoT0+MEis6Mq1Wdy9KjChUmfOFgP9uUJie+PsYVvn54K9jOddq2+N157vrBS7MgBzVO/zaTaSek3iEsbwTis+Ai6OpOyrw97rncQczFbK0REY6hKvIFa9Qmwd5gWmHPF100dE3TleF/QIAvMl0f7f7pJMWXkx/liL4qaIVpnSFssIK2yA77yqC8J2IMEOXsw8SmmjB0094ZXvtXJpVa/Xrmw2up70CMIhFyLOMafDrc6+Zy8wOBItFdB2B44jpQBvAMLEnhWbU4t9a/4LkGxXBO65DfxTJxi5braYithFlXVCbzzYVaPHTqpbdicZGaA=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx92160bc4-b7ae-16c5-cdc5-e5bdd5ec4878" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx92160bc4-b7ae-16c5-cdc5-e5bdd5ec4878"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tj47BKhkDquOYiB3w6XbyaktrK4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>1SsY00q1YLe5uV4Vs4DAA7lVGsKPC55xOX+u9KLAXtddvdoOCFby/K0gA0iEAg4r7SfcuBBgL0J9ECkaJR0srNgT5IqDf0qOZPRd0LGt1iWRYhsjQGExFh0HT7v5QA/SHJjh2MxIbfuFxx9/P+Dl2Y/BDzTQxMB83jp1J0JDP5o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>s/Szq648PrCelcD/Da8fq+kIsv9RnPiwSLZSVo6+eREYKrbUIPcgG/V94eYjucCBjXWFWv1/fibGdvbiVAfn+Dy1J9w3yGimQAUJIPZEDGSK4KD4l2/QDl2EwpRd4rYpuThn9YxOZX8NjPgmoEzY+LLTWxQ95c1BRbvVRCyTuj4=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx676ffef2-ad6a-3137-2cb8-f9f17f101886" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx676ffef2-ad6a-3137-2cb8-f9f17f101886"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>P+1rUtUvyu3mSJxmp1bWD4nLTMM=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>uVa1FxNbQszD2vsskSJUbjELMelkvFnuaK1nEuGcGSrpbugBbvBGwuzTFXy6B7bM+KFfveMqTelhZZjOiqzDM6cKta/TiHzsP91Xa4mK9TMAj1Sa9IU0dovwy8y6ZgcXJwZFBtJk80UqV3HN5EtEqzB3nSzEt907WVuxiSwu9ZI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>griO0g45EIb4WIXEceB1rtHBaYXX9oy0qIeu7Gc7H321IjF6FTUjGJjg4v+gGJ4O41U1ITQ06e5xc2iZz0H+lTJ68SLbMnADqQjOVmLdH1bU14s7XMVceNYl+TszqwBGtMk1wjb4ZA0FQmOTjNhZGVNV1Os+/mtIusXpziuACLA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>tGwqOmuT1v1yqWwEgATWZJ0MNSURJIsOzmMHZpALxobx7i17nqiV8N+mgIm80pmDIzuxjvkXiNZHwX2SQPQ9S7J0CbV2sR3GKpip9rw8slj2eJqVVuCmje7g97QQMZAh7eeWh8iS4jjTxZBmAlcxSKdZYixGH9jeAyF/l9ALV7Ld2pWY4tiHBXwzOuZhP5ReAxAKdVh2lcvsO/egUevd07I82IwoAhF+N6h8YoftNo2Kc31IMkLcfil+3yNsPSJ0/FztyThzThNSQ8lRg++d0BgiXmr1z8qXk0CsbAW3CcOl1vQhgvUhU7tvjFDy9HyN0om2HAvDRg8LPSOn/jy4XT24LB7+9lRf0vni6O1P4xMJujaXUPyN279gF4vnuL5gy11mJ3GDLVBy+/dqOm29Ur9wi176h5o3PkQh9S1MgsytY2XsWd12iz+j1GNac6WZdLDABF3wdQdxOSF89zy0QEKFCrxdACxqhmlUxzmABJzvEL8cnT8wiiYwryLh6iBwUMPox3q4fVrwZe1eNo6wguFy7ylXWPAXD12mszVo7n79S0ENKA81bCYmhvKnRFROPXmIAb8r0pWhlkC7G4MFbGw2YyeDH0YjrSlA2U2m0WebLKIYA1fV/8tWgoRxVnERuuoBTRVskL0ih+F06XtWd5PNzJFBu2CA5TFnlGeErRSd3vLQvuMiZh8dfPof6ZadABUqrS01obNszH5fexzmTaqlzE9HFJzxjvmUOWE/j/TNBsM1sWR9DRcWzOJkdwweMvwbKVzankQfbBR3KrvIUtS1n0yCFINXyEOIH9GL+Gpa0vjpQJzktVU7coeD8ITxIjWkTStPSfycSXhFi9TLRMme/iuaSmhyibJL3F0Xbj11EWz++PROTfE+CeV5lKQvv9TWu+YklXem0CWPkzF1w6J1q0cXevFK7snlcwvP/OJYHsjXRZInRzgh+x0PxNep11nWVlgwrgBnJJ7GKSiJW1g/bl/n5s+XfqmNBZvAe5h911wC1VJwmtIhMy8kKioGl/wwDMKKubjqzHWJSweTbPW4ZYGJAOiraOCzgsSKYfInktx8HD2KejZLmTX23n0avU3u6b4bi5IxADBk3nqQvtE50d/fDuTRaWPdVqSPlrNWhqPYahZ9gBNNIdc57WL3TSnOOghst5mbBJ9KXYpxaP6LaHsFOzDE+dAk1Q1durlTQk5AghLRdZ4HNH+9VjqxnBq8dnNAjconKEo2cD1Y+u+kf8wpFFWU0hjfGX9tSEEp4dE/v/JUI+55pL2pcUluRpuwJC0L+4iGFAr3ywqdWIxL9ZaqwbRLwE0QgeDaSy8uDYSAgN+PCFBL8FsTwzmJOf2Vh7/3wxfWpgKUeT5aEjkzerzOU3KKkCiMtTk6erKT49E/Lm1tydbd95pZgKkaxK1F9x+h9AregyQL8Mohmjhp6xIVjZfgdNak8cclEfJbrGI3PVyk+5cn7z4MuyxBfULGDjBiOIemmKV7NVhMNgsU8sZRrE52zyH65P7uTI2JhL34EVWwnOCGoA6Hfs8OocnZHM9hQZazjQy+12nkMbPHMWblwiwlExkHLwwYNeTi19tzQKUQqQX8NopjX8ldlPELAGLysracWRWri0tbOeirc3xMqit2tZ7Yl239p0MqaUIEDXlNv5wTW+sveFMdSYfOzCcNrjhtnP00PvijWFZMqsfhAO4rND9AwovjbauimkJ0tJr8+89TuYx/jLA4ePaIzEHG4vAmxpnciihS5T/PNalm5n9L95B+tj2ClyP7tM3uPcYeO1Qup6ZICixbURK7C1Czwvw/XWYkMn5z4sKyyPjDIG0gx0MYlqRFliBAgLXjaP37O8s5IiC2uisI2+6v9M3vkKm2TwHjWt+ey8bj18LzzeVOozPfzuFIEoSb0QtHIOANxWt7pGKTUh3aggc3/jDkpUfpvlFOXTnMWotAz4mqo2H5y4+9+5CECDa+9nsj2HmjRObE5jC8/RwvFhJ1uTAHI2qAMv5jNATy7v+zh4PI/RYS/DIEstQWSVn4lvxiQAfxbmojah7iTBw96RoIXVJ9j18fjT7XTnMbv4FRzbc+oZQJZZ806IbzfFQnADWPdZ8GsEBUtLo1Dh4fG7r9NYM6kcn1AsO3ChqxgkNA7COijVXfQkCKzug92kaY9BHQqbe0GMzdLuut5VZZjSdia8K3ZYEgsjs3XlrQ3s6EdKPykRz5kiGXZ4YEQggnjTn+gAJG6DO4+4mrg4C+j5qz1o6xot7CXyX2BCRrTaKhaXCeLQG3qHp0sQw0Te41yCtU73VKGG+SXlyQPLmTXkjA07PtWv6l2g+uHda3eCrxMz3Kz3eLQR4mhvjUXnQFLic1p97vcwXc9PjzC7Dzqck8z3K+UBc1suuhqxMxnAQGhT4j7qHXPrdMjW/p2FdFUZ0WsPNSm24nYdR6wGvJBEk+5QF8r8E23s/5Eqv7ndTV9mwzr1XHeYM5FqAQITnRxbmJixMTNQsvCt3FHla65kNaZV1hlUAM1wNyrvEOVp6pRxY8wRZe9Nl3/HiKbNKShpDV1/0GuArMu52NKRNkiJaV/qTu7Mu7+wf17/bq5jX+8uicHlXhEoF6V/Lr2RdsFPFYBOYxfTIzsPVobq3i0pgeoRJ8UO1wvyJLEcFHfhWmMIFUsBld14k6AcuPTp0aD77SZrdhO2tuv5DzRwzxUs3jzNYp+fwF4kukXeLM0ZJAlJIhvdEvdJi/J8IFcbEZyYOqOutUBHLMVgzqeUHal0W66V4LHWKGm5Y3ZCoeIJ06G7fPLcpZso+T5IOfI7PKPRgkw6/lVukcLwaPYKFkDpwDUkjAN8G+NEWOeWLRs/DYf7Q3vQHV6jd+B5ME9F0TfRvcxmfxso2OtCzcW89kAA7a2y283B+Hrso+8TYLGpJAvacACCi2GwXl1BeH/+ssvmVGj8adabnlOSrWL8vw17WFCwql2P6lYYF0JU9X9tLdxi3H4SCXlmwiEwJN3ZAVREbKSUTD3bgs0uD8XJc0TwCFoRiWzqnHYVQvJ9f+zFysv3mGdKivzDVfSwOLkpwxyStuXcQX4F9Fm62MT2msoBIgQBQ16n2TLjudyN6Z3HZRK7CSta/m6ufJ5w7e93Ki1mFl73EbQWYozfMGdMEaAgKelu8xkveNw695Hk4do2WpsCbri4EeTeQ81Gcdnmv/gIDU7MyDDK3UFPgv6OMHG067ep1Hi84P953CUv81d9XqlFwdwo0KzM7VeMVu0Oh/q28YLI6GoskHu93fK7vg+g0xFcFY/uDY2S3O4gCREquNgII1i5H8ZU7dWaipRZ/t4dtEfCvrIWRH6vm+AQRdw2Q+buj28ADik8HQ6AgN3WCh+0bqB/TmxYyZ6CLHKmo1zTUCCpq+2GN+8NovUL+4sMtYpenbGRzG2hBZUXr0zD8/R/5t/bgz9FtTLqBrlLNvgo4lR9K5HjXB5Y442tJZfxe1K7j1N14AU9vxoarewSgSmBK9z20R6Cg2I1RwYL2egCwxGm5EM+rcsr0Zw7AGbD9s55CJfpPY+gC2n9l1Jikp37SNsA3PUxnuPtmnqvDmzg2sKQn9AX87yIg0eeN+B43cB+wZhWBwAA3Kw8M7vmBpIexEJ8bnbmjYD6vcy8qWVGDB5mPj0rJ0TVMRxZz6HYgBsKhPKufiH16OzAvDP9Csi55vn5rO4Uj8lm6k83/YcfzyL5yeoJs