See saml Menu
  1. Home >
  2. SAML >
  3. Examples >
  4. Response

Response

This example contains several SAML Responses. A SAML Response is sent by the Identity Provider to the Service Provider and if the user succeeded in the authentication process, it contains the Assertion with the NameID / attributes of the user.

There are 8 examples:

  • An unsigned SAML Response with an unsigned Assertion
  • An unsigned SAML Response with a signed Assertion
  • A signed SAML Response with an unsigned Assertion
  • A signed SAML Response with a signed Assertion
  • An unsigned SAML Response with an encrypted Assertion
  • An unsigned SAML Response with an encrypted signed Assertion
  • A signed SAML Response with an encrypted Assertion
  • A signed SAML Response with an encrypted signed Assertion
` 
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx2d5b2f9d-c3c7-6c75-6a26-4ef60faabfa1" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx2d5b2f9d-c3c7-6c75-6a26-4ef60faabfa1"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>Fa7deuRFsfpatXWLthCy1bfEUps=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>oAaPFprFYQAjukCBC5RYFIu54I2wbPTjmNtoNgbOUFI8/aioz5twH2j4pcevVe31YkmIPtBg1/6VJk371l5flHbEcwLyoFiz5n1dmSXfyu0+TDdMK9Q/Jc3itY0/cttVZS65WWsRfbXFWurz7i4l/Ud63SZCLcg4fCju4OmPRls=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx27b708bb-feee-b882-19fc-bad7f090d864" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx27b708bb-feee-b882-19fc-bad7f090d864"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>SGW67Y2m0GWRvBSKEMkhzj5dP2k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>f03no4kGRXuITa0IUTIzqoD89ES7aiEK2nbNHIk1jDCot9th5PXdNRo0zuUxYej80CA1D+U/oH/AuWT7yKqlnmdl0OFWUZ3T1AnRH1PuqTFZ9PqmlSW4tnfW5WOLMy4x8pkvc5HYzifJ7WjtDMATEbOEqj8AjujMWh/w7ef1SBQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="_d71a3a8e9fcc45c9e9d248ef7049393fc8f04e5f75" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx1af67a78-8dc5-9efd-a489-ee97e8d1bd0c" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx1af67a78-8dc5-9efd-a489-ee97e8d1bd0c"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>7akEH8KDvOMJd/kRTWt6K1h/63k=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Jp+2SrQrJ0c/FdKxxEAUEa6JV9yGWTNDcZVQKHW4pEg73K1e/6hchkvqdFzHaiueBQjOaIYA2bW6SHbH9pQfyUe48d5scYfWq9YTauDhBF2ScmkWI5g4RWp89RSOIyjaUhJLQuA/0pNIsGFVAGHYYY9fqWglqEOVVi6DYQi96IQ=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx535816ef-e747-f7b7-6872-fc3777864de0" Version="2.0" IssueInstant="2014-07-17T01:01:48Z">
