See saml Menu

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
`
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx23a50fff-8961-27c5-2d3b-3ad484d95007" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx23a50fff-8961-27c5-2d3b-3ad484d95007"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>tYOulHG97a7B7v+pPxKSIGonUF0=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>iyqY6V9Cai7yvVPHvOyaKXVh8Z3fMuihfiEX6xTY4RZnBXgwYFEU7LnaVt4KN3VwlwfK/dUkY0mhpyNkLkya7MTAj0/uEq0EI68o+UzNIm7TbQ/UdWlF+8swudMDbdwVJLp6ZAuk6tH9eG7mOQ+Vb7csQ7cjIMBTeH2rfxIoAs4=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx9fa74229-f372-bacc-c44d-76e6fed7d7cb" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx9fa74229-f372-bacc-c44d-76e6fed7d7cb"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>1u5a9U3dGZpLsGO66VdmfJnogGE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>RsQ51tLuJ/wI8v1ndLWKknBJheMHSz1Bt4TS/S//IUsiDKm+jeNYIFsl39yknskJZe5K+rjRVvzaV5IrDyVN2rztvJ2tY2QZHHBgzGOWwXgOf5ZcQTjAz6TsH8NONSqlxxcCNiC2rDsixDk1J4dI0zfgi+NxjcbLSgHewAqT8Oc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx642926da-58d5-97e1-b0a8-9c35c76d8768" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx642926da-58d5-97e1-b0a8-9c35c76d8768"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>QHUgBDWnZVu8tZGIaE8k+t5Kk98=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>lrUGkO2SGWUVOP5zFTPTNPlnhJBHyGyyv+kRrro2hmryP4OMBkcTQh9ssihe4oBK8e5LSTjj/k7N9zzTYf2rb6HyeQxILOIoGVk43RseVpZqP3CzJjsdX9Kvf3qV40Ar8tFYKaZG9AKm9L7vZGULWIrAI+Ssvbuv2O5GxOdad0Y=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfxfc2bba0a-889a-dd1e-b115-7b97ed65d647" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxfc2bba0a-889a-dd1e-b115-7b97ed65d647"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>3jm5Cer/w9XgQ5VN/PdyF1W78+A=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CjCF1AHXP+IzGMWOGrTbgGHRBizuR588fFATzG4W1IyUsjmQRa52JbcTuHqwDna+psodHUHTqyxJ1h4O9EXJ7SrUEKI0hRGLVbKmTWcdfPWNUVqfb33ye+OewIMdwnsuoj/SWvh/U2J3wfFQxgGSuxQSuPTFxPcYQGKdpiDk/rU=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ENmKRGRb5KZeSxPRuE6/8zMa7DLPKXnOluq3Yxu8fY0f4LkX1hewpVnvhnKsOkRHjXEaWdsNbpbFvGq7uthxbq7iTZ4CS0vI+2edWU6f5XdadvlagslAP6ejuoWPJ+8337Zi2uGstqZlPfqUShSIyDotlkMRdBdwW86h4E+93PA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>T+pyNfR8yMMFJZ6JL5B0EtpgjCMUZLKvLCAXk6hgbMsNAGLir3yFbgnJjdMdpaptwNOEQAGvGViepPHMYrmo+ieE6Jk4LWOduXHPfHxRYfRXOetO36xoM68fixBrveuBhWtOhhGFzigAhkYqevtUkHDqcOz7eg3eOfh3xO1xrzg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>biktse7lTLGzd4i8LXJCjqn5OOr07HlmcIbkKCjinlmtHd/R9BSigbsGJ2V6jpEXBhiGXw4cqI0w/NrRqZ4qxjtRCce8Y/Dm7aa/6he9Vee8vYQ6enlVhsQQvWUbVEhvR6/7FZKNyzMg1htDrRNe+zvIX33GWHN6R6WIxfnFcO7d4xXxd5hmVdNhQqBZqs/d5bYyQeuAFRHHZKS7qcYjZVd35nwu3csAIEUfXuncRjPxg56ZhQ3GcizCu3LItsT40Ez+HznLZlDJSscgbTcmimO9fKZaHkmlyyT5Tc8atClJimAgZsFBZy6+WmMBWHDrVcOFTVACSxnp591jSGHoAc6XIlcquGxL75ItcPh+Fa4W6dYVvH3BQCwwEdURt/XXFJ/ohPjzsL9X1cikbH11jGptJ5cX5GIWxLgQAEvqdV+FdMzsbyRRUYUI6Nqs/36DUjvdaOiDWnbMtamGG+O/EASPZBz++7ezNLuA2Fk+VBWwEQbBtegG1A70w3W3nl3Z5oBShFaPpkcnVWW4/5WMuKOdgFBjAQM3pYfLXNFYR59YLNKOg/PoF6LBievwDpOGrSiZYkPSk/vSkHTkbcP5Svo95Z1AjKE0m9POS7TyMohRwqkPH33BOxvz1kpkUmYpQKnDbss+vr5Tw+Mo13QEiObafXT2IqLqeN2eRzLbRllTY/5uaneG5oBPQIsTaujrqMFTAlFhT2vA0qvb0AslzKGNQGvqLozCQCulbLz6lJ1TCQZcbhgrAEhgNiE1i5Yz6gy6WTactRrQSROZepZnXsYc6VD6W7r/fnV4bYo+lzouPThapMc5AZj9Yk/7xRjhlZ8IUdHzxNpY2jrEQRnIKLbac3rmYTlY06Tjo6yD/4l0wjQHDIuP2UjAzlbFMEbaKWpFOhOsEraE2IwT4TcCovgc5+XeJOy17exnroBesNVAbTTmoBUZmXFFo2rBVKBdVsPODaxV3SoRj0E747kxr4zh0zyAx+3hFkrO3qek336qzDfn8VWGjxkinc7ReYJP6k/o47BC4lR5efU9MXCTHIgq5PzGPD6bweiHUfJ43mJlV9M+bSca/1h63Jc4EEaKxyvo3n+x9gPPUly2fP5UXDBoHMeXseVNpYS0jpt1spOSzFiuU7I44v+MpiqMUvCJRbA+avW6IEeSjkk0H89pG/N1dq4KHA2iiRUp7aEgniEal/nqbKfSppexCqdGWngzvtfS8jzE16BvgFgkr3JBdrrAs6JbmXhO7JfOoEaAbfSvIt4uCeAF6wL3qGbntiRyipbD9tFo8y+YsrPCRtu2jDKZ/vfmL8f8ZKe8/n4vcfLQQIZXGBJ/jeNRtpf9094s2uaElu6tjnm4SsXrp50ycsd33qpeqKv6KubuZISng18PE81M3GY+n0cENhs8fZ5EIWRTS6MNH0x4GphGo7m2WcfIiqun1xelD/BwRdB4mmfJBz9I8JHyWjL0MIQnMDifdQFC9KldHm/s/zpsRPgE8jTwy42++31tqvg0+XnYYycd66awvG5c+XqxR9PuXAJgPUOUbK3/AkEWCrcD5ZB9pxz5gOxJL8mOop4cSV4Rwji657VBrDBwDjKBqlsfklT/vwy78oQl1JgWTzWGGhCJt1ZVEmG//KzRpb6nmolZuPMTFioL3KWXdf4ubIAWDbE4tNhGwmzf+2Jf/QIEymfFNi26FMeLTKkBv7dkOwXfSSlpjFofPWIDlP6iWrWTB4LHWwFTexxKb0bNh2+0hasXnLZXr/UA+FBOW+sKnxXbSFRpcs37XB0fL2y7LQqlpoz0v7qiRo+EXFAxDWdsivZkTCXb6jAz1TY55T8NyG+J+gh29tfWmI3eggmsbNv2OUu9IKd3fArvABSusaEuZXOYF4G+EJXme5uYxxd1bedMuNNnnojDotbc6zQ6F5WcYuugxaDy0MxgnZ0Rt6rvz/WIS3d4veW9s4xYhvLQsmARseGxla9GcQr5k4V4aUIegMjvmpYyxp7BistCjacwlf9/5rbY550t7XsSmaaSyfGTw8ZFlSWzwLimyio8vSyvGWPuqwT6/asNFs2mPs/MHHGMj3xHvtwQxvNZihw8dc8TtfwE3SbCKCMksNeGdb8k2LBGgOELfcbhw/DG4rzOm+EGPViDpm1nrwI/w9h46f1DErX2DemTepK67LEqwtYqGZKjO7/SDKppwEoTd4757z1MLR/5F4BcXXawJn5i5OYfEL4jqhYE3YW3+Wyf7xpyyVBEFfZNpPkChm2iKStXQUi8MXGT0245gg2BA16Lcynakv78McZxhVCYXCI4jsD4YoAQC81vNkR/44ZKrwNRvrmsy742DiBUUxznFSNOauzUuiD9fWoTDKhibuLxbDQaF5V+I78rZHaVn/saPFWq8n1IPXL/GlqxBYEd8yZ4KCkWBJGoy+mQll+RgCVrehz0XlbPdJ7Ajr4r4sixxsIpYnRBKEtoQ5Olp1l0GfkJ+612n2sCXHnRoP/zWdeHrep/oClJ3eZVgqxuumI11u9HQiTJvd5LcoO//NWXf3p7IrklmEZ/8+dUGj5sWXJ5h8UzsnTYTxGQbvCzBIxwTL9XeyxTiRpTpwBXt1Lpd1FfvY21FvUqSjTZMr2pr5xOTeY4HJqI3mhfOJ6bBJ5jAuzxRp8k0BFaxnPBPp3cJ3qGj5XknoTlwGTIz3iuZ8mUeCVkcVNveiirFiVWZ2xa6+VFerXQgV7LojHGbWCt15xtmt1TMJd4pCw21FRI+XXRmHbFVlKIM/cwcP6xIfTawqDCJTPgCStmaKHOs6WfzqOAwN4JIq2DYztRpiPhe8H9oZ9MAcYV6zx8OiGn2S912yZDPIg9DY5yTxZOu0iFdHvDVIAekJ9y4FJSQix6NLneNstGz0wmshvPSmjoYjQg0q2q721oUvfy23Vgd8zkEGkRpXbRxP1qgh7T65/qLGwmqWhhvZBE/+Y7BAFcnYOQtMQULFUwi1I+rdRCM8hxKkspg1wYDdFLWLEqdePnq6VtuftdkeIX0Z8CAp0L+H+WzZnUlzob7sgdSer4pgP2VmlrlDdhVYHY81tdynL7oro37JzSVuNWMzdCY5qX2+HUV8sxYHMd4RJW528u0sruWWnzPoVOwxOgJ1boCBuT6EjJPBVEiT63aiTXI92gfdTH7KMsdvG/Re0VvZa+WXVhzLtElMV3KRhIi2mdmR4ggTGSt/1cliIXWmv0DM+n6TuKZUpd7jVMqyOZv8AxDgio0Pf5cJ3vYCbEM+LJ9IpbWMFJ9hLs5Q6LWVtKMwaZIr4Dr+7cF/IPndulKW6R8E0Nx9jQusKjrcdw8WRQtUJDnqPpzQSSdemVSkxQgMB8zV7DFHr9dg5g7xM82rqY5lCvjm9tEhGHsKk7EsBBKHpCTm5Thi4PoLrH1qldSGxCTbtSU3cLAhiJ5UKnu+qcTqos3N0PYaEXEnYvNMceVeAkY9U8+UcShltZhnulVPb8q+U2g91tsnavQqRcjWfoSutUva9irijS+Nn1GR7F4Woou4QNVsue3PIyySFtjUoQsovx+12S7gdf/cyO0Xg+0b2vyBCAOz5QpEVcKiFkXHZvdtipbalbwzDrvehCqfkKItsiQI027VhEg7kg3kSvE4VzqZbDsU11IyEda/ymC1JGQ+FJRAKdEq2tvYUN4wnCMR/D3UHV6lmioYL309NHyohAnuzdXR/IhZoaRV0hxGqvbS8txhBCV92l/bw5aN74YPVXkW5+HkdRvGUgLhZhVAd1l6kNPpOQ8pJhbp/AsJpK5CbRBa+3/PBKPcvgkfQ8A5lvfWTT/OQDGrnxiTMvUz+ZB1t52ufID1Uq4ZZng6KOv5eEOWLIeT9TVnWs3gF3shDFwlP1OgcdGh7+Kds4HEHMe7BMbOdRKBDDnsIP0viYBKUulTNcenHy0MjCyLCwefB0mWXttv+Q/P7mOj3+Igu+0tB3FjW0m80548EVd6sbRsawuQmjVk6qbStGIr4irgKabUKdE6+3GQU/z9b8vdaxGu7VWEwhzgz5f724WTnPjCNzRSSr0VvXwE/J4/4zEvj8WxAUBPHV/BnudR6yH7X+ZeyU2opvfhm55C1OzjKcQXmACzTpjQlhUmfjAv63PiAH+ruRDSFrjFjb28z7VZHWXsJQrFEuLfyuY2wktj2gYzhyLUZRTBMPi8b5Q7gezmGlGCJ8jOYigNqDJAFhyIUpLN116E/ALMspwp8tP0Y+rJEp4v/n1VXA5MjncC3ktms7y1SOWxOXO5NJeIFXmmxY5VRdm2+ff7mljWXstzuEytldyHo0jTNaUHdXZI8fZh5vW9l+zED9FB4F/pO1puRkLzhmEIthXC5LCFK37cQvQKzs9jHNl+FhrIzY3DRsTZy4mzYv8xuQr0w/akPpnc4T62PyyLq3HJiQEmNUXt2Y/d2g30RwXkV5GsN1+NBpbzzlvq5Oi7Zl7Tv0zUM5PQ/RufO2LN4UnFk7oT94FneWqGnGUExkH6Ztm7h/Ltzrm1GKN5UYrB/nYXzwfhtS+kSLv/3n3L+wwcVdfSXGdv9//qe7SsaAMlcDnBtBNHfdORAUwOXfxaNhgjg3Q2wdW1APaAtVe5PreXUyw2Gw