2019-10-23 00:00:10,288 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:00:10,288 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:00:10,288 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:00:10,288 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://sso.mobility.qanmw.com/MobilityLogon"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="lad3pukxkvhb7b49zy7ue" IssueInstant="2019-10-22T23:56:48.756Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    ProviderName="NetMotion Mobility" Version="2.0"
    xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
        xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
  <saml:Issuer>https://sso.mobility.qanmw.com/Mobility</saml:Issuer>
  <samlp:NameIDPolicy
        AllowCreate="true" Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress"/>
</samlp:AuthnRequest>

2019-10-23 00:00:10,295 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'https://sso.mobility.qanmw.com/Mobility' from origin source
2019-10-23 00:00:10,295 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:00:10,295 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:00:10,295 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:00:10,295 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:00:10,295 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:00:10,295 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:00:10,295 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:00:10,295 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://sso.mobility.qanmw.com/Mobility
2019-10-23 00:00:10,296 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID 'lad3pukxkvhb7b49zy7ue', issue instant '2019-10-22T23:56:48.756Z', entityID 'https://sso.mobility.qanmw.com/Mobility'
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2AuthnRequestsSignedSecurityHandler:?] - SPSSODescriptor for entity ID 'https://sso.mobility.qanmw.com/Mobility' does not require AuthnRequests to be signed
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:00:10,296 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  HTTP request was not signed via simple signature mechanism, skipping
2019-10-23 00:00:10,297 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:00:10,297 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:00:10,297 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 1 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location https://sso.mobility.qanmw.com/MobilityLogon using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:00:10,297 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:00:10,297 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:00:10,298 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:00:10,298 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (false), attributes(false)
2019-10-23 00:00:10,298 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:00:10,298 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:00:10,298 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:00:10,298 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: https://sso.mobility.qanmw.com/Mobility
2019-10-23 00:00:10,298 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Could not resolve encryption parameters based on SAML metadata, falling back to locally configured credentials and algorithms
2019-10-23 00:00:10,298 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Failed to resolve EncryptionParameters
2019-10-23 00:00:10,298 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolver returned no EncryptionParameters
2019-10-23 00:00:10,298 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption is optional, ignoring inability to encrypt
2019-10-23 00:00:10,302 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:00:10,303 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:00:10.303Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:00:10,303 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: AuthnRequest did not contain a RequestedAuthnContext, nothing to do
2019-10-23 00:00:10,303 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:00:10,303 - DEBUG [net.shibboleth.idp.session.impl.PopulateSessionContext:?] - Profile Action PopulateSessionContext: No session found for client
2019-10-23 00:00:10,304 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Profile configuration did not supply any default authentication methods
2019-10-23 00:00:10,304 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:00:10,304 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:00:10,304 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No specific Principals requested
2019-10-23 00:00:10,304 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No usable active results available, selecting an inactive flow
2019-10-23 00:00:10,304 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Selecting inactive authentication flow authn/Password
2019-10-23 00:00:10,306 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth:?] - Profile Action ExtractUsernamePasswordFromBasicAuth: No appropriate Authorization header found
2019-10-23 00:00:10,321 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of 'sso.mobility.qanmw.com'
2019-10-23 00:00:10,322 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:00:10,322 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:00:25,140 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:00:25,140 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:00:25,140 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:00:25,141 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://sso.mobility.qanmw.com/MobilityLogon"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="lad3pukxkvhb7b49zy7ue" IssueInstant="2019-10-22T23:56:48.756Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    ProviderName="NetMotion Mobility" Version="2.0"
    xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
        xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
  <saml:Issuer>https://sso.mobility.qanmw.com/Mobility</saml:Issuer>
  <samlp:NameIDPolicy
        AllowCreate="true" Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress"/>
</samlp:AuthnRequest>

2019-10-23 00:00:25,145 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:00:25,145 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:00:25,145 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:00:25,145 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:00:25,145 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:00:25,145 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:00:25,145 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:00:25,145 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://sso.mobility.qanmw.com/Mobility
2019-10-23 00:00:25,146 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID 'lad3pukxkvhb7b49zy7ue', issue instant '2019-10-22T23:56:48.756Z', entityID 'https://sso.mobility.qanmw.com/Mobility'
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2AuthnRequestsSignedSecurityHandler:?] - SPSSODescriptor for entity ID 'https://sso.mobility.qanmw.com/Mobility' does not require AuthnRequests to be signed
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  HTTP request was not signed via simple signature mechanism, skipping
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:00:25,146 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:00:25,147 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 1 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location https://sso.mobility.qanmw.com/MobilityLogon using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:00:25,147 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:00:25,147 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:00:25,148 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:00:25,148 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (false), attributes(false)
2019-10-23 00:00:25,148 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:00:25,148 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:00:25,148 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:00:25,148 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: https://sso.mobility.qanmw.com/Mobility
2019-10-23 00:00:25,148 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Could not resolve encryption parameters based on SAML metadata, falling back to locally configured credentials and algorithms
2019-10-23 00:00:25,148 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Failed to resolve EncryptionParameters
2019-10-23 00:00:25,148 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolver returned no EncryptionParameters
2019-10-23 00:00:25,148 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption is optional, ignoring inability to encrypt
2019-10-23 00:00:25,151 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:00:25,151 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:00:25.151Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: AuthnRequest did not contain a RequestedAuthnContext, nothing to do
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing primary lookup on session ID 27296d4a1ef7bbb53a13efbaec24a78d3084a63d58ae610d61447bf265ff9a3c
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Primary lookup failed for session ID 27296d4a1ef7bbb53a13efbaec24a78d3084a63d58ae610d61447bf265ff9a3c
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.session.impl.PopulateSessionContext:?] - Profile Action PopulateSessionContext: No session found for client
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Profile configuration did not supply any default authentication methods
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No specific Principals requested
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No usable active results available, selecting an inactive flow
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Selecting inactive authentication flow authn/Password
2019-10-23 00:00:25,152 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth:?] - Profile Action ExtractUsernamePasswordFromBasicAuth: No appropriate Authorization header found
2019-10-23 00:00:25,216 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of 'sso.mobility.qanmw.com'
2019-10-23 00:00:25,216 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:00:25,216 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:01:23,189 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:01:23,189 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:01:23,189 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:01:23,189 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://sso.mobility.qanmw.com/MobilityLogon"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="lad3pukxkvhb7b49zy7ue" IssueInstant="2019-10-22T23:56:48.756Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    ProviderName="NetMotion Mobility" Version="2.0"
    xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
        xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
  <saml:Issuer>https://sso.mobility.qanmw.com/Mobility</saml:Issuer>
  <samlp:NameIDPolicy
        AllowCreate="true" Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress"/>
</samlp:AuthnRequest>

2019-10-23 00:01:23,194 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'https://sso.mobility.qanmw.com/Mobility' from origin source
2019-10-23 00:01:23,194 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:01:23,194 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:01:23,194 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:01:23,194 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:01:23,194 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:01:23,194 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:01:23,194 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:01:23,194 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://sso.mobility.qanmw.com/Mobility
2019-10-23 00:01:23,194 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID 'lad3pukxkvhb7b49zy7ue', issue instant '2019-10-22T23:56:48.756Z', entityID 'https://sso.mobility.qanmw.com/Mobility'
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2AuthnRequestsSignedSecurityHandler:?] - SPSSODescriptor for entity ID 'https://sso.mobility.qanmw.com/Mobility' does not require AuthnRequests to be signed
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  HTTP request was not signed via simple signature mechanism, skipping
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:01:23,195 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:01:23,196 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 1 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location https://sso.mobility.qanmw.com/MobilityLogon using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:01:23,196 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:01:23,196 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:01:23,197 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:01:23,197 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (false), attributes(false)
2019-10-23 00:01:23,197 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:01:23,197 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:01:23,197 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:01:23,197 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: https://sso.mobility.qanmw.com/Mobility
2019-10-23 00:01:23,197 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Could not resolve encryption parameters based on SAML metadata, falling back to locally configured credentials and algorithms
2019-10-23 00:01:23,197 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Failed to resolve EncryptionParameters
2019-10-23 00:01:23,197 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolver returned no EncryptionParameters
2019-10-23 00:01:23,197 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption is optional, ignoring inability to encrypt
2019-10-23 00:01:23,200 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:01:23,200 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:01:23.200Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:01:23,200 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: AuthnRequest did not contain a RequestedAuthnContext, nothing to do
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.session.impl.PopulateSessionContext:?] - Profile Action PopulateSessionContext: No session found for client
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Profile configuration did not supply any default authentication methods
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No specific Principals requested
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No usable active results available, selecting an inactive flow
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Selecting inactive authentication flow authn/Password
2019-10-23 00:01:23,201 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth:?] - Profile Action ExtractUsernamePasswordFromBasicAuth: No appropriate Authorization header found
2019-10-23 00:01:23,214 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of 'sso.mobility.qanmw.com'
2019-10-23 00:01:23,214 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:01:23,214 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:17:27,494 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: http://localhost:5000/api/auth/saml/login
2019-10-23 00:17:27,494 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:17:27,494 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:17:27,494 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="http://127.0.0.1:5000/api/auth/saml/check"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="ONELOGIN_1e8c15bcd9b064e042ed7557483fa99b62160e3b"
    IssueInstant="2019-10-23T00:17:27Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    ProviderName="SP test" Version="2.0"
    xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
        xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer>http://127.0.0.1:5000/api/auth/saml/metadata</saml:Issuer>
    <samlp:NameIDPolicy
        AllowCreate="true"
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:encrypted"/>
    <samlp:RequestedAuthnContext Comparison="exact">
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml:AuthnContextClassRef>
    </samlp:RequestedAuthnContext>
</samlp:AuthnRequest>

2019-10-23 00:17:27,500 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://127.0.0.1:5000/api/auth/saml/metadata' from origin source
2019-10-23 00:17:27,500 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:17:27,500 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:17:27,500 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:17:27,500 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:17:27,500 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:17:27,500 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:17:27,500 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:17:27,500 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://127.0.0.1:5000/api/auth/saml/metadata
2019-10-23 00:17:27,501 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:17:27,501 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:17:27,501 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:17:27,501 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:17:27,501 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:17:27,501 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID 'ONELOGIN_1e8c15bcd9b064e042ed7557483fa99b62160e3b', issue instant '2019-10-23T00:17:27.000Z', entityID 'http://127.0.0.1:5000/api/auth/saml/metadata'
2019-10-23 00:17:27,501 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=jVNNj9owEL3vr4hyBzvha7EAiUI%2FkChEJNtDL5Wxh2I1sVN7ssv%2B%2B7UD22WlCm1yiDJ%2B82bem%2FHE8aqs2bzBo97B3wYc3kXRqSq1Y%2B3RNG6sZoY75ZjmFTiGguXz72uWdimrrUEjTBm%2FS7qdw50Di8rokLRaTuPt5vN6%2B3W1%2BZXAvUgGeyHHezrsA%2B2nIEeDwah%2F3zvw8Xg%2FTJMhhd4%2BJP4A6zzHNPaU4T%2BKMmselQS78RWncZ5F6MW0NZxrYKUdco0eT5NxJ6GdtFdQypIRS0c%2FA2rp0UpzbEmPiLVjhAQ1gaarJFGyJl7vQZVAgpiU7EAqCwJJnm8DRXZx45PSUunft23Yn0GOfSuKrJNt8yJQzF%2FNWRjtmgpsDvZRCXjYrc9d%2BaaSdNSl%2Fk3YgFJKeK0I9%2FNrmyXiCOJPPGsdmYQIa%2BXb2UeSK0AuOfIJuc5846pZMHe1zEypxHMbD88XYyuOt%2BWGiJKdQwtloIV9rhFk%2FI9kXpbmaWGBo58e2gbiiLwrfVlPkO2yen8QThgtTFVzq1yYGpy4wIv2N%2F3X8EXpt28Hh9nNBRVMBJwPZ%2F7zZKwMk%2FWDBllYrl1tLF4s%2Bi%2F5uWtyo%2B3Z3evx9c2bvQA%3D&RelayState=http%3A%2F%2Flocalhost%3A5000%2Fapi%2Fauth%2Fsaml%2Flogin&Signature=jpdxI0HAfG7z4CdiQ5io0tfsiipmPnK%2FipING4oRiaFCg%2BVMDyxrjkf6FRJQNF2kTtdE%2B%2BCkHxZqyKVcq910Gd1Nl8IoJS8l30p39SPjgkxSJqnicE53di3CrjyuAFdtUwTNn2qhz2o8lw7%2BhRP1ZLRMcEjPtDIUKkuhaRJBT4Y%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23rsa-sha1
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=jVNNj9owEL3vr4hyBzvha7EAiUI%2FkChEJNtDL5Wxh2I1sVN7ssv%2B%2B7UD22WlCm1yiDJ%2B82bem%2FHE8aqs2bzBo97B3wYc3kXRqSq1Y%2B3RNG6sZoY75ZjmFTiGguXz72uWdimrrUEjTBm%2FS7qdw50Di8rokLRaTuPt5vN6%2B3W1%2BZXAvUgGeyHHezrsA%2B2nIEeDwah%2F3zvw8Xg%2FTJMhhd4%2BJP4A6zzHNPaU4T%2BKMmselQS78RWncZ5F6MW0NZxrYKUdco0eT5NxJ6GdtFdQypIRS0c%2FA2rp0UpzbEmPiLVjhAQ1gaarJFGyJl7vQZVAgpiU7EAqCwJJnm8DRXZx45PSUunft23Yn0GOfSuKrJNt8yJQzF%2FNWRjtmgpsDvZRCXjYrc9d%2BaaSdNSl%2Fk3YgFJKeK0I9%2FNrmyXiCOJPPGsdmYQIa%2BXb2UeSK0AuOfIJuc5846pZMHe1zEypxHMbD88XYyuOt%2BWGiJKdQwtloIV9rhFk%2FI9kXpbmaWGBo58e2gbiiLwrfVlPkO2yen8QThgtTFVzq1yYGpy4wIv2N%2F3X8EXpt28Hh9nNBRVMBJwPZ%2F7zZKwMk%2FWDBllYrl1tLF4s%2Bi%2F5uWtyo%2B3Z3evx9c2bvQA%3D&RelayState=http%3A%2F%2Flocalhost%3A5000%2Fapi%2Fauth%2Fsaml%2Flogin&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23rsa-sha1
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://127.0.0.1:5000/api/auth/saml/metadata
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://127.0.0.1:5000/api/auth/saml/metadata, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://127.0.0.1:5000/api/auth/saml/metadata' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) was successful
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature succeeded
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Authentication via request simple signature succeeded for context issuer entity ID http://127.0.0.1:5000/api/auth/saml/metadata
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:17:27,502 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:17:27,502 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:17:27,502 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:17:27,502 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:17:27,502 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 1 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:17:27,502 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://127.0.0.1:5000/api/auth/saml/check using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:17:27,503 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:17:27,503 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:17:27,503 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:17:27,503 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:17:27,503 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:17:27,504 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:17:27,504 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - {} Request asked for encrypted identifier, disregarding installed predicate
2019-10-23 00:17:27,504 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (true), attributes(false)
2019-10-23 00:17:27,504 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:17:27,504 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:17:27,504 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:17:27,504 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: http://127.0.0.1:5000/api/auth/saml/metadata
2019-10-23 00:17:27,504 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:17:27,504 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Could not resolve data encryption algorithm based on SAML metadata, falling back to locally configured algorithms
2019-10-23 00:17:27,504 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Could not resolve key transport algorithm based on SAML metadata, falling back to locally configured algorithms
2019-10-23 00:17:27,504 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolved EncryptionParameters
2019-10-23 00:17:27,507 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:17:27,508 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:17:27.508Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:17:27,508 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: RequestedPrincipalContext created with operator exact and 1 custom principal(s)
2019-10-23 00:17:27,508 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:17:27,508 - DEBUG [net.shibboleth.idp.session.impl.PopulateSessionContext:?] - Profile Action PopulateSessionContext: No session found for client
2019-10-23 00:17:27,508 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Leaving existing RequestedPrincipalContext in place
2019-10-23 00:17:27,508 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:17:27,508 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:17:27,509 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Specific principals requested with 'exact' operator: [AuthnContextClassRefPrincipal{authnContextClassRef=urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport}]
2019-10-23 00:17:27,509 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No active results available, selecting an inactive flow
2019-10-23 00:17:27,509 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Checking for an inactive flow compatible with operator 'exact' and principal 'urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport'
2019-10-23 00:17:27,509 - DEBUG [net.shibboleth.idp.authn.principal.PrincipalEvalPredicateFactoryRegistry:?] - Registry located predicate factory of type 'net.shibboleth.idp.authn.principal.impl.ExactPrincipalEvalPredicateFactory' for principal type 'class net.shibboleth.idp.saml.authn.principal.AuthnContextClassRefPrincipal' and operator 'exact'
2019-10-23 00:17:27,509 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Selecting inactive authentication flow authn/Password
2019-10-23 00:17:27,509 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth:?] - Profile Action ExtractUsernamePasswordFromBasicAuth: No appropriate Authorization header found
2019-10-23 00:17:27,534 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of '127.0.0.1'
2019-10-23 00:17:27,535 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:17:27,535 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:17:41,678 - DEBUG [net.shibboleth.idp.authn.AbstractExtractionAction:?] - Profile Action ExtractUsernamePasswordFromFormRequest: Trimming whitespace of input string 'rick'
2019-10-23 00:17:41,678 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromFormRequest:?] - Profile Action ExtractUsernamePasswordFromFormRequest: Recording do-not-cache instruction in authentication context
2019-10-23 00:17:41,678 - DEBUG [net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Attempting to authenticate user rick
2019-10-23 00:17:41,678 - DEBUG [net.shibboleth.idp.authn.PooledTemplateSearchDnResolver:?] - resolve user=[org.ldaptive.auth.User@1250279992::identifier=rick, context=org.apache.velocity.VelocityContext@52ed0f5f]
2019-10-23 00:17:41,685 - DEBUG [net.shibboleth.idp.authn.PooledTemplateSearchDnResolver:?] - resolved dn=uid=rick,ou=People,dc=samltest,dc=id for user=[org.ldaptive.auth.User@1250279992::identifier=rick, context=org.apache.velocity.VelocityContext@52ed0f5f]
2019-10-23 00:17:41,686 - INFO [net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Login by 'rick' succeeded
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.authn.AbstractValidationAction:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Adding custom Principal(s) defined on underlying flow descriptor
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.authn.impl.PopulateSubjectCanonicalizationContext:?] - Profile Action PopulateSubjectCanonicalizationContext: Installing 2 canonicalization flows into SubjectCanonicalizationContext
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.authn.AbstractSubjectCanonicalizationAction:?] - Profile Action SimpleSubjectCanonicalization: trimming whitespace of input string 'rick'
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Canonical principal name was established as 'rick'
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Checking result for compatibility with operator 'exact' and principal 'urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport'
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.authn.principal.PrincipalEvalPredicateFactoryRegistry:?] - Registry located predicate factory of type 'net.shibboleth.idp.authn.principal.impl.ExactPrincipalEvalPredicateFactory' for principal type 'class net.shibboleth.idp.saml.authn.principal.AuthnContextClassRefPrincipal' and operator 'exact'
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Principal 'urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport' in authentication result satisfies request for principal 'urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport'
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithAuthenticationResult:?] - Profile Action UpdateSessionWithAuthenticationResult: Creating new session for principal rick
2019-10-23 00:17:41,686 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Created new session ab275f64827837c8e1895a697af33a80ded97298bc00b1233a243d3d821374d1 for principal rick
2019-10-23 00:17:41,687 - DEBUG [net.shibboleth.idp.attribute.resolver.dc.ldap.impl.TemplatedExecutableSearchFilterBuilder:?] - Template text (uid=$resolutionContext.principal) yields (uid=rick)
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter'  Beginning process of filtering the following 8 attributes: [uid, identifier, role, telephoneNumber, mail, surname, displayName, givenName]
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'uid' remained after filtering
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'identifier' remained after filtering
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'role' remained after filtering
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'telephoneNumber' remained after filtering
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'mail' remained after filtering
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'surname' remained after filtering
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'displayName' remained after filtering
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'givenName' remained after filtering
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:17:41,688 - DEBUG [net.shibboleth.idp.consent.flow.impl.InitializeConsentContext:?] - Profile Action InitializeConsentContext: Created consent context 'ConsentContext{previousConsents={}, chosenConsents={}}'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:?] - Profile Action PopulateAttributeReleaseContext: Found attributeContext 'net.shibboleth.idp.attribute.context.AttributeContext@707194fe'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.logic.impl.JoinFunction:?] - Result 'rick:http://127.0.0.1:5000/api/auth/saml/metadata'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: Read storage record 'null' with context 'intercept/attribute-release' and key 'rick:http://127.0.0.1:5000/api/auth/saml/metadata'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: No storage record for context 'intercept/attribute-release' and key 'rick:http://127.0.0.1:5000/api/auth/saml/metadata'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: Read storage record 'null' with context 'intercept/attribute-release' and key 'rick'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: No storage record for context 'intercept/attribute-release' and key 'rick'
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.flow.impl.PopulateConsentContext:?] - Profile Action PopulateConsentContext: Populating consents: [displayName, givenName, identifier, mail, role, surname, telephoneNumber, uid]
2019-10-23 00:17:41,689 - DEBUG [net.shibboleth.idp.consent.logic.impl.IsConsentRequiredPredicate:?] - Consent is required, no previous consents
2019-10-23 00:17:41,708 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of '127.0.0.1'
2019-10-23 00:17:41,708 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:17:41,708 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or InformationURLs returning null
2019-10-23 00:17:41,708 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or PrivacyStatementURLs returning null
2019-10-23 00:17:41,708 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:17:41,708 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No relevant OrganizationName in Organization, returning null
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.flow.impl.ExtractConsent:?] - Profile Action ExtractConsent: Extracted consent ids '[displayName, givenName, identifier, mail, role, surname, telephoneNumber, uid]' from request parameter '_shib_idp_consentIds'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.flow.impl.ExtractConsent:?] - Profile Action ExtractConsent: Consent context 'ConsentContext{previousConsents={}, chosenConsents={displayName=Consent{id=displayName, value=null, isApproved=true}, givenName=Consent{id=givenName, value=null, isApproved=true}, identifier=Consent{id=identifier, value=null, isApproved=true}, mail=Consent{id=mail, value=null, isApproved=true}, role=Consent{id=role, value=null, isApproved=true}, surname=Consent{id=surname, value=null, isApproved=true}, telephoneNumber=Consent{id=telephoneNumber, value=null, isApproved=true}, uid=Consent{id=uid, value=null, isApproved=true}}}'
2019-10-23 00:17:45,016 - INFO [Shibboleth-Consent-Audit.SSO:?] - 20191023T001745Z|http://127.0.0.1:5000/api/auth/saml/metadata|AttributeReleaseConsent|rick|displayName,givenName,identifier,mail,role,surname,telephoneNumber,uid||true,true,true,true,true,true,true,true
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.logic.impl.JoinFunction:?] - Result 'rick:http://127.0.0.1:5000/api/auth/saml/metadata'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.logic.impl.JoinFunction:?] - Result 'rick:_key_idx'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.storage.impl.ConsentSerializer:?] - Serialized '{displayName=Consent{id=displayName, value=null, isApproved=true}, givenName=Consent{id=givenName, value=null, isApproved=true}, identifier=Consent{id=identifier, value=null, isApproved=true}, mail=Consent{id=mail, value=null, isApproved=true}, role=Consent{id=role, value=null, isApproved=true}, surname=Consent{id=surname, value=null, isApproved=true}, telephoneNumber=Consent{id=telephoneNumber, value=null, isApproved=true}, uid=Consent{id=uid, value=null, isApproved=true}}' as '[{"id":201},{"id":117},{"id":"identifier"},{"id":"mail"},{"id":"role"},{"id":106},{"id":116},{"id":"uid"}]'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.CreateResult:?] - Profile Action CreateResult: Created consent result 'ConsentResult{id=null, context=intercept/attribute-release, key=rick:http://127.0.0.1:5000/api/auth/saml/metadata, value=[{"id":201},{"id":117},{"id":"identifier"},{"id":"mail"},{"id":"role"},{"id":106},{"id":116},{"id":"uid"}], expiration=1603325865016}'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.AbstractConsentIndexedStorageAction:?] - Profile Action CreateResult: Read storage record 'null' with context 'intercept/attribute-release' and key 'rick:_key_idx'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.AbstractConsentIndexedStorageAction:?] - Profile Action CreateResult: Will not prune storage records, number of keys '0' is less than max number of records '10'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.AbstractConsentIndexedStorageAction:?] - Profile Action CreateResult: Read storage record 'null' with context 'intercept/attribute-release' and key 'rick:_key_idx'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.AbstractConsentIndexedStorageAction:?] - Profile Action CreateResult: Creating storage index with key 'rick:http://127.0.0.1:5000/api/auth/saml/metadata'
2019-10-23 00:17:45,016 - DEBUG [net.shibboleth.idp.consent.storage.impl.CollectionSerializer:?] - Serialized '[rick:http://127.0.0.1:5000/api/auth/saml/metadata]' as '["rick:http://127.0.0.1:5000/api/auth/saml/metadata"]'
2019-10-23 00:17:45,017 - DEBUG [net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:?] - Profile Action ReleaseAttributes: Found attributeContext 'net.shibboleth.idp.attribute.context.AttributeContext@707194fe'
2019-10-23 00:17:45,017 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:17:45,017 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:17:45,018 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:17:45,018 - DEBUG [net.shibboleth.idp.saml.profile.impl.BaseAddAuthenticationStatementToAssertion:?] - Profile Action AddAuthnStatementToAssertion: Attempting to add an AuthenticationStatement to outgoing Assertion
2019-10-23 00:17:45,018 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAuthnStatementToAssertion: Created Assertion _077f1e702907e1238bb6e5c4b74c66e6
2019-10-23 00:17:45,018 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAuthnStatementToAssertion: Added Assertion _077f1e702907e1238bb6e5c4b74c66e6 to Response _4fcba15d4fb2feaabe25f3f7273bc447
2019-10-23 00:17:45,018 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.AddAuthnStatementToAssertion:?] - Profile Action AddAuthnStatementToAssertion: Added AuthenticationStatement to Assertion _077f1e702907e1238bb6e5c4b74c66e6
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.profile.impl.BaseAddAttributeStatementToAssertion:?] - Profile Action AddAttributeStatementToAssertion: Attempting to add an AttributeStatement to outgoing Assertion
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value rick of attribute uid
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value rsanchez@samltest.id of attribute identifier
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value manager@samltest.id of attribute role
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value +1-555-555-5515 of attribute telephoneNumber
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value rsanchez@samltest.id of attribute mail
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Sanchez of attribute surname
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Rick Sanchez of attribute displayName
2019-10-23 00:17:45,019 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Rick of attribute givenName
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Attempting to add NameID to outgoing Assertion Subjects
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.common.profile.logic.AbstractNameIDPolicyPredicate:?] - Policy checking disabled for NameIDPolicy with Format urn:oasis:names:tc:SAML:2.0:nameid-format:encrypted
2019-10-23 00:17:45,020 - WARN [org.opensaml.saml.common.profile.logic.MetadataNameIdentifierFormatStrategy:?] - Ignoring NameIDFormat metadata that includes the 'unspecified' format
2019-10-23 00:17:45,020 - DEBUG [net.shibboleth.idp.saml.profile.logic.DefaultNameIdentifierFormatStrategy:?] - Configuration specifies the following formats: []
2019-10-23 00:17:45,020 - DEBUG [net.shibboleth.idp.saml.profile.logic.DefaultNameIdentifierFormatStrategy:?] - No formats specified in configuration or in metadata, returning default
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Candidate NameID formats: [urn:oasis:names:tc:SAML:2.0:nameid-format:transient]
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Trying to generate NameID with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.common.profile.impl.ChainingNameIdentifierGenerator:?] - Trying to generate identifier with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.AbstractSAML2NameIDGenerator:?] - Generating NameID AAdzZWNyZXQxsYGHpfwjwz5vA13OfwUVLlKEd/hveGKbYZe7HTZeIuO7fvZ5b9Pir0b5ydrhYbfVK7WB1kGVYphxuWngEa3PrpOgBcmVS8o0rusCFg4DziGFH3sNO2tIJZ13AG6Iu5wjsyNu90c3ETcXxyG6RGk= with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.common.profile.impl.ChainingNameIdentifierGenerator:?] - Successfully generated identifier with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Successfully generated NameID with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Added NameID to 1 assertion subject(s)
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Attempting to add SubjectConfirmation to assertions in outgoing Response
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data Address to 172.31.7.69
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data InResponseTo to ONELOGIN_1e8c15bcd9b064e042ed7557483fa99b62160e3b
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data Recipient to http://127.0.0.1:5000/api/auth/saml/check
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data NotOnOrAfter to 5 minutes from now
2019-10-23 00:17:45,020 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Added SubjectConfirmation with method urn:oasis:names:tc:SAML:2.0:cm:bearer to 1 assertion(s)
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotBeforeConditionToAssertions:?] - Profile Action AddNotBeforeConditionToAssertions: Attempting to add NotBefore condition to every Assertion in outgoing Response
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotBeforeConditionToAssertions:?] - Profile Action AddNotBeforeConditionToAssertions: Added NotBefore condition to Assertion _077f1e702907e1238bb6e5c4b74c66e6
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddNotBeforeConditionToAssertions: Assertion _077f1e702907e1238bb6e5c4b74c66e6 did not already contain Conditions, one was added
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Attempting to add NotOnOrAfter condition to every Assertion in outgoing Response
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Added NotOnOrAfter condition, indicating an expiration of 2019-10-23T00:22:45.017Z, to Assertion _077f1e702907e1238bb6e5c4b74c66e6
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Assertion _077f1e702907e1238bb6e5c4b74c66e6 already contained Conditions, nothing was done
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Attempting to add an AudienceRestrictionCondition to every Assertion in Response
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAudienceRestrictionToAssertions: Assertion _077f1e702907e1238bb6e5c4b74c66e6 already contained Conditions, nothing was done
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Adding new AudienceRestriction
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Adding http://127.0.0.1:5000/api/auth/saml/metadata as an Audience of the AudienceRestriction
2019-10-23 00:17:45,021 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Added AudienceRestrictionCondition to Assertion _077f1e702907e1238bb6e5c4b74c66e6
2019-10-23 00:17:45,022 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithSPSession:?] - Profile Action UpdateSessionWithSPSession: Adding new SPSession for relying party http://127.0.0.1:5000/api/auth/saml/metadata to existing session ab275f64827837c8e1895a697af33a80ded97298bc00b1233a243d3d821374d1
2019-10-23 00:17:45,022 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Saving SPSession for service http://127.0.0.1:5000/api/auth/saml/metadata in session ab275f64827837c8e1895a697af33a80ded97298bc00b1233a243d3d821374d1
2019-10-23 00:17:45,022 - DEBUG [net.shibboleth.idp.session.SPSessionSerializerRegistry:?] - Registry located StorageSerializer of type 'net.shibboleth.idp.saml.session.impl.SAML2SPSessionSerializer' for SPSession type 'class net.shibboleth.idp.saml.session.SAML2SPSession'
2019-10-23 00:17:45,022 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Maintaining secondary index for service ID http://127.0.0.1:5000/api/auth/saml/metadata and key AAdzZWNyZXQxsYGHpfwjwz5vA13OfwUVLlKEd/hveGKbYZe7HTZeIuO7fvZ5b9Pir0b5ydrhYbfVK7WB1kGVYphxuWngEa3PrpOgBcmVS8o0rusCFg4DziGFH3sNO2tIJZ13AG6Iu5wjsyNu90c3ETcXxyG6RGk=
2019-10-23 00:17:45,022 - DEBUG [org.opensaml.saml.saml2.profile.impl.EncryptNameIDs:?] - Profile Action EncryptNameIDs: NameID before encryption:
<?xml version="1.0" encoding="UTF-8"?>
<saml2:NameID
    Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
    NameQualifier="https://samltest.id/saml/idp"
    SPNameQualifier="http://127.0.0.1:5000/api/auth/saml/metadata" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxsYGHpfwjwz5vA13OfwUVLlKEd/hveGKbYZe7HTZeIuO7fvZ5b9Pir0b5ydrhYbfVK7WB1kGVYphxuWngEa3PrpOgBcmVS8o0rusCFg4DziGFH3sNO2tIJZ13AG6Iu5wjsyNu90c3ETcXxyG6RGk=</saml2:NameID>

