RadoMark/cooleaf-saml.xml

## cooleaf-saml.xml
<saml2p:Response
    xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://oktatest.preprod.rs.cooleaf.monterail.eu/auth/okta/callback" ID="id3166083622150945988482475" InResponseTo="_e20b9000-6d30-0134-c4ca-3c764e211512" IssueInstant="2016-10-05T13:52:30.992Z" Version="2.0">
    <saml2:Issuer
        xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://www.okta.com/exkq3rb4rBuWWkVwV1t6
    </saml2:Issuer>
    <ds:Signature
        xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
            <ds:Reference URI="#id3166083622150945988482475">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                <ds:DigestValue>T+MyjUryaRwm9T3dvpH/8wf/LE9OThd9G0IgSjjY07E=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>
            vEGGOdDHtUUh4jrqedG87taCfm6J0mGW+k1Xje+LjtMjt8kOQ9i0AHRmTkuW7wdEhF/+JvJgzOm4KossfpTTOXNgAw3aUcbylsL/A7ZFTesM1FoBsLnlvhyUqTLGamS/hnOEKGdqMWmBI4jwv2JIuRUy7zUlzScMJ8+c7Uiol5MLv+8xD+0VWohCeRI/7Ff93ov/aUqFSxvpRW6lUGd+EWTlsMx8Vr9F7q/A4onYnmPzrE5CjeiIYtsza7IHrHSoIRUJlaAhwvHHjkgUDWyPH1FikQAiag9joYyn4yZKJpRF7jJRZ56piv3k8Mo1hQZ+JtpqYzsCN6OxI/RDQ65SpQ==
        </ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>
                    MIIDqjCCApKgAwIBAgIGAVeTWhClMA0GCSqGSIb3DQEBBQUAMIGVMQswCQYDVQQGEwJVUzETMBEG A1UECAwKQ2FsaWZvcm5pYTEWMBQGA1UEBwwNU2FuIEZyYW5jaXNjbzENMAsGA1UECgwET2t0YTEU MBIGA1UECwwLU1NPUHJvdmlkZXIxFjAUBgNVBAMMDW1vbnRlcmFpbHJhZG8xHDAaBgkqhkiG9w0B CQEWDWluZm9Ab2t0YS5jb20wHhcNMTYxMDA1MDUzNzU1WhcNMjYxMDA1MDUzODU1WjCBlTELMAkG A1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFjAUBgNVBAcMDVNhbiBGcmFuY2lzY28xDTAL BgNVBAoMBE9rdGExFDASBgNVBAsMC1NTT1Byb3ZpZGVyMRYwFAYDVQQDDA1tb250ZXJhaWxyYWRv MRwwGgYJKoZIhvcNAQkBFg1pbmZvQG9rdGEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAws2lCPHgFUBvMzsite08QhqS18dDHT9Y73Pg5PkpLDrK7BiLShYHCJ0lFsuQH7IHlxL5 U/FskG44xRsjoe3dRIGq68gSOZNdXD1hFjR+AkAtVJfwlXCfWNsyDCH+TAMJllNAODyWVFwNGdoK IZ9ywircjSmD47dNq03YpxuutdhUDCEKzMRuidCNt4ZZu3HA6pi1NAlNm0JBVbLYMDuSl7K1G91U ThPjlH1TOpcO34I1IxF01EyjPhX7ZqPlxM0TocIL1NP43DLzL5sdcOHqAcS6cw9Ethw/hnIiHbYz l/AH8Wb0OrWtwQ7pfTO5COZhTOhLY3lsKB2NRXCVLbLrFwIDAQABMA0GCSqGSIb3DQEBBQUAA4IB AQBBtmYerj7U6SNCOcc/nCB0UFa6ICGCIgCJJr/5qVTr/1TETxUbOqJClE1fS+BARYXByQNpvJhx 0hF0S6ESKGF/6x2AR88QuNu8irfmOqjYxjaXTlMgVc0AyEKWPKHuGCkpiueLjZ/arU/Rl7u6TbXJ jOxZ9Gi/8GrwJqzRdhk3Xf8uJzMk8SeB6FhliWXSLaRdm44GfWS1x1fPb1t692VhVuKG0x2R2v4U 9Eu3wIv4+T0x7kTeIcc7Rs7WfYu4DKL0iTt2em7xFcoeuvHe5mAwaaSyOzDJBJUQC2YY08Ugf8ZJ EC+Vj+uhCPGZG+rQ7xt/6HxVkYPcDg5YOc2n3iL4
                </ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