4wghkzH1ior06dzlsknj3sD5S7hwQyKbSm9dEa+/5wdgkmavUA820hFn9JKtzrAHRyun7kQ/OrwVPuVZ9Dl43WX7Bv8Az0nU4p9PdexwwWoXQBtoSRSRuE38+BcYCL92EWsjeyKXECHLyUKTKLBtopSXx2Ad7z1AGE5quzfzRlfMGAKVecgHSN0ye6wCc9Ll9Z0Ey6hE9Lrh2O1MRbnHK5CwIlEN8UZZ6WTIkgk9heoysU8YUjjsXvJak42tLfO270mIgPzGlh7vOc/g5Jkp8jBKWSq7F3USToASBwcU1jZ1RPzS929TPWWmkbf7wHNldBd82Mege0GTvzmw9wKz3GoF40RiEAA6VokWCgNdGK/hLvWnJ8nmgtRgqQ/Iw2oCdseslY6Gv8a+Y5X/Gt4Rd4hbFCkxMXrpm+IFd13vyIjiVuRQG7c+XyQ6cA6VeIR8mRlMZfwDBQ1+I2m7MyELwGz9qw/w0LGwjdY2TS71ZqS7jqPTG1JdGERpVYdrFtlsJcpd2na4amzwxuKgUhV0tgBeJklSda5PVGczChEfsBLBcS9Vs2Xwc0b8u6IkxBA4SRVKG/PbpRKTwmA9TJQTOjchJFdVabONpmM+R+j+l9yfgDNrb0JwwyEc7p92Fk7QrcaGcocSuAmchptKaJY9oWrjYxDPyPSgxgEEIrnyU+mjgLXC3aGMphU+o2ZBzMJ0tuZgV3Zvd0W0u7oHbBb+jXDMtvu8UADaiR8cRFiJsN/CMQFYyjRfPurA6rNbsZoipIccCEsZqZSUT7lpydQHNPRygIBMnhH7Ryr5HTyuw6tuPrsEmQM0alb6GVmfzKhJa+Dj5+qjrncuwgj1eqpivHS+MTcFWdNSsoR3sBAjY91OR4DmRQ/v9jtFsCw9DTCk+w4oZFvWu3jA1wp2KRhR6UcjAH8a7kuQJZD4aSFTfYDe1P2r956d4vnJNah7PMtFDTBJurTB7bGVxOreOdgQjL8Ynp8CejdNjf4fsZ7wjcXDxLqLXuREEwcHmjX7274haus8FXjPdd5NL57Mn1w6S4dCg11mnwNxDsI3qSCxBL+ioWqDaj8PtbWvvIyIWMMvvy5sZ1M4BbN249oz68DddRe0Gfdt6SyUHOQTwyq9l12KFgDpkU6GABT1MEfeh6Q4m9y3buY6VQSs5z84D+kTNkRByFm58th1sWlZjmCClcC2Ww/9NlzWotTXGBNcWvLk+cr+u3B/Aa3nEJBUG04Pg0AmwcQ4wbHf2JuMsZ9dEHi3s2PqVy55nyt6P0mgo2dgdWBOWp1mVni5O2vP5pOAgl6NydMkH+uv4okORe2lRYpNEeSLwCwsthw6dlCqZjK9a8OJlFF0K2KNiYlb2H09fEhCI2cb/MnEjUEOEB7YOgG2oRim2JRD4fM7Tv3bdgcXXAkb2T26yckUvWm3rdiAh2gsuiWy6brooEzdX4zcb4rJ6Z5x5kQ6AoT0+MEis6Mq1Wdy9KjChUmfOFgP9uUJie+PsYVvn54K9jOddq2+N157vrBS7MgBzVO/zaTaSek3iEsbwTis+Ai6OpOyrw97rncQczFbK0REY6hKvIFa9Qmwd5gWmHPF100dE3TleF/QIAvMl0f7f7pJMWXkx/liL4qaIVpnSFssIK2yA77yqC8J2IMEOXsw8SmmjB0094ZXvtXJpVa/Xrmw2up70CMIhFyLOMafDrc6+Zy8wOBItFdB2B44jpQBvAMLEnhWbU4t9a/4LkGxXBO65DfxTJxi5braYithFlXVCbzzYVaPHTqpbdicZGaA=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>