diff --git a/.dockerignore b/.dockerignore
new file mode 100644
index 00000000..60138693
--- /dev/null
+++ b/.dockerignore
@@ -0,0 +1,7 @@
+# By default, ignore everything
+*
+# Add exception for the directories you actually want to include in the context
+!example
+!requirements.txt
+!oids.conf
+!build_spid_certs.sh
diff --git a/.github/workflows/python-app.yml b/.github/workflows/python-app.yml
index 8007ebe8..132636bb 100644
--- a/.github/workflows/python-app.yml
+++ b/.github/workflows/python-app.yml
@@ -72,11 +72,10 @@ jobs:
         cd example
         spid_sp_test --idp-metadata > metadata/idp/spid-sp-test.xml
         spid_sp_test --metadata-url https://localhost:10000/spidSaml2/metadata --authn-url "http://localhost:8000/saml2/login/?idp=https://localhost:10000/Saml2IDP/metadata&next=/saml2/echo_attributes&idphint=https%253A%252F%252Flocalhost%253A8080" -ap spid_sp_test.plugins.authn_request.SatosaSaml2Spid --extra --debug ERROR -tr
-    # TODO - PR WiP for CIE id integration
-    # - name: spid-sp-test CIE id metadata
-      # run: |
-        # cd example
-        # spid_sp_test --profile cie-sp-public --metadata-url https://localhost:10000/cieSaml2/metadata
+    - name: spid-sp-test CIE id metadata
+      run: |
+        cd example
+        spid_sp_test --profile cie-sp-public --metadata-url https://localhost:10000/cieSaml2/metadata
     - name: spid-sp-test eIDAS FiCEP metadata
       run: |
         cd example
diff --git a/Dockerfile b/Dockerfile
index 00917a97..2cecd2f1 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,19 +1,6 @@
-FROM alpine:3.12.3
-MAINTAINER Giuseppe De Marco <demarcog83@gmail.com>
-
-RUN apk update
-RUN apk add xmlsec libffi-dev libressl-dev python3 py3-pip python3-dev procps git openssl build-base gcc wget bash
+FROM alpine:3.13.5
 
 ENV BASEDIR="/satosa_proxy"
-COPY example/ $BASEDIR/
-COPY requirements.txt $BASEDIR/
-
-# demo certificates
-RUN mkdir $BASEDIR/pki/
-COPY oids.conf $BASEDIR/pki/
-COPY build_spid_certs.sh $BASEDIR/pki/
-WORKDIR $BASEDIR/pki/
-RUN chmod 755 $BASEDIR/pki/build_spid_certs.sh
 
 ENV COMMON_NAME="SPID example proxy"
 ENV LOCALITY_NAME="Roma"
@@ -24,24 +11,51 @@ ENV SPID_SECTOR="public"
 ENV URI="https://spid.proxy.example.org"
 ENV DAYS="7300"
 
-RUN $BASEDIR/pki/build_spid_certs.sh
+ENV SATOSA_DISCO_SRV="https://localhost:9999/disco.html"
 
-WORKDIR $BASEDIR/
-RUN pip3 install -r requirements.txt --ignore-installed
+RUN apk add --update --no-cache tzdata \
+ && cp /usr/share/zoneinfo/Europe/Rome /etc/localtime \
+ && echo "Europe/Rome" > /etc/timezone \
+ && apk del tzdata
 
-# Metadata
-RUN mkdir -p metadata/idp
-RUN mkdir -p metadata/sp
+COPY example/ $BASEDIR/
+COPY requirements.txt $BASEDIR/
+COPY oids.conf $BASEDIR/pki/
+COPY build_spid_certs.sh $BASEDIR/pki/
 
-# COPY Metadata
-ARG SP_METADATA_URL
-ARG IDP_METADATA_URL
-RUN wget $SP_METADATA_URL -O metadata/sp/my-sp.xml --no-check-certificate
-RUN wget $IDP_METADATA_URL -O metadata/idp/my-idp.xml --no-check-certificate
-RUN wget https://registry.spid.gov.it/metadata/idp/spid-entities-idps.xml -O metadata/idp/spid-entities-idps.xml
+RUN apk add --update xmlsec libffi-dev libressl-dev python3 py3-pip python3-dev procps git openssl build-base gcc wget bash jq \
+&& cd $BASEDIR/pki/ \
+&& chmod 755 $BASEDIR/pki/build_spid_certs.sh \
+&& $BASEDIR/pki/build_spid_certs.sh \
+&& cd $BASEDIR/ \
+&& pip3 install --upgrade pip \
+&& pip3 install yq \
+&& pip3 install -r requirements.txt --ignore-installed \
+&& wget https://registry.spid.gov.it/metadata/idp/spid-entities-idps.xml -O metadata/idp/spid-entities-idps.xml \
+&& adduser --disabled-password wert \
+&& chown -R  wert . \
+&& chmod +x run.sh
+
+USER wert
 
-RUN adduser --disabled-password wert
-RUN chown -R  wert .
+WORKDIR $BASEDIR/
 
-COPY demo-run.sh .
-CMD bash demo-run.sh
+CMD bash run.sh
+
+# Metadata params
+ARG BUILD_DATE
+ARG VERSION
+ARG VCS_URL="https://github.com/italia/Satosa-Saml2Spid.git"
+ARG VCS_REF
+ARG AUTHORS
+ARG VENDOR
+
+# Metadata : https://github.com/opencontainers/image-spec/blob/main/annotations.md
+LABEL org.opencontainers.image.authors=$AUTHORS \
+      org.opencontainers.image.vendor=$VENDOR \
+      org.opencontainers.image.title="Satosa-Saml2Spid" \
+      org.opencontainers.image.created=$BUILD_DATE \
+      org.opencontainers.image.version=$VERSION \
+      org.opencontainers.image.source=$VCS_URL \
+      org.opencontainers.image.revision=$VCS_REF \
+      org.opencontainers.image.description="Docker Image di Satosa-Saml2Spid."
diff --git a/README.md b/README.md
index eb1bd4d2..13a2854a 100644
--- a/README.md
+++ b/README.md
@@ -4,16 +4,17 @@ This is a SAML2/OIDC configuration for [SATOSA](https://github.com/IdentityPytho
 that aims to setup a **SAML-to-SAML Proxy** and **OIDC-to-SAML** compatible with the  **SPID - the Italian Digital Identity System**.
 
 ## Table of Contents
+
 1. [Goal](#goal)
 2. [Demo components](#demo-components)
-3. [Docker stack](#docker-compose)
-4. [Setup](#setup)
-5. [OIDC Frontend](#oidc)
-6. [Configure the Proxy](#configure-the-proxy)
+3. [Docker image](#docker-image)
+4. [docker-compose](#doker-compose)
+5. [MongoDB](./README.mongo.md)
+6. [Setup](#setup)
 7. [Start the Proxy](#start-the-proxy)
-6. [Additional technical informations](#additional-technical-informations-for-developers)
-7. [Author](#author)
-8. [Credits](#credits)
+8. [Additional technical informations](#additional-technical-informations)
+9. [Author](#author)
+10. [Credits](#credits)
 
 ## General features
 
@@ -43,28 +44,26 @@ limitations, traditionally could not interact each other.
 - **TargetRouting**, a SATOSA microservice for selecting the output backend to reach the endpoint (IdP) selected by the user
 - **Discovery Service**, interface that allows users to select the authentication endpoint
 
-
 ## Demo components
 
 The example project comes with the following demo pages, served
 with the help of an additional webserver dedicated for static contents:
 
-
 ###### Discovery Service page
-![disco](gallery/disco.png)
 
+![disco](gallery/disco.png)
 
 ###### Generic error page
-![err_gen](gallery/error_page.png)
 
+![err_gen](gallery/error_page.png)
 
 ###### Saml2 Signature Error page
-![err1](gallery/error1.png)
 
+![err1](gallery/error1.png)
 
 ###### AgID SPID test #104
-![err2](gallery/error2.png)
 
+![err2](gallery/error2.png)
 
 You can find these demo pages in `example/static` and edit at your taste.
 To get redirection to these pages, or redirection to third-party services, consider the following configuration files:
@@ -74,42 +73,100 @@ To get redirection to these pages, or redirection to third-party services, consi
 
 Remember to edit and customize all the values like `"CHANGE_ME!"` in the configuration files, in `proxy_conf.yaml` and in plugins configurations.
 
+## Docker image
+
+![Docker image design](gallery/docker-design.svg)
+
+the official Satosa-Saml2SPID docker immage is available at [italia/satosa-saml2spid](https://ghcr.io/italia/satosa-saml2spid)
+
+To install the docker image from docker hub: `docker pull ghcr.io/italia/satosa-saml2spid:latest`
+
+### Configuration for production
+
+Satosa-Saml2SPID image is built with production ready logic, but some configurations are needed:
+
+#### NGINX
+
+A valid ssl certificate is needed, to add your certificate you shoud override the /etc/nginx/certs directory with your valid certificates.
+
+#### Satosa
+
+* You should set the $HOSTNAME environment with the production DNS name
+* You should set all key and salt with your secret key ($SATOSA_ENCRYPTION_KEY, $SATOSA_SALT)
+* You should set a new mongodb password ($MONGODB_USERNAME, $MONGODB_PASSWORD)
+* You should set a new certificate for SAML / SPID ($SATOSA_PUBLIC_KEYS, $SATOSA_PRIVATE_KEYS)
+* You should add valid data for  metadata, read [Configurations by environments](#configuration-by-environments)
+
+### Configuration by environments
+
+* *$SATOSA_BASE* base url of satosa server, default: "https://$HOSTNAME"
+
+* *$SATOSA_ENCRYPTION_KEY* encription key for state, default: "CHANGE_ME!"
+
+* *$SATOSA_SALT* encription salt, default: "CHANGE_ME!"
+
+* *$SATOSA_DISCO_SRV* Descovery page URL for all backends, default: "https://$HOSTNAME/static/disco.html"
+
+* *$SATOSA_PRIVATE_KEYS* private key for SAML2 / SPID backends
+
+* *$SATOSA_PUBLIC_KEYS* public key for SAML2 / SPID backends
+
+* *$MONGODB_USERNAME* MongoDB username for oidc_op frontend, default from .env file in compose-Satosa-Saml2Spid
+
+* *$MONGODB_PASSWORD* MongoDB password for oidc_op frontend, default from .env file in compose-Satosa-Saml2Spid
+
+* *$SATOSA_UNKNOW_ERROR_REDIRECT_PAGE* redirect page for unknow erros, default: "https://$HOSTNAME/static/error_page.html"
+
+* *$SATOSA_ORGANIZATION_DISPLAY_NAME_EN* Metadata English organization display name
+
+* *$SATOSA_ORGANIZATION_NAME_EN* Metadata English full organization name
+
+* *$SATOSA_ORGANIZATION_URL_EN* Metadata English organization url
+
+* *$SATOSA_ORGANIZATION_DISPLAY_NAME_IT* Metadata Italian Organization display name
+
+* *$SATOSA_ORGANIZATION_NAME_IT* Metadata Italian full organization
+
+* *$SATOSA_ORGANIZATION_URL_IT* Metadata Italian organization url
+
+* *$SATOSA_CONTACT_PERSON_GIVEN_NAME* Metadata Contact person name
+
+* *$SATOSA_CONTACT_PERSON_EMAIL_ADDRESS* Metadata Contact person email
+
+* *$SATOSA_CONTACT_PERSON_TELEPHONE_NUMBER* Metadata Contact person telephone number for SPID / CIE Backend
+
+* *$SATOSA_CONTACT_PERSON_FISCALCODE* Metadata Contact person fiscal code for SPID / CIE Backend
+
+* *$SATOSA_UI_DISPLAY_NAME_EN* Metadata English ui display name
+
+* *$SATOSA_UI_DISPLAY_NAME_IT* Metadata Italian ui display name
+
+* *$SATOSA_UI_DESCRIPTION_EN* Metadata English ui description
+
+* *$SATOSA_UI_DESCRIPTION_IT* Metadata Italian ui description
+
+* *$SATOSA_UI_INFORMATION_URL_EN* Metadata English ui information URL
+
+* *$SATOSA_UI_INFORMATION_URL_IT* Metadata Italian ui information URL
+
+* *$SATOSA_UI_PRIVACY_URL_EN* Metadata English ui privacy URL
+
+* *$SATOSA_UI_PRIVACY_URL_IT* Metadata Italian ui privacy URL
+
+* *$SATOSA_UI_LOGO_URL* Metadata Logo url for
+
+* *$SATOSA_UI_LOGO_WIDTH* Metadata Logo width 
+
+* *$SATOSA_UI_LOGO_HEIGHT* Metadata logo height
+
+* *$SATOSA_SAML2_REQUESTED_ATTRIBUTES* SAML2 required attributes, default: name, surname
+
+* *$SATOSA_SPID_REQUESTED_ATTRIBUTES* SPID required attributes, default: spidCode, name, familyName, fiscalNumber, email 
+
 ## Docker compose
-````
-apt install jq
-pip install docker-compose
-````
-
-Create your project folder, starting from our example project
-````
-cp -R example project
-# do your customizations in project/
-````
-
-Create volumes
-````
-docker volume create --name=satosa-saml2saml_certs
-docker volume create --name=satosa-saml2saml_conf
-docker volume create --name=satosa-saml2saml_statics
-docker volume create --name=satosa-saml2saml_logs
-````
-
-Where the data are
-`docker volume ls`
-
-Copy files in destination volumes
-````
-cp project/pki/*pem `docker volume inspect satosa-saml2saml_certs | jq .[0].Mountpoint | sed 's/"//g'`
-cp -R project/* `docker volume inspect satosa-saml2saml_conf | jq .[0].Mountpoint | sed 's/"//g'`
-cp -R project/static/* `docker volume inspect satosa-saml2saml_statics | jq .[0].Mountpoint | sed 's/"//g'`
-````
-
-Run the stack
-````
-docker-compose up
-````
-
-See [mongo readme](./mongo) to have some example of demo data.
+A detailed instruction for make your docker-compose image is in [compose-Satosa-Saml2Spid](compose-Satosa-Saml2Spid) directory.
+
+The docker compose uses same [enviromets](#configuration-by-environments) with the official docker image
 
 ## OIDC
 
@@ -118,26 +175,28 @@ Comment/uncomment the following statement in the proxy_configuration to enable i
 
 https://github.com/italia/Satosa-Saml2Spid/blob/oidcop/example/proxy_conf.yaml#L32
 
-
 ## Setup
 
 ###### Prepare environment
-````
+
+```
 mkdir satosa_proxy && cd satosa_proxy
 virtualenv -ppython3 satosa.env
 source satosa.env/bin/activate
-````
+```
 
 ###### Dependencies Ubuntu
-````
+
+```
 sudo apt install -y libffi-dev libssl-dev python3-pip xmlsec1 procps libpcre3 libpcre3-dev
 
 git clone https://github.com/italia/Satosa-Saml2Spid.git repository
 pip install -r repository/requirements.txt
-````
+```
 
 ###### Dependencies Centos/RHEL
-````
+
+```
 sudo yum install -y libffi-devel openssl-devel python3-pip xmlsec1 procps pcre pcre-devel
 pip install --upgrade pip
 sudo yum groupinstall "Development Tools"
@@ -146,7 +205,7 @@ sudo yum install -y python3-wheel python3-devel
 
 git clone https://github.com/italia/Satosa-Saml2Spid.git repository
 pip install -r repository/requirements.txt
-````
+```
 
 ## Configure the Proxy
 
@@ -161,32 +220,31 @@ These are the configuration files:
 - `plugins/frontend/saml2_frontend.yaml`
 - `plugins/frontend/oidc_op_frontend.yaml` (optional to enable OIDC Provider)
 
-
 ## Saml2 Metadata
 
 If you want to handle metadata file manually, as this example purpose as demostration,
 create `metadata/idp` and `metadata/sp` folders, then copy metadata:
 
-````
+```
 mkdir -p metadata/idp metadata/sp
 wget https://localhost:8080/metadata.xml -O metadata/idp/spid-saml-check.xml
 wget https://registry.spid.gov.it/metadata/idp/spid-entities-idps.xml -O metadata/idp/spid-entities-idps.xml
-````
+```
 
 Copy your SP metadata to your Proxy
-````
+
+```
 wget https://sp.fqdn.org/saml2/metadata -O metadata/sp/my-sp.xml
-````
+```
 
 Otherwise the best method would be enabling a MDQ server in each frontend and backend configuration file.
 See `example/plugins/{backends,frontends}/$filename` as example.
 
-
 ## Start the Proxy
 
 **Warning**: these examples must be intended only for test purpose, for a demo run. Please remember that the following examples wouldn't be intended for a real production environment! If you need some example for a production environment please take a look at `example/uwsgi_setup/` folder.
 
-````
+```
 export SATOSA_APP=$VIRTUAL_ENV/lib/$(python -c 'import sys; print(f"python{sys.version_info.major}.{sys.version_info.minor}")')/site-packages/satosa
 
 # only https with satosa, because its Cookie only if "secure" would be sent
@@ -194,22 +252,23 @@ uwsgi --wsgi-file $SATOSA_APP/wsgi.py  --https 0.0.0.0:10000,./pki/cert.pem,./pk
 
 # additional static serve for the demo Discovery Service with Spid button
 uwsgi --https 0.0.0.0:9999,./pki/cert.pem,./pki/privkey.pem --check-static-docroot --check-static ./static/ --static-index disco.html
-````
+```
 
 ### Get SPID backend metadata
 
 The proxy backend exposes its SPID metadata at the following url (customizable):
-````
-https://localhost:10000/spidSaml2/metadata
-````
 
+```
+https://localhost:10000/spidSaml2/metadata
+```
 
 #### Get Proxy Metadata for your SP
 
 The Proxy metadata must be configured in your SP. Your SP is an entity that's external from this Proxy, eg: shibboleth sp, djangosaml2, another ...
-````
+
+```
 wget https://localhost:10000/Saml2IDP/metadata -O path/to/your/sp/metadata/satosa-spid.xml --no-check-certificate
-````
+```
 
 Then start an authentication from your SP.
 
@@ -228,12 +287,11 @@ http://localhost:8000/saml2/login/?idp=https://localhost:10000/Saml2IDP/metadata
 IF you're going to test Satosa-Saml2Spid with spid-sp-test, take a look to
 its CI, [here](.github/workflows/python-app.yml),
 
-
 ## Trouble shooting
 
 That's the stdout log of a working instance of SATOSA in uwsgi
 
-````
+```
 *** Starting uWSGI 2.0.19.1 (64bit) on [Tue Mar 30 17:08:49 2021] ***
 compiled with version: 9.3.0 on 11 September 2020 23:11:42
 os: Linux-5.4.0-70-generic #78-Ubuntu SMP Fri Mar 19 13:29:52 UTC 2021
@@ -268,13 +326,12 @@ mapped 72920 bytes (71 KB) for 1 cores
 WSGI app 0 (mountpoint='') ready in 2 seconds on interpreter 0x55f744576790 pid: 28675 (default app)
 *** uWSGI is running in multiple interpreter mode ***
 spawned uWSGI worker 1 (and the only) (pid: 28675, cores: 8)
-````
+```
 
 ## Additional resources for newcomers
 
 - [Satosa-Saml2Spid installation tutorial](https://github.com/aslbat/Satosa-SPID-Proxy).
 
-
 ## Additional technical informations for Developers
 
 #### SPID technical Requirements
@@ -283,10 +340,10 @@ The SaToSa **SPID** backend contained in this project adopt specialized forks of
 read [this](README.idpy.forks.mngmnt.md) for any further explaination about how to patch by hands.
 
 All the patches and features are currently merged and available with the following releases:
+
 - [pysaml2](https://github.com/peppelinux/pysaml2/tree/pplnx-v7.0.1-1)
 - [SATOSA](https://github.com/peppelinux/SATOSA/tree/oidcop-v8.0.0)
 
-
 #### Pending contributions to idpy
 
 These are mandatory only for getting Spid SAML2 working, these are not needed for any other traditional SAML2 deployment:
@@ -297,8 +354,8 @@ These are mandatory only for getting Spid SAML2 working, these are not needed fo
 - [SATOSA unknow error handling](https://github.com/IdentityPython/SATOSA/pull/324)
 - [SATOSA redirect page on error](https://github.com/IdentityPython/SATOSA/pull/325)
 
-
 #### Warnings
+
 Here something that you should know before start.
 
 - You must enable more than a single IdP (multiple metadata or single metadata with multiple entities) to get *Discovery Service* working.
@@ -309,21 +366,19 @@ Here something that you should know before start.
   An additional "hack" have been made in `example/attributes-maps/satosa_spid_uri_hybrid.py`, where I adopted a hybrid mapping that works for
   both *URI* and *BASIC* formats. Feel free to customized or decouple these format in different files and per SP.
 
-
 ## References
 
 SATOSA Official Documentation is available at the following links, make sure you've taken a
 look to these to understand the potential of this platform:
+
 - [SaToSa Saml2Saml Documentation](https://github.com/IdentityPython/SATOSA/blob/master/doc/one-to-many.md)
 - [Use cases](https://github.com/IdentityPython/SATOSA/wiki#use-cases)
 
-
 Account Linking
 
 - [pyMultiLDAP SaToSa MS](https://github.com/peppelinux/pyMultiLDAP/tree/master/multildap/satosa)
 - Attributes Processing with [SATOSA-uniext](https://github.com/UniversitaDellaCalabria/SATOSA-uniExt/blob/master/satosa_uniext/processors/unical_attribute_processor.py)
 
-
 Additional resources:
 
 - [satosa-eidas-ansible](https://github.com/grnet/satosa-eidas-ansible)
@@ -339,7 +394,6 @@ Additional resources:
 
 Giuseppe De Marco
 
-
 ## Credits
 
 - Andrea Ranaldi and his Team in ISPRA Ambiente
diff --git a/README.mongo.md b/README.mongo.md
new file mode 100644
index 00000000..c40bca1a
--- /dev/null
+++ b/README.mongo.md
@@ -0,0 +1,113 @@
+# Setup
+
+## Table of Contents
+1. [Install and configure](#install-and-configure)
+2. [Using Docker](#using-docker)
+
+## Install and configure
+
+````
+wget -qO - https://www.mongodb.org/static/pgp/server-4.4.asc | sudo apt-key add -
+echo "deb [ arch=amd64,arm64 ] https://repo.mongodb.org/apt/ubuntu focal/mongodb-org/4.4 multiverse" | sudo tee /etc/apt/sources.list.d/mongodb-org-4.4.list
+sudo apt update
+sudo apt install -y mongodb-org
+sudo apt install mongosh
+````
+
+#### Connect to MongoDB
+````
+mongosh mongodb://root:example@172.21.0.3:27017
+````
+
+#### create satosa user grants
+````
+use oidcop
+db.createUser(
+  {
+    user: "satosa",
+    pwd:  "thatpassword",
+    roles: [
+        { role: "readWrite", db: "oidcop" }
+    ]
+  }
+)
+
+exit
+````
+
+#### make client_id unique
+
+````
+db.client.createIndex( { "client_id": 1 }, { unique: true } )
+db.client.createIndex( { "registration_access_token": 1 }, { unique: true } )
+````
+
+#### make access_token and sid unique
+
+````
+db.session.createIndex( { "sid": 1 }, { unique: true } )
+````
+
+#### create expired session deletion
+
+Prune all the expired sessions automatically, keeping only the last two entries.
+
+````
+db.session.createIndex(
+  { expires_at: 1 },
+  { expireAfterSeconds: 0, partialFilterExpression: { count: { $gt: 2 } } }
+);
+````
+
+#### insert a test client like this
+
+````
+db.client.insertOne(
+    {"client_id": "jbxedfmfyc", "client_name": "ciro", "client_salt": "6flfsj0Z", "registration_access_token": "z3PCMmC1HZ1QmXeXGOQMJpWQNQynM4xY", "registration_client_uri": "https://localhost:10000/registration_api?client_id=jbxedfmfyc", "client_id_issued_at": 1630952311.410208, "client_secret": "19cc69b70d0108f630e52f72f7a3bd37ba4e11678ad1a7434e9818e1", "client_secret_expires_at": 1662488311.410214, "application_type": "web", "contacts": ["ops@example.com"], "token_endpoint_auth_method": "client_secret_basic", "redirect_uris": [["https://localhost:8090/authz_cb/satosa", {}]], "post_logout_redirect_uris": [["https://localhost:8090/session_logout/satosa", null]], "response_types": ["code"], "grant_types": ["authorization_code"], "allowed_scopes": ["openid", "profile", "email", "offline_access"]}
+)
+````
+
+### Using Docker
+
+When using docker-compose in [compose-Satosa-Saml2Spid](./compose-Satosa-Saml2Spid) all operations described in section  [Install and configure](#install-and-configure) are executed  by the init script [init-mongo.sh](./compose-Satosa-Saml2Spid/init-mongo.sh) at the first start o the container.
+
+#### set environment in .env
+
+- MONGO_DBUSER : user admin of oidcop DB in Mongo;
+- MONGO_DBPASSWORD : password of user MONGO_DBUSER;
+
+This two environment variable are used in 3 of our container.
+
+#### docker-compose.yml environments for MONGODB
+
+##### satosa-mongo
+
+````
+    environment:
+      MONGO_INITDB_DATABASE: oidcop
+      MONGO_INITDB_ROOT_USERNAME: "${MONGO_DBUSER}"
+      MONGO_INITDB_ROOT_PASSWORD: "${MONGO_DBPASSWORD}"
+````
+
+- MONGO_INITDB_DATABASE : name of a database to be used for creation scripts;
+- MONGO_INITDB_ROOT_USERNAME : name of the user created which have the role of 'root' (superuser role); 
+- MONGO_INITDB_ROOT_PASSWORD : password off the MONGO_INITDB_ROOT_USERNAME.
+
+##### satosa-mongo-express
+
+````
+    environment:
+      ME_CONFIG_BASICAUTH_USERNAME: satosauser
+      ME_CONFIG_BASICAUTH_PASSWORD: satosapw
+      ME_CONFIG_MONGODB_ADMINUSERNAME: "${MONGO_DBUSER}"
+      ME_CONFIG_MONGODB_ADMINPASSWORD: "${MONGO_DBPASSWORD}"
+      ME_CONFIG_MONGODB_URL: mongodb://${MONGO_DBUSER}:${MONGO_DBPASSWORD}@satosa-mongo:27017/
+````
+
+- ME_CONFIG_BASICAUTH_USERNAME : mongo-express web username;
+- ME_CONFIG_BASICAUTH_PASSWORD : mongo-express web password;
+- ME_CONFIG_MONGODB_ADMINUSERNAME : MongoDB admin username;
+- ME_CONFIG_MONGODB_ADMINPASSWORD : MongoDB admin password;
+- ME_CONFIG_MONGODB_URL : MongoDB connection URL.
+
+
diff --git a/compose-Satosa-Saml2Spid/.env b/compose-Satosa-Saml2Spid/.env
new file mode 100644
index 00000000..f025a248
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/.env
@@ -0,0 +1,3 @@
+MONGO_DBUSER=satosa
+MONGO_DBPASSWORD=thatpassword
+HOSTNAME=localhost
diff --git a/compose-Satosa-Saml2Spid/README.md b/compose-Satosa-Saml2Spid/README.md
new file mode 100644
index 00000000..d8dd34fa
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/README.md
@@ -0,0 +1,176 @@
+# compose-Satosa-Saml2Spid
+
+## Table of Contents
+
+1. [What do you need?](#what-do-you-need?)
+2. [Run the composition](#run-the-composition)
+3. [Stop the composition](#stop-the-composition)
+4. [Remove/Delete volumes](#remove/delete-volumes)
+5. [Demo data](#demo-data)
+6. [Env file](#env-file)
+7. [docker-compose.yml](#docker-compose.yml)
+
+## What do you need?
+
+In order to execute the run script you need:
+
+* jq
+* docker-compose
+
+Installation example in Ubuntu:
+
+```
+apt install jq docker-compose
+```
+
+For docker-compose you can also [see here](https://docs.docker.com/compose/install/other/).
+
+## Run the composition
+
+### Required at least on first run!
+
+Execute the run script for the first time:
+
+```
+./run-docker-compose.sh
+```
+
+The following docker volumes are created, if they do not exist:
+
+* satosa-saml2spid_metadata
+* satosa-saml2spid_certs
+* satosa-saml2spid_static
+* satosa-saml2spid_nginx_certs
+* satosa-saml2spid_mongodata 
+
+The first four are populated with sample data, respectively:
+
+* satosa-saml2spid_metadata with data from ../example/metadata/
+* satosa-saml2spid_certs with data from ../example/pki/
+* satosa-saml2spid_static with data from ../example/static/
+* satosa-saml2spid_nginx_certs with data from nginx/certs/
+
+While the last one (*satosa-saml2spid_mongodata*) is populated by the MongoDB container on its first run.
+
+After these steps, the images of the containers are downloaded and then the containers of the composition are started.
+
+Finally you are warned you can run the following command to check composition start and status:
+
+```
+docker-compose -f docker-compose.yml logs -f
+```
+
+### Where is your data?
+
+Command:
+
+```
+docker volume ls
+```
+
+Output:
+
+```
+DRIVER    VOLUME NAME
+local     satosa-saml2spid_certs
+local     satosa-saml2spid_metadata
+local     satosa-saml2spid_mongodata
+local     satosa-saml2spid_nginx_certs
+local     satosa-saml2spid_static
+```
+
+In RedHat and Ubuntu based OS the Docker volumes directory is at:
+
+```
+# ls -1 /var/lib/docker/volumes/
+satosa-saml2spid_certs
+satosa-saml2spid_metadata
+satosa-saml2spid_mongodata
+satosa-saml2spid_nginx_certs
+satosa-saml2spid_static
+```
+
+### NOT at first run or after volumes deletion!
+
+After first run you can start the composition with the run script or by this commands:
+
+```
+docker-compose pull; docker-compose down -v; docker-compose up -d;docker-compose logs -f
+```
+
+## Stop the composition
+
+```
+./stop-docker-compose.sh
+```
+
+This script stops all containers of the composition and detaches the volumes, but keeps the data on the persistent volumes.
+
+## Remove/Delete volumes
+
+If you want to start from scratch, or just clear all persistent data, just run the following script:
+
+```
+./rm-persistent-volumes.sh
+```
+
+First, the containers of the composition are stopped and the volumes are detached.
+
+Then you are asked if you want to delete the volumes and if you answer yes, you have to confirm volume by volume whether it should be deleted or not.
+
+## Demo data
+
+Demo data for a test client are inserted into the DB during the first run of the composition.
+
+See [mongo readme](../README.mongo.md) to have some example of demo data.
+
+## Env file
+
+```
+# cat .env
+MONGO_DBUSER=satosa
+MONGO_DBPASSWORD=thatpassword
+HOSTNAME=localhost
+```
+
+See [mongo readme](../README.mongo.md) for explanation of environment variables of MongoDB.
+
+## docker-compose.yml
+In the [project readme](../README.md#configuration-by-environments) is present a detailed list with each environment and his function
+```
+    environment:
+      - SATOSA_BY_DOCKER=1
+
+      - SATOSA_BASE=https://$HOSTNAME
+      # - SATOSA_CONTACT_PERSON_EMAIL_ADDRESS=support.example@organization.org
+      # - SATOSA_CONTACT_PERSON_FISCALCODE=01234567890
+      # - SATOSA_CONTACT_PERSON_GIVEN_NAME=Name
+      # - SATOSA_CONTACT_PERSON_TELEPHONE_NUMBER=06123456789
+      - SATOSA_DISCO_SRV=https://$HOSTNAME/static/disco.html
+      # - SATOSA_ENCRYPTION_KEY=
+      - MONGODB_PASSWORD=${MONGO_DBPASSWORD}
+      - MONGODB_USERNAME=${MONGO_DBUSER}
+      # - SATOSA_ORGANIZATION_DISPLAY_NAME_EN=Resource provided by Example Organization
+      # - SATOSA_ORGANIZATION_DISPLAY_NAME_IT=Resource provided by Example Organization
+      # - SATOSA_ORGANIZATION_NAME_EN=Resource provided by Example Organization
+      # - SATOSA_ORGANIZATION_NAME_IT=Resource provided by Example Organization
+      # - SATOSA_ORGANIZATION_URL_EN=https://example_organization.org
+      # - SATOSA_ORGANIZATION_URL_IT=https://example_organization.org
+      # - SATOSA_PRIVATE_KEYS=
+      # - SATOSA_PUBLIC_KEY=
+      # - SATOSA_SALT=
+      # - SATOSA_STATE_ENCRYPTION_KEY
+      # - SATOSA_UI_DESCRIPTION_EN=Resource description
+      # - SATOSA_UI_DESCRIPTION_IT=Resource description
+      # - SATOSA_UI_DISPLAY_NAME_EN=Resource Display Name
+      # - SATOSA_UI_DISPLAY_NAME_IT=Resource Display Name
+      # - SATOSA_UI_INFORMATION_URL_EN=https://example_organization.org/information_url_en
+      # - SATOSA_UI_INFORMATION_URL_IT=https://example_organization.org/information_url_en
+      # - SATOSA_UI_LOGO_HEIGHT=60
+      # - SATOSA_UI_LOGO_URL=https://example_organization.org/logo.png
+      # - SATOSA_UI_LOGO_WIDTH=80
+      # - SATOSA_UI_PRIVACY_URL_EN=https://example_organization.org/privacy_en
+      # - SATOSA_UI_PRIVACY_URL_IT=https://example_organization.org/privacy_en
+      - SATOSA_UNKNOW_ERROR_REDIRECT_PAGE=https://$HOSTNAME/static/error_page.html
+      # - SATOSA_USER_ID_HASH_SALT
+```
diff --git a/compose-Satosa-Saml2Spid/docker-compose.yml b/compose-Satosa-Saml2Spid/docker-compose.yml
new file mode 100644
index 00000000..df36d701
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/docker-compose.yml
@@ -0,0 +1,126 @@
+version: '3'
+services:
+
+  satosa-mongo:
+    image: mongo
+    container_name: satosa-mongo
+    restart: always
+    environment:
+      MONGO_INITDB_DATABASE: oidcop
+      MONGO_INITDB_ROOT_USERNAME: "${MONGO_DBUSER}"
+      MONGO_INITDB_ROOT_PASSWORD: "${MONGO_DBPASSWORD}"
+    volumes:
+      - mongodata:/data/db
+      - /usr/share/zoneinfo/Europe/Rome:/etc/localtime:ro
+      - ./mongo/init-mongo.sh:/docker-entrypoint-initdb.d/init-mongo.sh
+    ports:
+      - '27017-27019:27017-27019'
+
+  satosa-mongo-express:
+    image: mongo-express
+    container_name: satosa-mongo-express
+    restart: always
+    ports:
+      - 8082:8081
+    environment:
+      ME_CONFIG_BASICAUTH_USERNAME: satosauser
+      ME_CONFIG_BASICAUTH_PASSWORD: satosapw
+      ME_CONFIG_MONGODB_ADMINUSERNAME: "${MONGO_DBUSER}"
+      ME_CONFIG_MONGODB_ADMINPASSWORD: "${MONGO_DBPASSWORD}"
+      ME_CONFIG_MONGODB_URL: mongodb://${MONGO_DBUSER}:${MONGO_DBPASSWORD}@satosa-mongo:27017/
+
+  satosa-saml2spid:
+    image: ghcr.io/italia/satosa-saml2spid:latest
+    container_name: satosa-saml2spid  
+    depends_on:
+      - satosa-mongo
+    environment:
+      - SATOSA_BY_DOCKER=1
+
+      - SATOSA_BASE=https://$HOSTNAME
+      # - SATOSA_CONTACT_PERSON_EMAIL_ADDRESS=support.example@organization.org
+      # - SATOSA_CONTACT_PERSON_FISCALCODE=01234567890
+      # - SATOSA_CONTACT_PERSON_GIVEN_NAME=Name
+      # - SATOSA_CONTACT_PERSON_TELEPHONE_NUMBER=06123456789
+      - SATOSA_DISCO_SRV=https://$HOSTNAME/static/disco.html
+      # - SATOSA_ENCRYPTION_KEY=
+      - MONGODB_PASSWORD=${MONGO_DBPASSWORD}
+      - MONGODB_USERNAME=${MONGO_DBUSER}
+      # - SATOSA_ORGANIZATION_DISPLAY_NAME_EN=Resource provided by Example Organization
+      # - SATOSA_ORGANIZATION_DISPLAY_NAME_IT=Resource provided by Example Organization
+      # - SATOSA_ORGANIZATION_NAME_EN=Resource provided by Example Organization
+      # - SATOSA_ORGANIZATION_NAME_IT=Resource provided by Example Organization
+      # - SATOSA_ORGANIZATION_URL_EN=https://example_organization.org
+      # - SATOSA_ORGANIZATION_URL_IT=https://example_organization.org
+      # - SATOSA_PRIVATE_KEYS=
+      # - SATOSA_PUBLIC_KEY=
+      # - SATOSA_SALT=
+      # - SATOSA_STATE_ENCRYPTION_KEY
+      # - SATOSA_UI_DESCRIPTION_EN=Resource description
+      # - SATOSA_UI_DESCRIPTION_IT=Resource description
+      # - SATOSA_UI_DISPLAY_NAME_EN=Resource Display Name
+      # - SATOSA_UI_DISPLAY_NAME_IT=Resource Display Name
+      # - SATOSA_UI_INFORMATION_URL_EN=https://example_organization.org/information_url_en
+      # - SATOSA_UI_INFORMATION_URL_IT=https://example_organization.org/information_url_en
+      # - SATOSA_UI_LOGO_HEIGHT=60
+      # - SATOSA_UI_LOGO_URL=https://example_organization.org/logo.png
+      # - SATOSA_UI_LOGO_WIDTH=80
+      # - SATOSA_UI_PRIVACY_URL_EN=https://example_organization.org/privacy_en
+      # - SATOSA_UI_PRIVACY_URL_IT=https://example_organization.org/privacy_en
+      - SATOSA_UNKNOW_ERROR_REDIRECT_PAGE=https://$HOSTNAME/static/error_page.html
+      # - SATOSA_USER_ID_HASH_SALT
+    expose:
+      - 10000
+      - 9999
+    ports:
+      - "10000:10000"
+      - "9999:9999"
+    volumes:
+       - /usr/share/zoneinfo/Europe/Rome:/etc/localtime:ro
+       - satosa_metadata:/satosa_proxy/metadata
+       - satosa_static:/satosa_proxy/static
+       - satosa_certs:/satosa_proxy/pki
+
+  satosa-nginx:
+    image: nginx:alpine
+    container_name: satosa-nginx
+    depends_on:
+      - satosa-saml2spid
+    ports:
+      - "80:80"
+      - "443:443"
+    volumes:
+      - ./nginx/nginx.conf_uwsgi_pass:/etc/nginx/nginx.conf:ro
+      - ./nginx/50x.html:/usr/share/nginx/html/50x.html:ro
+      - ./nginx/404.html:/usr/share/nginx/html/404.html:ro
+      - ./nginx/403.html:/usr/share/nginx/html/403.html:ro
+      - nginx_certs:/etc/nginx/certs:ro
+      - satosa_static:/var/www/html
+
+volumes:
+
+  mongodata:
+    external:
+      name: satosa-saml2spid_mongodata
+
+  nginx_certs:
+    external:
+      name: satosa-saml2spid_nginx_certs
+
+  satosa_static:
+    external:
+      name: satosa-saml2spid_static        
+
+  satosa_metadata:
+    external:
+      name: satosa-saml2spid_metadata
+
+  satosa_certs:
+    external:
+      name: satosa-saml2spid_certs
+
+#  nginx_conf:
+#    driver_opts:
+#      type: none
+#      device: $PWD/nginx/
+#      o: bind
diff --git a/mongo/README.md b/compose-Satosa-Saml2Spid/mongo/init-mongo.sh
old mode 100644
new mode 100755
similarity index 55%
rename from mongo/README.md
rename to compose-Satosa-Saml2Spid/mongo/init-mongo.sh
index 7e29cc58..bbe90d02
--- a/mongo/README.md
+++ b/compose-Satosa-Saml2Spid/mongo/init-mongo.sh
@@ -1,62 +1,44 @@
-## Setup
-
-````
-wget -qO - https://www.mongodb.org/static/pgp/server-4.4.asc | sudo apt-key add -
-echo "deb [ arch=amd64,arm64 ] https://repo.mongodb.org/apt/ubuntu focal/mongodb-org/4.4 multiverse" | sudo tee /etc/apt/sources.list.d/mongodb-org-4.4.list
-sudo apt update
-sudo apt install -y mongodb-org
-sudo apt install mongosh
-````
-
-#### using docker compose
-````
-mongosh mongodb://root:example@172.21.0.3:27017
-````
-
-#### create satosa user grants
-````
-use oidcop
+#!/usr/bin/env bash
+
+mongosh -- "$MONGO_INITDB_DATABASE"<<EOF
+
+var rootUser = '$MONGO_INITDB_ROOT_USERNAME';
+var rootPassword = '$MONGO_INITDB_ROOT_PASSWORD';
+ 
+var admin = db.getSiblingDB('admin');
+
+admin.auth(rootUser, rootPassword);
+
+var user = '$MONGO_INITDB_ROOT_USERNAME';
+var passwd = '$MONGO_INITDB_ROOT_PASSWORD';
+
 db.createUser(
   {
-    user: "satosa",
-    pwd:  "thatpassword",
+    user: user,
+    pwd:  passwd,
     roles: [
-        { role: "readWrite", db: "oidcop" }
+        { role: "readWrite" , db: '$MONGO_INITDB_DATABASE'}
     ]
   }
 )
 
-exit
-````
-
-#### make client_id unique
-
-````
+// make client_id unique
 db.client.createIndex( { "client_id": 1 }, { unique: true } )
 db.client.createIndex( { "registration_access_token": 1 }, { unique: true } )
-````
 
-#### make access_token and sid unique
-
-````
+// make access_token and sid unique
 db.session.createIndex( { "sid": 1 }, { unique: true } )
-````
-
-#### create expired session deletion
-
-Prune all the expired sessions automatically, keeping only the last two entries.
 