    <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx535816ef-e747-f7b7-6872-fc3777864de0"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>B0K8vzg9R0HnKVUPJTkXq8moPdI=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Dunu2y/aTM2FzqzjpR3y8Ro7Rw4x6FiWx4P5daslPxYK3xkPtBXEVGZxmtCnGp46B5iBh59jyTHqA2bbJ0kMw7xjzRenrJs7V+jIKv+H2Q0/88QIossfMdxzOS17eK1QVivO9VwEsnVS52nubE9zmQSc81vB0vRgiUKJsB3Ov1E=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIICajCCAdOgAwIBAgIBADANBgkqhkiG9w0BAQ0FADBSMQswCQYDVQQGEwJ1czETMBEGA1UECAwKQ2FsaWZvcm5pYTEVMBMGA1UECgwMT25lbG9naW4gSW5jMRcwFQYDVQQDDA5zcC5leGFtcGxlLmNvbTAeFw0xNDA3MTcxNDEyNTZaFw0xNTA3MTcxNDEyNTZaMFIxCzAJBgNVBAYTAnVzMRMwEQYDVQQIDApDYWxpZm9ybmlhMRUwEwYDVQQKDAxPbmVsb2dpbiBJbmMxFzAVBgNVBAMMDnNwLmV4YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDZx+ON4IUoIWxgukTb1tOiX3bMYzYQiwWPUNMp+Fq82xoNogso2bykZG0yiJm5o8zv/sd6pGouayMgkx/2FSOdc36T0jGbCHuRSbtia0PEzNIRtmViMrt3AeoWBidRXmZsxCNLwgIV6dn2WpuE5Az0bHgpZnQxTKFek0BMKU/d8wIDAQABo1AwTjAdBgNVHQ4EFgQUGHxYqZYyX7cTxKVODVgZwSTdCnwwHwYDVR0jBBgwFoAUGHxYqZYyX7cTxKVODVgZwSTdCnwwDAYDVR0TBAUwAwEB/zANBgkqhkiG9w0BAQ0FAAOBgQByFOl+hMFICbd3DJfnp2Rgd/dqttsZG/tyhILWvErbio/DEe98mXpowhTkC04ENprOyXi7ZbUqiicF89uAGyt1oqgTUCD1VsLahqIcmrzgumNyTwLGWo17WDAa1/usDhetWAMhgzF/Cnf5ek0nK00m0YZGyc4LzgD0CROMASTWNg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
    <saml:Subject>
      <saml:NameID SPNameQualifier="http://sp.example.com/demo1/metadata.php" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient">_ce3d2948b4cf20146dee0a0b3dd6f69b6cf86f62d7</saml:NameID>
      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
        <saml:SubjectConfirmationData NotOnOrAfter="2024-01-18T06:21:48Z" Recipient="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685"/>
      </saml:SubjectConfirmation>
    </saml:Subject>
    <saml:Conditions NotBefore="2014-07-17T01:01:18Z" NotOnOrAfter="2024-01-18T06:21:48Z">
      <saml:AudienceRestriction>
        <saml:Audience>http://sp.example.com/demo1/metadata.php</saml:Audience>
      </saml:AudienceRestriction>
    </saml:Conditions>
    <saml:AuthnStatement AuthnInstant="2014-07-17T01:01:48Z" SessionNotOnOrAfter="2024-07-17T09:01:48Z" SessionIndex="_be9967abd904ddcae3c0eb4189adbe3f71e327cf93">