    </saml2p:Status>
    <saml2:Assertion
        xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="id31660836222187201168570571" IssueInstant="2016-10-05T13:52:30.992Z" Version="2.0">
        <saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://www.okta.com/exkq3rb4rBuWWkVwV1t6</saml2:Issuer>
        <ds:Signature
            xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
                <ds:Reference URI="#id31660836222187201168570571">
                    <ds:Transforms>
                        <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                    </ds:Transforms>
                    <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                    <ds:DigestValue>ungoJp8Yzhh+STKzQhNCTdlrFbhAaEY/4BxlAa2gSj4=</ds:DigestValue>
                </ds:Reference>
            </ds:SignedInfo>
            <ds:SignatureValue>
                GoDf2lXdWn2i6Dyh24x3PNPZExo2ej0UH3ujfL3hPEyHxA8a6fZ0tc2lg2UhDDvPb90LjY1RobmhCwzPDej0VUxRmlKCJGNfK4NOQ5l1Og6p0FBBFIAE1UMsEcLp7uSUmhz38m+BOtvHfB2aQGkEQmZuZHMw0yotEr8gQXE0e35TIsbgJo05AGUaBLkkVpdkNPfbsZr1okNmdF7LfMEaukk+NojB0Q1cVZr1NZbF/JxSSEHoYCHclEh3piG3sPlI3WUr03rRQaLwpR2mBMXZ+bfuBWdGSTr7mc1+QBzy46YekifL+ntj4xnTcGx/yqOeTteomnHG5jycH9uq22C8zg==
            </ds:SignatureValue>
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>
                        MIIDqjCCApKgAwIBAgIGAVeTWhClMA0GCSqGSIb3DQEBBQUAMIGVMQswCQYDVQQGEwJVUzETMBEG A1UECAwKQ2FsaWZvcm5pYTEWMBQGA1UEBwwNU2FuIEZyYW5jaXNjbzENMAsGA1UECgwET2t0YTEU MBIGA1UECwwLU1NPUHJvdmlkZXIxFjAUBgNVBAMMDW1vbnRlcmFpbHJhZG8xHDAaBgkqhkiG9w0B CQEWDWluZm9Ab2t0YS5jb20wHhcNMTYxMDA1MDUzNzU1WhcNMjYxMDA1MDUzODU1WjCBlTELMAkG A1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFjAUBgNVBAcMDVNhbiBGcmFuY2lzY28xDTAL BgNVBAoMBE9rdGExFDASBgNVBAsMC1NTT1Byb3ZpZGVyMRYwFAYDVQQDDA1tb250ZXJhaWxyYWRv MRwwGgYJKoZIhvcNAQkBFg1pbmZvQG9rdGEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAws2lCPHgFUBvMzsite08QhqS18dDHT9Y73Pg5PkpLDrK7BiLShYHCJ0lFsuQH7IHlxL5 U/FskG44xRsjoe3dRIGq68gSOZNdXD1hFjR+AkAtVJfwlXCfWNsyDCH+TAMJllNAODyWVFwNGdoK IZ9ywircjSmD47dNq03YpxuutdhUDCEKzMRuidCNt4ZZu3HA6pi1NAlNm0JBVbLYMDuSl7K1G91U ThPjlH1TOpcO34I1IxF01EyjPhX7ZqPlxM0TocIL1NP43DLzL5sdcOHqAcS6cw9Ethw/hnIiHbYz l/AH8Wb0OrWtwQ7pfTO5COZhTOhLY3lsKB2NRXCVLbLrFwIDAQABMA0GCSqGSIb3DQEBBQUAA4IB AQBBtmYerj7U6SNCOcc/nCB0UFa6ICGCIgCJJr/5qVTr/1TETxUbOqJClE1fS+BARYXByQNpvJhx 0hF0S6ESKGF/6x2AR88QuNu8irfmOqjYxjaXTlMgVc0AyEKWPKHuGCkpiueLjZ/arU/Rl7u6TbXJ jOxZ9Gi/8GrwJqzRdhk3Xf8uJzMk8SeB6FhliWXSLaRdm44GfWS1x1fPb1t692VhVuKG0x2R2v4U 9Eu3wIv4+T0x7kTeIcc7Rs7WfYu4DKL0iTt2em7xFcoeuvHe5mAwaaSyOzDJBJUQC2YY08Ugf8ZJ EC+Vj+uhCPGZG+rQ7xt/6HxVkYPcDg5YOc2n3iL4