-````
+// create expired session deletion
 db.session.createIndex(
   { expires_at: 1 },
-  { expireAfterSeconds: 0, partialFilterExpression: { count: { $gt: 2 } } }
+  { expireAfterSeconds: 0, partialFilterExpression: { count: { \$gt: 2 } } }
 );
-````
 
-### insert a test client like this
-
-````
+// insert a test client like this
 db.client.insertOne(
     {"client_id": "jbxedfmfyc", "client_name": "ciro", "client_salt": "6flfsj0Z", "registration_access_token": "z3PCMmC1HZ1QmXeXGOQMJpWQNQynM4xY", "registration_client_uri": "https://localhost:10000/registration_api?client_id=jbxedfmfyc", "client_id_issued_at": 1630952311.410208, "client_secret": "19cc69b70d0108f630e52f72f7a3bd37ba4e11678ad1a7434e9818e1", "client_secret_expires_at": 1662488311.410214, "application_type": "web", "contacts": ["ops@example.com"], "token_endpoint_auth_method": "client_secret_basic", "redirect_uris": [["https://localhost:8090/authz_cb/satosa", {}]], "post_logout_redirect_uris": [["https://localhost:8090/session_logout/satosa", null]], "response_types": ["code"], "grant_types": ["authorization_code"], "allowed_scopes": ["openid", "profile", "email", "offline_access"]}
 )
-````
+
+EOF
+
diff --git a/compose-Satosa-Saml2Spid/nginx/403.html b/compose-Satosa-Saml2Spid/nginx/403.html
new file mode 100644
index 00000000..fb9d5042
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/nginx/403.html
@@ -0,0 +1,30 @@
+<!DOCTYPE html>
+<html>
+<head>
+<title>Forbidden</title>
+<style>
+html { color-scheme: light dark; }
+body {
+  width: 35em;
+  margin: 0 auto;
+  font-family: Tahoma, Verdana, Arial, sans-serif;
+}
+h1 {
+  display: block;
+  font-size: 4em;
+  margin-top: 0.67em;
+  margin-bottom: 0.67em;
+  margin-left: 0;
+  margin-right: 0;
+  font-weight: bold;
+}
+</style>
+</head>
+<body>
+<h1 style="text-align:center">403</h1>
+<h3 style="text-align:center">Forbidden</h3>
+<p>You don't have permission to access.</p>
+<br/>
+<p><em>Faithfully yours, nginx.</em></p>
+</body>
+</html>
diff --git a/compose-Satosa-Saml2Spid/nginx/404.html b/compose-Satosa-Saml2Spid/nginx/404.html
new file mode 100644
index 00000000..d1497709
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/nginx/404.html
@@ -0,0 +1,38 @@
+<!DOCTYPE html>
+<html>
+<head>
+<title>Page not found</title>
+<style>
+html { color-scheme: light dark; }
+body {
+  width: 35em;
+  margin: 0 auto;
+  font-family: Tahoma, Verdana, Arial, sans-serif;
+}
+h1 {
+  display: block;
+  font-size: 4em;
+  margin-top: 0.67em;
+  margin-bottom: 0.67em;
+  margin-left: 0;
+  margin-right: 0;
+  font-weight: bold;
+}
+</style>
+</head>
+<body>
+<h1 style="text-align:center">404</h1>
+<h3 style="text-align:center">Page not found</h3>
+<p>Sorry, the page you are looking doesn't exist,<br/>
+or other error occured.</p>
+<p>If you are the system administrator of this resource then you should check
+the error log for details.</p>
+<h3 style="text-align:center">Pagina non trovata</h3>
+<p>La pagina che stava cercando non esiste su questo server,<br/>
+oppure e' occorso un'altro tipo di errore.</p>
+<p>Se sei l'amministratore di questa risorsa magari puoi
+trovare dettagli interessanti nei log.</p>
+<br/>
+<p><em>Faithfully yours, nginx.</em></p>
+</body>
+</html>
diff --git a/compose-Satosa-Saml2Spid/nginx/50x.html b/compose-Satosa-Saml2Spid/nginx/50x.html
new file mode 100644
index 00000000..a57c2f93
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/nginx/50x.html
@@ -0,0 +1,19 @@
+<!DOCTYPE html>
+<html>
+<head>
+<title>Error</title>
+<style>
+html { color-scheme: light dark; }
+body { width: 35em; margin: 0 auto;
+font-family: Tahoma, Verdana, Arial, sans-serif; }
+</style>
+</head>
+<body>
+<h1>An error occurred.</h1>
+<p>Sorry, the page you are looking for is currently unavailable.<br/>
+Please try again later.</p>
+<p>If you are the system administrator of this resource then you should check
+the error log for details.</p>
+<p><em>Faithfully yours, nginx.</em></p>
+</body>
+</html>
diff --git a/compose-Satosa-Saml2Spid/nginx/certs/proxy_local.key b/compose-Satosa-Saml2Spid/nginx/certs/proxy_local.key
new file mode 100644
index 00000000..23d4877e
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/nginx/certs/proxy_local.key
@@ -0,0 +1,40 @@
+-----BEGIN PRIVATE KEY-----
+MIIG/gIBADANBgkqhkiG9w0BAQEFAASCBugwggbkAgEAAoIBgQDfp/056ZMdAd1Q
+BDNhxsLUK3Vn+z7PdZ5HTUtF7mOupXC5mN39IKNGHhT53ACHI5yAgm4KJEqNk9yR
+OrFP7Hr9unZfEM4qrdHy8N0cAAZUPBfdS+uogcQKgX6b5u4pVircQVOneVpLO24C
+zMIqF/0GXKjV+LE2jJwJssoWUjRW2Z1S4VoRf40n9bSdDSP7SmMvA1VTZE2JTthU
+fEe2e+yKVreNRoQp4Xls8kbBm1SPuSSd9i/cehFD08e7lsYxfZXKQJ2/hPBATmsU
+0GvA5KgkmrsD1Ihnq0tD8y9Ej6aDlpLtSYoxKNFbB/geUbfBY8sXruSxi+Hvu+hh
+qRpWuqZUmiiJISeBhgJVUScraEn2r5nyFBGUbQADifZ+UR/QNUN7Q54/Yb2mgCGo
+00CXNVs+HHqhjvmAtW2TCuBEblmZs45XwL49Iggf5xanLvnE+8flQvy8kUMq9SaC
+y2yCBkwC3TbUbGC5LurnZnwl352uDTzTC2GYHTnD3JZsZuONqiUCAwEAAQKCAYAp
+OL4cYWeC7igLKmsJ92dLUaM3AgCmnggJHj7kabanpshq/LjVgaF2N+8nyhuyzKZ4
+rRF4/w1aoMkDX2z0zSIyB57vkJpfFWBfxXMLSRnhhp3jZK3PhfNK+GkMdPiqV75Y
+kBXKBTzWJuL00yZqObeh54wau9Z1tl7ADtreWFJbO4qajvxZw0eR+OBMHfLmyuQS
+8ytTzmXYC9clYy6YfKixKqB0Am4zheIqaVEPOADS6I3OK2TQ3xK1jKAAfB6VWo7b
+3qHdszrj+aHJyUwiI+1DHS8XYmvShUN8cEW1faHW9oqAMvWNW3EAyB6T2AvB6O2I
+ZG7uRvyCMKKPgMUpvjMCH4ufnTYOVwHd5MP0Kj8yx1D+trbt4o3WRSBvMIsDxhux
+oEMo90jyTuxHpmnQwwfggk0maWGSQyaxvynk9c6ZAGZtDOgzGLKukQJpWbmTkr/s
+DSdunfViT8doWjCJsleKjUrX1Sgzpy3Am9gjkcIU2WmBye4Bohr9yp09xKryrZUC
+gcEA8AnpCQaNVeM+L4RMq1Fz2y1cfcEB23RfHqNaWsjCTaFk2zEswZATTbyDAYxZ
+7IDjlqW270YCF5yQ310AP8zCyGZcULa3FRndsAUhEfnOKfZHytxB8F0hPcy9+2Wb
+y/8l1hL/ri5Yqtm9B7aUZTYGwmWhq3gtNrIoRj1GFanCF2KC4J7XM+5EkCBShBbG
+9PRnsqNsU6v0UYOf1wM9eiB7u+gwJiQXYb/gSOQJiHEI60NBprq/7HOJvRNcRISa
+I13zAoHBAO6HNKGzVlJ9iMMRSgN+1BZXN6RqOZ2Mm96y/pBlOS9xc1vXAjCb2amo
++mapGjlqTVrNjcBzuJxaVFkhw4XvSvzgyXY4bcM7HhPk4HXqxw7xkvaVmexNKyib
+6QyTAYpocPFMPU3Q83pDuTOhnIzxehdAd1PW1eBTPGEsY3qVor7uUKHk/HZ6yf+6
+ia1L5EiCOcx9HSmlJ4IJaCYvSz4CD1S8lCAoHRJa5hXnH6dU5s95PxLk8zvMr8DP
+/L/NliElhwKBwQDmStvEyQB4UlirBeb4xmC8+zwteirp/S/1GQvq5YllKV613Ovv
+mOasQhv+NEVh3hZ7xelIjoYbWR607Wj7zNtjoLEYzvO/zt0drw4XTO862wnt2nt4
+vCDURcZPlyBuCxCl3fxnhBeVcukkqUqd/8NkZlVBST83pp11JfxDdGa+QMkH79zP
++dzV2ezQxXmEMaf7f0bCz8rLGdkUVAt7TAbqNM1dCmtUYN4xkHaE7M19yT0HVUwk
+8oRHXne7VOz82XkCgcEA3n/Ws6ODOU2KXlPpU5tiITjYWZERD4rS9wjG91DE6CGO
+9zN4AnnOrzlF4q+JG9eyMqqduND5ezeziLU7GtudeogAxTtcAApMQ0hzrOsFJkZn
+zYa9XzSYtrfAy47xl/dWq29vm//2rq0vvB7b1omGVtw2s0kqlqduIkLyxK2Cc1IA
+exQMAEUH2nlZ5gJt/skjO0HWCzvYv68grMXfDQeE34lNLzXb8HxENlgzKbbD2vMB
+yBEzZyvHIjehUBVpHqBPAoHAKOFB7fE1xx7qMnUepPE9p3r2YpK9LDcYpH6tsTY2
+hq4QAWbabRINdAAtIc+sMsus8kM9EEBReCmeKnbY9nA5e3rEJX7xfoxMkPihUmvZ
+aCMHPz7Kzya8licYLmoGdrip5kbZanCIcnfgkUbYhyoiVswJDldlfo/bfoK/g0SA
+1rRs8/ALwgBmHzQJWK+lzLWWEEr0JGoufvv5/h7YDqUkY2GTpcznbtWbf+EQzydw
+twoBbKbPgrk81FRvWlbED4KS
+-----END PRIVATE KEY-----
diff --git a/compose-Satosa-Saml2Spid/nginx/certs/proxy_local.pem b/compose-Satosa-Saml2Spid/nginx/certs/proxy_local.pem
new file mode 100644
index 00000000..c20dd44c
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/nginx/certs/proxy_local.pem
@@ -0,0 +1,25 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/compose-Satosa-Saml2Spid/nginx/nginx.conf_uwsgi_pass b/compose-Satosa-Saml2Spid/nginx/nginx.conf_uwsgi_pass
new file mode 100644
index 00000000..c4f6209a
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/nginx/nginx.conf_uwsgi_pass
@@ -0,0 +1,111 @@
+user nginx;
+worker_processes  auto;
+pid /run/nginx.pid;
+
+events {
+    worker_connections  1024;
+}
+
+http {
+    include       mime.types;
+    default_type  application/octet-stream;
+
+    sendfile        on;
+    keepalive_timeout  240s;
+    send_timeout 240s;
+    client_max_body_size 3300m;
+
+    log_format main '$http_x_forwarded_for - $remote_user [$time_local] '
+                    '"$request" $status $body_bytes_sent "$http_referer" '
+                    '"$http_user_agent"' ;
+
+# the upstream component nginx needs to connect to
+upstream satosa-saml2 {
+    server satosa-saml2spid:10000;
+}
+
+# configuration of the server
+server {
+  listen      80;
+  server_name proxy.local;
+  access_log /var/log/nginx/access.log;
+  error_log  /var/log/nginx/error.log error;
+  return 301 https://$host$request_uri;
+}
+
+server {
+    server_name proxy.local;
+    listen 443 ssl;
+
+    ssl_certificate /etc/nginx/certs/proxy_local.pem;
+    ssl_certificate_key /etc/nginx/certs/proxy_local.key;
+
+    access_log /var/log/nginx/access.log;
+    error_log  /var/log/nginx/error.log error;
+
+    # max upload size
+    client_max_body_size 10m;
+
+    # very long url for delega ticket
+    large_client_header_buffers 4 16k;
+
+    ssl_prefer_server_ciphers on;
+    ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384;ssl_ecdh_curve secp384r1; # Requires nginx >= 1.1.0
+    ssl_session_timeout  10m;
+    ssl_session_cache shared:SSL:10m;
+    ssl_session_tickets off; # Requires nginx >= 1.5.9
+    ssl_stapling on; # Requires nginx >= 1.3.7
+    ssl_stapling_verify on; # Requires nginx => 1.3.7
+
+    # Enable HTTP Strict Transport Security with a 2 year duration
+    add_header Strict-Transport-Security "max-age=63072000; ";
+
+    # deny iFrame
+    add_header X-Frame-Options "DENY";
+
+    add_header X-Frame-Options DENY;
+    add_header X-Content-Type-Options nosniff;
+    add_header X-XSS-Protection "1; mode=block";
+    add_header X-Robots-Tag none;
+
+    location /static  {
+        alias /var/www/html;
+        autoindex off;
+    }
+
+    location / {
+      include /etc/nginx/uwsgi_params;
+
+      uwsgi_pass satosa-saml2;
+      uwsgi_param Host $host;
+      uwsgi_param X-Real-IP $remote_addr;
+      uwsgi_param X-Forwarded-For $proxy_add_x_forwarded_for;
+      uwsgi_param X-Forwarded-Proto $http_x_forwarded_proto;
+      uwsgi_param HTTP_X_FORWARDED_PROTOCOL https;
+
+      uwsgi_connect_timeout 75s;
+      uwsgi_read_timeout 40;
+      uwsgi_buffer_size          128k;
+      uwsgi_buffers              4 256k;
+      uwsgi_busy_buffers_size    256k;
+      uwsgi_param SERVER_ADDR $server_addr;
+
+    }
+
+    error_page   500 502 503 504  /50x.html;
+    location = /50x.html {
+        root   /usr/share/nginx/html;
+    }
+
+    error_page  404              /404.html;
+    location = /404.html {
+        root   /usr/share/nginx/html;
+    }
+
+    error_page  403              /403.html;
+    location = /403.html {
+        root   /usr/share/nginx/html;
+    }
+
+}
+}
diff --git a/compose-Satosa-Saml2Spid/rm-persistent-volumes.sh b/compose-Satosa-Saml2Spid/rm-persistent-volumes.sh
new file mode 100755
index 00000000..cf6809af
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/rm-persistent-volumes.sh
@@ -0,0 +1,52 @@
+#!/bin/bash
+
+function delete-volume {
+        if [ ! "$(docker volume ls -q -f name=$1)" ]
+        then
+            echo -e "Il volume $1 non esiste, quindi non faccio nulla! \n"
+        else
+            read -p "Il volume $1 esiste. Lo cancello?(y/n):" ELIMINA_VOLUME
+            ELIMINA_VOLUME=${ELIMINA_VOLUME:-"n"}
+            export ELIMINA_VOLUME
+            if [ $ELIMINA_VOLUME = "y" ]
+            then
+                docker volume rm $1
+                echo -e "Eliminato $1 !!! \n"
+            else
+                echo -e "Non ho eliminato $1 !!! \n"
+            fi
+        fi
+}
+
+echo -e "\n"
+
+echo -e "Inizio le procedure per fare il down della composizione e poi CANCELLARE i volumi persistenti! \n"
+
+echo -e "Fermo la composizione! \n"
+docker-compose -f docker-compose.yml down -v;
+
+echo -e "\n"
+
+read -p "Volete veramente procedere con la cancellazione dei volumi persistenti? Tutti i dati andranno persi! Procedo ? (y/n) :" ELIMINA_DATI_PERSISTENTI
+ELIMINA_DATI_PERSISTENTI=${ELIMINA_DATI_PERSISTENTI:-"n"}
+export ELIMINA_DATI_PERSISTENTI
+if [ $ELIMINA_DATI_PERSISTENTI != "y" ] 
+then
+    echo -e "\n"
+    echo -e "Non elimino nulla ed esco!!! \n"
+    exit 0
+else
+
+echo -e "Procedo ... \n"                  
+
+echo -e "\n"
+
+delete-volume satosa-saml2spid_metadata
+delete-volume satosa-saml2spid_certs
+delete-volume satosa-saml2spid_static
+delete-volume satosa-saml2spid_nginx_certs
+delete-volume satosa-saml2spid_mongodata
+
+fi
+
+exit 0
diff --git a/compose-Satosa-Saml2Spid/run-docker-compose.sh b/compose-Satosa-Saml2Spid/run-docker-compose.sh
new file mode 100755
index 00000000..5e9227ff
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/run-docker-compose.sh
@@ -0,0 +1,48 @@
+#!/bin/bash
+
+function create-volume {
+	if [ ! "$(docker volume ls -q -f name=$1)" ]
+	then
+	    echo -e "Il volume $1 non esiste, lo creo! \n"
+	    docker volume create --name=$1
+	    echo -e "\n"
+	    if [[ ! -z "$2" ]]
+	    then 
+	       echo -e "Ho creato il volume e ci copio i dati da $2 \n"
+	       sudo cp -R $2* `docker volume inspect $1 | jq .[0].Mountpoint | sed 's/"//g'`
+	    fi   
+	else
+	    echo -e "Il volume $1 esiste, non faccio nulla! \n"  
+	fi
+}
+
+create-volume satosa-saml2spid_metadata ../example/metadata/
+create-volume satosa-saml2spid_certs ../example/pki/
+create-volume satosa-saml2spid_static ../example/static/
+create-volume satosa-saml2spid_nginx_certs nginx/certs/
+create-volume satosa-saml2spid_mongodata 
+
+echo -e "\n"
+
+echo -e "Provo a scaricare le nuove versioni. \n"
+
+docker-compose -f docker-compose.yml pull
+
+echo -e "\n"
+
+echo -e "Provo a fare il down della composizione. \n"
+
+docker-compose -f docker-compose.yml down -v
+
+echo -e "\n"
+
+echo -e "Tiro su la composizione, in caso, con le nuove versioni delle immagini. \n"
+
+docker-compose -f docker-compose.yml up -d
+
+echo -e "\n"
+
+echo -e "Ho Completato! \n"
+echo -e "Se volete vedere il log live potete lanciare il comando: 'docker-compose -f docker-compose.yml logs -f' \n"
+
+exit 0
diff --git a/compose-Satosa-Saml2Spid/stop-docker-compose.sh b/compose-Satosa-Saml2Spid/stop-docker-compose.sh
new file mode 100755
index 00000000..97d05ea8
--- /dev/null
+++ b/compose-Satosa-Saml2Spid/stop-docker-compose.sh
@@ -0,0 +1,8 @@
+#!/bin/bash
+echo -e "\n"
+
+echo -e "Eseguo il down della composizione. \n"
+
+docker-compose -f docker-compose.yml down -v
+
+exit 0
diff --git a/docker-compose.yml b/docker-compose.yml
deleted file mode 100644
index f7908e40..00000000
--- a/docker-compose.yml
+++ /dev/null
@@ -1,124 +0,0 @@
-version: "3"
-
-services:
-  # if needed
-  #spid-certs:
-    #image: psmiraglia/spid-compliant-certificates
-    #volumes:
-        #- ./project/pki:/tmp/certs:rw
-    #entrypoint: |
-        #spid-compliant-certificates generator
-        #--key-size 3072
-        #--common-name "A.C.M.E"
-        #--days 365
-        #--entity-id https://spid.acme.it
-        #--locality-name Roma
-        #--org-id "PA:IT-c_h501"
-        #--org-name "A Company Making Everything"
-        #--sector public
-        #--key-out /tmp/certs/privkey.pem
-        #--crt-out /tmp/certs/cert.pem
-
-  satosa-mongo:
-    image: mongo
-    restart: always
-    environment:
-      MONGO_INITDB_ROOT_USERNAME: satosa
-      MONGO_INITDB_ROOT_PASSWORD: thatpassword
-    ports:
-      - 27017:27017
-    volumes:
-        - mongodbdata:/data/db
-    networks:
-      - satosa
-
-  satosa-mongo-express:
-    image: mongo-express
-    restart: always
-    ports:
-      - 8082:8081
-    environment:
-      ME_CONFIG_BASICAUTH_USERNAME: satosa
-      ME_CONFIG_BASICAUTH_PASSWORD: thatpassword
-      ME_CONFIG_MONGODB_ADMINUSERNAME: satosa
-      ME_CONFIG_MONGODB_ADMINPASSWORD: thatpassword
-      ME_CONFIG_MONGODB_URL: mongodb://satosa:thatpassword@satosa-mongo:27017/
-    networks:
-      - satosa
-
-  # remove if use a nginx frontend
-  satosa-statics:
-    build:
-      context: .
-      dockerfile: ./docker/satosa-statics/Dockerfile
-    expose:
-      - 9999
-    ports:
-      - "9999:9999"
-    volumes:
-      - satosa-saml2saml_certs:/satosa_pki
-      - satosa-saml2saml_statics:/satosa_statics
-    networks:
-      - satosa
-
-  satosa-saml2spid:
-    build:
-      context: .
-      dockerfile: ./docker/satosa-saml2spid/Dockerfile
-    depends_on:
-      - satosa-mongo
-    environment:
-      - THAT=thing
-    expose:
-      - 10000
-    ports:
-      - "10000:10000"
-    networks:
-      - satosa
-    volumes:
-      - satosa-saml2saml_certs:/satosa_pki
-      - satosa-saml2saml_conf:/satosa_proxy
-      - satosa-saml2saml_logs:/satosa_logs
-
-  # TODO
-  #satosa-nginx:
-    #image: nginx:1.19-alpine
-    #ports:
-      #- "80:80"
-      #- "443:443"
-    #volumes:
-      #- ./docker/gateway/satosa.conf:/etc/nginx/conf.d/default.conf
-      #- satosa-saml2saml_statics:/satosa/static
-      #- ./docker/gateway/example.key:/etc/nginx/certs/certificate.key
-      #- ./docker/gateway/example.crt:/etc/nginx/certs/certificate.crt
-    #depends_on:
-      #- satosa-front
-      #- satosa-back
-    #networks:
-      #- satosa
-
-  # uncomment if needed
-  spid-saml-check:
-    image: italia/spid-saml-check:v.1.8.1
-    ports:
-      - "8080:8080"
-    networks:
-      - satosa
-    #volumes:
-      #- "./docker/spid-saml-check-config/idp.json:/spid-saml-check/spid-validator/config/idp.json:ro"
-      #- "./docker/spid-saml-check-config/idp_demo.json:/spid-saml-check/spid-validator/config/idp_demo.json:ro"
-      #- "./docker/spid-saml-check-config/server.json:/spid-saml-check/spid-validator/config/server.json:ro"
-
-volumes:
-  mongodbdata:
-  satosa-saml2saml_certs:
-    external: true
-  satosa-saml2saml_statics:
-    external: true
-  satosa-saml2saml_conf:
-    external: true
-  satosa-saml2saml_logs:
-    external: true
-
-networks:
-  satosa:
diff --git a/docker/satosa-saml2spid/Dockerfile b/docker/satosa-saml2spid/Dockerfile
deleted file mode 100644
index 9df1f20d..00000000
--- a/docker/satosa-saml2spid/Dockerfile
+++ /dev/null
@@ -1,19 +0,0 @@
-FROM debian:buster-slim
-MAINTAINER Giuseppe De Marco <demarcog83@gmail.com>
-
-# for alpine 13
-#RUN apk update
-#RUN apk add xmlsec libffi-dev libressl-dev python3 py3-pip python3-dev procps git openssl build-base gcc wget bash cargo musl-dev
-
-RUN apt update
-RUN apt install -y libffi-dev libssl-dev python3-pip xmlsec1 procps libpcre3 libpcre3-dev git bash
-
-ENV BASEDIR="/satosa_proxy"
-COPY ./requirements.txt .
-RUN pip3 install --upgrade pip
-RUN pip3 install -r requirements.txt --ignore-installed
-
-WORKDIR $BASEDIR/
-# COPY ./project $BASEDIR
-RUN ls .
-ENTRYPOINT uwsgi --wsgi satosa.wsgi --https 0.0.0.0:10000,/satosa_pki/cert.pem,/satosa_pki/privkey.pem --callable app -b 32648
diff --git a/docker/satosa-statics/Dockerfile b/docker/satosa-statics/Dockerfile
deleted file mode 100644
index ae0cfcfa..00000000
--- a/docker/satosa-statics/Dockerfile
+++ /dev/null
@@ -1,10 +0,0 @@
-FROM debian:buster-slim
-MAINTAINER Giuseppe De Marco <demarcog83@gmail.com>
-
-RUN apt update
-RUN apt install -y libffi-dev libssl-dev python3-pip libpcre3 libpcre3-dev
-
-RUN pip3 install uwsgi
-ENV BASEDIR=/satosa_statics/
-WORKDIR $BASEDIR
-ENTRYPOINT uwsgi --uid 1000 --https 0.0.0.0:9999,/satosa_pki/cert.pem,/satosa_pki/privkey.pem --check-static-docroot --check-static $BASEDIR --static-index disco.html
diff --git a/example/backends/ciesaml2.py b/example/backends/ciesaml2.py
new file mode 100644
index 00000000..f3558d16
--- /dev/null
+++ b/example/backends/ciesaml2.py
@@ -0,0 +1,516 @@
+import json
+import logging
+import re
+import saml2
+import satosa.util as util
+
+from jinja2 import Environment, FileSystemLoader, select_autoescape
+from saml2.response import StatusAuthnFailed
+from saml2.authn_context import requested_authn_context
+from saml2.metadata import entity_descriptor, sign_entity_descriptor
+from saml2.saml import NAMEID_FORMAT_TRANSIENT
+from saml2.sigver import security_context, SignatureError
+from saml2.validate import valid_instance
+from satosa.backends.saml2 import SAMLBackend
+from satosa.context import Context
+from satosa.exception import SATOSAAuthenticationError
+from satosa.response import Response
+from satosa.saml_util import make_saml_response
+from six import text_type
+
+from .spidsaml2_validator import Saml2ResponseValidator
+
+logger = logging.getLogger(__name__)
+
+
+#
+# Messaggi di Errore SPID
+#
+# Ref: https://docs.italia.it/italia/spid/spid-regole-tecniche/it/stabile/messaggi-errore.html
+#
+SPID_ANOMALIES = {
+    19: {
+        "message": "Autenticazione fallita per ripetuta sottomissione di credenziali errate",
+        "troubleshoot": "Inserire credenziali corrette",
+    },
+    20: {
+        "message": (
+            "Utente privo di credenziali compatibili con "
+            "il livello di autenticazione richiesto"
+        ),
+        "troubleshoot": "Acquisire credenziali di livello idoneo all'accesso al servizio",
+    },
+    21: {
+        "message": "Timeout durante l'autenticazione utente",
+        "troubleshoot": (
+            "Si ricorda che l'operazione di autenticazione deve "
+            "essere completata entro un determinato periodo di tempo"
+        ),
+    },
+    22: {
+        "message": "L'utente nega il consenso all'invio di dati al fornitore del servizio",
+        "troubleshoot": "È necessario dare il consenso per poter accedere al servizio",
+    },
+    23: {"message": "Utente con identità sospesa/revocata o con credenziali bloccate"},
+    25: {"message": "Processo di autenticazione annullato dall'utente"},
+    30: {
+        "message": "L'identità digitale utilizzata non è un'identità digitale del tipo atteso",
+        "troubleshoot": (
+            "È necessario eseguire l'autenticazione con le credenziali "
+            "del corretto tipo di identità digitale richiesto"
+        ),
+    },
+}
+
+_TROUBLESHOOT_MSG = (
+    "È stato riscontrato un problema di validazione "
+    "della risposta proveniente dal "
+    "Provider di Identità. "
+    " Contattare il supporto tecnico per eventuali chiarimenti"
+)
+
+
+class CieSAMLBackend(SAMLBackend):
+    """
+    A saml2 backend module (acting as a CIE SP).
+    """
+
+    _authn_context = "https://www.spid.gov.it/SpidL1"
+
+    def __init__(self, *args, **kwargs):
+        super().__init__(*args, **kwargs)
+
+        # error pages handler
+        self.template_loader = Environment(
+            loader=FileSystemLoader(searchpath=self.config["template_folder"]),
+            autoescape=select_autoescape(["html"]),
+        )
+        _static_url = (
+            self.config["static_storage_url"]
+            if self.config["static_storage_url"][-1] == "/"
+            else self.config["static_storage_url"] + "/"
+        )
+        self.template_loader.globals.update(
+            {
+                "static": _static_url,
+            }
+        )
+        self.error_page = self.template_loader.get_template(
+            self.config["error_template"]
+        )
+
+    def _metadata_contact_person(self, metadata, conf):
+        ##############
+        # avviso 29 v3
+        #
+        # https://www.agid.gov.it/sites/default/files/repository_files/spid-avviso-n29v3-specifiche_sp_pubblici_e_privati_0.pdf
+        # Avviso 29v3
+        SPID_PREFIXES = dict(
+            cie="https://www.cartaidentita.interno.gov.it/saml-extensions",
+            spid="https://spid.gov.it/saml-extensions",
+            fpa="https://spid.gov.it/invoicing-extensions",
+        )
+        saml2.md.SamlBase.register_prefix(SPID_PREFIXES)
+        metadata.contact_person = []
+        contact_map = conf.contact_person
+
+        for contact in contact_map:
+            cie_contact = saml2.md.ContactPerson()
+            cie_contact.contact_type = contact["contact_type"]
+
+            cie_contact.loadd({
+                    "email_address": contact["email_address"],
+                    "telephone_number": contact["telephone_number"],
+                    "company": contact['company']
+                    })
+
+
+            #contact_kwargs = contact["std_info"]
+            spid_extensions = saml2.ExtensionElement(
+                "Extensions", namespace="urn:oasis:names:tc:SAML:2.0:metadata"
+            )
+            #breakpoint()
+
+            # cie_contact.loadd(contact_kwargs)
+            for k, v in contact['cie_info'].items():
+                ext = saml2.ExtensionElement(
+                    k, namespace=SPID_PREFIXES["cie"], text=v
+                )
+                spid_extensions.children.append(ext)
+
+            cie_contact.extensions = spid_extensions
+            metadata.contact_person.append(cie_contact)
+        #
+        # fine avviso 29v3
+        ###################
+
+    def _metadata_endpoint(self, context):
+        """
+        Endpoint for retrieving the backend metadata
+        :type context: satosa.context.Context
+        :rtype: satosa.response.Response
+
+        :param context: The current context
+        :return: response with metadata
+        """
+        logger.debug("Sending metadata response")
+        conf = self.sp.config
+
+        metadata = entity_descriptor(conf)
+        
+        # configurare gli attribute_consuming_service
+        metadata.spsso_descriptor.attribute_consuming_service[0].index = '0'
+        metadata.spsso_descriptor.attribute_consuming_service[0].service_name[0].lang = "it"
+        metadata.spsso_descriptor.attribute_consuming_service[0].service_name[0].text = metadata.entity_id
+        for reqattr in metadata.spsso_descriptor.attribute_consuming_service[0].requested_attribute:
+            reqattr.name_format = None
+            reqattr.friendly_name = None
+
+        metadata.spsso_descriptor.assertion_consumer_service[0].index = '0'
+        metadata.spsso_descriptor.assertion_consumer_service[0].is_default = 'true'
+       
+        # load ContactPerson Extensions
+        self._metadata_contact_person(metadata, conf)
+
+        # metadata signature
+        secc = security_context(conf)
+        #
+        sign_dig_algs = self.get_kwargs_sign_dig_algs()
+        eid, xmldoc = sign_entity_descriptor(
+            metadata, None, secc, **sign_dig_algs)
+
+        valid_instance(eid)
+        return Response(
+            text_type(xmldoc).encode("utf-8"), content="text/xml; charset=utf8"
+        )
+
+    def get_kwargs_sign_dig_algs(self):
+        kwargs = {}
+        # backend support for selectable sign/digest algs
+        alg_dict = dict(signing_algorithm="sign_alg",
+                        digest_algorithm="digest_alg")
+        for alg in alg_dict:
+            selected_alg = self.config["sp_config"]["service"]["sp"].get(alg)
+            if not selected_alg:
+                continue
+            kwargs[alg_dict[alg]] = selected_alg
+        return kwargs
+
+    def check_blacklist(self, context, entity_id):
+        # If IDP blacklisting is enabled and the selected IDP is blacklisted,
+        # stop here
+        if self.idp_blacklist_file:
+            with open(self.idp_blacklist_file) as blacklist_file:
+                blacklist_array = json.load(blacklist_file)["blacklist"]
+                if entity_id in blacklist_array:
+                    logger.debug(
+                        "IdP with EntityID {} is blacklisted".format(entity_id)
+                    )
+                    raise SATOSAAuthenticationError(
+                        context.state, "Selected IdP is blacklisted for this backend"
+                    )
+
+    def authn_request(self, context, entity_id):
+        """
+        Do an authorization request on idp with given entity id.
+        This is the start of the authorization.
+
+        :type context: satosa.context.Context
+        :type entity_id: str
+        :rtype: satosa.response.Response
+
+        :param context: The current context
+        :param entity_id: Target IDP entity id
+        :return: response to the user agent
+        """
+        self.check_blacklist(context, entity_id)
+
+        kwargs = {}
+        # fetch additional kwargs
+        kwargs.update(self.get_kwargs_sign_dig_algs())
+
+        authn_context = self.construct_requested_authn_context(entity_id)
+        req_authn_context = authn_context or requested_authn_context(
+            class_ref=self._authn_context
+        )
+        req_authn_context.comparison = self.config.get("spid_acr_comparison", "minimum")
+
+        # force_auth = true only if SpidL >= 2
+        if "SpidL1" in authn_context.authn_context_class_ref[0].text:
+            force_authn = "false"
+        else:
+            force_authn = "true"
+
+        try:
+            binding = saml2.BINDING_HTTP_POST
+            destination = context.internal_data.get("target_entity_id", entity_id)
+            # SPID CUSTOMIZATION
+            # client = saml2.client.Saml2Client(conf)
+            client = self.sp
+
+            logger.debug(f"binding: {binding}, destination: {destination}")
+
+            # acs_endp, response_binding = self.sp.config.getattr("endpoints", "sp")["assertion_consumer_service"][0]
+            # req_id, req = self.sp.create_authn_request(
+            # destination, binding=response_binding, **kwargs)
+
+            logger.debug(f"Redirecting user to the IdP via {binding} binding.")
+            # use the html provided by pysaml2 if no template was specified or it didn't exist
+
+            # SPID want the fqdn of the IDP as entityID, not the SSO endpoint
+            # 'http://idpspid.testunical.it:8088'
+            # dovrebbe essere destination ma nel caso di spid-testenv2 è entityid...
+            # binding, destination = self.sp.pick_binding("single_sign_on_service", None, "idpsso", entity_id=entity_id)
+            location = client.sso_location(destination, binding)
+            # location = client.sso_location(entity_id, binding)
+
+            # not used anymore thanks to avviso 11
+            # location_fixed = destination  # entity_id
+            # ...hope to see the SSO endpoint soon in spid-testenv2
+            # returns 'http://idpspid.testunical.it:8088/sso'
+            # fixed: https://github.com/italia/spid-testenv2/commit/6041b986ec87ab8515dd0d43fed3619ab4eebbe9
+
+            # verificare qui
+            # acs_endp, response_binding = self.sp.config.getattr("endpoints", "sp")["assertion_consumer_service"][0]
+
+            authn_req = saml2.samlp.AuthnRequest()
+            authn_req.force_authn = force_authn
+            authn_req.destination = location
+            # spid-testenv2 preleva l'attribute consumer service dalla authnRequest
+            # (anche se questo sta già nei metadati...)
+            authn_req.attribute_consuming_service_index = "0"
+
+            issuer = saml2.saml.Issuer()
+            issuer.name_qualifier = client.config.entityid
+            issuer.text = client.config.entityid
+            issuer.format = "urn:oasis:names:tc:SAML:2.0:nameid-format:entity"
+            authn_req.issuer = issuer
+
+            # message id
+            authn_req.id = saml2.s_utils.sid()
+            authn_req.version = saml2.VERSION  # "2.0"
+            authn_req.issue_instant = saml2.time_util.instant()
+
+            name_id_policy = saml2.samlp.NameIDPolicy()
+            # del(name_id_policy.allow_create)
+            name_id_policy.format = NAMEID_FORMAT_TRANSIENT
+            authn_req.name_id_policy = name_id_policy
+
+            # TODO: use a parameter instead
+            authn_req.requested_authn_context = req_authn_context
+            authn_req.protocol_binding = binding
+
+            assertion_consumer_service_url = client.config._sp_endpoints[
+                "assertion_consumer_service"
+            ][0][0]
+            authn_req.assertion_consumer_service_url = (
+                assertion_consumer_service_url  # 'http://sp-fqdn/saml2/acs/'
+            )
+
+            authn_req_signed = client.sign(
+                authn_req,
+                sign_prepare=False,
+                sign_alg=kwargs["sign_alg"],
+                digest_alg=kwargs["digest_alg"],
+            )
+            authn_req.id
+
+            _req_str = authn_req_signed
+            logger.debug(f"AuthRequest to {destination}: {_req_str}")
+
+            relay_state = util.rndstr()
+            ht_args = client.apply_binding(
+                binding,
+                _req_str,
+                location,
+                sign=True,
+                sigalg=kwargs["sign_alg"],
+                relay_state=relay_state,
+            )
+
+            if self.sp.config.getattr("allow_unsolicited", "sp") is False:
+                if authn_req.id in self.outstanding_queries:
+                    errmsg = "Request with duplicate id {}".format(
+                        authn_req.id)
+                    logger.debug(errmsg)
+                    raise SATOSAAuthenticationError(context.state, errmsg)
+                self.outstanding_queries[authn_req.id] = authn_req_signed
+
+            context.state[self.name] = {"relay_state": relay_state}
+            # these will give the way to check compliances between the req and resp
+            context.state["req_args"] = {"id": authn_req.id}
+
+            logger.info(f"SAMLRequest: {ht_args}")
+            return make_saml_response(binding, ht_args)
+
+        except Exception as exc:
+            logger.debug("Failed to construct the AuthnRequest for state")
+            raise SATOSAAuthenticationError(
+                context.state, "Failed to construct the AuthnRequest"
+            ) from exc
+
+    def handle_error(
+        self,
+        message: str,
+        troubleshoot: str = "",
+        err="",
+        template_path="templates",
+        error_template="spid_login_error.html",
+    ):
+        """
+        Todo: Jinja2 tempalte loader and rendering :)
+        """
+        logger.error(f"Failed to parse authn request: {message} {err}")
+        result = self.error_page.render(
+            {"message": message, "troubleshoot": troubleshoot}
+        )
+        # the raw way :)
+        # msg = (
+        # f'<b>{message}</b><br>'
+        # f'{troubleshoot}'
+        # )
+        # result = text_type(msg).encode('utf-8')
+        return Response(result, content="text/html; charset=utf8", status="403")
+
+    def handle_spid_anomaly(self, err_number, err):
+        return self.handle_error(**SPID_ANOMALIES[int(err_number)])
+
+    def authn_response(self, context, binding):
+        """
+        Endpoint for the idp response
+        :type context: satosa.context,Context
+        :type binding: str
+        :rtype: satosa.response.Response
+
+        :param context: The current context
+        :param binding: The saml binding type
+        :return: response
+        """
+        if not context.request["SAMLResponse"]:
+            logger.debug("Missing Response for state")
+            raise SATOSAAuthenticationError(context.state, "Missing Response")
+
+        try:
+            authn_response = self.sp.parse_authn_request_response(
+                context.request["SAMLResponse"],
+                binding,
+                outstanding=self.outstanding_queries,
+            )
+        except StatusAuthnFailed as err:
+            erdict = re.search(r"ErrorCode nr(?P<err_code>\d+)", str(err))
+            if erdict:
+                return self.handle_spid_anomaly(erdict.groupdict()["err_code"], err)
+            else:
+                return self.handle_error(
+                    **{
+                        "err": err,
+                        "message": "Autenticazione fallita",
+                        "troubleshoot": (
+                            "Anomalia riscontrata durante la fase di Autenticazione. "
+                            f"{_TROUBLESHOOT_MSG}"
+                        ),
+                    }
+                )
+        except SignatureError as err:
+            return self.handle_error(
+                **{
+                    "err": err,
+                    "message": "Autenticazione fallita",
+                    "troubleshoot": (
+                        "La firma digitale della risposta ottenuta "
+                        f"non risulta essere corretta. {_TROUBLESHOOT_MSG}"
+                    ),
+                }
+            )
+        except Exception as err:
+            return self.handle_error(
+                **{
+                    "err": err,
+                    "message": "Anomalia riscontrata nel processo di Autenticazione",
+                    "troubleshoot": _TROUBLESHOOT_MSG,
+                }
+            )
+
+        if self.sp.config.getattr("allow_unsolicited", "sp") is False:
+            req_id = authn_response.in_response_to
+            if req_id not in self.outstanding_queries:
+                errmsg = ("No request with id: {}".format(req_id),)
+                logger.debug(errmsg)
+                return self.handle_error(
+                    **{"message": errmsg, "troubleshoot": _TROUBLESHOOT_MSG}
+                )
+            del self.outstanding_queries[req_id]
+
+        # Context validation
+        if not context.state.get(self.name):
+            _msg = f"context.state[self.name] KeyError: where self.name is {self.name}"
+            logger.error(_msg)
+            return self.handle_error(
+                **{"message": _msg, "troubleshoot": _TROUBLESHOOT_MSG}
+            )
+        # check if the relay_state matches the cookie state
+        if context.state[self.name]["relay_state"] != context.request["RelayState"]:
+            _msg = "State did not match relay state for state"
+            return self.handle_error(
+                **{"message": _msg, "troubleshoot": _TROUBLESHOOT_MSG}
+            )
+
+        # Spid and SAML2 additional tests
+        _sp_config = self.config["sp_config"]
+        accepted_time_diff = _sp_config["accepted_time_diff"]
+        recipient = _sp_config["service"]["sp"]["endpoints"][
+            "assertion_consumer_service"
+        ][0][0]
+        authn_context_classref = self.config["acr_mapping"][""]
+
+        issuer = authn_response.response.issuer
+
+        # this will get the entity name in state
+        if len(context.state.keys()) < 2:
+            _msg = "Inconsistent context.state"
+            return self.handle_error(
+                **{"message": _msg, "troubleshoot": _TROUBLESHOOT_MSG}
+            )
+
+        list(context.state.keys())[1]
+        # deprecated
+        # if not context.state.get('Saml2IDP'):
+        # _msg = "context.state['Saml2IDP'] KeyError"
+        # logger.error(_msg)
+        # raise SATOSAStateError(context.state, "State without Saml2IDP")
+        in_response_to = context.state["req_args"]["id"]
+
+        # some debug
+        if authn_response.ava:
+            logging.debug(
+                f"Attributes to {authn_response.return_addrs} "
+                f"in_response_to {authn_response.in_response_to}: "
+                f'{",".join(authn_response.ava.keys())}'
+            )
+
+        validator = Saml2ResponseValidator(
+            authn_response=authn_response.xmlstr,
+            recipient=recipient,
+            in_response_to=in_response_to,
+            accepted_time_diff=accepted_time_diff,
+            authn_context_class_ref=authn_context_classref,
+            return_addrs=authn_response.return_addrs,
+            allowed_acrs=self.config["spid_allowed_acrs"],
+        )
+        try:
+            validator.run()
+        except Exception as e:
+            logger.error(e)
+            return self.handle_error(e)
+
+        context.decorate(Context.KEY_BACKEND_METADATA_STORE, self.sp.metadata)
+        if self.config.get(SAMLBackend.KEY_MEMORIZE_IDP):
+            issuer = authn_response.response.issuer.text.strip()
+            context.state[Context.KEY_MEMORIZED_IDP] = issuer
+        context.state.pop(self.name, None)
+        context.state.pop(Context.KEY_FORCE_AUTHN, None)
+
+        logger.info(f"SAMLResponse{authn_response.xmlstr}")
+        return self.auth_callback_func(
+            context, self._translate_response(authn_response, context.state)
+        )
diff --git a/example/metadata/idp/cie-production.xml b/example/metadata/idp/cie-production.xml
new file mode 100644
index 00000000..82de355f
--- /dev/null
+++ b/example/metadata/idp/cie-production.xml
@@ -0,0 +1,168 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+     This is example metadata only. Do *NOT* supply it as is without review,
+     and do *NOT* provide it in real time to your partners.
+
+     This metadata is not dynamic - it will not change as your configuration changes.
+-->
+<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:xml="http://www.w3.org/XML/1998/namespace" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" entityID="https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SSO">
+
+    <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
+
+        <Extensions>
+            <shibmd:Scope regexp="false">gov.it</shibmd:Scope>
+<!--
+    Fill in the details for your IdP here 
+
+            <mdui:UIInfo>
+                <mdui:DisplayName xml:lang="en">A Name for the IdP at idserver.servizicie.interno.gov.it</mdui:DisplayName>
+                <mdui:Description xml:lang="en">Enter a description of your IdP at idserver.servizicie.interno.gov.it</mdui:Description>
+                <mdui:Logo height="80" width="80">https://idserver.servizicie.interno.gov.it/Path/To/Logo.png</mdui:Logo>
+            </mdui:UIInfo>
+-->
+        </Extensions>
+
+        <KeyDescriptor use="signing">
+            <ds:KeyInfo>
+                    <ds:X509Data>
+                        <ds:X509Certificate>
+MIIDdTCCAl2gAwIBAgIUU79XEfveueyClDtLkqUlSPZ2o8owDQYJKoZIhvcNAQEL
+BQAwLTErMCkGA1UEAwwiaWRzZXJ2ZXIuc2Vydml6aWNpZS5pbnRlcm5vLmdvdi5p
+dDAeFw0xODEwMTkwODM1MDVaFw0zODEwMTkwODM1MDVaMC0xKzApBgNVBAMMImlk
+c2VydmVyLnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXQwggEiMA0GCSqGSIb3DQEB
+AQUAA4IBDwAwggEKAoIBAQDHraj3iOTCIILTlOzicSEuFt03kKvQDqGWRd5o7s1W
+7SP2EtcTmg3xron/sbrLEL/eMUQV/Biz6J4pEGoFpMZQHGxOVypmO7Nc8pkFot7y
+UTApr6Ikuy4cUtbx0g5fkQLNb3upIg0Vg1jSnRXEvUCygr/9EeKCUOi/2ptmOVSL
+ad+dT7TiRsZTwY3FvRWcleDfyYwcIMgz5dLSNLMZqwzQZK1DzvWeD6aGtBKCYPRf
+tacHoESD+6bhukHZ6w95foRMJLOaBpkp+XfugFQioYvrM0AB1YQZ5DCQRhhc8jej
+wdY+bOB3eZ1lJY7Oannfu6XPW2fcknelyPt7PGf22rNfAgMBAAGjgYwwgYkwHQYD
+VR0OBBYEFK3Ah+Do3/zB9XjZ66i4biDpUEbAMGgGA1UdEQRhMF+CImlkc2VydmVy
+LnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXSGOWh0dHBzOi8vaWRzZXJ2ZXIuc2Vy
+dml6aWNpZS5pbnRlcm5vLmdvdi5pdC9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0B
+AQsFAAOCAQEAVtpn/s+lYVf42pAtdgJnGTaSIy8KxHeZobKNYNFEY/XTaZEt9QeV
+5efUMBVVhxKTTHN0046DR96WFYXs4PJ9Fpyq6Hmy3k/oUdmHJ1c2bwWF/nZ82CwO
+O081Yg0GBcfPEmKLUGOBK8T55ncW+RSZadvWTyhTtQhLUtLKcWyzKB5aS3kEE5LS
+zR8sw3owln9P41Mz+QtL3WeNESRHW0qoQkFotYXXW6Rvh69+GyzJLxvq2qd7D1qo
+JgOMrarshBKKPk+ABaLYoEf/cru4e0RDIp2mD0jkGOGDkn9XUl+3ddALq/osTki6
+CEawkhiZEo6ABEAjEWNkH9W3/ZzvJnWo6Q==
+                        </ds:X509Certificate>
+                    </ds:X509Data>
+            </ds:KeyInfo>
+
+        </KeyDescriptor>
+        <KeyDescriptor use="encryption">
+            <ds:KeyInfo>
+                    <ds:X509Data>
+                        <ds:X509Certificate>
+MIIDdTCCAl2gAwIBAgIUegfFpjtEsLaV0IL3qBEa0u81rGkwDQYJKoZIhvcNAQEL
+BQAwLTErMCkGA1UEAwwiaWRzZXJ2ZXIuc2Vydml6aWNpZS5pbnRlcm5vLmdvdi5p
+dDAeFw0xODEwMTkwODM1MDZaFw0zODEwMTkwODM1MDZaMC0xKzApBgNVBAMMImlk
+c2VydmVyLnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXQwggEiMA0GCSqGSIb3DQEB
+AQUAA4IBDwAwggEKAoIBAQCe9W63GohPUaNbsoluWsVWfmtIyAIufqpmzYS4TiBv
+E6l9LlDITsmShVBpiLPU4IDdvoPPBlDqgotofCnSjQxRhGky7tiy+pBObo13lN6d
+03GgXNPZqZ+vKJinf8AmNe2UZ1ZbuvUtgS6+vx6P52/KNKx6YuDNmR3lLDhKZVDb
+2wwR5qfsdnJIAORbJVWd8kI6GGhmrsmha7zARd0W+ueDtd/WLuAg3G7QWRocHPlP
+TN/dPUbKS4O0cnJx0M5UERQ12PIdy641ps6P1v2OatpfSmZp/IlDLKJj9O9V49LM
+nxF3VBJkTep2UQsQUc3rlelN2rYAlhURQQzRwpWO5WJvAgMBAAGjgYwwgYkwHQYD
+VR0OBBYEFAQDr+o8YMapC4lje9upfeiwmFdtMGgGA1UdEQRhMF+CImlkc2VydmVy
+LnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXSGOWh0dHBzOi8vaWRzZXJ2ZXIuc2Vy
+dml6aWNpZS5pbnRlcm5vLmdvdi5pdC9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0B
+AQsFAAOCAQEAb7gRYzTPEMQjQKiwI4/NdhzzaoKQjp2tu3UPZwsUHruyCbI+B/0k
+C2SaSBaAKGT66yN9bPY2Vj4FuxtYmLSZZnatydF19hSu+lExCySKt16GBJ+D5HN7
+OmVizRvJNE4+RF0bajpeXnMottLrcL5Ry/BivpxdnIQ9th2sMc7ev0IZtIGYCxGg
+c5SAJCz4zuCcNiPANHDPdoxYEQ9EV9PNAUx8q9tjAhoRRiT2ovqT+Dowqax0AVOP
+hRY5rA8WMccWAedO8iSSO8DTWomtoOKS9vjWrQxnsHaT8GXohC2OYgSdKsBchvjS
+i1RIVkrqHoSHIK2XQapkl8YmD75JjrGNNA==
+                        </ds:X509Certificate>
+                    </ds:X509Data>
+            </ds:KeyInfo>
+
+        </KeyDescriptor>
+
+        <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idserver.servizicie.interno.gov.it:443/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
+        <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idserver.servizicie.interno.gov.it:443/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+
+        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/Redirect/SLO"/>
+        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SLO"/>
+        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST-SimpleSign/SLO"/>
+        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idserver.servizicie.interno.gov.it:8443/idp/profile/SAML2/SOAP/SLO"/>
+
+        <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://idserver.servizicie.interno.gov.it/idp/profile/Shibboleth/SSO"/>
+        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SSO"/>
+        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST-SimpleSign/SSO"/>
+        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/Redirect/SSO"/>
+
+    </IDPSSODescriptor>
+
+
+    <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
+
+        <Extensions>
+            <shibmd:Scope regexp="false">gov.it</shibmd:Scope>
+        </Extensions>
+
+
+        <KeyDescriptor use="signing">
+            <ds:KeyInfo>
+                    <ds:X509Data>
+                        <ds:X509Certificate>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+                        </ds:X509Certificate>
+                    </ds:X509Data>
+            </ds:KeyInfo>
+
+        </KeyDescriptor>
+        <KeyDescriptor use="encryption">
+            <ds:KeyInfo>
+                    <ds:X509Data>
+                        <ds:X509Certificate>
+MIIDdTCCAl2gAwIBAgIUegfFpjtEsLaV0IL3qBEa0u81rGkwDQYJKoZIhvcNAQEL
+BQAwLTErMCkGA1UEAwwiaWRzZXJ2ZXIuc2Vydml6aWNpZS5pbnRlcm5vLmdvdi5p
+dDAeFw0xODEwMTkwODM1MDZaFw0zODEwMTkwODM1MDZaMC0xKzApBgNVBAMMImlk
+c2VydmVyLnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXQwggEiMA0GCSqGSIb3DQEB
+AQUAA4IBDwAwggEKAoIBAQCe9W63GohPUaNbsoluWsVWfmtIyAIufqpmzYS4TiBv
+E6l9LlDITsmShVBpiLPU4IDdvoPPBlDqgotofCnSjQxRhGky7tiy+pBObo13lN6d
+03GgXNPZqZ+vKJinf8AmNe2UZ1ZbuvUtgS6+vx6P52/KNKx6YuDNmR3lLDhKZVDb
+2wwR5qfsdnJIAORbJVWd8kI6GGhmrsmha7zARd0W+ueDtd/WLuAg3G7QWRocHPlP
+TN/dPUbKS4O0cnJx0M5UERQ12PIdy641ps6P1v2OatpfSmZp/IlDLKJj9O9V49LM
+nxF3VBJkTep2UQsQUc3rlelN2rYAlhURQQzRwpWO5WJvAgMBAAGjgYwwgYkwHQYD
+VR0OBBYEFAQDr+o8YMapC4lje9upfeiwmFdtMGgGA1UdEQRhMF+CImlkc2VydmVy
+LnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXSGOWh0dHBzOi8vaWRzZXJ2ZXIuc2Vy
+dml6aWNpZS5pbnRlcm5vLmdvdi5pdC9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0B
+AQsFAAOCAQEAb7gRYzTPEMQjQKiwI4/NdhzzaoKQjp2tu3UPZwsUHruyCbI+B/0k
+C2SaSBaAKGT66yN9bPY2Vj4FuxtYmLSZZnatydF19hSu+lExCySKt16GBJ+D5HN7
+OmVizRvJNE4+RF0bajpeXnMottLrcL5Ry/BivpxdnIQ9th2sMc7ev0IZtIGYCxGg
+c5SAJCz4zuCcNiPANHDPdoxYEQ9EV9PNAUx8q9tjAhoRRiT2ovqT+Dowqax0AVOP
+hRY5rA8WMccWAedO8iSSO8DTWomtoOKS9vjWrQxnsHaT8GXohC2OYgSdKsBchvjS
+i1RIVkrqHoSHIK2XQapkl8YmD75JjrGNNA==
+                        </ds:X509Certificate>
+                    </ds:X509Data>
+            </ds:KeyInfo>
+
+        </KeyDescriptor>
+
+        <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://idserver.servizicie.interno.gov.it:443/idp/profile/SAML1/SOAP/AttributeQuery"/>
+        <!-- <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://idserver.servizicie.interno.gov.it:8443/idp/profile/SAML2/SOAP/AttributeQuery"/> -->
+        <!-- If you uncomment the above you should add urn:oasis:names:tc:SAML:2.0:protocol to the protocolSupportEnumeration above -->
+
+    </AttributeAuthorityDescriptor>
+
+</EntityDescriptor>
\ No newline at end of file
diff --git a/example/metadata/idp/cie-test.xml b/example/metadata/idp/cie-test.xml
new file mode 100644
index 00000000..80d601b7
--- /dev/null
+++ b/example/metadata/idp/cie-test.xml
@@ -0,0 +1,170 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+     This is example metadata only. Do *NOT* supply it as is without review,
+     and do *NOT* provide it in real time to your partners.
+
+     This metadata is not dynamic - it will not change as your configuration changes.
+-->
+<EntityDescriptor xmlns="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:shibmd="urn:mace:shibboleth:metadata:1.0" xmlns:xml="http://www.w3.org/XML/1998/namespace" xmlns:mdui="urn:oasis:names:tc:SAML:metadata:ui" entityID="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SSO">
+
+    <IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol urn:oasis:names:tc:SAML:1.1:protocol urn:mace:shibboleth:1.0">
+
+        <Extensions>
+            <shibmd:Scope regexp="false">gov.it</shibmd:Scope>
+            <!--
+                Fill in the details for your IdP here
+
+                        <mdui:UIInfo>
+                            <mdui:DisplayName xml:lang="en">A Name for the IdP at idserver.servizicie.interno.gov.it</mdui:DisplayName>
+                            <mdui:Description xml:lang="en">Enter a description of your IdP at idserver.servizicie.interno.gov.it</mdui:Description>
+                            <mdui:Logo height="80" width="80">https://idserver.servizicie.interno.gov.it/Path/To/Logo.png</mdui:Logo>
+                        </mdui:UIInfo>
+            -->
+        </Extensions>
+
+        <KeyDescriptor use="signing">
+            <ds:KeyInfo>
+                <ds:X509Data>
+                    <ds:X509Certificate>
+                        MIIDdTCCAl2gAwIBAgIUU79XEfveueyClDtLkqUlSPZ2o8owDQYJKoZIhvcNAQEL
+                        BQAwLTErMCkGA1UEAwwiaWRzZXJ2ZXIuc2Vydml6aWNpZS5pbnRlcm5vLmdvdi5p
+                        dDAeFw0xODEwMTkwODM1MDVaFw0zODEwMTkwODM1MDVaMC0xKzApBgNVBAMMImlk
+                        c2VydmVyLnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXQwggEiMA0GCSqGSIb3DQEB
+                        AQUAA4IBDwAwggEKAoIBAQDHraj3iOTCIILTlOzicSEuFt03kKvQDqGWRd5o7s1W
+                        7SP2EtcTmg3xron/sbrLEL/eMUQV/Biz6J4pEGoFpMZQHGxOVypmO7Nc8pkFot7y
+                        UTApr6Ikuy4cUtbx0g5fkQLNb3upIg0Vg1jSnRXEvUCygr/9EeKCUOi/2ptmOVSL
+                        ad+dT7TiRsZTwY3FvRWcleDfyYwcIMgz5dLSNLMZqwzQZK1DzvWeD6aGtBKCYPRf
+                        tacHoESD+6bhukHZ6w95foRMJLOaBpkp+XfugFQioYvrM0AB1YQZ5DCQRhhc8jej
+                        wdY+bOB3eZ1lJY7Oannfu6XPW2fcknelyPt7PGf22rNfAgMBAAGjgYwwgYkwHQYD
+                        VR0OBBYEFK3Ah+Do3/zB9XjZ66i4biDpUEbAMGgGA1UdEQRhMF+CImlkc2VydmVy
+                        LnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXSGOWh0dHBzOi8vaWRzZXJ2ZXIuc2Vy
+                        dml6aWNpZS5pbnRlcm5vLmdvdi5pdC9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0B
+                        AQsFAAOCAQEAVtpn/s+lYVf42pAtdgJnGTaSIy8KxHeZobKNYNFEY/XTaZEt9QeV
+                        5efUMBVVhxKTTHN0046DR96WFYXs4PJ9Fpyq6Hmy3k/oUdmHJ1c2bwWF/nZ82CwO
+                        O081Yg0GBcfPEmKLUGOBK8T55ncW+RSZadvWTyhTtQhLUtLKcWyzKB5aS3kEE5LS
+                        zR8sw3owln9P41Mz+QtL3WeNESRHW0qoQkFotYXXW6Rvh69+GyzJLxvq2qd7D1qo
+                        JgOMrarshBKKPk+ABaLYoEf/cru4e0RDIp2mD0jkGOGDkn9XUl+3ddALq/osTki6
+                        CEawkhiZEo6ABEAjEWNkH9W3/ZzvJnWo6Q==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+
+        </KeyDescriptor>
+        <KeyDescriptor use="encryption">
+            <ds:KeyInfo>
+                <ds:X509Data>
+                    <ds:X509Certificate>
+                        MIIDdTCCAl2gAwIBAgIUegfFpjtEsLaV0IL3qBEa0u81rGkwDQYJKoZIhvcNAQEL
+                        BQAwLTErMCkGA1UEAwwiaWRzZXJ2ZXIuc2Vydml6aWNpZS5pbnRlcm5vLmdvdi5p
+                        dDAeFw0xODEwMTkwODM1MDZaFw0zODEwMTkwODM1MDZaMC0xKzApBgNVBAMMImlk
+                        c2VydmVyLnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXQwggEiMA0GCSqGSIb3DQEB
+                        AQUAA4IBDwAwggEKAoIBAQCe9W63GohPUaNbsoluWsVWfmtIyAIufqpmzYS4TiBv
+                        E6l9LlDITsmShVBpiLPU4IDdvoPPBlDqgotofCnSjQxRhGky7tiy+pBObo13lN6d
+                        03GgXNPZqZ+vKJinf8AmNe2UZ1ZbuvUtgS6+vx6P52/KNKx6YuDNmR3lLDhKZVDb
+                        2wwR5qfsdnJIAORbJVWd8kI6GGhmrsmha7zARd0W+ueDtd/WLuAg3G7QWRocHPlP
+                        TN/dPUbKS4O0cnJx0M5UERQ12PIdy641ps6P1v2OatpfSmZp/IlDLKJj9O9V49LM
+                        nxF3VBJkTep2UQsQUc3rlelN2rYAlhURQQzRwpWO5WJvAgMBAAGjgYwwgYkwHQYD
+                        VR0OBBYEFAQDr+o8YMapC4lje9upfeiwmFdtMGgGA1UdEQRhMF+CImlkc2VydmVy
+                        LnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXSGOWh0dHBzOi8vaWRzZXJ2ZXIuc2Vy
+                        dml6aWNpZS5pbnRlcm5vLmdvdi5pdC9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0B
+                        AQsFAAOCAQEAb7gRYzTPEMQjQKiwI4/NdhzzaoKQjp2tu3UPZwsUHruyCbI+B/0k
+                        C2SaSBaAKGT66yN9bPY2Vj4FuxtYmLSZZnatydF19hSu+lExCySKt16GBJ+D5HN7
+                        OmVizRvJNE4+RF0bajpeXnMottLrcL5Ry/BivpxdnIQ9th2sMc7ev0IZtIGYCxGg
+                        c5SAJCz4zuCcNiPANHDPdoxYEQ9EV9PNAUx8q9tjAhoRRiT2ovqT+Dowqax0AVOP
+                        hRY5rA8WMccWAedO8iSSO8DTWomtoOKS9vjWrQxnsHaT8GXohC2OYgSdKsBchvjS
+                        i1RIVkrqHoSHIK2XQapkl8YmD75JjrGNNA==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+
+        </KeyDescriptor>
+
+        <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML1/SOAP/ArtifactResolution" index="1"/>
+        <ArtifactResolutionService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/SOAP/ArtifactResolution" index="2"/>
+
+        
+        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/Redirect/SLO"/>
+        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SLO"/>
+        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST-SimpleSign/SLO"/>
+        <SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/SOAP/SLO"/>
+       
+
+        <SingleSignOnService Binding="urn:mace:shibboleth:1.0:profiles:AuthnRequest" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/Shibboleth/SSO"/>
+        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SSO"/>
+        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST-SimpleSign" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST-SimpleSign/SSO"/>
+        <SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/Redirect/SSO"/>
+
+    </IDPSSODescriptor>
+
+
+    <AttributeAuthorityDescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:1.1:protocol">
+
+        <Extensions>
+            <shibmd:Scope regexp="false">gov.it</shibmd:Scope>
+        </Extensions>
+
+
+        <KeyDescriptor use="signing">
+            <ds:KeyInfo>
+                <ds:X509Data>
+                    <ds:X509Certificate>
+                        MIIDdTCCAl2gAwIBAgIUU79XEfveueyClDtLkqUlSPZ2o8owDQYJKoZIhvcNAQEL
+                        BQAwLTErMCkGA1UEAwwiaWRzZXJ2ZXIuc2Vydml6aWNpZS5pbnRlcm5vLmdvdi5p
+                        dDAeFw0xODEwMTkwODM1MDVaFw0zODEwMTkwODM1MDVaMC0xKzApBgNVBAMMImlk
+                        c2VydmVyLnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXQwggEiMA0GCSqGSIb3DQEB
+                        AQUAA4IBDwAwggEKAoIBAQDHraj3iOTCIILTlOzicSEuFt03kKvQDqGWRd5o7s1W
+                        7SP2EtcTmg3xron/sbrLEL/eMUQV/Biz6J4pEGoFpMZQHGxOVypmO7Nc8pkFot7y
+                        UTApr6Ikuy4cUtbx0g5fkQLNb3upIg0Vg1jSnRXEvUCygr/9EeKCUOi/2ptmOVSL
+                        ad+dT7TiRsZTwY3FvRWcleDfyYwcIMgz5dLSNLMZqwzQZK1DzvWeD6aGtBKCYPRf
+                        tacHoESD+6bhukHZ6w95foRMJLOaBpkp+XfugFQioYvrM0AB1YQZ5DCQRhhc8jej
+                        wdY+bOB3eZ1lJY7Oannfu6XPW2fcknelyPt7PGf22rNfAgMBAAGjgYwwgYkwHQYD
+                        VR0OBBYEFK3Ah+Do3/zB9XjZ66i4biDpUEbAMGgGA1UdEQRhMF+CImlkc2VydmVy
+                        LnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXSGOWh0dHBzOi8vaWRzZXJ2ZXIuc2Vy
+                        dml6aWNpZS5pbnRlcm5vLmdvdi5pdC9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0B
+                        AQsFAAOCAQEAVtpn/s+lYVf42pAtdgJnGTaSIy8KxHeZobKNYNFEY/XTaZEt9QeV
+                        5efUMBVVhxKTTHN0046DR96WFYXs4PJ9Fpyq6Hmy3k/oUdmHJ1c2bwWF/nZ82CwO
+                        O081Yg0GBcfPEmKLUGOBK8T55ncW+RSZadvWTyhTtQhLUtLKcWyzKB5aS3kEE5LS
+                        zR8sw3owln9P41Mz+QtL3WeNESRHW0qoQkFotYXXW6Rvh69+GyzJLxvq2qd7D1qo
+                        JgOMrarshBKKPk+ABaLYoEf/cru4e0RDIp2mD0jkGOGDkn9XUl+3ddALq/osTki6
+                        CEawkhiZEo6ABEAjEWNkH9W3/ZzvJnWo6Q==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+
+        </KeyDescriptor>
+        <KeyDescriptor use="encryption">
+            <ds:KeyInfo>
+                <ds:X509Data>
+                    <ds:X509Certificate>
+                        MIIDdTCCAl2gAwIBAgIUegfFpjtEsLaV0IL3qBEa0u81rGkwDQYJKoZIhvcNAQEL
+                        BQAwLTErMCkGA1UEAwwiaWRzZXJ2ZXIuc2Vydml6aWNpZS5pbnRlcm5vLmdvdi5p
+                        dDAeFw0xODEwMTkwODM1MDZaFw0zODEwMTkwODM1MDZaMC0xKzApBgNVBAMMImlk
+                        c2VydmVyLnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXQwggEiMA0GCSqGSIb3DQEB
+                        AQUAA4IBDwAwggEKAoIBAQCe9W63GohPUaNbsoluWsVWfmtIyAIufqpmzYS4TiBv
+                        E6l9LlDITsmShVBpiLPU4IDdvoPPBlDqgotofCnSjQxRhGky7tiy+pBObo13lN6d
+                        03GgXNPZqZ+vKJinf8AmNe2UZ1ZbuvUtgS6+vx6P52/KNKx6YuDNmR3lLDhKZVDb
+                        2wwR5qfsdnJIAORbJVWd8kI6GGhmrsmha7zARd0W+ueDtd/WLuAg3G7QWRocHPlP
+                        TN/dPUbKS4O0cnJx0M5UERQ12PIdy641ps6P1v2OatpfSmZp/IlDLKJj9O9V49LM
+                        nxF3VBJkTep2UQsQUc3rlelN2rYAlhURQQzRwpWO5WJvAgMBAAGjgYwwgYkwHQYD
+                        VR0OBBYEFAQDr+o8YMapC4lje9upfeiwmFdtMGgGA1UdEQRhMF+CImlkc2VydmVy
+                        LnNlcnZpemljaWUuaW50ZXJuby5nb3YuaXSGOWh0dHBzOi8vaWRzZXJ2ZXIuc2Vy
+                        dml6aWNpZS5pbnRlcm5vLmdvdi5pdC9pZHAvc2hpYmJvbGV0aDANBgkqhkiG9w0B
+                        AQsFAAOCAQEAb7gRYzTPEMQjQKiwI4/NdhzzaoKQjp2tu3UPZwsUHruyCbI+B/0k
+                        C2SaSBaAKGT66yN9bPY2Vj4FuxtYmLSZZnatydF19hSu+lExCySKt16GBJ+D5HN7
+                        OmVizRvJNE4+RF0bajpeXnMottLrcL5Ry/BivpxdnIQ9th2sMc7ev0IZtIGYCxGg
+                        c5SAJCz4zuCcNiPANHDPdoxYEQ9EV9PNAUx8q9tjAhoRRiT2ovqT+Dowqax0AVOP
+                        hRY5rA8WMccWAedO8iSSO8DTWomtoOKS9vjWrQxnsHaT8GXohC2OYgSdKsBchvjS
+                        i1RIVkrqHoSHIK2XQapkl8YmD75JjrGNNA==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+
+        </KeyDescriptor>
+
+        <AttributeService Binding="urn:oasis:names:tc:SAML:1.0:bindings:SOAP-binding" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML1/SOAP/AttributeQuery"/>
+        <!-- <AttributeService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/SOAP/AttributeQuery"/> -->
+        <!-- If you uncomment the above you should add urn:oasis:names:tc:SAML:2.0:protocol to the protocolSupportEnumeration above -->
+
+    </AttributeAuthorityDescriptor>
+
+</EntityDescriptor>
\ No newline at end of file
diff --git a/example/metadata/idp/spid-entities-idps.xml b/example/metadata/idp/spid-entities-idps.xml
index 7a18c3aa..8ca7ddc6 100644
--- a/example/metadata/idp/spid-entities-idps.xml
+++ b/example/metadata/idp/spid-entities-idps.xml
@@ -1,580 +1,637 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<md:EntitiesDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="_34aadd11-e3d9-4311-a410-4039de088446" Name="https://idps.spid.gov.it">
-    <ds:Signature>
-        <ds:SignedInfo>
-            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
-            <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
-            <ds:Reference URI="">
-                <ds:Transforms>
-                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
-                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
-                </ds:Transforms>
-                <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
-                <ds:DigestValue>51XpGIPUTLp04RQNldwbz/mP/hRo5pNRtGbbsin5V2E=</ds:DigestValue>
-            </ds:Reference>
-        </ds:SignedInfo>
-        <ds:SignatureValue>Lrk2gefTNfk5vnM8U3AyidG0R7cyKTM8zjPcxqtp0fA2sQVzxca/wIq0wAvNrFYO
-38y54GXxLD4owHObOOakzQj6WXzE0sE47+y+JUODDDcluWWyESVs7myV3azxbzmV
-/xtiS5XrqETHZwaRafuVO9X0A+x6Dl1RbYtcxQScQ7wsR7NoHVeTlmfeR3rFEI1E
-yC1cFRIpHd8oUFgp3NXNve2tqDg7uT0OXFbKHQLwOhxbTmzuJq+wrvaMDk2bLaAH
-QPrvUIRdZbphcRakT+jRRLOIOequWzQ5FdjhJIl6wNTiHud+/icCJe1L+EwNDqKF
-W/5u6Bo9PvHQYsZnjvi2wzrzO/s6cmOP69GM/Dj5umZq1mUbHRqHuGOMfexMiIiA
-dqySbaovs6MH2C/kNLQJBFiFVJ++iSVPg4z3dZlFX8yZ4jUDzM+G7JKGlfM+YPev
-9qNN1towY+VHX21uM+8ID2H/P13M4IOMZBe63k3ab6UyQqwiuqBJfWj5hcOVyo5f
-yXqD0OC15xOyFZ+ohPcvpACqsnSRidUIIrqF7FsG0GLmA3DcH7whrI7L3f5RGN4n
-GPZj4aBVc8hLFhbIpgA1+5cIJz2EZI+Y4AFH7kE9zgpiiohXXkJWvWU9Yi2b9pB2
-PRUr6rrM8DY9vJWX7QAxl2MjVVpvj2Pt533e7tpn4cU=</ds:SignatureValue>
-        <ds:KeyInfo>
-            <ds:KeyValue>
+<?xml version="1.0" encoding="UTF-8"?><md:EntitiesDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" ID="_f2d6f413-a14f-44a8-bf27-b305a079e619"><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><ds:Reference URI="#_f2d6f413-a14f-44a8-bf27-b305a079e619"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>DGqBFTE2vXevvnEALfWuMhgUFHF9rHamOm6NZOxwpEc=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>Gt574bHNDgGK6akH8VNEthrOcDVFUr25ET0Xq6G2dYSDy7zGelcdi7QWI+h+ExKbovW0oRNaixOcpTl/X790gQXLD2xzX4q+oxk77tHEjKFD/leJySS4MaP2kz1PZ1EZsBgY9r/rXV9MWozOvS1YrMMwqSTI1G4AkMGJVLWCkQ0lfHo/1eudI5rfFwcLUV/oaynK05lATJy8qVXmKrVqer1Y6R1PLXHmla1iCt9xMkeql+gWqjK5RjePP/G6q2mhAELNejN/Y2E+X12DLnh2JavHyDv24l5OPIkOUTrqnwoUvgtxJe34dLD9EsmPviJ9LwNMCh1eIdLKmUa0n5/Y9ZKceSfW/OuxzAkTvPmtbk8NlOVtgagKniD4VX8j2u9YTwJNgUwGCra1B+WEKv4mLJuwGSX081GZA3BPw0QHLygSuYwz4dEB/8D3g2LpcG2MMPBIHnEp3Lsfvh3twOSb1aomyT/R8j8HfaSzL5pjYP6HJ0zQZlIMX7AFC7c32N9seHrp1PfMJ9GRMLi5cFVF1WUp+uceqD6WHO5cwsZW3WP+jMlSLmooeHosjbzjJuLiJ1sxnqy5hGi0BTe0FcF/F6T48/03ukCxm8fxTot50D2fZzN2g/0NZi67mxFHEdz0hXWJRDYRrdPgVDI8Y061atMqHJn88u+xOCfKuMisU08=</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xs="http://www.w3.org/2001/XMLSchemainstance" ID="_gh3s48d19e23e85be40k4ab5ey331e7k4f04f73fb5" entityID="https://id.lepida.it/idp/shibboleth"><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+<ds:SignedInfo>
+<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+<ds:Reference URI="#_gh3s48d19e23e85be40k4ab5ey331e7k4f04f73fb5">
+<ds:Transforms>
+<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
+<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+</ds:Transforms>
+<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+<ds:DigestValue>lyHwpf6b8vJdgZVXPG8xrYzC8jokDKbonFVqrihWkTA=</ds:DigestValue>
+</ds:Reference>
+</ds:SignedInfo>
+<ds:SignatureValue>
+CTg66NygTYUtyiEG7InBnOe+naaAZcQCvPvcTN5G2M5I5hnqSNXgo9gd1ReBeVlL0pio4Vm5DX1R
+kAJCP1dx2OJHoR6oBhOezNwpXgk0J2fFadCSV906I0X/tpgiXK8kRV5DIqgqIdzz4iKIz3i8jGcI
+ILUTFFVxRgnyZvPFgEKfS9BK27p0ii6VA74c576S9vAleOy2PLue0qzNaqqbhFGV3CqTxrfothBt
+uboTxIozWFWrL0wwkBj6hdmNHWjbvUUrI/S7AYwC0Y7e1u22G+Ot9+5Cffy+1dr9nybRKfRWQy5k
+I5QmS+yKR6DEA9pq5PP/I2N/FsW5VRXg1Jt/XA==
+</ds:SignatureValue>
+<ds:KeyInfo>
+<ds:KeyValue>
 <ds:RSAKeyValue>
 <ds:Modulus>
-4b4eQp6d6zsUJSb6XOJAD2w1sDqe/hNWu4vI43Lbsmpi0PfuIZTaM+MdCVqBtVnF
-crjCITx3MJ9SbMw15zfrLEczJwt5+uX57VWO9EbTSPl8cIG8s7k94m7miewTYtYS
-G5uD9PX5NnaXtrxHNNwuuWkZlG58JJ/guqT9Wmvl6Z9pFOQ+NnDFjwAZ9qjDUenE
-dHK9iGV8OFK08597LiiGLc5CWGlaxi5BETkWilSTTPMJrgALSROm4b97fp/1EHDy
-aRWwhiSSQujnNHkWFTm9V2Z6qbsihG7tLpLRXrKeE2uTCCExiDqbsjLjP+z/2Ce2
-M7Rw9b71zJJ6HYe/HwVBTpON1AxzIMIep4uKx1AC3jsIeJ2ZEzF1L9Pz2mnt9dfA
-NFQ8/ZeKa8tP0Hqyzjwp4g0rX5q2yN9odtB8Xo7WPbNfzLu0xTW19KCwhEex2WEy
-Etm/0bQLKodCgvgp96eHwjNkU5n9wtqaAWbEmiLf/sae+7tapzHFwQpMIIDiKXSr
-rzsNhe1UHBx0dF+v7LVD1knuelmGTX23sgy+FuU6wLn6BUdz1yBJIc1r+VlFbJQw
-EjWRmqgldjEbhkRfUnVI/3i5NHyG/CO1QYVXiif00kPf4J2xlRHmHtaYGgNP34UG
-jKQyYmsqZybySX1/xl/HtjjNJqMf3bzIBCaREGacYK0=
+w4URGDE8Rg+oCM3uhbrLyhJJjq0abY4IhT5XIqFvY6p80ukXy0+vK1fXumDBVgfOPFEI0xMLzd+t
+ua0FqkAG2b0q5fuppI+9onHT5SpiT0V0oIpA4SSZZw04l/DM0w/rkH5wPE/exrUmgAx4A7TH3lud
+ihfRkdyywqTCmAxvz8kdkfOq7eh3EAO07k9pPfFoLIwhyoinU7adWftKLNQTWA25wsB1o/iSHSju
+dTrWnPikbeBBcr65E614MPxxNTY3GLtbVPve1BK7Cy3ngFLan0gFfNasD1XQKTXSiJBNwgLxf0xx
+6kKs3OAI4F1qnTROJ+6xvfS3vgFEQBGDCOnU3w==
 </ds:Modulus>
-<ds:Exponent>
-AQAB
-</ds:Exponent>
+<ds:Exponent>AQAB</ds:Exponent>
 </ds:RSAKeyValue>
 </ds:KeyValue>
-            <ds:X509Data>
-                <ds:X509Certificate>MIIHtjCCBZ6gAwIBAgIIbaXtgRcActMwDQYJKoZIhvcNAQENBQAwgcwxCzAJBgNV
+<ds:X509Data>
+<ds:X509Certificate>
+MIIDHDCCAgSgAwIBAgIVALisbudTRxLy3vlMcEDfaqr3iW89MA0GCSqGSIb3DQEBCwUAMBcxFTAT
+BgNVBAMMDGlkLmxlcGlkYS5pdDAeFw0xODA4MDgxMDIzMTJaFw0zODA4MDgxMDIzMTJaMBcxFTAT
+BgNVBAMMDGlkLmxlcGlkYS5pdDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMOFERgx
+PEYPqAjN7oW6y8oSSY6tGm2OCIU+VyKhb2OqfNLpF8tPrytX17pgwVYHzjxRCNMTC83frbmtBapA
+Btm9KuX7qaSPvaJx0+UqYk9FdKCKQOEkmWcNOJfwzNMP65B+cDxP3sa1JoAMeAO0x95bnYoX0ZHc
+ssKkwpgMb8/JHZHzqu3odxADtO5PaT3xaCyMIcqIp1O2nVn7SizUE1gNucLAdaP4kh0o7nU61pz4