2019-10-23 00:17:45,022 - DEBUG [org.opensaml.saml.saml2.profile.impl.EncryptNameIDs:?] - Profile Action EncryptNameIDs: Encrypt NameID in Subject
2019-10-23 00:17:45,023 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptAttributes: No encryption parameters, nothing to do
2019-10-23 00:17:45,023 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_077f1e702907e1238bb6e5c4b74c66e6"
2019-10-23 00:17:45,023 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _077f1e702907e1238bb6e5c4b74c66e6 and Element was [saml2:Assertion: null]
2019-10-23 00:17:45,023 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_077f1e702907e1238bb6e5c4b74c66e6"
2019-10-23 00:17:45,023 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _077f1e702907e1238bb6e5c4b74c66e6 and Element was [saml2:Assertion: null]
2019-10-23 00:17:45,027 - DEBUG [PROTOCOL_MESSAGE:?] - Profile Action EncryptAssertions: Response before assertion encryption:
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:Response ID="_4fcba15d4fb2feaabe25f3f7273bc447"
    InResponseTo="ONELOGIN_1e8c15bcd9b064e042ed7557483fa99b62160e3b"
    IssueInstant="2019-10-23T00:17:45.017Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
    </saml2p:Status>
    <saml2:Assertion ID="_077f1e702907e1238bb6e5c4b74c66e6"
        IssueInstant="2019-10-23T00:17:45.017Z" Version="2.0"
        xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
        <saml2:Issuer>https://samltest.id/saml/idp</saml2:Issuer>
        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
                <ds:Reference URI="#_077f1e702907e1238bb6e5c4b74c66e6">
                    <ds:Transforms>
                        <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                            <ec:InclusiveNamespaces PrefixList="xsd" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                        </ds:Transform>
                    </ds:Transforms>
                    <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                    <ds:DigestValue>S8ZeEU97T4WxnAZvs+3D27plCVp8+XZzpQWRbDtThA4=</ds:DigestValue>
                </ds:Reference>
            </ds:SignedInfo>
            <ds:SignatureValue>Jvx4cO2mZ0HOGd95W3hHbp0L8hGjgxE2pipj94xnsZ3Oz+9ffM/3fE73hgvdFvSbjiU+PRknEjL78kBPqupymbFGr51VdTiXvBdBgwvfmfvV27TTPqj7AjxJkmgzP6oSJ8ukhkY00kBSauRuFcynegkCvNh1d+HKXK6PCLxad9sytRNlTKG1FsnNpQJamM88Tv2APg7XOOayYOmVLroa6Bnrba/vyR3IfGfTCYtK/06jzLyEgNx838iA1Akn3VJvnO9ehNqWjcBxuGTQ+wW9vehxZOKkGsn1FFO6yeCCd5D4EIlqqbu1fnRmEe7+h1mtH40kz1xzkYlXM9qhWoYqow==</ds:SignatureValue>
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>MIIDEjCCAfqgAwIBAgIVAMECQ1tjghafm5OxWDh9hwZfxthWMA0GCSqGSIb3DQEBCwUAMBYxFDAS
BgNVBAMMC3NhbWx0ZXN0LmlkMB4XDTE4MDgyNDIxMTQwOVoXDTM4MDgyNDIxMTQwOVowFjEUMBIG
A1UEAwwLc2FtbHRlc3QuaWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Z4QX1NFK
s71ufbQwoQoW7qkNAJRIANGA4iM0ThYghul3pC+FwrGv37aTxWXfA1UG9njKbbDreiDAZKngCgyj
xj0uJ4lArgkr4AOEjj5zXA81uGHARfUBctvQcsZpBIxDOvUUImAl+3NqLgMGF2fktxMG7kX3GEVN
c1klbN3dfYsaw5dUrw25DheL9np7G/+28GwHPvLb4aptOiONbCaVvh9UMHEA9F7c0zfF/cL5fOpd
Va54wTI0u12CsFKt78h6lEGG5jUs/qX9clZncJM7EFkN3imPPy+0HC8nspXiH/MZW8o2cqWRkrw3
MzBZW3Ojk5nQj40V6NUbjb7kfejzAgMBAAGjVzBVMB0GA1UdDgQWBBQT6Y9J3Tw/hOGc8PNV7JEE
4k2ZNTA0BgNVHREELTArggtzYW1sdGVzdC5pZIYcaHR0cHM6Ly9zYW1sdGVzdC5pZC9zYW1sL2lk
cDANBgkqhkiG9w0BAQsFAAOCAQEASk3guKfTkVhEaIVvxEPNR2w3vWt3fwmwJCccW98XXLWgNbu3
YaMb2RSn7Th4p3h+mfyk2don6au7Uyzc1Jd39RNv80TG5iQoxfCgphy1FYmmdaSfO8wvDtHTTNiL
ArAxOYtzfYbzb5QrNNH/gQEN8RJaEf/g/1GTw9x/103dSMK0RXtl+fRs2nblD1JJKSQ3AdhxK/we
P3aUPtLxVVJ9wMOQOfcy02l+hHMb6uAjsPOpOVKqi3M8XmcUZOpx4swtgGdeoSpeRyrtMvRwdcci
NBp9UZome44qZAYH1iqrpmmjsfI9pJItsgWu3kXPjhSfj1AJGR1l9JGvJrHki1iHTA==</ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </ds:Signature>
        <saml2:Subject>
            <saml2:EncryptedID>
                <xenc:EncryptedData
                    Id="_59228d3fb1fb334eb91f21d97ca3e263"
                    Type="http://www.w3.org/2001/04/xmlenc#Element" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                    <xenc:EncryptionMethod
                        Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"/>
                    <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
                        <xenc:EncryptedKey
                            Id="_e12e50b34d0517d06293e0e0d361cc5c"
                            Recipient="http://127.0.0.1:5000/api/auth/saml/metadata" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                            <xenc:EncryptionMethod
                                Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                                <ds:DigestMethod
                                    Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"/>
                            </xenc:EncryptionMethod>
                            <ds:KeyInfo>
                                <ds:X509Data>
                                    <ds:X509Certificate>MIIDCTCCAnKgAwIBAgIBATANBgkqhkiG9w0BAQUFADBvMRQwEgYDVQQDEwtjYXByaXphLmNvbTEL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</ds:X509Certificate>
                                </ds:X509Data>
                            </ds:KeyInfo>
                            <xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                                <xenc:CipherValue>FBl/08lgCcha7SeVzMfR37tc79v5Khl7GNi9FkTHU3sN+a3Enln1NsgQskg15DORDXZg18fwhYi60S7FlIVJXp8ULnAqTkafCyIgnVtGIryebNkLblFFjA45OX/5D4oBQD6TZGp2lTeI4SCj1PZOZaq2uPmwU4R7Bz3ALru4qEQ=</xenc:CipherValue>
                            </xenc:CipherData>
                        </xenc:EncryptedKey>
                    </ds:KeyInfo>
                    <xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                        <xenc:CipherValue>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</xenc:CipherValue>
                    </xenc:CipherData>
                </xenc:EncryptedData>
            </saml2:EncryptedID>
            <saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml2:SubjectConfirmationData Address="172.31.7.69"
                    InResponseTo="ONELOGIN_1e8c15bcd9b064e042ed7557483fa99b62160e3b"
                    NotOnOrAfter="2019-10-23T00:22:45.020Z" Recipient="http://127.0.0.1:5000/api/auth/saml/check"/>
            </saml2:SubjectConfirmation>
        </saml2:Subject>
        <saml2:Conditions NotBefore="2019-10-23T00:17:45.017Z" NotOnOrAfter="2019-10-23T00:22:45.017Z">
            <saml2:AudienceRestriction>
                <saml2:Audience>http://127.0.0.1:5000/api/auth/saml/metadata</saml2:Audience>
            </saml2:AudienceRestriction>
        </saml2:Conditions>
        <saml2:AuthnStatement AuthnInstant="2019-10-23T00:17:41.686Z" SessionIndex="_08dd166e2d34b62c37a44f2636bdd2da">
            <saml2:SubjectLocality Address="172.31.7.69"/>
            <saml2:AuthnContext>
                <saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml2:AuthnContextClassRef>
            </saml2:AuthnContext>
        </saml2:AuthnStatement>
        <saml2:AttributeStatement>
            <saml2:Attribute FriendlyName="uid"
                Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>rick</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute
                Name="urn:oasis:names:tc:SAML:attribute:subject-id" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue
                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">rsanchez@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="role"
                Name="https://samltest.id/attributes/role" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue
                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">manager@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="telephoneNumber"
                Name="urn:oid:2.5.4.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>+1-555-555-5515</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="mail"
                Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>rsanchez@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Sanchez</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="displayName"
                Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Rick Sanchez</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="givenName"
                Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Rick</saml2:AttributeValue>
            </saml2:Attribute>
        </saml2:AttributeStatement>
    </saml2:Assertion>
</saml2p:Response>

2019-10-23 00:17:45,029 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://127.0.0.1:5000/api/auth/saml/check
2019-10-23 00:17:45,029 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://127.0.0.1:5000/api/auth/saml/check
2019-10-23 00:17:45,029 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_4fcba15d4fb2feaabe25f3f7273bc447"
2019-10-23 00:17:45,029 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _4fcba15d4fb2feaabe25f3f7273bc447 and Element was [saml2p:Response: null]
2019-10-23 00:17:45,029 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_4fcba15d4fb2feaabe25f3f7273bc447"
2019-10-23 00:17:45,029 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _4fcba15d4fb2feaabe25f3f7273bc447 and Element was [saml2p:Response: null]
2019-10-23 00:17:45,031 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Invoking Velocity template to create POST body
2019-10-23 00:17:45,031 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Encoding action url of 'http://127.0.0.1:5000/api/auth/saml/check' with encoded value 'http&#x3a;&#x2f;&#x2f;127.0.0.1&#x3a;5000&#x2f;api&#x2f;auth&#x2f;saml&#x2f;check'
2019-10-23 00:17:45,031 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Marshalling and Base64 encoding SAML message
2019-10-23 00:17:45,031 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Setting RelayState parameter to: 'http://localhost:5000/api/auth/saml/login', encoded as 'http&#x3a;&#x2f;&#x2f;localhost&#x3a;5000&#x2f;api&#x2f;auth&#x2f;saml&#x2f;login'
2019-10-23 00:17:45,033 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:Response Destination="http://127.0.0.1:5000/api/auth/saml/check"
    ID="_4fcba15d4fb2feaabe25f3f7273bc447"
    InResponseTo="ONELOGIN_1e8c15bcd9b064e042ed7557483fa99b62160e3b"
    IssueInstant="2019-10-23T00:17:45.017Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
            <ds:Reference URI="#_4fcba15d4fb2feaabe25f3f7273bc447">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                <ds:DigestValue>1k5+ILvMbfkpGlCKuZ6wqXInN9xh6g7XYf26okJRHC0=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>DdmqBWSxqXp4nJG8TI3eQPFJh3rYn6+tqeXBQ/5VXGn6tbC3mIlwmZjYs8ytLYKM2hqdDFI2ruRpYRshnIyFQk5ufNvqSpbw6q/MFivujn6Ns7/sikzj1wjML9PPbnO/burXWPVlfRpU5h9y+TwtUWII0a3rPnSa74LYE2eYjjiiw0QG1AjhwMYglXR5TJP8vUVVLAPuxaoP3aljn4z8u5wGa7X9tvELFF13oXD3IzDtHIgP4cgvt8141hhqgmrrQLyJjjL336xOSoCJxbcr9qe+TNFJaYPz/E7rvC6cMXn1KB3mc/5FxAVgDdH4CIedlvgEwxHXK37uZfAXsX40xQ==</ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>MIIDEjCCAfqgAwIBAgIVAMECQ1tjghafm5OxWDh9hwZfxthWMA0GCSqGSIb3DQEBCwUAMBYxFDAS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==</ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
    <saml2p:Status xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
    </saml2p:Status>
    <saml2:EncryptedAssertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">
        <xenc:EncryptedData Id="_f4721521a69afd1d2b35ee4128885d4e"
            Type="http://www.w3.org/2001/04/xmlenc#Element" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
            <xenc:EncryptionMethod
                Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"/>
            <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
                <xenc:EncryptedKey
                    Id="_2a0c8578918de3559a03b06c531693be"
                    Recipient="http://127.0.0.1:5000/api/auth/saml/metadata" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                    <xenc:EncryptionMethod
                        Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                        <ds:DigestMethod
                            Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"/>
                    </xenc:EncryptionMethod>
                    <ds:KeyInfo>
                        <ds:X509Data>
                            <ds:X509Certificate>MIIDCTCCAnKgAwIBAgIBATANBgkqhkiG9w0BAQUFADBvMRQwEgYDVQQDEwtjYXByaXphLmNvbTEL
MAkGA1UEBhMCVVMxETAPBgNVBAgTCFZpcmdpbmlhMRMwEQYDVQQHEwpCbGFja3NidXJnMRAwDgYD
VQQKEwdTYW1saW5nMRAwDgYDVQQLEwdTYW1saW5nMB4XDTE4MTIwMzIxMDQzMloXDTE5MTIwMzIx
MDQzMlowbzEUMBIGA1UEAxMLY2Fwcml6YS5jb20xCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhWaXJn
aW5pYTETMBEGA1UEBxMKQmxhY2tzYnVyZzEQMA4GA1UEChMHU2FtbGluZzEQMA4GA1UECxMHU2Ft
bGluZzCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAkLI7px2VYch6AnWA6dxVhLgGeiXWstb8
jd9CFJKTkqcxjNwrmjuZllzARXRTD6hYOpSGOi+yUXxEeN6wi0i6IJaR7ykdsFygd5LjcHUK+Eol
YPvglcS1R0uW9W+9+EHyUUmZ7aSryF+bsJTbilmJxLCY3ClWXJrEP4Mdp1VCe6ECAwEAAaOBtDCB
sTAMBgNVHRMEBTADAQH/MAsGA1UdDwQEAwIC9DA7BgNVHSUENDAyBggrBgEFBQcDAQYIKwYBBQUH
AwIGCCsGAQUFBwMDBggrBgEFBQcDBAYIKwYBBQUHAwgwEQYJYIZIAYb4QgEBBAQDAgD3MCUGA1Ud
EQQeMByGGmh0dHA6Ly9jYXByaXphLmNvbS9zYW1saW5nMB0GA1UdDgQWBBRYjchSRE1gCBKi3ffq
B0iyxJlzkjANBgkqhkiG9w0BAQUFAAOBgQAErfg9Is1j3PpKLpdJg8w0zedsprMvLK6KjeIKFHPQ
Z6q6HPUITJU4ZU5hn+FnoWWYAFRsLaw1wIFyLFi4jmhz+rMg7kyapXsMKmNdrtdREfuOlicqWWg/
mz4g73DB+dZE+rcNFtPVei9ndaepzbThmUPuBuYSO8cLlhwHnxVMdg==</ds:X509Certificate>
                        </ds:X509Data>
                    </ds:KeyInfo>
                    <xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                        <xenc:CipherValue>hMZVd4+qrKaOzyXzjBhdkgo/HGllQDDPCljNKkCztXE4UalxByZ3K0Rhe43UPD+L4FgFI61RFkSrzM7Wk9k9PK7xs8aI78zBcqcOXGIA38LEjUnIONJjrHXCNFDQRmVEmz+secPsGq4ksrowUMPepsIt3NBov11Cqpldr+Y0dm8=</xenc:CipherValue>
                    </xenc:CipherData>
                </xenc:EncryptedKey>
            </ds:KeyInfo>
            <xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
                <xenc:CipherValue>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</xenc:CipherValue>
            </xenc:CipherData>
        </xenc:EncryptedData>
    </saml2:EncryptedAssertion>
</saml2p:Response>

2019-10-23 00:17:45,033 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:17:45,033 - INFO [Shibboleth-Audit.SSO:?] - 20191023T001745Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|ONELOGIN_1e8c15bcd9b064e042ed7557483fa99b62160e3b|http://127.0.0.1:5000/api/auth/saml/metadata|http://shibboleth.net/ns/profiles/saml2/sso/browser|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST|_4fcba15d4fb2feaabe25f3f7273bc447|rick|urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport|uid,identifier,role,telephoneNumber,mail,surname,displayName,givenName|AAdzZWNyZXQxsYGHpfwjwz5vA13OfwUVLlKEd/hveGKbYZe7HTZeIuO7fvZ5b9Pir0b5ydrhYbfVK7WB1kGVYphxuWngEa3PrpOgBcmVS8o0rusCFg4DziGFH3sNO2tIJZ13AG6Iu5wjsyNu90c3ETcXxyG6RGk=|_077f1e702907e1238bb6e5c4b74c66e6|
2019-10-23 00:19:43,163 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:19:43,163 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:19:43,164 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:19:43,164 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutRequest
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SLO"
    ID="_0c09503c5f3ab345b874f6df4593d89f"
    IssueInstant="2019-10-23T00:19:42.680Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <saml2:NameID
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        NameQualifier="https://samltest.id/saml/idp"
        SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=</saml2:NameID>
    <saml2p:SessionIndex>_5d859b485cf44407f3d0e5035e1dea9b</saml2p:SessionIndex>
</saml2p:LogoutRequest>

2019-10-23 00:19:43,168 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:19:43,168 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:19:43,168 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:19:43,168 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:19:43,168 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:19:43,168 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:19:43,168 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:19:43,168 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:19:43,168 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:19:43,169 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:19:43,171 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:19:43,171 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:19:43,171 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:19:43,171 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:19:43,171 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_0c09503c5f3ab345b874f6df4593d89f', issue instant '2019-10-23T00:19:42.680Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=nVPbbuIwEH3fr4j8isBOYkNiARULpUC5lFtp%2B1I5sdO6m9g0NvTy9U3ostquqmrVF8san5k554ynefKcpc5e5EZq1QJuDQFHqFhzqe5aYL3qVwNw0v7RNCxLvS0d6zu9swvxuBPGOr3ikIrZQ%2Bq9tVtDISyRtnioSQ4l38JtrhOZCrjsTMYeXAgucxFbuBzPgDPstcAtilFIkB%2BTxGeRj0kUNHBS5wkmoc%2BDMClgxuzEUBnLlG0BD7lh1UVVz18hRN2QYq9WD9ANcC6PMrxSRiFMGfpOvAV2uaKaGWmoYpkw1Ma0ZEQLKC0oWh3rFLTfddJDw9zp6zxj9uvcMiJ5NTlAqVBW2pcPvb9OZ8aIvDQQtEsDC%2F%2Fc0Ku59aCG%2FZpHPBqgABUePokImi10ScMN%2FACHuAn%2FpnokPi0aDHvfIG5zpows6AOnrDHfsVQmUuSfz7W8l8MFzvLiE%2Fj%2Fq%2FieU50Of73ZTF9urubP0cyHBHXn1nsYY7mfrX6eTd0KUSP%2FDF7PyUClkazgPrvcDO7hPDpnsa64qP54frp4cB9IPJBrOW2k3dVUr%2Bfd88r961qfLjy0HDbSSaTHWR%2BpUWWwC%2BtFSwX3HZY9XSUw3szM2mcvk4vr8XTS%2BBWMGM%2F0pnfV3UeLx7PT1nE%2B7xNpHxdoKUz5RYeKi%2Bf2LeEBCSMckDjBGKNG4nMkil0gwuWChdHvIv%2Bk%2FYl%2B2Mb2Gw%3D%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1&Signature=MDwCHCgaKBiaZQ95W3GKMY%2FCc6IgQxd7IRbWaetrkwMCHAf%2FPhFPqsl9PgNTwHmxYfr8mQ0vERJ4Q087QFg%3D
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=nVPbbuIwEH3fr4j8isBOYkNiARULpUC5lFtp%2B1I5sdO6m9g0NvTy9U3ostquqmrVF8san5k554ynefKcpc5e5EZq1QJuDQFHqFhzqe5aYL3qVwNw0v7RNCxLvS0d6zu9swvxuBPGOr3ikIrZQ%2Bq9tVtDISyRtnioSQ4l38JtrhOZCrjsTMYeXAgucxFbuBzPgDPstcAtilFIkB%2BTxGeRj0kUNHBS5wkmoc%2BDMClgxuzEUBnLlG0BD7lh1UVVz18hRN2QYq9WD9ANcC6PMrxSRiFMGfpOvAV2uaKaGWmoYpkw1Ma0ZEQLKC0oWh3rFLTfddJDw9zp6zxj9uvcMiJ5NTlAqVBW2pcPvb9OZ8aIvDQQtEsDC%2F%2Fc0Ku59aCG%2FZpHPBqgABUePokImi10ScMN%2FACHuAn%2FpnokPi0aDHvfIG5zpows6AOnrDHfsVQmUuSfz7W8l8MFzvLiE%2Fj%2Fq%2FieU50Of73ZTF9urubP0cyHBHXn1nsYY7mfrX6eTd0KUSP%2FDF7PyUClkazgPrvcDO7hPDpnsa64qP54frp4cB9IPJBrOW2k3dVUr%2Bfd88r961qfLjy0HDbSSaTHWR%2BpUWWwC%2BtFSwX3HZY9XSUw3szM2mcvk4vr8XTS%2BBWMGM%2F0pnfV3UeLx7PT1nE%2B7xNpHxdoKUz5RYeKi%2Bf2LeEBCSMckDjBGKNG4nMkil0gwuWChdHvIv%2Bk%2FYl%2B2Mb2Gw%3D%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:19:43,172 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:19:43,172 - WARN [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) failed
2019-10-23 00:19:43,173 - WARN [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature failed for context issuer: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:19:43,173 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: MessageAuthenticationError
2019-10-23 00:19:43,174 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:20:29,410 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: ss:mem:76fe3fe1e40e72ed2ff4be576a4a2806fc2f84acd4ea93007170e97dfc219d3a
2019-10-23 00:20:29,410 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:20:29,410 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:20:29,411 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://158.121.248.108/Shibboleth.sso/SAML2/POST"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="_e756dfd3a9f06de2ef7c9c2a30aa8114"
    IssueInstant="2019-10-23T00:20:28Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://example.com/shibboleth</saml:Issuer>
    <samlp:NameIDPolicy AllowCreate="1"/>
</samlp:AuthnRequest>

2019-10-23 00:20:29,415 - DEBUG [org.opensaml.saml.metadata.resolver.impl.AbstractBatchMetadataResolver:?] - Metadata Resolver FilesystemMetadataResolver SAMLtest: Resolved 0 candidates via EntityIdCriterion: EntityIdCriterion [id=https://example.com/shibboleth]
2019-10-23 00:20:29,415 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved no EntityDescriptors via underlying MetadataResolver, returning empty collection
2019-10-23 00:20:29,415 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  No metadata returned for https://example.com/shibboleth in role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor with protocol urn:oasis:names:tc:SAML:2.0:protocol
2019-10-23 00:20:29,415 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No metadata context found, nothing to do
2019-10-23 00:20:29,416 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://example.com/shibboleth
2019-10-23 00:20:29,416 - WARN [net.shibboleth.idp.profile.impl.SelectProfileConfiguration:?] - Profile Action SelectProfileConfiguration: Profile http://shibboleth.net/ns/profiles/saml2/sso/browser is not available for RP configuration shibboleth.UnverifiedRelyingParty (RPID https://example.com/shibboleth)
2019-10-23 00:20:29,417 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: InvalidProfileConfiguration
2019-10-23 00:20:29,417 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:20:30,521 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: ss:mem:3a0dd5bfbb0b220db5908df02567c4d57f42f972d22c6c438923ee9ab3ac794e
2019-10-23 00:20:30,521 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:20:30,521 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:20:30,522 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://158.121.248.108/Shibboleth.sso/SAML2/POST"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="_3cac0e21450a770934b5e72470a17c42"
    IssueInstant="2019-10-23T00:20:29Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://example.com/shibboleth</saml:Issuer>
    <samlp:NameIDPolicy AllowCreate="1"/>
</samlp:AuthnRequest>

2019-10-23 00:20:30,522 - DEBUG [org.opensaml.saml.metadata.resolver.impl.AbstractBatchMetadataResolver:?] - Metadata Resolver FilesystemMetadataResolver SAMLtest: Resolved 0 candidates via EntityIdCriterion: EntityIdCriterion [id=https://example.com/shibboleth]
2019-10-23 00:20:30,522 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved no EntityDescriptors via underlying MetadataResolver, returning empty collection
2019-10-23 00:20:30,522 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  No metadata returned for https://example.com/shibboleth in role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor with protocol urn:oasis:names:tc:SAML:2.0:protocol
2019-10-23 00:20:30,522 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No metadata context found, nothing to do
2019-10-23 00:20:30,522 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://example.com/shibboleth
2019-10-23 00:20:30,522 - WARN [net.shibboleth.idp.profile.impl.SelectProfileConfiguration:?] - Profile Action SelectProfileConfiguration: Profile http://shibboleth.net/ns/profiles/saml2/sso/browser is not available for RP configuration shibboleth.UnverifiedRelyingParty (RPID https://example.com/shibboleth)
2019-10-23 00:20:30,523 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: InvalidProfileConfiguration
2019-10-23 00:20:30,523 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:20:33,115 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: ss:mem:370945a58a257e5d1cd671ff2ecd772f7c854f1b5e6ec1a891ad2bec058af939
2019-10-23 00:20:33,115 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:20:33,115 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:20:33,116 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://158.121.248.108/Shibboleth.sso/SAML2/POST"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="_4f2d9873b47ab6732b7bf508829311c9"
    IssueInstant="2019-10-23T00:20:32Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://example.com/shibboleth</saml:Issuer>
    <samlp:NameIDPolicy AllowCreate="1"/>
</samlp:AuthnRequest>

2019-10-23 00:20:33,116 - DEBUG [org.opensaml.saml.metadata.resolver.impl.AbstractBatchMetadataResolver:?] - Metadata Resolver FilesystemMetadataResolver SAMLtest: Resolved 0 candidates via EntityIdCriterion: EntityIdCriterion [id=https://example.com/shibboleth]
2019-10-23 00:20:33,116 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved no EntityDescriptors via underlying MetadataResolver, returning empty collection
2019-10-23 00:20:33,116 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  No metadata returned for https://example.com/shibboleth in role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor with protocol urn:oasis:names:tc:SAML:2.0:protocol
2019-10-23 00:20:33,116 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No metadata context found, nothing to do
2019-10-23 00:20:33,116 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://example.com/shibboleth
2019-10-23 00:20:33,117 - WARN [net.shibboleth.idp.profile.impl.SelectProfileConfiguration:?] - Profile Action SelectProfileConfiguration: Profile http://shibboleth.net/ns/profiles/saml2/sso/browser is not available for RP configuration shibboleth.UnverifiedRelyingParty (RPID https://example.com/shibboleth)
2019-10-23 00:20:33,117 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: InvalidProfileConfiguration
2019-10-23 00:20:33,117 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:24:18,526 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:24:18,526 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:24:18,527 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:24:18,527 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutRequest
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SLO"
    ID="_987ebc4b8f93b31ed8bd672cedfd03b2"
    IssueInstant="2019-10-23T00:24:18.145Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <saml2:NameID
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        NameQualifier="https://samltest.id/saml/idp"
        SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=</saml2:NameID>
    <saml2p:SessionIndex>_5d859b485cf44407f3d0e5035e1dea9b</saml2p:SessionIndex>
</saml2p:LogoutRequest>

