Online Tools Menu Close

SAML Response (IdP -> SP)

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxd90a98ce-4495-007a-24f3-f08b26b94ce2" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd90a98ce-4495-007a-24f3-f08b26b94ce2"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>IHb4dl7OwAxvGsZF/i/ASddgjII=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>rD5hubU4EgXxgDt7B+RLIl3T66oML+IaylCK4wdPVVDLx/BwD3GigooW65h8V4qIo9LzvBKtTLEx/Bg96N5GSoMoX/UfZoTUncFUnPhy4l9ms2NJuqPsVz2NI39qEEvJjPGWzQwSv9qUCi5lGYZo5Is9eYDkyjlnMOQ5tyyHehI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxbe6d2d68-9ea0-d89c-0e7e-2cb5a4010242" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxbe6d2d68-9ea0-d89c-0e7e-2cb5a4010242"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>SwI+C0QX0aLV2yKHxgBjBknh220=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>2FWQy3OqpalwCYdx8FGsKAmWudbShdMDxkb29vXXv2/h9yeXtNMvjGuz4Evo8Kl2NFmVcAGEhUoyvZRFhD0kL6eC936CDthmI54x5GJBE+C0doVRI9TZtY3yfj5elevkSUlhMtafmb0fG+jW3EHLm+53PQ0hxpKMamOCNa5dLmw=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx0cb2a18e-a660-667a-8f82-4177e36f8c49" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx0cb2a18e-a660-667a-8f82-4177e36f8c49"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>u3blkyozLpGiOARlFGAojyXhtro=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>OL7y/G56ijfCfVJgxBVdI+z+1GRJzBN6AICyw9wPGGuYzJTi1Fx5T4AYlwVFDaJCMxTjES1tRs1po4sTfTgtIg8lxdinT2IxSYf2L2DZbwnqTxz+GLMjklrX3oWl9+U4PIPOgl/hasLbgqdYHmv5v5Dn6GoOxxtCLAqK+JQuTUo=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxf23b5967-c0d6-93ef-3623-dec51108d4df" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxf23b5967-c0d6-93ef-3623-dec51108d4df"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>pswGxg44+iaZUGaAcYDaw6p2HLs=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>bAUa33XNlvEr6NW2Fh14o3kD4j0Yzw3dAmR3Vw+Yy3jYSbRNrfz9JIJpCt4Wkbal6S+qaJmQxs4Amis2heJJZjiS39Rh/OXcbOyORPXnFPQA6SBvUBTDlqllDCWCy9kXwndy0o+cvE/+q7WkBx9QPm0BZ0TRbK7jR1gvimMx8+o=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>nEA/jEi0+E9UhkYOiCPHg11sv+0yuRSmyfZyDP3+VTtVoaOshzZFurPZh+/PCs49j/3dvM1BMrgizRvUgBpztzqr7R8FbchyQsbaYjhDik7wI1ufx5rCSUZHy8l91mLsW6SvUrvSjeAfhU+VEi3k57WfWRRP1KtsCxCgsu2zidE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>XDqqcaz/77z8CuFGU6HQWP8F3sV/LBkpUMmrcZ89lPrKPC4GgYxrwAn+e3xODqyr9vKWuoVGwh2LYzU5RNhMvP8EukP+MWlfTanpv8crT0pTfIRgMkn/p4jPiz3pMSaMrhmsLgKdi5XeDoeozqLAYx2I9DqVdkuxZwpUXV6zce0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9a81d3c0-a111-7ae6-234c-3363b07496df" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9a81d3c0-a111-7ae6-234c-3363b07496df"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>zHNRfLatiHbeqhNQuD12Kh/igDI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>S3J9JOwz8lR+yLWQ3L/PycEzmjQEEPrQ52aS+4FzaSl9AR27ag/zMxtxaZNZcpPueREg/eL72i932IaICIf1qAS70yT57MJ77hbU9B5I6kWkeoKK1Yk/50BHeO0r5iUhVzYtPm0kiGamlb4CgOs8HB2Nze3JQ1vFRgTwVBuRoHk=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>nEA/jEi0+E9UhkYOiCPHg11sv+0yuRSmyfZyDP3+VTtVoaOshzZFurPZh+/PCs49j/3dvM1BMrgizRvUgBpztzqr7R8FbchyQsbaYjhDik7wI1ufx5rCSUZHy8l91mLsW6SvUrvSjeAfhU+VEi3k57WfWRRP1KtsCxCgsu2zidE=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>vfmpovRYlGvVuvMXhaxLd581yN9x2Ee/MbiXSbA9t2Sn7MPBs8uqmR3MahQzTT9sUM9BkSKeGuuWuIZJZ2PWIxoBMftACCNHDvMUBMyWKsTk5rSGhb8cUHtHa3NhDcBHLXBbSMv6nUs0m7R5cQheHuwWBcHkxg38e0E5AyyAae+7aQrrXrNeUwomJGzFXERZAYPSOZUEkjiIdPBhqe4nUWhX9IJqGCON7UHvPnO/s/SboTpimrntsTdh5dJhp3Ed/BWcnI8Mq+A6qp2cBT+YI3WbJO0NTEz/i/eoiG2rxOzA+dVV5LP2rbGbzXpsqNdrMQGbjmgldM8b/RlhgmUj1hAjJVBn7Uoe5uMUccWX+gj3xvTIkQOrUn4qK7FEx6yLUq4bF0LysEfs/+0kAaC+4/wK+Zrra8sKgtJ5qXxVbIEIWZ4piCfem0rIh6QvG6PQjwW87JeHKZF4j1qqrCSNbGEksXzpOJYKzU6OJ44p28ZXT95TFh8QX8gyrjGSe+fEKuLizz6yu1MsVuq6FqxBOouNHpuRlXTc/WX/3MLT9nvEibGU02pe25BsRpVYRLSZoW5bK+yoPa8pOgzZuf7my4Mgve5J5F4spsnZicIvq4dR+V30A7WbbP+M4LMzrhhuO39AcvaEhfpSviUxFq+RpS1JJV42QmhfCpGCHDWAoHIUymQCn2igftTGNSt4M3hBkLCW1qAvFxGwFs3y21cK5JyQsfeyKfA034k1ppD0zCbMZYkpgfIegvUpLOuHUqp4FI7Otb21tPIGxSj8U5wMRBU4TtQxrtTC4BUvv3DtrEHUflEP1R5n3rml/qBg5r6aY8wABcP4sp8Fgy35EkH4Tls+IyDCP8qrPB2gveznT+u+IEu6RAaCZTDlaN8QEBmwQp/naiCQtJfnWtqq7MZD+/XDrGVPXuR/qkpDvrfJAJnnjkdY4qVez1Uz2658z81wOKvbe/gzxIDHtfO1GpM1JErDuTcRdXA3akk1eJ4pLiI/4iw7i0Aoe1iB8AfcWHh3UbpLRk6sqqMJUprZpOoU72rCgSYA6DSCg+8iQ+/vWlDo6a4xQyvF1i5akXJ83ZTPwvoPLEQfySTKs4/7HuIy/2KBMqe6+meV8c6CN/OVboN0YQ4ug6O8BIuXFimVqc0P2Q2+58skt3KmJ3Fl7W2+yAKcN0yNtXa/V6VfA9OSL+rVMcraYslFPjkBwJ7zG1k2jH8cnYfaRgKMd0yBIe/zAp1bRimvrJK6lXxJTa5TTgEu2DP3TSOzcQKAv4L1YFI2cVBstpYTM/LfOSyR2Pc//D79wtom+CWEd2Q6tdWtUmC/2/AFufJhKP0sSJa3zGsiBo0IL3FUK01Xk5qis173LQNJvnd83cbwuZFJeZSMJk5uaC5KPWyalMYTrvl+BJtNiz9nmFWC7yk4AqhQUH1dZddxivz+cb/5MToBvI5BYxZxu2NLwxfKFmlr7oJR/ovjkUERec6S52Vr0D4YmSSFNYWyrKbRz4F2zIv2dEoK5C4+9Hbb6U/orjt0bI4ozSueva5GLPUYDK688fO5i+6VvX10xIGVcFy7j3y1o77MdjbC4EkKsEi5Z1d/CpKojRRCski0ycTlVciFyC8b9P+ehlegmS191iGNy9eER8UuOAFobKd0TinKTeqYSWVI4bcHRDT7DxLJdjgr3Dihz140PRdd3ATPMOORz2ya6fY2/uBY2NNYHIGPHY89mK+uLeP0yLBjcBvy/rkfTcX/YKKJvRXnTUMnYvavthBggYiLuMlP7cTc1rgv8sLjDkFqxHn/mMtyGKMG3uUtoPJ++J++UzPrJc1BqXixtGUU29O0RUct8mcBtSMpJxkGDUq1KNReOrWEzrTJtEAhqpCK3nCdEddiUca3kGRCVMTwqA/9M0JlsvTcY+wMIs7o3SrUvWjmkAJxD1uRZCPbbdjUMSlXO2qZl3RtEMAUmSH1XTucrHTaTd+KHsk8WfDE/XlrlEsSd8OY3IrFpVYS6VpEFAmeZnkOCEHDvpxT1pZIwD1lpppVNS3hyZZ46xCEG3YeFJGtf8P/NhTMEhFrrAy17/CPSA8D+TCW0pZph1EJ+9J+xmze1LeNpgUdXHaLfEeUnHZnl8ToYyfJMV/uLtInZvW2XRIvwufKno5GAt/mYbf3QSFCZ2DHP+rBd+EfTKrR3k2i4sECbLIP83MgRjYGtKQjagxmbsqrjQrcmNmfkak5M/DuWqwBlTXd+Q4RWIDJRhDSdMrjBjL+lRTGSn0MTA06c3PtPfSen7ZG+GNux0fts3ZYaYRPhkFZJPZWVvquj/SRZpTnuxBDy0Y17kXIifbaCHssewPPbnpid2Wi6vfRpoluzSJQqqOPjAr8X2nfqY87ZWk4UfYQMKj71ef4+sLdwMs1uRl58Ntq1bNOkPk/BRXMvR/dZZrgFY5RYkCPt9ZFvm+SuaaWNHvZO/0DsybNuskq4KZZvjwdQJfhrkuB850cptHaS1bJ994O8elG6DM561EkxbHpJAawtDqkaNXOJ+cI7tvWtLNc8EGiQXJbYvFBKYjPI+8dcV6crlKA8lVKNT2VwPxCT4aq6koWHtojQiteNpk/Bo20dngYFob5AE0/ZaYY4kWakSNhcgjqa8tDukfO/xqGRpBlNWuyMFUQqJ7TWONX36rp+FcoqDEzS0OBc5q/sPTNxo1qzDloXPqYDSgGEYOL5r+Uxlkifc5e9lU+tyllr5r7rzB8WeROb52xNj0RlxBU0MMC/pjRH7ivd+rblCgLBLZO4ZJpUX5XUJ87mFg0gDzgb7H9Phfaiu17J/ab0aWiHPQJ7cEihxxGQXZzn6j7JuWF4K9UCaoX6qF6Zw0Ynfi4rJHJPKx3FrYKGtEgHT7mDStxkoo7vbuSPntctffKGailmcrum3wpG9S9bCe3KLSa/RW0driJbHY=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx49ba256f-d50d-47b4-9d06-a