+pG3gQXK+uROteDD8cTU2Nxi7W1T73tQSuwst54BS2p9IBXzWrA9V0Ck10oiQTcIC8X9McepCrNzg
+COBdap00Tifusb30t74BREARgwjp1N8CAwEAAaNfMF0wHQYDVR0OBBYEFL32/n7uf1Re14pW+gwG
+xZQHUZBCMDwGA1UdEQQ1MDOCDGlkLmxlcGlkYS5pdIYjaHR0cHM6Ly9pZC5sZXBpZGEuaXQvaWRw
+L3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAK80B1mEWKOTJkVJOJot2xU79Lhs1+domUSY
+QiA+tlS46IAfWwDZqI1llIjgL85n7qMsKFvYTIskInoG51Iezv2dTxlB6IMI8NPRfiFXo2s8NYjb
+zWyETbdXzCbDR0tKNke0TFE0oxunNfE5YRsmH4bPnjhPUjCSHX7wIhlNrLae3FjMQp1OLDs7HmJo
+3AhuAVmHCoG7QV/ly4ZHcVYx4F7HUsFg5uxNYjZbo+XMutJz4nZFOFE+uRzTwwfdR2sxny+ppkru
+TwIhEXyzknoiw1mGIEWZc6scnOAiwZeqTccUYVNHp+PSFs9SD8l+2PO4Oh8Y3dYT+5ojv+S6T7vy
+5xE=
+</ds:X509Certificate>
+</ds:X509Data>
+</ds:KeyInfo>
+</ds:Signature>
+
+	<md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+		<md:KeyDescriptor use="signing">
+			<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+				<ds:X509Data>
+					<ds:X509Certificate>
+MIIDHDCCAgSgAwIBAgIVALisbudTRxLy3vlMcEDfaqr3iW89MA0GCSqGSIb3DQEB CwUAMBcxFTATBgNVBAMMDGlkLmxlcGlkYS5pdDAeFw0xODA4MDgxMDIzMTJaFw0z ODA4MDgxMDIzMTJaMBcxFTATBgNVBAMMDGlkLmxlcGlkYS5pdDCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMOFERgxPEYPqAjN7oW6y8oSSY6tGm2OCIU+ VyKhb2OqfNLpF8tPrytX17pgwVYHzjxRCNMTC83frbmtBapABtm9KuX7qaSPvaJx 0+UqYk9FdKCKQOEkmWcNOJfwzNMP65B+cDxP3sa1JoAMeAO0x95bnYoX0ZHcssKk wpgMb8/JHZHzqu3odxADtO5PaT3xaCyMIcqIp1O2nVn7SizUE1gNucLAdaP4kh0o 7nU61pz4pG3gQXK+uROteDD8cTU2Nxi7W1T73tQSuwst54BS2p9IBXzWrA9V0Ck1 0oiQTcIC8X9McepCrNzgCOBdap00Tifusb30t74BREARgwjp1N8CAwEAAaNfMF0w HQYDVR0OBBYEFL32/n7uf1Re14pW+gwGxZQHUZBCMDwGA1UdEQQ1MDOCDGlkLmxl cGlkYS5pdIYjaHR0cHM6Ly9pZC5sZXBpZGEuaXQvaWRwL3NoaWJib2xldGgwDQYJ KoZIhvcNAQELBQADggEBAK80B1mEWKOTJkVJOJot2xU79Lhs1+domUSYQiA+tlS4 6IAfWwDZqI1llIjgL85n7qMsKFvYTIskInoG51Iezv2dTxlB6IMI8NPRfiFXo2s8 NYjbzWyETbdXzCbDR0tKNke0TFE0oxunNfE5YRsmH4bPnjhPUjCSHX7wIhlNrLae 3FjMQp1OLDs7HmJo3AhuAVmHCoG7QV/ly4ZHcVYx4F7HUsFg5uxNYjZbo+XMutJz 4nZFOFE+uRzTwwfdR2sxny+ppkruTwIhEXyzknoiw1mGIEWZc6scnOAiwZeqTccU YVNHp+PSFs9SD8l+2PO4Oh8Y3dYT+5ojv+S6T7vy5xE=
+					</ds:X509Certificate>
+				</ds:X509Data>
+			</ds:KeyInfo>
+		</md:KeyDescriptor>
+
+		<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://id.lepida.it/idp/profile/SAML2/POST/SLO"/>
+		<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://id.lepida.it/idp/profile/SAML2/Redirect/SLO"/>
+
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://id.lepida.it/idp/profile/SAML2/POST/SSO"/>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://id.lepida.it/idp/profile/SAML2/Redirect/SSO"/>
+
+		<saml2:Attribute FriendlyName="Codice identificativo SPID" Name="spidCode" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Nome" Name="name" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Cognome" Name="familyName" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Luogo di nascita" Name="placeOfBirth" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Provincia di nascita" Name="countyOfBirth" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Data di nascita" Name="dateOfBirth" xs:type="xs:date"/>
+		<saml2:Attribute FriendlyName="Sesso" Name="gender" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Ragione o denominazione sociale" Name="companyName" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Sede legale" Name="registeredOffice" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Codice fiscale" Name="fiscalNumber" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Partita IVA" Name="ivaCode" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Documento d'identità" Name="idCard" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Numero di telefono mobile" Name="mobilePhone" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Indirizzo di posta elettronica" Name="email" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Domicilio fisico" Name="address" xs:type="xs:string"/>
+		<saml2:Attribute FriendlyName="Data di scadenza identità" Name="expirationDate" xs:type="xs:date"/>
+		<saml2:Attribute FriendlyName="Domicilio digitale" Name="digitalAddress" xs:type="xs:string"/>
+	</md:IDPSSODescriptor>
+
+	<md:Organization>
+		<md:OrganizationName xml:lang="it">Lepida S.p.A.</md:OrganizationName>
+		<md:OrganizationDisplayName xml:lang="it">Lepida S.p.A.</md:OrganizationDisplayName>
+		<md:OrganizationURL xml:lang="it">https://www.lepida.it/</md:OrganizationURL>
+	</md:Organization>
+
+</md:EntityDescriptor><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_728bf4bfcbe0e793ad282a5ddde615c2" cacheDuration="P0Y0M30DT0H0M0.000S" entityID="https://identity.infocert.it"><Signature xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><Reference URI="#_728bf4bfcbe0e793ad282a5ddde615c2"><Transforms><Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><DigestValue>+Rel1FMcm+5efYiYZHG/xIlGJABOWQctvg7pKhGM/T8=</DigestValue></Reference></SignedInfo><SignatureValue>HF+4Mag3Cwf70kvV4mggud56QUdiVrhbWXZFMDhhT7UVXMnUg/bas1pcIAR6fZAg+1tInF8lq1Z1Ny0leBGm1uMEwJa1ct8CtT3yCT2kfrlTAFpHymBv3fELAgVkJE09OwWqs9RCGu2IzEWjtIZozEOiG6mSLRiAWRPMk3x6y1oRdsenLqmuvcR1wuRMoFjb+2SP6bxJWWZzzrzAadSX9qbnKKn9qOxFke8Tn5FqQUaeh62RFBregLPT4PlaZsnTOkrdPqjLFYuh6NtBU20Qh2oiH5TdyZ9mfTleJtp9RYwpo472zsXYMbbmDyDr3/wbzFIqZVHqos9PsM+GbXQpTQ==</SignatureValue><KeyInfo><X509Data><X509Certificate>MIIHEjCCBPqgAwIBAgIDAjcDMA0GCSqGSIb3DQEBCwUAMIGTMQswCQYDVQQGEwJJVDEYMBYGA1UECgwPSW5mb0NlcnQgUy5wLkEuMR8wHQYDVQQLDBZUcnVzdCBTZXJ2aWNlIFByb3ZpZGVyMRowGAYDVQRhDBFWQVRJVC0wNzk0NTIxMTAwNjEtMCsGA1UEAwwkSW5mb0NlcnQgQ2VydGlmaWNhdGlvbiBTZXJ2aWNlcyBDQSAzMB4XDTIyMDEwNTA4MjIxNFoXDTI1MDEwNTAwMDAwMFowgZkxGTAXBgNVBC4TEDIwMjI5OTk4NTBBNDk1NjAxFDASBgNVBAUTCzA3OTQ1MjExMDA2MR0wGwYDVQQDDBRpZGVudGl0eS5pbmZvY2VydC5pdDEUMBIGA1UECwwLSW5mb0NlcnQgSUQxFTATBgNVBAoMDEluZm9DZXJ0IFNwYTENMAsGA1UEBwwEUm9tYTELMAkGA1UEBhMCSVQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6s3Tl4j+1kVqyUh5evwd7+rLq7j3BcIfBV+xLKn1wPyJgHjy7UJ1khy4oF+1D38qLrz4WngJ68Rf6kSdo07bLHnS8N1iIpTm05yq600yHFaeW4qZWTgeklE+Ui7WVBxs31G7i9RZVEVHFrBPctzERgiHJ2MW0mvy2dlGszGlept4nVtQMc/CKvM1zs9W/te1opTWueZdHN5jFvW0GxEib5HufH6BMugwtX0nySBOvlE6bQSid7tkEiedDlBHUZ7Sb+f+S4D+ZZEEg3F6ikSgFxHwns2tB3YL9Xd09LfyNQF6K1PSGx2Gjq2+PsY1glmk6pt6AU2axOpfpkoe4mZbzAgMBAAGjggJlMIICYTATBgNVHSUEDDAKBggrBgEFBQcDAjCBoQYDVR0gBIGZMIGWMIGTBgYrTCQBAQgwgYgwQQYIKwYBBQUHAgIwNQwzU1NMLCBTTUlNRSBhbmQgRGlnaXRhbCBTaWduYXR1cmUgQ2xpZW50IENlcnRpZmljYXRlMEMGCCsGAQUFBwIBFjdodHRwOi8vd3d3LmZpcm1hLmluZm9jZXJ0Lml0L2RvY3VtZW50YXppb25lL21hbnVhbGkucGhwMG4GCCsGAQUFBwEBBGIwYDArBggrBgEFBQcwAYYfaHR0cDovL29jc3AuY3MuY2EzLmluZm9jZXJ0Lml0LzAxBggrBgEFBQcwAoYlaHR0cDovL2NlcnQuaW5mb2NlcnQuaXQvY2EzL2NzL0NBLmNydDCB5QYDVR0fBIHdMIHaMIHXoIHUoIHRhidodHRwOi8vY3JsLmluZm9jZXJ0Lml0L2NhMy9jcy9DUkwwMS5jcmyGgaVsZGFwOi8vbGRhcC5pbmZvY2VydC5pdC9jbiUzREluZm9DZXJ0JTIwQ2VydGlmaWNhdGlvbiUyMFNlcnZpY2VzJTIwQ0ElMjAzJTIwQ1JMMDEsb3UlM0RUcnVzdCUyMFNlcnZpY2UlMjBQcm92aWRlcixvJTNESU5GT0NFUlQlMjBTUEEsYyUzRElUP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3QwDgYDVR0PAQH/BAQDAgSwMB8GA1UdIwQYMBaAFHcRTQLy09eh1UxlX7hGRm7AIyq7MB0GA1UdDgQWBBSFWpMUOIyG+PVmscoEkrsnPp7JpTANBgkqhkiG9w0BAQsFAAOCAgEAB2AEW83IZGcHFrxtMkCdYaOvwFDO9AsN2uRwhK1a76GzA0LHetocUcUHOmamhnhha/Is3GRPsnmwzs63AAYEaFcS22Q9mE9e8HacxjPKCguy/6zkOg204+5jGtJAqmVI98o7gKY8utaosxRbz0CkugCO5YNRjLruj4sIbMp5BJoaA0TDTM91ilpLaGFDJeFSJQcUlJZI5OM2MrDn6/eRZxDechR+vV6rc0TwGFhTQnnYgoWg2U/CC3l46D77+R/RVPb/WW79hXTFLEnxHI5pCEZlmrWalPIBA129mIOsjXcVzjkBXfoDy1sXlziI/SMs0n3NJ/YqzUCu6bGOE5Hf++T67ynuSaQmPSYb7hbtyLm5qebg4yvowzMnfOZ/GVmoa+pKFnsMenDts7l0KgovvSspsLmMio9cYhMmaZ/uf0ckLnoeAkfjGkHufr3IbbW8Bk7s7BVN9HChw1q20WHcf95BJ4C9Yu/MVrTkJD1d3gWlfw0l9gm+gyhzCZAxT5DE2gspORygdNzzG0sLC/07Msx3+M1dPk5K5NOKaaqQBssaAPCCGnHIitCpvLlw2PoWQat88Twq4CrIscpnJ40Fa677BXDOrjHkriE7xccWhjV7dKSzEYv96ozFBPwc2Nb/1bMdCPXBfJ8dUsnAhSv15uJ6cb5UcpCpVoQ1QEW0KYU=</X509Certificate></X509Data></KeyInfo></Signature><md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><md:KeyDescriptor use="signing"><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:X509Data><ds:X509Certificate>MIIHEjCCBPqgAwIBAgIDAjcDMA0GCSqGSIb3DQEBCwUAMIGTMQswCQYDVQQGEwJJVDEYMBYGA1UECgwPSW5mb0NlcnQgUy5wLkEuMR8wHQYDVQQLDBZUcnVzdCBTZXJ2aWNlIFByb3ZpZGVyMRowGAYDVQRhDBFWQVRJVC0wNzk0NTIxMTAwNjEtMCsGA1UEAwwkSW5mb0NlcnQgQ2VydGlmaWNhdGlvbiBTZXJ2aWNlcyBDQSAzMB4XDTIyMDEwNTA4MjIxNFoXDTI1MDEwNTAwMDAwMFowgZkxGTAXBgNVBC4TEDIwMjI5OTk4NTBBNDk1NjAxFDASBgNVBAUTCzA3OTQ1MjExMDA2MR0wGwYDVQQDDBRpZGVudGl0eS5pbmZvY2VydC5pdDEUMBIGA1UECwwLSW5mb0NlcnQgSUQxFTATBgNVBAoMDEluZm9DZXJ0IFNwYTENMAsGA1UEBwwEUm9tYTELMAkGA1UEBhMCSVQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6s3Tl4j+1kVqyUh5evwd7+rLq7j3BcIfBV+xLKn1wPyJgHjy7UJ1khy4oF+1D38qLrz4WngJ68Rf6kSdo07bLHnS8N1iIpTm05yq600yHFaeW4qZWTgeklE+Ui7WVBxs31G7i9RZVEVHFrBPctzERgiHJ2MW0mvy2dlGszGlept4nVtQMc/CKvM1zs9W/te1opTWueZdHN5jFvW0GxEib5HufH6BMugwtX0nySBOvlE6bQSid7tkEiedDlBHUZ7Sb+f+S4D+ZZEEg3F6ikSgFxHwns2tB3YL9Xd09LfyNQF6K1PSGx2Gjq2+PsY1glmk6pt6AU2axOpfpkoe4mZbzAgMBAAGjggJlMIICYTATBgNVHSUEDDAKBggrBgEFBQcDAjCBoQYDVR0gBIGZMIGWMIGTBgYrTCQBAQgwgYgwQQYIKwYBBQUHAgIwNQwzU1NMLCBTTUlNRSBhbmQgRGlnaXRhbCBTaWduYXR1cmUgQ2xpZW50IENlcnRpZmljYXRlMEMGCCsGAQUFBwIBFjdodHRwOi8vd3d3LmZpcm1hLmluZm9jZXJ0Lml0L2RvY3VtZW50YXppb25lL21hbnVhbGkucGhwMG4GCCsGAQUFBwEBBGIwYDArBggrBgEFBQcwAYYfaHR0cDovL29jc3AuY3MuY2EzLmluZm9jZXJ0Lml0LzAxBggrBgEFBQcwAoYlaHR0cDovL2NlcnQuaW5mb2NlcnQuaXQvY2EzL2NzL0NBLmNydDCB5QYDVR0fBIHdMIHaMIHXoIHUoIHRhidodHRwOi8vY3JsLmluZm9jZXJ0Lml0L2NhMy9jcy9DUkwwMS5jcmyGgaVsZGFwOi8vbGRhcC5pbmZvY2VydC5pdC9jbiUzREluZm9DZXJ0JTIwQ2VydGlmaWNhdGlvbiUyMFNlcnZpY2VzJTIwQ0ElMjAzJTIwQ1JMMDEsb3UlM0RUcnVzdCUyMFNlcnZpY2UlMjBQcm92aWRlcixvJTNESU5GT0NFUlQlMjBTUEEsYyUzRElUP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3QwDgYDVR0PAQH/BAQDAgSwMB8GA1UdIwQYMBaAFHcRTQLy09eh1UxlX7hGRm7AIyq7MB0GA1UdDgQWBBSFWpMUOIyG+PVmscoEkrsnPp7JpTANBgkqhkiG9w0BAQsFAAOCAgEAB2AEW83IZGcHFrxtMkCdYaOvwFDO9AsN2uRwhK1a76GzA0LHetocUcUHOmamhnhha/Is3GRPsnmwzs63AAYEaFcS22Q9mE9e8HacxjPKCguy/6zkOg204+5jGtJAqmVI98o7gKY8utaosxRbz0CkugCO5YNRjLruj4sIbMp5BJoaA0TDTM91ilpLaGFDJeFSJQcUlJZI5OM2MrDn6/eRZxDechR+vV6rc0TwGFhTQnnYgoWg2U/CC3l46D77+R/RVPb/WW79hXTFLEnxHI5pCEZlmrWalPIBA129mIOsjXcVzjkBXfoDy1sXlziI/SMs0n3NJ/YqzUCu6bGOE5Hf++T67ynuSaQmPSYb7hbtyLm5qebg4yvowzMnfOZ/GVmoa+pKFnsMenDts7l0KgovvSspsLmMio9cYhMmaZ/uf0ckLnoeAkfjGkHufr3IbbW8Bk7s7BVN9HChw1q20WHcf95BJ4C9Yu/MVrTkJD1d3gWlfw0l9gm+gyhzCZAxT5DE2gspORygdNzzG0sLC/07Msx3+M1dPk5K5NOKaaqQBssaAPCCGnHIitCpvLlw2PoWQat88Twq4CrIscpnJ40Fa677BXDOrjHkriE7xccWhjV7dKSzEYv96ozFBPwc2Nb/1bMdCPXBfJ8dUsnAhSv15uJ6cb5UcpCpVoQ1QEW0KYU=</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://identity.infocert.it/spid/samlslo" ResponseLocation="https://identity.infocert.it/spid/samlslo/response"/><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity.infocert.it/spid/samlslo" ResponseLocation="https://identity.infocert.it/spid/samlslo/response"/><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://identity.infocert.it/spid/samlslo/soap"/><md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat><md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://identity.infocert.it/spid/samlsso"/><md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity.infocert.it/spid/samlsso"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio fisico" Name="address"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Ragione o denominazione sociale" Name="companyName"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia di nascita" Name="countyOfBirth"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di nascita" Name="dateOfBirth"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio digitale" Name="digitalAddress"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo di posta elettronica" Name="email"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di scadenza identita" Name="expirationDate"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Cognome" Name="familyName"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice fiscale" Name="fiscalNumber"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sesso" Name="gender"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Documento d'identita" Name="idCard"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Partita IVA" Name="ivaCode"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Numero di telefono mobile" Name="mobilePhone"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nome" Name="name"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Luogo di nascita" Name="placeOfBirth"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sede legale" Name="registeredOffice"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice identificativo SPID" Name="spidCode"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Tipologia domicilio fisico" Name="domicileAddressType"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo domicilio fisico" Name="domicileStreetAddress"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nr. Civico domicilio fisico" Name="domicileHouseNumber"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="CAP domicilio fisico" Name="domicilePostalCode"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Comune domicilio fisico" Name="domicileMunicipality"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia domicilio fisico" Name="domicileProvince"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nazione domicilio fisico" Name="domicileNation"/></md:IDPSSODescriptor><md:Organization><md:OrganizationName xml:lang="it">InfoCert S.p.A.</md:OrganizationName><md:OrganizationName xml:lang="en">InfoCert S.p.A.</md:OrganizationName><md:OrganizationName xml:lang="fr">InfoCert S.p.A.</md:OrganizationName><md:OrganizationName xml:lang="de">InfoCert S.p.A.</md:OrganizationName><md:OrganizationDisplayName xml:lang="it">InfoCert S.p.A.</md:OrganizationDisplayName><md:OrganizationDisplayName xml:lang="en">InfoCert S.p.A.</md:OrganizationDisplayName><md:OrganizationDisplayName xml:lang="fr">InfoCert S.p.A.</md:OrganizationDisplayName><md:OrganizationDisplayName xml:lang="de">InfoCert S.p.A.</md:OrganizationDisplayName><md:OrganizationURL xml:lang="it">https://www.infocert.it</md:OrganizationURL><md:OrganizationURL xml:lang="en">https://www.infocert.it/international/?lang=en</md:OrganizationURL><md:OrganizationURL xml:lang="fr">https://www.infocert.it/international/?lang=fr</md:OrganizationURL><md:OrganizationURL xml:lang="de">https://www.infocert.it/international/?lang=de</md:OrganizationURL></md:Organization></md:EntityDescriptor><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" entityID="https://identity.sieltecloud.it" ID="pfx6154f333-3b24-1871-ad15-3f5c9c007132"><ds:Signature>
+  <ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+    <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+  <ds:Reference URI="#pfx6154f333-3b24-1871-ad15-3f5c9c007132"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>edFgXK6BXmGkVRK5oLlYHviWEP7AGP1Hr/dJvcP26c4=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>t0hwmcoUkIuUbRHoSZlXGTwq0g4OjHIhR1xaAUPX4IysE1LUm5L4Atif8hlMkuSjtJ5rtD2yXkIjpkXcxU5Ifq+shCUsPs0+36dFMI8DVZUdqK7E2QKiNMDAtjzd77SgM2HO3tmP4NLH+P7MZrSAfsVHd02NyR9lObHWfSvlun+xiZC9WEQOiklQ2K/fXZ6K8VwynqkufHpDZSCG9swYT6NdpKoslJlTU6+guNkrwh3YSwszYNFywHIf7hYjfLX6ZeY0VxteMa1zvC3bYVSDNtS+awT3Xatl+uWa4vuXJOzxOMS1//hEUF0Sfx3uYrHMCMp5sfShEXIYzFufyDHFuQ==</ds:SignatureValue>
+<ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDczCCAlugAwIBAgIJAMsX0iEKQM6xMA0GCSqGSIb3DQEBCwUAMFAxCzAJBgNVBAYTAklUMQ4wDAYDVQQIDAVJdGFseTEgMB4GA1UEBwwXU2FuIEdyZWdvcmlvIGRpIENhdGFuaWExDzANBgNVBAoMBlNpZWx0ZTAeFw0xNTEyMTQwODE0MTVaFw0yNTEyMTMwODE0MTVaMFAxCzAJBgNVBAYTAklUMQ4wDAYDVQQIDAVJdGFseTEgMB4GA1UEBwwXU2FuIEdyZWdvcmlvIGRpIENhdGFuaWExDzANBgNVBAoMBlNpZWx0ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANIRlOjM/tS9V9jYjJreqZSctuYriLfPTDgX2XdhWEbMpMpwA9p0bsbLQoC1gP0piLO+qbCsIh9+boPfb4/dLIA7E+Vmm5/+evOtzvjfHG4oXjZK6jo08QwkVV8Bm1jkakJPVZ57QFbyDSr+uBbIMY7CjA2LdgnIIwKN/kSfFhrZUMJ6ZxwegM100X5psfNPSV9WUtgHsvqlIlvydPo2rMm21sg+2d3Vtg8DthNSYRLqgazCc0NTsigrH7niSbJCO0nq/svMX2rSFdh5GFK7/pxT+c3OFWqIR8r+RX4qW+auJqkbTuNRwxV22Sm6r69ZJwV0WspvsVJi+FYqiyoWhgUCAwEAAaNQME4wHQYDVR0OBBYEFCUx063GwUhEFDllwCBe/+jdeW+XMB8GA1UdIwQYMBaAFCUx063GwUhEFDllwCBe/+jdeW+XMAwGA1UdEwQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBADF94c3JwyBM86QBLeoUZxRYKPniba8B39FfJk0pb+LejKfZMvspOrOFgYQQ9UrS8IFkBX9Xr7/tjRbr2cPwZNjrEZhoq+NfcE09bnaWTyEl1IEKK8TWOupJj9UNVpYXX0LfIRrMwNEzAPQykOaqPOnyHxOCPTY957xXSo3jXOyvugtvPHbd+iliAzUoPm1tgiTKWS+EkQ/e22eFv5NEyT+oHiKovrQ+voPWOIvJVMjiTyxRic8fEnI9zzV0SxWvFvty77wgcYbeEuFZa3iidhojUge8o1uY/JUyQjFxcvvfAgWSIZwdHiNyWaAgwzLPmPCPsvBdR3xrlcDg/9Bd3D0=</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature>
+  <md:IDPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" WantAuthnRequestsSigned="true">
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:X509Data>
+          <ds:X509Certificate>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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:KeyDescriptor use="encryption">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:X509Data>
+          <ds:X509Certificate>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</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://identity.sieltecloud.it/simplesaml/saml2/idp/SLS.php"/>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity.sieltecloud.it/simplesaml/saml2/idp/SLS.php"/>
+    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://identity.sieltecloud.it/simplesaml/saml2/idp/SSO.php"/>
+    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity.sieltecloud.it/simplesaml/saml2/idp/SSO.php"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="familyName"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="name"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="spidCode"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="fiscalNumber"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="gender"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="dateOfBirth"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="placeOfBirth"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="companyName"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="registeredOffice"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="ivaCode"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="idCard"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="mobilePhone"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="email"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="address"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="digitalAddress"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="expirationDate"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileStreetAddress"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicilePostalCode"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileMunicipality"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileProvince"/>
+    <saml:Attribute xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileNation"/>
+  </md:IDPSSODescriptor>
+  <md:Organization>
+    <md:OrganizationName xml:lang="en">Sielte S.p.A.</md:OrganizationName>
+    <md:OrganizationName xml:lang="it">Sielte S.p.A.</md:OrganizationName>
+    <md:OrganizationDisplayName xml:lang="en">http://www.sielte.it</md:OrganizationDisplayName>
+    <md:OrganizationDisplayName xml:lang="it">http://www.sielte.it</md:OrganizationDisplayName>
+    <md:OrganizationURL xml:lang="en">http://www.sielte.it</md:OrganizationURL>
+    <md:OrganizationURL xml:lang="it">http://www.sielte.it</md:OrganizationURL>
+  </md:Organization>
+</md:EntityDescriptor><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchemainstance" ID="_pfx8cdfef6c-7dff-4e1c-a9eb-2c51cac9d137" entityID="https://idp.namirialtsp.com/idp"><ds:Signature>
+<ds:SignedInfo>
+<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+<ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+<ds:Reference URI="#_pfx8cdfef6c-7dff-4e1c-a9eb-2c51cac9d137">
+<ds:Transforms>
+<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
+<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+</ds:Transforms>
+<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+<ds:DigestValue>VSNgcTZzWAf58kcx//rTdi93mS2RuHf9xvsQBeGPI2c=</ds:DigestValue>
+</ds:Reference>
+</ds:SignedInfo>
+<ds:SignatureValue>
+mOFXOtItjlEqUoyt8sga600DFccdCGkDyVrLkqOS5KyhUPSgbOYX0z5q3SG8vYbLYNSKcobpuPVy
+UDagVB69ROzDzj/1kk3/dIqr0/cywYreiLJTTBFh5NNXKbKJsU+h/ODI3B5OPZbKTMiTvf/HJRgn
+5VyROfaJtQJPiQQ/K5CnVfsafIgh9pG52hbq4o/GsC1enIPDBh2B2anrTIaW7bpMcXIdHdLs5oRK
+LCVraIgQO5NzU8cNc6SXztRuUFzD0HNeyUqCVXt6CpKzw+2kLkBxnxgzXZae4v97Voo3QgO6i+6f
+KzeU0xnt5ITl288DpQUpTghMHnozcJ4J8InziA==
+</ds:SignatureValue>
+<ds:KeyInfo>
+<ds:KeyValue>
+<ds:RSAKeyValue>
+<ds:Modulus>
+valuo+O493cRZIutqyV3Y7q6/avPAmbWL4w502HaGm6nECkl/TgQyeD7px4Drcd9ArW6ry7+m282
+m66qOlagmmhJOAbEVQni8EpV/JCuKZ3gLQSOxHBdJB87fNnooLp3sU/cmiPds0rmEniRRdwq4KcL
+xGbNt+hZ/OooJ/sPar2JgeXtIKSsQXOSNEV4o/gwJOufnMql3iixENGUIo+tUdO+ROskTl6PlG40
+9HSlHOnGDFLDLUqpASMwmBcfI4KA9QKzXP2OU8knRnNnsjlDPez84tizvK7exfefSGMbg7lH7Q43
+ESndweAxsKhLNPyyGA03apNgqs6suB4bEJhlyQ==
+</ds:Modulus>
+<ds:Exponent>AQAB</ds:Exponent>
+</ds:RSAKeyValue>
+</ds:KeyValue>
+<ds:X509Data>
+<ds:X509Certificate>
+MIIISTCCBjGgAwIBAgIIdhWoGwd6zoowDQYJKoZIhvcNAQELBQAwgYcxITAfBgNVBAMMGE5hbWly
+aWFsIEVVIFF1YWxpZmllZCBDQTEfMB0GA1UECwwWVHJ1c3QgU2VydmljZSBQcm92aWRlcjEYMBYG
+A1UECgwPTmFtaXJpYWwgUy5wLkEuMRowGAYDVQRhDBFWQVRJVC0wMjA0NjU3MDQyNjELMAkGA1UE
+BhMCSVQwHhcNMjAwNzIwMTUxODAwWhcNMjYwNzIwMTUxODAwWjBdMQswCQYDVQQGEwJJVDEaMBgG
+A1UEYQwRVkFUSVQtMDIwNDY1NzA0MjYxGDAWBgNVBAoMD05BTUlSSUFMIFMuUC5BLjEYMBYGA1UE
+AwwPTkFNSVJJQUwgUy5QLkEuMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvaluo+O4
+93cRZIutqyV3Y7q6/avPAmbWL4w502HaGm6nECkl/TgQyeD7px4Drcd9ArW6ry7+m282m66qOlag
+mmhJOAbEVQni8EpV/JCuKZ3gLQSOxHBdJB87fNnooLp3sU/cmiPds0rmEniRRdwq4KcLxGbNt+hZ
+/OooJ/sPar2JgeXtIKSsQXOSNEV4o/gwJOufnMql3iixENGUIo+tUdO+ROskTl6PlG409HSlHOnG
+DFLDLUqpASMwmBcfI4KA9QKzXP2OU8knRnNnsjlDPez84tizvK7exfefSGMbg7lH7Q43ESndweAx
+sKhLNPyyGA03apNgqs6suB4bEJhlyQIDAQABo4ID4DCCA9wwgYcGCCsGAQUFBwEBBHsweTA+Bggr
+BgEFBQcwAoYyaHR0cHM6Ly9kb2NzLm5hbWlyaWFsdHNwLmNvbS9kb2N1bWVudHMvTmFtQ0E0Sy5j
+cnQwNwYIKwYBBQUHMAGGK2h0dHA6Ly9vY3NwLm5hbWlyaWFsdHNwLmNvbS9vY3NwL2NlcnRzdGF0
+dXMwHQYDVR0OBBYEFJFw0qD1CsRQ3xDAskv5VJ6YVKhWMB8GA1UdIwQYMBaAFGO4zbhJUuXnCXtX
+jPt6QQ5BqnhZMIHDBggrBgEFBQcBAwSBtjCBszAIBgYEAI5GAQEwCwYGBACORgEDAgEUMBMGBgQA
+jkYBBjAJBgcEAI5GAQYCMIGEBgYEAI5GAQUwejA7FjVodHRwczovL2RvY3MubmFtaXJpYWx0c3Au
+Y29tL2RvY3VtZW50cy9QRFMvUERTX2VuLnBkZhMCZW4wOxY1aHR0cHM6Ly9kb2NzLm5hbWlyaWFs
+dHNwLmNvbS9kb2N1bWVudHMvUERTL1BEU19pdC5wZGYTAml0MIICAgYDVR0gBIIB+TCCAfUwggHc
+BgsrBgEEAYKaawECATCCAcswKQYIKwYBBQUHAgEWHWh0dHBzOi8vZG9jcy5uYW1pcmlhbHRzcC5j
+b20vMIIBnAYIKwYBBQUHAgIwggGOHoIBigBWAGEAbABpAGQAbwAgAHMAbwBsAG8AIABwAGUAcgAg
+AGwAYQAgAHAAcgBvAHQAZQB6AGkAbwBuAGUAIABkAGkAIABpAG4AdABlAGcAcgBpAHQA4AAgAGQA
+aQAgAGYAaQByAG0AZQAgAGUAbABlAHQAdAByAG8AbgBpAGMAaABlACAAZwBlAG4AZQByAGEAdABl
+ACAAZABhACAAdABlAGMAbgBvAGwAbwBnAGkAYQAgAE4AYQBtAGkAcgBpAGEAbAAgAEcAcgBvAHUA
+cAAvAFYAYQBsAGkAZAAgAG8AbgBsAHkAIABmAG8AcgAgAHAAcgBvAHQAZQBjAHQAaQBvAG4AIABv
+AGYAIABJAG4AdABlAGcAcgBpAHQAeQAgAG8AZgAgAGUALQBzAGkAZwBuAGEAdAB1AHIAZQAgAGcA
+ZQBuAGUAcgBhAHQAZQBkACAAYgB5ACAATgBhAG0AaQByAGkAYQBsACAARwByAG8AdQBwACcAcwAg
+AHQAZQBjAGgAbgBvAGwAbwBnAHkwCQYHBACL7EABATAIBgYEAI96AQEwNAYDVR0fBC0wKzApoCeg
+JYYjaHR0cDovL2NybC5uYW1pcmlhbHRzcC5jb20vQ0E0Sy5jcmwwDgYDVR0PAQH/BAQDAgZAMA0G
+CSqGSIb3DQEBCwUAA4ICAQCHBLQQWvCEM8q2Xxn3NL6Xn2Hs+ZVNQET1rNh6/ZhBorh/O8JunqX9
++5JU88h6kFvwxLm+84RyZk2oP+EX4RUZ3BteWVmctht71CzMVvx28YRaEaAPr5835hfHgXy9+K98
+TMDQS9ah0StQ0RG4EAEniShIOGEng2LfeRZznFMsB95xPU/Pcr0oUHpfsLFmCyIx/fNNY1IIAp8p
+Y+nJQ52SlZ8FWctw0ipbwdy9XvzaLTKiLE0mh93/WJ02SI5S+b5sCA2vwvJ2iTpucSqbeBnMfcsv
+pUODgrIm5tpTsYIftJ8q4ueeunO2rLKw/ZADLJEEyx+wKdWkv2X/pypsFaEBSAIbXRBkpekdXAfW
+QM7HNfSQrGcMv9gI27wmnWD1XgNvx+PlJ3U3HvuL/Rl1NQPHhVhGWArJSRwLtZozMMNitP2uVSfg
+WIg5M7EA2+pNm3A9J1IyTySBT5B86xXkrGbRLyx4voSX7z/EsOOfcv5wlv5hc3gsid44gnwzeuPC
+3JYOi7iytuurCr5dpYC3KkDaE6ARqAnU9yLmPAbvbBU/qRlNhNNU+JDep2llUHMtUJq7jDY5WrMx
+LvfofeELw7At2IUpHN0C3GsMsFF1Kb03/5j+GDvhTp/6G5AmsrnAtcSRAqX/XNGscKd+HcFLKogc
+KXW60bsCEfSd6z1or8gfnA==
+</ds:X509Certificate>
+</ds:X509Data>
+</ds:KeyInfo>
+</ds:Signature>
+	<md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+		<md:KeyDescriptor use="signing">
+			<ds:KeyInfo>
+				<ds:X509Data>
+					<ds:X509SubjectName>CN=*.namirialtsp.com,OU=Security Departement,O=Namirial Spa,L=Senigallia,ST=Ancona,C=IT</ds:X509SubjectName>
+					<ds:X509Certificate>MIIDNzCCAh+gAwIBAgIUNGvDUjTpLSPlP4sEfO0+JARITnEwDQYJKoZIhvcNAQEL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</ds:X509Certificate>
+				</ds:X509Data>
+			</ds:KeyInfo>
+		</md:KeyDescriptor>
+		<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.namirialtsp.com/idp/profile/SAML2/POST/SLO"/>
+		<md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.namirialtsp.com/idp/profile/SAML2/Redirect/SLO"/>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.namirialtsp.com/idp/profile/SAML2/POST/SSO"/>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.namirialtsp.com/idp/profile/SAML2/Redirect/SSO"/>
+		<saml:Attribute FriendlyName="Domicilio fisico" Name="address"/>
+		<saml:Attribute FriendlyName="Ragione o denominazione sociale" Name="companyName"/>
+		<saml:Attribute FriendlyName="Codice fiscale persona giuridica" Name="companyFiscalNumber"/>
+		<saml:Attribute FriendlyName="Provincia di nascita" Name="countyOfBirth"/>
+		<saml:Attribute FriendlyName="Data di nascita" Name="dateOfBirth"/>
+		<saml:Attribute FriendlyName="Indirizzo domicilio fisico" Name="domicileStreetAddress"/>
+		<saml:Attribute FriendlyName="CAP domicilio fisico" Name="domicilePostalCode"/>
+		<saml:Attribute FriendlyName="Comune domicilio fisico" Name="domicileMunicipality"/>
+		<saml:Attribute FriendlyName="Provincia domicilio fisico" Name="domicileProvince"/>
+		<saml:Attribute FriendlyName="Nazione domicilio fisico" Name="domicileNation"/>
+		<saml:Attribute FriendlyName="Domicilio digitale" Name="digitalAddress"/>
+		<saml:Attribute FriendlyName="Indirizzo di posta elettronica" Name="email"/>
+		<saml:Attribute FriendlyName="Data di scadenza identita" Name="expirationDate"/>
+		<saml:Attribute FriendlyName="Cognome" Name="familyName"/>
+		<saml:Attribute FriendlyName="Codice fiscale" Name="fiscalNumber"/>
+		<saml:Attribute FriendlyName="Sesso" Name="gender"/>
+		<saml:Attribute FriendlyName="Documento d'identita" Name="idCard"/>
+		<saml:Attribute FriendlyName="Partita IVA" Name="ivaCode"/>
+		<saml:Attribute FriendlyName="Numero di telefono mobile" Name="mobilePhone"/>
+		<saml:Attribute FriendlyName="Nome" Name="name"/>
+		<saml:Attribute FriendlyName="Luogo di nascita" Name="placeOfBirth"/>
+		<saml:Attribute FriendlyName="Sede legale" Name="registeredOffice"/>
+		<saml:Attribute FriendlyName="Codice identificativo SPID" Name="spidCode"/>
+	</md:IDPSSODescriptor>
+	<md:Organization>
+		<md:OrganizationName xml:lang="it">Namirial</md:OrganizationName>
+		<md:OrganizationDisplayName xml:lang="it">Namirial S.p.a. Trust Service Provider</md:OrganizationDisplayName>
+		<md:OrganizationURL xml:lang="it">https://www.namirialtsp.com</md:OrganizationURL>
+	</md:Organization>
+</md:EntityDescriptor><md:EntityDescriptor ID="_d2301c246999a2b66348086deeaa3befc1bde2222" cacheDuration="P0Y0M30DT0H0M0.000S" entityID="https://login.id.tim.it/affwebservices/public/saml2sso" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><ds:Reference URI="#_d2301c246999a2b66348086deeaa3befc1bde2222"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>JYGJryCuw9bp9PBqoxl1ogs1BX6rIdxN2Cld6uEDcMY=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>CIEQ0HLKuPpklXui6C9d1pd1syuB9RcgoOI4yBU4QnAEoLvWAJoyTOUvjXfNN9pKehdvcPyW6LPmlonb6Mf5sKswUXdAbimSeYwgAO0U3mVAzGxGK543RjHGamGtz3G4IDW7FTqkG0QmQDAWfeq+CYJksdHFfKwvzY9l6PWCvmPIsaIjwJcFvWMWlwCBwABL3QmUqHkLmifk3/zcN1kmHEjlwMNpCwH32A2jgyFPho96BWQo+iMRjIaLUHfrnPNqMS49nYW5rUQM1nWiRrTMY74dxfd+xTUVZKVGSgL9ACQviTPwHOm4YYkhA+zjUTT22kEFb0fdMxrC0QzBM/FnLA==</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIID0jCCArqgAwIBAgIUXDUOKL3WuolxDw96Fk9es8rIt6kwDQYJKoZIhvcNAQELBQAwgYsxCzAJBgNVBAYTAklUMS4wLAYDVQQKDCVUZWxlY29tIEl0YWxpYSBUcnVzdCBUZWNobm9sb2dpZXMgc3JsMSgwJgYDVQQLDB9TZXJ2aXppIHBlciBsJ2lkZW50aXRhIGRpZ2l0YWxlMSIwIAYDVQQDDBlUSSBUcnVzdCBUZWNobm9sb2dpZXMgc3JsMB4XDTIxMTExMTE3MDMyMFoXDTI1MTExMDE3MDMyMFowgYsxCzAJBgNVBAYTAklUMS4wLAYDVQQKDCVUZWxlY29tIEl0YWxpYSBUcnVzdCBUZWNobm9sb2dpZXMgc3JsMSgwJgYDVQQLDB9TZXJ2aXppIHBlciBsJ2lkZW50aXRhIGRpZ2l0YWxlMSIwIAYDVQQDDBlUSSBUcnVzdCBUZWNobm9sb2dpZXMgc3JsMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6sIS3+3iZSaAIyVywahlbpua2uJ/XmpV68P1e1STJpHoaj32STdHhqZnnb4Y/FshP1NUolzNolPXAYDmDduW1OnGndJZ+G9Hjh1PCkdiRw+p0FjhQAsGJkn8NdgTIHLJjqN1qQwtOsVGab8ScyA3mtmj3xKYuBhUoweuATzC7f5r7FfIoc3cy6N5lgrpZpfeAChxLwoHVjoAVgIBuemi6HAzmd4/BI06KzOcR7+dBVi4+uiseldxrJ5bhnjZKIwgkX14y9UA84Y+e+rMtyT8cT3XXi9NazZl5Ej5/bQPqqVsbg6tXzQSfEJD6JEjuYeC0RUKMS/EJn3hL5VLzTJ1NwIDAQABoywwKjAdBgNVHQ4EFgQUfctFZ8bRtmEvXPRlqgVDuggY/ZwwCQYDVR0TBAIwADANBgkqhkiG9w0BAQsFAAOCAQEA0lszHadknPfE17IWGWsgvlXOdKMnWcl9H5rEYmsWwDB9FJG9XAZvPMcVv1kkWi6XZI/8N2Twhu1BdZkdvntDRscuck8wxxIpkRV7CwlcqNFZ/IwjDBxOBa8Q1J850p+qP8A9apsLLPUlu/oLygNDWIXzcOjMqnPkEP+XXUNYPto5iV+OyDzLLacCYqDDHcvDewWLmEjt35X967KcM+m7K2zGRLWfqcZPIjJJOkpNjgcs+MaisMrGDyOKiD16v0LpwVyIpTqXvDk7KHo8CUNXDxyLxZzB6WffgnOgjXTfU3vluweOx0qQy/VxIupDlNBKiZB4gnt1oAfnaMbqla9wcw==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">  <md:KeyDescriptor use="signing">    <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">      <ds:X509Data>        <ds:X509Certificate>MIID0jCCArqgAwIBAgIUXDUOKL3WuolxDw96Fk9es8rIt6kwDQYJKoZIhvcNAQELBQAwgYsxCzAJBgNVBAYTAklUMS4wLAYDVQQKDCVUZWxlY29tIEl0YWxpYSBUcnVzdCBUZWNobm9sb2dpZXMgc3JsMSgwJgYDVQQLDB9TZXJ2aXppIHBlciBsJ2lkZW50aXRhIGRpZ2l0YWxlMSIwIAYDVQQDDBlUSSBUcnVzdCBUZWNobm9sb2dpZXMgc3JsMB4XDTIxMTExMTE3MDMyMFoXDTI1MTExMDE3MDMyMFowgYsxCzAJBgNVBAYTAklUMS4wLAYDVQQKDCVUZWxlY29tIEl0YWxpYSBUcnVzdCBUZWNobm9sb2dpZXMgc3JsMSgwJgYDVQQLDB9TZXJ2aXppIHBlciBsJ2lkZW50aXRhIGRpZ2l0YWxlMSIwIAYDVQQDDBlUSSBUcnVzdCBUZWNobm9sb2dpZXMgc3JsMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6sIS3+3iZSaAIyVywahlbpua2uJ/XmpV68P1e1STJpHoaj32STdHhqZnnb4Y/FshP1NUolzNolPXAYDmDduW1OnGndJZ+G9Hjh1PCkdiRw+p0FjhQAsGJkn8NdgTIHLJjqN1qQwtOsVGab8ScyA3mtmj3xKYuBhUoweuATzC7f5r7FfIoc3cy6N5lgrpZpfeAChxLwoHVjoAVgIBuemi6HAzmd4/BI06KzOcR7+dBVi4+uiseldxrJ5bhnjZKIwgkX14y9UA84Y+e+rMtyT8cT3XXi9NazZl5Ej5/bQPqqVsbg6tXzQSfEJD6JEjuYeC0RUKMS/EJn3hL5VLzTJ1NwIDAQABoywwKjAdBgNVHQ4EFgQUfctFZ8bRtmEvXPRlqgVDuggY/ZwwCQYDVR0TBAIwADANBgkqhkiG9w0BAQsFAAOCAQEA0lszHadknPfE17IWGWsgvlXOdKMnWcl9H5rEYmsWwDB9FJG9XAZvPMcVv1kkWi6XZI/8N2Twhu1BdZkdvntDRscuck8wxxIpkRV7CwlcqNFZ/IwjDBxOBa8Q1J850p+qP8A9apsLLPUlu/oLygNDWIXzcOjMqnPkEP+XXUNYPto5iV+OyDzLLacCYqDDHcvDewWLmEjt35X967KcM+m7K2zGRLWfqcZPIjJJOkpNjgcs+MaisMrGDyOKiD16v0LpwVyIpTqXvDk7KHo8CUNXDxyLxZzB6WffgnOgjXTfU3vluweOx0qQy/VxIupDlNBKiZB4gnt1oAfnaMbqla9wcw==</ds:X509Certificate>        <ds:X509SubjectName>CN=TI Trust Technologies srl,OU=Servizi per l'identita digitale,O=Telecom Italia Trust Technologies srl,C=IT</ds:X509SubjectName>      </ds:X509Data>    </ds:KeyInfo>  </md:KeyDescriptor>  <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.id.tim.it/affwebservices/public/saml2slo"/>  <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.id.tim.it/affwebservices/public/saml2slo"/>  <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>  <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.id.tim.it/affwebservices/public/saml2sso"/>  <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.id.tim.it/affwebservices/public/saml2sso"/>  <ns2:Attribute Name="spidCode" NameFormat="xsi:string" xmlns:ns2="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns3:Attribute Name="name" NameFormat="xsi:string" xmlns:ns3="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns4:Attribute Name="familyName" NameFormat="xsi:string" xmlns:ns4="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns5:Attribute Name="placeOfBirth" NameFormat="xsi:string" xmlns:ns5="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns6:Attribute Name="countyOfBirth" NameFormat="xsi:string" xmlns:ns6="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns7:Attribute Name="dateOfBirth" NameFormat="xsi:string" xmlns:ns7="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns8:Attribute Name="gender" NameFormat="xsi:string" xmlns:ns8="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns9:Attribute Name="companyName" NameFormat="xsi:string" xmlns:ns9="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns10:Attribute Name="registeredOffice" NameFormat="xsi:string" xmlns:ns10="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns11:Attribute Name="fiscalNumber" NameFormat="xsi:string" xmlns:ns11="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns12:Attribute Name="ivaCode" NameFormat="xsi:string" xmlns:ns12="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns13:Attribute Name="idCard" NameFormat="xsi:string" xmlns:ns13="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns14:Attribute Name="mobilePhone" NameFormat="xsi:string" xmlns:ns14="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns15:Attribute Name="email" NameFormat="xsi:string" xmlns:ns15="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns16:Attribute Name="address" NameFormat="xsi:string" xmlns:ns16="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns17:Attribute Name="digitalAddress" NameFormat="xsi:string" xmlns:ns17="urn:oasis:names:tc:SAML:2.0:assertion"/>  <ns18:Attribute Name="expirationDate" NameFormat="xsi:string" xmlns:ns18="urn:oasis:names:tc:SAML:2.0:assertion"/>	<ns19:Attribute Name="domicileStreetAddress" NameFormat="xsi:string" xmlns:ns19="urn:oasis:names:tc:SAML:2.0:assertion"/>	<ns20:Attribute Name="domicilePostalCode" NameFormat="xsi:string" xmlns:ns20="urn:oasis:names:tc:SAML:2.0:assertion"/>	<ns21:Attribute Name="domicileMunicipality" NameFormat="xsi:string" xmlns:ns21="urn:oasis:names:tc:SAML:2.0:assertion"/>	<ns22:Attribute Name="domicileProvince" NameFormat="xsi:string" xmlns:ns22="urn:oasis:names:tc:SAML:2.0:assertion"/>	<ns23:Attribute Name="domicileNation" NameFormat="xsi:string" xmlns:ns23="urn:oasis:names:tc:SAML:2.0:assertion"/></md:IDPSSODescriptor>  <md:Organization>    <md:OrganizationName xml:lang="en">TI Trust Technologies srl</md:OrganizationName>    <md:OrganizationDisplayName xml:lang="en">Trust Technologies srl</md:OrganizationDisplayName>    <md:OrganizationURL xml:lang="en">https://www.trusttechnologies.it</md:OrganizationURL>  </md:Organization></md:EntityDescriptor><md:EntityDescriptor ID="_6c14aa36-b0dd-45c8-9ddb-bbd81b145cf5" entityID="https://loginspid.aruba.it" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><ds:Reference URI="#_6c14aa36-b0dd-45c8-9ddb-bbd81b145cf5"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>zanMEv9e3IoYmz27wv5RQCYhp7IuxdvUwb/VCjOjosA=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>EyJLBOIVDVK2UM0VYzm+ukfwm34rO2a+AmXnyem+FpLF8mHUdGe2vBafE2YiV6sr7H6/zg0ozeRgPVos9E5xc0LWZwPFK8KWaMiQwrdFVwxAVp3SL0DMXs8msj9+zMnrFb9zGNq9/SoSgJm9BNcjxud+9Ky4XlS30pk7deHy/KgdGpO0cnWOoaYbWfPhHmQ40y7lMF9WZnHibDNTbYPGFMhUgGjGauTH5x+HvGEbreLSpTMEt07Hc0KNV/TSCsUCKpbv7z2YOFbQ5yt6IO2MrpgOQIqr8JF1oC5t/C+5SltkpLUxvYwqh+gF91u1METuqURTzNe1Iz+qb0WFNuyMxw==</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIExTCCA62gAwIBAgIQH32A70kY92tuXB8AGi2DdDANBgkqhkiG9w0BAQsFADBsMQswCQYDVQQG
+EwJJVDEYMBYGA1UECgwPQXJ1YmFQRUMgUy5wLkEuMSEwHwYDVQQLDBhDZXJ0aWZpY2F0aW9uIEF1
+dGhvcml0eUIxIDAeBgNVBAMMF0FydWJhUEVDIFMucC5BLiBORyBDQSAyMB4XDTIwMDEyMjAwMDAw
+MFoXDTI1MDEyMTIzNTk1OVowgaAxCzAJBgNVBAYTAklUMRYwFAYDVQQKDA1BcnViYSBQRUMgc3Bh
+MREwDwYDVQQLDAhQcm9kb3R0bzEWMBQGA1UEAwwNcGVjLml0IHBlYy5pdDEZMBcGA1UEBRMQWFhY
+WFhYMDBYMDBYMDAwWDEPMA0GA1UEKgwGcGVjLml0MQ8wDQYDVQQEDAZwZWMuaXQxETAPBgNVBC4T
+CDIwODc2Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqt2oHJhcp03l73p+QYpE
+J+f3jYYj0W0gos0RItZx/w4vpsiKBygaqDNVWSwfo1aPdVDIX13f62O+lBki29KTt+QWv5K6SGHD
+UXYPntRdEQlicIBh2Z0HfrM7fDl+xeJrMp1s4dsSQAuB5TJOlFZq7xCQuukytGWBTvjfcN/os5aE
+sEg+RbtZHJR26SbbUcIqWb27Swgj/9jwK+tvzLnP4w8FNvEOrNfR0XwTMNDFrwbOCuWgthv5jNBs
+VZaoqNwiA/MxYt+gTOMj/o5PWKk8Wpm6o/7/+lWAoxh0v8x9OkbIi+YaFpIxuCcUqsrJJk63x2gH
+Cc2nr+yclYUhsKD/AwIDAQABo4IBLDCCASgwDgYDVR0PAQH/BAQDAgeAMB0GA1UdDgQWBBTKQ3+N
+PGcXFk8nX994vMTVpba1EzBHBgNVHSAEQDA+MDwGCysGAQQBgegtAQEBMC0wKwYIKwYBBQUHAgEW
+H2h0dHBzOi8vY2EuYXJ1YmFwZWMuaXQvY3BzLmh0bWwwWAYDVR0fBFEwTzBNoEugSYZHaHR0cDov
+L2NybC5hcnViYXBlYy5pdC9BcnViYVBFQ1NwQUNlcnRpZmljYXRpb25BdXRob3JpdHlCL0xhdGVz
+dENSTC5jcmwwHwYDVR0jBBgwFoAU8v9jQBwRQv3M3/FZ9m7omYcxR3kwMwYIKwYBBQUHAQEEJzAl
+MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5hcnViYXBlYy5pdDANBgkqhkiG9w0BAQsFAAOCAQEA
+ZKpor1MrrYwPw+IuPZElQAuNzXsaSWSnn/QQwJtW49c4rFM4mEud9c61p9XxIIbgQKmDmNbzC+Dm
+wJSZ8ILdCAyBHmY3BehVRAy3KRA2KQhS9kd4vywf5KVYd1L5hQa9DBrusxF7i1X/SEeLQgoKkov0
+R8v43UncqXS/ql50ovJFxi938Rv4rVwa8o0hqqc6WUcjkidB6M9aNJLIbOZN3xNUgC28qIr8y7N8
+lbxWbwVrGxqKDtpaA9J0hOOXxwuTfSd1zOtT0KSSSUQ53QGOPnxyjxYDQbJu60/lBPuUV5wb/Z2r
+gpeUH1/n7limHV5sVmOZgSnf18T+0STANCfkXg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><md:Extensions><spid:SupportedAgeLimit xmlns:spid="https://spid.gov.it/saml-extensions"/></md:Extensions><md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"><md:KeyDescriptor use="signing"><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:X509Data><ds:X509Certificate>MIIExTCCA62gAwIBAgIQH32A70kY92tuXB8AGi2DdDANBgkqhkiG9w0BAQsFADBsMQswCQYDVQQG
+EwJJVDEYMBYGA1UECgwPQXJ1YmFQRUMgUy5wLkEuMSEwHwYDVQQLDBhDZXJ0aWZpY2F0aW9uIEF1
+dGhvcml0eUIxIDAeBgNVBAMMF0FydWJhUEVDIFMucC5BLiBORyBDQSAyMB4XDTIwMDEyMjAwMDAw
+MFoXDTI1MDEyMTIzNTk1OVowgaAxCzAJBgNVBAYTAklUMRYwFAYDVQQKDA1BcnViYSBQRUMgc3Bh
+MREwDwYDVQQLDAhQcm9kb3R0bzEWMBQGA1UEAwwNcGVjLml0IHBlYy5pdDEZMBcGA1UEBRMQWFhY
+WFhYMDBYMDBYMDAwWDEPMA0GA1UEKgwGcGVjLml0MQ8wDQYDVQQEDAZwZWMuaXQxETAPBgNVBC4T
+CDIwODc2Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqt2oHJhcp03l73p+QYpE
+J+f3jYYj0W0gos0RItZx/w4vpsiKBygaqDNVWSwfo1aPdVDIX13f62O+lBki29KTt+QWv5K6SGHD
+UXYPntRdEQlicIBh2Z0HfrM7fDl+xeJrMp1s4dsSQAuB5TJOlFZq7xCQuukytGWBTvjfcN/os5aE
+sEg+RbtZHJR26SbbUcIqWb27Swgj/9jwK+tvzLnP4w8FNvEOrNfR0XwTMNDFrwbOCuWgthv5jNBs
+VZaoqNwiA/MxYt+gTOMj/o5PWKk8Wpm6o/7/+lWAoxh0v8x9OkbIi+YaFpIxuCcUqsrJJk63x2gH
+Cc2nr+yclYUhsKD/AwIDAQABo4IBLDCCASgwDgYDVR0PAQH/BAQDAgeAMB0GA1UdDgQWBBTKQ3+N
+PGcXFk8nX994vMTVpba1EzBHBgNVHSAEQDA+MDwGCysGAQQBgegtAQEBMC0wKwYIKwYBBQUHAgEW
+H2h0dHBzOi8vY2EuYXJ1YmFwZWMuaXQvY3BzLmh0bWwwWAYDVR0fBFEwTzBNoEugSYZHaHR0cDov
+L2NybC5hcnViYXBlYy5pdC9BcnViYVBFQ1NwQUNlcnRpZmljYXRpb25BdXRob3JpdHlCL0xhdGVz
+dENSTC5jcmwwHwYDVR0jBBgwFoAU8v9jQBwRQv3M3/FZ9m7omYcxR3kwMwYIKwYBBQUHAQEEJzAl
+MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5hcnViYXBlYy5pdDANBgkqhkiG9w0BAQsFAAOCAQEA
+ZKpor1MrrYwPw+IuPZElQAuNzXsaSWSnn/QQwJtW49c4rFM4mEud9c61p9XxIIbgQKmDmNbzC+Dm
+wJSZ8ILdCAyBHmY3BehVRAy3KRA2KQhS9kd4vywf5KVYd1L5hQa9DBrusxF7i1X/SEeLQgoKkov0
+R8v43UncqXS/ql50ovJFxi938Rv4rVwa8o0hqqc6WUcjkidB6M9aNJLIbOZN3xNUgC28qIr8y7N8
+lbxWbwVrGxqKDtpaA9J0hOOXxwuTfSd1zOtT0KSSSUQ53QGOPnxyjxYDQbJu60/lBPuUV5wb/Z2r
+gpeUH1/n7limHV5sVmOZgSnf18T+0STANCfkXg==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:KeyDescriptor use="signing"><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:X509Data><ds:X509Certificate>MIIExTCCA62gAwIBAgIQIHtEvEhGM77HwqsuvSbi9zANBgkqhkiG9w0BAQsFADBsMQswCQYDVQQG
+EwJJVDEYMBYGA1UECgwPQXJ1YmFQRUMgUy5wLkEuMSEwHwYDVQQLDBhDZXJ0aWZpY2F0aW9uIEF1
+dGhvcml0eUIxIDAeBgNVBAMMF0FydWJhUEVDIFMucC5BLiBORyBDQSAyMB4XDTE3MDEyMzAwMDAw
+MFoXDTIwMDEyMzIzNTk1OVowgaAxCzAJBgNVBAYTAklUMRYwFAYDVQQKDA1BcnViYSBQRUMgc3Bh
+MREwDwYDVQQLDAhQcm9kb3R0bzEWMBQGA1UEAwwNcGVjLml0IHBlYy5pdDEZMBcGA1UEBRMQWFhY
+WFhYMDBYMDBYMDAwWDEPMA0GA1UEKgwGcGVjLml0MQ8wDQYDVQQEDAZwZWMuaXQxETAPBgNVBC4T
+CDE2MzQ1MzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqt2oHJhcp03l73p+QYpE
+J+f3jYYj0W0gos0RItZx/w4vpsiKBygaqDNVWSwfo1aPdVDIX13f62O+lBki29KTt+QWv5K6SGHD
+UXYPntRdEQlicIBh2Z0HfrM7fDl+xeJrMp1s4dsSQAuB5TJOlFZq7xCQuukytGWBTvjfcN/os5aE
+sEg+RbtZHJR26SbbUcIqWb27Swgj/9jwK+tvzLnP4w8FNvEOrNfR0XwTMNDFrwbOCuWgthv5jNBs
+VZaoqNwiA/MxYt+gTOMj/o5PWKk8Wpm6o/7/+lWAoxh0v8x9OkbIi+YaFpIxuCcUqsrJJk63x2gH
+Cc2nr+yclYUhsKD/AwIDAQABo4IBLDCCASgwDgYDVR0PAQH/BAQDAgeAMB0GA1UdDgQWBBTKQ3+N
+PGcXFk8nX994vMTVpba1EzBHBgNVHSAEQDA+MDwGCysGAQQBgegtAQEBMC0wKwYIKwYBBQUHAgEW
+H2h0dHBzOi8vY2EuYXJ1YmFwZWMuaXQvY3BzLmh0bWwwWAYDVR0fBFEwTzBNoEugSYZHaHR0cDov
+L2NybC5hcnViYXBlYy5pdC9BcnViYVBFQ1NwQUNlcnRpZmljYXRpb25BdXRob3JpdHlCL0xhdGVz
+dENSTC5jcmwwHwYDVR0jBBgwFoAU8v9jQBwRQv3M3/FZ9m7omYcxR3kwMwYIKwYBBQUHAQEEJzAl
+MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5hcnViYXBlYy5pdDANBgkqhkiG9w0BAQsFAAOCAQEA
+nEw0NuaspbpDjA5wggwFtfQydU6b3Bw2/KXPRKS2JoqGmx0SYKj+L17A2KUBa2c7gDtKXYz0FLT6
+0Bv0pmBN/oYCgVMEBJKqwRwdki9YjEBwyCZwNEx1kDAyyqFEVU9vw/OQfrAdp7MTbuZGFKknVt7b
+9wOYy/Op9FiUaTg6SuOy0ep+rqhihltYNAAl4L6fY45mHvqa5vvVG30OvLW/S4uvRYUXYwY6KhWv
+NdDf5CnFugnuEZtHJrVe4wx9aO5GvFLFZ/mQ35C5mXPQ7nIb0CDdLBJdz82nUoLSA5BUbeXAUkfa
+hW/hLxLdhks68/TK694xVIuiB40pvMmJwxIyDA==</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://loginspid.aruba.it/ServiceLogoutRequest"/><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://loginspid.aruba.it/ServiceLogoutRequest"/><md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat><md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://loginspid.aruba.it/ServiceLoginWelcome"/><md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://loginspid.aruba.it/ServiceLoginWelcome"/><saml2:Attribute FriendlyName="Codice identificativo SPID" Name="spidCode" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Nome" Name="name" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Cognome" Name="familyName" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Luogo di nascita" Name="placeOfBirth" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Provincia di nascita" Name="countyOfBirth" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Data di nascita" Name="dateOfBirth" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Sesso" Name="gender" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Ragione o denominazione sociale" Name="companyName" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Codice Fiscale Persona Giuridica" Name="companyFiscalNumber" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Sede legale" Name="registeredOffice" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Codice fiscale" Name="fiscalNumber" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Partita IVA" Name="ivaCode" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Documento d'identità" Name="idCard" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Numero di telefono mobile" Name="mobilePhone" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Indirizzo di posta elettronica" Name="email" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Domicilio fisico" Name="address" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Indirizzo domicilio fisico" Name="domicileStreetAddress" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="CAP domicilio fisico" Name="domicilePostalCode" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Comune domicilio fisico" Name="domicileMunicipality" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Provincia domicilio fisico" Name="domicileProvince" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Nazione domicilio fisico" Name="domicileNation" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Data di scadenza identità" Name="expirationDate" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/><saml2:Attribute FriendlyName="Domicilio digitale" Name="digitalAddress" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"/></md:IDPSSODescriptor><md:Organization xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"><md:OrganizationName xml:lang="it">ArubaPEC S.p.A.</md:OrganizationName><md:OrganizationDisplayName xml:lang="it">ArubaPEC S.p.A.</md:OrganizationDisplayName><md:OrganizationURL xml:lang="it">https://www.pec.it/</md:OrganizationURL></md:Organization></md:EntityDescriptor><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:spid="https://spid.gov.it/saml-extensions" ID="_652efda7-3198-49a1-857a-e7123b936f2a" cacheDuration="P0Y0M30DT0H0M0.000S" entityID="https://posteid.poste.it"><Signature xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><Reference URI="#_652efda7-3198-49a1-857a-e7123b936f2a"><Transforms><Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><DigestValue>ix5zJ0s5HicXBtbud2nW7dwhwEVB6jZnzhFkbFLAYVs=</DigestValue></Reference></SignedInfo><SignatureValue>EdhsS12CrldyKtXkWCHY7PlrD8Uc2HyKd2a40aNsEabBJxH0gsKfzO85HSRw1jLBVf0352moDNAp
+vqrH24ImHV9umqzxqY5SAXx7ISeGl56kmWB4CWGPK7X7Vb0iDosDzoI60vHlipVmdbaqlwOZQG79
+xEoyo4bU/IxhdFhr0wl8b3SnGTWlFS3iThaz4g2dmWlzcjVcf+s5CigClhqToedKxPbY2CGl+U78
+sgNTlR2cGIe9gjRlQIboXUr14SzDJgIOLkFIGyuIlgA7vk85/HDSXGhEIa5r/N9Tb+dTc+PXPxV9
+Lk9Oy88WbYOqfvOKnkzVjmWj026DTT2N9uBPmg==</SignatureValue><KeyInfo><X509Data><X509Certificate>MIIFgzCCA2ugAwIBAgIIJSppAZKg/XQwDQYJKoZIhvcNAQELBQAwZTELMAkGA1UEBhMCSVQxHjAc
+BgNVBAoMFVBvc3RlIEl0YWxpYW5lIFMucC5BLjEaMBgGA1UEYQwRVkFUSVQtMDExMTQ2MDEwMDYx
+GjAYBgNVBAMMEVBvc3RlIEl0YWxpYW5lIENBMB4XDTIxMDIxODExNDYzMVoXDTI0MDIxOTExNDYz
+MVowQzELMAkGA1UEBhMCSVQxHjAcBgNVBAoMFVBvc3RlIEl0YWxpYW5lIFMucC5BLjEUMBIGA1UE
+AwwLaWRwLXBvc3RlaWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZFEtJoEHFAjpC
+aZcj5DVWrRDyaLZyu31XApslbo87CyWz61OJMtw6QQU0MdCtrYbtSJ6vJwx7/6EUjsZ3u4x3EPLd
+lkyiGOqukPwATv4c7TVOUVs5onIqTphM9b+AHRg4ehiMGesm/9d7RIaLuN79iPUvdLn6WP3idAfE
+w+rhJ/wYEQ0h1Xm5osNUgtWcBGavZIjLssWNrDDfJYxXH3QZ0kI6feEvLCJwgjXLGkBuhFehNhM4
+fhbX9iUCWwwkJ3JsP2++Rc/iTA0LZhiUsXNNq7gBcLAJ9UX2V1dWjTzBHevfHspzt4e0VgIIwbDR
+qsRtF8VUPSDYYbLoqwbLt18XAgMBAAGjggFXMIIBUzA/BggrBgEFBQcBAQQzMDEwLwYIKwYBBQUH
+MAGGI2h0dHA6Ly9wb3N0ZWNlcnQucG9zdGUuaXQvcGktb2NzcENBMB0GA1UdDgQWBBRL64pGUJHw
+Y7ok6cRMUgXvMBoLMjAfBgNVHSMEGDAWgBRs0025F7hHd0d+ULyAaELPZ7w/eTA+BgNVHSAENzA1
+MDMGCCtMMAEFAQEEMCcwJQYIKwYBBQUHAgEWGWh0dHA6Ly9wb3N0ZWNlcnQucG9zdGUuaXQwOAYD
+VR0fBDEwLzAtoCugKYYnaHR0cDovL3Bvc3RlY2VydC5wb3N0ZS5pdC9waS1DQS9jcmwuY3JsMA4G
+A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwQwJwYDVR0RBCAwHoEc
+aWRwLXBvc3RlaWRAcG9zdGVpdGFsaWFuZS5pdDANBgkqhkiG9w0BAQsFAAOCAgEAp0EhITlTx+cO
+aoXw//nBl6Q4y82MfSGfPJIw3ROV1z3tHBctaksi/RxAzyMD5beO2s8Q6lXx0sLMCcuUQmzHj3eJ
+bqn+6sIUr000dSlX/iPgVUc2dvPIZZg9xu38J8NvCfrtgAGY5iMVFMd3CZLFw0ybr+Bx/1K/NhQO
+7jxn0RSGA1J4mM2syVhEDUODs9kz3T4kXYUofwwvPL1a9xB9RBqbp7plYtbBBdftEORUQrWzH1mz
+NO4nlFkX9qgVrgFIIJJT2KadHoop1r65O9ffncK14qpNo3eTsNDq3hRlteb7ylmlJ8CoakUWZeXD
+DP9ZboWxZkyp+9903OrToRvOgeWSc+YrqcRZOv7r6tTALTk4U9OTKDG9/eNWSGQqD7Qd/9rssfF0
+uJEGHnbsk/Hvdxn8apgWN1Zwt6tsT7f/DO0Pdlaso9g7PVy8R+B3VkWAh76uCcICIPFBluC/ljaH
+V8hI+VsCLpMClo83YMCEM6E6nAPD22+fDR/DF9P73P04yUvJVHx4cnHPrpxVrPbaJoKrr9mUOLFy
+VRekX78ZRgiFiKYDNsiq9+148oRy+VehpmBoQ+T2EPeDFQ8JJ4xT8H7qdyr1swSk/9Lu4K0kw/yC
+TSb9K/wCuiHiuoSB54rzJoQxz90gS868r/+JGahYwHY5dUh1RbA4g5N8H3TDThc=</X509Certificate></X509Data></KeyInfo></Signature><md:Extensions><spid:SupportedAgeLimit/></md:Extensions><md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><md:KeyDescriptor use="signing"><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:X509Data><ds:X509Certificate>MIIFgzCCA2ugAwIBAgIIJSppAZKg/XQwDQYJKoZIhvcNAQELBQAwZTELMAkGA1UEBhMCSVQxHjAc
+BgNVBAoMFVBvc3RlIEl0YWxpYW5lIFMucC5BLjEaMBgGA1UEYQwRVkFUSVQtMDExMTQ2MDEwMDYx
+GjAYBgNVBAMMEVBvc3RlIEl0YWxpYW5lIENBMB4XDTIxMDIxODExNDYzMVoXDTI0MDIxOTExNDYz
+MVowQzELMAkGA1UEBhMCSVQxHjAcBgNVBAoMFVBvc3RlIEl0YWxpYW5lIFMucC5BLjEUMBIGA1UE
+AwwLaWRwLXBvc3RlaWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZFEtJoEHFAjpC
+aZcj5DVWrRDyaLZyu31XApslbo87CyWz61OJMtw6QQU0MdCtrYbtSJ6vJwx7/6EUjsZ3u4x3EPLd
+lkyiGOqukPwATv4c7TVOUVs5onIqTphM9b+AHRg4ehiMGesm/9d7RIaLuN79iPUvdLn6WP3idAfE
+w+rhJ/wYEQ0h1Xm5osNUgtWcBGavZIjLssWNrDDfJYxXH3QZ0kI6feEvLCJwgjXLGkBuhFehNhM4
+fhbX9iUCWwwkJ3JsP2++Rc/iTA0LZhiUsXNNq7gBcLAJ9UX2V1dWjTzBHevfHspzt4e0VgIIwbDR
+qsRtF8VUPSDYYbLoqwbLt18XAgMBAAGjggFXMIIBUzA/BggrBgEFBQcBAQQzMDEwLwYIKwYBBQUH
+MAGGI2h0dHA6Ly9wb3N0ZWNlcnQucG9zdGUuaXQvcGktb2NzcENBMB0GA1UdDgQWBBRL64pGUJHw
+Y7ok6cRMUgXvMBoLMjAfBgNVHSMEGDAWgBRs0025F7hHd0d+ULyAaELPZ7w/eTA+BgNVHSAENzA1
+MDMGCCtMMAEFAQEEMCcwJQYIKwYBBQUHAgEWGWh0dHA6Ly9wb3N0ZWNlcnQucG9zdGUuaXQwOAYD
+VR0fBDEwLzAtoCugKYYnaHR0cDovL3Bvc3RlY2VydC5wb3N0ZS5pdC9waS1DQS9jcmwuY3JsMA4G
+A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwQwJwYDVR0RBCAwHoEc
+aWRwLXBvc3RlaWRAcG9zdGVpdGFsaWFuZS5pdDANBgkqhkiG9w0BAQsFAAOCAgEAp0EhITlTx+cO
+aoXw//nBl6Q4y82MfSGfPJIw3ROV1z3tHBctaksi/RxAzyMD5beO2s8Q6lXx0sLMCcuUQmzHj3eJ
+bqn+6sIUr000dSlX/iPgVUc2dvPIZZg9xu38J8NvCfrtgAGY5iMVFMd3CZLFw0ybr+Bx/1K/NhQO
+7jxn0RSGA1J4mM2syVhEDUODs9kz3T4kXYUofwwvPL1a9xB9RBqbp7plYtbBBdftEORUQrWzH1mz
+NO4nlFkX9qgVrgFIIJJT2KadHoop1r65O9ffncK14qpNo3eTsNDq3hRlteb7ylmlJ8CoakUWZeXD
+DP9ZboWxZkyp+9903OrToRvOgeWSc+YrqcRZOv7r6tTALTk4U9OTKDG9/eNWSGQqD7Qd/9rssfF0
+uJEGHnbsk/Hvdxn8apgWN1Zwt6tsT7f/DO0Pdlaso9g7PVy8R+B3VkWAh76uCcICIPFBluC/ljaH
+V8hI+VsCLpMClo83YMCEM6E6nAPD22+fDR/DF9P73P04yUvJVHx4cnHPrpxVrPbaJoKrr9mUOLFy
+VRekX78ZRgiFiKYDNsiq9+148oRy+VehpmBoQ+T2EPeDFQ8JJ4xT8H7qdyr1swSk/9Lu4K0kw/yC
+TSb9K/wCuiHiuoSB54rzJoQxz90gS868r/+JGahYwHY5dUh1RbA4g5N8H3TDThc=</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://posteid.poste.it/jod-fs/sloservicepost" ResponseLocation="https://posteid.poste.it/jod-fs/sloserviceresponsepost"/><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://posteid.poste.it/jod-fs/sloserviceredirect" ResponseLocation="https://posteid.poste.it/jod-fs/sloserviceresponseredirect"/><md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat><md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://posteid.poste.it/jod-fs/ssoservicepost"/><md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://posteid.poste.it/jod-fs/ssoserviceredirect"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="familyName" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="name" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="spidCode" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="fiscalNumber" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="gender" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="dateOfBirth" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="placeOfBirth" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="countyOfBirth" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="idCard" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="address" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileStreetAddress" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicilePostalCode" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileMunicipality" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileProvince" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileNation" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="digitalAddress" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="expirationDate" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="email" NameFormat="xsi:string"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="mobilePhone" NameFormat="xsi:string"/></md:IDPSSODescriptor><md:Organization><md:OrganizationName xml:lang="it">Poste Italiane SpA</md:OrganizationName><md:OrganizationDisplayName xml:lang="it">Poste Italiane SpA</md:OrganizationDisplayName><md:OrganizationURL xml:lang="it">https://www.poste.it</md:OrganizationURL></md:Organization></md:EntityDescriptor><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_a04faedb3e1198b61905928ad32d2a79" cacheDuration="P0Y0M30DT0H0M0.000S" entityID="https://spid.intesa.it">
+<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Id="spid-17431e787b70"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><ds:Reference Id="Reference-spid-17431e787b70-1" URI=""><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>w+1EhJJcYbEAVZ8qyNUtad7jWWLjyqvBKP+4UnueiVo=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue Id="SignatureValue-spid-17431e787b70">FvIykT0ZR+T4FnSDZkurxrjI8YaZKKx0PV0eNIHGo2k57KdzD2YRyK3eQS8Afg+E8BvrwGJlXoPY/z3jZBV/Hs0jkkZtAT2obK0g55TcXiSXJyKwRkG5KnjaxKQFSOVExJliHRkCdQgf5WUwdKIJ7m5amssrxW6jH6ejEhSXqqttpK+NuH2TxzXjHAda5wIBjyOAB7QmobTrAaFKG6vapy8P2TcrSknw/YdBTYm8X9dHpsukBksMPoAYB35vTLukQuFkxp6Z7JTPjG0W8VPhRcr/9Falk//8qlXjCx+fKKEaR0mDT/xKXdYBb91tURzaOUuqBEZz2O6HIuANR4e36A==</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>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</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+        <md:KeyDescriptor use="signing">
+            <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIEDjCCAvagAwIBAgIIIT1A+ywbIQAwDQYJKoZIhvcNAQELBQAwXjEzMDEGA1UE
+                        AwwqSU4uVEUuUy5BLiBTLnAuQSAtIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MRow
+                        GAYDVQQKDBFJTi5URS5TLkEuIFMucC5BLjELMAkGA1UEBhMCSVQwHhcNMTcwOTE1
+                        MTMyMzQ1WhcNMzYwNzAxMTk1OTAwWjBQMSUwDwYDVQQuEwgyMDA3OTc5NzASBgNV
+                        BAMMC1NBTUwgU2lnbmVyMRowGAYDVQQKDBFJTi5URS5TLkEuIFMucC5BLjELMAkG
+                        A1UEBhMCSVQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhYXkP+eQB
+                        URgmslDXBjG0ad+DkSAkWt7hUoaTyiK0e34QiyArq043plqTrt+6FzTGeX7960Qr
+                        3tCLGCiVOi47QuE09IKfJmKGEaUQnJQehHYZs/XV0OYQl18WrCxUX6ALOcqPs+4y
+                        pCbJV1WzSosfBcPBzivJER8kvrynMXI3or18e9XPTGBn8qNFyNF1E3BJ5UhrDvk5
+                        W2gKyYKz0M/CIu9PiHuO/ne6HbeNrCS/xzXtjsTusk41AOxIQoFbEzS08xcRY+QD
+                        E8oLcAmecSjT3xv3r9dWke6KTTAahS3K+5mOYRcBXj2FFegiUp+xh4OAWdH1+gGD
+                        Ym+3aAmMpaLtAgMBAAGjgd0wgdowHQYDVR0OBBYEFEw9xWg4qvQGdlGMCqmJcVDg
+                        dE8aMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUySnWJ2sw0ljDpJVrtrxCCP0b
+                        1CYwGgYDVR0QBBMwEYAPMjAxNzA5MTUxMzIzNDVaMD8GA1UdHwQ4MDYwNKAyoDCG
+                        Lmh0dHA6Ly9lLXRydXN0Y29tLmludGVzYS5pdC9DUkwvSU5URVNBX25DQS5jcmww
+                        DgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDBDAN
+                        BgkqhkiG9w0BAQsFAAOCAQEAVRHyFRZZFpW/qjJpKftd86h3wOdUqOhc2W8ZHv0s
+                        t8ptG+mZk3l1iWAsEPqKMIBhksgTvalnHC1lHUt11xsZ2mzUjVpiG8XiWXYXQnY2
+                        D+q7Dc4n20kJ717qf4SDN8wX1A6XvT3Wrsfh87vg3ZFD56/eyur2snWu4OilsFqA
+                        yLhnExG4puJ4JKBWnlwAGXD9SFgkSZ8FC66KQs6CAwVkvCIom3IwJeU/VrYQF6XH
+                        kVCQgr5mojXgCkrlRNl53WAKfQHCT4QH+oQVP97PCEL/wQ1zi0UzWauKT6u2wDym
+                        9rcpch+WLa0GUtYNhuoLU2SregPKwTWg2DfINJObyWRpww==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+        </md:KeyDescriptor>
+        <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.intesa.it/Time4UserServices/services/idp/SingleLogout" ResponseLocation="https://spid.intesa.it/Time4UserServices/services/idp/SingleLogout"/>
+        <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.intesa.it/Time4UserServices/services/idp/SingleLogout/" ResponseLocation="https://spid.intesa.it/Time4UserServices/services/idp/SingleLogout/"/>
+        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient
+        </md:NameIDFormat>
+        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.intesa.it/Time4UserServices/services/idp/AuthnRequest/"/>
+        <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.intesa.it/Time4UserServices/services/idp/AuthnRequest/"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio fisico" Name="address"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo domicilio fisico" Name="domicileStreetAddress"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="CAP domicilio fisico" Name="domicilePostalCode"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Comune domicilio fisico" Name="domicileMunicipality"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia domicilio fisico" Name="domicileProvince"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nazione domicilio fisico" Name="domicileNation"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Ragione o denominazione sociale" Name="companyName"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia di nascita" Name="countyOfBirth"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di nascita" Name="dateOfBirth"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio digitale" Name="digitalAddress"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo di posta elettronica" Name="email"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di scadenza identita" Name="expirationDate"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Cognome" Name="familyName"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice fiscale" Name="fiscalNumber"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sesso" Name="gender"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Documento d'identita" Name="idCard"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Partita IVA" Name="ivaCode"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Numero di telefono mobile" Name="mobilePhone"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nome" Name="name"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Luogo di nascita" Name="placeOfBirth"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sede legale" Name="registeredOffice"/>
+        <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice identificativo SPID" Name="spidCode"/>
+    </md:IDPSSODescriptor>
+    <md:Organization>
+        <md:OrganizationName xml:lang="it">IN.TE.S.A. S.p.A.</md:OrganizationName>
+        <md:OrganizationDisplayName xml:lang="it">Intesa S.p.A.</md:OrganizationDisplayName>
+        <md:OrganizationURL xml:lang="it">https://www.intesa.it/</md:OrganizationURL>
+    </md:Organization>
+</md:EntityDescriptor><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_ff3cffde0ce6f778bc26f1ebcc782548" entityID="https://spid.register.it"><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:SignedInfo><ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/><ds:Reference URI="#_ff3cffde0ce6f778bc26f1ebcc782548"><ds:Transforms><ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></ds:Transforms><ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><ds:DigestValue>D/A8yDFktAAd8ZdH4txugRyfui6Yy9cYlS/ilyzB6qg=</ds:DigestValue></ds:Reference></ds:SignedInfo><ds:SignatureValue>YN5NOuJNo8+3p5j+vQ+l0tA8hsvgfqwHu4amDbJeV3ltCa2ev2chti18Tekswx/FjkpVo7Xu1Thi3jcxRalyeoY2XAPhhEigI+JSA6+JcJUC91Gm+b9+LO6mnKba+epGBdfoDoj66tBCeSXD1AOSid1WcCEjEoFfMwIx2TJQVhz/Vx6JhAPYjbjyiXgus7hI4JPFQla3msjrrCJ8umU635e1dyFPqxTt1jIRP5oZnSGx0moP5dGRMhU+mu2mtcJOGiz02km+TtmxIRgACJ8HB3sEP3HDwtQmVguhDCUluY94UfU42dIsaKOZB2mVEVjHDzCVxGGYPAYaY8lu1ZDO5g==</ds:SignatureValue><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDazCCAlOgAwIBAgIED8R+MDANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJJVDELMAkGA1UECBMCRkkxETAPBgNVBAcTCGZsb3JlbmNlMREwDwYDVQQKEwhyZWdpc3RlcjERMA8GA1UECxMIcmVnaXN0ZXIxETAPBgNVBAMTCHJlZ2lzdGVyMB4XDTE3MDcxMDEwMzM0OVoXDTI3MDcwODEwMzM0OVowZjELMAkGA1UEBhMCSVQxCzAJBgNVBAgTAkZJMREwDwYDVQQHEwhmbG9yZW5jZTERMA8GA1UEChMIcmVnaXN0ZXIxETAPBgNVBAsTCHJlZ2lzdGVyMREwDwYDVQQDEwhyZWdpc3RlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANkYXHbm3q6xt3wrLAXnytswtj2JE1MM8aYmNXkTgDMCwO/+ahQOoQru6IBTbjfWH9jr+Woy54FDdX6bHl+5/mO6l/yAB/bKgwe5HmUjZJ5oakJjWucsSm+VkEwN2HquBZoN+mktju00xvLX5VAjmDHvZc/b8NhNr/FRKlYITboygkhGiUwGI3wLf3IaB76J0o7ugpW2WNLcywpX+p1VWZAMCdHBveBe/e42hh6WnWPqdwYUWHOgJ8HX4IzCHifiS1n6eUMgtoTQOmSvTQDwSjD0WWJE8tWSYt+txXg1t+3A3tbZOFu7T442wE7DtMdUL4+8gimQS+e8PxDK1uTqIPUCAwEAAaMhMB8wHQYDVR0OBBYEFMCgo1gzCIcUThQIs5g5ikfv1D7eMA0GCSqGSIb3DQEBCwUAA4IBAQBnGw3i3hQ37L8vyelkyZMeO3tLK65Cqti4oVrQZxClGV5zNA6fIMDY8Mci1UhLwjzp29POd/sez0vuHZ/Vmmygzoye4jTKr6c3jAh0u81FTzefBU+vIietm9RuV3sd7D9xq6EqOY1NDL+rkvBcTFtiwLEUm2kHYu/U67jk73pxOtmqxQvQeMU8oi42tehMZGLIGp3U5lGS8YGGl+GtkkQ2Z5/PSm67HGP81kTArG/QX+bX+ykypTJVg9hfb9zOFQidp1HkCRIez6YhDiP/ZLurd6Grt/wVfZPNBO8EOgy25AkRZlp+UD686BFg7qq5KKEbz3qmPrj8deHL3duacZcp</ds:X509Certificate></ds:X509Data></ds:KeyInfo></ds:Signature><md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><md:KeyDescriptor use="signing"><ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"><ds:X509Data><ds:X509Certificate>MIIDazCCAlOgAwIBAgIED8R+MDANBgkqhkiG9w0BAQsFADBmMQswCQYDVQQGEwJJVDELMAkGA1UECBMCRkkxETAPBgNVBAcTCGZsb3JlbmNlMREwDwYDVQQKEwhyZWdpc3RlcjERMA8GA1UECxMIcmVnaXN0ZXIxETAPBgNVBAMTCHJlZ2lzdGVyMB4XDTE3MDcxMDEwMzM0OVoXDTI3MDcwODEwMzM0OVowZjELMAkGA1UEBhMCSVQxCzAJBgNVBAgTAkZJMREwDwYDVQQHEwhmbG9yZW5jZTERMA8GA1UEChMIcmVnaXN0ZXIxETAPBgNVBAsTCHJlZ2lzdGVyMREwDwYDVQQDEwhyZWdpc3RlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANkYXHbm3q6xt3wrLAXnytswtj2JE1MM8aYmNXkTgDMCwO/+ahQOoQru6IBTbjfWH9jr+Woy54FDdX6bHl+5/mO6l/yAB/bKgwe5HmUjZJ5oakJjWucsSm+VkEwN2HquBZoN+mktju00xvLX5VAjmDHvZc/b8NhNr/FRKlYITboygkhGiUwGI3wLf3IaB76J0o7ugpW2WNLcywpX+p1VWZAMCdHBveBe/e42hh6WnWPqdwYUWHOgJ8HX4IzCHifiS1n6eUMgtoTQOmSvTQDwSjD0WWJE8tWSYt+txXg1t+3A3tbZOFu7T442wE7DtMdUL4+8gimQS+e8PxDK1uTqIPUCAwEAAaMhMB8wHQYDVR0OBBYEFMCgo1gzCIcUThQIs5g5ikfv1D7eMA0GCSqGSIb3DQEBCwUAA4IBAQBnGw3i3hQ37L8vyelkyZMeO3tLK65Cqti4oVrQZxClGV5zNA6fIMDY8Mci1UhLwjzp29POd/sez0vuHZ/Vmmygzoye4jTKr6c3jAh0u81FTzefBU+vIietm9RuV3sd7D9xq6EqOY1NDL+rkvBcTFtiwLEUm2kHYu/U67jk73pxOtmqxQvQeMU8oi42tehMZGLIGp3U5lGS8YGGl+GtkkQ2Z5/PSm67HGP81kTArG/QX+bX+ykypTJVg9hfb9zOFQidp1HkCRIez6YhDiP/ZLurd6Grt/wVfZPNBO8EOgy25AkRZlp+UD686BFg7qq5KKEbz3qmPrj8deHL3duacZcp</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.register.it/login/singleLogout" ResponseLocation="https://spid.register.it/login/singleLogout/response"/><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.register.it/login/singleLogout" ResponseLocation="https://spid.register.it/login/singleLogout/response"/><md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat><md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.register.it/login/sso"/><md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.register.it/login/sso"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="spidCode"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="digitalAddress"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicilePostalCode"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="mobilePhone"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="companyFiscalNumber"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="familyName"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="expirationDate"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="idCard"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="gender"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileNation"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileStreetAddress"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="placeOfBirth"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="name"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="countyOfBirth"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileProvince"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="dateOfBirth"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="fiscalNumber"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="ivaCode"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="registeredOffice"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="companyName"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="address"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileMunicipality"/><saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="email"/></md:IDPSSODescriptor><md:Organization><md:OrganizationName xml:lang="it">Register.it S.p.A.</md:OrganizationName><md:OrganizationDisplayName xml:lang="it">Register.it S.p.A.</md:OrganizationDisplayName><md:OrganizationURL xml:lang="it">https//www.register.it</md:OrganizationURL></md:Organization></md:EntityDescriptor><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" xmlns:xsi="http://www.w3.org/2001/XMLSchemainstance" xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="id-e1d79deb-70f8-40a2-8624-785a9da19633" entityID="https://spid.teamsystem.com/idp">
+  <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+    <ds:SignedInfo>
+      <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+      <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+      <ds:Reference URI="#id-e1d79deb-70f8-40a2-8624-785a9da19633">
+        <ds:Transforms>
+          <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
+          <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+        </ds:Transforms>
+        <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+        <ds:DigestValue>khZostyVOFwCtkt5rHSLJ9UxgM6rKAR+7O+yLQ++5jI=</ds:DigestValue>
+      </ds:Reference>
+    </ds:SignedInfo>
+    <ds:SignatureValue>rnN5Omq7oWmuqqW13KbMr+taRMdqJ85W9+WpcWLX2Wsax26kTHBgD78vVfVWKuejMKeK6F8oSTkiipMlnGLXMniQplvI9rZJO3fj3ygG3qdwPCqFqJ7e9iYPZ5gIMjLuePyoAfcvSdAQiMBxeTX7nwjpLrzB51RaxGNTmJNJv44zbtdR++I1my8nSDRycq5o6+uR+k/SEOiR65+uQbiBvL9Or/N4sEoJyFx23AbQjurWiBzqgHwHPf8tDLBbDa8mjPhReXGK7aePymQU4GlSeZBxSHcSad04gQjlcgayp4d+O43SBczmtueV6szrAqURnhdj6L1PRvyusfNNk04bZA==</ds:SignatureValue>
+    <ds:KeyInfo>
+      <ds:X509Data>
+        <ds:X509Certificate>MIIINTCCBh2gAwIBAgIIJz+ujRbSAYwwDQYJKoZIhvcNAQENBQAwgfsxCzAJBgNV
+BAYTAklUMQ0wCwYDVQQHDARSb21lMSYwJAYDVQQKDB1BZ2VuemlhIHBlciBsJ0l0
+YWxpYSBEaWdpdGFsZTEwMC4GA1UECwwnU2Vydml6aW8gQWNjcmVkaXRhbWVudG8g
+ZSBwcm9nZXR0byBTUElEMTwwOgYDVQQDDDNQcm9nZXR0byBTUElEIC0gR2VzdG9y
+aSBkaSBJZGVudGl0w6AgRGlnaXRhbGUgKElkUCkxKTAnBgkqhkiG9w0BCQEWGnBy
+b3RvY29sbG9AcGVjLmFnaWQuZ292Lml0MRowGAYDVQQFExFWQVRJVC05NzczNTAy
+MDU4NDAeFw0yMjA1MTAwMDAwMDBaFw0zMjA1MDkyMzU5NTlaMIGrMRowGAYDVQRh
+DBFWQVRJVC0wMTAzNTMxMDQxNDEcMBoGA1UEAwwTc3BpZC50ZWFtc3lzdGVtLmNv