                    </ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </ds:Signature>
        <saml2:Subject>
            <saml2:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">radek.markiewicz@monterail.com</saml2:NameID>
            <saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml2:SubjectConfirmationData InResponseTo="_e20b9000-6d30-0134-c4ca-3c764e211512" NotOnOrAfter="2016-10-05T13:57:30.993Z" Recipient="http://oktatest.preprod.rs.cooleaf.monterail.eu/auth/okta/callback"/>
            </saml2:SubjectConfirmation>
        </saml2:Subject>
        <saml2:Conditions NotBefore="2016-10-05T13:47:30.993Z" NotOnOrAfter="2016-10-05T13:57:30.993Z">
            <saml2:AudienceRestriction>
                <saml2:Audience>clf-oktatest</saml2:Audience>
            </saml2:AudienceRestriction>
        </saml2:Conditions>
        <saml2:AuthnStatement AuthnInstant="2016-10-05T13:52:30.992Z" SessionIndex="_e20b9000-6d30-0134-c4ca-3c764e211512">
            <saml2:AuthnContext>
                <saml2:AuthnContextClassRef>
                    urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
                </saml2:AuthnContextClassRef>
            </saml2:AuthnContext>
        </saml2:AuthnStatement>
    </saml2:Assertion>
</saml2p:Response>
	<saml2p:Response
	xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://oktatest.preprod.rs.cooleaf.monterail.eu/auth/okta/callback" ID="id3166083622150945988482475" InResponseTo="_e20b9000-6d30-0134-c4ca-3c764e211512" IssueInstant="2016-10-05T13:52:30.992Z" Version="2.0">
	<saml2:Issuer
	xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://www.okta.com/exkq3rb4rBuWWkVwV1t6
	</saml2:Issuer>
	<ds:Signature
	xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
	<ds:SignedInfo>
	<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
	<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
	<ds:Reference URI="#id3166083622150945988482475">
	<ds:Transforms>
	<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
	<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
	</ds:Transforms>
	<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
	<ds:DigestValue>T+MyjUryaRwm9T3dvpH/8wf/LE9OThd9G0IgSjjY07E=</ds:DigestValue>
	</ds:Reference>
	</ds:SignedInfo>
	<ds:SignatureValue>
	vEGGOdDHtUUh4jrqedG87taCfm6J0mGW+k1Xje+LjtMjt8kOQ9i0AHRmTkuW7wdEhF/+JvJgzOm4KossfpTTOXNgAw3aUcbylsL/A7ZFTesM1FoBsLnlvhyUqTLGamS/hnOEKGdqMWmBI4jwv2JIuRUy7zUlzScMJ8+c7Uiol5MLv+8xD+0VWohCeRI/7Ff93ov/aUqFSxvpRW6lUGd+EWTlsMx8Vr9F7q/A4onYnmPzrE5CjeiIYtsza7IHrHSoIRUJlaAhwvHHjkgUDWyPH1FikQAiag9joYyn4yZKJpRF7jJRZ56piv3k8Mo1hQZ+JtpqYzsCN6OxI/RDQ65SpQ==
