See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx8c95ce83-a659-d548-c4d8-ebb1c5edf468" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8c95ce83-a659-d548-c4d8-ebb1c5edf468"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>qmya+YQHrRN0lKOvsAWTCSHq5uc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>QpwXrZow2iMNx54n/vgYqid9mjwdoWsl1kv2/xVirkpr+3zWpjc0ljxtlrRUcOQp2SfBV0f9bhyecr+DhqfY9yDk9janyZ6fOp3OPhIFUMUJBsuk8n2I2aRI38A71g4Btm6VxJZi3MLDVCSIckCQ/4PMGhfLLELuT/CKCwvlZ6s=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxff6bfeca-c7c2-0bde-0389-1d2fedc8e423" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxff6bfeca-c7c2-0bde-0389-1d2fedc8e423"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>lKwuWQj1lmsVp7p5J0jG81MNdh0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>jByWtDNZP4FgLMQrhoKdGPc0kvNh2EfdeKtuOWCRjKtOwl0rkCAw0vqco0FqKo1NZZiacH34l1rybysrbnqhNefJhRaSG+NdIGjznmnzXh0UYjJcrq+MqwiGaJU1b5DvxWUt9Qk17EiyHfPNN7g+I2ecUqgm0xo8++8V5Msjz/M=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx982e5ded-d654-d30e-5197-bc8f42ad9e98" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx982e5ded-d654-d30e-5197-bc8f42ad9e98"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Zt2VnoK9jstatnaodWEffsaD/F0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>IacTApWFHdMkOUFkNGx8J9swLkQPOrUzE5df/pqAVun99a1ovS/fpv7chKOWi1O9FWUvooGvWVVU6bnMXu3pWou8pdVHAMgpaODg9xGwyYZInEtFa5BoKJ4fVwpsjDfaJ3WYCBjzA1Qr+KZLZOvCkkFzlvOSLoUg6ijOYdZtOVI=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx2466b1db-f01e-94c8-2d2e-f3d201ed5063" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2466b1db-f01e-94c8-2d2e-f3d201ed5063"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>SrPKHny0cVyBeOo/7WKytZxMKuI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>vbIvsnwa9P51/ZCcGv5ofeTIrRe9clL760xwGKWjYjL4Pxui8cfhrHIVuQ+E7cevSnCxq8rEFLniQ1Bj7QX3d2ILsWYPFpiRfIB8TkE5xPZQmN8J7BqVc1n/FdpOy2pqG6eHBy/7k1Cogc+8NkERiFEF0zO5uXLYmTEIcsWX/EQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uswgXJjtIt6voJTdUgRICEt+45s2sNKp/DiAAC7TqHrkeXRNrz9WVwdiVVvDlvzGtmFbVPT+z0HWSATtq3YISt3aiekQgIdO3L004hrHy5FZwdkPQXlXQzHZj4MDA1cb7eQMCN32ZlCt8uKygnXNG7whZecTw45oHH1APWst6bA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>S7oxrmzPs8La9yMU9698XbdVp5vqzZzo7Ir402mMNcWe2NivvXg83ipY1Qsdg+8MTMwqE7tX3g9ejXQ3GoJRHH2/O1Y7y0Zmb86eF6gqWd2/1ZB4R7Ygi4inuB33