2019-10-23 00:24:18,531 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:24:18,531 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:24:18,531 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:24:18,531 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:24:18,531 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:24:18,531 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:24:18,531 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:24:18,531 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:24:18,531 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:24:18,532 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:24:18,532 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:24:18,532 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:24:18,532 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:24:18,532 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:24:18,532 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_987ebc4b8f93b31ed8bd672cedfd03b2', issue instant '2019-10-23T00:24:18.145Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=nVPbTuMwEH3fr4jyWrW%2BJGkSixZ1W0pbeqE3CrwgO3bAbGKX2C2XryeB7WpZIbTixbLGZ2bOOeM5On7KM2cvCiO1armoAV1HqERzqW5b7nrVr0fucfvHkaF5hrdkrG%2F1zi7Ew04Y6%2FTKQypq31LvrN0aAkCFtOVDQ3Ig%2BRZsC53KTIBlZzLGYCG4LERiwXI8c51hr%2BXexFEoWOKzKI095iHBI8abIU4ETzn0GC5hxuzEUBlLlW25GKK4jmAdeysICfYJihrID65d5%2BIgA1cySmHKkHfiLXdXKKKpkYYomgtDbEIqRqSEkpKi1YnO3Pa7TvLWsHD6usip%2FTq3ikheT9%2BgRCgr7fOH3l%2BnU2NEURnotisDS%2F9QjBuoGTV8r4EDTCIYwdLDR8GA2QIUhCjyIj%2F2j8DfVA%2FEp2WDYe8bxG1BlZElfdepasx3NJOpFMXnc63u1XBdZ3n%2BCfz%2FVXzPqU6Hv1xvps%2FXl%2FMnNvNAALtzi%2B%2FHvtzPVj9Pp6gWqJF3Cq7mwUBlTNb8Pr3YDO7AnJ3RRNcQbD6cnSzu0X2QDORaTsOsu5rq9bx7Vrt7WeuTBYbLYZhNmB7nfahGtcEubpYtFdh3aP54mYJkMzNrjz5Pzq%2FG00n4KxpRnutN77K7Z4uH05PWYT7vE2kfFmgpTPVFh4qLp%2FZNwKMgZn4UJKnv%2BzBMPQ5FAL1AIC5ozH4X%2BSftT%2FTDNrZfAQ%3D%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1&Signature=MDwCHFVBd8%2F1mVUAe3tCJHIdMSFhko7A8ieHX7CVG%2BoCHC%2BkCNY%2BDsMNWsmhE%2F7i%2FmdTZCafy%2BMT7Uq2irI%3D
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=nVPbTuMwEH3fr4jyWrW%2BJGkSixZ1W0pbeqE3CrwgO3bAbGKX2C2XryeB7WpZIbTixbLGZ2bOOeM5On7KM2cvCiO1armoAV1HqERzqW5b7nrVr0fucfvHkaF5hrdkrG%2F1zi7Ew04Y6%2FTKQypq31LvrN0aAkCFtOVDQ3Ig%2BRZsC53KTIBlZzLGYCG4LERiwXI8c51hr%2BXexFEoWOKzKI095iHBI8abIU4ETzn0GC5hxuzEUBlLlW25GKK4jmAdeysICfYJihrID65d5%2BIgA1cySmHKkHfiLXdXKKKpkYYomgtDbEIqRqSEkpKi1YnO3Pa7TvLWsHD6usip%2FTq3ikheT9%2BgRCgr7fOH3l%2BnU2NEURnotisDS%2F9QjBuoGTV8r4EDTCIYwdLDR8GA2QIUhCjyIj%2F2j8DfVA%2FEp2WDYe8bxG1BlZElfdepasx3NJOpFMXnc63u1XBdZ3n%2BCfz%2FVXzPqU6Hv1xvps%2FXl%2FMnNvNAALtzi%2B%2FHvtzPVj9Pp6gWqJF3Cq7mwUBlTNb8Pr3YDO7AnJ3RRNcQbD6cnSzu0X2QDORaTsOsu5rq9bx7Vrt7WeuTBYbLYZhNmB7nfahGtcEubpYtFdh3aP54mYJkMzNrjz5Pzq%2FG00n4KxpRnutN77K7Z4uH05PWYT7vE2kfFmgpTPVFh4qLp%2FZNwKMgZn4UJKnv%2BzBMPQ5FAL1AIC5ozH4X%2BSftT%2FTDNrZfAQ%3D%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:24:18,533 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:24:18,535 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) was successful
2019-10-23 00:24:18,535 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature succeeded
2019-10-23 00:24:18,536 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Authentication via request simple signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:24:18,536 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:24:18,536 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:24:18,536 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.ExtractChannelBindingsExtensionsHandler:?] - Message Handler:  Message did not contain any ChannelBindings extensions
2019-10-23 00:24:18,536 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:24:18,537 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:24:18,537 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService for outbound message
2019-10-23 00:24:18,537 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService
2019-10-23 00:24:18,537 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2019-10-23 00:24:18,537 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Request is not a SAML 2 AuthnRequest
2019-10-23 00:24:18,537 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:24:18,537 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:24:18,538 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Inbound logout message, nothing to do
2019-10-23 00:24:18,541 - DEBUG [org.opensaml.saml.common.messaging.context.SAMLSubjectNameIdentifierContext:?] - Ignoring LogoutRequest, Subject does not require processing
2019-10-23 00:24:18,541 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:24:18,543 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing secondary lookup on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=
2019-10-23 00:24:18,543 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Secondary lookup failed on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=
2019-10-23 00:24:18,543 - INFO [net.shibboleth.idp.saml.saml2.profile.impl.ProcessLogoutRequest:?] - Profile Action ProcessLogoutRequest: No active session(s) found matching LogoutRequest
2019-10-23 00:24:18,544 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: SessionNotFound
2019-10-23 00:24:18,544 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - Error event SessionNotFound will be handled with response
2019-10-23 00:24:18,544 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:24:18,545 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:24:18,547 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Detailed errors are enabled
2019-10-23 00:24:18,547 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Current state of request was not mappable, setting StatusMessage to defaulted value
2019-10-23 00:24:18,548 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:24:18,548 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:24:18,548 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Deflating and Base64 encoding SAML message
2019-10-23 00:24:18,548 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Building URL to redirect client to
2019-10-23 00:24:18,548 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generating signature with key type 'RSA', algorithm URI 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256' over query string 'SAMLResponse=pZJNb9sgGMfv%2BxQW9xiMnRSj2FW1alKlVq3itJN6qTA8SdEc8Hhw248%2FO1m0LIdeegP0f3n4wfLyY9clbxDQeleRLGUkAae9sW5bkcf1j5kgl%2FW3Japdx3t567d%2BiCvA3juE5BowWqfi3vsaYy8pzUqeZguRFnnK51wKJhjtwzu09GE1GmMD4c1qoD%2BhbZp72lzd3dJDLElurivysjG5yjPB5ozrBfCSGaF0qRVwXphcqFHmjhOs%2FWgoxQW0umjFpszbPAMjWrO44BrMxrC85aMBcYAbh1G5WBHOsnKWsRnP14xJXshMpPOieCbJ05EDnziMZBzKw80rMgQnvUKL0qkdoIxaTrPLUSr74KPXviP1AZTcF4bThM8DFCKECSOpJ4w4cpxcceSVWrNfU2v6JT2Nr4%2Bv0kQVBzzbfvcGkifVDfB5Ne7VcgW%2Fh7ENAvlazqP75fy7ewjWadurjtD679SngWcdd4CotlBfuQRC8CHxWg8hgEnPvEfh2fG%2F%2Ff8ftP4D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256'
2019-10-23 00:24:18,550 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generated digital signature value (base64-encoded) eDKvl4KTKLOtOuu9288JTRAxbrA5wGyn2Cka8YYDJCyKBZ2kmyFvXKN36h6ADxUwFGQKQqoLykUoCyjLjR8N889lMBaOg8z2BBBCXJZzreuZR+e9XzToxaKE56cdY7Eg08VT7vG7WuI7YlVW3QxEweW4mO6RhQ+IutJqrcKjrjFJGCDH8q1VphBMt2PrIC+KAHP9MT9MWFnZBukHjs7v47iySiKts/hWP71o2tWBA8BMInmZUnKcvuBeQ1/ewdlxtWz1lM0JcE0VawVhj+PTA29CwaZXoztmuA+YuAwycCiqk3tpI00z8KgLGl5gbz54Ah9BDgjJXTs5O6C5pprOKQ==
2019-10-23 00:24:18,550 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutResponse
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout"
    ID="_fd3a3180502c6e290d8ac9cae224d38a"
    InResponseTo="_987ebc4b8f93b31ed8bd672cedfd03b2"
    IssueInstant="2019-10-23T00:24:18.544Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester">
            <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:UnknownPrincipal"/>
        </saml2p:StatusCode>
        <saml2p:StatusMessage>An error occurred.</saml2p:StatusMessage>
    </saml2p:Status>
</saml2p:LogoutResponse>

2019-10-23 00:24:18,550 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:24:18,550 - INFO [Shibboleth-Audit.Logout:?] - 20191023T002418Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_987ebc4b8f93b31ed8bd672cedfd03b2|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/logout|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_fd3a3180502c6e290d8ac9cae224d38a||||||
2019-10-23 00:26:43,557 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:26:43,557 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:26:43,557 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:26:43,557 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutRequest
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SLO"
    ID="_f7c0fbe7d2db68d2f1ac10c4bb05de83"
    IssueInstant="2019-10-23T00:26:43.904Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <saml2:NameID
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        NameQualifier="https://samltest.id/saml/idp"
        SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=</saml2:NameID>
    <saml2p:SessionIndex>_5d859b485cf44407f3d0e5035e1dea9b</saml2p:SessionIndex>
</saml2p:LogoutRequest>

2019-10-23 00:26:43,561 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:26:43,561 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:26:43,562 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:26:43,562 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:26:43,562 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_f7c0fbe7d2db68d2f1ac10c4bb05de83', issue instant '2019-10-23T00:26:43.904Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=nVPbTuMwEH3fr4j8WrW%2BJGkSixZ1W0pbeqE3CrwgJ3bAbGKX2C2XryeB7WpZIbTixbLGZ2bOOeM5On7KM2cvCiO1agHcQMARKtFcqtsWWK%2F69RAct38cGZZnZEvH%2Blbv7EI87ISxTq88pGL2LfXO2q2hEFZIWz40JIeSb%2BG20KnMBFx2JmMCF4LLQiQWLscz4Ax7LXCTBglKYxFwwuNmyEmKWYJR4sUx8rkI3RJmzE4MlbFM2RYgCEd1jOrEXSFESZN6biNC3jVwLg4ySCWjFKYMfSfeArtCUc2MNFSxXBhqE1oxoiWUlhStTnQG2u866VvDwunrImf269wqInk9fYNSoay0zx96f53OjBFFZSBoVwaW%2FuGINHAzbJSqiE9oiEJUevgoYmi2EPsBDt3Qi7wj%2BDfVA%2FFp2WDY%2BwZxWzBlZEkfOFWN%2BY5lMpWi%2BHyu1b0aLnCW55%2FA%2F1%2FF95zqdPjL9Wb6fH05f4pnLvRRd27J%2FdiT%2B9nq5%2BkU13w1ck%2Fh1dwfqCyWNa%2FPLjaDOziPz1iiaxg1H85OFvf43k8Gci2nQdZdTfV63j2r3b2s9cmCoOUwyCaxHud9pEa1wS5qli0V3HdY%2FniZwmQzM2uXPU%2FOr8bTSfArHDGe603vsruPFw%2BnJ63DfN4n0j4s0FKY6osOFRdP7Rufh34Ue6GfpJ7noSB1ORI%2Bcn2BuWBR%2FLvIP2l%2Foh%2B2sf0K&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1&Signature=MDwCHCAhlx6WC6bRCfsB%2BRkhfRfTmrPdEZKRu6toa1UCHBVnXIrpg9UtKAiPpuOXTgYlMQpiJhHr%2FhZAAI0%3D
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=nVPbTuMwEH3fr4j8WrW%2BJGkSixZ1W0pbeqE3CrwgJ3bAbGKX2C2XryeB7WpZIbTixbLGZ2bOOeM5On7KM2cvCiO1agHcQMARKtFcqtsWWK%2F69RAct38cGZZnZEvH%2Blbv7EI87ISxTq88pGL2LfXO2q2hEFZIWz40JIeSb%2BG20KnMBFx2JmMCF4LLQiQWLscz4Ax7LXCTBglKYxFwwuNmyEmKWYJR4sUx8rkI3RJmzE4MlbFM2RYgCEd1jOrEXSFESZN6biNC3jVwLg4ySCWjFKYMfSfeArtCUc2MNFSxXBhqE1oxoiWUlhStTnQG2u866VvDwunrImf269wqInk9fYNSoay0zx96f53OjBFFZSBoVwaW%2FuGINHAzbJSqiE9oiEJUevgoYmi2EPsBDt3Qi7wj%2BDfVA%2FFp2WDY%2BwZxWzBlZEkfOFWN%2BY5lMpWi%2BHyu1b0aLnCW55%2FA%2F1%2FF95zqdPjL9Wb6fH05f4pnLvRRd27J%2FdiT%2B9nq5%2BkU13w1ck%2Fh1dwfqCyWNa%2FPLjaDOziPz1iiaxg1H85OFvf43k8Gci2nQdZdTfV63j2r3b2s9cmCoOUwyCaxHud9pEa1wS5qli0V3HdY%2FniZwmQzM2uXPU%2FOr8bTSfArHDGe603vsruPFw%2BnJ63DfN4n0j4s0FKY6osOFRdP7Rufh34Ue6GfpJ7noSB1ORI%2Bcn2BuWBR%2FLvIP2l%2Foh%2B2sf0K&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:26:43,563 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:26:43,565 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) was successful
2019-10-23 00:26:43,565 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature succeeded
2019-10-23 00:26:43,565 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Authentication via request simple signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:26:43,565 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:26:43,565 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:26:43,565 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.ExtractChannelBindingsExtensionsHandler:?] - Message Handler:  Message did not contain any ChannelBindings extensions
2019-10-23 00:26:43,565 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:26:43,565 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:26:43,565 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService for outbound message
2019-10-23 00:26:43,565 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService
2019-10-23 00:26:43,565 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2019-10-23 00:26:43,565 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Request is not a SAML 2 AuthnRequest
2019-10-23 00:26:43,566 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:26:43,566 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:26:43,566 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Inbound logout message, nothing to do
2019-10-23 00:26:43,569 - DEBUG [org.opensaml.saml.common.messaging.context.SAMLSubjectNameIdentifierContext:?] - Ignoring LogoutRequest, Subject does not require processing
2019-10-23 00:26:43,569 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:26:43,569 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing secondary lookup on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=
2019-10-23 00:26:43,569 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Secondary lookup failed on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=
2019-10-23 00:26:43,569 - INFO [net.shibboleth.idp.saml.saml2.profile.impl.ProcessLogoutRequest:?] - Profile Action ProcessLogoutRequest: No active session(s) found matching LogoutRequest
2019-10-23 00:26:43,569 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: SessionNotFound
2019-10-23 00:26:43,570 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - Error event SessionNotFound will be handled with response
2019-10-23 00:26:43,570 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:26:43,570 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:26:43,571 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Detailed errors are enabled
2019-10-23 00:26:43,572 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Current state of request was not mappable, setting StatusMessage to defaulted value
2019-10-23 00:26:43,572 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:26:43,572 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:26:43,573 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Deflating and Base64 encoding SAML message
2019-10-23 00:26:43,573 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Building URL to redirect client to
2019-10-23 00:26:43,573 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generating signature with key type 'RSA', algorithm URI 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256' over query string 'SAMLResponse=pZLNbtswEITvfQqBd4s%2FtmSJsBQEDQoESJDAclKgl4Ii165QmVS5VJLHL2XHiOtDLr2RxMzs8CNXV2%2F7PnkBj52zFeEpIwlY7UxndxV52nybFeSq%2FrJCte%2FFIO%2Fczo1hDTg4i5DcAIbOqnDw%2FgphkJTyUqQ8L9LFPBWZkAUrGB38K7T0cR2NoQH%2F0mmg36FtmgfaXN%2Ff0WMsSW5vKvKzbHPDc5UXqlgYDvNCmEyXImOmbJnaLqPMnhpsXDRsl5ptW1gaYdq8MGLLleZML9qWZQaKeTQgjnBrMSgbKiIYL2eczcR8w5gUuYxVsyX7QZLnEwcxcYhkLMrjzSsyeiudwg6lVXtAGbScussolYN3wWnXk%2FoISh4G%2BvOEzwMUIvgJI6knjBg5Tq4QeaWdOaxpZ4YVPY%2BvT6%2FSBBVGvNh%2BdQaSZ9WP8PloPKjlGv6McRp48n85T%2Fa3da%2F20XdWd4PqCa3fW58HXsy4B0S1g%2FraJuC984nTevQeTHrhPQkvjj%2F2%2F37Q%2Bi8%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256'
2019-10-23 00:26:43,574 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generated digital signature value (base64-encoded) molIOVKu5t7BPmgK3MfpfdvlkEp7HgrmWdZKi24aiSEH79x5yhHbKfIwq1eg8VSS8UxukNawieeLLZC/fh71r0bL3fPJM/6JUXe0v0L5yi2lBkQ9IWvOa/GPOXxnA4b/P2cj1B7ONRqdwUcPg5Ow/uDE2M3Sfk8MYt+UblJM/6auPW0o1UBxnK8O/38Tfc8HRkxB5VZ3CG3zMlEa4iX7G+9j3MLtkManqWWyeIMPyGoWkcmeBcyu3qFC1CydRhR/6LaxNBB1qRfbWURS0dlRw2rZiRndU4zLcKZRXnf+XF4rulfHzAiGzi/yioz+FCVv9mxzfL0ZM4gf6OerrXZMSg==
2019-10-23 00:26:43,574 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutResponse
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout"
    ID="_9b6d16a68a84d1e382d5c9250d9b0af7"
    InResponseTo="_f7c0fbe7d2db68d2f1ac10c4bb05de83"
    IssueInstant="2019-10-23T00:26:43.570Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester">
            <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:UnknownPrincipal"/>
        </saml2p:StatusCode>
        <saml2p:StatusMessage>An error occurred.</saml2p:StatusMessage>
    </saml2p:Status>
</saml2p:LogoutResponse>

2019-10-23 00:26:43,574 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:26:43,575 - INFO [Shibboleth-Audit.Logout:?] - 20191023T002643Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_f7c0fbe7d2db68d2f1ac10c4bb05de83|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/logout|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_9b6d16a68a84d1e382d5c9250d9b0af7||||||
2019-10-23 00:31:03,400 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: ss:mem:23999dd1a41dcb05da8f942572526db560b7f1f1d5ca143c794ee1d878c95892
2019-10-23 00:31:03,400 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:31:03,401 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:31:03,401 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://158.121.248.108/Shibboleth.sso/SAML2/POST"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="_c1f218859e4c6d1893164f7132306f63"
    IssueInstant="2019-10-23T00:31:03Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://example.com/shibboleth</saml:Issuer>
    <samlp:NameIDPolicy AllowCreate="1"/>
</samlp:AuthnRequest>

2019-10-23 00:31:03,405 - DEBUG [org.opensaml.saml.metadata.resolver.impl.AbstractBatchMetadataResolver:?] - Metadata Resolver FilesystemMetadataResolver SAMLtest: Resolved 0 candidates via EntityIdCriterion: EntityIdCriterion [id=https://example.com/shibboleth]
2019-10-23 00:31:03,405 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved no EntityDescriptors via underlying MetadataResolver, returning empty collection
2019-10-23 00:31:03,405 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  No metadata returned for https://example.com/shibboleth in role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor with protocol urn:oasis:names:tc:SAML:2.0:protocol
2019-10-23 00:31:03,405 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No metadata context found, nothing to do
2019-10-23 00:31:03,405 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://example.com/shibboleth
2019-10-23 00:31:03,405 - WARN [net.shibboleth.idp.profile.impl.SelectProfileConfiguration:?] - Profile Action SelectProfileConfiguration: Profile http://shibboleth.net/ns/profiles/saml2/sso/browser is not available for RP configuration shibboleth.UnverifiedRelyingParty (RPID https://example.com/shibboleth)
2019-10-23 00:31:03,406 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: InvalidProfileConfiguration
2019-10-23 00:31:03,406 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:41:20,343 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: https://integrations.pressbooks.network/wp/wp-login.php?action=pb_shibboleth
2019-10-23 00:41:20,344 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:41:20,344 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:41:20,344 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://integrations.pressbooks.network/wp/wp-login.php?action=pb_shibboleth_acs"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="ONELOGIN_7148a8800ce3e0cd975a7e847b08bc7420e44bcc"
    IssueInstant="2019-10-22T23:05:28Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
        xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer>https://integrations.pressbooks.network/wp/shibboleth</saml:Issuer>
    <samlp:NameIDPolicy
        AllowCreate="true"
        Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified"/>
    <samlp:RequestedAuthnContext Comparison="exact">
        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml:AuthnContextClassRef>
    </samlp:RequestedAuthnContext>
</samlp:AuthnRequest>

2019-10-23 00:41:20,349 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'https://integrations.pressbooks.network/wp/shibboleth' from origin source
2019-10-23 00:41:20,349 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:41:20,349 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:41:20,349 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:41:20,349 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:41:20,349 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:41:20,349 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:41:20,349 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selected AttributeConsumingService with index 1
2019-10-23 00:41:20,349 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://integrations.pressbooks.network/wp/shibboleth
2019-10-23 00:41:20,350 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:41:20,350 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:41:20,350 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:41:20,350 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:41:20,350 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:41:20,351 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID 'ONELOGIN_7148a8800ce3e0cd975a7e847b08bc7420e44bcc', issue instant '2019-10-22T23:05:28.000Z', entityID 'https://integrations.pressbooks.network/wp/shibboleth'
2019-10-23 00:41:20,351 - WARN [org.opensaml.saml.common.binding.security.impl.MessageLifetimeSecurityHandler:?] - Message Handler:  Message was expired: message time was '2019-10-22T23:05:28.000Z', message expired at: '2019-10-22T23:11:28.000Z', current time: '2019-10-23T00:41:20.351Z'
2019-10-23 00:41:20,351 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: MessageExpired
2019-10-23 00:41:20,352 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:42:04,718 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:42:04,718 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:42:04,718 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:42:04,719 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutRequest
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SLO"
    ID="_90dd714d88f5f99775652e09028ea156"
    IssueInstant="2019-10-23T00:42:04.438Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <saml2:NameID
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        NameQualifier="https://samltest.id/saml/idp"
        SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=</saml2:NameID>
    <saml2p:SessionIndex>_5d859b485cf44407f3d0e5035e1dea9b</saml2p:SessionIndex>
</saml2p:LogoutRequest>

2019-10-23 00:42:04,724 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:42:04,724 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:42:04,724 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:42:04,724 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:42:04,724 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:42:04,724 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:42:04,724 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:42:04,724 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:42:04,724 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:42:04,724 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_90dd714d88f5f99775652e09028ea156', issue instant '2019-10-23T00:42:04.438Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=nVPbTuMwEH3fr4jyWrV2nLhxLFrUbSlt6YXeKPCCnNgBs4ldYrdcvp4EtqtlhdCKF8san5k554zn6Pgpz5y9KIzUquV6Deg6QiWaS3Xbcterfp24x%2B0fR4blGdrSsb7VO7sQDzthrNMrD6mYfUu9s3ZrKAAV0pYPDcmB5FuwLXQqMwGWnckYgYXgshCJBcvxzHWGvZZ7E0HOQy%2FghKQ4jaIwxE2MBIwgIoJ5uFnCjNmJoTKWKdtyEfSiugfryF9BSANEYdAIfHLtOhcHGaiSUQpThr4Tb7m7QlHNjDRUsVwYahNaMaIllJYUrU505rbfddK3hoXT10XO7Ne5VUTyevoGpUJZaZ8%2F9P46nRkjispAt10ZWPrnRajhNUkpqYEwogQSWHr4KGJgtsDDoUd8EkTBEfib6oH4tGww7H2DuC2YMrKk7zpVjfmOZTKVovh8rtW9Gq7rLM8%2Fgf%2B%2Fiu851enwl%2BvN9Pn6cv4Uz3yAYXdu0f04kPvZ6ufp1KthNfJPwdUcD1QWy1rQZxebwR2Yx2cs0TUPNh%2FOThb33j1OBnItp2HWXU31et49q929rPXJAsHlMMwmsR7nfahGtcEuapYtFdh3WP54mYJkMzNrnz1Pzq%2FG00n4i4wYz%2FWmd9ndx4uH05PWYT7vE2kfFmgpTPVFh4qLp%2FYN5gRHcUBwkgZBAMPU51Bg6GPhccGi%2BHeRf9L%2BRD9sY%2FsV&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1&Signature=MD4CHQCDJBP7kqx264Yfv1cy46a0ko3fHFtR5ElNPGTbAh0AohTuDKswZ%2FwvIESINm%2FovkCzPuteLqms8xWicA%3D%3D
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=nVPbTuMwEH3fr4jyWrV2nLhxLFrUbSlt6YXeKPCCnNgBs4ldYrdcvp4EtqtlhdCKF8san5k554zn6Pgpz5y9KIzUquV6Deg6QiWaS3Xbcterfp24x%2B0fR4blGdrSsb7VO7sQDzthrNMrD6mYfUu9s3ZrKAAV0pYPDcmB5FuwLXQqMwGWnckYgYXgshCJBcvxzHWGvZZ7E0HOQy%2FghKQ4jaIwxE2MBIwgIoJ5uFnCjNmJoTKWKdtyEfSiugfryF9BSANEYdAIfHLtOhcHGaiSUQpThr4Tb7m7QlHNjDRUsVwYahNaMaIllJYUrU505rbfddK3hoXT10XO7Ne5VUTyevoGpUJZaZ8%2F9P46nRkjispAt10ZWPrnRajhNUkpqYEwogQSWHr4KGJgtsDDoUd8EkTBEfib6oH4tGww7H2DuC2YMrKk7zpVjfmOZTKVovh8rtW9Gq7rLM8%2Fgf%2B%2Fiu851enwl%2BvN9Pn6cv4Uz3yAYXdu0f04kPvZ6ufp1KthNfJPwdUcD1QWy1rQZxebwR2Yx2cs0TUPNh%2FOThb33j1OBnItp2HWXU31et49q929rPXJAsHlMMwmsR7nfahGtcEuapYtFdh3WP54mYJkMzNrnz1Pzq%2FG00n4i4wYz%2FWmd9ndx4uH05PWYT7vE2kfFmgpTPVFh4qLp%2FYN5gRHcUBwkgZBAMPU51Bg6GPhccGi%2BHeRf9L%2BRD9sY%2FsV&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:42:04,725 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:42:04,727 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) was successful
2019-10-23 00:42:04,727 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature succeeded
2019-10-23 00:42:04,727 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Authentication via request simple signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:42:04,727 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:42:04,727 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:42:04,727 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.ExtractChannelBindingsExtensionsHandler:?] - Message Handler:  Message did not contain any ChannelBindings extensions
2019-10-23 00:42:04,727 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:42:04,727 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:42:04,727 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService for outbound message
2019-10-23 00:42:04,727 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService
2019-10-23 00:42:04,727 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2019-10-23 00:42:04,727 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Request is not a SAML 2 AuthnRequest
2019-10-23 00:42:04,728 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:42:04,728 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:42:04,728 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Inbound logout message, nothing to do
2019-10-23 00:42:04,731 - DEBUG [org.opensaml.saml.common.messaging.context.SAMLSubjectNameIdentifierContext:?] - Ignoring LogoutRequest, Subject does not require processing
2019-10-23 00:42:04,731 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:42:04,731 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing secondary lookup on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=
2019-10-23 00:42:04,731 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Secondary lookup failed on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=
2019-10-23 00:42:04,731 - INFO [net.shibboleth.idp.saml.saml2.profile.impl.ProcessLogoutRequest:?] - Profile Action ProcessLogoutRequest: No active session(s) found matching LogoutRequest
2019-10-23 00:42:04,732 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: SessionNotFound
2019-10-23 00:42:04,732 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - Error event SessionNotFound will be handled with response
2019-10-23 00:42:04,732 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:42:04,733 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:42:04,734 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Detailed errors are enabled
2019-10-23 00:42:04,734 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Current state of request was not mappable, setting StatusMessage to defaulted value
2019-10-23 00:42:04,735 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:42:04,735 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:42:04,735 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Deflating and Base64 encoding SAML message
2019-10-23 00:42:04,735 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Building URL to redirect client to
2019-10-23 00:42:04,735 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generating signature with key type 'RSA', algorithm URI 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256' over query string 'SAMLResponse=pZJNb9sgGMfv%2BxQW9xiM31Hsqlo1qVKrVnHaSbtMxDzJ0BzweHDbjz%2BcNGqWQy%2B7Afq%2FPPxgefW2H6IXcKitaUgSMxKB6a3SZteQp%2FW3RUWu2i9LlPuBj%2BLO7uzkV4CjNQjRDaDXRvqD95f3o6A0qXmcFFWcpTHPuahYxejoXmFDH1fB6DtwL7oH%2Bh02XfdAu%2Bv7O3qMJdHtTUN%2BKpluqzwtckgyVkvJi5Slm7pUfZlUeVkGmTlNsLbBUDOlyiRTVbXNt3VdlnmRc2A14xXIJC%2BCAXGCW4NeGt8QzpJ6kbAFT9eMiYwLlsVlyn%2BQ6PnEgc8cAhmD4njzhkzOCCtRozByDyh8L%2BbZRZCK0VlvezuQ9ghKHArdecLnARIR3IyRtDNGDBxnlw%2B8Yq0Oa6rVuKTn8e3pVTov%2FYQX269WQfQshwk%2Br8aDWqzgzxTawJH%2Fy3kyv419NY9Om16PciC0fZ%2F6PPCi4x4Q5Q7aaxOBc9ZFtu8n50DFF96T8OL4Y%2F%2FvB23%2FAg%3D%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256'
2019-10-23 00:42:04,737 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generated digital signature value (base64-encoded) D9x/B9W6brquzr1qHujQeNp+x6NrqKX7TcbHiaAHxSfFLnRO4Pobr8bWdXAKhMzIch1elk4LNstMVi54TobjQC0sBJa3v4T7rXwJR2nBg/S47uerl04ZHJr7tG3byQjsiyzkolbxFMubxz0Gb5mxb+Ge88n48PzgTf1GHc9RmqqURubeVv1llh0jJqIfM14PjKQoHPl3Oj35j8IvloNLBZr20SEGP/l6SDfQtMBBdwUJVsS+GKjb2yLgRCKpv3WvevXOAQahTXq9hCe2fqL7rY/ZMEC23sl5FLr1zqIfAQTVOt8cxr9lKjzBosqxA6T0AI1XJVohVpyyaeuPvBpwwA==
2019-10-23 00:42:04,737 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutResponse
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout"
    ID="_da3f85365e1409aa26303b97dc718577"
    InResponseTo="_90dd714d88f5f99775652e09028ea156"
    IssueInstant="2019-10-23T00:42:04.732Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester">
            <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:UnknownPrincipal"/>
        </saml2p:StatusCode>
        <saml2p:StatusMessage>An error occurred.</saml2p:StatusMessage>
    </saml2p:Status>
</saml2p:LogoutResponse>

2019-10-23 00:42:04,737 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:42:04,737 - INFO [Shibboleth-Audit.Logout:?] - 20191023T004204Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_90dd714d88f5f99775652e09028ea156|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/logout|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_da3f85365e1409aa26303b97dc718577||||||
2019-10-23 00:42:33,120 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: ss:mem:cb330df3dc6772965924347e07e309f03e86b0f361897df632202e0a64f7abcf
2019-10-23 00:42:33,120 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:42:33,121 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:42:33,121 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://sb.olivedon.com/Shibboleth.sso/SAML2/POST"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="_5aeb503e640f9774d07d4fffe6190c62"
    IssueInstant="2019-10-23T00:42:26Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://sb.olivedon.com/shibboleth</saml:Issuer>
    <samlp:NameIDPolicy AllowCreate="1"/>
</samlp:AuthnRequest>