	</ds:SignatureValue>
	<ds:KeyInfo>
	<ds:X509Data>
	<ds:X509Certificate>
	MIIDqjCCApKgAwIBAgIGAVeTWhClMA0GCSqGSIb3DQEBBQUAMIGVMQswCQYDVQQGEwJVUzETMBEG A1UECAwKQ2FsaWZvcm5pYTEWMBQGA1UEBwwNU2FuIEZyYW5jaXNjbzENMAsGA1UECgwET2t0YTEU MBIGA1UECwwLU1NPUHJvdmlkZXIxFjAUBgNVBAMMDW1vbnRlcmFpbHJhZG8xHDAaBgkqhkiG9w0B CQEWDWluZm9Ab2t0YS5jb20wHhcNMTYxMDA1MDUzNzU1WhcNMjYxMDA1MDUzODU1WjCBlTELMAkG A1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFjAUBgNVBAcMDVNhbiBGcmFuY2lzY28xDTAL BgNVBAoMBE9rdGExFDASBgNVBAsMC1NTT1Byb3ZpZGVyMRYwFAYDVQQDDA1tb250ZXJhaWxyYWRv MRwwGgYJKoZIhvcNAQkBFg1pbmZvQG9rdGEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAws2lCPHgFUBvMzsite08QhqS18dDHT9Y73Pg5PkpLDrK7BiLShYHCJ0lFsuQH7IHlxL5 U/FskG44xRsjoe3dRIGq68gSOZNdXD1hFjR+AkAtVJfwlXCfWNsyDCH+TAMJllNAODyWVFwNGdoK IZ9ywircjSmD47dNq03YpxuutdhUDCEKzMRuidCNt4ZZu3HA6pi1NAlNm0JBVbLYMDuSl7K1G91U ThPjlH1TOpcO34I1IxF01EyjPhX7ZqPlxM0TocIL1NP43DLzL5sdcOHqAcS6cw9Ethw/hnIiHbYz l/AH8Wb0OrWtwQ7pfTO5COZhTOhLY3lsKB2NRXCVLbLrFwIDAQABMA0GCSqGSIb3DQEBBQUAA4IB AQBBtmYerj7U6SNCOcc/nCB0UFa6ICGCIgCJJr/5qVTr/1TETxUbOqJClE1fS+BARYXByQNpvJhx 0hF0S6ESKGF/6x2AR88QuNu8irfmOqjYxjaXTlMgVc0AyEKWPKHuGCkpiueLjZ/arU/Rl7u6TbXJ jOxZ9Gi/8GrwJqzRdhk3Xf8uJzMk8SeB6FhliWXSLaRdm44GfWS1x1fPb1t692VhVuKG0x2R2v4U 9Eu3wIv4+T0x7kTeIcc7Rs7WfYu4DKL0iTt2em7xFcoeuvHe5mAwaaSyOzDJBJUQC2YY08Ugf8ZJ EC+Vj+uhCPGZG+rQ7xt/6HxVkYPcDg5YOc2n3iL4
	</ds:X509Certificate>
	</ds:X509Data>
	</ds:KeyInfo>
	</ds:Signature>
	<saml2p:Status>
	<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
	</saml2p:Status>
	<saml2:Assertion
	xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="id31660836222187201168570571" IssueInstant="2016-10-05T13:52:30.992Z" Version="2.0">
	<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://www.okta.com/exkq3rb4rBuWWkVwV1t6</saml2:Issuer>
	<ds:Signature
	xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
	<ds:SignedInfo>
	<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
	<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
	<ds:Reference URI="#id31660836222187201168570571">
	<ds:Transforms>
	<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
	<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
	</ds:Transforms>
	<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
	<ds:DigestValue>ungoJp8Yzhh+STKzQhNCTdlrFbhAaEY/4BxlAa2gSj4=</ds:DigestValue>
	</ds:Reference>
	</ds:SignedInfo>
	<ds:SignatureValue>
	GoDf2lXdWn2i6Dyh24x3PNPZExo2ej0UH3ujfL3hPEyHxA8a6fZ0tc2lg2UhDDvPb90LjY1RobmhCwzPDej0VUxRmlKCJGNfK4NOQ5l1Og6p0FBBFIAE1UMsEcLp7uSUmhz38m+BOtvHfB2aQGkEQmZuZHMw0yotEr8gQXE0e35TIsbgJo05AGUaBLkkVpdkNPfbsZr1okNmdF7LfMEaukk+NojB0Q1cVZr1NZbF/JxSSEHoYCHclEh3piG3sPlI3WUr03rRQaLwpR2mBMXZ+bfuBWdGSTr7mc1+QBzy46YekifL+ntj4xnTcGx/yqOeTteomnHG5jycH9uq22C8zg==