      <saml:AuthnContext>
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
      </saml:AuthnContext>
    </saml:AuthnStatement>
    <saml:AttributeStatement>
      <saml:Attribute Name="uid" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">test@example.com</saml:AttributeValue>
      </saml:Attribute>
      <saml:Attribute Name="eduPersonAffiliation" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
        <saml:AttributeValue xsi:type="xs:string">users</saml:AttributeValue>
        <saml:AttributeValue xsi:type="xs:string">examplerole1</saml:AttributeValue>
      </saml:Attribute>
    </saml:AttributeStatement>
  </saml:Assertion>
</samlp:Response>

<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>D72xnY5/H/uhMfYfAhsK93ME8sS+O3IWfIQ8B7EnxiWNRcTmZZEqJkuz/wn88HNyGusMfP9KtzrUdOz/Wxm6DJ0A76S5Ik/AMj8StkZHt7zHxOuyIthI7xANaxzWA4bbOtX9fC1y30072R+OvnYF+gSxPsbpc4PDEB0doQTK6G8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_8e8dc5f69a98cc4c1ff3427e5ce34606fd672f91e6" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ITv/xMLZT0q3Yi9YPW+cGKEHNrlHuwkpriwiOozi8m+u20e0lUN4w8Cmle3vcp74NpEDw7/9rQzxkGkRRqvohLfJtS3nVtUELx2PFGYR7FoHkjbjLTRP1028Bz+cvn+NrgBYWYwqihrfruNRfqC1jozZorsr/6pZFcNkbgOPvW8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>
<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfx77282b64-877e-b4a6-b9ce-356c4b581ed8" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfx77282b64-877e-b4a6-b9ce-356c4b581ed8"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>77CSpYMZhOdyWIb+e7vvLRYil38=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>qshHUcuQzpyhuApphLN2R3kugiI6bf6fdUmDuuiFL1Kd/VXnBxLJrddJDlwP79KCcoa8ud/9vaojMF+sBUxhX5wW1qjZAUDCUkan7zL7YL5yxVYKE6w0mQxBgWsZcuhZhURe1cOrHgOnSwAn3K5eBUTv3AXbkZB6lm1U3YLMl/k=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>D72xnY5/H/uhMfYfAhsK93ME8sS+O3IWfIQ8B7EnxiWNRcTmZZEqJkuz/wn88HNyGusMfP9KtzrUdOz/Wxm6DJ0A76S5Ik/AMj8StkZHt7zHxOuyIthI7xANaxzWA4bbOtX9fC1y30072R+OvnYF+gSxPsbpc4PDEB0doQTK6G8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>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</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>

<?xml version="1.0"?>
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxa8384982-c8d9-06b7-407d-fb4eb1dc0dda" Version="2.0" IssueInstant="2014-07-17T01:01:48Z" Destination="http://sp.example.com/demo1/index.php?acs" InResponseTo="ONELOGIN_4fee3b046395c4e751011e97f8900b5273d56685">