2019-10-23 00:42:33,127 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'https://sb.olivedon.com/shibboleth' from origin source
2019-10-23 00:42:33,127 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:42:33,127 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:42:33,127 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:42:33,127 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:42:33,127 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:42:33,127 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:42:33,127 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:42:33,127 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://sb.olivedon.com/shibboleth
2019-10-23 00:42:33,128 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:42:33,128 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:42:33,128 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:42:33,128 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:42:33,128 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:42:33,128 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_5aeb503e640f9774d07d4fffe6190c62', issue instant '2019-10-23T00:42:26.000Z', entityID 'https://sb.olivedon.com/shibboleth'
2019-10-23 00:42:33,129 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2AuthnRequestsSignedSecurityHandler:?] - SPSSODescriptor for entity ID 'https://sb.olivedon.com/shibboleth' does not require AuthnRequests to be signed
2019-10-23 00:42:33,129 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:42:33,129 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:42:33,129 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  HTTP request was not signed via simple signature mechanism, skipping
2019-10-23 00:42:33,129 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:42:33,129 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:42:33,129 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 6 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location https://sb.olivedon.com/Shibboleth.sso/SAML2/POST using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:42:33,129 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:42:33,129 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:42:33,130 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataSignatureSigningParametersResolver:?] - Resolved signature algorithm URI from SAML metadata SigningMethod: http://www.w3.org/2001/04/xmldsig-more#rsa-sha512
2019-10-23 00:42:33,130 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataSignatureSigningParametersResolver:?] - Resolved reference digest method algorithm URI from SAML metadata DigestMethod: http://www.w3.org/2001/04/xmlenc#sha512
2019-10-23 00:42:33,130 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing not enabled
2019-10-23 00:42:33,130 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (false), attributes(false)
2019-10-23 00:42:33,130 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:42:33,130 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:42:33,130 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:42:33,130 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: https://sb.olivedon.com/shibboleth
2019-10-23 00:42:33,130 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:42:33,130 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Resolved data encryption algorithm URI from SAML metadata EncryptionMethod: http://www.w3.org/2001/04/xmlenc#aes128-cbc
2019-10-23 00:42:33,130 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Resolved key transport algorithm URI from SAML metadata EncryptionMethod: http://www.w3.org/2009/xmlenc11#rsa-oaep
2019-10-23 00:42:33,130 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolved EncryptionParameters
2019-10-23 00:42:33,135 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:42:33,136 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:42:33.136Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:42:33,136 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: AuthnRequest did not contain a RequestedAuthnContext, nothing to do
2019-10-23 00:42:33,136 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:42:33,136 - DEBUG [net.shibboleth.idp.session.impl.PopulateSessionContext:?] - Profile Action PopulateSessionContext: No session found for client
2019-10-23 00:42:33,137 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Profile configuration did not supply any default authentication methods
2019-10-23 00:42:33,137 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:42:33,137 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:42:33,137 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No specific Principals requested
2019-10-23 00:42:33,137 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No usable active results available, selecting an inactive flow
2019-10-23 00:42:33,137 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Selecting inactive authentication flow authn/Password
2019-10-23 00:42:33,137 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth:?] - Profile Action ExtractUsernamePasswordFromBasicAuth: No appropriate Authorization header found
2019-10-23 00:42:36,187 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of 'sb.olivedon.com'
2019-10-23 00:42:36,187 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:42:36,187 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:44:48,317 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: ss:mem:b33cad02589085a6c2f3ec6541b479cc65c0ec4b5ff7b9da4699f9d1fa7f0d2b
2019-10-23 00:44:48,317 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:44:48,317 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:44:48,317 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://sb.olivedon.com/Shibboleth.sso/SAML2/POST"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="_b961926cffe28cd27baefaa9c08b6507"
    IssueInstant="2019-10-23T00:44:36Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://sb.olivedon.com/shibboleth</saml:Issuer>
    <samlp:NameIDPolicy AllowCreate="1"/>
</samlp:AuthnRequest>

2019-10-23 00:44:48,321 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'https://sb.olivedon.com/shibboleth' from origin source
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:44:48,322 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://sb.olivedon.com/shibboleth
2019-10-23 00:44:48,322 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SSO
2019-10-23 00:44:48,322 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:44:48,323 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_b961926cffe28cd27baefaa9c08b6507', issue instant '2019-10-23T00:44:36.000Z', entityID 'https://sb.olivedon.com/shibboleth'
2019-10-23 00:44:48,323 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2AuthnRequestsSignedSecurityHandler:?] - SPSSODescriptor for entity ID 'https://sb.olivedon.com/shibboleth' does not require AuthnRequests to be signed
2019-10-23 00:44:48,323 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:44:48,323 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:44:48,323 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  HTTP request was not signed via simple signature mechanism, skipping
2019-10-23 00:44:48,323 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:44:48,323 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:44:48,323 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:44:48,323 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 6 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location https://sb.olivedon.com/Shibboleth.sso/SAML2/POST using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataSignatureSigningParametersResolver:?] - Resolved signature algorithm URI from SAML metadata SigningMethod: http://www.w3.org/2001/04/xmldsig-more#rsa-sha512
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataSignatureSigningParametersResolver:?] - Resolved reference digest method algorithm URI from SAML metadata DigestMethod: http://www.w3.org/2001/04/xmlenc#sha512
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing not enabled
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (false), attributes(false)
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: https://sb.olivedon.com/shibboleth
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Resolved data encryption algorithm URI from SAML metadata EncryptionMethod: http://www.w3.org/2001/04/xmlenc#aes128-cbc
2019-10-23 00:44:48,324 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Resolved key transport algorithm URI from SAML metadata EncryptionMethod: http://www.w3.org/2009/xmlenc11#rsa-oaep
2019-10-23 00:44:48,324 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolved EncryptionParameters
2019-10-23 00:44:48,327 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:44:48.328Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: AuthnRequest did not contain a RequestedAuthnContext, nothing to do
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.session.impl.PopulateSessionContext:?] - Profile Action PopulateSessionContext: No session found for client
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Profile configuration did not supply any default authentication methods
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No specific Principals requested
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No usable active results available, selecting an inactive flow
2019-10-23 00:44:48,328 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Selecting inactive authentication flow authn/Password
2019-10-23 00:44:48,329 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth:?] - Profile Action ExtractUsernamePasswordFromBasicAuth: No appropriate Authorization header found
2019-10-23 00:44:51,443 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of 'sb.olivedon.com'
2019-10-23 00:44:51,443 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:44:51,443 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:46:09,822 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: ss:mem:a3034ea6c25aabe727802e156e8ef5d498c2e9cb33c5a8080fe39cf7c7c99452
2019-10-23 00:46:09,822 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:46:09,823 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:46:09,823 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="http://104.40.238.223/Shibboleth.sso/SAML2/POST"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="_e09ef2893f8a9ba2b6cd2b73ab2a9199"
    IssueInstant="2019-10-23T00:46:09Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://testomachinos.westeurope.cloudapp.azure.com</saml:Issuer>
    <samlp:NameIDPolicy AllowCreate="1"/>
</samlp:AuthnRequest>

2019-10-23 00:46:09,827 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://testomachinos.westeurope.cloudapp.azure.com' from origin source
2019-10-23 00:46:09,827 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:46:09,827 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 0 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:46:09,827 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Candidates iteration was empty, nothing to filter via predicates
2019-10-23 00:46:09,827 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  No metadata returned for http://testomachinos.westeurope.cloudapp.azure.com in role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor with protocol urn:oasis:names:tc:SAML:2.0:protocol
2019-10-23 00:46:09,827 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No metadata context found, nothing to do
2019-10-23 00:46:09,828 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://testomachinos.westeurope.cloudapp.azure.com
2019-10-23 00:46:09,828 - WARN [net.shibboleth.idp.profile.impl.SelectProfileConfiguration:?] - Profile Action SelectProfileConfiguration: Profile http://shibboleth.net/ns/profiles/saml2/sso/browser is not available for RP configuration shibboleth.UnverifiedRelyingParty (RPID http://testomachinos.westeurope.cloudapp.azure.com)
2019-10-23 00:46:09,828 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: InvalidProfileConfiguration
2019-10-23 00:46:09,828 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:46:20,639 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:46:20,639 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:46:20,640 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:46:20,640 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<ns0:AuthnRequest
    AssertionConsumerServiceURL="http://localhost:8000/saml2_auth/acs/"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="id-LspCcYPlQWLuKnMTR" IssueInstant="2019-10-23T00:46:19Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion">
    <ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity"/>
    <ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified"/>
</ns0:AuthnRequest>

2019-10-23 00:46:20,644 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  SAML entity context class 'org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext' missing or did not contain an entityID or role
2019-10-23 00:46:20,644 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No metadata context found, nothing to do
2019-10-23 00:46:20,644 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer null
2019-10-23 00:46:20,645 - WARN [net.shibboleth.idp.profile.impl.SelectProfileConfiguration:?] - Profile Action SelectProfileConfiguration: Profile http://shibboleth.net/ns/profiles/saml2/sso/browser is not available for RP configuration shibboleth.UnverifiedRelyingParty (RPID null)
2019-10-23 00:46:20,645 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: InvalidProfileConfiguration
2019-10-23 00:46:20,645 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:46:25,940 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:46:25,940 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:46:25,940 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:46:25,940 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<ns0:AuthnRequest
    AssertionConsumerServiceURL="http://localhost:8000/saml2_auth/acs/"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="id-LspCcYPlQWLuKnMTR" IssueInstant="2019-10-23T00:46:19Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:ns0="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:ns1="urn:oasis:names:tc:SAML:2.0:assertion">
    <ns1:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity"/>
    <ns0:NameIDPolicy AllowCreate="false" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified"/>
</ns0:AuthnRequest>

2019-10-23 00:46:25,941 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  SAML entity context class 'org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext' missing or did not contain an entityID or role
2019-10-23 00:46:25,941 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No metadata context found, nothing to do
2019-10-23 00:46:25,941 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer null
2019-10-23 00:46:25,941 - WARN [net.shibboleth.idp.profile.impl.SelectProfileConfiguration:?] - Profile Action SelectProfileConfiguration: Profile http://shibboleth.net/ns/profiles/saml2/sso/browser is not available for RP configuration shibboleth.UnverifiedRelyingParty (RPID null)
2019-10-23 00:46:25,942 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: InvalidProfileConfiguration
2019-10-23 00:46:25,942 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally
2019-10-23 00:51:14,816 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:51:14,816 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:51:14,816 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:51:14,816 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutRequest
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SLO"
    ID="_d541c77e56cdff337c236acbc0a17a83"
    IssueInstant="2019-10-23T00:51:14.475Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <saml2:NameID
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        NameQualifier="https://samltest.id/saml/idp"
        SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=</saml2:NameID>
    <saml2p:SessionIndex>_5d859b485cf44407f3d0e5035e1dea9b</saml2p:SessionIndex>
</saml2p:LogoutRequest>

2019-10-23 00:51:14,821 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:51:14,821 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:51:14,821 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:51:14,821 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:51:14,821 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:51:14,821 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:51:14,821 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:51:14,821 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:51:14,821 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:51:14,822 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_d541c77e56cdff337c236acbc0a17a83', issue instant '2019-10-23T00:51:14.475Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=nVPbTuMwEH3fr4j8WrW2k7hJLVrUbSkt9EJvFHhBju0sZhO7xG65fP0msF0tK4RWvFjW%2BMzMOWc8R8dPeebtZWGV0W2AGwh4UnMjlP7RBuvVoB6D4863I8vyzN%2FSsflhdm4hH3bSOq9fHkoz95p659zWUggrpCsfGkpAJbZwW5hUZRIuu5OxDxdSqEJyB5fjGfBG%2FTa4FSTEPIokaXKRpkEQcT9oMp5wxHDE4qCEWbuTI20d064NfIRbdYzqfrBCiBJMcdgII3IDvMuDDL%2BSUQrTlr4Rb4NdoalhVlmqWS4tdZxWjGgJpSVFZ7jJQOdNJ31tWHgDU%2BTMfZ5bRZSop69QKrVT7vld78%2FTmbWyqAwEncrA0j%2Fc8hu4GTfCoOETn8YoRqWHjzKBdgsxiXAcxGErPIJ%2FUz0Qn5YNRv0vEHcF01aV9IFX1ZjvWKZSJYuP51rdq%2BECb3nxAfz%2FVXzNqW5XvNxsps83V%2FOnZBZAgnpz59%2BPQ7Wfrb6fTnGN6LPgFF7PyVBniaqFA3a5Gd7BeXLOuKlh1Hw4P1nc43vCh2qtplHWW03Net47r929rM3JwkfLUZRNEjPOB0if1Ya7VrNsqeG%2By%2FLHqxTyzcyuA%2FY8ubgeTyfRz%2FiMidxs%2Ble9fbJ4OD1pH%2BbzNpHOYYGW0lZfdKSFfOrcEhGTVhLGhKdhGKIoDQSSBAVEYiFZK%2Fld5J%2B0P9F329j5BQ%3D%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1&Signature=MD0CHQCUDB33lLom6bMKbMpK%2F7HjcjeTeOkPDyl7r6IqAhxSh7UwpYOaAS1OBBwKaURopez4doqA5uvuKTI5
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=nVPbTuMwEH3fr4j8WrW2k7hJLVrUbSkt9EJvFHhBju0sZhO7xG65fP0msF0tK4RWvFjW%2BMzMOWc8R8dPeebtZWGV0W2AGwh4UnMjlP7RBuvVoB6D4863I8vyzN%2FSsflhdm4hH3bSOq9fHkoz95p659zWUggrpCsfGkpAJbZwW5hUZRIuu5OxDxdSqEJyB5fjGfBG%2FTa4FSTEPIokaXKRpkEQcT9oMp5wxHDE4qCEWbuTI20d064NfIRbdYzqfrBCiBJMcdgII3IDvMuDDL%2BSUQrTlr4Rb4NdoalhVlmqWS4tdZxWjGgJpSVFZ7jJQOdNJ31tWHgDU%2BTMfZ5bRZSop69QKrVT7vld78%2FTmbWyqAwEncrA0j%2Fc8hu4GTfCoOETn8YoRqWHjzKBdgsxiXAcxGErPIJ%2FUz0Qn5YNRv0vEHcF01aV9IFX1ZjvWKZSJYuP51rdq%2BECb3nxAfz%2FVXzNqW5XvNxsps83V%2FOnZBZAgnpz59%2BPQ7Wfrb6fTnGN6LPgFF7PyVBniaqFA3a5Gd7BeXLOuKlh1Hw4P1nc43vCh2qtplHWW03Net47r929rM3JwkfLUZRNEjPOB0if1Ya7VrNsqeG%2By%2FLHqxTyzcyuA%2FY8ubgeTyfRz%2FiMidxs%2Ble9fbJ4OD1pH%2BbzNpHOYYGW0lZfdKSFfOrcEhGTVhLGhKdhGKIoDQSSBAVEYiFZK%2Fld5J%2B0P9F329j5BQ%3D%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:51:14,823 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:51:14,825 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) was successful
2019-10-23 00:51:14,825 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature succeeded
2019-10-23 00:51:14,825 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Authentication via request simple signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:51:14,825 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:51:14,825 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:51:14,825 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.ExtractChannelBindingsExtensionsHandler:?] - Message Handler:  Message did not contain any ChannelBindings extensions
2019-10-23 00:51:14,825 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:51:14,825 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:51:14,826 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService for outbound message
2019-10-23 00:51:14,826 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService
2019-10-23 00:51:14,826 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2019-10-23 00:51:14,826 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Request is not a SAML 2 AuthnRequest
2019-10-23 00:51:14,826 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:51:14,826 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:51:14,826 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Inbound logout message, nothing to do
2019-10-23 00:51:14,830 - DEBUG [org.opensaml.saml.common.messaging.context.SAMLSubjectNameIdentifierContext:?] - Ignoring LogoutRequest, Subject does not require processing
2019-10-23 00:51:14,830 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:51:14,830 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing secondary lookup on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=
2019-10-23 00:51:14,830 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Secondary lookup failed on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxbO3/50CQt2jL4ivOTBGN1+5nJ3G/YQ5Hnlbi+4FaVWHh/QbKaco+106qKERj1j5cHiUiN7lCTNoUQCK+hzUoER20SI7lMboLmF0nJ+Hu96zZWn/vAamwXf/cWOsU3ayMPYLNM7k8JadmoWDXCvbRqGE=
2019-10-23 00:51:14,830 - INFO [net.shibboleth.idp.saml.saml2.profile.impl.ProcessLogoutRequest:?] - Profile Action ProcessLogoutRequest: No active session(s) found matching LogoutRequest
2019-10-23 00:51:14,830 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: SessionNotFound
2019-10-23 00:51:14,830 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - Error event SessionNotFound will be handled with response
2019-10-23 00:51:14,830 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:51:14,831 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:51:14,833 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Detailed errors are enabled
2019-10-23 00:51:14,833 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Current state of request was not mappable, setting StatusMessage to defaulted value
2019-10-23 00:51:14,834 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:51:14,834 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:51:14,834 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Deflating and Base64 encoding SAML message
2019-10-23 00:51:14,834 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Building URL to redirect client to
2019-10-23 00:51:14,834 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generating signature with key type 'RSA', algorithm URI 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256' over query string 'SAMLResponse=pZJNb9sgGMfv%2BxQW9xgwdkxQ7KpaNalSq1Vx2km9TBg%2FzdAc8Hhwu48%2FO1m0LIdeegP0f3n4wfrq975PXiGg9a4iPGUkAWd8Z92uIo%2FbLwtJrupPa9T7PhvUnd%2F5MW4AB%2B8QkhvAaJ2OB%2B%2BPGAdFKV9lKV%2FKNBdpVmRKMsnoEN6gpQ%2BbyRgbCK%2FWAP0GbdN8pc31%2FR09xpLk9qYi383KlKJlUrR53hYMtOBsyQRwyblkYCaZO02w9ZOhK3JuyhKKpeleXoQoTSaW2rSGaV5qKSYD4gi3DqN2sSIZ46sFZ4tMbBlTBVc8T6VgzyR5OnHIZg4TGYfqePOKjMEpr9GicnoPqKJR8%2Bxqkqoh%2BOiN70l9BKUOheE84f0AjQhhxkjqGSNOHGdXnHiltjusqe2GNT2Pr0%2Bv0kQdR7zYfvYdJE%2B6H%2BH9ajyo1QZ%2BjVMbBPKxnEf30%2Fk39xCsM3bQPaH136nPAy867gFR76C%2BdgmE4EPijRlDgC698J6EF8f%2F9v9%2F0PoP&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256'
2019-10-23 00:51:14,836 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generated digital signature value (base64-encoded) YGJLc9n/I9WjM1/ceR/tJ1KQlKZxklEYv9X138tWtD2LwmrVXTfF0jRIl3p2MOvPfly5VUps9bvBe+fTomq/daZdGcZFfZoz1hRVM+u9na8QAsVfUYvOeGr0XU276vhq62uAm8plm2vQnUVCzH56mG0KpMw0/qiOAfoZ7XygCzweFeqG+n9KMSRX04JJ/O3jqhKMwb9OjBrClalHtW5A3nR8zceEcJKBzEG2njqYgc2CbiFAZs0mqx/1Xrm6IWnFcQz4bpMMapVDy2VhneC+JLHjYdIw3EIHmyZuPWn3prs5P96Ce8F4fL/39+io8ama5pgA54HqFpbnYkgOHSdgvw==
2019-10-23 00:51:14,836 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutResponse
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout"
    ID="_c9c73b083b44b50ea310603e181180ec"
    InResponseTo="_d541c77e56cdff337c236acbc0a17a83"
    IssueInstant="2019-10-23T00:51:14.830Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester">
            <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:UnknownPrincipal"/>
        </saml2p:StatusCode>
        <saml2p:StatusMessage>An error occurred.</saml2p:StatusMessage>
    </saml2p:Status>
</saml2p:LogoutResponse>

2019-10-23 00:51:14,836 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:51:14,836 - INFO [Shibboleth-Audit.Logout:?] - 20191023T005114Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_d541c77e56cdff337c236acbc0a17a83|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/logout|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_c9c73b083b44b50ea310603e181180ec||||||
2019-10-23 00:51:59,453 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Decoded SAML relay state of: f42ae5c6-611a-4c24-9e53-282c0335732f
2019-10-23 00:51:59,453 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Getting Base64 encoded message from request
2019-10-23 00:51:59,453 - DEBUG [org.apache.xml.security.algorithms.implementations.SignatureDSA:?] - Created SignatureDSA using SHA1withDSA
2019-10-23 00:51:59,454 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Decoded SAML message
2019-10-23 00:51:59,454 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:AuthnRequest
    AssertionConsumerServiceURL="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"
    Destination="https://samltest.id/idp/profile/SAML2/POST/SSO"
    ForceAuthn="false" ID="_ceb8dc85aa82f18a092535b495ec9f08"
    IsPassive="false" IssueInstant="2019-10-23T00:51:59.026Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
            <ds:Reference URI="#_ceb8dc85aa82f18a092535b495ec9f08">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                <ds:DigestValue>E0DGrXBF719trkuGAhabKSiUWsU=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>PPrIrKtff5TxpRpEnouUnFuZm0Ngsmd9+odXQgsLidfRSrqs9v2a+ylcdBPbMxdnPJ9qBNgIN0M=</ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>MIIEtjCCBGGgAwIBAgIEWxxlDDANBglghkgBZQMEAwIFADBdMQswCQYDVQQGEwJhdTEMMAoGA1UE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</ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
</saml2p:AuthnRequest>

2019-10-23 00:51:59,458 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:51:59,458 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:51:59,458 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:51:59,458 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:51:59,458 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:51:59,458 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:51:59,458 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:51:59,458 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:51:59,458 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:51:59,459 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:51:59,459 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:51:59,459 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/POST/SSO
2019-10-23 00:51:59,459 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/POST/SSO
2019-10-23 00:51:59,459 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:51:59,459 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_ceb8dc85aa82f18a092535b495ec9f08', issue instant '2019-10-23T00:51:59.026Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:51:59,459 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2AuthnRequestsSignedSecurityHandler:?] - SPSSODescriptor for entity ID 'http://192.168.43.252:8080/prweb/sp/1571838494' does not require AuthnRequests to be signed
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.security.impl.SAMLSignatureProfileValidator:?] - Saw Enveloped signature transform
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.security.impl.SAMLSignatureProfileValidator:?] - Saw Exclusive C14N signature transform
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Attempting to verify signature on signed SAML protocol message type: {urn:oasis:names:tc:SAML:2.0:protocol}AuthnRequest
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:51:59,460 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:51:59,460 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - signatureMethodURI = http://www.w3.org/2000/09/xmldsig#dsa-sha1
2019-10-23 00:51:59,460 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - jceSigAlgorithm    = SHA1withDSA
2019-10-23 00:51:59,460 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - jceSigProvider     = SUN
2019-10-23 00:51:59,460 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - PublicKey = Sun DSA Public Key
    Parameters:DSA
	p:     8f7935d9 b9aae9bf abed887a cf4951b6 f32ec59e 3baf3718 e8eac496 1f3efd36
    06e74351 a9c41833 39b809e7 c2ae1c53 9ba7475b 85d011ad b8b47987 75498469
    5cac0e8f 14b33608 28a22ffa 27110a3d 62a99345 3409a0fe 696c4658 f84bdd20
    819c3709 a01057b1 95adcd00 233dba54 84b6291f 9d648ef8 83448677 979cec04
    b434a6ac 2e75e998 5de23db0 292fc111 8c9ffa9d 8181e733 8db792b7 30d7b9e3
    49592f68 09987215 3915ea3d 6b8b4653 c633458f 803b32a4 c2e0f272 90256e4e
    3f8a3b08 38a1c450 e4e18c1a 29a37ddf 5ea143de 4b66ff04 903ed5cf 1623e158
    d487c608 e97f211c d81dca23 cb6e3807 65f822e3 42be484c 05763939 601cd667
	q:     baf696a6 8578f7df dee7fa67 c977c785 ef32b233 bae580c0 bcd5695d
	g:     16a65c58 20485070 4e7502a3 9757040d 34da3a34 78c154d4 e4a5c02d 242ee04f
    96e61e4b d0904abd ac8f37ee b1e09f31 82d23c90 43cb642f 88004160 edf9ca09
    b32076a7 9c32a627 f2473e91 879ba2c4 e744bd20 81544cb5 5b802c36 8d1fa83e
    d489e94e 0fa0688e 32428a5c 78c478c6 8d0527b7 1c9a3abb 0b0be12c 44689639
    e7d3ce74 db101a65 aa2b87f6 4c6826db 3ec72f4b 5599834b b4edb02f 7c90e9a4
    96d3a55d 535bebfc 45d4f619 f63f3ded bb873925 c2f224e0 7731296d a887ec1e
    4748f87e fb5fdeb7 5484316b 2232dee5 53ddaf02 112b0d1f 02da3097 3224fe27
    aeda8b9d 4b2922d9 ba8be39e d9e103a6 3c52810b c688b7e2 ed4316e1 ef17dbde

  y:
    728f307a 362fb671 37fbd39f 46e9781a 1918910b 1bf57a0e 9c58ab3e 53c42b92
    bee83756 1f601d2b 1fe759be c9d1c734 1ff8d5aa 85ddc1be 1d8442ef 82b23784
    1173b882 285d9402 d888ac03 9df9cd1c 545b2f83 3c22c0d3 be216a64 3b37e223
    aa04d6b2 0dccf545 f0740156 ee19c483 7a8cf587 e01682ce c37dd1a9 798f2bfc
    b77b8312 5e9a4439 c956e121 4f34fd19 fb392a40 83b709fc fbed4c76 50d0008b
    8fa2613c b4d55030 8946502b 2d4dd350 b0683cda 56a15546 2a6b64d0 9a5db841
    82106fe1 7a0f36ee c88e1c44 f580883b acb285e8 62da355c 24d6dbf6 fca79d18
    925400c0 b64b6f27 e477f054 eec6bf63 b50e5942 9080cc9d bbe14ade 9db68411