4ntOixLheibTJGAdc1daIiOjRl48wLBBCpgptZqACuRGleTZUSZOwE9pWXpd7apWDmC9iSZPQQkPKfp9+jzige1tTvtcF3Hk82LbTp7YmE3GSVIDhNcYYRXUej6+SI8LSolvnw1vuTmAL0KQBZPArkS1S9zA0uhvGTJh9rGDmElwCn4PoPJ4NLwv2wIyYNQOXyhnoI88TZ7RL9PwHechEhoXGPH3MMN6X5XESHHmf9f9cOZXFnG0HKLzOzkSuCvRV4nvKc4K93zsDXqn5okQHt+QQfT+suSfeUHfilSpwc7/4Rbbvx2PZtiJhl5k12xzo0mSnpP0ZblElcZotQjXd8/erPoRf7jy7ORTlf8VptW6Apmv+sqsOIjfTEi+2jLMqfblYh1OYStw827dH+2qM5H8KpjNudKi0QSRCrRC/1ikqNMc/zSJ3HjtVgLzLHDPzB76ZCyq9pz3Nc5u5CO1alAi7f+h/ZpLUvE45HfUVk2quW0ZbdXCi3MFDCnokTCDb8pFHGyAc68panDDRl+dse4l83BI41+NaXX48y+cLyOisKqoEqiTL5pitwkyVcm8POwICUamiixceeKroFGhcAvSID6NNcttq/Om8PwPJxT3VaQh0iLV07T+je9jX6BsNLUMigc1O/jof4Zo35gXnEKzQp5v6e+MImuNzF/blXvGwbD5WGofUiFJVYYqA0YFrGvvoCAEo9m17R5qLu/Xt+4qS2YzjO2k1Wdege+KHKltf3qg8uKhAFVVlDQPnzRnQh9ktKyYb0oIpFfwHZnSTBYS6zosAulyAaONYvNXMnGSD8T0lUb1N9Zbr4YtGrqspSn6hxHwUNBlMKwUTA13Yu95rWe+H3WdoGes5CVpJ/Jv6DLZrmOd5V/jXk0=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx8815ab49-25d0-66eb-854a-5e6b41ee828c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx8815ab49-25d0-66eb-854a-5e6b41ee828c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>I7tRrEElLuvpuB6u85RL8r7YR1E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>kDfL7XyS6ZcdopzrbkKXmLGuU/9dHirU0K72/W9eh9mwmxCVv+6zijo2r+jwS84QA8pwlhAe0coW21XucKJLAKmL4SU6rmaLiZHJqxBL17aNH/5msnqD0iFP5hmJnMbnHjLlbdP1OtvRH6KgibHjHhHXhYOlZvY1u5WatYRnpt0=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ENmKRGRb5KZeSxPRuE6/8zMa7DLPKXnOluq3Yxu8fY0f4LkX1hewpVnvhnKsOkRHjXEaWdsNbpbFvGq7uthxbq7iTZ4CS0vI+2edWU6f5XdadvlagslAP6ejuoWPJ+8337Zi2uGstqZlPfqUShSIyDotlkMRdBdwW86h4E+93PA=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx59e24521-52f2-59bf-f6a8-66fd8c4ea0ad" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx59e24521-52f2-59bf-f6a8-66fd8c4ea0ad"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>kN2sI8DY+IH+WkAs8fHWVqxuYvE=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>VKFHPkFdTMpWw2R71oj+ojWYl0Y4XyxtPaCef3H6XXbmyeXk0/9DQOUVBHLuzUf5WDSP1CUazSy++PdT+ixChpiZd3qPPU7iEVMQk7nMXmNvDVIOsBpVHEwiCbBm1S6xTY7lK0I+NlIelhsRxpAqSDMTzkfWOn8CMMAJ5oXWBkc=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>T+pyNfR8yMMFJZ6JL5B0EtpgjCMUZLKvLCAXk6hgbMsNAGLir3yFbgnJjdMdpaptwNOEQAGvGViepPHMYrmo+ieE6Jk4LWOduXHPfHxRYfRXOetO36xoM68fixBrveuBhWtOhhGFzigAhkYqevtUkHDqcOz7eg3eOfh3xO1xrzg=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>