  <saml:Issuer>http://idp.example.com/metadata.php</saml:Issuer><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
    <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
  <ds:Reference URI="#pfxa8384982-c8d9-06b7-407d-fb4eb1dc0dda"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><ds:DigestValue>gtsJULdr/UkfJ8MFtF5/QtjN/7E=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>LkjMU+s6fkUn/3h3NAopGqgNopY21zddC9LFztNEgyZSJ54M3VBGg7jWGvPVDgbWvMICmkRpDJFkGoy7BR3+OrlO/rPbjpuoWD8DPiPIUnoK+3dUW3bQsE1jfNGzx/QtOBWIedjGgwQLEwX88WSzn4Mmhvy3ptCkDid2gZt7u8g=</ds:SignatureValue>
<ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
  <samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
  </samlp:Status>
  <saml:EncryptedAssertion>
    <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Type="http://www.w3.org/2001/04/xmlenc#Element"><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/><dsig:KeyInfo xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"><xenc:EncryptedKey><xenc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5"/><xenc:CipherData><xenc:CipherValue>ITv/xMLZT0q3Yi9YPW+cGKEHNrlHuwkpriwiOozi8m+u20e0lUN4w8Cmle3vcp74NpEDw7/9rQzxkGkRRqvohLfJtS3nVtUELx2PFGYR7FoHkjbjLTRP1028Bz+cvn+NrgBYWYwqihrfruNRfqC1jozZorsr/6pZFcNkbgOPvW8=</xenc:CipherValue></xenc:CipherData></xenc:EncryptedKey></dsig:KeyInfo>
   <xenc:CipherData>
      <xenc:CipherValue>uKdC7JZ2tQEL+ITbx9tqfmTRiV9Z5HcfqsPX06DQIKxXEmae76WJJj4uDLTH0SwYS0eDVB+5/edKvYnFkIDjxhBAKWSo2eJQvrZuKlQbs6DasjKpA02e0dFCp0NRqE65fEn/x/+Wd1KRLW+Z7Moqn9k/ZWNvAZ3AsuMoX5YQKCTczu1wG3ZfwLHUIcnNLq6FvzOB+HDojr9b9VVSLVZTDJow8Pz5mb3IS7vEklZP6T1dXiHgQBjFYoey/vu7Bc59FvpIArPmaqNj9XDPZfuAHAxU89KAsPkJILNm2pEVDC3Ff1xYVzcLxe2l06AZiICDq6lLKhpJe1Be9Ys1POZfA7dIoU6wtPjOSfcpKD1c0e39MTHBFG2RUVuORLklSUYeMO1F1x0XKMz03Rp3iv9U8eJeL5H9QB76nuzqLfVhl+iDqGTbmZp+ivmv1cJ/M8XLnNgGSYTIMoSNDXKJmJzhIAARJXRykw8pvBi423h5TYfj2qLh5Gr/TE8Ev+X8yOAYrHIw6blwiGBqRNSG9ua2e4iHOULMreMS/KdtmKDNP5MkNLPBaQ5Y7R0u9QzWy0WAgqHft1csDsrbpvtj7LnvkCFum6I2efeHbhotJtjDCMjlM6lBly6ba7aPvfXuFk6sBmDpm2tzzd9Vr+NrNpmGmhTUDtGv3din+rslXO7htXBv5u5e/QxBpfmL4WE6ffp8ZDANQAZ5vAxA/nFbO6Bvoh4bqTkH0xGdMQybNxX2HpdHxssQkqzcbYqKC1wH62fD8GeuFUbtkfsXfzVd4U8Q/p1YglVjga8qoFnvPXyJVkOKyEvgmsuLLWKAc9TkmP8yZOhEQKLzw5yiDIZKgUUFpLZA16qwho8enHsdKR5zmf6guA5aBgMxVGpD7/eb0QswIkz527ZuXRJiO6BcnH1h413IgHPO2EkOiiGrakwJ58t3sM2O2oxZ3Zgci3kzo6EV8IjtsgCa/eNTYVUbbsC0+eIwV/H1sLx9LDvHyHyVhHZ6cm+OoXRWBOaHAT4HftJB8dC7xm+bKqhj4CdZn3EoeiSL879N1+V6gOSK9UpoZioEJjYFeUIhd5eQW30AKDqXDA79XzrcK25UxlBC0ss/RcbQ+cD3c+z4hwvrjCrK/tCLALUuAk9dEoTc/rg7ySQH5tZcSRjk7djytG+a2qpANRdk7gmbqyoJO/ciyDPg/gNDNf0rw22PoJ2Tr0c6GIhBDz3trsMZphRhO8WFbf57gpHx+RYSA8Pab2yrchwIN1EgiU/mfzgrW3jP7xgSdVCWx2DgGxJQOQ6jS7HAx5ptzQ/DZDfmSgOn5aCi6XklqviH5miKPJAiQp3G2QJBcBYn8UBiyClkDmSNC+VVsEIldrjJCMI4JzFuWb05NhNe+FYMBKm54dcMU06V7FcD0bzcqaJCoN3JDe9idBUfUm3vYDI/9g8PsCj/eNLWUYhTCVMaMp0euX7HLbRnYnAhoiBJxKsXyfBkOJQNLUFKmWxWa8J9G1NU5DHMcQOzDwSVZ7S8vuwWOXRNy0CnZfmatPLV7PAgXIhZ/4I/7PYbjc5A3LzJvFNhGGHqxu9k4y2jF3yvx7gVzPsTbtl+mYq14JKsL8kttvmk1tJOIvRWZ8MSXTGHx90jRwOllA/r/J3kzZO8we6YnUI1JoC3ja7C30A4Set+RCQjfBY9YG7dvUt3Up3DGjT9oIQ9Fy0iQn8Chubj6H0utT1fzx42wIW9VaGUydMft3j5nzj6PwWPwp+RO513h2bLp5pbEdHGk0VfcKzSKDvWH68NjEg7doTB7bAK5ZjpoZeMuk79XRmgYUHPbMUV/F1iQctZ2KuTFGDe3m+75pmUkdr3uv0jU4DgmoLN7ta5Cn3smQw8hPumk8WprYInz+upyoY72dCzaMnGMlB+MRBikXTNVFtdrPrgPPMHe2c7gcs3ShYZ8y/92xsWBUEUNHyxL3tm4rOC53RN0++EV1LRVVfGHhlOL0qaSHHY27TStb4AaAsSEOarwoepbl6gjQJF5r7LSHmeav46lmO0C5PGsJxCVXi0x+d7PYwqD5YkO4F+/tyj/PaTPEsMfgvCTxw4AgqRdIgN3DXdhWh+X7jhNPD0N1dS4/UYPbHQ64K2hxmSvaPSytz6Br7Ms5uj9skepxvqrwGSlE1LWsx2B1G+DNp/rIuxcKjC21p8Bz8WkbF5rpD3Cm6Unry9qidjSpgvtAt//IzGU6Uhv2agtX1y0j6qFkK/7nNjsKG+Fs+kACGYZtD+tSr5k/1xBl+2ifeIC0g1teJmSSw54uojsXcrStFkU51GMC6pKX8ra3kxCxeFvMH1+dopPGJEt+8oZ/23iBWL6NG7YnCxytjFT+GO4y3MWkgpLSZRcFN5ZsUIunrUU4eGb4FC3LIfLf9pmrTfuUfYtPFj9OIQTgOsGC99MDtjpxIz0OC6DfJmFHGJBTvPp2VurBr8tLOEN00kQdf4Sj5AUjjgvxVZusZ+gSQYUSCnH4yWKSEbxMft5K5EVQ09r9aRg9pP/0wVn6AzmXfv5yACEN9AgPixFPUGYkXD5Iq3DOIwO6mSB3b0JQPTeBjPGBXLJ574QE9uuKzcckIvQ4j3wlV1SlYYVW+AHS/Sjj9aAejEokrsgkbbTcFDYhAGYr2HU0EHfGCa27aMAYawV/nRXCKuOVHoCmhLTtMlvC2hhxO3zl+DUCW4++s+2feb7K9ubX7R2g7OPtHKCQ6IE0TcncSiGLzyS0SUd2maqY1Pt4MT8r3dwnkqcBOOqgKflzbZSURREqa52WdL2I12C55Q0oVKium+SbCeAh9zJbFTn5YTU2aLe4ZJ6o75M9AwhM/J3O8xemRUWRPYyViCTVbCgLtAPBQQDjuZJZ0aoHb07mfHDpasgZMotggVHWi9Kxgr6cdy7qwvsnIAnbFEIWxcl3e5EJfvm5shY79M6B4hIAp/ZN31aRjc7lPEWnKlPKij2wC2ROOIdB5UlJE8fPoMKWbJsSlb2ta3RURTbengtDrz/S3vqOctlxvGT3YcIKb1v7z9DExmxfyBQSzWcw+ISYyHEYsPOtSzGJ18izsy9nzQcywBFZQTeLB61cF6oCVgmJ4P+Nsq6McNaScsf0n4Cis014zE6zUtv81h9/PtAJPdtAjBhYfOZAsmcDL9UN7Pa/93+bgqzD9feTYCHhrlzAlLucZJdLIlwD5MJqLv5JlxQjUwVT60ohVNhY/bYKH6L/gl/Y5tnWkH0MaSblqEst2e0zg7WlHtno9n43SBqRociZYz17ChPEq02LIS2kZq297ASWDVjOpggny1ljXOd2MZvu2ONloQNcfJ+oD3NaiXBzT09KtHoPwNj9XBxvm8PNacVdDvrLodiz+eOo+alAaLXEUhf5016EN0HP4yE8E68SHO59c4gATe4WP5pxiHk2INU6FN9mPiQehoELuZW45Xw5i4IhrCtsbyAT3PL1rZPcjY5EVHod8XZDv+o8Ecii2qCq6Tg068IRZ38RIU1cXcU5s+/MUlGJZoq3As63tlMGO6x92hXdvmX/gpVXAIfrUis0afX6tGmupRdzVE5Nj7EXg5BjRi/tJYY7ppiALj0ZC+8i1aKgzQpY0hKBr8fsZFMkIwA/D/JG3OOOlh0dHT1GguCKEK6VFZBEqdRbDFXrA+t8EjFo/5704yF7DTpa2SSoHPeNIArkOr8sPBKdjtfSKIQY+P2O555tc7PlKUZwy1SmhFx1Q1+IM3vSRJrYFXl9uBKShjDEyM+yydRFQ0xp7vB5rJb17stT/L7T1BV6vmWtT+f1WvvrelmsgltZrxOXZNKJZp06R/Ur25xi8x4ydOxL0RQxmrE7Y4qxBvzU2c+436BUXrDrI3D0EoUitHnvUak1g12RwHg5wNk+rvf/TL+HEQx7Lp/7Mfj4PxvmDmuRq2c8otoL+vePF9RpCyGRDlCGz2v0gqxF15U0gLGni9soqW2j/NOT1/TIfSr8FTAHUFAJtbZL0ZZgJVJEz4LNJpLgVYvYge24DDd7kv+yGLB/Qf5yFfXgWhbW7BIzsIkic54QEcffQ0FoJpETetqlTMhWU6l1XmZlDHamD4a90g0H1a+jNu4MVqigHEthkZaswoQcyZ5Gsez2LlMJZ9fIoYI6shKN9m4L5IH1MYJ0t6GgZUB2tswf7jpu6L1DBO9ameAu84RUY06aShglI95CYnTmEROT+4tgXlayd8PhXWML+epsHdS9umF7N+jKfjRnWuxOThrHpSTuc04l39UVmT2VnkHDonAWzPaHosxNsEdFmZY0seihPqn8S+Q7EnmsSyqNQ93A/iIxEA069lnfIEUmHI/6UGzzfT7/apqRzA5CjroZ/ea8jjjXU58E5gpFE8u3W8jCUCIi7SGeVhWGQB8yiwSD6TdT34sC9EVpNm923+C+dU6astLx+Tw78MpWGMbVImnXdU89I9LxaZUhI1sl/ekdnWtIz0oHjyh8efASWTDinoGey9H68hyZ4WbQy8/PxAZQaR2cRLSA0+BQQQAZcPJaelAIPJVW3CmmMIyS8QIFrvwLGGP/tn62tIfkD3FdSqgLRH6yNwiWtAxsnF6J3DfCrwPZKq4o3kOxCfn/cLfUQeELGFUbmlZClbTdRBx7VjyFTZtTzxSuYZFpcF9ABiMlPeh0vTVz0E+dm3nxrP0tqEkqS1Lf5RWXeIpV0/xuB5zQowEBPN5SwCu4JHBr2iVsLS1CIOdXAwOCXJQOzUzI+zE7H3aFfgewncPGh6ipf8dihpnscfI7oFqT+nn7tfWx48ZMDkwHy9mHBfXmWc5x6+Sz5XoT9Sn0fyGoI67yWfOrqLBM0juZJz6ZiBQF9u/HRJx3ZXVipoaBCPCkkTg8bHU/ptZDTT8+tQW7aecpnEMAfgsna85z+niyPIjLJaQ47d4iyFscB4tSUnvq+you+Qw0g4sU1co4/39tlD2qiaTEIlgQ9U4sHHAAebAUOovTH8lI+BVX+FwZVvIcFuGLK0TVhJMAz2jS5TZK4KdXICSb9wYc87wFFI4jMHqURoQqPiMcU3ZLojSEmYphHQExuOtmGDg20vdtFI+GyjTtITwk5mgsuACTTLKYEm2emZur2nGLgef3eaMkJ8c11OhKVe2U+X9TS7dV0mgkSFQC3Wp//g0Rh7+ulUMmXwd097KDxKXRdp41EkotTHfxYS3Zf3Q+4CyrfjiX07D6kWoJ7tU5PmA7Nz8A/iQhBeYv30LSeQIUruGsROLxE3uU1ZNxYyL768NgJxJU3r5S56oy9PKCIKAdyZQyYIe95T7xA+2dxR88FpF75QtHbk0W7prt7VSTOqjhKhIZlSSKvwlsaxElTxVAY+UXoJdSGoH/GZ5HNsIpiQbXoNL4/sZGqVRKNFbUcYDAgvfUDoo/Z/k9Rp4CPgNxPonEs7UwLma1IXBlkpmY1SlOcTtyynFRTa2l9k7cCn6w5d+TYjcRt3HYlunO1mvZWaVfeJRf/Y6KJMlaRHDNP4RordBYC/YSs=</xenc:CipherValue>
   </xenc:CipherData>
</xenc:EncryptedData>
  </saml:EncryptedAssertion>
</samlp:Response>