2019-10-23 00:51:59,460 - DEBUG [org.apache.xml.security.algorithms.implementations.SignatureDSA:?] - Called DSA.verify() on PPrIrKtff5TxpRpEnouUnFuZm0Ngsmd9+odXQgsLidfRSrqs9v2a+ylcdBPbMxdnPJ9qBNgIN0M=
2019-10-23 00:51:59,461 - DEBUG [org.apache.xml.security.signature.Manifest:?] - verify 1 References
2019-10-23 00:51:59,461 - DEBUG [org.apache.xml.security.signature.Manifest:?] - I am not requested to follow nested Manifests
2019-10-23 00:51:59,461 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_ceb8dc85aa82f18a092535b495ec9f08"
2019-10-23 00:51:59,461 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _ceb8dc85aa82f18a092535b495ec9f08 and Element was [saml2p:AuthnRequest: null]
2019-10-23 00:51:59,461 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_ceb8dc85aa82f18a092535b495ec9f08"
2019-10-23 00:51:59,461 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _ceb8dc85aa82f18a092535b495ec9f08 and Element was [saml2p:AuthnRequest: null]
2019-10-23 00:51:59,461 - DEBUG [org.apache.xml.security.signature.Reference:?] - Verification successful for URI "#_ceb8dc85aa82f18a092535b495ec9f08"
2019-10-23 00:51:59,461 - DEBUG [org.apache.xml.security.signature.Manifest:?] - The Reference has Type 
2019-10-23 00:51:59,461 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Validation of protocol message signature succeeded, message type: {urn:oasis:names:tc:SAML:2.0:protocol}AuthnRequest
2019-10-23 00:51:59,461 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Authentication via protocol message signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:51:59,461 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:51:59,461 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:51:59,461 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:51:59,461 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  HTTP request was not signed via simple signature mechanism, skipping
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:51:59,462 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:51:59,462 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:51:59,462 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:51:59,463 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:51:59,463 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (false), attributes(false)
2019-10-23 00:51:59,463 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:51:59,463 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:51:59,463 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:51:59,463 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:51:59,463 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Could not resolve encryption parameters based on SAML metadata, falling back to locally configured credentials and algorithms
2019-10-23 00:51:59,463 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Failed to resolve EncryptionParameters
2019-10-23 00:51:59,463 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolver returned no EncryptionParameters
2019-10-23 00:51:59,463 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption is optional, ignoring inability to encrypt
2019-10-23 00:51:59,466 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:51:59,466 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:51:59.466Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: AuthnRequest did not contain a RequestedAuthnContext, nothing to do
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.session.impl.PopulateSessionContext:?] - Profile Action PopulateSessionContext: No session found for client
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Profile configuration did not supply any default authentication methods
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No specific Principals requested
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No usable active results available, selecting an inactive flow
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Selecting inactive authentication flow authn/Password
2019-10-23 00:51:59,467 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth:?] - Profile Action ExtractUsernamePasswordFromBasicAuth: No appropriate Authorization header found
2019-10-23 00:51:59,702 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of '192.168.43.252'
2019-10-23 00:51:59,703 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:51:59,703 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:52:13,187 - DEBUG [net.shibboleth.idp.authn.AbstractExtractionAction:?] - Profile Action ExtractUsernamePasswordFromFormRequest: Trimming whitespace of input string 'sheldon'
2019-10-23 00:52:13,187 - DEBUG [net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Attempting to authenticate user sheldon
2019-10-23 00:52:13,187 - DEBUG [net.shibboleth.idp.authn.PooledTemplateSearchDnResolver:?] - resolve user=[org.ldaptive.auth.User@1752971287::identifier=sheldon, context=org.apache.velocity.VelocityContext@76149efd]
2019-10-23 00:52:13,193 - DEBUG [net.shibboleth.idp.authn.PooledTemplateSearchDnResolver:?] - resolved dn=uid=sheldon,ou=People,dc=samltest,dc=id for user=[org.ldaptive.auth.User@1752971287::identifier=sheldon, context=org.apache.velocity.VelocityContext@76149efd]
2019-10-23 00:52:13,194 - INFO [net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Login by 'sheldon' succeeded
2019-10-23 00:52:13,194 - DEBUG [net.shibboleth.idp.authn.AbstractValidationAction:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Adding custom Principal(s) defined on underlying flow descriptor
2019-10-23 00:52:13,194 - DEBUG [net.shibboleth.idp.authn.impl.PopulateSubjectCanonicalizationContext:?] - Profile Action PopulateSubjectCanonicalizationContext: Installing 2 canonicalization flows into SubjectCanonicalizationContext
2019-10-23 00:52:13,194 - DEBUG [net.shibboleth.idp.authn.AbstractSubjectCanonicalizationAction:?] - Profile Action SimpleSubjectCanonicalization: trimming whitespace of input string 'sheldon'
2019-10-23 00:52:13,194 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Canonical principal name was established as 'sheldon'
2019-10-23 00:52:13,194 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Request did not have explicit authentication requirements, result is accepted
2019-10-23 00:52:13,194 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithAuthenticationResult:?] - Profile Action UpdateSessionWithAuthenticationResult: Creating new session for principal sheldon
2019-10-23 00:52:13,194 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Created new session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee for principal sheldon
2019-10-23 00:52:13,194 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Saving AuthenticationResult for flow authn/Password in session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:13,195 - DEBUG [net.shibboleth.idp.attribute.resolver.dc.ldap.impl.TemplatedExecutableSearchFilterBuilder:?] - Template text (uid=$resolutionContext.principal) yields (uid=sheldon)
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter'  Beginning process of filtering the following 8 attributes: [uid, identifier, telephoneNumber, role, mail, displayName, surname, givenName]
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'uid' remained after filtering
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'identifier' remained after filtering
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'telephoneNumber' remained after filtering
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'role' remained after filtering
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'mail' remained after filtering
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'displayName' remained after filtering
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'surname' remained after filtering
2019-10-23 00:52:13,196 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'givenName' remained after filtering
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.flow.impl.InitializeConsentContext:?] - Profile Action InitializeConsentContext: Created consent context 'ConsentContext{previousConsents={}, chosenConsents={}}'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:?] - Profile Action PopulateAttributeReleaseContext: Found attributeContext 'net.shibboleth.idp.attribute.context.AttributeContext@1928e496'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.logic.impl.JoinFunction:?] - Result 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: Read storage record 'null' with context 'intercept/attribute-release' and key 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: No storage record for context 'intercept/attribute-release' and key 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: Read storage record 'null' with context 'intercept/attribute-release' and key 'sheldon'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: No storage record for context 'intercept/attribute-release' and key 'sheldon'
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.flow.impl.PopulateConsentContext:?] - Profile Action PopulateConsentContext: Populating consents: [displayName, givenName, identifier, mail, role, surname, telephoneNumber, uid]
2019-10-23 00:52:13,197 - DEBUG [net.shibboleth.idp.consent.logic.impl.IsConsentRequiredPredicate:?] - Consent is required, no previous consents
2019-10-23 00:52:13,441 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of '192.168.43.252'
2019-10-23 00:52:13,441 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:52:13,441 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or InformationURLs returning null
2019-10-23 00:52:13,441 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or PrivacyStatementURLs returning null
2019-10-23 00:52:13,441 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:52:13,441 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No Organization, OrganizationName or names, returning null
2019-10-23 00:52:17,995 - DEBUG [net.shibboleth.idp.consent.flow.impl.ExtractConsent:?] - Profile Action ExtractConsent: Extracted consent ids '[displayName, givenName, identifier, mail, role, surname, telephoneNumber, uid]' from request parameter '_shib_idp_consentIds'
2019-10-23 00:52:17,995 - DEBUG [net.shibboleth.idp.consent.flow.impl.ExtractConsent:?] - Profile Action ExtractConsent: Consent context 'ConsentContext{previousConsents={}, chosenConsents={displayName=Consent{id=displayName, value=null, isApproved=true}, givenName=Consent{id=givenName, value=null, isApproved=true}, identifier=Consent{id=identifier, value=null, isApproved=true}, mail=Consent{id=mail, value=null, isApproved=true}, role=Consent{id=role, value=null, isApproved=true}, surname=Consent{id=surname, value=null, isApproved=true}, telephoneNumber=Consent{id=telephoneNumber, value=null, isApproved=true}, uid=Consent{id=uid, value=null, isApproved=true}}}'
2019-10-23 00:52:17,995 - INFO [Shibboleth-Consent-Audit.SSO:?] - 20191023T005217Z|http://192.168.43.252:8080/prweb/sp/1571838494|AttributeReleaseConsent|sheldon|displayName,givenName,identifier,mail,role,surname,telephoneNumber,uid||true,true,true,true,true,true,true,true
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.logic.impl.JoinFunction:?] - Result 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.logic.impl.JoinFunction:?] - Result 'sheldon:_key_idx'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.storage.impl.ConsentSerializer:?] - Serialized '{displayName=Consent{id=displayName, value=null, isApproved=true}, givenName=Consent{id=givenName, value=null, isApproved=true}, identifier=Consent{id=identifier, value=null, isApproved=true}, mail=Consent{id=mail, value=null, isApproved=true}, role=Consent{id=role, value=null, isApproved=true}, surname=Consent{id=surname, value=null, isApproved=true}, telephoneNumber=Consent{id=telephoneNumber, value=null, isApproved=true}, uid=Consent{id=uid, value=null, isApproved=true}}' as '[{"id":201},{"id":117},{"id":"identifier"},{"id":"mail"},{"id":"role"},{"id":106},{"id":116},{"id":"uid"}]'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.CreateResult:?] - Profile Action CreateResult: Created consent result 'ConsentResult{id=null, context=intercept/attribute-release, key=sheldon:http://192.168.43.252:8080/prweb/sp/1571838494, value=[{"id":201},{"id":117},{"id":"identifier"},{"id":"mail"},{"id":"role"},{"id":106},{"id":116},{"id":"uid"}], expiration=1603327937996}'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.AbstractConsentIndexedStorageAction:?] - Profile Action CreateResult: Read storage record 'null' with context 'intercept/attribute-release' and key 'sheldon:_key_idx'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.AbstractConsentIndexedStorageAction:?] - Profile Action CreateResult: Will not prune storage records, number of keys '0' is less than max number of records '10'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.AbstractConsentIndexedStorageAction:?] - Profile Action CreateResult: Read storage record 'null' with context 'intercept/attribute-release' and key 'sheldon:_key_idx'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.AbstractConsentIndexedStorageAction:?] - Profile Action CreateResult: Creating storage index with key 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.storage.impl.CollectionSerializer:?] - Serialized '[sheldon:http://192.168.43.252:8080/prweb/sp/1571838494]' as '["sheldon:http://192.168.43.252:8080/prweb/sp/1571838494"]'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:?] - Profile Action ReleaseAttributes: Found attributeContext 'net.shibboleth.idp.attribute.context.AttributeContext@1928e496'
2019-10-23 00:52:17,996 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:52:17,996 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:52:17,997 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.profile.impl.BaseAddAuthenticationStatementToAssertion:?] - Profile Action AddAuthnStatementToAssertion: Attempting to add an AuthenticationStatement to outgoing Assertion
2019-10-23 00:52:17,998 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAuthnStatementToAssertion: Created Assertion _4a878a990f537c6105293ad984888ce7
2019-10-23 00:52:17,998 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAuthnStatementToAssertion: Added Assertion _4a878a990f537c6105293ad984888ce7 to Response _6e02816fc07547ce8098f77e0b43b46a
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.AddAuthnStatementToAssertion:?] - Profile Action AddAuthnStatementToAssertion: Added AuthenticationStatement to Assertion _4a878a990f537c6105293ad984888ce7
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.profile.impl.BaseAddAttributeStatementToAssertion:?] - Profile Action AddAttributeStatementToAssertion: Attempting to add an AttributeStatement to outgoing Assertion
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value sheldon of attribute uid
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value scooper@samltest.id of attribute identifier
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value +1-555-555-5515 of attribute telephoneNumber
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value employee@samltest.id of attribute role
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value scooper@samltest.id of attribute mail
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Sheldor of attribute displayName
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Cooper of attribute surname
2019-10-23 00:52:17,998 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Sheldon of attribute givenName
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Attempting to add NameID to outgoing Assertion Subjects
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.common.profile.logic.AbstractNameIDPolicyPredicate:?] - No object to operate on, returning true
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.common.profile.logic.MetadataNameIdentifierFormatStrategy:?] - Metadata specifies the following formats: [urn:oasis:names:tc:SAML:2.0:nameid-format:transient]
2019-10-23 00:52:17,999 - DEBUG [net.shibboleth.idp.saml.profile.logic.DefaultNameIdentifierFormatStrategy:?] - Configuration specifies the following formats: []
2019-10-23 00:52:17,999 - DEBUG [net.shibboleth.idp.saml.profile.logic.DefaultNameIdentifierFormatStrategy:?] - Configuration did not specify any formats, relying on metadata alone
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Candidate NameID formats: [urn:oasis:names:tc:SAML:2.0:nameid-format:transient]
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Trying to generate NameID with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.common.profile.impl.ChainingNameIdentifierGenerator:?] - Trying to generate identifier with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.AbstractSAML2NameIDGenerator:?] - Generating NameID AAdzZWNyZXQxrAevwAXk0Eimx9Kbm2vQgn6ue96SfFO4yNjnr/jKogrKXVQX0S7T/uSGAvl1R1RBlztciMc70KE9YgYqXN4+enAoMYEjAKPXOCEH2AUaOluyT1VN6LobBwRWxRodkdIMuGw8gWY4RDHb8VJ6f8bh3K5V9Vo= with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.common.profile.impl.ChainingNameIdentifierGenerator:?] - Successfully generated identifier with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Successfully generated NameID with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Added NameID to 1 assertion subject(s)
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Attempting to add SubjectConfirmation to assertions in outgoing Response
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data Address to 172.31.19.108
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data InResponseTo to _ceb8dc85aa82f18a092535b495ec9f08
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data Recipient to http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data NotOnOrAfter to 5 minutes from now
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Added SubjectConfirmation with method urn:oasis:names:tc:SAML:2.0:cm:bearer to 1 assertion(s)
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotBeforeConditionToAssertions:?] - Profile Action AddNotBeforeConditionToAssertions: Attempting to add NotBefore condition to every Assertion in outgoing Response
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotBeforeConditionToAssertions:?] - Profile Action AddNotBeforeConditionToAssertions: Added NotBefore condition to Assertion _4a878a990f537c6105293ad984888ce7
2019-10-23 00:52:17,999 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddNotBeforeConditionToAssertions: Assertion _4a878a990f537c6105293ad984888ce7 did not already contain Conditions, one was added
2019-10-23 00:52:18,000 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Attempting to add NotOnOrAfter condition to every Assertion in outgoing Response
2019-10-23 00:52:18,000 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Added NotOnOrAfter condition, indicating an expiration of 2019-10-23T00:57:17.996Z, to Assertion _4a878a990f537c6105293ad984888ce7
2019-10-23 00:52:18,000 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Assertion _4a878a990f537c6105293ad984888ce7 already contained Conditions, nothing was done
2019-10-23 00:52:18,000 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Attempting to add an AudienceRestrictionCondition to every Assertion in Response
2019-10-23 00:52:18,000 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAudienceRestrictionToAssertions: Assertion _4a878a990f537c6105293ad984888ce7 already contained Conditions, nothing was done
2019-10-23 00:52:18,000 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Adding new AudienceRestriction
2019-10-23 00:52:18,000 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Adding http://192.168.43.252:8080/prweb/sp/1571838494 as an Audience of the AudienceRestriction
2019-10-23 00:52:18,000 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Added AudienceRestrictionCondition to Assertion _4a878a990f537c6105293ad984888ce7
2019-10-23 00:52:18,000 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithSPSession:?] - Profile Action UpdateSessionWithSPSession: Adding new SPSession for relying party http://192.168.43.252:8080/prweb/sp/1571838494 to existing session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:18,000 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Saving SPSession for service http://192.168.43.252:8080/prweb/sp/1571838494 in session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:18,000 - DEBUG [net.shibboleth.idp.session.SPSessionSerializerRegistry:?] - Registry located StorageSerializer of type 'net.shibboleth.idp.saml.session.impl.SAML2SPSessionSerializer' for SPSession type 'class net.shibboleth.idp.saml.session.SAML2SPSession'
2019-10-23 00:52:18,001 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Maintaining secondary index for service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxrAevwAXk0Eimx9Kbm2vQgn6ue96SfFO4yNjnr/jKogrKXVQX0S7T/uSGAvl1R1RBlztciMc70KE9YgYqXN4+enAoMYEjAKPXOCEH2AUaOluyT1VN6LobBwRWxRodkdIMuGw8gWY4RDHb8VJ6f8bh3K5V9Vo=
2019-10-23 00:52:18,001 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptNameIDs: No encryption parameters, nothing to do
2019-10-23 00:52:18,001 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptAttributes: No encryption parameters, nothing to do
2019-10-23 00:52:18,001 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_4a878a990f537c6105293ad984888ce7"
2019-10-23 00:52:18,001 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _4a878a990f537c6105293ad984888ce7 and Element was [saml2:Assertion: null]
2019-10-23 00:52:18,001 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_4a878a990f537c6105293ad984888ce7"
2019-10-23 00:52:18,001 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _4a878a990f537c6105293ad984888ce7 and Element was [saml2:Assertion: null]
2019-10-23 00:52:18,004 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptAssertions: No encryption parameters, nothing to do
2019-10-23 00:52:18,005 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:52:18,005 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:52:18,005 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_6e02816fc07547ce8098f77e0b43b46a"
2019-10-23 00:52:18,005 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _6e02816fc07547ce8098f77e0b43b46a and Element was [saml2p:Response: null]
2019-10-23 00:52:18,005 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_6e02816fc07547ce8098f77e0b43b46a"
2019-10-23 00:52:18,005 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _6e02816fc07547ce8098f77e0b43b46a and Element was [saml2p:Response: null]
2019-10-23 00:52:18,007 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Invoking Velocity template to create POST body
2019-10-23 00:52:18,007 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Encoding action url of 'http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService' with encoded value 'http&#x3a;&#x2f;&#x2f;192.168.43.252&#x3a;8080&#x2f;prweb&#x2f;PRRestService&#x2f;WebSSO&#x2f;SAML&#x2f;AssertionConsumerService'
2019-10-23 00:52:18,007 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Marshalling and Base64 encoding SAML message
2019-10-23 00:52:18,007 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Setting RelayState parameter to: 'f42ae5c6-611a-4c24-9e53-282c0335732f', encoded as 'f42ae5c6-611a-4c24-9e53-282c0335732f'
2019-10-23 00:52:18,008 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:Response
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"
    ID="_6e02816fc07547ce8098f77e0b43b46a"
    InResponseTo="_ceb8dc85aa82f18a092535b495ec9f08"
    IssueInstant="2019-10-23T00:52:17.996Z" Version="2.0"
    xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
            <ds:Reference URI="#_6e02816fc07547ce8098f77e0b43b46a">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                        <ec:InclusiveNamespaces PrefixList="xsd" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                    </ds:Transform>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                <ds:DigestValue>2BuWCiceyXQh84ajp9q41ApJF/xA/paUjVx7cukvmdw=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>Fi0e+k/mcUSU9gB/+c6JiS4ObxxwPEc4hQuODRf8DQ8jdf55LtQTSXt75n65s+QPcpYif5j21TnN/h3onJwtIJQ9z72oNhJ7I/CqdefShlrmPtm98BDN1gcwxHjHY/v84MXI0SqVVsICZfhGo0V7PnjtTOLvlFcjp3zDO/U1eP/z76r6YyZd2fqf+tM6gqGBpwKiYPAQASM26VGHxF/4QSzkvRMwBnjzOCTXP/Tfs2EOnhsj28l5TuOgLjWHwiGi51bGz31hHGUZSsxW0fZNELAdAR9JUDeaBr61lpP8pi90yJQbx7cawlUfOgUJiyd8xbJ74NRj3Y5joHJGB1trcQ==</ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>MIIDEjCCAfqgAwIBAgIVAMECQ1tjghafm5OxWDh9hwZfxthWMA0GCSqGSIb3DQEBCwUAMBYxFDAS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==</ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
    </saml2p:Status>
    <saml2:Assertion ID="_4a878a990f537c6105293ad984888ce7"
        IssueInstant="2019-10-23T00:52:17.996Z" Version="2.0"
        xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
        <saml2:Issuer>https://samltest.id/saml/idp</saml2:Issuer>
        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
                <ds:Reference URI="#_4a878a990f537c6105293ad984888ce7">
                    <ds:Transforms>
                        <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                            <ec:InclusiveNamespaces PrefixList="xsd" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                        </ds:Transform>
                    </ds:Transforms>
                    <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                    <ds:DigestValue>ZF0Yp6AyanbOZDNX30DEHFpogevnSFfkMUhG/EUJjpg=</ds:DigestValue>
                </ds:Reference>
            </ds:SignedInfo>
            <ds:SignatureValue>keq1FbkKyS4eFSjfZbp/lwp5f6/VT2TvC4349swtZ2P3YdTOcoKTrRz6x0xdxhPEYdJKVzEvdAolMtTGPtzpnDQUY3h7uQNSTBJ33HgfsEQIVqdV4F9li7wSPW9Rak/8WIhRUBIY2tVak9LJdy45201FDIprZOl/dffefGcwHoWj+F7ewttvH6h8NbTqizo/6xVK6eTT1+Dj+olBFN4ZxnClsU6njbe2DzDhi8jz3iSiJHFgM6xk8bIepECW+W70BsfO8SOVU795iT1Rdqgt6x+FTs2KeFqEQmIGyb54iC6Pfc9igYOnbxg4cXhXgsOeKGeTWub3cPEbVOCAoQHiXA==</ds:SignatureValue>
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>MIIDEjCCAfqgAwIBAgIVAMECQ1tjghafm5OxWDh9hwZfxthWMA0GCSqGSIb3DQEBCwUAMBYxFDAS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==</ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </ds:Signature>
        <saml2:Subject>
            <saml2:NameID
                Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
                NameQualifier="https://samltest.id/saml/idp"
                SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxrAevwAXk0Eimx9Kbm2vQgn6ue96SfFO4yNjnr/jKogrKXVQX0S7T/uSGAvl1R1RBlztciMc70KE9YgYqXN4+enAoMYEjAKPXOCEH2AUaOluyT1VN6LobBwRWxRodkdIMuGw8gWY4RDHb8VJ6f8bh3K5V9Vo=</saml2:NameID>
            <saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml2:SubjectConfirmationData Address="172.31.19.108"
                    InResponseTo="_ceb8dc85aa82f18a092535b495ec9f08"
                    NotOnOrAfter="2019-10-23T00:57:17.999Z" Recipient="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"/>
            </saml2:SubjectConfirmation>
        </saml2:Subject>
        <saml2:Conditions NotBefore="2019-10-23T00:52:17.996Z" NotOnOrAfter="2019-10-23T00:57:17.996Z">
            <saml2:AudienceRestriction>
                <saml2:Audience>http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Audience>
            </saml2:AudienceRestriction>
        </saml2:Conditions>
        <saml2:AuthnStatement AuthnInstant="2019-10-23T00:52:13.194Z" SessionIndex="_9adbffd24a1337b9edf0ff25ac7e6a7d">
            <saml2:SubjectLocality Address="172.31.19.108"/>
            <saml2:AuthnContext>
                <saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml2:AuthnContextClassRef>
            </saml2:AuthnContext>
        </saml2:AuthnStatement>
        <saml2:AttributeStatement>
            <saml2:Attribute FriendlyName="uid"
                Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>sheldon</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute
                Name="urn:oasis:names:tc:SAML:attribute:subject-id" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue
                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">scooper@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="telephoneNumber"
                Name="urn:oid:2.5.4.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>+1-555-555-5515</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="role"
                Name="https://samltest.id/attributes/role" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue
                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">employee@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="mail"
                Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>scooper@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="displayName"
                Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Sheldor</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Cooper</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="givenName"
                Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Sheldon</saml2:AttributeValue>
            </saml2:Attribute>
        </saml2:AttributeStatement>
    </saml2:Assertion>
</saml2p:Response>

2019-10-23 00:52:18,008 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:52:18,008 - INFO [Shibboleth-Audit.SSO:?] - 20191023T005218Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST|_ceb8dc85aa82f18a092535b495ec9f08|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/sso/browser|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST|_6e02816fc07547ce8098f77e0b43b46a|sheldon|urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport|uid,identifier,telephoneNumber,role,mail,displayName,surname,givenName|AAdzZWNyZXQxrAevwAXk0Eimx9Kbm2vQgn6ue96SfFO4yNjnr/jKogrKXVQX0S7T/uSGAvl1R1RBlztciMc70KE9YgYqXN4+enAoMYEjAKPXOCEH2AUaOluyT1VN6LobBwRWxRodkdIMuGw8gWY4RDHb8VJ6f8bh3K5V9Vo=|_4a878a990f537c6105293ad984888ce7|
2019-10-23 00:52:34,357 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Decoded SAML relay state of: f0a30510-3253-45f8-8396-94438c20529e
2019-10-23 00:52:34,357 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Getting Base64 encoded message from request
2019-10-23 00:52:34,357 - DEBUG [org.apache.xml.security.algorithms.implementations.SignatureDSA:?] - Created SignatureDSA using SHA1withDSA
2019-10-23 00:52:34,357 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Decoded SAML message
2019-10-23 00:52:34,358 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:AuthnRequest
    AssertionConsumerServiceURL="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"
    Destination="https://samltest.id/idp/profile/SAML2/POST/SSO"
    ForceAuthn="false" ID="_b698d66e6cd93886ecbb79ce56dad113"
    IsPassive="false" IssueInstant="2019-10-23T00:52:34.591Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
            <ds:Reference URI="#_b698d66e6cd93886ecbb79ce56dad113">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                <ds:DigestValue>/3qj4D/RB04U0UuddZshqHJtr2Y=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>ScLpqyncTPhjMePfHSZ+Z9JsPiz8TghvNsMz4rPYKqHKZ3/le7I8rf8OGLg8HpxgOtv/h66b3E0=</ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>MIIEtjCCBGGgAwIBAgIEWxxlDDANBglghkgBZQMEAwIFADBdMQswCQYDVQQGEwJhdTEMMAoGA1UE
CBMDbnN3MQ8wDQYDVQQHEwZzeWRuZXkxDTALBgNVBAoTBHRlc3QxDTALBgNVBAsTBHRlc3QxETAP
BgNVBAMTCHJhbWVzaCBtMB4XDTE5MTAyMzAwMTUzOVoXDTIwMDEyMTAwMTUzOVowXTELMAkGA1UE
BhMCYXUxDDAKBgNVBAgTA25zdzEPMA0GA1UEBxMGc3lkbmV5MQ0wCwYDVQQKEwR0ZXN0MQ0wCwYD
VQQLEwR0ZXN0MREwDwYDVQQDEwhyYW1lc2ggbTCCA0IwggI1BgcqhkjOOAQBMIICKAKCAQEAj3k1
2bmq6b+r7Yh6z0lRtvMuxZ47rzcY6OrElh8+/TYG50NRqcQYMzm4CefCrhxTm6dHW4XQEa24tHmH
dUmEaVysDo8UszYIKKIv+icRCj1iqZNFNAmg/mlsRlj4S90ggZw3CaAQV7GVrc0AIz26VIS2KR+d
ZI74g0SGd5ec7AS0NKasLnXpmF3iPbApL8ERjJ/6nYGB5zONt5K3MNe540lZL2gJmHIVORXqPWuL
RlPGM0WPgDsypMLg8nKQJW5OP4o7CDihxFDk4YwaKaN9316hQ95LZv8EkD7VzxYj4VjUh8YI6X8h
HNgdyiPLbjgHZfgi40K+SEwFdjk5YBzWZwIdALr2lqaFePff3uf6Z8l3x4XvMrIzuuWAwLzVaV0C
ggEAFqZcWCBIUHBOdQKjl1cEDTTaOjR4wVTU5KXALSQu4E+W5h5L0JBKvayPN+6x4J8xgtI8kEPL
ZC+IAEFg7fnKCbMgdqecMqYn8kc+kYebosTnRL0ggVRMtVuALDaNH6g+1InpTg+gaI4yQopceMR4
xo0FJ7ccmjq7CwvhLERoljnn08502xAaZaorh/ZMaCbbPscvS1WZg0u07bAvfJDppJbTpV1TW+v8
RdT2GfY/Pe27hzklwvIk4HcxKW2oh+weR0j4fvtf3rdUhDFrIjLe5VPdrwIRKw0fAtowlzIk/ieu
2oudSyki2bqL457Z4QOmPFKBC8aIt+LtQxbh7xfb3gOCAQUAAoIBAHKPMHo2L7ZxN/vTn0bpeBoZ
GJELG/V6DpxYqz5TxCuSvug3Vh9gHSsf51m+ydHHNB/41aqF3cG+HYRC74KyN4QRc7iCKF2UAtiI
rAOd+c0cVFsvgzwiwNO+IWpkOzfiI6oE1rINzPVF8HQBVu4ZxIN6jPWH4BaCzsN90al5jyv8t3uD
El6aRDnJVuEhTzT9Gfs5KkCDtwn8++1MdlDQAIuPomE8tNVQMIlGUCstTdNQsGg82lahVUYqa2TQ
ml24QYIQb+F6DzbuyI4cRPWAiDussoXoYto1XCTW2/b8p50YklQAwLZLbyfkd/BU7sa/Y7UOWUKQ
gMydu+FK3p22hBGjITAfMB0GA1UdDgQWBBQ+UWexF96isUjxPPDChEPE1WzgfTANBglghkgBZQME
AwIFAANAADA9Ahw21oYWXGovrlWyZmGaphLB/Ot6E4XqR9SC4fsjAh0Apv1yAR0PuEuaw/Tp8AW2
h/LiCBg7t5omiZLCpw==</ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
</saml2p:AuthnRequest>

2019-10-23 00:52:34,362 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:52:34,362 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:52:34,362 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:52:34,362 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:52:34,362 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:52:34,362 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:52:34,363 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:52:34,363 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:52:34,363 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:52:34,363 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:52:34,363 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:52:34,363 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/POST/SSO
2019-10-23 00:52:34,363 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/POST/SSO
2019-10-23 00:52:34,363 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:52:34,363 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_b698d66e6cd93886ecbb79ce56dad113', issue instant '2019-10-23T00:52:34.591Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2AuthnRequestsSignedSecurityHandler:?] - SPSSODescriptor for entity ID 'http://192.168.43.252:8080/prweb/sp/1571838494' does not require AuthnRequests to be signed
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.security.impl.SAMLSignatureProfileValidator:?] - Saw Enveloped signature transform
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.security.impl.SAMLSignatureProfileValidator:?] - Saw Exclusive C14N signature transform
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Attempting to verify signature on signed SAML protocol message type: {urn:oasis:names:tc:SAML:2.0:protocol}AuthnRequest
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:52:34,364 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:52:34,364 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - signatureMethodURI = http://www.w3.org/2000/09/xmldsig#dsa-sha1
2019-10-23 00:52:34,364 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - jceSigAlgorithm    = SHA1withDSA
2019-10-23 00:52:34,364 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - jceSigProvider     = SUN
2019-10-23 00:52:34,364 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - PublicKey = Sun DSA Public Key
    Parameters:DSA
	p:     8f7935d9 b9aae9bf abed887a cf4951b6 f32ec59e 3baf3718 e8eac496 1f3efd36
    06e74351 a9c41833 39b809e7 c2ae1c53 9ba7475b 85d011ad b8b47987 75498469
    5cac0e8f 14b33608 28a22ffa 27110a3d 62a99345 3409a0fe 696c4658 f84bdd20
    819c3709 a01057b1 95adcd00 233dba54 84b6291f 9d648ef8 83448677 979cec04
    b434a6ac 2e75e998 5de23db0 292fc111 8c9ffa9d 8181e733 8db792b7 30d7b9e3
    49592f68 09987215 3915ea3d 6b8b4653 c633458f 803b32a4 c2e0f272 90256e4e
    3f8a3b08 38a1c450 e4e18c1a 29a37ddf 5ea143de 4b66ff04 903ed5cf 1623e158
    d487c608 e97f211c d81dca23 cb6e3807 65f822e3 42be484c 05763939 601cd667
	q:     baf696a6 8578f7df dee7fa67 c977c785 ef32b233 bae580c0 bcd5695d
	g:     16a65c58 20485070 4e7502a3 9757040d 34da3a34 78c154d4 e4a5c02d 242ee04f
    96e61e4b d0904abd ac8f37ee b1e09f31 82d23c90 43cb642f 88004160 edf9ca09
    b32076a7 9c32a627 f2473e91 879ba2c4 e744bd20 81544cb5 5b802c36 8d1fa83e
    d489e94e 0fa0688e 32428a5c 78c478c6 8d0527b7 1c9a3abb 0b0be12c 44689639
    e7d3ce74 db101a65 aa2b87f6 4c6826db 3ec72f4b 5599834b b4edb02f 7c90e9a4
    96d3a55d 535bebfc 45d4f619 f63f3ded bb873925 c2f224e0 7731296d a887ec1e
    4748f87e fb5fdeb7 5484316b 2232dee5 53ddaf02 112b0d1f 02da3097 3224fe27
    aeda8b9d 4b2922d9 ba8be39e d9e103a6 3c52810b c688b7e2 ed4316e1 ef17dbde

  y:
    728f307a 362fb671 37fbd39f 46e9781a 1918910b 1bf57a0e 9c58ab3e 53c42b92
    bee83756 1f601d2b 1fe759be c9d1c734 1ff8d5aa 85ddc1be 1d8442ef 82b23784
    1173b882 285d9402 d888ac03 9df9cd1c 545b2f83 3c22c0d3 be216a64 3b37e223
    aa04d6b2 0dccf545 f0740156 ee19c483 7a8cf587 e01682ce c37dd1a9 798f2bfc
    b77b8312 5e9a4439 c956e121 4f34fd19 fb392a40 83b709fc fbed4c76 50d0008b
    8fa2613c b4d55030 8946502b 2d4dd350 b0683cda 56a15546 2a6b64d0 9a5db841
    82106fe1 7a0f36ee c88e1c44 f580883b acb285e8 62da355c 24d6dbf6 fca79d18
    925400c0 b64b6f27 e477f054 eec6bf63 b50e5942 9080cc9d bbe14ade 9db68411