	</ds:SignatureValue>
	<ds:KeyInfo>
	<ds:X509Data>
	<ds:X509Certificate>
	MIIDqjCCApKgAwIBAgIGAVeTWhClMA0GCSqGSIb3DQEBBQUAMIGVMQswCQYDVQQGEwJVUzETMBEG A1UECAwKQ2FsaWZvcm5pYTEWMBQGA1UEBwwNU2FuIEZyYW5jaXNjbzENMAsGA1UECgwET2t0YTEU MBIGA1UECwwLU1NPUHJvdmlkZXIxFjAUBgNVBAMMDW1vbnRlcmFpbHJhZG8xHDAaBgkqhkiG9w0B CQEWDWluZm9Ab2t0YS5jb20wHhcNMTYxMDA1MDUzNzU1WhcNMjYxMDA1MDUzODU1WjCBlTELMAkG A1UEBhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFjAUBgNVBAcMDVNhbiBGcmFuY2lzY28xDTAL BgNVBAoMBE9rdGExFDASBgNVBAsMC1NTT1Byb3ZpZGVyMRYwFAYDVQQDDA1tb250ZXJhaWxyYWRv MRwwGgYJKoZIhvcNAQkBFg1pbmZvQG9rdGEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAws2lCPHgFUBvMzsite08QhqS18dDHT9Y73Pg5PkpLDrK7BiLShYHCJ0lFsuQH7IHlxL5 U/FskG44xRsjoe3dRIGq68gSOZNdXD1hFjR+AkAtVJfwlXCfWNsyDCH+TAMJllNAODyWVFwNGdoK IZ9ywircjSmD47dNq03YpxuutdhUDCEKzMRuidCNt4ZZu3HA6pi1NAlNm0JBVbLYMDuSl7K1G91U ThPjlH1TOpcO34I1IxF01EyjPhX7ZqPlxM0TocIL1NP43DLzL5sdcOHqAcS6cw9Ethw/hnIiHbYz l/AH8Wb0OrWtwQ7pfTO5COZhTOhLY3lsKB2NRXCVLbLrFwIDAQABMA0GCSqGSIb3DQEBBQUAA4IB AQBBtmYerj7U6SNCOcc/nCB0UFa6ICGCIgCJJr/5qVTr/1TETxUbOqJClE1fS+BARYXByQNpvJhx 0hF0S6ESKGF/6x2AR88QuNu8irfmOqjYxjaXTlMgVc0AyEKWPKHuGCkpiueLjZ/arU/Rl7u6TbXJ jOxZ9Gi/8GrwJqzRdhk3Xf8uJzMk8SeB6FhliWXSLaRdm44GfWS1x1fPb1t692VhVuKG0x2R2v4U 9Eu3wIv4+T0x7kTeIcc7Rs7WfYu4DKL0iTt2em7xFcoeuvHe5mAwaaSyOzDJBJUQC2YY08Ugf8ZJ EC+Vj+uhCPGZG+rQ7xt/6HxVkYPcDg5YOc2n3iL4
	</ds:X509Certificate>
	</ds:X509Data>
	</ds:KeyInfo>
	</ds:Signature>
	<saml2:Subject>
	<saml2:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">radek.markiewicz@monterail.com</saml2:NameID>
	<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
	<saml2:SubjectConfirmationData InResponseTo="_e20b9000-6d30-0134-c4ca-3c764e211512" NotOnOrAfter="2016-10-05T13:57:30.993Z" Recipient="http://oktatest.preprod.rs.cooleaf.monterail.eu/auth/okta/callback"/>
	</saml2:SubjectConfirmation>
	</saml2:Subject>
	<saml2:Conditions NotBefore="2016-10-05T13:47:30.993Z" NotOnOrAfter="2016-10-05T13:57:30.993Z">
	<saml2:AudienceRestriction>
	<saml2:Audience>clf-oktatest</saml2:Audience>
	</saml2:AudienceRestriction>
	</saml2:Conditions>
	<saml2:AuthnStatement AuthnInstant="2016-10-05T13:52:30.992Z" SessionIndex="_e20b9000-6d30-0134-c4ca-3c764e211512">
	<saml2:AuthnContext>
	<saml2:AuthnContextClassRef>
	urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
	</saml2:AuthnContextClassRef>
	</saml2:AuthnContext>
	</saml2:AuthnStatement>
	</saml2:Assertion>
	</saml2p:Response>