+bTEaMBgGA1UECgwRVGVhbVN5c3RlbSBTLnAuQS4xKDAmBgNVBFMMH2h0dHBzOi8v
+c3BpZC50ZWFtc3lzdGVtLmNvbS9pZHAxCzAJBgNVBAYTAklUMQ8wDQYDVQQHDAZQ
+ZXNhcm8xCzAJBgNVBAgMAlBVMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
+AQEAyNJMgyn+iquzTvLR5Z/eYBfOoyJIfI3rYcj5WOSlTzlqXXBCzdcROm/JKgrf
+3MOTEzH8RAn6XkSHXtJDtMpD7GlwYB0mo8scqDNtpszbhm/UXapJTrP7gy/UI3yf
+n99n4hvqkGOdld7w5vaAPS0w9PdcaRxY/7X4olHKBAx2cHAwiqhKuiFEDhfACRWs
+bw4gaIjVM7NuUtL/jG+PJV1NHrEn10vizE7IneMxDNqiQ14IjLL7pJMEPXwbXedz
+ZsModKKAXIX5reNSegEU1Y386BCkmg4IMWd+DglmMJ4uuzcga1AppgjDuqb8yFDa
+NOKy/0Jivh2rs7u9boE4cLVBPQIDAQABo4IDCTCCAwUwCQYDVR0TBAIwADAdBgNV
+HQ4EFgQU/q5NWlPmylmZTsX0C2MwZkrx3b4wHwYDVR0jBBgwFoAUyF8jl8Jbn9To
+hwSTF77f5QNJd18wDgYDVR0PAQH/BAQDAgbAMBEGA1UdEQQKMAiCBmlkcC5pdDAW
+BgNVHRIEDzANggtzcGlkLmdvdi5pdDA/BgNVHR8EODA2MDSgMqAwhi5odHRwczov
+L2VpZGFzLmFnaWQuZ292Lml0L2NybC9jcmxfU1BJRF9JZFAuY3JsMGoGCCsGAQUF
+BwEBBF4wXDBEBggrBgEFBQcwAoY4aHR0cDovL2VpZGFzLmFnaWQuZ292Lml0L2Nl
+cnRpZmljYXRpL1N1Yl9DQV9TUElEX0lkUC5jZXIwFAYIKwYBBQUHMAGGCGh0dHBz
+Oi8vMIIBzgYDVR0gBIIBxTCCAcEwCQYHBACORgEGAjCBlQYEK0wQBjCBjDBEBggr
+BgEFBQcCAjA4GjZFbGVjdHJvbmljIGNlcnRpZmljYXRlIGNvbmZvcm1pbmcgd2l0
+aCBBR0lEIEd1aWRlbGluZXMwRAYIKwYBBQUHAgIwOBo2Q2VydGlmaWNhdG8gZWxl
+dHRyb25pY28gY29uZm9ybWUgYWxsZSBMaW5lZSBndWlkYSBBZ0lEMHIGBitMEAQB
+AjBoMDkGCCsGAQUFBwICMC0aK1NQSUQ6IGdlc3RvcmUgZGVsbGUgaWRlbnRpdOAg
+ZGlnaXRhbGkgKElkUCkwKwYIKwYBBQUHAgIwHxodU1BJRDogSWRlbnRpdHkgUHJv
+dmlkZXIgKElkUCkwCAYGBACPegEDME0GBCtMEAQwRTBDBggrBgEFBQcCARY3aHR0
+cHM6Ly9laWRhcy5hZ2lkLmdvdi5pdC9jcHMvQWdJRF9lSURBU19yb290Q0FfY3Bz
+LnBkZjBPBgYEAI5GAQUwRTBDBggrBgEFBQcCARY3aHR0cHM6Ly9laWRhcy5hZ2lk
+Lmdvdi5pdC9jcHMvQWdJRF9lSURBU19yb290Q0FfY3BzLnBkZjANBgkqhkiG9w0B
+AQ0FAAOCAgEAG9XZeAkIuqSmYb6bq5WrcI2FQtVrfbMH1CXGDKytZUsH5phkGfk/
+8UaIfkbHhnWakM4H9J2gnvfhKorfMt2FHyXFFJ38hlWR8MhFziqthXLUxyLZpUMn
+h8CcNQyFpNz7xbZk/qN5yFfJyY4Rggm1qdgCNR1LsVI3hjuaORTAzvy4kLjfuU5r
+nVYPcxpHF7feJKlN03d8JRKYaIi5U+QVYtYJpTcE7jeYmn4Ewfry2BDCOsnljeYl
+gm3fF8EEVpMfHIhvJg8evATWmKWHpXL2BRtVrl7TfhvtWqKv4tLff+Lv2YqRpmYu
+oApA48/MB4QxwAPUBnmQb3CxVGs6OCbE/tdUfda9HuHP5MXYLtTVbRYu8pHEPnaN
+jPA8y90KRw2wiedgjgOG8BxOkhVF/cYs3yH+0hbPS5Oji27t0P2g9eG/p9TOy4AI
+gUykFimVFk6HV9znknrFSdgsePSp+T5zy45Jdi1z4/RgJN10szJfqEBuvd8MhUu4
+meVgfDqXrqavCVzGpSLuicdk41sTOviBz+PEgbQ/qP9KHQv67SHoF4US9Pp9tkyj
+VFUs7lBnrlFAPpOzd97XdiZfotCA5umibqlxLshy4UK7yl2LZFllpxrfiXTCDASM
+KlMMIcIsWx0lU/qw5KPpqvXELiya791kohJTi+9pyG7LXIOHHA0whr0=</ds:X509Certificate>
+      </ds:X509Data>
+    </ds:KeyInfo>
+  </ds:Signature>
+  <md:Extensions xmlns:spid="https://spid.gov.it/saml-extensions">
+    <spid:SupportedAuthnContextClassRefs>
+      <AuthnContextClassRef>https://www.spid.gov.it/SpidL1</AuthnContextClassRef>
+      <AuthnContextClassRef>https://www.spid.gov.it/SpidL2</AuthnContextClassRef>
+    </spid:SupportedAuthnContextClassRefs>
+    <spid:SupportedPurposes>
+      <Purpose>P</Purpose>
+      <Purpose>LP</Purpose>
+      <Purpose>PG</Purpose>
+      <Purpose>PF</Purpose>
+      <Purpose>PX</Purpose>
+    </spid:SupportedPurposes>
+  </md:Extensions>
+  <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:X509Data>
+          <ds:X509Certificate>MIIINTCCBh2gAwIBAgIIJz+ujRbSAYwwDQYJKoZIhvcNAQENBQAwgfsxCzAJBgNV
 BAYTAklUMQ0wCwYDVQQHDARSb21lMSYwJAYDVQQKDB1BZ2VuemlhIHBlciBsJ0l0
 YWxpYSBEaWdpdGFsZTEwMC4GA1UECwwnU2Vydml6aW8gQWNjcmVkaXRhbWVudG8g
-ZSBwcm9nZXR0byBTUElEMQ0wCwYDVQQDDARBZ0lEMSkwJwYJKoZIhvcNAQkBFhpw
-cm90b2NvbGxvQHBlYy5hZ2lkLmdvdi5pdDEaMBgGA1UEBRMRVkFUSVQtOTc3MzUw
-MjA1ODQwHhcNMTkxMTE4MDAwMDAwWhcNMzkxMTE3MjM1OTU5WjCB1TELMAkGA1UE
-BhMCSVQxDTALBgNVBAcMBFJvbWUxJjAkBgNVBAoMHUFnZW56aWEgcGVyIGwnSXRh
-bGlhIERpZ2l0YWxlMTAwLgYDVQQLDCdTZXJ2aXppbyBBY2NyZWRpdGFtZW50byBl
-IHByb2dldHRvIFNQSUQxFjAUBgNVBAMMDVByb2dldHRvIFNQSUQxKTAnBgkqhkiG
-9w0BCQEWGnByb3RvY29sbG9AcGVjLmFnaWQuZ292Lml0MRowGAYDVQQFExFWQVRJ
-VC05NzczNTAyMDU4NDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOG+
-HkKenes7FCUm+lziQA9sNbA6nv4TVruLyONy27JqYtD37iGU2jPjHQlagbVZxXK4
-wiE8dzCfUmzMNec36yxHMycLefrl+e1VjvRG00j5fHCBvLO5PeJu5onsE2LWEhub
-g/T1+TZ2l7a8RzTcLrlpGZRufCSf4Lqk/Vpr5emfaRTkPjZwxY8AGfaow1HpxHRy
-vYhlfDhStPOfey4ohi3OQlhpWsYuQRE5FopUk0zzCa4AC0kTpuG/e36f9RBw8mkV
-sIYkkkLo5zR5FhU5vVdmeqm7IoRu7S6S0V6ynhNrkwghMYg6m7Iy4z/s/9gntjO0
-cPW+9cySeh2Hvx8FQU6TjdQMcyDCHqeLisdQAt47CHidmRMxdS/T89pp7fXXwDRU
-PP2XimvLT9B6ss48KeINK1+atsjfaHbQfF6O1j2zX8y7tMU1tfSgsIRHsdlhMhLZ
-v9G0CyqHQoL4Kfenh8IzZFOZ/cLamgFmxJoi3/7Gnvu7WqcxxcEKTCCA4il0q687
-DYXtVBwcdHRfr+y1Q9ZJ7npZhk19t7IMvhblOsC5+gVHc9cgSSHNa/lZRWyUMBI1
-kZqoJXYxG4ZEX1J1SP94uTR8hvwjtUGFV4on9NJD3+CdsZUR5h7WmBoDT9+FBoyk
-MmJrKmcm8kl9f8Zfx7Y4zSajH928yAQmkRBmnGCtAgMBAAGjggGPMIIBizAMBgNV
-HRMBAf8EAjAAMB0GA1UdDgQWBBTyS24ftu+oo64GJRUIl+FOXSxi4DAfBgNVHSME
-GDAWgBSfx1tsJaanm4NepvvB/qN5O82PkTAOBgNVHQ8BAf8EBAMCBkAwPQYDVR0f
-BDYwNDAyoDCgLoYsaHR0cHM6Ly93d3cvZWlkYXMuYWdpZC5nb3YuaXQvY3JsL2Ny
-bF9TQS5jcmwwNwYIKwYBBQUHAQEEKzApMCcGCCsGAQUFBzABhhtodHRwczovL29j
-c3BfU0EuYWdpZC5nb3YuaXQwgbIGA1UdIASBqjCBpzBMBgMrTBAwRTBDBggrBgEF
-BQcCARY3aHR0cDovL2VpZGFzLmFnaWQuZ292Lml0L2Nwcy9BZ0lEX2VJREFTX3Jv
-b3RDQV9jcHMucGRmOzBXBgQrTBAEME8wTQYIKwYBBQUHAgIwQRo/R292ZXJubWVu
-dCBwcm9qZWN0IFNpc3RlbWEgUHViYmxpY28gZGkgSWRlbnRpdOAgRGlnaXRhbGUg
-KFNQSUQpMA0GCSqGSIb3DQEBDQUAA4ICAQAKtdL1GkGx74Uny4Bg5p/ZYcCOrI/D
-rV0dK9nhyl+uGLPn2nxRDXgDesaWGaVPywbtKbNd/6+aqUdgcvlwsePafiy3LHYo
-wpILQ7X2mNUjnvoX0o2AcK9DfY+fUXA2DH+zKrwwH5SCDYykx/JQNaQp+vZQcFaK
-UHOVltuhrW8fJAya9pIPLpAL4z97zC648GUB6EnsnjcwWd3HKw88+cJcI9yuh5wL
-TeOJtI0C2LeDTg1WHaO7eX+Nrp/euia/OIlzfl/9x7KGHuDvhsLIOPEcHktLVbxH
-4rH/JpcbhS43asd9hbMYw+DLAQ51abZ63PlIJqUcfFotzgQ29mKnAT4auIMYqbR7
-Y2viM8ZCUNOxvV06cp+AejOF65iMny8PPG0puMvzqngsmsj3CbKLDTPxq5W8Cu5P
-5nq/s8ShcqQetqNMnfXTdCc8ulhKHX37txbee7/vcFM3TgXGlYBD2qCJkHKlQWkn
-2p81+O1j9qVIpEFBhdCN/WTmQr6ev97yr1zwhPa8wABfUVzAS2WEayCEBg45+caY
-6R9P6kI8i1XIb7AY8+lGGoDNOUQjLcnZllPMWkQr/WYkh0BZqZ1aYHsFo+d4tNHc
-EKVE7io0tjCLViOFyOsbOMFh7JhJgQS6uPtCYvnmpZJd6LIXweZUuhxy6jw6A+2w
-a0Mb8Qjd61OSdQ==</ds:X509Certificate>
-            </ds:X509Data>
-        </ds:KeyInfo>
-    </ds:Signature>
-    <!-- ARUBA ID *start* -->
-    <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_895d61ef-8ac1-4a80-81bc-3469cf2d6683" entityID="https://loginspid.aruba.it">
-        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-            <ds:SignedInfo>
-                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
-                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
-                <ds:Reference URI="#_895d61ef-8ac1-4a80-81bc-3469cf2d6683">
-                    <ds:Transforms>
-                        <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
-                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
-                    </ds:Transforms>
-                    <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
-                    <ds:DigestValue>Rgz8nwzHgpdUxx/WBdPgPzYiotGNzUwwlwW46zCd7dY=</ds:DigestValue>
-                </ds:Reference>
-            </ds:SignedInfo>
-            <ds:SignatureValue>HFR/inyn/yV0h/tvUqMhJhbWuosEf8NMzO2AqH7RLtGVrLn4L1ZrOTT1iiY08jf94uQQuMhFdPaFjkAoZIJyeW7GxNjSu5r+9E8fmlkxV3KXzfStDserIAmMQ93onAeMOx8kYJ1GQ9U34zYDfDTp+Gtwwei0kbR1AU6R8xv4WHJ3+rndTJbFawEiNNzd6HvNlHd/yjl3jgBIucDDjRJOcv7frjMWap5nmNJwhkny98pNzYkWhDpEOkZLqHn3g1yJgDpm+e6BtUSsVKl96fLgVUbePWfTQG/wckz76gwK4oLM6LLRwx9F70d7Wa7FPBjmaoTVrO/olq3g1D7MQU7Zug==</ds:SignatureValue>
-            <ds:KeyInfo>
-                <ds:X509Data>
-                    <ds:X509Certificate>MIIExTCCA62gAwIBAgIQH32A70kY92tuXB8AGi2DdDANBgkqhkiG9w0BAQsFADBsMQswCQYDVQQG EwJJVDEYMBYGA1UECgwPQXJ1YmFQRUMgUy5wLkEuMSEwHwYDVQQLDBhDZXJ0aWZpY2F0aW9uIEF1 dGhvcml0eUIxIDAeBgNVBAMMF0FydWJhUEVDIFMucC5BLiBORyBDQSAyMB4XDTIwMDEyMjAwMDAw MFoXDTI1MDEyMTIzNTk1OVowgaAxCzAJBgNVBAYTAklUMRYwFAYDVQQKDA1BcnViYSBQRUMgc3Bh MREwDwYDVQQLDAhQcm9kb3R0bzEWMBQGA1UEAwwNcGVjLml0IHBlYy5pdDEZMBcGA1UEBRMQWFhY WFhYMDBYMDBYMDAwWDEPMA0GA1UEKgwGcGVjLml0MQ8wDQYDVQQEDAZwZWMuaXQxETAPBgNVBC4T CDIwODc2Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqt2oHJhcp03l73p+QYpE J+f3jYYj0W0gos0RItZx/w4vpsiKBygaqDNVWSwfo1aPdVDIX13f62O+lBki29KTt+QWv5K6SGHD UXYPntRdEQlicIBh2Z0HfrM7fDl+xeJrMp1s4dsSQAuB5TJOlFZq7xCQuukytGWBTvjfcN/os5aE sEg+RbtZHJR26SbbUcIqWb27Swgj/9jwK+tvzLnP4w8FNvEOrNfR0XwTMNDFrwbOCuWgthv5jNBs VZaoqNwiA/MxYt+gTOMj/o5PWKk8Wpm6o/7/+lWAoxh0v8x9OkbIi+YaFpIxuCcUqsrJJk63x2gH Cc2nr+yclYUhsKD/AwIDAQABo4IBLDCCASgwDgYDVR0PAQH/BAQDAgeAMB0GA1UdDgQWBBTKQ3+N PGcXFk8nX994vMTVpba1EzBHBgNVHSAEQDA+MDwGCysGAQQBgegtAQEBMC0wKwYIKwYBBQUHAgEW H2h0dHBzOi8vY2EuYXJ1YmFwZWMuaXQvY3BzLmh0bWwwWAYDVR0fBFEwTzBNoEugSYZHaHR0cDov L2NybC5hcnViYXBlYy5pdC9BcnViYVBFQ1NwQUNlcnRpZmljYXRpb25BdXRob3JpdHlCL0xhdGVz dENSTC5jcmwwHwYDVR0jBBgwFoAU8v9jQBwRQv3M3/FZ9m7omYcxR3kwMwYIKwYBBQUHAQEEJzAl MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5hcnViYXBlYy5pdDANBgkqhkiG9w0BAQsFAAOCAQEA ZKpor1MrrYwPw+IuPZElQAuNzXsaSWSnn/QQwJtW49c4rFM4mEud9c61p9XxIIbgQKmDmNbzC+Dm wJSZ8ILdCAyBHmY3BehVRAy3KRA2KQhS9kd4vywf5KVYd1L5hQa9DBrusxF7i1X/SEeLQgoKkov0 R8v43UncqXS/ql50ovJFxi938Rv4rVwa8o0hqqc6WUcjkidB6M9aNJLIbOZN3xNUgC28qIr8y7N8 lbxWbwVrGxqKDtpaA9J0hOOXxwuTfSd1zOtT0KSSSUQ53QGOPnxyjxYDQbJu60/lBPuUV5wb/Z2r gpeUH1/n7limHV5sVmOZgSnf18T+0STANCfkXg==</ds:X509Certificate>
-                </ds:X509Data>
-            </ds:KeyInfo>
-        </ds:Signature>
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-                    <ds:X509Data>
-                        <ds:X509Certificate>MIIExTCCA62gAwIBAgIQH32A70kY92tuXB8AGi2DdDANBgkqhkiG9w0BAQsFADBsMQswCQYDVQQG EwJJVDEYMBYGA1UECgwPQXJ1YmFQRUMgUy5wLkEuMSEwHwYDVQQLDBhDZXJ0aWZpY2F0aW9uIEF1 dGhvcml0eUIxIDAeBgNVBAMMF0FydWJhUEVDIFMucC5BLiBORyBDQSAyMB4XDTIwMDEyMjAwMDAw MFoXDTI1MDEyMTIzNTk1OVowgaAxCzAJBgNVBAYTAklUMRYwFAYDVQQKDA1BcnViYSBQRUMgc3Bh MREwDwYDVQQLDAhQcm9kb3R0bzEWMBQGA1UEAwwNcGVjLml0IHBlYy5pdDEZMBcGA1UEBRMQWFhY WFhYMDBYMDBYMDAwWDEPMA0GA1UEKgwGcGVjLml0MQ8wDQYDVQQEDAZwZWMuaXQxETAPBgNVBC4T CDIwODc2Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqt2oHJhcp03l73p+QYpE J+f3jYYj0W0gos0RItZx/w4vpsiKBygaqDNVWSwfo1aPdVDIX13f62O+lBki29KTt+QWv5K6SGHD UXYPntRdEQlicIBh2Z0HfrM7fDl+xeJrMp1s4dsSQAuB5TJOlFZq7xCQuukytGWBTvjfcN/os5aE sEg+RbtZHJR26SbbUcIqWb27Swgj/9jwK+tvzLnP4w8FNvEOrNfR0XwTMNDFrwbOCuWgthv5jNBs VZaoqNwiA/MxYt+gTOMj/o5PWKk8Wpm6o/7/+lWAoxh0v8x9OkbIi+YaFpIxuCcUqsrJJk63x2gH Cc2nr+yclYUhsKD/AwIDAQABo4IBLDCCASgwDgYDVR0PAQH/BAQDAgeAMB0GA1UdDgQWBBTKQ3+N PGcXFk8nX994vMTVpba1EzBHBgNVHSAEQDA+MDwGCysGAQQBgegtAQEBMC0wKwYIKwYBBQUHAgEW H2h0dHBzOi8vY2EuYXJ1YmFwZWMuaXQvY3BzLmh0bWwwWAYDVR0fBFEwTzBNoEugSYZHaHR0cDov L2NybC5hcnViYXBlYy5pdC9BcnViYVBFQ1NwQUNlcnRpZmljYXRpb25BdXRob3JpdHlCL0xhdGVz dENSTC5jcmwwHwYDVR0jBBgwFoAU8v9jQBwRQv3M3/FZ9m7omYcxR3kwMwYIKwYBBQUHAQEEJzAl MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5hcnViYXBlYy5pdDANBgkqhkiG9w0BAQsFAAOCAQEA ZKpor1MrrYwPw+IuPZElQAuNzXsaSWSnn/QQwJtW49c4rFM4mEud9c61p9XxIIbgQKmDmNbzC+Dm wJSZ8ILdCAyBHmY3BehVRAy3KRA2KQhS9kd4vywf5KVYd1L5hQa9DBrusxF7i1X/SEeLQgoKkov0 R8v43UncqXS/ql50ovJFxi938Rv4rVwa8o0hqqc6WUcjkidB6M9aNJLIbOZN3xNUgC28qIr8y7N8 lbxWbwVrGxqKDtpaA9J0hOOXxwuTfSd1zOtT0KSSSUQ53QGOPnxyjxYDQbJu60/lBPuUV5wb/Z2r gpeUH1/n7limHV5sVmOZgSnf18T+0STANCfkXg==</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-                    <ds:X509Data>
-                        <ds:X509Certificate>MIIExTCCA62gAwIBAgIQIHtEvEhGM77HwqsuvSbi9zANBgkqhkiG9w0BAQsFADBsMQswCQYDVQQG EwJJVDEYMBYGA1UECgwPQXJ1YmFQRUMgUy5wLkEuMSEwHwYDVQQLDBhDZXJ0aWZpY2F0aW9uIEF1 dGhvcml0eUIxIDAeBgNVBAMMF0FydWJhUEVDIFMucC5BLiBORyBDQSAyMB4XDTE3MDEyMzAwMDAw MFoXDTIwMDEyMzIzNTk1OVowgaAxCzAJBgNVBAYTAklUMRYwFAYDVQQKDA1BcnViYSBQRUMgc3Bh MREwDwYDVQQLDAhQcm9kb3R0bzEWMBQGA1UEAwwNcGVjLml0IHBlYy5pdDEZMBcGA1UEBRMQWFhY WFhYMDBYMDBYMDAwWDEPMA0GA1UEKgwGcGVjLml0MQ8wDQYDVQQEDAZwZWMuaXQxETAPBgNVBC4T CDE2MzQ1MzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqt2oHJhcp03l73p+QYpE J+f3jYYj0W0gos0RItZx/w4vpsiKBygaqDNVWSwfo1aPdVDIX13f62O+lBki29KTt+QWv5K6SGHD UXYPntRdEQlicIBh2Z0HfrM7fDl+xeJrMp1s4dsSQAuB5TJOlFZq7xCQuukytGWBTvjfcN/os5aE sEg+RbtZHJR26SbbUcIqWb27Swgj/9jwK+tvzLnP4w8FNvEOrNfR0XwTMNDFrwbOCuWgthv5jNBs VZaoqNwiA/MxYt+gTOMj/o5PWKk8Wpm6o/7/+lWAoxh0v8x9OkbIi+YaFpIxuCcUqsrJJk63x2gH Cc2nr+yclYUhsKD/AwIDAQABo4IBLDCCASgwDgYDVR0PAQH/BAQDAgeAMB0GA1UdDgQWBBTKQ3+N PGcXFk8nX994vMTVpba1EzBHBgNVHSAEQDA+MDwGCysGAQQBgegtAQEBMC0wKwYIKwYBBQUHAgEW H2h0dHBzOi8vY2EuYXJ1YmFwZWMuaXQvY3BzLmh0bWwwWAYDVR0fBFEwTzBNoEugSYZHaHR0cDov L2NybC5hcnViYXBlYy5pdC9BcnViYVBFQ1NwQUNlcnRpZmljYXRpb25BdXRob3JpdHlCL0xhdGVz dENSTC5jcmwwHwYDVR0jBBgwFoAU8v9jQBwRQv3M3/FZ9m7omYcxR3kwMwYIKwYBBQUHAQEEJzAl MCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5hcnViYXBlYy5pdDANBgkqhkiG9w0BAQsFAAOCAQEA nEw0NuaspbpDjA5wggwFtfQydU6b3Bw2/KXPRKS2JoqGmx0SYKj+L17A2KUBa2c7gDtKXYz0FLT6 0Bv0pmBN/oYCgVMEBJKqwRwdki9YjEBwyCZwNEx1kDAyyqFEVU9vw/OQfrAdp7MTbuZGFKknVt7b 9wOYy/Op9FiUaTg6SuOy0ep+rqhihltYNAAl4L6fY45mHvqa5vvVG30OvLW/S4uvRYUXYwY6KhWv NdDf5CnFugnuEZtHJrVe4wx9aO5GvFLFZ/mQ35C5mXPQ7nIb0CDdLBJdz82nUoLSA5BUbeXAUkfa hW/hLxLdhks68/TK694xVIuiB40pvMmJwxIyDA==</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://loginspid.aruba.it/ServiceLogoutRequest"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://loginspid.aruba.it/ServiceLogoutRequest"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://loginspid.aruba.it/ServiceLoginWelcome"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://loginspid.aruba.it/ServiceLoginWelcome"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice identificativo SPID" Name="spidCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nome" Name="name"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Cognome" Name="familyName"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Luogo di nascita" Name="placeOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia di nascita" Name="countyOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di nascita" Name="dateOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sesso" Name="gender"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Ragione o denominazione sociale" Name="companyName"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice Fiscale Persona Giuridica" Name="companyFiscalNumber"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sede legale" Name="registeredOffice"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice fiscale" Name="fiscalNumber"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Partita IVA" Name="ivaCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Documento d'identità" Name="idCard"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Numero di telefono mobile" Name="mobilePhone"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo di posta elettronica" Name="email"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio fisico" Name="address"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo domicilio fisico" Name="domicileStreetAddress"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="CAP domicilio fisico" Name="domicilePostalCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Comune domicilio fisico" Name="domicileMunicipality"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia domicilio fisico" Name="domicileProvince"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nazione domicilio fisico" Name="domicileNation"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di scadenza identità" Name="expirationDate"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio digitale" Name="digitalAddress"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="it">ArubaPEC S.p.A.</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="it">ArubaPEC S.p.A.</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="it">https://www.pec.it/</md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- ARUBA ID *end* -->
-    <!-- INFOCERT ID *start* -->
-    <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_03b36ccec41c1226dab610fd20fb42dd" cacheDuration="P0Y0M30DT0H0M0.000S" entityID="https://identity.infocert.it">
-        <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
-            <SignedInfo>
-                <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
-                <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
-                <Reference URI="#_03b36ccec41c1226dab610fd20fb42dd">
-                    <Transforms>
-                        <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
-                        <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
-                    </Transforms>
-                    <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
-                    <DigestValue>JYabeJxTWpGOIW90eC7ekvprrusmJyKVSYolR8+CKNg=</DigestValue>
-                </Reference>
-            </SignedInfo>
-            <SignatureValue>jFMgkoDLNlC7Jt98viHFG9BmVzZz0n0ldOh7IkVmv7kFXtXke/WIcRyenFP+mDKyBSgSpp+uzfEx6nc6vJDnnXh3ct/UpNPQSpJOnwP+H0SK80rS6yL9NSxIQXkQsjSEQpn3tyBXWS4pRPv+ixI5MZzqq6AylL8bqEe9bb1AkP9fch9rN+gJ/WUxKsHlZ6sb9zIxio81L360+e1jVci8N84y25tpr+MyLCVJSBSBWLMxVRSxswXX8sQ//OebShEgmrl90cqRRxgoQXCnL84Fj99wIXYDyQRuCmcRV4RRe+slwW2fn54qFC4BfT69qU2G4GfzVjwqtdUiz2vwd2jEZA==</SignatureValue>
-            <KeyInfo>
-                <X509Data>
-                    <X509Certificate>MIIGbDCCBVSgAwIBAgIDFI9hMA0GCSqGSIb3DQEBCwUAMIGGMQswCQYDVQQGEwJJVDEVMBMGA1UECgwMSU5GT0NFUlQgU1BBMRswGQYDVQQLDBJFbnRlIENlcnRpZmljYXRvcmUxFDASBgNVBAUTCzA3OTQ1MjExMDA2MS0wKwYDVQQDDCRJbmZvQ2VydCBTZXJ2aXppIGRpIENlcnRpZmljYXppb25lIDIwHhcNMTkwMTEwMTQ1NzI1WhcNMjIwMTEwMDAwMDAwWjCBsTEUMBIGA1UELhMLMDc5NDUyMTEwMDYxDzANBgkqhkiG9w0BCQEWADEUMBIGA1UEBRMLMDc5NDUyMTEwMDYxHTAbBgNVBAMMFGlkZW50aXR5LmluZm9jZXJ0Lml0MRQwEgYDVQQLDAtJbmZvQ2VydCBJRDEhMB8GA1UECgwYSW5mb0NlcnQgU3BBLzA3OTQ1MjExMDA2MQ0wCwYDVQQHDARSb21hMQswCQYDVQQGEwJJVDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJvEta2kscGXQoVAHK2tJi1od9FBEv/YovikioN91ohzG99gEsv5vojsroFsF4rITK9wk6syohwPjWjaKxN45x2b41Stz2llqInB9SOY8+yCANY9GyOjhj8PW2+X5KD+XBSgyOBPXienAGIviKW6wYReDR9Wmw3I3vODZr812B7VG1HwhEZHVxqJGkg9mozN7jN+1uHTzYw7UBIaVCyro89iRmTZpnQvo1gBG3FM5wlY1Vi+MDwX211YjaVVJnYXHg9g85B5ACvYDCpnpYnb5BdmrrtgSns2mRlHGlP+M/WZj+vcv5jHXRvomyS2ic0e/gZ4YYsHh1+gdWQktEYILNcCAwEAAaOCArQwggKwMBMGA1UdJQQMMAoGCCsGAQUFBwMCMCUGA1UdEgQeMByBGmZpcm1hLmRpZ2l0YWxlQGluZm9jZXJ0Lml0MGUGA1UdIAReMFwwWgYGK0wkAQEIMFAwTgYIKwYBBQUHAgIwQgxASW5mb0NlcnQgU3BBIFNTTCwgU01JTUUgYW5kIGRpZ2l0YWwgc2lnbmF0dXJlIENsaWVudCBDZXJ0aWZpY2F0ZTA3BggrBgEFBQcBAQQrMCkwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vY3NwLnNjLmluZm9jZXJ0Lml0LzCB7AYDVR0fBIHkMIHhMDSgMqAwhi5odHRwOi8vY3JsLmluZm9jZXJ0Lml0L2NybHMvc2Vydml6aTIvQ1JMMDMuY3JsMIGooIGloIGihoGfbGRhcDovL2xkYXAuaW5mb2NlcnQuaXQvY24lM0RJbmZvQ2VydCUyMFNlcnZpemklMjBkaSUyMENlcnRpZmljYXppb25lJTIwMiUyMENSTDAzLG91JTNERW50ZSUyMENlcnRpZmljYXRvcmUsbyUzRElORk9DRVJUJTIwU1BBLEMlM0RJVD9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0MA4GA1UdDwEB/wQEAwIEsDCBswYDVR0jBIGrMIGogBTpNppkKVKhWv5ppMSDt4B9D2oSeKGBjKSBiTCBhjELMAkGA1UEBhMCSVQxFTATBgNVBAoMDElORk9DRVJUIFNQQTEbMBkGA1UECwwSRW50ZSBDZXJ0aWZpY2F0b3JlMRQwEgYDVQQFEwswNzk0NTIxMTAwNjEtMCsGA1UEAwwkSW5mb0NlcnQgU2Vydml6aSBkaSBDZXJ0aWZpY2F6aW9uZSAyggECMB0GA1UdDgQWBBRtxPZ78wWulPjzok0OM9Rih9WYmzANBgkqhkiG9w0BAQsFAAOCAQEAXm9OL+hVgFtZL5QTRqxQf4LrFwDn+IzUfSKMaiwh85WexK5DSW3eZ/+HFS2nQvF2WPls00wHvAfQ99U6NWLRps7a5Nswzo0ZBCtiG0Jh9Jp60U4J+e6HTqjmMokrV5Q+21hzurCsV3lLY986mNOoulJLrq421WFNBVV4ngiegYS6uIhRjBOO6v+xA6rRUPdMYd8rEhEyD3XSiQfedkqghJQmJ0t29kYRphdFws9JcLMiOwYmUZohjfbXBnhJtgn9eyuPRIBFx/WUC4PaYMFL62i+9GYVV+Dn3/L23HJm0it8fKtYEhcgQbHJxa4QByfpGbE3li+ojHsCpN/XKHeDbA==</X509Certificate>
-                </X509Data>
-            </KeyInfo>
-        </Signature>
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-                    <ds:X509Data>
-                        <ds:X509Certificate>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</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://identity.infocert.it/spid/samlslo" ResponseLocation="https://identity.infocert.it/spid/samlslo/response"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity.infocert.it/spid/samlslo" ResponseLocation="https://identity.infocert.it/spid/samlslo/response"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://identity.infocert.it/spid/samlslo/soap"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://identity.infocert.it/spid/samlsso"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity.infocert.it/spid/samlsso"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio fisico" Name="address"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Ragione o denominazione sociale" Name="companyName"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia di nascita" Name="countyOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di nascita" Name="dateOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio digitale" Name="digitalAddress"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo di posta elettronica" Name="email"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di scadenza identita" Name="expirationDate"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Cognome" Name="familyName"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice fiscale" Name="fiscalNumber"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sesso" Name="gender"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Documento d'identita" Name="idCard"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Partita IVA" Name="ivaCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Numero di telefono mobile" Name="mobilePhone"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nome" Name="name"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Luogo di nascita" Name="placeOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sede legale" Name="registeredOffice"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice identificativo SPID" Name="spidCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Tipologia domicilio fisico" Name="domicileAddressType"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo domicilio fisico" Name="domicileStreetAddress"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nr. Civico domicilio fisico" Name="domicileHouseNumber"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="CAP domicilio fisico" Name="domicilePostalCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Comune domicilio fisico" Name="domicileMunicipality"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia domicilio fisico" Name="domicileProvince"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nazione domicilio fisico" Name="domicileNation"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="it">InfoCert S.p.A.</md:OrganizationName>
-            <md:OrganizationName xml:lang="en">InfoCert S.p.A.</md:OrganizationName>
-            <md:OrganizationName xml:lang="fr">InfoCert S.p.A.</md:OrganizationName>
-            <md:OrganizationName xml:lang="de">InfoCert S.p.A.</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="it">InfoCert S.p.A.</md:OrganizationDisplayName>
-            <md:OrganizationDisplayName xml:lang="en">InfoCert S.p.A.</md:OrganizationDisplayName>
-            <md:OrganizationDisplayName xml:lang="fr">InfoCert S.p.A.</md:OrganizationDisplayName>
-            <md:OrganizationDisplayName xml:lang="de">InfoCert S.p.A.</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="it">https://www.infocert.it</md:OrganizationURL>
-            <md:OrganizationURL xml:lang="en">https://www.infocert.it/international/?lang=en</md:OrganizationURL>
-            <md:OrganizationURL xml:lang="fr">https://www.infocert.it/international/?lang=fr</md:OrganizationURL>
-            <md:OrganizationURL xml:lang="de">https://www.infocert.it/international/?lang=de</md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- INFOCERT ID *end* -->
-    <!-- INTESA ID *start* -->
-    <md:EntityDescriptor ID="_a04faedb3e1198b61905928ad32d2a79" cacheDuration="P0Y0M30DT0H0M0.000S" entityID="https://spid.intesa.it">
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo>
-                    <ds:X509Data>
-                        <ds:X509Certificate>MIIEDjCCAvagAwIBAgIIIT1A+ywbIQAwDQYJKoZIhvcNAQELBQAwXjEzMDEGA1UE                            AwwqSU4uVEUuUy5BLiBTLnAuQSAtIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MRow                            GAYDVQQKDBFJTi5URS5TLkEuIFMucC5BLjELMAkGA1UEBhMCSVQwHhcNMTcwOTE1                            MTMyMzQ1WhcNMzYwNzAxMTk1OTAwWjBQMSUwDwYDVQQuEwgyMDA3OTc5NzASBgNV                            BAMMC1NBTUwgU2lnbmVyMRowGAYDVQQKDBFJTi5URS5TLkEuIFMucC5BLjELMAkG                            A1UEBhMCSVQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhYXkP+eQB                            URgmslDXBjG0ad+DkSAkWt7hUoaTyiK0e34QiyArq043plqTrt+6FzTGeX7960Qr                            3tCLGCiVOi47QuE09IKfJmKGEaUQnJQehHYZs/XV0OYQl18WrCxUX6ALOcqPs+4y                            pCbJV1WzSosfBcPBzivJER8kvrynMXI3or18e9XPTGBn8qNFyNF1E3BJ5UhrDvk5                            W2gKyYKz0M/CIu9PiHuO/ne6HbeNrCS/xzXtjsTusk41AOxIQoFbEzS08xcRY+QD                            E8oLcAmecSjT3xv3r9dWke6KTTAahS3K+5mOYRcBXj2FFegiUp+xh4OAWdH1+gGD                            Ym+3aAmMpaLtAgMBAAGjgd0wgdowHQYDVR0OBBYEFEw9xWg4qvQGdlGMCqmJcVDg                            dE8aMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUySnWJ2sw0ljDpJVrtrxCCP0b                            1CYwGgYDVR0QBBMwEYAPMjAxNzA5MTUxMzIzNDVaMD8GA1UdHwQ4MDYwNKAyoDCG                            Lmh0dHA6Ly9lLXRydXN0Y29tLmludGVzYS5pdC9DUkwvSU5URVNBX25DQS5jcmww                            DgYDVR0PAQH/BAQDAgSwMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDBDAN                            BgkqhkiG9w0BAQsFAAOCAQEAVRHyFRZZFpW/qjJpKftd86h3wOdUqOhc2W8ZHv0s                            t8ptG+mZk3l1iWAsEPqKMIBhksgTvalnHC1lHUt11xsZ2mzUjVpiG8XiWXYXQnY2                            D+q7Dc4n20kJ717qf4SDN8wX1A6XvT3Wrsfh87vg3ZFD56/eyur2snWu4OilsFqA                            yLhnExG4puJ4JKBWnlwAGXD9SFgkSZ8FC66KQs6CAwVkvCIom3IwJeU/VrYQF6XH                            kVCQgr5mojXgCkrlRNl53WAKfQHCT4QH+oQVP97PCEL/wQ1zi0UzWauKT6u2wDym 9rcpch+WLa0GUtYNhuoLU2SregPKwTWg2DfINJObyWRpww== </ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.intesa.it/Time4UserServices/services/idp/SingleLogout" ResponseLocation="https://spid.intesa.it/Time4UserServices/services/idp/SingleLogout"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.intesa.it/Time4UserServices/services/idp/SingleLogout" ResponseLocation="https://spid.intesa.it/Time4UserServices/services/idp/SingleLogout"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient </md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.intesa.it/Time4UserServices/services/idp/AuthnRequest/"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.intesa.it/Time4UserServices/services/idp/AuthnRequest/"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio fisico" Name="address"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Ragione o denominazione sociale" Name="companyName"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Provincia di nascita" Name="countyOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di nascita" Name="dateOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Domicilio digitale" Name="digitalAddress"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Indirizzo di posta elettronica" Name="email"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Data di scadenza identita" Name="expirationDate"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Cognome" Name="familyName"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice fiscale" Name="fiscalNumber"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sesso" Name="gender"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Documento d'identita" Name="idCard"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Partita IVA" Name="ivaCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Numero di telefono mobile" Name="mobilePhone"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Nome" Name="name"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Luogo di nascita" Name="placeOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Sede legale" Name="registeredOffice"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="Codice identificativo SPID" Name="spidCode"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="it">IN.TE.S.A. S.p.A.</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="it"> Intesa S.p.A.</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="it">https://www.intesa.it/ </md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- INTESA ID *end* -->
-    <!-- LEPIDA *start* -->
-    <md:EntityDescriptor xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xs="http://www.w3.org/2001/XMLSchemainstance" entityID="https://id.lepida.it/idp/shibboleth">
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo>
-                    <ds:X509Data>
-                        <ds:X509Certificate>                            MIIDHDCCAgSgAwIBAgIVALisbudTRxLy3vlMcEDfaqr3iW89MA0GCSqGSIb3DQEB                            CwUAMBcxFTATBgNVBAMMDGlkLmxlcGlkYS5pdDAeFw0xODA4MDgxMDIzMTJaFw0z                            ODA4MDgxMDIzMTJaMBcxFTATBgNVBAMMDGlkLmxlcGlkYS5pdDCCASIwDQYJKoZI                            hvcNAQEBBQADggEPADCCAQoCggEBAMOFERgxPEYPqAjN7oW6y8oSSY6tGm2OCIU+                            VyKhb2OqfNLpF8tPrytX17pgwVYHzjxRCNMTC83frbmtBapABtm9KuX7qaSPvaJx                            0+UqYk9FdKCKQOEkmWcNOJfwzNMP65B+cDxP3sa1JoAMeAO0x95bnYoX0ZHcssKk                            wpgMb8/JHZHzqu3odxADtO5PaT3xaCyMIcqIp1O2nVn7SizUE1gNucLAdaP4kh0o                            7nU61pz4pG3gQXK+uROteDD8cTU2Nxi7W1T73tQSuwst54BS2p9IBXzWrA9V0Ck1                            0oiQTcIC8X9McepCrNzgCOBdap00Tifusb30t74BREARgwjp1N8CAwEAAaNfMF0w                            HQYDVR0OBBYEFL32/n7uf1Re14pW+gwGxZQHUZBCMDwGA1UdEQQ1MDOCDGlkLmxl                            cGlkYS5pdIYjaHR0cHM6Ly9pZC5sZXBpZGEuaXQvaWRwL3NoaWJib2xldGgwDQYJ                            KoZIhvcNAQELBQADggEBAK80B1mEWKOTJkVJOJot2xU79Lhs1+domUSYQiA+tlS4                            6IAfWwDZqI1llIjgL85n7qMsKFvYTIskInoG51Iezv2dTxlB6IMI8NPRfiFXo2s8                            NYjbzWyETbdXzCbDR0tKNke0TFE0oxunNfE5YRsmH4bPnjhPUjCSHX7wIhlNrLae                            3FjMQp1OLDs7HmJo3AhuAVmHCoG7QV/ly4ZHcVYx4F7HUsFg5uxNYjZbo+XMutJz                            4nZFOFE+uRzTwwfdR2sxny+ppkruTwIhEXyzknoiw1mGIEWZc6scnOAiwZeqTccU YVNHp+PSFs9SD8l+2PO4Oh8Y3dYT+5ojv+S6T7vy5xE= </ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://id.lepida.it/idp/profile/SAML2/POST/SLO"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://id.lepida.it/idp/profile/SAML2/Redirect/SLO"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://id.lepida.it/idp/profile/SAML2/POST/SSO"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://id.lepida.it/idp/profile/SAML2/Redirect/SSO"/>
-            <saml2:Attribute FriendlyName="Codice identificativo SPID" Name="spidCode" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Nome" Name="name" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Cognome" Name="familyName" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Luogo di nascita" Name="placeOfBirth" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Provincia di nascita" Name="countyOfBirth" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Data di nascita" Name="dateOfBirth" xs:type="xs:date"/>
-            <saml2:Attribute FriendlyName="Sesso" Name="gender" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Ragione o denominazione sociale" Name="companyName" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Sede legale" Name="registeredOffice" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Codice fiscale" Name="fiscalNumber" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Partita IVA" Name="ivaCode" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Documento d'identità" Name="idCard" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Numero di telefono mobile" Name="mobilePhone" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Indirizzo di posta elettronica" Name="email" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Domicilio fisico" Name="address" xs:type="xs:string"/>
-            <saml2:Attribute FriendlyName="Data di scadenza identità" Name="expirationDate" xs:type="xs:date"/>
-            <saml2:Attribute FriendlyName="Domicilio digitale" Name="digitalAddress" xs:type="xs:string"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="it">Lepida S.p.A.</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="it">Lepida S.p.A.</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="it">https://www.lepida.it/</md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- LEPIDA *end* -->
-    <!-- NAMIRIAL ID *start* -->
-    <md:EntityDescriptor ID="_pfx8cdfef6c-7dff-4e1c-a9eb-2c51cac9d137" entityID="https://idp.namirialtsp.com/idp">
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo>
-                    <ds:X509Data>
-                        <ds:X509SubjectName>CN=*.namirialtsp.com,OU=Security Departement,O=Namirial Spa,L=Senigallia,ST=Ancona,C=IT</ds:X509SubjectName>
-                        <ds:X509Certificate>MIIDNzCCAh+gAwIBAgIUNGvDUjTpLSPlP4sEfO0+JARITnEwDQYJKoZIhvcNAQEL BQAwHjEcMBoGA1UEAwwTaWRwLm5hbWlyaWFsdHNwLmNvbTAeFw0xNzAzMDgwOTE3 NTZaFw0zNzAzMDgwOTE3NTZaMB4xHDAaBgNVBAMME2lkcC5uYW1pcmlhbHRzcC5j b20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrcJvYRh49nNijgzwL 1OOwgzeMDUWcMSwoWdtMpx3kDhZwMFQ3ITDmNvlz21I0QKaP0BDg/UAjfCbDtLqU y6wHtI6NWVJoqIziw+dLfg7S5Sr2nOzJ/sKhzadWH1kDsetIenOLU2ex+7Vf/+4P 7nIrS0c+xghi9/zN8dH6+09wWYnloGmcW3qWRFMKJjR3ctBmsmqCKWNIIq2QfeFs zSSeG0xaNlLKBrj6TyPDxDqPAskq038W1fCuh7aejCk7XTTOxuuIwDGJiYsc8rfX SG9/auskAfCziGEm304/ojy5MRcNjekz4KgWxT9anMCipv0I2T7tCAivc1z9QCsE Pk5pAgMBAAGjbTBrMB0GA1UdDgQWBBQi8+cnv0Nw0lbuICzxlSHsvBw5SzBKBgNV HREEQzBBghNpZHAubmFtaXJpYWx0c3AuY29thipodHRwczovL2lkcC5uYW1pcmlh bHRzcC5jb20vaWRwL3NoaWJib2xldGgwDQYJKoZIhvcNAQELBQADggEBAEp953KM WY7wJbJqnPTmDkXaZJVoubcjW86IY494RgVBeZ4XzAGOifa3ScDK6a0OWfIlRTba KKu9lEVw9zs54vLp9oQI4JulomSaL805Glml4bYqtcLoh5qTnKaWp5qvzBgcQ7i2 GcDC9F+qrsJYreCA7rbHXzF0hu5yIfz0BrrCRWvuWiop92WeKvtucI4oBGfoHhYO ZsLuoTT3hZiEFJT60xS5Y2SNdz+Eia9Dgt0cvAzoOVk93Cxg+XBdyyEEiZn/zvhj us29KyFrzh3XYznh+4jq3ymt7Os4JKmY0aJm7yNxw+LyPjkdaB0icfo3+hD7PiuU jC3Y67LUWQ8YgOc=</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.namirialtsp.com/idp/profile/SAML2/POST/SLO"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.namirialtsp.com/idp/profile/SAML2/Redirect/SLO"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://idp.namirialtsp.com/idp/profile/SAML2/POST/SSO"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://idp.namirialtsp.com/idp/profile/SAML2/Redirect/SSO"/>
-            <saml:Attribute FriendlyName="Domicilio fisico" Name="address"/>
-            <saml:Attribute FriendlyName="Ragione o denominazione sociale" Name="companyName"/>
-            <saml:Attribute FriendlyName="Codice fiscale persona giuridica" Name="companyFiscalNumber"/>
-            <saml:Attribute FriendlyName="Provincia di nascita" Name="countyOfBirth"/>
-            <saml:Attribute FriendlyName="Data di nascita" Name="dateOfBirth"/>
-            <saml:Attribute FriendlyName="Indirizzo domicilio fisico" Name="domicileStreetAddress"/>
-            <saml:Attribute FriendlyName="CAP domicilio fisico" Name="domicilePostalCode"/>
-            <saml:Attribute FriendlyName="Comune domicilio fisico" Name="domicileMunicipality"/>
-            <saml:Attribute FriendlyName="Provincia domicilio fisico" Name="domicileProvince"/>
-            <saml:Attribute FriendlyName="Nazione domicilio fisico" Name="domicileNation"/>
-            <saml:Attribute FriendlyName="Domicilio digitale" Name="digitalAddress"/>
-            <saml:Attribute FriendlyName="Indirizzo di posta elettronica" Name="email"/>
-            <saml:Attribute FriendlyName="Data di scadenza identita" Name="expirationDate"/>
-            <saml:Attribute FriendlyName="Cognome" Name="familyName"/>
-            <saml:Attribute FriendlyName="Codice fiscale" Name="fiscalNumber"/>
-            <saml:Attribute FriendlyName="Sesso" Name="gender"/>
-            <saml:Attribute FriendlyName="Documento d'identita" Name="idCard"/>
-            <saml:Attribute FriendlyName="Partita IVA" Name="ivaCode"/>
-            <saml:Attribute FriendlyName="Numero di telefono mobile" Name="mobilePhone"/>
-            <saml:Attribute FriendlyName="Nome" Name="name"/>
-            <saml:Attribute FriendlyName="Luogo di nascita" Name="placeOfBirth"/>
-            <saml:Attribute FriendlyName="Sede legale" Name="registeredOffice"/>
-            <saml:Attribute FriendlyName="Codice identificativo SPID" Name="spidCode"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="it">Namirial</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="it">Namirial S.p.a. Trust Service Provider</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="it">https://www.namirialtsp.com</md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- NAMIRIAL ID *end* -->
-    <!-- POSTE ID *start* -->
-    <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_fc99bae1-fa30-4afe-a428-6dc502976e74" cacheDuration="P0Y0M30DT0H0M0.000S" entityID="https://posteid.poste.it">
-        <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
-            <SignedInfo>
-                <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
-                <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
-                <Reference URI="#_fc99bae1-fa30-4afe-a428-6dc502976e74">
-                    <Transforms>
-                        <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
-                        <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
-                    </Transforms>
-                    <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
-                    <DigestValue>HuZp3BIFRsUQLvzPnebPMaMFL48slyJzdoPJfH96GIk=</DigestValue>
-                </Reference>
-            </SignedInfo>
-            <SignatureValue>DRYpdyQk7aK2mHKUKw3JY6aj71NO0eR8FhnQccA/WOJmUs3uuty3sVn4PGSWf/DrSQ0U6x0Q1pZx IY1+N0/Y4C/sdts5jZCY6TW44BiSPe0jJxuOVq1MaFMsoITIb0Me/aX6s1Sv0EFAXLFWtrrbGJma V2wlJL7E/NQUJqGeNmc1Y8DrdBRzPwsMNi7NVHewx89F/raOL1y5Fr4m7NF7ES1XG9bpV/eVyeYj pV6sU9JqgZ9nz/JuUvFAoRj8OaWwoyEZo/y7mq46sLPEeCQMLSuRK67vDBsQuZUZu14Oc4lmOUiQ 17jTJh6hBNkpuE3/kEk8P2dgRPtJRvoxzLxpYw==</SignatureValue>
-            <KeyInfo>
-                <X509Data>
-                    <X509Certificate>MIIFgzCCA2ugAwIBAgIIJSppAZKg/XQwDQYJKoZIhvcNAQELBQAwZTELMAkGA1UEBhMCSVQxHjAc BgNVBAoMFVBvc3RlIEl0YWxpYW5lIFMucC5BLjEaMBgGA1UEYQwRVkFUSVQtMDExMTQ2MDEwMDYx GjAYBgNVBAMMEVBvc3RlIEl0YWxpYW5lIENBMB4XDTIxMDIxODExNDYzMVoXDTI0MDIxOTExNDYz MVowQzELMAkGA1UEBhMCSVQxHjAcBgNVBAoMFVBvc3RlIEl0YWxpYW5lIFMucC5BLjEUMBIGA1UE AwwLaWRwLXBvc3RlaWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZFEtJoEHFAjpC aZcj5DVWrRDyaLZyu31XApslbo87CyWz61OJMtw6QQU0MdCtrYbtSJ6vJwx7/6EUjsZ3u4x3EPLd lkyiGOqukPwATv4c7TVOUVs5onIqTphM9b+AHRg4ehiMGesm/9d7RIaLuN79iPUvdLn6WP3idAfE w+rhJ/wYEQ0h1Xm5osNUgtWcBGavZIjLssWNrDDfJYxXH3QZ0kI6feEvLCJwgjXLGkBuhFehNhM4 fhbX9iUCWwwkJ3JsP2++Rc/iTA0LZhiUsXNNq7gBcLAJ9UX2V1dWjTzBHevfHspzt4e0VgIIwbDR qsRtF8VUPSDYYbLoqwbLt18XAgMBAAGjggFXMIIBUzA/BggrBgEFBQcBAQQzMDEwLwYIKwYBBQUH MAGGI2h0dHA6Ly9wb3N0ZWNlcnQucG9zdGUuaXQvcGktb2NzcENBMB0GA1UdDgQWBBRL64pGUJHw Y7ok6cRMUgXvMBoLMjAfBgNVHSMEGDAWgBRs0025F7hHd0d+ULyAaELPZ7w/eTA+BgNVHSAENzA1 MDMGCCtMMAEFAQEEMCcwJQYIKwYBBQUHAgEWGWh0dHA6Ly9wb3N0ZWNlcnQucG9zdGUuaXQwOAYD VR0fBDEwLzAtoCugKYYnaHR0cDovL3Bvc3RlY2VydC5wb3N0ZS5pdC9waS1DQS9jcmwuY3JsMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwQwJwYDVR0RBCAwHoEc aWRwLXBvc3RlaWRAcG9zdGVpdGFsaWFuZS5pdDANBgkqhkiG9w0BAQsFAAOCAgEAp0EhITlTx+cO aoXw//nBl6Q4y82MfSGfPJIw3ROV1z3tHBctaksi/RxAzyMD5beO2s8Q6lXx0sLMCcuUQmzHj3eJ bqn+6sIUr000dSlX/iPgVUc2dvPIZZg9xu38J8NvCfrtgAGY5iMVFMd3CZLFw0ybr+Bx/1K/NhQO 7jxn0RSGA1J4mM2syVhEDUODs9kz3T4kXYUofwwvPL1a9xB9RBqbp7plYtbBBdftEORUQrWzH1mz NO4nlFkX9qgVrgFIIJJT2KadHoop1r65O9ffncK14qpNo3eTsNDq3hRlteb7ylmlJ8CoakUWZeXD DP9ZboWxZkyp+9903OrToRvOgeWSc+YrqcRZOv7r6tTALTk4U9OTKDG9/eNWSGQqD7Qd/9rssfF0 uJEGHnbsk/Hvdxn8apgWN1Zwt6tsT7f/DO0Pdlaso9g7PVy8R+B3VkWAh76uCcICIPFBluC/ljaH V8hI+VsCLpMClo83YMCEM6E6nAPD22+fDR/DF9P73P04yUvJVHx4cnHPrpxVrPbaJoKrr9mUOLFy VRekX78ZRgiFiKYDNsiq9+148oRy+VehpmBoQ+T2EPeDFQ8JJ4xT8H7qdyr1swSk/9Lu4K0kw/yC TSb9K/wCuiHiuoSB54rzJoQxz90gS868r/+JGahYwHY5dUh1RbA4g5N8H3TDThc=</X509Certificate>
-                </X509Data>
-            </KeyInfo>
-        </Signature>
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-                    <ds:X509Data>
-                        <ds:X509Certificate>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</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-                    <ds:X509Data>
-                        <ds:X509Certificate>MIIFgzCCA2ugAwIBAgIIJSppAZKg/XQwDQYJKoZIhvcNAQELBQAwZTELMAkGA1UEBhMCSVQxHjAc BgNVBAoMFVBvc3RlIEl0YWxpYW5lIFMucC5BLjEaMBgGA1UEYQwRVkFUSVQtMDExMTQ2MDEwMDYx GjAYBgNVBAMMEVBvc3RlIEl0YWxpYW5lIENBMB4XDTIxMDIxODExNDYzMVoXDTI0MDIxOTExNDYz MVowQzELMAkGA1UEBhMCSVQxHjAcBgNVBAoMFVBvc3RlIEl0YWxpYW5lIFMucC5BLjEUMBIGA1UE AwwLaWRwLXBvc3RlaWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZFEtJoEHFAjpC aZcj5DVWrRDyaLZyu31XApslbo87CyWz61OJMtw6QQU0MdCtrYbtSJ6vJwx7/6EUjsZ3u4x3EPLd lkyiGOqukPwATv4c7TVOUVs5onIqTphM9b+AHRg4ehiMGesm/9d7RIaLuN79iPUvdLn6WP3idAfE w+rhJ/wYEQ0h1Xm5osNUgtWcBGavZIjLssWNrDDfJYxXH3QZ0kI6feEvLCJwgjXLGkBuhFehNhM4 fhbX9iUCWwwkJ3JsP2++Rc/iTA0LZhiUsXNNq7gBcLAJ9UX2V1dWjTzBHevfHspzt4e0VgIIwbDR qsRtF8VUPSDYYbLoqwbLt18XAgMBAAGjggFXMIIBUzA/BggrBgEFBQcBAQQzMDEwLwYIKwYBBQUH MAGGI2h0dHA6Ly9wb3N0ZWNlcnQucG9zdGUuaXQvcGktb2NzcENBMB0GA1UdDgQWBBRL64pGUJHw Y7ok6cRMUgXvMBoLMjAfBgNVHSMEGDAWgBRs0025F7hHd0d+ULyAaELPZ7w/eTA+BgNVHSAENzA1 MDMGCCtMMAEFAQEEMCcwJQYIKwYBBQUHAgEWGWh0dHA6Ly9wb3N0ZWNlcnQucG9zdGUuaXQwOAYD VR0fBDEwLzAtoCugKYYnaHR0cDovL3Bvc3RlY2VydC5wb3N0ZS5pdC9waS1DQS9jcmwuY3JsMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwQwJwYDVR0RBCAwHoEc aWRwLXBvc3RlaWRAcG9zdGVpdGFsaWFuZS5pdDANBgkqhkiG9w0BAQsFAAOCAgEAp0EhITlTx+cO aoXw//nBl6Q4y82MfSGfPJIw3ROV1z3tHBctaksi/RxAzyMD5beO2s8Q6lXx0sLMCcuUQmzHj3eJ bqn+6sIUr000dSlX/iPgVUc2dvPIZZg9xu38J8NvCfrtgAGY5iMVFMd3CZLFw0ybr+Bx/1K/NhQO 7jxn0RSGA1J4mM2syVhEDUODs9kz3T4kXYUofwwvPL1a9xB9RBqbp7plYtbBBdftEORUQrWzH1mz NO4nlFkX9qgVrgFIIJJT2KadHoop1r65O9ffncK14qpNo3eTsNDq3hRlteb7ylmlJ8CoakUWZeXD DP9ZboWxZkyp+9903OrToRvOgeWSc+YrqcRZOv7r6tTALTk4U9OTKDG9/eNWSGQqD7Qd/9rssfF0 uJEGHnbsk/Hvdxn8apgWN1Zwt6tsT7f/DO0Pdlaso9g7PVy8R+B3VkWAh76uCcICIPFBluC/ljaH V8hI+VsCLpMClo83YMCEM6E6nAPD22+fDR/DF9P73P04yUvJVHx4cnHPrpxVrPbaJoKrr9mUOLFy VRekX78ZRgiFiKYDNsiq9+148oRy+VehpmBoQ+T2EPeDFQ8JJ4xT8H7qdyr1swSk/9Lu4K0kw/yC TSb9K/wCuiHiuoSB54rzJoQxz90gS868r/+JGahYwHY5dUh1RbA4g5N8H3TDThc=</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://posteid.poste.it/jod-fs/sloservicepost" ResponseLocation="https://posteid.poste.it/jod-fs/sloserviceresponsepost"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://posteid.poste.it/jod-fs/sloserviceredirect" ResponseLocation="https://posteid.poste.it/jod-fs/sloserviceresponseredirect"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://posteid.poste.it/jod-fs/ssoservicepost"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://posteid.poste.it/jod-fs/ssoserviceredirect"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="familyName" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="name" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="spidCode" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="fiscalNumber" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="gender" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="dateOfBirth" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="placeOfBirth" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="countyOfBirth" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="idCard" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="address" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileStreetAddress" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicilePostalCode" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileMunicipality" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileProvince" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="domicileNation" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="digitalAddress" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="expirationDate" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="email" NameFormat="xsi:string"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="mobilePhone" NameFormat="xsi:string"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="it">Poste Italiane SpA</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="it">Poste Italiane SpA</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="it">https://www.poste.it</md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- POSTE ID *end* -->
-    <!-- SIELTE ID *start* -->
-    <md:EntityDescriptor ID="pfxf9223e2d-feaf-64df-5f85-0836c6ae13bb" entityID="https://identity.sieltecloud.it">
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo>
-                    <ds:X509Data>
-                        <ds:X509Certificate>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</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:KeyDescriptor use="encryption">
-                <ds:KeyInfo>
-                    <ds:X509Data>
-                        <ds:X509Certificate>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</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://identity.sieltecloud.it/simplesaml/saml2/idp/SLS.php"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity.sieltecloud.it/simplesaml/saml2/idp/SLS.php"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://identity.sieltecloud.it/simplesaml/saml2/idp/SSO.php"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://identity.sieltecloud.it/simplesaml/saml2/idp/SSO.php"/>
-            <saml:Attribute Name="familyName"/>
-            <saml:Attribute Name="name"/>
-            <saml:Attribute Name="spidCode"/>
-            <saml:Attribute Name="fiscalNumber"/>
-            <saml:Attribute Name="gender"/>
-            <saml:Attribute Name="dateOfBirth"/>
-            <saml:Attribute Name="placeOfBirth"/>
-            <saml:Attribute Name="companyName"/>
-            <saml:Attribute Name="registeredOffice"/>
-            <saml:Attribute Name="ivaCode"/>
-            <saml:Attribute Name="idCard"/>
-            <saml:Attribute Name="mobilePhone"/>
-            <saml:Attribute Name="email"/>
-            <saml:Attribute Name="address"/>
-            <saml:Attribute Name="digitalAddress"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="en">Sielte S.p.A.</md:OrganizationName>
-            <md:OrganizationName xml:lang="it">Sielte S.p.A.</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="en">http://www.sielte.it</md:OrganizationDisplayName>
-            <md:OrganizationDisplayName xml:lang="it">http://www.sielte.it</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="en">http://www.sielte.it</md:OrganizationURL>
-            <md:OrganizationURL xml:lang="it">http://www.sielte.it</md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- SIELTE ID *end* -->
-    <!-- SPIDITALIA *start* -->
-    <md:EntityDescriptor ID="_ff3cffde0ce6f778bc26f1ebcc782548" entityID="https://spid.register.it">
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo>
-                    <ds:X509Data>
-                        <ds:X509Certificate>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</ds:X509Certificate>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.register.it/login/singleLogout" ResponseLocation="https://spid.register.it/login/singleLogout/response"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.register.it/login/singleLogout" ResponseLocation="https://spid.register.it/login/singleLogout/response"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.register.it/login/sso"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.register.it/login/sso"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="email"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="mobilePhone"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="idCard"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="fiscalNumber"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="gender"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="dateOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="familyName"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="name"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="spidCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="placeOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="address"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="digitalAddress"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="expirationDate"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="countyOfBirth"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="ivaCode"/>
-            <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Name="companyName"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="it">Register.it S.p.A.</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="it">Register.it                S.p.A.</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="it">https//www.register.it</md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- SPIDITALIA *end* -->
-    <!-- TIM ID *start* -->
-    <md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_d2301c246999a2b66348086deeaa3befc1bde2222" entityID="https://login.id.tim.it/affwebservices/public/saml2sso">
-        <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-                    <ds:X509Data>
-                        <ds:X509IssuerSerial>
-                            <ds:X509IssuerName>CN=TI Trust Technologies srl,OU=Servizi per l'identita digitale,O=Telecom Italia Trust Technologies srl,L=Pomezia,ST=RM,C=IT</ds:X509IssuerName>
-                            <ds:X509SerialNumber>16181073618410851771</ds:X509SerialNumber>
-                        </ds:X509IssuerSerial>
-                        <ds:X509Certificate>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</ds:X509Certificate>
-                        <ds:X509SubjectName>CN=TI Trust Technologies srl,OU=Servizi per l'identita digitale,O=Telecom Italia Trust Technologies srl,L=Pomezia,ST=RM,C=IT</ds:X509SubjectName>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:KeyDescriptor use="signing">
-                <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-                    <ds:X509Data>
-                        <ds:X509Certificate>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</ds:X509Certificate>
-                        <ds:X509SubjectName>CN=TI Trust Technologies srl,OU=Servizi per l'identita digitale,O=Telecom Italia Trust Technologies srl,C=IT</ds:X509SubjectName>
-                    </ds:X509Data>
-                </ds:KeyInfo>
-            </md:KeyDescriptor>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.id.tim.it/affwebservices/public/saml2slo"/>
-            <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.id.tim.it/affwebservices/public/saml2slo"/>
-            <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://login.id.tim.it/affwebservices/public/saml2sso"/>
-            <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://login.id.tim.it/affwebservices/public/saml2sso"/>
-            <ns2:Attribute xmlns:ns2="urn:oasis:names:tc:SAML:2.0:assertion" Name="spidCode" NameFormat="xsi:string"/>
-            <ns3:Attribute xmlns:ns3="urn:oasis:names:tc:SAML:2.0:assertion" Name="name" NameFormat="xsi:string"/>
-            <ns4:Attribute xmlns:ns4="urn:oasis:names:tc:SAML:2.0:assertion" Name="familyName" NameFormat="xsi:string"/>
-            <ns5:Attribute xmlns:ns5="urn:oasis:names:tc:SAML:2.0:assertion" Name="placeOfBirth" NameFormat="xsi:string"/>
-            <ns6:Attribute xmlns:ns6="urn:oasis:names:tc:SAML:2.0:assertion" Name="countyOfBirth" NameFormat="xsi:string"/>
-            <ns7:Attribute xmlns:ns7="urn:oasis:names:tc:SAML:2.0:assertion" Name="dateOfBirth" NameFormat="xsi:string"/>
-            <ns8:Attribute xmlns:ns8="urn:oasis:names:tc:SAML:2.0:assertion" Name="gender" NameFormat="xsi:string"/>
-            <ns9:Attribute xmlns:ns9="urn:oasis:names:tc:SAML:2.0:assertion" Name="companyName" NameFormat="xsi:string"/>
-            <ns10:Attribute xmlns:ns10="urn:oasis:names:tc:SAML:2.0:assertion" Name="registeredOffice" NameFormat="xsi:string"/>
-            <ns11:Attribute xmlns:ns11="urn:oasis:names:tc:SAML:2.0:assertion" Name="fiscalNumber" NameFormat="xsi:string"/>
-            <ns12:Attribute xmlns:ns12="urn:oasis:names:tc:SAML:2.0:assertion" Name="ivaCode" NameFormat="xsi:string"/>
-            <ns13:Attribute xmlns:ns13="urn:oasis:names:tc:SAML:2.0:assertion" Name="idCard" NameFormat="xsi:string"/>
-            <ns14:Attribute xmlns:ns14="urn:oasis:names:tc:SAML:2.0:assertion" Name="mobilePhone" NameFormat="xsi:string"/>
-            <ns15:Attribute xmlns:ns15="urn:oasis:names:tc:SAML:2.0:assertion" Name="email" NameFormat="xsi:string"/>
-            <ns16:Attribute xmlns:ns16="urn:oasis:names:tc:SAML:2.0:assertion" Name="address" NameFormat="xsi:string"/>
-            <ns17:Attribute xmlns:ns17="urn:oasis:names:tc:SAML:2.0:assertion" Name="digitalAddress" NameFormat="xsi:string"/>
-            <ns18:Attribute xmlns:ns18="urn:oasis:names:tc:SAML:2.0:assertion" Name="expirationDate" NameFormat="xsi:string"/>
-        </md:IDPSSODescriptor>
-        <md:Organization>
-            <md:OrganizationName xml:lang="en">TI Trust Technologies srl</md:OrganizationName>
-            <md:OrganizationDisplayName xml:lang="en">Trust Technologies srl</md:OrganizationDisplayName>
-            <md:OrganizationURL xml:lang="en">https://www.trusttechnologies.it</md:OrganizationURL>
-        </md:Organization>
-    </md:EntityDescriptor>
-    <!-- TIM ID *end* -->
-</md:EntitiesDescriptor>
+ZSBwcm9nZXR0byBTUElEMTwwOgYDVQQDDDNQcm9nZXR0byBTUElEIC0gR2VzdG9y
+aSBkaSBJZGVudGl0w6AgRGlnaXRhbGUgKElkUCkxKTAnBgkqhkiG9w0BCQEWGnBy
+b3RvY29sbG9AcGVjLmFnaWQuZ292Lml0MRowGAYDVQQFExFWQVRJVC05NzczNTAy
+MDU4NDAeFw0yMjA1MTAwMDAwMDBaFw0zMjA1MDkyMzU5NTlaMIGrMRowGAYDVQRh
+DBFWQVRJVC0wMTAzNTMxMDQxNDEcMBoGA1UEAwwTc3BpZC50ZWFtc3lzdGVtLmNv
+bTEaMBgGA1UECgwRVGVhbVN5c3RlbSBTLnAuQS4xKDAmBgNVBFMMH2h0dHBzOi8v
+c3BpZC50ZWFtc3lzdGVtLmNvbS9pZHAxCzAJBgNVBAYTAklUMQ8wDQYDVQQHDAZQ
+ZXNhcm8xCzAJBgNVBAgMAlBVMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
+AQEAyNJMgyn+iquzTvLR5Z/eYBfOoyJIfI3rYcj5WOSlTzlqXXBCzdcROm/JKgrf
+3MOTEzH8RAn6XkSHXtJDtMpD7GlwYB0mo8scqDNtpszbhm/UXapJTrP7gy/UI3yf
+n99n4hvqkGOdld7w5vaAPS0w9PdcaRxY/7X4olHKBAx2cHAwiqhKuiFEDhfACRWs
+bw4gaIjVM7NuUtL/jG+PJV1NHrEn10vizE7IneMxDNqiQ14IjLL7pJMEPXwbXedz
+ZsModKKAXIX5reNSegEU1Y386BCkmg4IMWd+DglmMJ4uuzcga1AppgjDuqb8yFDa
+NOKy/0Jivh2rs7u9boE4cLVBPQIDAQABo4IDCTCCAwUwCQYDVR0TBAIwADAdBgNV
+HQ4EFgQU/q5NWlPmylmZTsX0C2MwZkrx3b4wHwYDVR0jBBgwFoAUyF8jl8Jbn9To
+hwSTF77f5QNJd18wDgYDVR0PAQH/BAQDAgbAMBEGA1UdEQQKMAiCBmlkcC5pdDAW
+BgNVHRIEDzANggtzcGlkLmdvdi5pdDA/BgNVHR8EODA2MDSgMqAwhi5odHRwczov
+L2VpZGFzLmFnaWQuZ292Lml0L2NybC9jcmxfU1BJRF9JZFAuY3JsMGoGCCsGAQUF
+BwEBBF4wXDBEBggrBgEFBQcwAoY4aHR0cDovL2VpZGFzLmFnaWQuZ292Lml0L2Nl
+cnRpZmljYXRpL1N1Yl9DQV9TUElEX0lkUC5jZXIwFAYIKwYBBQUHMAGGCGh0dHBz
+Oi8vMIIBzgYDVR0gBIIBxTCCAcEwCQYHBACORgEGAjCBlQYEK0wQBjCBjDBEBggr
+BgEFBQcCAjA4GjZFbGVjdHJvbmljIGNlcnRpZmljYXRlIGNvbmZvcm1pbmcgd2l0
+aCBBR0lEIEd1aWRlbGluZXMwRAYIKwYBBQUHAgIwOBo2Q2VydGlmaWNhdG8gZWxl
+dHRyb25pY28gY29uZm9ybWUgYWxsZSBMaW5lZSBndWlkYSBBZ0lEMHIGBitMEAQB
+AjBoMDkGCCsGAQUFBwICMC0aK1NQSUQ6IGdlc3RvcmUgZGVsbGUgaWRlbnRpdOAg
+ZGlnaXRhbGkgKElkUCkwKwYIKwYBBQUHAgIwHxodU1BJRDogSWRlbnRpdHkgUHJv
+dmlkZXIgKElkUCkwCAYGBACPegEDME0GBCtMEAQwRTBDBggrBgEFBQcCARY3aHR0
+cHM6Ly9laWRhcy5hZ2lkLmdvdi5pdC9jcHMvQWdJRF9lSURBU19yb290Q0FfY3Bz
+LnBkZjBPBgYEAI5GAQUwRTBDBggrBgEFBQcCARY3aHR0cHM6Ly9laWRhcy5hZ2lk
+Lmdvdi5pdC9jcHMvQWdJRF9lSURBU19yb290Q0FfY3BzLnBkZjANBgkqhkiG9w0B
+AQ0FAAOCAgEAG9XZeAkIuqSmYb6bq5WrcI2FQtVrfbMH1CXGDKytZUsH5phkGfk/
+8UaIfkbHhnWakM4H9J2gnvfhKorfMt2FHyXFFJ38hlWR8MhFziqthXLUxyLZpUMn
+h8CcNQyFpNz7xbZk/qN5yFfJyY4Rggm1qdgCNR1LsVI3hjuaORTAzvy4kLjfuU5r
+nVYPcxpHF7feJKlN03d8JRKYaIi5U+QVYtYJpTcE7jeYmn4Ewfry2BDCOsnljeYl
+gm3fF8EEVpMfHIhvJg8evATWmKWHpXL2BRtVrl7TfhvtWqKv4tLff+Lv2YqRpmYu
+oApA48/MB4QxwAPUBnmQb3CxVGs6OCbE/tdUfda9HuHP5MXYLtTVbRYu8pHEPnaN
+jPA8y90KRw2wiedgjgOG8BxOkhVF/cYs3yH+0hbPS5Oji27t0P2g9eG/p9TOy4AI
+gUykFimVFk6HV9znknrFSdgsePSp+T5zy45Jdi1z4/RgJN10szJfqEBuvd8MhUu4
+meVgfDqXrqavCVzGpSLuicdk41sTOviBz+PEgbQ/qP9KHQv67SHoF4US9Pp9tkyj
+VFUs7lBnrlFAPpOzd97XdiZfotCA5umibqlxLshy4UK7yl2LZFllpxrfiXTCDASM
+KlMMIcIsWx0lU/qw5KPpqvXELiya791kohJTi+9pyG7LXIOHHA0whr0=</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.teamsystem.com/idp/logout/post"/>
+    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.teamsystem.com/idp/logout/redirect"/>
+    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://spid.teamsystem.com/idp/sso/post"/>
+    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://spid.teamsystem.com/idp/sso/redirect"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="address"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="companyName"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="countyOfBirth"/>
+    <saml2:Attribute xsi:type="xsi:date" Name="dateOfBirth"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="digitalAddress"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="email"/>
+    <saml2:Attribute xsi:type="xsi:date" Name="expirationDate"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="familyName"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="fiscalNumber"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="gender"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="idCard"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="ivaCode"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="mobilePhone"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="name"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="placeOfBirth"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="registeredOffice"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="spidCode"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="companyFiscalNumber"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="domicileStreetAddress"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="domicileMunicipality"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="domicilePostalCode"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="domicileProvince"/>
+    <saml2:Attribute xsi:type="xsi:string" Name="domicileNation"/>
+  </md:IDPSSODescriptor>
+  <md:Organization>
+    <md:OrganizationName xml:lang="it">TeamSystem s.p.a.</md:OrganizationName>
+    <md:OrganizationName xml:lang="en">TeamSystem s.p.a.</md:OrganizationName>
+    <md:OrganizationDisplayName xml:lang="it">TeamSystem</md:OrganizationDisplayName>
+    <md:OrganizationDisplayName xml:lang="en">TeamSystem</md:OrganizationDisplayName>
+    <md:OrganizationURL xml:lang="it">https://www.teamsystem.com</md:OrganizationURL>
+    <md:OrganizationURL xml:lang="en">https://international.teamsystem.com/ww/</md:OrganizationURL>
+  </md:Organization>
+</md:EntityDescriptor></md:EntitiesDescriptor>
\ No newline at end of file
diff --git a/example/pki/idem-mdx-service-crt.pem b/example/pki/idem-mdx-service-crt.pem
new file mode 100644
index 00000000..199945bd
--- /dev/null
+++ b/example/pki/idem-mdx-service-crt.pem
@@ -0,0 +1,26 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
diff --git a/example/plugins/backends/ciesaml2_backend.yaml b/example/plugins/backends/ciesaml2_backend.yaml
new file mode 100644
index 00000000..8a6a9aab
--- /dev/null
+++ b/example/plugins/backends/ciesaml2_backend.yaml
@@ -0,0 +1,150 @@
+module: backends.ciesaml2.CieSAMLBackend
+
+name: cieSaml2
+config:
+  # idp_blacklist_file: /path/to/blacklist.json
+
+  # error templates
+  static_storage_url: "https://localhost:9999"
+  error_template: "spid_login_error.html"
+  template_folder: "templates" # project root
+
+  # make metadata downloadable from entityid url
+  entityid_endpoint: true
+
+  spid_allowed_acrs:
+    - https://www.spid.gov.it/SpidL1
+    - https://www.spid.gov.it/SpidL2
+    - https://www.spid.gov.it/SpidL3
+
+  spid_acr_comparison: "minimum"
+
+  acr_mapping:
+    "": 'https://www.spid.gov.it/SpidL2'
+    # "": 'https://www.spid.gov.it/SpidL3'
+    # specify AuthnContext per IdP
+    # "https://identity.sieltecloud.it": 'https://www.spid.gov.it/SpidL1'
+    # "https://idp.namirialtsp.com/idp": 'https://www.spid.gov.it/SpidL1'
+    # "https://identity.infocert.it": 'https://www.spid.gov.it/SpidL1'
+
+  sp_config:
+    key_file: ./pki/privkey.pem
+    cert_file: ./pki/cert.pem
+    encryption_keypairs:
+    - {'key_file': ./pki/privkey.pem, 'cert_file': ./pki/cert.pem}
+
+    attribute_map_dir: 'attributes-map'
+
+    organization:
+      display_name: 
+        - [ 'change with $SATOSA_ORGANIZATION_DISPLAY_NAME_EN', 'en']
+        - [ 'change with $SATOSA_ORGANIZATION_DISPLAY_NAME_IT', 'it']
+      name: 
+        - [ 'change with $SATOSA_ORGANIZATION_NAME_EN', 'en']
+        - [ 'change with $SATOSA_ORGANIZATION_NAME_IT', 'it']
+      url:
+        - [ 'https://change_with_SATOSA_ORGANIZATION_URL_EN', 'en']
+        - [ 'https://change_with_SATOSA_ORGANIZATION_URL_IT', 'it']
+
+    contact_person:
+      - contact_type: 'administrative'
+        company: change_with_SATOSA_ORGANIZATION_NAME_IT
+        email_address: satosa_contact_person_email_address@example.it
+        telephone_number: change_with_SATOSA_CONTACT_PERSON_TELEPHONE_NUMBER
+        cie_info: 
+          Public: ''
+          IPACode: ispra_rm
+          Municipality: H501
+
+
+    metadata:
+      local: [./metadata/idp/]
+      # using pyFF or other MDX server
+      # mdq:
+      #  - url: "http://mdq.auth.unical.it/static/sha1"
+          # cert: mdq.pem
+
+    entityid: '<base_url>/<name>/metadata'
+    accepted_time_diff: 10
+
+    service:
+      sp:
+        ui_info:
+          display_name:
+            - lang: en
+              text: change with  $SATOSA_UI_DISPLAY_NAME_EN
+            - lang: it
+              text: change with $SATOSA_UI_DISPLAY_NAME_IT
+          description:
+            - lang: en
+              text: change with $SATOSA_UI_DESCRIPTION_EN
+            - lang: it
+              text: change with $SATOSA_UI_DESCRIPTION_IT
+          information_url:
+            - lang: en
+              text: change with $SATOSA_UI_INFORMATION_URL_EN
+            - lang: it 
+              text: change with $SATOSA_UI_INFORMATION_URL_IT
+          privacy_statement_url:
+            - lang: en
+              text: change with $SATOSA_UI_PRIVACY_URL_EN
+            - lang: it
+              text: change with $SATOSA_UI_PRIVACY_URL_IT
+          logo:
+            text: change with $SATOSA_UI_LOGO_URL
+            width: change with $SATOSA_UI_LOGO_WIDTH
+            height: change with $SATOSA_UI_LOGO_HEIGHT
+
+        # sign dig and enc
+        authn_requests_signed: true
+        want_response_signed: true
+        want_assertions_signed: true
+
+        signing_algorithm: "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"
+        digest_algorithm: "http://www.w3.org/2001/04/xmlenc#sha256"
+
+        # security
+        only_use_keys_in_metadata: true
+
+        # it depends by acr level, see spidsaml2.authn_request
+        # force_authn: false
+
+        name_id_format_allow_create: false
+        name_id_format: 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient'
+        requested_attribute_name_format: 'urn:oasis:names:tc:SAML:2.0:attrname-format:basic'
+        allow_unknown_attributes: true
+
+        # in production different workers do not share the same storage!
+        allow_unsolicited: true
+
+        # this instantiate the attribute_consuming_service
+        required_attributes: [
+                              'name',
+                              'familyName',
+                              'dateOfBirth',
+                              'fiscalNumber',
+                              ]
+
+        #optional_attributes: ['gender',
+        #                      'companyName',
+        #                      'registeredOffice',
+        #                      'ivaCode',
+        #                      'idCard',
+        #                      'digitalAddress',
+        #                      'placeOfBirth',
+        #                      'countyOfBirth',
+        #                      'dateOfBirth',
+        #                      'address',
+        #                      'mobilePhone',
+        #                      'expirationDate']
+
+        endpoints:
+          assertion_consumer_service:
+          - [<base_url>/<name>/acs/post, 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST']
+          single_logout_service:
+          - [<base_url>/<name>/ls/post/, 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST']
+          discovery_response:
+          - [<base_url>/<name>/disco, 'urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol']
+
+  # disco_srv must be defined if there is more than one IdP in the metadata specified above
+  disco_srv: "https://sso.isprambiente.it/static/disco.html"
diff --git a/example/plugins/backends/saml2_backend.yaml b/example/plugins/backends/saml2_backend.yaml
index 7013372c..efd35f42 100644
--- a/example/plugins/backends/saml2_backend.yaml
+++ b/example/plugins/backends/saml2_backend.yaml
@@ -12,17 +12,31 @@ config:
     encryption_keypairs:
     - {'key_file': ./pki/privkey.pem, 'cert_file': ./pki/cert.pem}
 