2019-10-23 00:52:34,364 - DEBUG [org.apache.xml.security.algorithms.implementations.SignatureDSA:?] - Called DSA.verify() on ScLpqyncTPhjMePfHSZ+Z9JsPiz8TghvNsMz4rPYKqHKZ3/le7I8rf8OGLg8HpxgOtv/h66b3E0=
2019-10-23 00:52:34,366 - DEBUG [org.apache.xml.security.signature.Manifest:?] - verify 1 References
2019-10-23 00:52:34,366 - DEBUG [org.apache.xml.security.signature.Manifest:?] - I am not requested to follow nested Manifests
2019-10-23 00:52:34,366 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_b698d66e6cd93886ecbb79ce56dad113"
2019-10-23 00:52:34,366 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _b698d66e6cd93886ecbb79ce56dad113 and Element was [saml2p:AuthnRequest: null]
2019-10-23 00:52:34,366 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_b698d66e6cd93886ecbb79ce56dad113"
2019-10-23 00:52:34,366 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _b698d66e6cd93886ecbb79ce56dad113 and Element was [saml2p:AuthnRequest: null]
2019-10-23 00:52:34,366 - DEBUG [org.apache.xml.security.signature.Reference:?] - Verification successful for URI "#_b698d66e6cd93886ecbb79ce56dad113"
2019-10-23 00:52:34,366 - DEBUG [org.apache.xml.security.signature.Manifest:?] - The Reference has Type 
2019-10-23 00:52:34,366 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Validation of protocol message signature succeeded, message type: {urn:oasis:names:tc:SAML:2.0:protocol}AuthnRequest
2019-10-23 00:52:34,366 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Authentication via protocol message signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:52:34,366 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:52:34,366 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:52:34,366 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:52:34,366 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  HTTP request was not signed via simple signature mechanism, skipping
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:52:34,367 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:52:34,367 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:52:34,367 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:52:34,368 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:52:34,368 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (false), attributes(false)
2019-10-23 00:52:34,368 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:52:34,368 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:52:34,368 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:52:34,368 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:52:34,368 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Could not resolve encryption parameters based on SAML metadata, falling back to locally configured credentials and algorithms
2019-10-23 00:52:34,368 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Failed to resolve EncryptionParameters
2019-10-23 00:52:34,368 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolver returned no EncryptionParameters
2019-10-23 00:52:34,368 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption is optional, ignoring inability to encrypt
2019-10-23 00:52:34,371 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:52:34,371 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:52:34.371Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:52:34,371 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: AuthnRequest did not contain a RequestedAuthnContext, nothing to do
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing primary lookup on session ID 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Updating expiration of master record for session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee to 2019-10-23T01:52:34.372Z
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Loading AuthenticationResult for flow authn/Password in session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.session.impl.ExtractActiveAuthenticationResults:?] - Profile Action ExtractActiveAuthenticationResults: Authentication result authn/Password is active, copying from session
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Profile configuration did not supply any default authentication methods
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No specific Principals requested
2019-10-23 00:52:34,372 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Reusing active result authn/Password
2019-10-23 00:52:34,373 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Canonical principal name established from session as 'sheldon'
2019-10-23 00:52:34,373 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Request did not have explicit authentication requirements, result is accepted
2019-10-23 00:52:34,373 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithAuthenticationResult:?] - Profile Action UpdateSessionWithAuthenticationResult: Updating activity time on reused AuthenticationResult for flow authn/Password in existing session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:34,373 - DEBUG [net.shibboleth.idp.attribute.resolver.dc.ldap.impl.TemplatedExecutableSearchFilterBuilder:?] - Template text (uid=$resolutionContext.principal) yields (uid=sheldon)
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter'  Beginning process of filtering the following 8 attributes: [uid, identifier, telephoneNumber, role, mail, displayName, surname, givenName]
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'uid' remained after filtering
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'identifier' remained after filtering
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'telephoneNumber' remained after filtering
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'role' remained after filtering
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'mail' remained after filtering
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'displayName' remained after filtering
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'surname' remained after filtering
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'givenName' remained after filtering
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.consent.flow.impl.InitializeConsentContext:?] - Profile Action InitializeConsentContext: Created consent context 'ConsentContext{previousConsents={}, chosenConsents={}}'
2019-10-23 00:52:34,374 - DEBUG [net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:?] - Profile Action PopulateAttributeReleaseContext: Found attributeContext 'net.shibboleth.idp.attribute.context.AttributeContext@6edc56a8'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.logic.impl.JoinFunction:?] - Result 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: Read storage record 'org.opensaml.storage.MutableStorageRecord@48a4cb34' with context 'intercept/attribute-release' and key 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.storage.impl.ConsentSerializer:?] - Deserialized context 'intercept/attribute-release' key 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494' value '[{"id":201},{"id":117},{"id":"identifier"},{"id":"mail"},{"id":"role"},{"id":106},{"id":116},{"id":"uid"}]' expiration '1603327937996' as '{displayName=Consent{id=displayName, value=null, isApproved=true}, givenName=Consent{id=givenName, value=null, isApproved=true}, identifier=Consent{id=identifier, value=null, isApproved=true}, mail=Consent{id=mail, value=null, isApproved=true}, role=Consent{id=role, value=null, isApproved=true}, surname=Consent{id=surname, value=null, isApproved=true}, telephoneNumber=Consent{id=telephoneNumber, value=null, isApproved=true}, uid=Consent{id=uid, value=null, isApproved=true}}'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: Read storage record 'null' with context 'intercept/attribute-release' and key 'sheldon'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: No storage record for context 'intercept/attribute-release' and key 'sheldon'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.flow.impl.PopulateConsentContext:?] - Profile Action PopulateConsentContext: Populating consents: [displayName, givenName, identifier, mail, role, surname, telephoneNumber, uid]
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.logic.impl.IsConsentRequiredPredicate:?] - Consent is not required, previous consents match current consents
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:?] - Profile Action ReleaseAttributes: Found attributeContext 'net.shibboleth.idp.attribute.context.AttributeContext@6edc56a8'
2019-10-23 00:52:34,375 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:52:34,375 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:52:34,376 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:52:34,377 - DEBUG [net.shibboleth.idp.saml.profile.impl.BaseAddAuthenticationStatementToAssertion:?] - Profile Action AddAuthnStatementToAssertion: Attempting to add an AuthenticationStatement to outgoing Assertion
2019-10-23 00:52:34,377 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAuthnStatementToAssertion: Created Assertion _1917976f03095b061c9e199822cdf774
2019-10-23 00:52:34,377 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAuthnStatementToAssertion: Added Assertion _1917976f03095b061c9e199822cdf774 to Response _ce78d3dda67fd2997b386417818c51e8
2019-10-23 00:52:34,377 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.AddAuthnStatementToAssertion:?] - Profile Action AddAuthnStatementToAssertion: Added AuthenticationStatement to Assertion _1917976f03095b061c9e199822cdf774
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.profile.impl.BaseAddAttributeStatementToAssertion:?] - Profile Action AddAttributeStatementToAssertion: Attempting to add an AttributeStatement to outgoing Assertion
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value sheldon of attribute uid
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value scooper@samltest.id of attribute identifier
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value +1-555-555-5515 of attribute telephoneNumber
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value employee@samltest.id of attribute role
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value scooper@samltest.id of attribute mail
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Sheldor of attribute displayName
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Cooper of attribute surname
2019-10-23 00:52:34,378 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Sheldon of attribute givenName
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Attempting to add NameID to outgoing Assertion Subjects
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.common.profile.logic.AbstractNameIDPolicyPredicate:?] - No object to operate on, returning true
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.common.profile.logic.MetadataNameIdentifierFormatStrategy:?] - Metadata specifies the following formats: [urn:oasis:names:tc:SAML:2.0:nameid-format:transient]
2019-10-23 00:52:34,379 - DEBUG [net.shibboleth.idp.saml.profile.logic.DefaultNameIdentifierFormatStrategy:?] - Configuration specifies the following formats: []
2019-10-23 00:52:34,379 - DEBUG [net.shibboleth.idp.saml.profile.logic.DefaultNameIdentifierFormatStrategy:?] - Configuration did not specify any formats, relying on metadata alone
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Candidate NameID formats: [urn:oasis:names:tc:SAML:2.0:nameid-format:transient]
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Trying to generate NameID with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.common.profile.impl.ChainingNameIdentifierGenerator:?] - Trying to generate identifier with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.AbstractSAML2NameIDGenerator:?] - Generating NameID AAdzZWNyZXQxmCOzaDMtwNnWj1EqTR0bLDBX6Y8nbD1zceyfBdZEj4n7dc5vuBBbBSRwnO90xf5yzx01HRy6EKaPQf3tiKY2bZDrnV3KHVTy/EnDFtVHIysMChaef+uTnOiN2oJYoG+jsrn94cDq289s3lYxBc2cxeLHvcM= with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.common.profile.impl.ChainingNameIdentifierGenerator:?] - Successfully generated identifier with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Successfully generated NameID with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Added NameID to 1 assertion subject(s)
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Attempting to add SubjectConfirmation to assertions in outgoing Response
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data Address to 172.31.19.108
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data InResponseTo to _b698d66e6cd93886ecbb79ce56dad113
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data Recipient to http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data NotOnOrAfter to 5 minutes from now
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Added SubjectConfirmation with method urn:oasis:names:tc:SAML:2.0:cm:bearer to 1 assertion(s)
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotBeforeConditionToAssertions:?] - Profile Action AddNotBeforeConditionToAssertions: Attempting to add NotBefore condition to every Assertion in outgoing Response
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotBeforeConditionToAssertions:?] - Profile Action AddNotBeforeConditionToAssertions: Added NotBefore condition to Assertion _1917976f03095b061c9e199822cdf774
2019-10-23 00:52:34,379 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddNotBeforeConditionToAssertions: Assertion _1917976f03095b061c9e199822cdf774 did not already contain Conditions, one was added
2019-10-23 00:52:34,380 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Attempting to add NotOnOrAfter condition to every Assertion in outgoing Response
2019-10-23 00:52:34,380 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Added NotOnOrAfter condition, indicating an expiration of 2019-10-23T00:57:34.375Z, to Assertion _1917976f03095b061c9e199822cdf774
2019-10-23 00:52:34,380 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Assertion _1917976f03095b061c9e199822cdf774 already contained Conditions, nothing was done
2019-10-23 00:52:34,380 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Attempting to add an AudienceRestrictionCondition to every Assertion in Response
2019-10-23 00:52:34,380 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAudienceRestrictionToAssertions: Assertion _1917976f03095b061c9e199822cdf774 already contained Conditions, nothing was done
2019-10-23 00:52:34,380 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Adding new AudienceRestriction
2019-10-23 00:52:34,380 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Adding http://192.168.43.252:8080/prweb/sp/1571838494 as an Audience of the AudienceRestriction
2019-10-23 00:52:34,380 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Added AudienceRestrictionCondition to Assertion _1917976f03095b061c9e199822cdf774
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithSPSession:?] - Profile Action UpdateSessionWithSPSession: Adding new SPSession for relying party http://192.168.43.252:8080/prweb/sp/1571838494 to existing session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Loading SPSession for service http://192.168.43.252:8080/prweb/sp/1571838494 in session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.SPSessionSerializerRegistry:?] - Registry located StorageSerializer of type 'net.shibboleth.idp.saml.session.impl.SAML2SPSessionSerializer' for SPSession type 'class net.shibboleth.idp.saml.session.SAML2SPSession'
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Saving SPSession for service http://192.168.43.252:8080/prweb/sp/1571838494 in session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.SPSessionSerializerRegistry:?] - Registry located StorageSerializer of type 'net.shibboleth.idp.saml.session.impl.SAML2SPSessionSerializer' for SPSession type 'class net.shibboleth.idp.saml.session.SAML2SPSession'
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.AbstractIdPSession:?] - IdPSession 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee: replaced old SPSession for service http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Removing secondary index for service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxrAevwAXk0Eimx9Kbm2vQgn6ue96SfFO4yNjnr/jKogrKXVQX0S7T/uSGAvl1R1RBlztciMc70KE9YgYqXN4+enAoMYEjAKPXOCEH2AUaOluyT1VN6LobBwRWxRodkdIMuGw8gWY4RDHb8VJ6f8bh3K5V9Vo=
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Maintaining secondary index for service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxmCOzaDMtwNnWj1EqTR0bLDBX6Y8nbD1zceyfBdZEj4n7dc5vuBBbBSRwnO90xf5yzx01HRy6EKaPQf3tiKY2bZDrnV3KHVTy/EnDFtVHIysMChaef+uTnOiN2oJYoG+jsrn94cDq289s3lYxBc2cxeLHvcM=
2019-10-23 00:52:34,382 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithSPSession:?] - Profile Action UpdateSessionWithSPSession: Older SPSession for relying party http://192.168.43.252:8080/prweb/sp/1571838494 was replaced
2019-10-23 00:52:34,383 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptNameIDs: No encryption parameters, nothing to do
2019-10-23 00:52:34,383 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptAttributes: No encryption parameters, nothing to do
2019-10-23 00:52:34,383 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_1917976f03095b061c9e199822cdf774"
2019-10-23 00:52:34,383 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _1917976f03095b061c9e199822cdf774 and Element was [saml2:Assertion: null]
2019-10-23 00:52:34,383 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_1917976f03095b061c9e199822cdf774"
2019-10-23 00:52:34,383 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _1917976f03095b061c9e199822cdf774 and Element was [saml2:Assertion: null]
2019-10-23 00:52:34,385 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptAssertions: No encryption parameters, nothing to do
2019-10-23 00:52:34,386 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:52:34,386 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:52:34,386 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_ce78d3dda67fd2997b386417818c51e8"
2019-10-23 00:52:34,386 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _ce78d3dda67fd2997b386417818c51e8 and Element was [saml2p:Response: null]
2019-10-23 00:52:34,386 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_ce78d3dda67fd2997b386417818c51e8"
2019-10-23 00:52:34,386 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _ce78d3dda67fd2997b386417818c51e8 and Element was [saml2p:Response: null]
2019-10-23 00:52:34,388 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Invoking Velocity template to create POST body
2019-10-23 00:52:34,388 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Encoding action url of 'http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService' with encoded value 'http&#x3a;&#x2f;&#x2f;192.168.43.252&#x3a;8080&#x2f;prweb&#x2f;PRRestService&#x2f;WebSSO&#x2f;SAML&#x2f;AssertionConsumerService'
2019-10-23 00:52:34,388 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Marshalling and Base64 encoding SAML message
2019-10-23 00:52:34,389 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Setting RelayState parameter to: 'f0a30510-3253-45f8-8396-94438c20529e', encoded as 'f0a30510-3253-45f8-8396-94438c20529e'
2019-10-23 00:52:34,390 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:Response
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"
    ID="_ce78d3dda67fd2997b386417818c51e8"
    InResponseTo="_b698d66e6cd93886ecbb79ce56dad113"
    IssueInstant="2019-10-23T00:52:34.375Z" Version="2.0"
    xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
            <ds:Reference URI="#_ce78d3dda67fd2997b386417818c51e8">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                        <ec:InclusiveNamespaces PrefixList="xsd" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                    </ds:Transform>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                <ds:DigestValue>m5h04A8qFBwWY0AVOYcur7VQxIw7VeVKvtQKsZQ7dNI=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>HRPh5cNzOua/nJc1BI8P9ldfZfF6n400sAUMEWQ9lCSlYrvUNdnCmgKXsds76Z0G9B7a7z7aFx7Nz158l55BAlIaz8alOfJVNF7kbqr5z1YHh+4h1bqfremj/y8UfduFG7Z0HcGdeeALDALQKyHxN6QRJUF/pBrvgCKibhW5+jn+ODgqZdsH05HnsQLEYnVtm1OG/HnhESK+fWu6rgiIAegwIkoU91Q0vj0RA9MUqtxGFm2Omzn23KaQbkBMQwCpzTk2XmsV5uEclNam8yB4zgIQlgbX0+KaWoZfYi3OltIExxX+p+W77bmZSvtFnf36FMDqs7xL+3nRJ3S40BagNw==</ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>MIIDEjCCAfqgAwIBAgIVAMECQ1tjghafm5OxWDh9hwZfxthWMA0GCSqGSIb3DQEBCwUAMBYxFDAS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==</ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
    </saml2p:Status>
    <saml2:Assertion ID="_1917976f03095b061c9e199822cdf774"
        IssueInstant="2019-10-23T00:52:34.375Z" Version="2.0"
        xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
        <saml2:Issuer>https://samltest.id/saml/idp</saml2:Issuer>
        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
                <ds:Reference URI="#_1917976f03095b061c9e199822cdf774">
                    <ds:Transforms>
                        <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                            <ec:InclusiveNamespaces PrefixList="xsd" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                        </ds:Transform>
                    </ds:Transforms>
                    <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                    <ds:DigestValue>XBDcN1/dYF4b7cJT4dDgSoHh+/oYlMIfUcBpyX87jA4=</ds:DigestValue>
                </ds:Reference>
            </ds:SignedInfo>
            <ds:SignatureValue>JUWRhWEUlw3BvMnYp/E4hgusS8LkW2LknYGJ2xpe6y9kWdr6wPV6ikEQhYLAvBszkFriVE+HSf/trb6RAGneWmWsnoCeuU4/w1teXkW3CFmpXMxz5FytqO0B0rsmqqWH2qjjCsfoFv4oe8/GS8Wx2fs4dQ0YdEnDA7Bjvdv+XePFmRKIZUxC1DlymfyDh35eXnqq173dwDJw87WZS9PIIQca311qZdETzGKz7QovLKsuGSBppuxSKP/86UJPf8uRi4POWtbe2EMOsk5bJMm0IDdV8HweEksj68n9J1VGsb+LV5hl78wYhe1VYYnxpDgYL8ehj5qg01jDy9jjYmZSRQ==</ds:SignatureValue>
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>MIIDEjCCAfqgAwIBAgIVAMECQ1tjghafm5OxWDh9hwZfxthWMA0GCSqGSIb3DQEBCwUAMBYxFDAS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==</ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </ds:Signature>
        <saml2:Subject>
            <saml2:NameID
                Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
                NameQualifier="https://samltest.id/saml/idp"
                SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxmCOzaDMtwNnWj1EqTR0bLDBX6Y8nbD1zceyfBdZEj4n7dc5vuBBbBSRwnO90xf5yzx01HRy6EKaPQf3tiKY2bZDrnV3KHVTy/EnDFtVHIysMChaef+uTnOiN2oJYoG+jsrn94cDq289s3lYxBc2cxeLHvcM=</saml2:NameID>
            <saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml2:SubjectConfirmationData Address="172.31.19.108"
                    InResponseTo="_b698d66e6cd93886ecbb79ce56dad113"
                    NotOnOrAfter="2019-10-23T00:57:34.379Z" Recipient="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"/>
            </saml2:SubjectConfirmation>
        </saml2:Subject>
        <saml2:Conditions NotBefore="2019-10-23T00:52:34.375Z" NotOnOrAfter="2019-10-23T00:57:34.375Z">
            <saml2:AudienceRestriction>
                <saml2:Audience>http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Audience>
            </saml2:AudienceRestriction>
        </saml2:Conditions>
        <saml2:AuthnStatement AuthnInstant="2019-10-23T00:52:13.194Z" SessionIndex="_1999abd9c2cd8b442b0a6c37a63de05d">
            <saml2:SubjectLocality Address="172.31.19.108"/>
            <saml2:AuthnContext>
                <saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml2:AuthnContextClassRef>
            </saml2:AuthnContext>
        </saml2:AuthnStatement>
        <saml2:AttributeStatement>
            <saml2:Attribute FriendlyName="uid"
                Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>sheldon</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute
                Name="urn:oasis:names:tc:SAML:attribute:subject-id" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue
                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">scooper@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="telephoneNumber"
                Name="urn:oid:2.5.4.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>+1-555-555-5515</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="role"
                Name="https://samltest.id/attributes/role" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue
                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">employee@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="mail"
                Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>scooper@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="displayName"
                Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Sheldor</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Cooper</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="givenName"
                Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Sheldon</saml2:AttributeValue>
            </saml2:Attribute>
        </saml2:AttributeStatement>
    </saml2:Assertion>
</saml2p:Response>

2019-10-23 00:52:34,390 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:52:34,390 - INFO [Shibboleth-Audit.SSO:?] - 20191023T005234Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST|_b698d66e6cd93886ecbb79ce56dad113|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/sso/browser|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST|_ce78d3dda67fd2997b386417818c51e8|sheldon|urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport|uid,identifier,telephoneNumber,role,mail,displayName,surname,givenName|AAdzZWNyZXQxmCOzaDMtwNnWj1EqTR0bLDBX6Y8nbD1zceyfBdZEj4n7dc5vuBBbBSRwnO90xf5yzx01HRy6EKaPQf3tiKY2bZDrnV3KHVTy/EnDFtVHIysMChaef+uTnOiN2oJYoG+jsrn94cDq289s3lYxBc2cxeLHvcM=|_1917976f03095b061c9e199822cdf774|
2019-10-23 00:53:50,125 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Decoded SAML relay state of: e4773c0d-5d1d-4f06-b3b6-d7bb6ac0720e
2019-10-23 00:53:50,125 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Getting Base64 encoded message from request
2019-10-23 00:53:50,125 - DEBUG [org.apache.xml.security.algorithms.implementations.SignatureDSA:?] - Created SignatureDSA using SHA1withDSA
2019-10-23 00:53:50,125 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPPostDecoder:?] - Decoded SAML message
2019-10-23 00:53:50,125 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:AuthnRequest
    AssertionConsumerServiceURL="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"
    Destination="https://samltest.id/idp/profile/SAML2/POST/SSO"
    ForceAuthn="false" ID="_c899f7a1136b6dfe9bd67c6533973151"
    IsPassive="false" IssueInstant="2019-10-23T00:53:49.788Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
            <ds:Reference URI="#_c899f7a1136b6dfe9bd67c6533973151">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                <ds:DigestValue>YpigICVV2Ja1vYUiUIka3S+uj1g=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>gQGziGIJ+mfzkUQ317uZmf+pFsvybPcJLrK2DISdpLWcdveJ4wKkUwImh0sb094PXjEm0D+MVSg=</ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>MIIEtjCCBGGgAwIBAgIEWxxlDDANBglghkgBZQMEAwIFADBdMQswCQYDVQQGEwJhdTEMMAoGA1UE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</ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
</saml2p:AuthnRequest>

2019-10-23 00:53:50,130 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:53:50,130 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:53:50,130 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:53:50,130 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:53:50,130 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:53:50,130 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:53:50,130 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:53:50,130 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:53:50,130 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:53:50,131 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/POST/SSO
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/POST/SSO
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_c899f7a1136b6dfe9bd67c6533973151', issue instant '2019-10-23T00:53:49.788Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2AuthnRequestsSignedSecurityHandler:?] - SPSSODescriptor for entity ID 'http://192.168.43.252:8080/prweb/sp/1571838494' does not require AuthnRequests to be signed
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.security.impl.SAMLSignatureProfileValidator:?] - Saw Enveloped signature transform
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.security.impl.SAMLSignatureProfileValidator:?] - Saw Exclusive C14N signature transform
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Attempting to verify signature on signed SAML protocol message type: {urn:oasis:names:tc:SAML:2.0:protocol}AuthnRequest
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:53:50,131 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:53:50,132 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - signatureMethodURI = http://www.w3.org/2000/09/xmldsig#dsa-sha1
2019-10-23 00:53:50,132 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - jceSigAlgorithm    = SHA1withDSA
2019-10-23 00:53:50,132 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - jceSigProvider     = SUN
2019-10-23 00:53:50,132 - DEBUG [org.apache.xml.security.signature.XMLSignature:?] - PublicKey = Sun DSA Public Key
    Parameters:DSA
	p:     8f7935d9 b9aae9bf abed887a cf4951b6 f32ec59e 3baf3718 e8eac496 1f3efd36
    06e74351 a9c41833 39b809e7 c2ae1c53 9ba7475b 85d011ad b8b47987 75498469
    5cac0e8f 14b33608 28a22ffa 27110a3d 62a99345 3409a0fe 696c4658 f84bdd20
    819c3709 a01057b1 95adcd00 233dba54 84b6291f 9d648ef8 83448677 979cec04
    b434a6ac 2e75e998 5de23db0 292fc111 8c9ffa9d 8181e733 8db792b7 30d7b9e3
    49592f68 09987215 3915ea3d 6b8b4653 c633458f 803b32a4 c2e0f272 90256e4e
    3f8a3b08 38a1c450 e4e18c1a 29a37ddf 5ea143de 4b66ff04 903ed5cf 1623e158
    d487c608 e97f211c d81dca23 cb6e3807 65f822e3 42be484c 05763939 601cd667
	q:     baf696a6 8578f7df dee7fa67 c977c785 ef32b233 bae580c0 bcd5695d
	g:     16a65c58 20485070 4e7502a3 9757040d 34da3a34 78c154d4 e4a5c02d 242ee04f
    96e61e4b d0904abd ac8f37ee b1e09f31 82d23c90 43cb642f 88004160 edf9ca09
    b32076a7 9c32a627 f2473e91 879ba2c4 e744bd20 81544cb5 5b802c36 8d1fa83e
    d489e94e 0fa0688e 32428a5c 78c478c6 8d0527b7 1c9a3abb 0b0be12c 44689639
    e7d3ce74 db101a65 aa2b87f6 4c6826db 3ec72f4b 5599834b b4edb02f 7c90e9a4
    96d3a55d 535bebfc 45d4f619 f63f3ded bb873925 c2f224e0 7731296d a887ec1e
    4748f87e fb5fdeb7 5484316b 2232dee5 53ddaf02 112b0d1f 02da3097 3224fe27
    aeda8b9d 4b2922d9 ba8be39e d9e103a6 3c52810b c688b7e2 ed4316e1 ef17dbde

  y:
    728f307a 362fb671 37fbd39f 46e9781a 1918910b 1bf57a0e 9c58ab3e 53c42b92
    bee83756 1f601d2b 1fe759be c9d1c734 1ff8d5aa 85ddc1be 1d8442ef 82b23784
    1173b882 285d9402 d888ac03 9df9cd1c 545b2f83 3c22c0d3 be216a64 3b37e223
    aa04d6b2 0dccf545 f0740156 ee19c483 7a8cf587 e01682ce c37dd1a9 798f2bfc
    b77b8312 5e9a4439 c956e121 4f34fd19 fb392a40 83b709fc fbed4c76 50d0008b
    8fa2613c b4d55030 8946502b 2d4dd350 b0683cda 56a15546 2a6b64d0 9a5db841
    82106fe1 7a0f36ee c88e1c44 f580883b acb285e8 62da355c 24d6dbf6 fca79d18
    925400c0 b64b6f27 e477f054 eec6bf63 b50e5942 9080cc9d bbe14ade 9db68411