YBAd/QH2y2bC9A96sji2VxF3xulmguqUCencbnUD3DH9vOc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxfdfe1d74-5f27-0940-0374-98f7929d0877" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfdfe1d74-5f27-0940-0374-98f7929d0877"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>aDOUa62aHIFBhQDM+ABXHUbK5Po=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>OehDPkRJf7qYqB/S9zrKZJ3LQHn5rUjr31rNJ4Ih6wS6c+tga+lV7CSFTan6ekUD8c0j7emwFNBvX3RX/ZaUO+L3aGtXY1ReJSmVcig3lgOF5QgwsWAuJwxWbArQpuXq8qmuGQ90c6HlidyuMJ0WoIRG1Lv4dioZza+zWqyVhNg=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>uswgXJjtIt6voJTdUgRICEt+45s2sNKp/DiAAC7TqHrkeXRNrz9WVwdiVVvDlvzGtmFbVPT+z0HWSATtq3YISt3aiekQgIdO3L004hrHy5FZwdkPQXlXQzHZj4MDA1cb7eQMCN32ZlCt8uKygnXNG7whZecTw45oHH1APWst6bA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxd8537f12-c592-9e09-69a1-4f12dc6e6e8b" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxd8537f12-c592-9e09-69a1-4f12dc6e6e8b"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>y5rxxrb9mCpjpKu/9qbb4t9f2lg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>tmvN/oIkQbFP0AkVauOrUSh9DZ3tnfiqnLubNzixRblmskYn0t/sWNQ6W7womp5uK0v/JXwd2kAcKYhTdvzbonjLhEZ4BNgT5qE8OACSsX7NPRaSuZ+9sgL3U9bdkCPTvEjKRZd/WvPfHABMcL0NKiL9UOk0UyoFaAvYRIZnK6Q=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>S7oxrmzPs8La9yMU9698XbdVp5vqzZzo7Ir402mMNcWe2NivvXg83ipY1Qsdg+8MTMwqE7tX3g9ejXQ3GoJRHH2/O1Y7y0Zmb86eF6gqWd2/1ZB4R7Ygi4inuB33YBAd/QH2y2bC9A96sji2VxF3xulmguqUCencbnUD3DH9vOc=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>XC24MOCx64kGr99TJaw4zQqzVsvsK/54ddurg/5ajpUCQoPP39H2uII6DTWK4LY0oB+PJ+Q6kOdwX228DJNfZD8g9dhu+fmDo9SFG6tzn/70Sbi13NKhyRHLDprydOBEr2p/RjyjT0daFxNXtRUWf1HhDYfkZL2YoPb4hdhDqO2pxKjtLexKAC0yg9+ERARud0sW1nHT4NiIzamyzBr79JZE9hCMsd/87L8EmzWPAHXwyV7DGcDA6Ty7GOkxNBbnJrNBqN9SxHt07uCLs3RRW1WpcSFg6ZnkLdIecQjZv02PyDbkplMI56k3VhJiyJbuXFi5z5qPEErNeGKbbGbXxMZridC/3sBY9wb4HuqJxcuad2xEA2LIiHiKAdXXrfauccoNQhRIT2hF2Cg+lCWWG9eDcbNhu6wlESf9jN2ye9RoD/nkEbWAC/1O96Kh5tlW4Y+8+poTYNcqjKSR1sDHZn49AwF9PC1KBUiU9fqeyuQ0h3vQhQxW074OtwauOtYNXhyVamfRuH5I5ORX4iawamUEC/+rMPlwFjFxWRbnVfo/LlBDeCEBSQjU7k+/dyIsOIRhACHUoKIDa7wuGIiW2uC51zCgR/VU4aRm6OWjjkKyplptSsbsNVL+sCGQUNVzfrJEWptEvK3FZO3ADL/6GH6RxBgS8cvXHtaQSCt/rluiyccavhjm94nCMBU/GekwMhfgEWPQQRJYGTc95yPTj9w5m4a3QZRr0ji15bqskoMKzCu5N6ta/T0GbOKnZpkVvLM+K59ifteMqWAVoq5ZPrWJqejpEpT38uEF7v6LtphYmFUsdJkceOH2mJIzbst0s9/zm6QQ9RTs0HLdMduUuOsOPV9QDDXxDvuJXdCGh6x1xCiTrEdJuNT6k0BTlAMCXgDEO4R9xdIFyPoadHRKHLTPt+XPmCIH6w+EwXcJY7VCmgl8sM9UqdBOu4ssuGDkWvvZcGlf/4uy0Xp7aD8FfF8OqJmpG5Y8pZZbr9Wvyx9MJyo92N5JMYr0TTPMbVoIsn2XCF5yi3FLZypzKiOEDUawIGMg5+gP2MN29OcK5Q/I2gyNcKm1WbdR+1xZmR7kaJOcM2MW/rZ3Lwdr44ikvIQUboC3gCQPV4w4R7RaLr1RvEDyj8RBr0RaI0x0OVNN8dvTZCy9TcAHwjfrf4gP9SqsMB89a/dZT0K0WrwZIoIWj4jOB4pK0HJzkny9rAPxi1UBP5HJ+8Bb8Km3lRmF/LJgrgtWR8yRcqZqUvFIsBey6DwqNha9zDJDkAedEtYZn2RvrMFwTnZ4iiZT/5UmooJuL2SfMXSDz+BCDmQt2NGJIpesIYzGMNX9e6OvdT5Q+uGCDpV1sMAoYbFe3GHqLo6FB1V9Q6E9LE1OVUm7SfxW7WwD0FrA5yOvAs7na3xOIsCUxp4h78nRXoWFwRaqcizgLhIBzQDArwL+zxjfefRjMfwSXakSD9ewSscMCgEwp6XmGElZERFFf3a+gbRevnc3HyMD/ENFpuHZwMhaoolEisNZ+cRZA6+QCSzRdbAGhuK9aMMiupPLV+4ujiGziUJFuWj4W1N2jIfNbyzAd8ZQJbQGCTrSNRkCkGOoMe2WpboNCOFGE+KbwKuQ6eAX2YGoKIOjSfHCDvdNdr3E/s7qHGNL1MnML56Va+6fS9XtFhpQ7hEGWTuThgy/LRPZ63/JPXqUs6uJ214sgJjzSt2Tx4v3IkRgDnuRgO0TJqO6YaNMiHC5t4YBXw7xc34h1QHUWsIyFAsgSE2kFoB13jNVUjJIyUqFFEhKWjyRdYuX41+DHO0BivYrViMGTDyzWER8l0kFbykxXh3JvHR0RaUWDadP7Fih45zcMW0ilH9kt3SZfp5xJHQtGbBkCHYBkTd5NB+E+h5eIo1nfMLP1196P0bAuR3muCnVoUPKsocCG5kfUM4YWknUVRbmeUo0OkR2gg4K6RiAEqw+NZDsqwjxGoHsg3BUmSlLEOswPKhdyRk93h2jiOCLsFDu/E8h9C+Ptxa5BPG8eCGKvMs2OuLBm5t6g9ayTXcMp45m/Ueb5am53cClx39iarNHd5aChjf6pPuwSAE8cjqz+VC/su7AQ1969g5nVGN79kGF77QcCOr5x+UahNGLe+QQivK8FBuKGtAcXmDcA0nx6wKcPMu9oEERtNMA8cYCI0+ImAdzMz9jd+YNGBbqZu/ABLcLG4sP1Jpqq41E4Upe6l4Wf0wgOwWEWdIsA8OBXtbQury2LqbBp+fDTbvMA1K0YlFzqKuCx2aovKffdBM6U/v51lVBwPLL6ogK5EdRMkqOmDOi5yQsGaIlIeYLXqevuW12lTAT+nflIM1hfN6my9A94dKRimW/1P6A14OrP6fB24KYYXENUmgDu72AGlRYtcMULhFyS2FZ8aPvXPXpt20xkj2pcUA0IOl8u7vnCFHq4HlDqyhNfbxSiC2TXTDiPnPTbouW5RsJ1z0pU+L13AvxtijEI77e0soVuyDW+B+71plLhluz8+oeyPV/ah4Vkbg7t3jfQx69RjkaP0yUbKNlt5pcoW00wha9SMEQjeHERVCh7vn6iKVhtuyltuOdRc5zf27O5148VXiloep9qlaUS31H4YDcIU1QS7l/6B9dpoIi+m/wq6mnaKxlNLB/OZ5lFgmyVUfQX5sQ5xSU0S0irkUSY0lVxgC4J+88DW03Rx0I92OUW9/CuozhyKEKzStB9tIf5HN77lrRAtnxB/Neg9DaPRAwiS5hEdQDXo/WFu7IVMJo7HrwdPZfPBveWJu1NGJBzYUxNsX/kFNN8AqUxoGzo/ZlH2snK5kQydRHzF+lY9bl7gvZu5msnffdMGzpHPdWg/SqmMs2eNcRxgr7bQ+Qbhc7knR/SxNBZX7KvdcOncfKBLRht4RfzYhIx00zs3f0X1ZUI2MrDELNJz0TCNKYNO329PJZc2OWtdB8ESrXscdT+O7XYc1kK6Px19enamQ+vBgt9XPibLoDuJ2T67TzfeONLqqlRUllSiBsnmkXLM3dD7y9SWSVdPs4L7hXdXQd9SmMVozUEpRKkrgR2saodOxzi/pl6E6J2JmhmNBPJ8zDAroyASlmHpgBgMfA8GPnbeLKphvLkL4u2lVQZrM9kURZK874wYkLcEokFwlno+gWfHyYldNdIJ+5PQ31q/b0GyK3Y9CDeZ1L+Xx3jkCbvD