-    organization: {display_name: 'Saml2 Authentication Proxy', name: 'proxy.auth', url: 'https://spid.proxy.example.org'}
+    organization: 
+      display_name:
+      - [ 'change with $SATOSA_ORGANIZATION_DISPLAY_NAME_EN', 'en']
+      - [ 'change with $SATOSA_ORGANIZATION_DISPLAY_NAME_IT', 'it']
+      name: 
+      - [ 'change with $SATOSA_ORGANIZATION_NAME_EN', 'en']
+      - [ 'change with $SATOSA_ORGANIZATION_NAME_IT', 'it']
+      url:
+      - [ 'change with $SATOSA_ORGANIZATION_URL_EN', 'en']
+      - [ 'change with $SATOSA_ORGANIZATION_URL_IT', 'it']
     contact_person:
-    - {contact_type: technical, email_address: "mailto:supporto.tecnico@example.org", given_name: Technical}
-    - {contact_type: support, email_address: "mailto:richieste.ict@example.org", given_name: Support}
+    - contact_type: technical
+      given_name: change with $SATOSA_CONTACT_PERSON_GIVEN_NAME
+      email_address: change with $SATOSA_CONTACT_PERSON_EMAIL_ADDRESS
 
     metadata:
       local: [./metadata/idp/]
+      mdq:
+        - url: "https://mdx.idem.garr.it/edugain/"
+          cert: ./pki/dem-mdx-service-crt.pem
+          freshness_period: P0Y0M0DT1H0M0S
       # using pyFF or other MDX server
       # mdq:
       #  - url: "http://mdq.auth.unical.it/static/sha1"
-          # cert: mdq.pem
+      #    cert: mdq.pem
 