2019-10-23 00:53:50,132 - DEBUG [org.apache.xml.security.algorithms.implementations.SignatureDSA:?] - Called DSA.verify() on gQGziGIJ+mfzkUQ317uZmf+pFsvybPcJLrK2DISdpLWcdveJ4wKkUwImh0sb094PXjEm0D+MVSg=
2019-10-23 00:53:50,133 - DEBUG [org.apache.xml.security.signature.Manifest:?] - verify 1 References
2019-10-23 00:53:50,133 - DEBUG [org.apache.xml.security.signature.Manifest:?] - I am not requested to follow nested Manifests
2019-10-23 00:53:50,133 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_c899f7a1136b6dfe9bd67c6533973151"
2019-10-23 00:53:50,133 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _c899f7a1136b6dfe9bd67c6533973151 and Element was [saml2p:AuthnRequest: null]
2019-10-23 00:53:50,133 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_c899f7a1136b6dfe9bd67c6533973151"
2019-10-23 00:53:50,133 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _c899f7a1136b6dfe9bd67c6533973151 and Element was [saml2p:AuthnRequest: null]
2019-10-23 00:53:50,133 - DEBUG [org.apache.xml.security.signature.Reference:?] - Verification successful for URI "#_c899f7a1136b6dfe9bd67c6533973151"
2019-10-23 00:53:50,133 - DEBUG [org.apache.xml.security.signature.Manifest:?] - The Reference has Type 
2019-10-23 00:53:50,133 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Validation of protocol message signature succeeded, message type: {urn:oasis:names:tc:SAML:2.0:protocol}AuthnRequest
2019-10-23 00:53:50,133 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  Authentication via protocol message signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:53:50,133 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:53:50,133 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:53:50,134 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:53:50,134 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  HTTP request was not signed via simple signature mechanism, skipping
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService for outbound message
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Populating template endpoint for resolution from SAML AuthnRequest
2019-10-23 00:53:50,137 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}AssertionConsumerService
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was resolved, won't be able to determine delegation requested status via metadata
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - No AttributeConsumingService was available
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Delegation request was not explicitly indicated, using default value: NOT_REQUESTED
2019-10-23 00:53:50,137 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Issuance of a delegated Assertion is not in effect, skipping further processing
2019-10-23 00:53:50,137 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:53:50,138 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:53:50,138 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption for assertions (true), identifiers (false), attributes(false)
2019-10-23 00:53:50,138 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolving EncryptionParameters for request
2019-10-23 00:53:50,138 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding entityID to resolution criteria
2019-10-23 00:53:50,138 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Adding role metadata to resolution criteria
2019-10-23 00:53:50,138 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from supplied RoleDescriptor using usage: ENCRYPTION.  Effective entityID was: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:53:50,138 - DEBUG [org.opensaml.saml.security.impl.SAMLMetadataEncryptionParametersResolver:?] - Could not resolve encryption parameters based on SAML metadata, falling back to locally configured credentials and algorithms
2019-10-23 00:53:50,138 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Failed to resolve EncryptionParameters
2019-10-23 00:53:50,138 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Resolver returned no EncryptionParameters
2019-10-23 00:53:50,138 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Encryption is optional, ignoring inability to encrypt
2019-10-23 00:53:50,141 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:53:50,141 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeAuthenticationContext:?] - Profile Action InitializeAuthenticationContext: Created authentication context: AuthenticationContext{initiationInstant=2019-10-23T00:53:50.141Z, isPassive=false, forceAuthn=false, hintedName=null, maxAge=0, potentialFlows=[], activeResults=[], attemptedFlow=null, signaledFlowId=null, authenticationStateMap={}, resultCacheable=true, initialAuthenticationResult=null, authenticationResult=null, completionInstant=1970-01-01T00:00:00.000Z}
2019-10-23 00:53:50,141 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessRequestedAuthnContext:?] - Profile Action ProcessRequestedAuthnContext: AuthnRequest did not contain a RequestedAuthnContext, nothing to do
2019-10-23 00:53:50,141 - DEBUG [net.shibboleth.idp.authn.impl.PopulateAuthenticationContext:?] - Profile Action PopulateAuthenticationContext: Installed 1 potential authentication flows into AuthenticationContext
2019-10-23 00:53:50,141 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing primary lookup on session ID 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee
2019-10-23 00:53:50,141 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Updating expiration of master record for session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee to 2019-10-23T01:53:50.141Z
2019-10-23 00:53:50,141 - WARN [net.shibboleth.idp.session.AbstractIdPSession:?] - Client address is 172.31.7.69 but session 5dd34ad9081c2cdda97da0af2d74f5ac3457ef9e259831aaca3fb8f8ae549bee already bound to 172.31.19.108
2019-10-23 00:53:50,142 - DEBUG [net.shibboleth.idp.authn.impl.InitializeRequestedPrincipalContext:?] - Profile Action InitializeRequestedPrincipalContext: Profile configuration did not supply any default authentication methods
2019-10-23 00:53:50,142 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByForcedAuthn:?] - Profile Action FilterFlowsByForcedAuthn: Request does not have forced authentication requirement, nothing to do
2019-10-23 00:53:50,142 - DEBUG [net.shibboleth.idp.authn.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:53:50,142 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No specific Principals requested
2019-10-23 00:53:50,142 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: No usable active results available, selecting an inactive flow
2019-10-23 00:53:50,142 - DEBUG [net.shibboleth.idp.authn.impl.SelectAuthenticationFlow:?] - Profile Action SelectAuthenticationFlow: Selecting inactive authentication flow authn/Password
2019-10-23 00:53:50,143 - DEBUG [net.shibboleth.idp.authn.impl.ExtractUsernamePasswordFromBasicAuth:?] - Profile Action ExtractUsernamePasswordFromBasicAuth: No appropriate Authorization header found
2019-10-23 00:53:50,374 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - Found matching scheme, returning name of '192.168.43.252'
2019-10-23 00:53:50,374 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No UIInfo or logos returning null
2019-10-23 00:53:50,374 - DEBUG [net.shibboleth.idp.ui.context.RelyingPartyUIContext:?] - No description matching the languages found, returning null
2019-10-23 00:54:04,188 - DEBUG [net.shibboleth.idp.authn.AbstractExtractionAction:?] - Profile Action ExtractUsernamePasswordFromFormRequest: Trimming whitespace of input string 'sheldon'
2019-10-23 00:54:04,188 - DEBUG [net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Attempting to authenticate user sheldon
2019-10-23 00:54:04,188 - DEBUG [net.shibboleth.idp.authn.PooledTemplateSearchDnResolver:?] - resolve user=[org.ldaptive.auth.User@1236876258::identifier=sheldon, context=org.apache.velocity.VelocityContext@73fc75ef]
2019-10-23 00:54:04,195 - DEBUG [net.shibboleth.idp.authn.PooledTemplateSearchDnResolver:?] - resolved dn=uid=sheldon,ou=People,dc=samltest,dc=id for user=[org.ldaptive.auth.User@1236876258::identifier=sheldon, context=org.apache.velocity.VelocityContext@73fc75ef]
2019-10-23 00:54:04,197 - INFO [net.shibboleth.idp.authn.impl.ValidateUsernamePasswordAgainstLDAP:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Login by 'sheldon' succeeded
2019-10-23 00:54:04,197 - DEBUG [net.shibboleth.idp.authn.AbstractValidationAction:?] - Profile Action ValidateUsernamePasswordAgainstLDAP: Adding custom Principal(s) defined on underlying flow descriptor
2019-10-23 00:54:04,197 - DEBUG [net.shibboleth.idp.authn.impl.PopulateSubjectCanonicalizationContext:?] - Profile Action PopulateSubjectCanonicalizationContext: Installing 2 canonicalization flows into SubjectCanonicalizationContext
2019-10-23 00:54:04,197 - DEBUG [net.shibboleth.idp.authn.AbstractSubjectCanonicalizationAction:?] - Profile Action SimpleSubjectCanonicalization: trimming whitespace of input string 'sheldon'
2019-10-23 00:54:04,197 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Canonical principal name was established as 'sheldon'
2019-10-23 00:54:04,197 - DEBUG [net.shibboleth.idp.authn.impl.FinalizeAuthentication:?] - Profile Action FinalizeAuthentication: Request did not have explicit authentication requirements, result is accepted
2019-10-23 00:54:04,197 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithAuthenticationResult:?] - Profile Action UpdateSessionWithAuthenticationResult: Creating new session for principal sheldon
2019-10-23 00:54:04,197 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Created new session 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7 for principal sheldon
2019-10-23 00:54:04,197 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Saving AuthenticationResult for flow authn/Password in session 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.resolver.dc.ldap.impl.TemplatedExecutableSearchFilterBuilder:?] - Template text (uid=$resolutionContext.principal) yields (uid=sheldon)
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter'  Beginning process of filtering the following 8 attributes: [uid, identifier, telephoneNumber, role, mail, displayName, surname, givenName]
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'uid' remained after filtering
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'identifier' remained after filtering
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'telephoneNumber' remained after filtering
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'role' remained after filtering
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'mail' remained after filtering
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'displayName' remained after filtering
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'surname' remained after filtering
2019-10-23 00:54:04,198 - DEBUG [net.shibboleth.idp.attribute.filter.impl.AttributeFilterImpl:?] - Attribute filtering engine 'ShibbolethAttributeFilter': 1 values for attribute 'givenName' remained after filtering
2019-10-23 00:54:04,199 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:54:04,199 - DEBUG [net.shibboleth.idp.consent.flow.impl.InitializeConsentContext:?] - Profile Action InitializeConsentContext: Created consent context 'ConsentContext{previousConsents={}, chosenConsents={}}'
2019-10-23 00:54:04,199 - DEBUG [net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:?] - Profile Action PopulateAttributeReleaseContext: Found attributeContext 'net.shibboleth.idp.attribute.context.AttributeContext@6b78e5c9'
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.logic.impl.JoinFunction:?] - Result 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: Read storage record 'org.opensaml.storage.MutableStorageRecord@48a4cb34' with context 'intercept/attribute-release' and key 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.storage.impl.ConsentSerializer:?] - Deserialized context 'intercept/attribute-release' key 'sheldon:http://192.168.43.252:8080/prweb/sp/1571838494' value '[{"id":201},{"id":117},{"id":"identifier"},{"id":"mail"},{"id":"role"},{"id":106},{"id":116},{"id":"uid"}]' expiration '1603327937996' as '{displayName=Consent{id=displayName, value=null, isApproved=true}, givenName=Consent{id=givenName, value=null, isApproved=true}, identifier=Consent{id=identifier, value=null, isApproved=true}, mail=Consent{id=mail, value=null, isApproved=true}, role=Consent{id=role, value=null, isApproved=true}, surname=Consent{id=surname, value=null, isApproved=true}, telephoneNumber=Consent{id=telephoneNumber, value=null, isApproved=true}, uid=Consent{id=uid, value=null, isApproved=true}}'
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.logic.impl.FlowIdLookupFunction:?] - Current flow id is 'intercept/attribute-release'
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: Read storage record 'null' with context 'intercept/attribute-release' and key 'sheldon'
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.flow.storage.impl.ReadConsentFromStorage:?] - Profile Action ReadConsentFromStorage: No storage record for context 'intercept/attribute-release' and key 'sheldon'
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.flow.impl.PopulateConsentContext:?] - Profile Action PopulateConsentContext: Populating consents: [displayName, givenName, identifier, mail, role, surname, telephoneNumber, uid]
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.logic.impl.IsConsentRequiredPredicate:?] - Consent is not required, previous consents match current consents
2019-10-23 00:54:04,203 - DEBUG [net.shibboleth.idp.consent.flow.ar.impl.AbstractAttributeReleaseAction:?] - Profile Action ReleaseAttributes: Found attributeContext 'net.shibboleth.idp.attribute.context.AttributeContext@6b78e5c9'
2019-10-23 00:54:04,204 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:54:04,204 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:54:04,205 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.profile.impl.BaseAddAuthenticationStatementToAssertion:?] - Profile Action AddAuthnStatementToAssertion: Attempting to add an AuthenticationStatement to outgoing Assertion
2019-10-23 00:54:04,206 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAuthnStatementToAssertion: Created Assertion _42754c4542567e4a57c8028977664051
2019-10-23 00:54:04,206 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAuthnStatementToAssertion: Added Assertion _42754c4542567e4a57c8028977664051 to Response _70e78b0c6cb8840df26d608fb73b0dd1
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.AddAuthnStatementToAssertion:?] - Profile Action AddAuthnStatementToAssertion: Added AuthenticationStatement to Assertion _42754c4542567e4a57c8028977664051
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.profile.impl.BaseAddAttributeStatementToAssertion:?] - Profile Action AddAttributeStatementToAssertion: Attempting to add an AttributeStatement to outgoing Assertion
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value sheldon of attribute uid
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value scooper@samltest.id of attribute identifier
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value +1-555-555-5515 of attribute telephoneNumber
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value employee@samltest.id of attribute role
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value scooper@samltest.id of attribute mail
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Sheldor of attribute displayName
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Cooper of attribute surname
2019-10-23 00:54:04,206 - DEBUG [net.shibboleth.idp.saml.attribute.encoding.SAMLEncoderSupport:?] - Encoding value Sheldon of attribute givenName
2019-10-23 00:54:04,207 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Attempting to add NameID to outgoing Assertion Subjects
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.logic.AbstractNameIDPolicyPredicate:?] - No object to operate on, returning true
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.logic.MetadataNameIdentifierFormatStrategy:?] - Metadata specifies the following formats: [urn:oasis:names:tc:SAML:2.0:nameid-format:transient]
2019-10-23 00:54:04,208 - DEBUG [net.shibboleth.idp.saml.profile.logic.DefaultNameIdentifierFormatStrategy:?] - Configuration specifies the following formats: []
2019-10-23 00:54:04,208 - DEBUG [net.shibboleth.idp.saml.profile.logic.DefaultNameIdentifierFormatStrategy:?] - Configuration did not specify any formats, relying on metadata alone
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Candidate NameID formats: [urn:oasis:names:tc:SAML:2.0:nameid-format:transient]
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Trying to generate NameID with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.ChainingNameIdentifierGenerator:?] - Trying to generate identifier with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.AbstractSAML2NameIDGenerator:?] - Generating NameID AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08= with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.ChainingNameIdentifierGenerator:?] - Successfully generated identifier with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Successfully generated NameID with Format urn:oasis:names:tc:SAML:2.0:nameid-format:transient
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddNameIDToSubjects:?] - Profile Action AddNameIDToSubjects: Added NameID to 1 assertion subject(s)
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Attempting to add SubjectConfirmation to assertions in outgoing Response
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data Address to 172.31.7.69
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data InResponseTo to _c899f7a1136b6dfe9bd67c6533973151
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data Recipient to http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Setting confirmation data NotOnOrAfter to 5 minutes from now
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddSubjectConfirmationToSubjects:?] - Profile Action AddSubjectConfirmationToSubjects: Added SubjectConfirmation with method urn:oasis:names:tc:SAML:2.0:cm:bearer to 1 assertion(s)
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotBeforeConditionToAssertions:?] - Profile Action AddNotBeforeConditionToAssertions: Attempting to add NotBefore condition to every Assertion in outgoing Response
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotBeforeConditionToAssertions:?] - Profile Action AddNotBeforeConditionToAssertions: Added NotBefore condition to Assertion _42754c4542567e4a57c8028977664051
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddNotBeforeConditionToAssertions: Assertion _42754c4542567e4a57c8028977664051 did not already contain Conditions, one was added
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Attempting to add NotOnOrAfter condition to every Assertion in outgoing Response
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.AddNotOnOrAfterConditionToAssertions:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Added NotOnOrAfter condition, indicating an expiration of 2019-10-23T00:59:04.204Z, to Assertion _42754c4542567e4a57c8028977664051
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddNotOnOrAfterConditionToAssertions: Assertion _42754c4542567e4a57c8028977664051 already contained Conditions, nothing was done
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Attempting to add an AudienceRestrictionCondition to every Assertion in Response
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.saml2.profile.SAML2ActionSupport:?] - Profile Action AddAudienceRestrictionToAssertions: Assertion _42754c4542567e4a57c8028977664051 already contained Conditions, nothing was done
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Adding new AudienceRestriction
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Adding http://192.168.43.252:8080/prweb/sp/1571838494 as an Audience of the AudienceRestriction
2019-10-23 00:54:04,208 - DEBUG [org.opensaml.saml.common.profile.impl.AddAudienceRestrictionToAssertions:?] - Profile Action AddAudienceRestrictionToAssertions: Added AudienceRestrictionCondition to Assertion _42754c4542567e4a57c8028977664051
2019-10-23 00:54:04,209 - DEBUG [net.shibboleth.idp.session.impl.UpdateSessionWithSPSession:?] - Profile Action UpdateSessionWithSPSession: Adding new SPSession for relying party http://192.168.43.252:8080/prweb/sp/1571838494 to existing session 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:54:04,209 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Saving SPSession for service http://192.168.43.252:8080/prweb/sp/1571838494 in session 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:54:04,209 - DEBUG [net.shibboleth.idp.session.SPSessionSerializerRegistry:?] - Registry located StorageSerializer of type 'net.shibboleth.idp.saml.session.impl.SAML2SPSessionSerializer' for SPSession type 'class net.shibboleth.idp.saml.session.SAML2SPSession'
2019-10-23 00:54:04,210 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Maintaining secondary index for service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=
2019-10-23 00:54:04,210 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptNameIDs: No encryption parameters, nothing to do
2019-10-23 00:54:04,210 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptAttributes: No encryption parameters, nothing to do
2019-10-23 00:54:04,211 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_42754c4542567e4a57c8028977664051"
2019-10-23 00:54:04,211 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _42754c4542567e4a57c8028977664051 and Element was [saml2:Assertion: null]
2019-10-23 00:54:04,211 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_42754c4542567e4a57c8028977664051"
2019-10-23 00:54:04,211 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _42754c4542567e4a57c8028977664051 and Element was [saml2:Assertion: null]
2019-10-23 00:54:04,213 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractEncryptAction:?] - Profile Action EncryptAssertions: No encryption parameters, nothing to do
2019-10-23 00:54:04,214 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:54:04,214 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService
2019-10-23 00:54:04,214 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_70e78b0c6cb8840df26d608fb73b0dd1"
2019-10-23 00:54:04,214 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _70e78b0c6cb8840df26d608fb73b0dd1 and Element was [saml2p:Response: null]
2019-10-23 00:54:04,214 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - State I can resolve reference: "#_70e78b0c6cb8840df26d608fb73b0dd1"
2019-10-23 00:54:04,214 - DEBUG [org.apache.xml.security.utils.resolver.implementations.ResolverFragment:?] - Try to catch an Element with ID _70e78b0c6cb8840df26d608fb73b0dd1 and Element was [saml2p:Response: null]
2019-10-23 00:54:04,216 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Invoking Velocity template to create POST body
2019-10-23 00:54:04,216 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Encoding action url of 'http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService' with encoded value 'http&#x3a;&#x2f;&#x2f;192.168.43.252&#x3a;8080&#x2f;prweb&#x2f;PRRestService&#x2f;WebSSO&#x2f;SAML&#x2f;AssertionConsumerService'
2019-10-23 00:54:04,216 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Marshalling and Base64 encoding SAML message
2019-10-23 00:54:04,216 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPPostEncoder:?] - Setting RelayState parameter to: 'e4773c0d-5d1d-4f06-b3b6-d7bb6ac0720e', encoded as 'e4773c0d-5d1d-4f06-b3b6-d7bb6ac0720e'
2019-10-23 00:54:04,218 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:Response
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"
    ID="_70e78b0c6cb8840df26d608fb73b0dd1"
    InResponseTo="_c899f7a1136b6dfe9bd67c6533973151"
    IssueInstant="2019-10-23T00:54:04.204Z" Version="2.0"
    xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:SignedInfo>
            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
            <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
            <ds:Reference URI="#_70e78b0c6cb8840df26d608fb73b0dd1">
                <ds:Transforms>
                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                        <ec:InclusiveNamespaces PrefixList="xsd" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                    </ds:Transform>
                </ds:Transforms>
                <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                <ds:DigestValue>dL7rZuEXjA9kA8g9iqHUNHSVZAlH5MXoZ+H9sAtHwaI=</ds:DigestValue>
            </ds:Reference>
        </ds:SignedInfo>
        <ds:SignatureValue>rjoBqazXPsoGTh8EyoA5cdz/NMsbCrmyDW5NNUS7c9rel43bNR4uqoLkMw+Y944zUh0jnSMj8wrFFeq5IweGnk0vYTkpllwCdNhIrYL1eXV8KYfnBpqTy2kbvkCPSQNrmcFYJ9boHP0e8tcn3pPdOy97ExM0aLiyduFyiPpYd/I9DdlQeqA0Xc2jfiEiVW8G9KJ8XW54H7JT93rn3VILMKoQ/DdafWObMnZ1MGE19AaP+TxN4EzVk6kdoRq5zJ6YfSlyDrHPbUY2QM6Xk7uAE5D9NbKPbBrsIHHOpJ/cRnL3OhXWcA+iUcAa/aLze+3h+lSNgjeuXs0K5NXWQ0GSSg==</ds:SignatureValue>
        <ds:KeyInfo>
            <ds:X509Data>
                <ds:X509Certificate>MIIDEjCCAfqgAwIBAgIVAMECQ1tjghafm5OxWDh9hwZfxthWMA0GCSqGSIb3DQEBCwUAMBYxFDAS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==</ds:X509Certificate>
            </ds:X509Data>
        </ds:KeyInfo>
    </ds:Signature>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
    </saml2p:Status>
    <saml2:Assertion ID="_42754c4542567e4a57c8028977664051"
        IssueInstant="2019-10-23T00:54:04.204Z" Version="2.0"
        xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsd="http://www.w3.org/2001/XMLSchema">
        <saml2:Issuer>https://samltest.id/saml/idp</saml2:Issuer>
        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
            <ds:SignedInfo>
                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
                <ds:Reference URI="#_42754c4542567e4a57c8028977664051">
                    <ds:Transforms>
                        <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
                            <ec:InclusiveNamespaces PrefixList="xsd" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"/>
                        </ds:Transform>
                    </ds:Transforms>
                    <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
                    <ds:DigestValue>dlApnA1p1RXtoq+CrXNsJGDq0kP1b8oQayz3tOHM+kM=</ds:DigestValue>
                </ds:Reference>
            </ds:SignedInfo>
            <ds:SignatureValue>cgz9XfNXPo83guz+djbY42WqHjcjlcBFKR7pbZLWiTClyMpoPbQdUuMDZ2jIPhbBp/Is6kVuCtfXeT06hgcUsApe4vMGWfDMn56XWbwAbNZ0FkqWnH5GNunTIOcxoB6HYKRfIPn/OK5jHQMp+JtAZihOlDwB68t7Zcv7A72ygf7CJ4vF9l0cp2JJRb8fQZBNOg5cqynL3nFhSQOHFOSlweAgvC44ulCmHIkKxrCzERT0FThFq8ZPp55/GLlPuNcgLbJmc8Iy5csQFUI5KzdSeNmHYhwqtc9tY8YhYjf86CkDrdh6mJzXpj51fbRz3H/nCcdhBvk5CVlhPznwqXwWUg==</ds:SignatureValue>
            <ds:KeyInfo>
                <ds:X509Data>
                    <ds:X509Certificate>MIIDEjCCAfqgAwIBAgIVAMECQ1tjghafm5OxWDh9hwZfxthWMA0GCSqGSIb3DQEBCwUAMBYxFDAS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==</ds:X509Certificate>
                </ds:X509Data>
            </ds:KeyInfo>
        </ds:Signature>
        <saml2:Subject>
            <saml2:NameID
                Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
                NameQualifier="https://samltest.id/saml/idp"
                SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=</saml2:NameID>
            <saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
                <saml2:SubjectConfirmationData Address="172.31.7.69"
                    InResponseTo="_c899f7a1136b6dfe9bd67c6533973151"
                    NotOnOrAfter="2019-10-23T00:59:04.208Z" Recipient="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/AssertionConsumerService"/>
            </saml2:SubjectConfirmation>
        </saml2:Subject>
        <saml2:Conditions NotBefore="2019-10-23T00:54:04.204Z" NotOnOrAfter="2019-10-23T00:59:04.204Z">
            <saml2:AudienceRestriction>
                <saml2:Audience>http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Audience>
            </saml2:AudienceRestriction>
        </saml2:Conditions>
        <saml2:AuthnStatement AuthnInstant="2019-10-23T00:54:04.197Z" SessionIndex="_dd57e2fcf2c243d283b293e1d7372b1f">
            <saml2:SubjectLocality Address="172.31.7.69"/>
            <saml2:AuthnContext>
                <saml2:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport</saml2:AuthnContextClassRef>
            </saml2:AuthnContext>
        </saml2:AuthnStatement>
        <saml2:AttributeStatement>
            <saml2:Attribute FriendlyName="uid"
                Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>sheldon</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute
                Name="urn:oasis:names:tc:SAML:attribute:subject-id" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue
                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">scooper@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="telephoneNumber"
                Name="urn:oid:2.5.4.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>+1-555-555-5515</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="role"
                Name="https://samltest.id/attributes/role" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue
                    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xsd:string">employee@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="mail"
                Name="urn:oid:0.9.2342.19200300.100.1.3" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>scooper@samltest.id</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="displayName"
                Name="urn:oid:2.16.840.1.113730.3.1.241" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Sheldor</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="sn" Name="urn:oid:2.5.4.4" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Cooper</saml2:AttributeValue>
            </saml2:Attribute>
            <saml2:Attribute FriendlyName="givenName"
                Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
                <saml2:AttributeValue>Sheldon</saml2:AttributeValue>
            </saml2:Attribute>
        </saml2:AttributeStatement>
    </saml2:Assertion>
</saml2p:Response>

2019-10-23 00:54:04,218 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:54:04,218 - INFO [Shibboleth-Audit.SSO:?] - 20191023T005404Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST|_c899f7a1136b6dfe9bd67c6533973151|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/sso/browser|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST|_70e78b0c6cb8840df26d608fb73b0dd1|sheldon|urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport|uid,identifier,telephoneNumber,role,mail,displayName,surname,givenName|AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=|_42754c4542567e4a57c8028977664051|
2019-10-23 00:54:11,458 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:54:11,458 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:54:11,458 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:54:11,458 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutRequest
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SLO"
    ID="_74fe42703c3efacb1ba8275816f131e5"
    IssueInstant="2019-10-23T00:54:11.665Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <saml2:NameID
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        NameQualifier="https://samltest.id/saml/idp"
        SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=</saml2:NameID>
    <saml2p:SessionIndex>_dd57e2fcf2c243d283b293e1d7372b1f</saml2p:SessionIndex>
</saml2p:LogoutRequest>

2019-10-23 00:54:11,463 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:54:11,463 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:54:11,463 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:54:11,463 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:54:11,463 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:54:11,463 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:54:11,463 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:54:11,463 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:54:11,463 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:54:11,463 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_74fe42703c3efacb1ba8275816f131e5', issue instant '2019-10-23T00:54:11.665Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=nVPbjtowEH3vV0R%2BRZDYuVvAintBXAqBXZaXlRM7YAQOxA4Fvr4JlKpbrVbVvljW%2BMzMOWc81afzfqedWCp5ImoAVgygMREllIt1DSzm3bIHnurfqpLsd%2BiAh8k6ydSMHTMmldbODy6IuqVulDpIrOsFUuUPFU51Tg%2F6IU1ivmN60BgNkT5jlKcsUnownACt366BN9eKmYVcw4xMFpMohCHxkGt70ImhCZmdw6TMWF9IRYSqAWRAvwyNMjLnhoFtC0NYcRx7BbTnhwxUyMiFCYnvxGsgSwVOiOQSC7JnEqsIF4xwDsU5RZVEyQ7U7zrxrWGqdZN0T9TnuUWE03J8g2ImFFeXd70%2FTydSsrQwENQLA3P%2FoI8q0PEqlllBNsKe4Rm5hz9ZqMuDDm0XeqZn%2BVZV%2F5vqg%2Fg4b9Bvf4G4SomQPKcPtKLGNCM7HnOWfjzX4l4MF2jBjw%2Fg%2F6%2Fia041GvS6ehlfVsvpuWHJa9htDJrbQVelrV4Hod7rNpnvmpTqaTxfDISx0EtBd%2BNcJq%2Bls%2Fn9uTN19j3bDsfLiz08d9bt6HJdt9sTMrdOxxe%2FNSqVOtv4jMR8k6X22pr2j8dednJGzqJ1OnI0WsJZ3w%2F2ZBFdo0YnpiNOrs0AbUN62jA%2BGzW7R58YXu0xo%2FtU6o8lCpgsvmlfUHauv1FquwzFUYwiZJkUeWaIfJNB6pouCmH8u8g%2FaX%2Bi7zay%2Fgs%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1&Signature=MDwCHCZRGr70mnYMNVE9e3c4BvYcwJdH2z9ZSgqU3zgCHDW2qmpYqnnh2U8OfzrV67QXvDAohr1zpK1jANk%3D
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=nVPbjtowEH3vV0R%2BRZDYuVvAintBXAqBXZaXlRM7YAQOxA4Fvr4JlKpbrVbVvljW%2BMzMOWc81afzfqedWCp5ImoAVgygMREllIt1DSzm3bIHnurfqpLsd%2BiAh8k6ydSMHTMmldbODy6IuqVulDpIrOsFUuUPFU51Tg%2F6IU1ivmN60BgNkT5jlKcsUnownACt366BN9eKmYVcw4xMFpMohCHxkGt70ImhCZmdw6TMWF9IRYSqAWRAvwyNMjLnhoFtC0NYcRx7BbTnhwxUyMiFCYnvxGsgSwVOiOQSC7JnEqsIF4xwDsU5RZVEyQ7U7zrxrWGqdZN0T9TnuUWE03J8g2ImFFeXd70%2FTydSsrQwENQLA3P%2FoI8q0PEqlllBNsKe4Rm5hz9ZqMuDDm0XeqZn%2BVZV%2F5vqg%2Fg4b9Bvf4G4SomQPKcPtKLGNCM7HnOWfjzX4l4MF2jBjw%2Fg%2F6%2Fia041GvS6ehlfVsvpuWHJa9htDJrbQVelrV4Hod7rNpnvmpTqaTxfDISx0EtBd%2BNcJq%2Bls%2Fn9uTN19j3bDsfLiz08d9bt6HJdt9sTMrdOxxe%2FNSqVOtv4jMR8k6X22pr2j8dednJGzqJ1OnI0WsJZ3w%2F2ZBFdo0YnpiNOrs0AbUN62jA%2BGzW7R58YXu0xo%2FtU6o8lCpgsvmlfUHauv1FquwzFUYwiZJkUeWaIfJNB6pouCmH8u8g%2FaX%2Bi7zay%2Fgs%3D&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:54:11,464 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolved cached credentials from KeyDescriptor object metadata
2019-10-23 00:54:11,466 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) was successful
2019-10-23 00:54:11,466 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature succeeded
2019-10-23 00:54:11,466 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Authentication via request simple signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:54:11,466 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:54:11,466 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:54:11,466 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.ExtractChannelBindingsExtensionsHandler:?] - Message Handler:  Message did not contain any ChannelBindings extensions
2019-10-23 00:54:11,466 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:54:11,467 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:54:11,467 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService for outbound message
2019-10-23 00:54:11,467 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService
2019-10-23 00:54:11,467 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2019-10-23 00:54:11,467 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Request is not a SAML 2 AuthnRequest
2019-10-23 00:54:11,467 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:54:11,468 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:54:11,468 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Inbound logout message, nothing to do
2019-10-23 00:54:11,471 - DEBUG [org.opensaml.saml.common.messaging.context.SAMLSubjectNameIdentifierContext:?] - Ignoring LogoutRequest, Subject does not require processing
2019-10-23 00:54:11,471 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:54:11,471 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing secondary lookup on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=
2019-10-23 00:54:11,471 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing primary lookup on session ID 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:54:11,471 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedIdPSession:?] - Loading SPSession for service http://192.168.43.252:8080/prweb/sp/1571838494 in session 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:54:11,471 - DEBUG [net.shibboleth.idp.session.SPSessionSerializerRegistry:?] - Registry located StorageSerializer of type 'net.shibboleth.idp.saml.session.impl.SAML2SPSessionSerializer' for SPSession type 'class net.shibboleth.idp.saml.session.SAML2SPSession'
2019-10-23 00:54:11,471 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.ProcessLogoutRequest:?] - Profile Action ProcessLogoutRequest: LogoutRequest matches IdP session 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:54:11,472 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Destroyed session 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:54:12,070 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:54:12,071 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:54:12,072 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:54:12,072 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:54:12,072 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Deflating and Base64 encoding SAML message
2019-10-23 00:54:12,072 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Building URL to redirect client to
2019-10-23 00:54:12,072 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generating signature with key type 'RSA', algorithm URI 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256' over query string 'SAMLResponse=fZFdS8MwFIbv%2FRUl92s%2B2q1tWDvEIQwmyjoneCNpejoLXVJ60unPt90cisjuEng%2FznnOfPF5aLwjdFhbkxLuM%2BKB0baszT4lz9v7SUwW2c0c1aERrVzbve3dBrC1BsFbArraKHfyvjvXSkp5Inw%2Bi%2F0w8MVUyJjFjLbdBxT0aTMYXQ7dsdZAX6DI80ea3z6s6TmWeKtlSt4ipWcsSYqKiyqeKR3FwFhSCV6JiidMDTJzmWBrR0NYQSgiFugAKqULXqhYRNOYzyoecJgOBsQeVgadMi4lgvFkwtlEBFvG5DSUXPgsYq%2FE2104iJHDQMagPG%2Bekr4z0iqsURp1AJROy3F2OUhl21lntW1IdgYlT4Xd74TrAQoRuhEjyUaMOHAcXW7g5dfl6U3rsp3T3%2FHZ5Sq5U67HP987W4K3U00P16vxpJZ5rzUgEpp9l%2FzE0n%2BPn30B&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256'
2019-10-23 00:54:12,073 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generated digital signature value (base64-encoded) dXmhnAbXvlFwMxmUCSkBo9gLRTdmxaPnFH4hsrOobocqCTVtd1vRrKOgjdAtYVUTs6npPAPD58T76n5jPqWXlM8g/VCDZyV4NHpSoNjXU9xb8iWplbobF3xiAXwukBIcQ8B3ZcO9z2ejeMIgQFmugWKYbforMLMWYK/Ibk7BQoPuuJlqWhyYMkVuHtk+Ps7VcVhGYcfJR8fW/zHEymnmJ75Vaoeat5g1vz2+qLthie3QmT/+BAeCVi/sZ3hF5hTc15W1PqbJyADHEh8AalulHc3ekdIDscajzmGT+mhH6Dk2h4wnPqslg01Ypll7urB17pYH5SzfRFU4MJugXcGXzw==
2019-10-23 00:54:12,074 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutResponse
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout"
    ID="_7ac6099bf12f86ac78e009f21f2f190a"
    InResponseTo="_74fe42703c3efacb1ba8275816f131e5"
    IssueInstant="2019-10-23T00:54:12.070Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
    </saml2p:Status>
</saml2p:LogoutResponse>