95erMsgVdTmjpxT3zam/gyNKOTFyabHYhRbnVg8wApuvxbem3lds+Tkce999XAJZ9A3IKZSvPgJFZgMrQV0JhrUpCcjU++FgpLh3hbZgZrT9ImWRkU/x07ppt3DhPcDf3btaNPuY55b/GKpJewsapij1MPwFe75Jnq9hkmNrPp6F11LFAcy10g36kwk+Yx3g38Vmv+gJu7mjBcA1mKeMgg9YLY0nBUDPHftTzJXIFo9ZbDJ5Nbb48bmCAPp53EJBTPifOCinf3CtrrCKylCFyPOc/4vInymsH+f+otYUWdGp5tLne9oVF4suZl2fkknl8OTDGgDeylDvbp+F8CxrEUv9G4W3A7BaoIvFXIe2QhVz+0b/0VAOpGiZElHkIats1i7Zt9BejEUAoP7YlphXdg8wcKxyk19NCGFJM7uFvex7p0T/h2AiYhQXuJ8m2Mbgq8VZYFbHpiXpMdLqRDDmh5mZQ2CAsZkOSPuUeU+4UXYFUd0gBo1T99rpOMt+BWQBEuwbCpYBVagHewILJQ70/hztSjok+nimvDMB8vAxLhFi/HbtukBup+zDI9q1Ol/JW29NYJ7iBOoZ6GjPZzOHctTFtuDlIUe40bDLS9dVYHy06uDL9Ui+Hv+7+KqP1u5Dmpo+0668tFso8EWGZ3DIYAm6ZnhCVGa+U1PU5fFgBnC9yIMVqrc6Pg4W33kCOKmmO89AgbBi0MtnjhuWOX8SDtckCWnf3NxsGA3IBv3DjLRopfapCIpwQyXlIACgJNBw3eBYgDXUIPMJMpV++MlMVWeZvDIIy3Nn+fv59fmOlhvB5UIniH/dNbyBvxrFaZnIVEqTmX8YGaBOMLrBrHwvEd3ozk/sMNtpxaWMvuSvTyM9+Epd3QMYoeMA35X8krgHdXwUZOt0mi3tUqlUDmdrl/4NeL5rq7wz+7/TN3SnER0KiA1585vYGMQtGz/zBMrf51Yvothgjda9KmV8jIXBG+qhfHIOW6q18KBPvP8U1OBjzea0ZOMNqDajZ6pssH7Nw1smMZyAPdasMLJ7HRuyXcs7zjdqeq9RVKT0sV8Wv0zZWZSKiMutv8gCt4Njc9emVa9uH7s0zVou14LY78nJ6L9TdRDS5EBerw0Xj/+bQupxd2ubfaM8rM2b6eCORrazWDXRKr/oOdMDgc9b7UXyznmYkU7Xo8F7UBEtZv/Sd/jKkb9Gbd17ucF6L9cLCGaWeMJfUMlrho1+e9N2+CWZqw9OmvLLefHqCeUBPCYZ4NlyhJrnYV8+0T8e0QG8OuXQJ2V1NmAk2uLUFEmgXZS8SI8RXPRSvo+3O1mlfULBEQupxC4gjkr4tnzGUyyZSI8NWJ5tMJYkNL/gzcC+UBXLBA+AcL3YiQdRSSQblJchrid5HcE3Hnk90k1Ul/StG85wJlx37szBSs8Ff3/XpxQNjFjY8+6b4UwUNy0qOardlsDaFd7TbUOrqtUenWtIDKOJCJFqO1RABlka22aT0KPCH16rRHuWhsqRIF6EZfL7JXJo2cmcveXnkfl8JufXcukS+aHhCmyR2WizFj6mJrkyIPcMpyMwKRWaOxu3l/4uvy3Z64ae8I6w81NxwAfC/CMqdtDACS5Eb9vvoF6Hnbw4gS2ujZzIa3o7oe6u3xztk9kVPX8hdgXAclx6lPLoMBJXXvkzvI17dRXduhhswewvqr5+Wae68mmkfYlg0Apv1CHf/2NBL0Buf/n05eCr++YA6elHIxqbPJGHAY/auyHbCdW24UmPhvvql1Ui2TxhqWmISYXmlsFQl2+F23N2AiW2GZe2JT9cRleLDl0I8sUkdaDOLxccf6wR5LpHtYHrdUEASC51wWyngSxIrCU3eEt4KKygM7OAnk3wFBqWTtocuM8AD38lQpCN01vyrL/Wr3zneKcRUqBlxawdHxCE48/PSCvFaXw6ggxv5379PylgGZtGGsG9sMQDUorHjdfoyi830gMfN9tsFGH/obUROsqB8afrxFk/JmzIQOZDzO6kzfztqGyOZFKDu/5OOMnTmPGuySymhxTuPPfqKTjgH7zF/b98fTgNn83t4iwRXnHdGRVXEzE+AtzbW7CmahwF7Noca2LaDKIR75kKFg1MeJF7RKl67IjZ86v6YYMSIGLYW9UPmNs8T3u1eRApX9ILFszj18qD4LNYLK58Y1DpVA/7jUU9ObfcuQ1c9Nq2sHQGAYP3mQCxTCuePZ0p2LwZJ4nQgH6MZbyhYGeuTazWe9ruAiWL+LyayJi6lvZBUS+6MJxWLTkkLEpVe2FiFv1HmVFin2BpzKU1EJuHESkJo=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>