     entityid: '<base_url>/<name>/metadata'
     accepted_time_diff: 300
@@ -32,25 +46,28 @@ config:
         ui_info:
           display_name:
             - lang: en
-              text: "Saml2 Authentication Proxy"
+              text: change with  $SATOSA_UI_DISPLAY_NAME_EN
+            - lang: it
+              text: change with $SATOSA_UI_DISPLAY_NAME_IT
           description:
             - lang: en
-              text: "Saml2 Authentication Proxy"
-          # information_url:
-            # - lang: en
-              # text: "http://sp.information.url/"
-          #privacy_statement_url:
-            #- lang: en
-              #text: "https://www.example.org/privacy/"
-          keywords:
+              text: change with $SATOSA_UI_DESCRIPTION_EN
             - lang: it
-              text: ["Saml2 Authentication Proxy", "Service Provider IT"]
+              text: change with $SATOSA_UI_DESCRIPTION_IT
+          information_url:
+            - lang: en
+              text: change with $SATOSA_UI_INFORMATION_URL_EN
+            - lang: it 
+              text: change with $SATOSA_UI_INFORMATION_URL_IT
+          privacy_statement_url:
             - lang: en
-              text: ["Saml2 Authentication Proxy", "Service Provider EN"]
+              text: change with $SATOSA_UI_PRIVACY_URL_EN
+            - lang: it
+              text: change with $SATOSA_UI_PRIVACY_URL_IT
           logo:
-            text: "https://www.example.org/static/img/logo.svg"
-            width: "100"
-            height: "50"
+            text: change with $SATOSA_UI_LOGO_URL
+            width: change with $SATOSA_UI_LOGO_WIDTH
+            height: change with $SATOSA_UI_LOGO_HEIGHT
 