2019-10-23 00:54:12,074 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:54:12,074 - INFO [Shibboleth-Audit.Logout:?] - 20191023T005412Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_74fe42703c3efacb1ba8275816f131e5|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/logout|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_7ac6099bf12f86ac78e009f21f2f190a|sheldon|||AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=||
2019-10-23 00:56:01,670 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:56:01,670 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:56:01,671 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:56:01,671 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutRequest
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SLO"
    ID="_caeb8afd1c17e054999df0325a54e4cf"
    IssueInstant="2019-10-23T00:56:01.503Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <saml2:NameID
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        NameQualifier="https://samltest.id/saml/idp"
        SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=</saml2:NameID>
    <saml2p:SessionIndex>_dd57e2fcf2c243d283b293e1d7372b1f</saml2p:SessionIndex>
</saml2p:LogoutRequest>

2019-10-23 00:56:01,676 - INFO [org.opensaml.saml.metadata.resolver.impl.AbstractDynamicMetadataResolver:?] - Metadata Resolver LocalDynamicMetadataResolver SAMLtestFolder: Successfully loaded new EntityDescriptor with entityID 'http://192.168.43.252:8080/prweb/sp/1571838494' from origin source
2019-10-23 00:56:01,676 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:56:01,676 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:56:01,676 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:56:01,676 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:56:01,676 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:56:01,676 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:56:01,676 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:56:01,676 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:56:01,677 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:56:01,677 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:56:01,677 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:56:01,677 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:56:01,677 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:56:01,677 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_caeb8afd1c17e054999df0325a54e4cf', issue instant '2019-10-23T00:56:01.503Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=nVPbjtowEH3vV0R%2BRRDbSSCxgBX3grgUArssLysndsAIHIgdCnx9EyhVt1qtqn2xrPGZmXPOeKpP5%2F3OOPFEiVjWACpBYHAZxkzIdQ0s5t2iC57q36qK7nf4QIbxOk71jB9TrrTRzg4hqb6lbrQ%2BKGKaOVJnDyXBTMEO5iGJI7Hjpt8YDbE540wkPNSmP5wAo9%2BugbeQ8sClEUMhqnDo2J7nsQha2KGOze0wymBKpbwvlaZS1wCGyCsiWMTWHELilAlEJQdaK2A8P2TgXEYmTCpyJ14DaSJJTJVQRNI9V0SHJGdEMijJKOo4jHegftdJbg0Toxsne6o%2Fz80jghWjG5RwqYW%2BvOv9eTpViie5gaCeG5j5hzxcQmW3ZFsl7GDiQhdmHv7kgakOJnIqyLVc27Or5t9UH8THWYN%2B%2BwvEdUKlEhl9YOQ1pindiUjw5OO55vd8uMDwf3wA%2F38VX3Oq0WDX1cv4slpOzw1bXYNuY9DcDro6afU6GPdet%2FF812TMTKL5YiDhwiz43U35MnktnK3vz51ped9znGC8vDjDc2fdDi%2FXdbs9oXP7dHzxWqNCobONzljON2nirO1p%2F3jspafyqLxonY4Cj5Zo1vf8PV2E17DRidhI0GvTx9uAnTZczEbN7tGj0K09ZnSfSv2xRD5X%2BTftS8bP9TfGnArHURjhENsWw64VYM%2FiiFWsCg5Q9LvIP2l%2Fou82sv4L&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1&Signature=MD4CHQCUl%2Bq7lr7cx9vOXZkiJi32w7TKexO9UeOF3ZFkAh0AmN0qJ7UxJTnfGGdCLPycjewYyrH8wf0%2FsKqUqQ%3D%3D
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=nVPbjtowEH3vV0R%2BRRDbSSCxgBX3grgUArssLysndsAIHIgdCnx9EyhVt1qtqn2xrPGZmXPOeKpP5%2F3OOPFEiVjWACpBYHAZxkzIdQ0s5t2iC57q36qK7nf4QIbxOk71jB9TrrTRzg4hqb6lbrQ%2BKGKaOVJnDyXBTMEO5iGJI7Hjpt8YDbE540wkPNSmP5wAo9%2BugbeQ8sClEUMhqnDo2J7nsQha2KGOze0wymBKpbwvlaZS1wCGyCsiWMTWHELilAlEJQdaK2A8P2TgXEYmTCpyJ14DaSJJTJVQRNI9V0SHJGdEMijJKOo4jHegftdJbg0Toxsne6o%2Fz80jghWjG5RwqYW%2BvOv9eTpViie5gaCeG5j5hzxcQmW3ZFsl7GDiQhdmHv7kgakOJnIqyLVc27Or5t9UH8THWYN%2B%2BwvEdUKlEhl9YOQ1pindiUjw5OO55vd8uMDwf3wA%2F38VX3Oq0WDX1cv4slpOzw1bXYNuY9DcDro6afU6GPdet%2FF812TMTKL5YiDhwiz43U35MnktnK3vz51ped9znGC8vDjDc2fdDi%2FXdbs9oXP7dHzxWqNCobONzljON2nirO1p%2F3jspafyqLxonY4Cj5Zo1vf8PV2E17DRidhI0GvTx9uAnTZczEbN7tGj0K09ZnSfSv2xRD5X%2BTftS8bP9TfGnArHURjhENsWw64VYM%2FiiFWsCg5Q9LvIP2l%2Fou82sv4L&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:56:01,678 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Found no cached credentials in KeyDescriptor object metadata, resolving from KeyInfo
2019-10-23 00:56:01,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) was successful
2019-10-23 00:56:01,681 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature succeeded
2019-10-23 00:56:01,681 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Authentication via request simple signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:56:01,681 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:56:01,681 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:56:01,681 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.ExtractChannelBindingsExtensionsHandler:?] - Message Handler:  Message did not contain any ChannelBindings extensions
2019-10-23 00:56:01,681 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:56:01,682 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:56:01,682 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService for outbound message
2019-10-23 00:56:01,682 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService
2019-10-23 00:56:01,682 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2019-10-23 00:56:01,682 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Request is not a SAML 2 AuthnRequest
2019-10-23 00:56:01,682 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:56:01,683 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:56:01,683 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Inbound logout message, nothing to do
2019-10-23 00:56:01,688 - DEBUG [org.opensaml.saml.common.messaging.context.SAMLSubjectNameIdentifierContext:?] - Ignoring LogoutRequest, Subject does not require processing
2019-10-23 00:56:01,689 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:56:01,690 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing secondary lookup on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=
2019-10-23 00:56:01,690 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing primary lookup on session ID 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:56:01,690 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Primary lookup failed for session ID 7de365d8a7afe0ea1de5900e8dc1522b2dfc3e86abfb8dc708af74329ae12aa7
2019-10-23 00:56:01,690 - INFO [net.shibboleth.idp.saml.saml2.profile.impl.ProcessLogoutRequest:?] - Profile Action ProcessLogoutRequest: No active session(s) found matching LogoutRequest
2019-10-23 00:56:01,690 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: SessionNotFound
2019-10-23 00:56:01,690 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - Error event SessionNotFound will be handled with response
2019-10-23 00:56:01,692 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:56:01,693 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:56:01,695 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Detailed errors are enabled
2019-10-23 00:56:01,695 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Current state of request was not mappable, setting StatusMessage to defaulted value
2019-10-23 00:56:01,697 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:56:01,697 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:56:01,697 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Deflating and Base64 encoding SAML message
2019-10-23 00:56:01,698 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Building URL to redirect client to
2019-10-23 00:56:01,698 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generating signature with key type 'RSA', algorithm URI 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256' over query string 'SAMLResponse=pZLNbtswEITvfQqBd4s%2FtmSJsBQEDQoESJDAclKgl4Ki1i5RmVS5VJLHL2XHiOtDLr0QXGJnZvmRq6u3fZ%2B8gEfjbEV4ykgCVrvO2F1FnjbfZgW5qr%2BsUO17Mcg7t3NjWAMOziIkN4DBWBUO2l8hDJJSXoqU50W6mKciE7JgBaODf4WWPq6jMDTgX4wG%2Bh3apnmgzfX9HT3akuT2piI%2FS74thV5q1XY6bxUsS57l7Vx3Ki4sU7HNnibYuCjQCtpCbTuu%2BRJYtijLstuyuchUtoCF3kYB4gi3FoOyoSKC8XLG2UzMN4zJLJeMp3kpfpDk%2BcRBTBwiGYvyePOKjN5Kp9CgtGoPKIOW0%2BwytsrBu%2BC060l9BCUPgf7c4XMDhQh%2BwkjqCSNGjpMqRF6p6Q57arphRc%2Ft69OrNEGFES%2FKr66D5Fn1I3wejYduuYY%2FY0wDT%2F7P58n%2Btu7VPnpjtRlUT2j9PvW54UXGPSCqHdTXNgHvnU%2Bc1qP30KUX2lPjxfFH%2Fe8Hrf8C&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256'
2019-10-23 00:56:01,702 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generated digital signature value (base64-encoded) eRzgvKEKaylq0ypN/W+o4vTIKkAwU7lO8J5wyKGf+HS28DNvpq4Di/EGpt1ZIv1wgfhq8gRqXjNvNYBc5kR0OyeotqXFXRipR1S06XjM+CBNWGBra8BCrukzKk49LnJLFoZ3RQkCvBSUuFKM4Z8YMLSBbSidIMsh/CgTOSnkvD8Zcl6gfqzh/phDPxFGoFms67gLnytKiDeVZbMN2hiViI4ghogu/mCug+/Dt8JNrw7LEwbhmmQ522QqNvdPbowEcTr7Z7rywjD9m172UK56ottKE5aGnbNpGe/2CSYsQlLk4gBkPRY70zsRs8BJKjQtVecCc0+u+kcj8PHbZCSMWw==
2019-10-23 00:56:01,702 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutResponse
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout"
    ID="_91f92c7cabdc6bae79156b3cdab3c05a"
    InResponseTo="_caeb8afd1c17e054999df0325a54e4cf"
    IssueInstant="2019-10-23T00:56:01.692Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester">
            <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:UnknownPrincipal"/>
        </saml2p:StatusCode>
        <saml2p:StatusMessage>An error occurred.</saml2p:StatusMessage>
    </saml2p:Status>
</saml2p:LogoutResponse>

2019-10-23 00:56:01,702 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:56:01,703 - INFO [Shibboleth-Audit.Logout:?] - 20191023T005601Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_caeb8afd1c17e054999df0325a54e4cf|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/logout|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_91f92c7cabdc6bae79156b3cdab3c05a||||||
2019-10-23 00:56:10,674 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: null
2019-10-23 00:56:10,674 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:56:10,674 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:56:10,674 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutRequest
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SLO"
    ID="_84355c423dda8e8371df1401100e67cd"
    IssueInstant="2019-10-23T00:56:10.993Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">http://192.168.43.252:8080/prweb/sp/1571838494</saml2:Issuer>
    <saml2:NameID
        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
        NameQualifier="https://samltest.id/saml/idp"
        SPNameQualifier="http://192.168.43.252:8080/prweb/sp/1571838494" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=</saml2:NameID>
    <saml2p:SessionIndex>_dd57e2fcf2c243d283b293e1d7372b1f</saml2p:SessionIndex>
</saml2p:LogoutRequest>

2019-10-23 00:56:10,679 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:56:10,679 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:56:10,679 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:56:10,679 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:56:10,679 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  org.opensaml.saml.common.messaging.context.SAMLMetadataContext added to MessageContext as child of org.opensaml.saml.common.messaging.context.SAMLPeerEntityContext
2019-10-23 00:56:10,679 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  Selecting default AttributeConsumingService, if any
2019-10-23 00:56:10,679 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No AttributeConsumingService selected
2019-10-23 00:56:10,679 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:56:10,679 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Checking SAML message intended destination endpoint against receiver endpoint
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Intended message destination endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  Actual message receiver endpoint: https://samltest.id/idp/profile/SAML2/Redirect/SLO
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.ReceivedEndpointSecurityHandler:?] - Message Handler:  SAML message intended destination endpoint matched recipient endpoint
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.MessageReplaySecurityHandler:?] - Message Handler:  Evaluating message replay for message ID '_84355c423dda8e8371df1401100e67cd', issue instant '2019-10-23T00:56:10.993Z', entityID 'http://192.168.43.252:8080/prweb/sp/1571838494'
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.SAMLProtocolMessageXMLSignatureSecurityHandler:?] - Message Handler:  SAML protocol message was not signed, skipping XML signature processing
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructing signed content string from URL query string SAMLRequest=nVPbjtowEH3vV0R%2BRRDbuZBYwIp7QVwKgV2Wl5WJHTACB2KHAl%2FfBErVrVaral8sa3xm5pwznsrTeb8zTjxRIpZVgEoQGFyGMRNyXQXzWafogafat4qi%2Bx0%2BkEG8jlM95ceUK220skNIqm%2BpG60PiphmjtTZQ0kwU7CDeUjiSOy4GdSHA2xOORMJD7UZDMbA6LWq4M2zLccJbWwxRj3uWWXEImRDhCDkbjlkGUyplPek0lTqKsAQ%2BUUEi9iaQUgclyBY8n1rCYznhwycy8iESUXuxKsgTSSJqRKKSLrniuiQ5IxIBiUZRR2H8Q7U7jrJrWFidOJkT%2FXnuXlEsGJ0gxIutdCXd70%2FT6dK8SQ3ENRyAzP%2FkI9LyPVKtlXCDiYe9GDm4U%2B%2BMtXBRE4ZeZZn%2B3bF%2FJvqg%2Fgoa9BrfYG4TqhUIqMPjLzGJKU7EQmefDzX%2FJ4PFxjBjw%2Fg%2F6%2Fia07V6%2By6fBldlovJuW6r66pT7ze2%2FY5Omt02xt3XbTzbNRgzk2g270s4NwtBZ%2BNexq%2BFs%2FX9uT1x913HWY0WF2dwbq9b4eW6brXGdGafji9%2Bc1gotLfRGcvZJk2ctT3pHY%2Fd9OQO3XnzdBR4uEDTnh%2Fs6Ty8hvV2xIaCXhsB3q7YacPFdNjoHH0KvepjRvep1B5LFHCVf9OeZPxce2PMKXMchREOsW0x7Fkr7FscsbJVxisU%2FS7yT9qf6LuNrP0C&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1&Signature=MDwCHArLrOofIi%2FfXsNhTwAqsIX%2FcN3ARzkNZU5OVVcCHDrK4athmwcVMFisVN7jBrOAbUGTNEFeu%2F%2FZWr0%3D
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPRedirectDeflateSignatureSecurityHandler:?] - Constructed signed content string for HTTP-Redirect DEFLATE SAMLRequest=nVPbjtowEH3vV0R%2BRRDbuZBYwIp7QVwKgV2Wl5WJHTACB2KHAl%2FfBErVrVaral8sa3xm5pwznsrTeb8zTjxRIpZVgEoQGFyGMRNyXQXzWafogafat4qi%2Bx0%2BkEG8jlM95ceUK220skNIqm%2BpG60PiphmjtTZQ0kwU7CDeUjiSOy4GdSHA2xOORMJD7UZDMbA6LWq4M2zLccJbWwxRj3uWWXEImRDhCDkbjlkGUyplPek0lTqKsAQ%2BUUEi9iaQUgclyBY8n1rCYznhwycy8iESUXuxKsgTSSJqRKKSLrniuiQ5IxIBiUZRR2H8Q7U7jrJrWFidOJkT%2FXnuXlEsGJ0gxIutdCXd70%2FT6dK8SQ3ENRyAzP%2FkI9LyPVKtlXCDiYe9GDm4U%2B%2BMtXBRE4ZeZZn%2B3bF%2FJvqg%2Fgoa9BrfYG4TqhUIqMPjLzGJKU7EQmefDzX%2FJ4PFxjBjw%2Fg%2F6%2Fia07V6%2By6fBldlovJuW6r66pT7ze2%2FY5Omt02xt3XbTzbNRgzk2g270s4NwtBZ%2BNexq%2BFs%2FX9uT1x913HWY0WF2dwbq9b4eW6brXGdGafji9%2Bc1gotLfRGcvZJk2ctT3pHY%2Fd9OQO3XnzdBR4uEDTnh%2Fs6Ty8hvV2xIaCXhsB3q7YacPFdNjoHH0KvepjRvep1B5LFHCVf9OeZPxce2PMKXMchREOsW0x7Fkr7FscsbJVxisU%2FS7yT9qf6LuNrP0C&SigAlg=http%3A%2F%2Fwww.w3.org%2F2000%2F09%2Fxmldsig%23dsa-sha1
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Attempting to validate SAML protocol message simple signature using context entityID: http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolving credentials from metadata using entityID: http://192.168.43.252:8080/prweb/sp/1571838494, role: {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor, protocol: urn:oasis:names:tc:SAML:2.0:protocol, usage: SIGNING
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Retrieving role descriptor metadata for entity 'http://192.168.43.252:8080/prweb/sp/1571838494' in role '{urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor' for protocol 'urn:oasis:names:tc:SAML:2.0:protocol'
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 source EntityDescriptors
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved 1 RoleDescriptor candidates via role criteria, performing predicate filtering
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Attempting to filter candidate RoleDescriptors via resolved Predicates
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - After predicate filtering 1 RoleDescriptors remain
2019-10-23 00:56:10,680 - DEBUG [org.opensaml.saml.security.impl.MetadataCredentialResolver:?] - Resolved cached credentials from KeyDescriptor object metadata
2019-10-23 00:56:10,682 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Simple signature validation (with no request-derived credentials) was successful
2019-10-23 00:56:10,682 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Validation of request simple signature succeeded
2019-10-23 00:56:10,682 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Authentication via request simple signature succeeded for context issuer entity ID http://192.168.43.252:8080/prweb/sp/1571838494
2019-10-23 00:56:10,682 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Evaluating simple signature rule of type: org.opensaml.saml.saml2.binding.security.impl.SAML2HTTPPostSimpleSignSecurityHandler
2019-10-23 00:56:10,682 - DEBUG [org.opensaml.saml.common.binding.security.impl.BaseSAMLSimpleSignatureSecurityHandler:?] - Message Handler:  Handler can not handle this request, skipping
2019-10-23 00:56:10,682 - DEBUG [org.opensaml.saml.saml2.binding.security.impl.ExtractChannelBindingsExtensionsHandler:?] - Message Handler:  Message did not contain any ChannelBindings extensions
2019-10-23 00:56:10,682 - DEBUG [net.shibboleth.idp.profile.interceptor.impl.FilterFlowsByNonBrowserSupport:?] - Profile Action FilterFlowsByNonBrowserSupport: Request does not have non-browser requirement, nothing to do
2019-10-23 00:56:10,682 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeOutboundMessageContext:?] - Profile Action InitializeOutboundMessageContext: Initialized outbound message context
2019-10-23 00:56:10,683 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Attempting to resolve endpoint of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService for outbound message
2019-10-23 00:56:10,683 - DEBUG [org.opensaml.saml.common.binding.AbstractEndpointResolver:?] - Endpoint Resolver org.opensaml.saml.common.binding.impl.DefaultEndpointResolver: Returning 2 candidate endpoints of type {urn:oasis:names:tc:SAML:2.0:metadata}SingleLogoutService
2019-10-23 00:56:10,683 - DEBUG [net.shibboleth.idp.saml.profile.impl.PopulateBindingAndEndpointContexts:?] - Profile Action PopulateBindingAndEndpointContexts: Resolved endpoint at location http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout using binding urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect
2019-10-23 00:56:10,683 - DEBUG [net.shibboleth.idp.saml.saml2.profile.delegation.impl.PopulateDelegationContext:?] - Request is not a SAML 2 AuthnRequest
2019-10-23 00:56:10,683 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:56:10,683 - DEBUG [org.opensaml.saml.common.profile.impl.PopulateSignatureSigningParameters:?] - Profile Action PopulateSignatureSigningParameters: Signing enabled
2019-10-23 00:56:10,683 - DEBUG [net.shibboleth.idp.saml.saml2.profile.impl.PopulateEncryptionParameters:?] - Profile Action PopulateEncryptionParameters: Inbound logout message, nothing to do
2019-10-23 00:56:10,686 - DEBUG [org.opensaml.saml.common.messaging.context.SAMLSubjectNameIdentifierContext:?] - Ignoring LogoutRequest, Subject does not require processing
2019-10-23 00:56:10,686 - DEBUG [net.shibboleth.idp.saml.profile.impl.ExtractSubjectFromRequest:?] - Profile Action ExtractSubjectFromRequest: No Subject NameID/NameIdentifier in message needs inbound processing
2019-10-23 00:56:10,686 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Performing secondary lookup on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=
2019-10-23 00:56:10,686 - DEBUG [net.shibboleth.idp.session.impl.StorageBackedSessionManager:?] - Secondary lookup failed on service ID http://192.168.43.252:8080/prweb/sp/1571838494 and key AAdzZWNyZXQxA4szbFAJBjJFtrCGE22GYjoTlBdd/rfTUJn0U/+SFh6yOY+x3HVEQ6mG55bNXy5LxEgDcyzgDDOaT4vqW9CM++Ejfx2nThur5g4QIqqGuv6M6UCvqi2MX1RI9SmaUczcAEfdMiazBS2jbdvheiRMBFq9a08=
2019-10-23 00:56:10,686 - INFO [net.shibboleth.idp.saml.saml2.profile.impl.ProcessLogoutRequest:?] - Profile Action ProcessLogoutRequest: No active session(s) found matching LogoutRequest
2019-10-23 00:56:10,687 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: SessionNotFound
2019-10-23 00:56:10,687 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - Error event SessionNotFound will be handled with response
2019-10-23 00:56:10,687 - DEBUG [org.opensaml.saml.saml2.profile.impl.AbstractResponseShellAction:?] - Profile Action AddStatusResponseShell: Setting Issuer to https://samltest.id/saml/idp
2019-10-23 00:56:10,688 - DEBUG [org.opensaml.saml.common.profile.impl.AddInResponseToToResponse:?] - Profile Action AddInResponseToToResponse: Attempting to add InResponseTo to outgoing Response
2019-10-23 00:56:10,689 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Detailed errors are enabled
2019-10-23 00:56:10,689 - DEBUG [org.opensaml.saml.saml2.profile.impl.AddStatusToResponse:?] - Profile Action AddStatusToResponse: Current state of request was not mappable, setting StatusMessage to defaulted value
2019-10-23 00:56:10,690 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLOutboundDestinationHandler:?] - Adding destination to outbound SAML 2 protocol message: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:56:10,690 - DEBUG [org.opensaml.saml.common.binding.security.impl.EndpointURLSchemeSecurityHandler:?] - Message Handler:  Checking outbound endpoint for allowed URL scheme: http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout
2019-10-23 00:56:10,690 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Deflating and Base64 encoding SAML message
2019-10-23 00:56:10,690 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Building URL to redirect client to
2019-10-23 00:56:10,690 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generating signature with key type 'RSA', algorithm URI 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256' over query string 'SAMLResponse=pZJNb9sgGMfv%2BxQW9xjwS0JQ7KpaNalSq1Vx2km9TASeZmgOeDy43ccfThYty6GX3gD9Xx5%2BsLr6ve%2BzVwhovWsIzxnJwGlvrNs15HHzZSbIVftphWrfF4O88zs%2FxjXg4B1CdgMYrVPx4P0R4yAp5csi53ORV2Ve1IUUTDA6hDfY0od1MsYOwqvVQL%2FBtuu%2B0u76%2Fo4eY0l2e9OQ72Vd1pppzcV2KThX5RbUYsmZ4eLFVFokmTtNsPHJIKqyrnVVlMYoAaJccPPCK8Y5YzBfaJMMiCPcOozKxYYUjC9nnM2KcsOYrOeSs3wuFs8kezpxKCYOiYxDebx5Q8bgpFdoUTq1B5RRy2l2maRyCD567XvSHkHJQ2E4T3g%2FQCFCmDCSdsKIiePkiolXbs1hTa0ZVvQ8vj29ShdVHPFi%2B9kbyJ5UP8L71XhQyzX8GlMbBPKxnEf30%2Fk39xCs03ZQPaHt36nPAy867gFR7aC9dhmE4EPmtR5DAJNfeE%2FCi%2BN%2F%2B%2F8%2FaPsH&SigAlg=http%3A%2F%2Fwww.w3.org%2F2001%2F04%2Fxmldsig-more%23rsa-sha256'
2019-10-23 00:56:10,692 - DEBUG [org.opensaml.saml.saml2.binding.encoding.impl.HTTPRedirectDeflateEncoder:?] - Generated digital signature value (base64-encoded) sIIlkfiw4YAZ3XyN1+zIAGdx8+tgeMxKJ6mmcf1MUe6oDU3w/FjhsHmQU2aOv2JD8N68qNNE10MzttArU6D/FpB+wxXrbWQ12zad5sF2hqf/+/2w8970Vq/IBOoLJLvsDkBXGO/+RWfNZWZhZwA6pN3MQqGDVUcifih306xkR8TeiNk/7C6WhTVDP3r38hVUhIZPitVCh1TmJE26TcUbLGqqSYx7vUGkXtJ3fE2dAw7uddJ7jZyqw60y1rZ+ZwNuiI6DzQAxn8sB4bl+tYJv/T525YMIkpBVCB1i2sa4PIMIT4e/1VA8iD8g4K1Sibd+a5y8SxBpJWTKTClFgqbSZg==
2019-10-23 00:56:10,693 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<saml2p:LogoutResponse
    Destination="http://192.168.43.252:8080/prweb/PRRestService/WebSSO/SAML/Logout"
    ID="_3535c0cc18b9811a3bea7910d18fd4c8"
    InResponseTo="_84355c423dda8e8371df1401100e67cd"
    IssueInstant="2019-10-23T00:56:10.687Z" Version="2.0" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion">https://samltest.id/saml/idp</saml2:Issuer>
    <saml2p:Status>
        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Requester">
            <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:UnknownPrincipal"/>
        </saml2p:StatusCode>
        <saml2p:StatusMessage>An error occurred.</saml2p:StatusMessage>
    </saml2p:Status>
</saml2p:LogoutResponse>

2019-10-23 00:56:10,693 - DEBUG [net.shibboleth.idp.profile.impl.RecordResponseComplete:?] - Profile Action RecordResponseComplete: Record response complete
2019-10-23 00:56:10,693 - INFO [Shibboleth-Audit.Logout:?] - 20191023T005610Z|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_84355c423dda8e8371df1401100e67cd|http://192.168.43.252:8080/prweb/sp/1571838494|http://shibboleth.net/ns/profiles/saml2/logout|https://samltest.id/saml/idp|urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect|_3535c0cc18b9811a3bea7910d18fd4c8||||||
2019-10-23 00:58:50,529 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded RelayState: ss:mem:fb0b39c1fa7e26fa8d9bcc5ed9f5d7bb200402e28fe82652bd894ea2f194d6ba
2019-10-23 00:58:50,529 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Base64 decoding and inflating SAML message
2019-10-23 00:58:50,529 - DEBUG [org.opensaml.saml.saml2.binding.decoding.impl.HTTPRedirectDeflateDecoder:?] - Decoded SAML message
2019-10-23 00:58:50,529 - DEBUG [PROTOCOL_MESSAGE:?] - 
<?xml version="1.0" encoding="UTF-8"?>
<samlp:AuthnRequest
    AssertionConsumerServiceURL="https://158.121.248.108/Shibboleth.sso/SAML2/POST"
    Destination="https://samltest.id/idp/profile/SAML2/Redirect/SSO"
    ID="_f0e869fccbd3949e241dbc627d1320bd"
    IssueInstant="2019-10-23T00:58:50Z"
    ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
    Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://example.com/shibboleth</saml:Issuer>
    <samlp:NameIDPolicy AllowCreate="1"/>
</samlp:AuthnRequest>

2019-10-23 00:58:50,533 - DEBUG [org.opensaml.saml.metadata.resolver.impl.AbstractBatchMetadataResolver:?] - Metadata Resolver FilesystemMetadataResolver SAMLtest: Resolved 0 candidates via EntityIdCriterion: EntityIdCriterion [id=https://example.com/shibboleth]
2019-10-23 00:58:50,533 - DEBUG [org.opensaml.saml.metadata.resolver.impl.PredicateRoleDescriptorResolver:?] - Resolved no EntityDescriptors via underlying MetadataResolver, returning empty collection
2019-10-23 00:58:50,533 - INFO [org.opensaml.saml.common.binding.impl.SAMLMetadataLookupHandler:?] - Message Handler:  No metadata returned for https://example.com/shibboleth in role {urn:oasis:names:tc:SAML:2.0:metadata}SPSSODescriptor with protocol urn:oasis:names:tc:SAML:2.0:protocol
2019-10-23 00:58:50,533 - DEBUG [org.opensaml.saml.common.binding.impl.SAMLAddAttributeConsumingServiceHandler:?] - Message Handler:  No metadata context found, nothing to do
2019-10-23 00:58:50,533 - DEBUG [net.shibboleth.idp.saml.profile.impl.InitializeRelyingPartyContextFromSAMLPeer:?] - Profile Action InitializeRelyingPartyContextFromSAMLPeer: Attaching RelyingPartyContext based on SAML peer https://example.com/shibboleth
2019-10-23 00:58:50,534 - WARN [net.shibboleth.idp.profile.impl.SelectProfileConfiguration:?] - Profile Action SelectProfileConfiguration: Profile http://shibboleth.net/ns/profiles/saml2/sso/browser is not available for RP configuration shibboleth.UnverifiedRelyingParty (RPID https://example.com/shibboleth)
2019-10-23 00:58:50,534 - WARN [org.opensaml.profile.action.impl.LogEvent:?] - A non-proceed event occurred while processing the request: InvalidProfileConfiguration
2019-10-23 00:58:50,534 - DEBUG [org.opensaml.saml.common.profile.logic.DefaultLocalErrorPredicate:?] - No SAMLBindingContext or binding URI available, error must be handled locally