50ec925b667" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx49ba256f-d50d-47b4-9d06-a50ec925b667"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>j83d2q+OMGy/CFeOy5LQozhpTo8=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>roehfzBrxgI6r/iCfqyqy3RvO0poF1g7awe3I6UG2Jb4lqQfiZ1GKE8lCxOL8wneyPRaOKMke6OEt/T2IZOOH7BEMSc7sQAcSHK+f7iKwVKEi0n8wruZA3IQ5EU4OUArWF2nTvN37DJiwLLcMo3WUOIyRXlFBEHTb4fnU1hKacE=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>XDqqcaz/77z8CuFGU6HQWP8F3sV/LBkpUMmrcZ89lPrKPC4GgYxrwAn+e3xODqyr9vKWuoVGwh2LYzU5RNhMvP8EukP+MWlfTanpv8crT0pTfIRgMkn/p4jPiz3pMSaMrhmsLgKdi5XeDoeozqLAYx2I9DqVdkuxZwpUXV6zce0=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>e3S2A13OtOAfOhUirTWrfTXqC1ljp4urh4I4CnFPYrQJqFgzyxaV7huRPbNLomXHqpaXFvVhfRPHntCt5U/rZW8WlQ0JA9mdvAIAotzP8o0zxyQtGnIdMkp149QWrvtkq177TuBAmYz2ujLiLS/GabKqSiP4f1YpUykjSve47F1goYo1DYgqw+7OyAFfRGjhCwTn4ox4Ia/Mp26/Y4Zn9QmeZbSHtDwwMxUPzceqGEMNQSK5VCbWlhmVQKCWP54JVazWzIXdUyzNw4t9X8QE6bxIVpgTiyGfvfZcwpInAEPlD3MnbC+gK9VVQF2MulJXGbB1L/O7GQaQRbKJiqzocKAGQtktnaPaJgsEnJHIEEvoWbgaTdTZZpJwjiJkhlfw9Rryd99Rl6E5W8Ul41p5pO0ZF64Mv9rfvJKoGDW0zRTs7wGm7ChYuHBn3zySog1vBoy7FyKD2AGriQ3aFquAmwszuu5SpXi4OAmxvfAyjEAQ3AePYxYvlczJsHi//e2Kn5SfwYRQPOU4OiL7Hpb5rX/flDYjmc4ArK2+t/rrW1OcLNNYPaQZZzu6NcDswswG6jLF3YZzU2tHmX9Bsp/VZqTj6idFOIRbDMJ+Zaf6BJ1UoikX29w4gqCYjmm1Qj9+D23bVHMCGlvMfyw5E6JTuMiSe/dYxXv8UWRaWfYsyUZKM3CcdOfbel2+Nl2J3fHph6I3RNOhvwAUDkMbLRm2QxE1CwywVyYiOK8HOyk8o7zXjCMcKbCEUqyov9muDJ4tj1vaOewaf83R+6F9M4j9rIa72PH+9sHSnLHVrGDletZyYC+2YToVzvFpdBQvU/u/JYLXxwLouAER5BCj44JSWIU2uQKmztiW3wSMOPBMJMtQ0L1d2LJ5APx+10Pt1KorNwu7qFedvcyN5HpuKyT9X9KHFYHAl1Y6gMEG/yPuR6sP5aL33fFk131GgRjCszdpU3+OIx8syMnjK/O81HuC2W8+cxg7P9AtTr3OTUItej03b3Di478MSFAPByR2zk5/F//nFZXATMsaoqgLCrgRrRUS6QxVv6B1uGjepTatk4ov5RhAFtip9kyHVnu2Q/3ytpO9Nz+JvsSVGZ2/NgqMY8FH0dUFabOMhzXS7ZGK0wcSQ2rALKps/dUaJCq8y4i1+VZ+KEyAqqlQTuvggaZCKLdn//CoIKApfajIwNtS+ABktnwh1k1IvW30QWPv9ElMjLi2nhGYFBwcuYZ1HYrXtWHF68zmUiR4TaQ8LETiF/nqVbpQCK6NeJBsnulOP61K7u0ctEewc1Pcw3ZthhIh+dg5SsYosygM404UgURTjJoU38cNqudVIYNq+7/CgvdIwclVHpMDEo390hCqrTvKRH4fQH6L+sTsyoQoD3OEVeb9W/2LZSaC7uNP1R9qM5BVL1F4IYCQETZupzU/E9JD/vn69rMdeNqriI8yH5HPeHFmpmLF0Te70lIHdRKDNf9/OCKuom4iH1z5z7vD5AOUbQ4voeb/XsCsiE2SFfONmtjrrR6C19ZUcF+Zxu3uGDadHGdL5B3AIhnB0cC4AsCuoLq0fMkj8jnZReZQkhIjXQ6p3qP88lyzUDKvDPJa9HmpKyvp3kErK35LNwLHv6X+Q9axYarmVooklEUn0BZWymw+hbUxEweLvgIPAHMLPzTgFku9++p6oG3yHAY8B5+mHNi51bpK/8v4oN/n8IayV62dppIii7FXaYzYxZD3ruz0J54cKdtUsCJSRR6+EP13R1CNShhX/8Otw6USaWSGG5WJrF7R/yg3MEHFEs57FrwVjlDb1Yeu9fJMjgqyNU10XWcrfzJAMGDlLDixhO2nfDRceIWd7ZKPuTi1NDi+PF3Xux5ZAANUVJGHZi8KTDpL0fmlt302ozVz0BzsAxSt8whO0fU6Lytf4y8Uslq+YZyBWKs9Umvt8IbEh9NTLbIHw9oYIzYypKDpv4Qk4Cp/+8+fw3BjQl3bxDk0CWzv4+RCWq2Eo5MlPK1TBfFXwJOYbbGpckO9/fZL0DTyAOj3SzR+5aTdwzDy4MM5wXJEP5VJ1QfAsbFsr/VCK52fGiCi/i4EfxyLhOvLVZLBEK7CDa7Q7g6zok4pMPXB+5D9l1tzrHHfyPmYMbnx/kHr0AJxIpKLssJMYZVsvENMycRARKP5NAgO96u8Q/vRhQPnqDDoLJd62XFAALS9+TvGZnI42OgjLi0X3VuIxzrAVOGB28uXtv1g+RFcsgEHfPNPe9hAc5WKHCXwQ+y5nc63wkwVVdS6BNBzupIgg5QNiJ05UcQd9EYJ2xs7PA7OOwEfkEnzYK+mgaBwfZBLXRNS6LyZQGQ/2BGDCbXjbKaALRGhKGnGuQPOfvnTnmMoT4bJ6yCqgDOJ1Yo/bjLlT+gEr/zHJIFYqXyZpcKfqCORr9gwFy18AyYQZCB3gnZte8knWrEQkTzkVS+2vkCyVqkWTGNp8HzBwwDhHzVcQBBZ8vlq0Pzh2kR88WeBiiVb9cY5YUvrVrVWwj2sq/arEJUEVsCUA0krXCmnTjbrJZJehCGWPLC/ZYlJfX3bKB/+yFayc3qycquOM56Yzq6+3RhTojgCYR/Owoyxpk4qxWoPM9Il7KsKlsTkHR2OUplRnjMF2lv9/TTzW0VqmFxxM1D4+uSAJPIhFamfelKRSm0R6+vtriv3NsIZscWRIesH7MtH2uRE3XqiNRGFb5fz/f3lhyBHbZ8hoyznEVOWmQes7fJa7OAfsmYNuWNKZLPFEPTulP/G+kF72PuHyekzaHhxN/NAnShrTa/doI4CBPoxPOXimRD+J+H0bdRriXdEPrOzZECBPxm/7yhePweT585XEm6J2+qWSj7otC06mdS6UHmsEMWstV+os/UF4pe/dbdrd/WgAVcW2vGj6pgurS3e6WLCRgjx2esA4+QyRwixuao9PWZu9IsR8OHBarK1P3qlqzvbXRzloIpuZS2YE/698czQsQ9AWNo1dVlpOIR6FiLzc2cUvoqL2EKi7hpVM8RKwPSGfvVUGBj/seJVX3V+0y9Ib8MG93xZa7aFASybpQwi6urOEVwn7JkHtRcOzXxuKcAS1mjvB3UHT06mHOfsf/GFFp+xgjdDDdcPTPhr39fVe5YvQV1764Q+CRRJ8ZKUGD8TFnNNcjH3M3NfBefsI8cYEvNMS2fvw3Icw1fSRo6gmXKMzf+euq6im7wRk834E9f98jsV9fkCq7iAX5TTu6bf9PoFQp/Wmn5qpOw3w4DAdxdyw4c2pMuoiRdgjZCggHPyXEd6q/HUcaBd3FMasAAIUzJqrQCuAXfr5o06RjDaM+Y2pbvON03ZOZjg8YHe3M3rmHjO6FX49hlAtpMk6SyDCJ7Gfkib7fANBrt/jZcGAqe9Vwd//RaW5ZGHIG+JIPJYOk2Rw4WOvMRlDGDvXHaUI8GBK+X9GqW3o4ofRCKHCya605J+v+UZFcFJ7lQnGtDzmv0vP