         only_use_keys_in_metadata: true
         force_authn: true
@@ -66,6 +83,8 @@ config:
         signing_algorithm: "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"
         digest_algorithm: "http://www.w3.org/2001/04/xmlenc#sha256"
 
+        required_attributes: [name, surname]
+
         endpoints:
           assertion_consumer_service:
           - [<base_url>/<name>/acs/post, 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST']
@@ -78,4 +97,5 @@ config:
         name_id_format_allow_create: false
 
   # disco_srv must be defined if there is more than one IdP in the metadata specified above
-  disco_srv: "https://localhost:9999/disco.html"
+  # disco_srv: "https://localhost:9999/disco.html"
+  disco_srv: change with $SATOSA_DISCO_SRV
diff --git a/example/plugins/backends/spidsaml2_backend.yaml b/example/plugins/backends/spidsaml2_backend.yaml
index 80ae4cd4..f0140899 100644
--- a/example/plugins/backends/spidsaml2_backend.yaml
+++ b/example/plugins/backends/spidsaml2_backend.yaml
@@ -34,18 +34,31 @@ config:
 
     attribute_map_dir: 'attributes-map'
 
-    organization: { display_name: [['Saml2 Authentication Proxy', 'it']], name: [['Spid Authentication Proxy', 'it']],  url: [['https://spid.proxy.example.org', 'it']]}
+    organization:
+      display_name: 
+        - [ 'change with $SATOSA_ORGANIZATION_DISPLAY_NAME_EN', 'en']
+        - [ 'change with $SATOSA_ORGANIZATION_DISPLAY_NAME_IT', 'it']
+      name: 
+        - [ 'change with $SATOSA_ORGANIZATION_NAME_EN', 'en']
+        - [ 'change with $SATOSA_ORGANIZATION_NAME_IT', 'it']
+      url:
+        - [ 'https://change_with_SATOSA_ORGANIZATION_URL_EN', 'en']
+        - [ 'https://change_with_SATOSA_ORGANIZATION_URL_IT', 'it']
 
     contact_person:
-        - {'contact_type': 'other', 'telephone_number': '+398475634785', 'email_address': 'tech-info@example.org', 'VATNumber': 'IT12345678901', 'FiscalCode': 'XYZABCAAMGGJ000W', 'Public': ''}
-        # - {'contact_type': 'other', 'telephone_number': '+3984756344785', 'email_address': 'info@example.org', 'VATNumber': 'IT12345678901', 'FiscalCode': 'XYasdasdadasdGGJ000W', 'Private': '' }
-        # - {'contact_type': 'billing', 'telephone_number': '+3984756344785', 'email_address': 'info@example.org', 'company': 'example s.p.a.', 'CodiceFiscale': 'NGLMRA80A01D086T', 'IdCodice': '983745349857', 'IdPaese': 'IT', 'Denominazione': 'Destinatario Fatturazione', 'Indirizzo': 'via tante cose', 'NumeroCivico': '12', 'CAP': '87100', 'Comune': 'Cosenza', 'Provincia': 'CS', 'Nazione': 'IT' }
+      - contact_type: 'other'
+        given_name: change with $SATOSA_CONTACT_PERSON_GIVEN_NAME
+        email_address: change_with@SATOSA_CONTACT_PERSON_EMAIL_ADDRESS.it
+        telephone_number: +398475634785
+        FiscalCode: change with $SATOSA_CONTACT_PERSON_FISCALCODE
+        Public: ''
+      # - {'contact_type': 'other', 'telephone_number': '+3984756344785', 'email_address': 'info@example.org', 'VATNumber': 'IT12345678901', 'FiscalCode': 'XYasdasdadasdGGJ000W', 'Private': '' }
+      # - {'contact_type': 'billing', 'telephone_number': '+3984756344785', 'email_address': 'info@example.org', 'company': 'example s.p.a.', 'CodiceFiscale': 'NGLMRA80A01D086T', 'IdCodice': '983745349857', 'IdPaese': 'IT', 'Denominazione': 'Destinatario Fatturazione', 'Indirizzo': 'via tante cose', 'NumeroCivico': '12', 'CAP': '87100', 'Comune': 'Cosenza', 'Provincia': 'CS', 'Nazione': 'IT' }
 
     metadata:
       local: [./metadata/idp/]
       # using pyFF or other MDX server
       # mdq:
-      #  - url: "http://mdq.auth.unical.it/static/sha1"
           # cert: mdq.pem
     ficep_enable: True
     ficep_entity_id: https://sp-proxy.eid.gov.it/spproxy/idpit
@@ -59,25 +72,33 @@ config:
         ui_info:
           display_name:
             - lang: en
-              text: "SPID Authentication Proxy"
+              text: change with $SATOSA_UI_DISPLAY_NAME_EN
+            - lang: it
+              text: change with $SATOSA_UI_DISPLAY_NAME_IT
           description:
             - lang: en
-              text: "SPID Authentication Proxy"
-          # information_url:
-            # - lang: en
-              # text: "http://sp.information.url/"
-          #privacy_statement_url:
-            #- lang: en
-              #text: "https://www.example.org/privacy/"
+              text: change with $SATOSA_UI_DESCRIPTION_EN
+            - lang: it
+              text: change with $SATOSA_UI_DESCRIPTION_IT
+          information_url:
+            - lang: en
+              text: change with $SATOSA_UI_INFORMATION_URL_EN
+            - lang: it 
+              text: change with $SATOSA_UI_INFORMATION_URL_IT
+          privacy_statement_url:
+            - lang: en
+              text: https://change_with_SATOSA_UI_PRIVACY_URL_EN
+            - lang: it
+              text: https://change_with_SATOSA_UI_PRIVACY_URL_IT
           keywords:
             - lang: it
               text: ["SPID Authentication Proxy", "SPID Service Provider IT"]
             - lang: en
               text: ["SPID Authentication Proxy", "SPID Service Provider EN"]
           logo:
-            text: "https://www.spid.gov.it/assets/img/spid-ico-circle-bb.svg"
-            width: "100"
-            height: "100"
+            text: change with $SATOSA_UI_LOGO_URL
+            width: change with $SATOSA_UI_LOGO_WIDTH
+            height: change with $SATOSA_UI_LOGO_HEIGHT
 
         # sign dig and enc
         authn_requests_signed: true
@@ -102,11 +123,7 @@ config:
         allow_unsolicited: true
 
         # this instantiate the attribute_consuming_service
-        required_attributes: ['spidCode',
-                              'name',
-                              'familyName',
-                              'fiscalNumber',
-                              'email']
+        required_attributes: ['spidCode', 'name', 'familyName', 'fiscalNumber', 'email']
 
         #optional_attributes: ['gender',
         #                      'companyName',
@@ -132,4 +149,6 @@ config:
           - [<base_url>/<name>/disco, 'urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol']
 
   # disco_srv must be defined if there is more than one IdP in the metadata specified above
+  # disco_srv: change with $SATOSA_DISCO_SRV
   disco_srv: "https://localhost:9999/disco.html"
+
diff --git a/example/plugins/frontends/saml2_frontend.yaml b/example/plugins/frontends/saml2_frontend.yaml
index 236f21dd..e74b6fda 100644
--- a/example/plugins/frontends/saml2_frontend.yaml
+++ b/example/plugins/frontends/saml2_frontend.yaml
@@ -8,10 +8,20 @@ config:
   entityid_endpoint: true
 
   idp_config:
-    organization: {display_name: 'Saml2 Authentication Proxy', name: 'proxy.auth', url: 'https://spid.proxy.example.org'}
+    organization:
+      display_name: 
+        - [ 'change with $SATOSA_ORGANIZATION_DISPLAY_NAME_EN', 'en']
+        - [ 'change with $SAOSA_ORGANIZATION_DISPLAY_NAME_IT', 'it']
+      name: 
+        - [ 'change with $SATOSA_ORGANIZATION_NAME_EN', 'en']
+        - [ 'change with $SATOSA_ORGANIZATION_NAME_IT', 'it']
+      url:
+        - [ 'change with $SATOSA_ORGANIZATION_URL_EN', 'en']
+        - [ 'change with $SATOSA_ORGANIZATION_URL_IT', 'it']
     contact_person:
-    - {contact_type: technical, email_address: "mailto:supporto.tecnico@example.org", given_name: Technical}
-    - {contact_type: support, email_address: "mailto:richieste.ict@example.org", given_name: Support}
+      - contact_type: technical
+        given_name: change with $SATOSA_CONTACT_PERSON_GIVEN_NAME
+        email_address: change with $SATOSA_CONTACT_PERSON_EMAIL_ADDRESS
 
     attribute_map_dir: 'attributes-map'
 
@@ -46,25 +56,28 @@ config:
         ui_info:
           display_name:
             - lang: en
-              text: "Authentication Proxy"
+              text: change with  $SATOSA_UI_DISPLAY_NAME_EN
+            - lang: it
+              text: change with $SATOSA_UI_DISPLAY_NAME_IT
           description:
             - lang: en
-              text: "Authentication Proxy"
-          # information_url:
-            # - lang: en
-              # text: "http://sp.information.url/"
+              text: change with $SATOSA_UI_DESCRIPTION_EN
+            - lang: it
+              text: change with $SATOSA_UI_DESCRIPTION_IT
+          information_url:
+            - lang: en
+              text: change with $SATOSA_UI_INFORMATION_URL_EN
+            - lang: it 
+              text: change with $SATOSA_UI_INFORMATION_URL_IT
           privacy_statement_url:
             - lang: en
-              text: "https://www.example.org/privacy/"
-          keywords:
+              text: change with $SATOSA_UI_PRIVACY_URL_EN
             - lang: it
-              text: ["Authentication Proxy", "IdP IT"]
-            - lang: en
-              text: ["Authentication Proxy", "IdP EN"]
+              text: change with $SATOSA_UI_PRIVACY_URL_IT
           logo:
-            text: "https://www.spid.gov.it/assets/img/spid-ico-circle-bb.svg"
-            width: "100"
-            height: "100"
+            text: change with $SATOSA_UI_LOGO_URL
+            width: change with $SATOSA_UI_LOGO_WIDTH
+            height: change with $SATOSA_UI_LOGO_HEIGHT
         name_id_format: ['urn:oasis:names:tc:SAML:2.0:nameid-format:transient']
 
         # want_authn_requests_signed: true
diff --git a/example/plugins/microservices/target_based_routing.yaml b/example/plugins/microservices/target_based_routing.yaml
index 526ff9f3..74f28c5f 100644
--- a/example/plugins/microservices/target_based_routing.yaml
+++ b/example/plugins/microservices/target_based_routing.yaml
@@ -8,6 +8,7 @@ config:
     "http://idpspid.testunical.it:8088": "spidSaml2"
     "https://validator.spid.gov.it": "spidSaml2"
     "https://localhost:8080": "spidSaml2"
+    "https://preproduzione.idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SSO": "cieSaml2"
     # put here all the others
     "https://loginspid.aruba.it": "spidSaml2"
     "https://identity.infocert.it": "spidSaml2"
@@ -19,3 +20,5 @@ config:
     "https://spid.register.it": "spidSaml2"
     "https://login.id.tim.it/affwebservices/public/saml2sso": "spidSaml2"
     "https://sp-proxy.eid.gov.it/spproxy/idpitmetadata": "spidSaml2"
+    "https://spid.teamsystem.com/idp": "spidSaml2"
+    "https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SSO": "cieSaml2"
diff --git a/example/proxy_conf.yaml b/example/proxy_conf.yaml
index 495ad710..f60862ee 100644
--- a/example/proxy_conf.yaml
+++ b/example/proxy_conf.yaml
@@ -27,6 +27,7 @@ CUSTOM_PLUGIN_MODULE_PATHS:
 BACKEND_MODULES:
   - "plugins/backends/saml2_backend.yaml"
   - "plugins/backends/spidsaml2_backend.yaml"
+  - "plugins/backends/ciesaml2_backend.yaml"
 FRONTEND_MODULES:
   - "plugins/frontends/saml2_frontend.yaml"
   - "plugins/frontends/oidc_op_frontend.yaml"
@@ -94,12 +95,12 @@ LOGGING:
     satosa.frontends.saml2:
       level: DEBUG
       formatter: simple
-      handlers: [saml2_debug_file]
+      handlers: [console]
       propagate: no
     satosa.backends.saml2:
       level: DEBUG
       formatter: simple
-      handlers: [saml2_debug_file]
+      handlers: [console]
       propagate: no
     satosa.frontends.idpy_oidcop:
       level: DEBUG
@@ -109,7 +110,7 @@ LOGGING:
     backends.spidsaml2:
       level: INFO
       formatter: simple
-      handlers: [spid_daily]
+      handlers: [console]
       propagate: no
 