/LvTRsFnX3210z+HLXAk/B9Qk/yeU4blyykXrcdaA1WEi2TUPzQs+5y6OtY3s424LBaHlj3dyzMkSTVvHHuH4vV70PiHGB4Z6J9TbTEmvLkgz5XxYRp+yjIWrmI8FnKNrdOYqOFGtskmP7Qyq0icOhzu7Qz4pZfghp0eVUqt63JTotqYeMYv1D0jUrYv46/v7U7NK2ucMBocElAEQO0x2FGJd0B0GQuWTiuN6vPoBLXcE6UOuCM9LUAd8QOrruCVW8dY1U8u9+/DnkIkAknKmpFcT2TnuFyBkZU7+f/GuFSHDdTQtdjJ4+l+93oAV420ymoF0T/Mn6ss/FlU/GzD/avUqIpzawlgHmHF99VwAXPgSMD1d33t3j/MtIPjuCCWcmzumGlBdnkyMhgphkOL2BmFqvhJ+kv2iGknI0oq0D0HHWcAM762SNx3VSa+iWNqOSks7WmuHef+pw/JXIoR2Bosj9riPrfINuygUtRiHFrADu1pJ6wBZoUdKszUsZc/TYQzC+gfmYZ4uF0QjiOECmYWxjmrIT7tDt4gUcvcq7rHhq/qk1TpNfOirso3xUUIElNt61iGCcEZiSLd4zwQo8eb8rDCDkdoUiUqVMNQpqh2rkBgz5dMFYqO2eQ1k7Uaet/uSGonDf9U97iZ3O43nPcMc0qUqL4yafzDBHPFL3DgniRhPXSzgTb+71fQdwcF+cv4HU+JEZLXnilXMwzClGdoa7C8bEn9WIt5Y9+zXP/0uZG06eiJgh1HsoQQmSS+h/L7QfaT7TVAl/nO54Kh0yY4fsZYCkF1tWchoEnijU9BVFaMpMTE49cHtNwY7mVIiIbmltIDA3TzXYhTbmVT4IJo0tYgpYJsOn5FX8bbnyBcqOtYUjNJBHFi/cX/B2wwuuSsInzGimU0oO5USgfrSEab6sD1rM2gORkWzHdk95crxqg3Ic5Lh1BCtZnpWYmgx6LISHfHL2lIoC9ICd9TRxl6lMnDw9yIsyI7NP7K0L6OmMrnXpVcFWJgDKasctCidvqKZRlgux9c3UCUetAnGFMbGfkBul8vNgFyu2vHJur4twmyrO9Y8WPOC9yoBpHY9NdIl7HIlm5f6EanBdlkciYdSAUZaHaDGIPpRaH/oWXUFyAFR3waeHle+KOU3nlsgEWNq5R7nX9x4qakeMjOlbPZkpvYV9gvKBFqnCIvh9lJzATOmzg9k0//wBr4aLh8WW1qPORtmL+LWSUqpnJl0rsT3xPzSj+S+mGn03LWedajfjdOOhYgY15yYo98FlINjn+41xloIN8gXEUBoyz/RTNTPzMuLdH8hwnCHWoDoOmIKSUAxDrv4r+BCcmbxSvW/mIJIZDVd452+eA5p+byxKu9/X8zQFKXtgpJLmuY2UmESVj0Szj/0DQOuhJP1BwwnZiup57zUeXGsO5m8vTFDiaDFLgZSFYf9DWMGsqa15kmC9OwGbuiBi9tXRAOmawddwRsBrQcUZPJAIjYD48danGQrvltMaL4PM2HjVTfOQvfXyU+ExuUYF+87IJor10Hu97NIvPzLBB2JRnN0GiO7Em09kKwSYDzSzoeKoBg5UsxcoxsfYLuKlDPyu7+yORNAaTWw3U+zpmZc5K2mrNsaiw/z/HbwrSAlXj0d83Yqn9G99sRhmCNdwhdgkFpOzjzraaJvVyz42vIRHowsu3mDihS9QjSlqgz0jyoI9rmWLytfGZzs8JbSgFr7d32SrFnrRaW/+ZJmkFd36PpYWZVryPI0gkLX+xk6CutX3u/mp1GLlTaQ7cmOJQj+DGTW6hJ+UK4SzwOmpoKJct+ymLt62ACWRKN9wCFlC4wYDFvyGihgpoPdy/u4MQ8Rz43Za3G9YNRPgC6VEGymaMWNQ0FoOvk2Z2xbt0gNDhx5U6HQN9d5AhIZAFFgWNtWJBE4CD/5xT1iPgbz+OwuvrHtdTpf3sIcSKYZejGglHgblFCgC0AAf/JXrGI3lyk06CJGWKwemdVkbOXZ3XHKGTd/7V1e+mrLJiSNeiUsCDeoY=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>