   # root:
diff --git a/example/run.sh b/example/run.sh
new file mode 100644
index 00000000..bb7c6a51
--- /dev/null
+++ b/example/run.sh
@@ -0,0 +1,191 @@
+#!/bin/bash
+
+update_yaml () {
+  if [[ -n "${3}" ]]; then
+    UPDATE="${2} |= \"${3}\""
+    yq -yi "$UPDATE" $1
+    echo "yaml_update $1 (${2}) updated"
+  else
+    echo "yaml_update $1 (${2}) loaded with default value"
+  fi
+}
+
+# Update proxy_conf.yaml .BASE with SATOSA_BASE env
+update_yaml proxy_conf.yaml ".BASE" "$SATOSA_BASE"
+# Update proxy_conf.yaml .STATE_ENCRYPTION_KEY with $SATOSA_ENCRYPTION_KEY
+update_yaml proxy_conf.yaml ".STATE_ENCRYPTION_KEY" "$SATOSA_STATE_ENCRYPTION_KEY"
+# Update proxy_conf.yaml .USER_ID_HASH_SALT with $SATOSA_USER_ID_HASH_SALT
+update_yaml proxy_conf.yaml ".USER_ID_HASH_SALT" "$SATOSA_SALT"
+# Update proxy_conf.yaml .UNKNOW_ERROR_REDIRECT_PAGE with $SATOSA_UNKNOW_ERROR_REDIRECT_PAGE env
+update_yaml proxy_conf.yaml ".UNKNOW_ERROR_REDIRECT_PAGE" "$SATOSA_UNKNOW_ERROR_REDIRECT_PAGE"
+
+# Update spidsaml2_backend.yaml and cieSaml2_backend.saml with $SATOSA_BASE env
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.static_storage_url" "$SATOSA_BASE"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.static_storage_url" "$SATOSA_BASE"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_ORGANIZATION_DISPLAY_NAME_EN / IT
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.organization.display_name[0][0]" "$SATOSA_ORGANIZATION_DISPLAY_NAME_EN"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.organization.display_name[0][0]" "$SATOSA_ORGANIZATION_DISPLAY_NAME_EN"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.organization.display_name[0][0]" "$SATOSA_ORGANIZATION_DISPLAY_NAME_EN"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.organization.display_name[0][0]" "$SATOSA_ORGANIZATION_DISPLAY_NAME_EN"
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.organization.display_name[1][0]" "$SATOSA_ORGANIZATION_DISPLAY_NAME_IT"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.organization.display_name[1][0]" "$SATOSA_ORGANIZATION_DISPLAY_NAME_IT"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.organization.display_name[1][0]" "$SATOSA_ORGANIZATION_DISPLAY_NAME_IT"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.organization.display_name[1][0]" "$SATOSA_ORGANIZATION_DISPLAY_NAME_IT"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_ORGANIZATION_NAME_EN / IT
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.organization.name[0][0]" "$SATOSA_ORGANIZATION_NAME_EN"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.organization.name[0][0]" "$SATOSA_ORGANIZATION_NAME_EN"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.organization.name[0][0]" "$SATOSA_ORGANIZATION_NAME_EN"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.organization.name[0][0]" "$SATOSA_ORGANIZATION_NAME_EN"
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.organization.name[1][0]" "$SATOSA_ORGANIZATION_NAME_IT"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.organization.name[1][0]" "$SATOSA_ORGANIZATION_NAME_IT"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.contact_person[0].company" "$SATOSA_ORGANIZATION_NAME_IT"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.organization.name[1][0]" "$SATOSA_ORGANIZATION_NAME_IT"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_ORGANIZATION_URL_EN / IT
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.organization.url[0][0]" "$SATOSA_ORGANIZATION_URL_EN"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.organization.url[0][0]" "$SATOSA_ORGANIZATION_URL_EN"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.organization.url[0][0]" "$SATOSA_ORGANIZATION_URL_EN"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.organization.url[0][0]" "$SATOSA_ORGANIZATION_URL_EN"
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.organization.url[1][0]" "$SATOSA_ORGANIZATION_URL_IT"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.organization.url[1][0]" "$SATOSA_ORGANIZATION_URL_IT"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.organization.url[1][0]" "$SATOSA_ORGANIZATION_URL_IT"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.organization.url[1][0]" "$SATOSA_ORGANIZATION_URL_IT"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_CONTACT_PERSON_GIVEN_NAME
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.contact_person[0].given_name" "$SATOSA_CONTACT_PERSON_GIVEN_NAME"
+update_yaml plugins/backends/spidsaml2_backend.yaml  ".config.sp_config.contact_person[0].given_name" "$SATOSA_CONTACT_PERSON_GIVEN_NAME"
+update_yaml plugins/frontends/saml2_frontend.yaml  ".config.idp_config.contact_person[0].given_name" "$SATOSA_CONTACT_PERSON_GIVEN_NAME"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_CONTACT_PERSON_EMAIL_ADDRESS
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.contact_person[0].email_address" "$SATOSA_CONTACT_PERSON_EMAIL_ADDRESS"
+update_yaml plugins/backends/spidsaml2_backend.yaml  ".config.sp_config.contact_person[0].email_address" "$SATOSA_CONTACT_PERSON_EMAIL_ADDRESS"
+update_yaml plugins/backends/ciesaml2_backend.yaml  ".config.sp_config.contact_person[0].email_address" "$SATOSA_CONTACT_PERSON_EMAIL_ADDRESS"
+update_yaml plugins/frontends/saml2_frontend.yaml  ".config.idp_config.contact_person[0].email_address" "$SATOSA_CONTACT_PERSON_EMAIL_ADDRESS"
+
+# Update spidsaml2_backend.yaml with $SATOSA_CONTACT_PERSON_TELEPHONE_NUMBER
+update_yaml plugins/backends/spidsaml2_backend.yaml  ".config.sp_config.contact_person[0].telephone_number" "$SATOSA_CONTACT_PERSON_TELEPHONE_NUMBER"
+update_yaml plugins/backends/ciesaml2_backend.yaml  ".config.sp_config.contact_person[0].telephone_number" "$SATOSA_CONTACT_PERSON_TELEPHONE_NUMBER"
+
+# Update spidsaml2_backend.yaml with $SATOSA_CONTACT_PERSON_FISCALCODE
+update_yaml plugins/backends/spidsaml2_backend.yaml  ".config.sp_config.contact_person[0].FiscalCode" "$SATOSA_CONTACT_PERSON_FISCALCODE"
+
+# Update ciesaml2_backend with $SATOSA_CONTACT_PERSON_IPA_CODE
+update_yaml plugins/backends/ciesaml2_backend.yaml  ".config.sp_config.contact_person[0].cie_info.IPACode" "$SATOSA_CONTACT_PERSON_IPA_CODE"
+
+# Update ciesaml2_backend with $SATOSA_CONTACT_PERSON_MUNICIPALITY
+update_yaml plugins/backends/ciesaml2_backend.yaml  ".config.sp_config.contact_person[0].cie_info.Municipality" "$SATOSA_CONTACT_PERSON_MUNICIPALITY"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_UI_DISPLAY_NAME_EN / IT
+update_yaml plugins/backends/saml2_backend.yaml '.config.sp_config.service.sp.ui_info.display_name[0]["text"]' "$SATOSA_UI_DISPLAY_NAME_EN" 
+update_yaml plugins/backends/spidsaml2_backend.yaml '.config.sp_config.service.sp.ui_info.display_name[0]["text"]' "$SATOSA_UI_DISPLAY_NAME_EN"
+update_yaml plugins/backends/ciesaml2_backend.yaml '.config.sp_config.service.sp.ui_info.display_name[0]["text"]' "$SATOSA_UI_DISPLAY_NAME_EN"
+update_yaml plugins/frontends/saml2_frontend.yaml '.config.idp_config.service.idp.ui_info.display_name[0]["text"]' "$SATOSA_UI_DISPLAY_NAME_EN"          
+update_yaml plugins/backends/saml2_backend.yaml '.config.sp_config.service.sp.ui_info.display_name[1]["text"]' "$SATOSA_UI_DISPLAY_NAME_IT"         
+update_yaml plugins/backends/spidsaml2_backend.yaml '.config.sp_config.service.sp.ui_info.display_name[1]["text"]' "$SATOSA_UI_DISPLAY_NAME_IT"
+update_yaml plugins/backends/ciesaml2_backend.yaml '.config.sp_config.service.sp.ui_info.display_name[1]["text"]' "$SATOSA_UI_DISPLAY_NAME_IT"
+update_yaml plugins/frontends/saml2_frontend.yaml '.config.idp_config.service.idp.ui_info.display_name[1]["text"]' "$SATOSA_UI_DISPLAY_NAME_IT"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_UI_DESCRIPTION_EN / IT
+update_yaml plugins/backends/saml2_backend.yaml '.config.sp_config.service.sp.ui_info.description[0]["text"]' "$SATOSA_UI_DESCRIPTION_EN"
+update_yaml plugins/backends/spidsaml2_backend.yaml '.config.sp_config.service.sp.ui_info.description[0]["text"]' "$SATOSA_UI_DESCRIPTION_EN"
+update_yaml plugins/backends/ciesaml2_backend.yaml '.config.sp_config.service.sp.ui_info.description[0]["text"]' "$SATOSA_UI_DESCRIPTION_EN"
+update_yaml plugins/frontends/saml2_frontend.yaml '.config.idp_config.service.idp.ui_info.description[0]["text"]' "$SATOSA_UI_DESCRIPTION_EN"
+update_yaml plugins/backends/saml2_backend.yaml '.config.sp_config.service.sp.ui_info.description[1]["text"]' "$SATOSA_UI_DESCRIPTION_IT"
+update_yaml plugins/backends/spidsaml2_backend.yaml '.config.sp_config.service.sp.ui_info.description[1]["text"]' "$SATOSA_UI_DESCRIPTION_IT"
+update_yaml plugins/backends/ciesaml2_backend.yaml '.config.sp_config.service.sp.ui_info.description[1]["text"]' "$SATOSA_UI_DESCRIPTION_IT"
+update_yaml plugins/frontends/saml2_frontend.yaml '.config.idp_config.service.idp.ui_info.description[1]["text"]' "$SATOSA_UI_DESCRIPTION_IT"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_UI_INFORMATION_URL_EN / IT
+update_yaml plugins/backends/saml2_backend.yaml '.config.sp_config.service.sp.ui_info.information_url[0]["text"]' "$SATOSA_UI_INFORMATION_URL_EN"
+update_yaml plugins/backends/spidsaml2_backend.yaml '.config.sp_config.service.sp.ui_info.information_url[0]["text"]' "$SATOSA_UI_INFORMATION_URL_EN"
+update_yaml plugins/backends/ciesaml2_backend.yaml '.config.sp_config.service.sp.ui_info.information_url[0]["text"]' "$SATOSA_UI_INFORMATION_URL_EN"
+update_yaml plugins/frontends/saml2_frontend.yaml '.config.idp_config.service.idp.ui_info.information_url[0]["text"]' "$SATOSA_UI_INFORMATION_URL_EN"
+update_yaml plugins/backends/saml2_backend.yaml '.config.sp_config.service.sp.ui_info.information_url[1]["text"]' "$SATOSA_UI_INFORMATION_URL_IT"
+update_yaml plugins/backends/spidsaml2_backend.yaml '.config.sp_config.service.sp.ui_info.information_url[1]["text"]' "$SATOSA_UI_INFORMATION_URL_IT"
+update_yaml plugins/backends/ciesaml2_backend.yaml '.config.sp_config.service.sp.ui_info.information_url[1]["text"]' "$SATOSA_UI_INFORMATION_URL_IT"
+update_yaml plugins/frontends/saml2_frontend.yaml '.config.idp_config.service.idp.ui_info.information_url[1]["text"]' "$SATOSA_UI_INFORMATION_URL_IT"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_UI_PRIVACY_URL_EN / IT
+update_yaml plugins/backends/saml2_backend.yaml '.config.sp_config.service.sp.ui_info.privacy_statement_url[0]["text"]' "$SATOSA_UI_PRIVACY_URL_EN"
+update_yaml plugins/backends/spidsaml2_backend.yaml '.config.sp_config.service.sp.ui_info.privacy_statement_url[0]["text"]' "$SATOSA_UI_PRIVACY_URL_EN"
+update_yaml plugins/backends/ciesaml2_backend.yaml '.config.sp_config.service.sp.ui_info.privacy_statement_url[0]["text"]' "$SATOSA_UI_PRIVACY_URL_EN"
+update_yaml plugins/frontends/saml2_frontend.yaml '.config.idp_config.service.idp.ui_info.privacy_statement_url[0]["text"]' "$SATOSA_UI_PRIVACY_URL_EN"
+update_yaml plugins/backends/saml2_backend.yaml '.config.sp_config.service.sp.ui_info.privacy_statement_url[1]["text"]' "$SATOSA_UI_PRIVACY_URL_IT"
+update_yaml plugins/backends/spidsaml2_backend.yaml '.config.sp_config.service.sp.ui_info.privacy_statement_url[1]["text"]' "$SATOSA_UI_PRIVACY_URL_IT"
+update_yaml plugins/backends/ciesaml2_backend.yaml '.config.sp_config.service.sp.ui_info.privacy_statement_url[1]["text"]' "$SATOSA_UI_PRIVACY_URL_IT"
+update_yaml plugins/frontends/saml2_frontend.yaml '.config.idp_config.service.idp.ui_info.privacy_statement_url[1]["text"]' "$SATOSA_UI_PRIVACY_URL_IT"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_UI_LOGO_URL / WIDTH / HEIGHT
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.text" "$SATOSA_UI_LOGO_URL"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.text" "$SATOSA_UI_LOGO_URL"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.text" "$SATOSA_UI_LOGO_URL"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.service.idp.ui_info.logo.text" "$SATOSA_UI_LOGO_URL"
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.width" "$SATOSA_UI_LOGO_WIDTH"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.width" "$SATOSA_UI_LOGO_WIDTH"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.width" "$SATOSA_UI_LOGO_WIDTH"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.service.idp.ui_info.logo.width" "$SATOSA_UI_LOGO_WIDTH"
+update_yaml plugins/backends/saml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.height" "$SATOSA_UI_LOGO_HEIGHT"
+update_yaml plugins/backends/spidsaml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.height" "$SATOSA_UI_LOGO_HEIGHT"
+update_yaml plugins/backends/ciesaml2_backend.yaml ".config.sp_config.service.sp.ui_info.logo.height" "$SATOSA_UI_LOGO_HEIGHT"
+update_yaml plugins/frontends/saml2_frontend.yaml ".config.idp_config.service.idp.ui_info.logo.height" "$SATOSA_UI_LOGO_HEIGHT"
+
+# Update saml2_backend.yaml and spidsaml2_backend.yaml with $SATOSA_DISCO_SRV
+update_yaml plugins/backends/saml2_backend.yaml ".config.disco_srv" "$SATOSA_DISCO_SRV"
+update_yaml plugins/backends/spidsaml2_backend.yaml  ".config.disco_srv" "$SATOSA_DISCO_SRV"
+update_yaml plugins/backends/ciesaml2_backend.yaml  ".config.disco_srv" "$SATOSA_DISCO_SRV"
+
+# Set username and password for mongodb in oidc_op_frontend with $SATOSA_MONGODB_USERNAME and $SATOSA_MONGODB_PASSWORD
+update_yaml plugins/frontends/oidc_op_frontend.yaml ".config.storage.kwargs.connection_params.username" "$MONGODB_USERNAME"
+update_yaml plugins/frontends/oidc_op_frontend.yaml ".config.storage.kwargs.connection_params.password" "$MONGODB_PASSWORD"
+
+# Set encrypt password and salt for oidc_op_frontend with $SATOSA_SALT and $
+update_yaml plugins/frontends/oidc_op_frontend.yaml ".config.op.server_info.session_params.password" "$SATOSA_ENCRYPTION_KEY"
+update_yaml plugins/frontends/oidc_op_frontend.yaml ".config.op.server_info.session_params.salt" "$SATOSA_SALT"
+update_yaml plugins/frontends/oidc_op_frontend.yaml ".config.op.server_info.session_params.sub_func.pairwise.kwargs.salt" "$SATOSA_SALT"
+update_yaml plugins/frontends/oidc_op_frontend.yaml ".config.op.server_info.session_params.sub_func.pairwise.kwargs.salt" "$SATOSA_SALT"
+
+# Update saml2_backend.yaml requested_attributes
+if [[ -v SATOSA_SAML2_REQUESTED_ATTRIBUTES ]]; then
+  yq -yi --argjson a "${SATOSA_SAML2_REQUESTED_ATTRIBUTES}" '.config.sp_config.service.sp.requested_attributes |= $a' plugins/backends/saml2_backend.yaml
+  echo "yaml_update plugins/backends/saml2_backend.yaml requested_attributes updated"
+else
+  echo "yaml_update plugins/backends/saml2_backend.yaml requested_attributes loaded with default value"
+fi
+
+# Update spidsaml2_backend requested_attributes
+if [[ -v SATOSA_SPID_REQUESTED_ATTRIBUTES ]]; then
+  yq -yi --argjson a "${SATOSA_SPID_REQUESTED_ATTRIBUTES}" '.config.sp_config.service.sp.requested_attributes |= $a' plugins/backends/spidsaml2_backend.yaml
+  echo "yaml_update plugins/backends/spidsaml2_backend.yaml requested_attributes updated"
+else
+  echo "yaml_update plugins/backends/spidsaml2_backend.yaml requested_attributes loaded with default value"
+fi
+
+# import satosa keys with $SATOSA_PUBLIC_KEY and $SATOSA_PRIVATE_KEY, both must be present
+if [[ -v SATOSA_PRIVATE_KEY && -v SATOSA_PUBLIC_KEY ]]; then
+  echo $SATOSA_PRIVATE_KEYS > pki/privkey.pem
+  echo $SATOSA_PUBLIC_KEY > pki/cert.pem
+  echo "Satosa keys imported"
+else
+  echo "satosa has loaded default keys"
+fi
+
+# get IDEM MDQ key
+wget https://mdx.idem.garr.it/idem-mdx-service-crt.pem -O pki/idem-mdx-service-crt.pem
+
+if [[ -v SATOSA_BY_DOCKER ]]; then
+  SATOSA_APP=/usr/lib/python3.8/site-packages/satosa
+# in questo modo parla uwsgi, dal browser sulla porta 10000 si ha un errore e in nginx va utilizzato uwsgi_pass
+  uwsgi --wsgi-file $SATOSA_APP/wsgi.py --socket 0.0.0.0:10000 --callable app -b 32768 --processes 4 --threads 2
+
+# in questo modo parla in http, può essere raggiunto anche dal browser direttamente e in nginx occorre utilizzare il proxy http
+#  uwsgi --wsgi-file $SATOSA_APP/wsgi.py  --http 0.0.0.0:10000 --callable app -b 32768 --processes 4 --threads 2 
+else
+  export SATOSA_APP=$VIRTUAL_ENV/lib/$(python -c 'import sys; print(f"python{sys.version_info.major}.{sys.version_info.minor}")')/site-packages/satosa
+  uwsgi --uid 1000 --https 0.0.0.0:9999,$BASEDIR/pki/cert.pem,$BASEDIR/pki/privkey.pem --check-static-docroot --check-static $BASEDIR/static/ --static-index disco.html &
+  P1=$!
+  uwsgi --uid 1000 --wsgi-file $SATOSA_APP/wsgi.py  --https 0.0.0.0:10000,$BASEDIR/pki/cert.pem,$BASEDIR/pki/privkey.pem --callable app -b 32648
+  P2=$!
+  wait $P1 $P2
+fi
diff --git a/example/static/cie/cie_black.svg b/example/static/cie/cie_black.svg
new file mode 100644
index 00000000..7052f9c6
--- /dev/null
+++ b/example/static/cie/cie_black.svg
@@ -0,0 +1,62 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<svg
+   viewBox="0 0 101.1 108.5"
+   version="1.1"
+   id="svg894"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg"
+   xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
+   xmlns:cc="http://creativecommons.org/ns#"
+   xmlns:dc="http://purl.org/dc/elements/1.1/">
+  <defs
+     id="defs898" />
+  <title
+     id="title878">Risorsa 2</title>
+  <g
+     id="Livello_2"
+     data-name="Livello 2">
+    <g
+       id="Livello_1-2"
+       data-name="Livello 1">
+      <path
+         d="M30.6,15.7,34,14.5,75.5.2a3.1,3.1,0,0,1,3.1.6,7,7,0,0,1,1.9,2.8c1.2,3.1,2.4,6.1,3.6,9.3a22.1,22.1,0,0,1,1.2,8.9c-.1,1.3-.3,2.6-.3,3.9a15,15,0,0,0,0,3c.1,1.3.2,2.6.4,3.9a14.2,14.2,0,0,0,2.8,7.1c2.8,3.6,5.5,7.3,8.3,11a46.7,46.7,0,0,1,3.8,6,5.5,5.5,0,0,1,.7,2.5,4.1,4.1,0,0,1-.4,2.2,10.9,10.9,0,0,1-2.7,3.3,19.8,19.8,0,0,1-4.1,2.8,9.6,9.6,0,0,0-3,2.3,3.4,3.4,0,0,0-.5,3.6l.9,2.3a3.8,3.8,0,0,1-.5,4.1,10.5,10.5,0,0,1-.8,1.1,3.2,3.2,0,0,0-.4,2.5l.3,1.2a3.1,3.1,0,0,1-.8,2.6c-.6.6-1.1,1.3-1.6,1.9a6.1,6.1,0,0,0-1.5,4.4,12.7,12.7,0,0,0,.6,2.8,16,16,0,0,1,.5,4.9,7.6,7.6,0,0,1-4.1,6.6,6.9,6.9,0,0,1-4,.6l-5.2-.9c-6.5-1.1-12.8-2.7-19.2-4.1L47.8,102h-.2c11.2-7.2,18.5-17.2,21.2-30.2a44.9,44.9,0,0,0-7.1-36.1C54.2,24.6,43.6,18.1,30.6,15.7Z"
+         fill="#fff"
+         id="path880"
+         style="fill:#44484a;fill-opacity:1" />
+      <path
+         d="M12.2,57.5c-4.8,0-8-1.3-9.7-3.9S0,46.7,0,40.7.9,30.4,2.6,27.9s4.9-3.8,9.6-3.8a39,39,0,0,1,9.2,1.1v4.3a50,50,0,0,0-8.6-.8c-2.8,0-4.7.9-5.7,2.6s-1.6,4.8-1.6,9.5.5,7.8,1.5,9.5,2.9,2.5,5.7,2.5a51,51,0,0,0,8.7-.7v4.4A43.8,43.8,0,0,1,12.2,57.5Z"
+         fill="#fff"
+         id="path882"
+         style="fill:#44484a;fill-opacity:1" />
+      <path
+         d="M25.5,29.3V23.9h5.2v5.4Zm0,27.7V33.3h5.2V57Z"
+         fill="#fff"
+         id="path884"
+         style="fill:#44484a;fill-opacity:1" />
+      <path
+         d="M52.9,52.7h1.3v3.8a44.2,44.2,0,0,1-9.6,1.1c-3.5,0-6-.9-7.5-2.9s-2.3-5-2.3-9.2c0-8.4,3.4-12.6,10.3-12.6s9.9,3.6,9.9,10.9l-.3,3.6H40.1a6.8,6.8,0,0,0,1.3,4.4c.8.9,2.3,1.3,4.6,1.3ZM50,43.4c0-2.4-.3-4-1.1-4.9s-2-1.4-3.7-1.4a5,5,0,0,0-3.9,1.4c-.8,1-1.2,2.6-1.2,4.9Z"
+         fill="#fff"
+         id="path886"
+         style="fill:#44484a;fill-opacity:1" />
+      <path
+         d="M20.2,95.7V63.3h5.3V95.7Z"
+         fill="#fff"
+         id="path888"
+         style="fill:#44484a;fill-opacity:1" />
+      <path
+         d="M42.2,95.7H30.9V63.3H42.2c4.9,0,8.4,1.2,10.2,3.8s2.7,6.5,2.7,11.9a34.8,34.8,0,0,1-.5,6.9,16.9,16.9,0,0,1-1.9,5.2C50.9,94.2,47.4,95.7,42.2,95.7ZM49.7,79c0-4-.5-6.8-1.5-8.5s-3-2.6-6-2.6h-6V91.1h6c3.1,0,5.2-1.2,6.2-3.5a11.3,11.3,0,0,0,1-3.7A33.8,33.8,0,0,0,49.7,79Z"
+         fill="#fff"
+         id="path890"
+         style="fill:#44484a;fill-opacity:1" />
+    </g>
+  </g>
+  <metadata
+     id="metadata1090">
+    <rdf:RDF>
+      <cc:Work
+         rdf:about="">
+        <dc:title>Risorsa 2</dc:title>
+      </cc:Work>
+    </rdf:RDF>
+  </metadata>
+</svg>
diff --git a/example/static/cie/cie_white.svg b/example/static/cie/cie_white.svg
new file mode 100644
index 00000000..be1851ab
--- /dev/null
+++ b/example/static/cie/cie_white.svg
@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 101.1 108.5"><title>Risorsa 2</title><g id="Livello_2" data-name="Livello 2"><g id="Livello_1-2" data-name="Livello 1"><path d="M30.6,15.7,34,14.5,75.5.2a3.1,3.1,0,0,1,3.1.6,7,7,0,0,1,1.9,2.8c1.2,3.1,2.4,6.1,3.6,9.3a22.1,22.1,0,0,1,1.2,8.9c-.1,1.3-.3,2.6-.3,3.9a15,15,0,0,0,0,3c.1,1.3.2,2.6.4,3.9a14.2,14.2,0,0,0,2.8,7.1c2.8,3.6,5.5,7.3,8.3,11a46.7,46.7,0,0,1,3.8,6,5.5,5.5,0,0,1,.7,2.5,4.1,4.1,0,0,1-.4,2.2,10.9,10.9,0,0,1-2.7,3.3,19.8,19.8,0,0,1-4.1,2.8,9.6,9.6,0,0,0-3,2.3,3.4,3.4,0,0,0-.5,3.6l.9,2.3a3.8,3.8,0,0,1-.5,4.1,10.5,10.5,0,0,1-.8,1.1,3.2,3.2,0,0,0-.4,2.5l.3,1.2a3.1,3.1,0,0,1-.8,2.6c-.6.6-1.1,1.3-1.6,1.9a6.1,6.1,0,0,0-1.5,4.4,12.7,12.7,0,0,0,.6,2.8,16,16,0,0,1,.5,4.9,7.6,7.6,0,0,1-4.1,6.6,6.9,6.9,0,0,1-4,.6l-5.2-.9c-6.5-1.1-12.8-2.7-19.2-4.1L47.8,102h-.2c11.2-7.2,18.5-17.2,21.2-30.2a44.9,44.9,0,0,0-7.1-36.1C54.2,24.6,43.6,18.1,30.6,15.7Z" fill="#fff"/><path d="M12.2,57.5c-4.8,0-8-1.3-9.7-3.9S0,46.7,0,40.7.9,30.4,2.6,27.9s4.9-3.8,9.6-3.8a39,39,0,0,1,9.2,1.1v4.3a50,50,0,0,0-8.6-.8c-2.8,0-4.7.9-5.7,2.6s-1.6,4.8-1.6,9.5.5,7.8,1.5,9.5,2.9,2.5,5.7,2.5a51,51,0,0,0,8.7-.7v4.4A43.8,43.8,0,0,1,12.2,57.5Z" fill="#fff"/><path d="M25.5,29.3V23.9h5.2v5.4Zm0,27.7V33.3h5.2V57Z" fill="#fff"/><path d="M52.9,52.7h1.3v3.8a44.2,44.2,0,0,1-9.6,1.1c-3.5,0-6-.9-7.5-2.9s-2.3-5-2.3-9.2c0-8.4,3.4-12.6,10.3-12.6s9.9,3.6,9.9,10.9l-.3,3.6H40.1a6.8,6.8,0,0,0,1.3,4.4c.8.9,2.3,1.3,4.6,1.3ZM50,43.4c0-2.4-.3-4-1.1-4.9s-2-1.4-3.7-1.4a5,5,0,0,0-3.9,1.4c-.8,1-1.2,2.6-1.2,4.9Z" fill="#fff"/><path d="M20.2,95.7V63.3h5.3V95.7Z" fill="#fff"/><path d="M42.2,95.7H30.9V63.3H42.2c4.9,0,8.4,1.2,10.2,3.8s2.7,6.5,2.7,11.9a34.8,34.8,0,0,1-.5,6.9,16.9,16.9,0,0,1-1.9,5.2C50.9,94.2,47.4,95.7,42.2,95.7ZM49.7,79c0-4-.5-6.8-1.5-8.5s-3-2.6-6-2.6h-6V91.1h6c3.1,0,5.2-1.2,6.2-3.5a11.3,11.3,0,0,0,1-3.7A33.8,33.8,0,0,0,49.7,79Z" fill="#fff"/></g></g></svg>
\ No newline at end of file
diff --git a/example/static/disco.html b/example/static/disco.html
index 3e119491..0920a970 100644
--- a/example/static/disco.html
+++ b/example/static/disco.html
@@ -131,9 +131,12 @@ <h4 class="">Benvenuto in Nome Organizzazione Spid Discovery Service</h4>
             Se sei già in possesso di un'identità digitale, accedi con le credenziali del tuo gestore.
             Se non hai ancora una identità SPID richiedila ad uno dei gestori.
           </p>
-	  <p class="mb-lg-5">
+	  <p>
 	  <b>eIDAS</b> è il sistema di interoperabilità delle identità digitale europeo. Tramite eIDAS puoi accedere utilizzando il sistema di identità digitale degli altri paesi europei.
 	  </p>
+	  <p class="mb-lg-5">
+	  <b>CIE</b> è il sistema di accesso che consente di utilizzare la propria carta di identità elettronica come identità digitale.
+	  </p>
 
           <p>
             Seleziona il Provider di Identità presso il quale desideri autenticarti
@@ -142,17 +145,7 @@ <h4 class="">Benvenuto in Nome Organizzazione Spid Discovery Service</h4>
           <div class="card-wrapper card-space">
             <div class="card card-bg no-after">
               <div class="card-body">
-                <div class="row">
-                  <!--
-                    <div class="col-sm text-center">
-                        <a href="#" id="unicalid" data-idp="unicalid" data-entityid="https://example.org/idp/metadata/" class="button-spid button-unical italia-it-button italia-it-button-size-xl spid-idp-button-xlarge-post" aria-haspopup="true" aria-expanded="false">
-                            <span class="italia-it-button-icon">
-                                <img src="spid/logo_white.png" alt="logo">
-                            </span>
-                            <span class="italia-it-button-text">Altro</span>
-                        </a>
-                    </div>
-                    -->
+                <div class="row mb-lg-5">
                   <div class="col-lg-6 pb-2 text-center">
                     <!-- AGID - SPID IDP BUTTON SMALL "ENTRA CON SPID" * begin * -->
 		    <a href="#" class="italia-it-button italia-it-button-size-xl button-spid" spid-idp-button="#spid-idp-button-xlarge-post" aria-haspopup="true" aria-expanded="false">
@@ -167,22 +160,42 @@ <h4 class="">Benvenuto in Nome Organizzazione Spid Discovery Service</h4>
 		      </ul>
 		    </div>
                     <!-- AGID - SPID IDP BUTTON SMALL "ENTRA CON SPID" * end * -->
-		    <br/>
                   </div>
                   <div class="col-lg-6 text-center">
-      		    <!-- AGID - eIDAS IDP BUTTON SMALL "ENTRA CON SPID" * begin * -->
+      		    <!-- AGID - eIDAS IDP BUTTON SMALL "ENTRA CON EIDAS" * begin * -->
                     <a href="/Saml2/disco?entityID=https://sp-proxy.eid.gov.it/spproxy/idpit&return=https://sso.isprambiente.it/Saml2/disco" class="italia-it-button italia-it-button-size-xl button-eidas" eidas-idp-button="#eidas-idp-button-xlarge-post" aria-haspopup="false" aria-expanded="false">
                       <span class="italia-it-button-icon"><img src="eidas/img/ficep-it-eidas-ybw.svg" onerror="this.src='eidas/img/ficep-it-eidas-ybw.png'; this.onerror=null;" alt="" /></span>
                       <span class="italia-it-button-text">Login with eIDAS</span>
                     </a>
                     <!-- AGID - eIDAS IDP BUTTON SMALL "ENTRA CON eIDAS" * end * -->
                   </div>
-
+		</div>
+		<div class='row'>
+                  <div class="col-lg-6 text-center">
+      		    <!-- AGID - eIDAS IDP BUTTON SMALL "ENTRA CON CIE" * begin * -->
+                    <a href="/Saml2/disco?entityID=https://idserver.servizicie.interno.gov.it/idp/profile/SAML2/POST/SSO&return=https://sso.isprambiente.it/Saml2/disco" class="italia-it-button italia-it-button-size-xl button-eidas" eidas-idp-button="#eidas-idp-button-xlarge-post" aria-haspopup="false" aria-expanded="false">
+		      <span class="italia-it-button-icon"><img src="cie/cie_white.svg" alt="Logo CIE" /></span>
+                      <span class="italia-it-button-text">Entra con CIE</span>
+                    </a>
+                    <!-- AGID - eIDAS IDP BUTTON SMALL "ENTRA CON CIE" * end * -->
+                  </div>
+                  <div class="col-lg-6 text-center">
+      		    <!-- IDEM IDP BUTTON SMALL "ENTRA CON IDEM" * begin * -->
+		    <a href="https://wayf.idem.garr.it/WAYF?entityID=_YourEntityID_&return=_YourReturnURL_" class="italia-it-button italia-it-button-size-xl button-eidas" eidas-idp-button="#eidas-idp-button-xlarge-post" aria-haspopup="false" aria-expanded="false">
+		      <span class="italia-it-button-icon"><img src="idem/img/IDEM.svg" alt="Logo IDEM" /></span>
+                      <span class="italia-it-button-text">Entra con IDEM</span>
+                    </a>
+                    <!-- IDEM IDP BUTTON SMALL "ENTRA CON IDEM" * end * -->
+                  </div>
                 </div>
               </div>
             </div>
           </div>
-	  <p class="text-center"><img src="spid/spid-agid-logo-lb.png" alt="logo SPID e AGID"></p>
+	  <p id="logo-row" class="text-center">
+	    <img src="cie/cie_black.svg" alt="CIE" style="height:32px">
+	    <img src="eidas/img/ficep-it-eidas-bn.svg" alt="IDAS" style="height:32px">
+	    <img src="spid/spid-agid-logo-lb.png" alt="logo SPID e AGID">
+	  </p>
         </div>
       </div>
     </div>
diff --git a/example/static/eidas/img/ficep-it-eidas-bn.svg b/example/static/eidas/img/ficep-it-eidas-bn.svg
new file mode 100644
index 00000000..1ce2c02c
--- /dev/null
+++ b/example/static/eidas/img/ficep-it-eidas-bn.svg
@@ -0,0 +1,88 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!-- Generator: Adobe Illustrator 22.1.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
+
+<svg
+   version="1.1"
+   id="Layer_1"
+   x="0px"
+   y="0px"
+   viewBox="0 0 171.2 171.2"
+   style="enable-background:new 0 0 171.2 171.2;"
+   xml:space="preserve"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg"><defs
+   id="defs1188" />
+<style
+   type="text/css"
+   id="style1152">
+	.st0{fill:#2F67B2;}
+	.st1{fill:#FFFFFF;}
+</style>
+<path
+   id="XMLID_12_"
+   class="st0"
+   d="M171.2,85.6c0,47.3-38.3,85.6-85.6,85.6C38.3,171.2,0,132.9,0,85.6S38.3,0,85.6,0  C132.9,0,171.2,38.3,171.2,85.6"
+   style="fill:#44484a;fill-opacity:1" />
+<g
+   id="g1179">
+	<polygon
+   class="st1"
+   points="50.7,135.4 53.3,143.4 61.8,143.4 54.9,148.4 57.6,156.5 50.7,151.5 43.8,156.5 46.5,148.4    39.6,143.4 48.1,143.4  "
+   id="polygon1155" />
+	<polygon
+   class="st1"
+   points="26.1,39.6 28.7,47.7 37.2,47.7 30.3,52.7 32.9,60.8 26.1,55.8 19.2,60.8 21.8,52.7 14.9,47.7    23.4,47.7  "
+   id="polygon1157" />
+	<polygon
+   class="st1"
+   points="50.6,14.6 53.2,22.7 61.7,22.7 54.9,27.7 57.5,35.8 50.6,30.8 43.7,35.8 46.4,27.7 39.5,22.7 48,22.7     "
+   id="polygon1159" />
+	<polygon
+   class="st1"
+   points="85.6,5.2 88.2,13.3 96.7,13.3 89.8,18.3 92.5,26.4 85.6,21.4 78.7,26.4 81.4,18.3 74.5,13.3 83,13.3     "
+   id="polygon1161" />
+	<polygon
+   class="st1"
+   points="120.2,14.7 122.8,22.8 131.3,22.8 124.4,27.8 127.1,35.8 120.2,30.9 113.3,35.8 115.9,27.8    109.1,22.8 117.6,22.8  "
+   id="polygon1163" />
+	<polygon
+   class="st1"
+   points="145.7,40.2 148.3,48.2 156.8,48.2 149.9,53.2 152.5,61.3 145.7,56.3 138.8,61.3 141.4,53.2    134.5,48.2 143,48.2  "
+   id="polygon1165" />
+	<polygon
+   class="st1"
+   points="155.1,75.1 157.7,83.2 166.2,83.2 159.3,88.2 162,96.3 155.1,91.3 148.2,96.3 150.9,88.2 144,83.2    152.5,83.2  "
+   id="polygon1167" />
+	<polygon
+   class="st1"
+   points="145.6,110.2 148.3,118.3 156.8,118.3 149.9,123.3 152.5,131.4 145.6,126.4 138.8,131.4 141.4,123.3    134.5,118.3 143,118.3  "
+   id="polygon1169" />
+	<polygon
+   class="st1"
+   points="120.2,135.5 122.8,143.6 131.3,143.6 124.4,148.6 127,156.7 120.2,151.7 113.3,156.7 115.9,148.6    109,143.6 117.5,143.6  "
+   id="polygon1171" />
+	<polygon
+   class="st1"
+   points="85.7,144.8 88.3,152.9 96.8,152.9 89.9,157.9 92.6,166 85.7,161 78.8,166 81.4,157.9 74.6,152.9    83.1,152.9  "
+   id="polygon1173" />
+	<polygon
+   class="st1"
+   points="25.7,110.1 28.4,118.2 36.9,118.2 30,123.1 32.6,131.2 25.7,126.2 18.9,131.2 21.5,123.1 14.6,118.2    23.1,118.2  "
+   id="polygon1175" />
+	<polygon
+   class="st1"
+   points="16.2,74.5 18.8,82.7 27.4,82.7 20.5,87.7 23.1,95.9 16.2,90.8 9.2,95.9 11.9,87.7 5,82.7 13.5,82.7     "
+   id="polygon1177" />
+</g>
+<g
+   id="g1183">
+	<path
+   id="XMLID_11_"
+   class="st1"
+   d="M85.8,93.5c-7.6,0-13.9-2.6-18.9-7.8c-4.9-5.2-7.4-11.6-7.4-19.2c0-7.7,2.5-14,7.4-19.1   c4.9-5.1,11.2-7.6,18.8-7.6c7.6,0,13.9,2.6,18.7,7.8c4.8,5.2,7.2,11.6,7.2,19.2c0,7.6-2.4,14-7.2,19C99.6,90.9,93.5,93.5,85.8,93.5   " />
+	<path
+   id="XMLID_10_"
+   class="st1"
+   d="M59.6,131c0-7.7,2.5-14,7.4-19.1c4.9-5.1,11.2-7.6,18.9-7.6c7.6,0,13.9,2.6,18.6,7.8   c4.8,5.2,7.2,11.6,7.2,19.2" />
+</g>
+</svg>
diff --git a/example/static/idem/img/IDEM.svg b/example/static/idem/img/IDEM.svg
new file mode 100644
index 00000000..7c0f3b70
--- /dev/null
+++ b/example/static/idem/img/IDEM.svg
@@ -0,0 +1,199 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!-- Generator: Adobe Illustrator 22.1.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
+
+<svg
+   version="1.1"
+   id="logo_IDEM_colorato"
+   x="0px"
+   y="0px"
+   viewBox="0 0 43 43.000001"
+   enable-background="new 0 0 385 259.5"
+   xml:space="preserve"
+   sodipodi:docname="IDEM.svg"
+   inkscape:version="1.2.1 (9c6d41e410, 2022-07-14, custom)"
+   width="43"
+   height="43"
+   xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
+   xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg"><defs
+   id="defs585" /><sodipodi:namedview
+   id="namedview583"
+   pagecolor="#ffffff"
+   bordercolor="#000000"
+   borderopacity="0.25"
+   inkscape:showpageshadow="2"
+   inkscape:pageopacity="0.0"
+   inkscape:pagecheckerboard="0"
+   inkscape:deskcolor="#d1d1d1"
+   showgrid="false"
+   inkscape:zoom="6.2581888"
+   inkscape:cx="59.202433"
+   inkscape:cy="62.158559"
+   inkscape:window-width="1916"
+   inkscape:window-height="1021"
+   inkscape:window-x="0"
+   inkscape:window-y="0"
+   inkscape:window-maximized="1"
+   inkscape:current-layer="logo_IDEM_colorato" />
+<path
+   fill="#26a33e"
+   d="m 6.5026678,6.4671859 c 0.2646641,0 0.4799236,-0.3162428 0.4799236,-0.7050221 0,-0.3886841 -0.2152607,-0.7049264 -0.4799236,-0.7049264 -0.2646511,0 -0.479912,0.3162423 -0.479912,0.7049264 -1.3e-6,0.3887793 0.2152609,0.7050221 0.479912,0.7050221 z m 2.4383571,0.086309 c 0.2645331,0 0.4797957,-0.3162445 0.4797957,-0.7050238 0,-0.3886823 -0.2152608,-0.7049249 -0.4797957,-0.7049249 -0.2646511,0 -0.4799118,0.3162426 -0.4799118,0.7049249 0,0.3887812 0.2152607,0.7050238 0.4799118,0.7050238 z M 9.6819316,8.6053966 C 9.4887007,8.4675428 9.2558312,8.585947 9.1621211,8.8698275 8.8908827,9.6898835 8.4536312,10.071881 7.785805,10.071881 7.0866898,10.071881 6.5920736,9.6589103 6.4286019,8.9387446 6.360721,8.6393407 6.1403913,8.4775047 5.9366437,8.5772997 5.7327677,8.6770947 5.6226022,9.0007855 5.6905997,9.3001704 5.9626031,10.499081 6.7457944,11.214791 7.785805,11.214791 c 0.9726225,0 1.6712315,-0.620944 2.0760663,-1.845703 C 9.9558283,9.0852279 9.8751634,8.7431361 9.6819316,8.6053966 Z M 13.981846,7.960739 C 13.981846,3.5712084 11.147018,0 7.6625938,0 4.1781576,0 1.3433299,3.5712084 1.3433299,7.960739 c 0,4.12611 2.5049541,7.528339 5.699544,7.921957 0.1505555,0.46105 0.3725347,0.825733 0.5560129,1.126813 0.6114986,1.002921 1.7302558,2.840813 0.3140428,8.646599 -0.029123,0.02082 -0.058376,0.03999 -0.086995,0.06362 C 6.0366797,27.19821 3.8217022,24.833151 3.7997871,24.809149 3.0829469,24.030657 2.0687805,24.244761 1.5346662,25.293363 c -0.5339965,1.048772 -0.3952133,2.529864 0.3155586,3.320453 0.081043,0.09023 1.1095122,1.210072 2.5834673,1.87452 -0.07509,0.4805 -0.1333367,0.944806 -0.1843739,1.353302 C 4.137506,32.736399 4.0510179,33.62259 3.9915007,34.298603 3.1850079,33.888982 2.6011289,33.266364 2.5897308,33.2541 1.8727609,32.475608 0.85859326,32.689521 0.32448011,33.738311 c -0.53399644,1.048583 -0.39521322,2.529677 0.31555864,3.320454 0.13612488,0.151416 2.94018275,3.205497 6.04687105,2.127336 0.090677,1.239996 0.2047581,2.009767 0.2193198,2.104817 0.1799394,1.178435 0.9749177,1.918049 1.7776108,1.656512 0.6949409,-0.226582 1.1681478,-1.133612 1.1681478,-2.138876 0,-0.155513 -0.0114,-0.313615 -0.035073,-0.471735 -0.00478,-0.03275 -0.2573117,-1.777603 -0.2573117,-4.323492 0,-2.283588 0.2031103,-5.21191 0.9703525,-8.12684 0.75788,-2.879044 1.053043,-5.194445 1.053043,-7.086642 0,-2.535638 -0.530689,-4.309052 -1.187637,-5.662179 2.119881,-1.286134 3.586486,-4.0198 3.586486,-7.1769334 z m -6.3192522,4.531918 c -2.1975129,0 -3.9852504,-2.033025 -3.9852504,-4.531918 0,-2.4990074 1.7877375,-4.5320132 3.9852504,-4.5320132 2.1974995,0 3.9852392,2.0330058 3.9852392,4.5320132 0,2.498893 -1.7877397,4.531918 -3.9852392,4.531918 z"
+   id="path510"
+   style="stroke-width:0.157162" />
+<g
+   id="g556"
+   style="fill:#ffffff;fill-opacity:1"
+   transform="matrix(0.12966742,0,0,0.19048476,-3.3718035,-3.2879005)">
+	<path
+   fill="#777676"
+   d="m 134.8848,99.4838 c -0.3203,-0.0463 -0.64261,-0.017 -0.9541,-0.017 h -10.9346 c -0.6924,0 -1.1543,0.0615 -1.1543,0.6748 0,0.8588 3.84959,10.9853 3.84959,26.6958 0,11.84419 -4.08099,22.09219 -4.08099,22.70549 0,1.166 1.9248,0.98241 2.9257,0.98241 h 4.2207 v 0.0127 h 9.6006 V 99.4838 Z"
+   id="path512"
+   style="fill:#ffffff;fill-opacity:1" />
+	<path
+   fill="#777676"
+   d="m 198.5654,76.0937 c 0,0 0,11.4614 0,23.26369 l -32.36621,0.147 -0.1308,0.0239 c -3.6983,0.6782 -6.9971,1.8896 -9.8047,3.6011 -6.9151,4.4018 -10.9278,10.9731 -11.95119,19.5463 -0.3506,7.4165 1.88379,13.91021 6.63089,19.4082 4.414,4.79691 10.06441,7.60941 16.82811,8.39461 l 0.0908,0.01 21.40041,-0.14742 0.1348,-0.0264 c 6.5351,-1.2578 11.8457,-4.1709 15.7851,-8.65819 3.4151,-4.207 5.4727,-9.11331 6.15242,-14.62691 l 0.0117,-0.0914 V 76.0937 Z m 0,50.0947 c -1.2021,6.45799 -4.9736,10.2276 -11.5244,11.5186 h -18.43941 c -6.461,-1.2012 -10.23151,-4.97661 -11.5215,-11.5361 -0.002,-0.128 -0.005,-0.2564 -0.005,-0.3833 0,-3.0811 0.7383,-5.8443 2.1904,-8.2247 2.1006,-2.8667 4.75301,-4.5927 8.09869,-5.27879 0.37401,-0.001 31.11031,-0.145 31.20111,-0.1455 v 14.04979 z"
+   id="path514"
+   style="fill:#ffffff;fill-opacity:1" />
+	<g
+   id="g522"
+   style="fill:#ffffff;fill-opacity:1">
+		<g
+   id="g520"
+   style="fill:#ffffff;fill-opacity:1">
+			<g
+   id="g518"
+   style="fill:#ffffff;fill-opacity:1">
+				<path
+   fill="#777676"
+   d="m 284.34668,122.9077 -0.0117,-0.0913 c -0.67969,-5.5118 -2.7373,-10.4175 -6.11429,-14.5816 -3.97751,-4.53269 -9.28812,-7.4463 -15.82321,-8.70409 l -0.1348,-0.0259 -21.5547,-0.1479 -0.1006,0.0127 c -6.84959,0.8862 -12.4453,3.6313 -16.6299,8.15919 -4.7822,5.57171 -7.01559,12.08051 -6.6738,19.3867 1.0322,8.8833 5.4785,15.7388 13.2227,20.4809 l 0.0215,0.0137 c 2.5322,1.4902 5.96579,2.52251 10.20599,3.06641 l 0.0947,0.0117 h 43.49809 V 137.707 c 0,0 -42.42679,0 -42.75099,0 -0.2686,-0.0586 -2.30368,-0.5078 -2.56149,-0.5645 -3.68851,-1.5 -6.2139,-3.6718 -7.62311,-6.55861 1.0596,0 52.93559,0 52.93559,0 v -7.67619 z m -24.25589,-10.7691 c 0.80499,0.10852 1.90155,0.30426 3.17596,0.79233 2.98639,1.14372 4.70941,3.01233 5.12485,3.52898 0.42288,0.52589 0.7529,0.9702 1.00589,1.34081 h -37.04111 c 0.51495,-0.7966 1.24417,-1.73116 2.26321,-2.62138 2.56644,-2.24205 5.41879,-2.84689 6.82669,-3.04073 1.38777,-0.0808 13.13374,-0.7429 18.64451,-1e-5 z"
+   id="path516"
+   style="fill:#ffffff;fill-opacity:1" />
+			</g>
+		</g>
+	</g>
+	<path
+   fill="#939393"
+   d="m 357.14359,122.9301 c -0.9913,-8.81831 -5.43948,-15.6777 -13.22171,-20.3872 l -0.0156,-0.009 c -2.53418,-1.4917 -5.98151,-2.5395 -10.24609,-3.1137 l -0.0997,-0.01369 h -43.5517 v 51.082 h 12.832 c 0,0 0,-35.48241 0,-38.25191 h 13.40039 c 0,2.7695 0,38.25191 0,38.25191 h 12.78131 c 0,0 0,-35.38721 0,-38.2163 1.7529,0.0406 4.74411,0.1104 4.74411,0.1104 0.1846,5e-4 1.10349,0.0908 4.40918,1.7324 3.47562,2.3272 5.50189,5.5278 6.19431,9.7778 0,0.3199 0,26.5957 0,26.5957 h 12.7832 v -27.4746 z"
+   id="path524"
+   style="fill:#ffffff;fill-opacity:1" />
+	<g
+   id="g532"
+   style="fill:#ffffff;fill-opacity:1">
+		<g
+   id="g530"
+   style="fill:#ffffff;fill-opacity:1">
+			<g
+   id="g528"
+   style="fill:#ffffff;fill-opacity:1">
+				<path
+   fill="#777676"
+   d="m 143.0605,167.92479 c -2.01901,-2.30859 -4.70311,-3.76959 -7.99261,-4.3819 l -0.0401,-0.008 -10.98039,-0.1055 -0.0337,0.005 c -3.4175,0.4014 -6.2862,1.81551 -8.5166,4.209 -2.2544,2.6445 -3.3867,5.70511 -3.3848,9.1172 0,0.2256 0.007,0.457 0.0171,0.68851 0.5034,4.35059 2.5371,7.69629 6.0303,9.9218 1.45261,0.88089 3.1137,1.48149 4.9775,1.81549 l 0.044,0.006 16.91401,0.0782 c -0.0298,0.37891 -0.0801,0.73041 -0.15041,1.0547 -0.7383,2.77921 -2.4765,4.4619 -5.4516,5.2207 l -22.4414,0.0781 v 6.0625 h 22.2822 c 4.48729,-0.5069 7.93849,-2.7442 10.25729,-6.60939 0.7695,-1.3027 1.2749,-3.02341 1.55571,-5.16991 l 0.004,-0.0293 V 175.375 c -0.3379,-2.8643 -1.36919,-5.3409 -3.09089,-7.45021 z m -9.1044,1.57031 c 0,0 3.64635,1.51807 4.21724,2.10638 1.40956,1.45259 1.80727,3.19199 1.93945,4.0498 v 7.55571 l -16.4175,-0.0762 c -1.7764,-0.3613 -3.1982,-1.289 -4.3447,-2.84671 -0.76761,-1.24409 -1.16411,-2.69719 -1.16411,-4.373 0,-0.0781 0.002,-0.15919 0.003,-0.24509 0.0733,-0.58514 0.39606,-2.57632 2.11145,-4.23422 1.59692,-1.5434 3.42865,-1.8584 4.03705,-1.93668 4.43204,-0.0417 9.61772,1e-5 9.61772,1e-5 z"
+   id="path526"
+   style="fill:#ffffff;fill-opacity:1" />
+			</g>
+		</g>
+	</g>
+	<g
+   id="g536"
+   style="fill:#ffffff;fill-opacity:1">
+		<path
+   fill="#777676"
+   d="m 199.70119,163.3232 c -2.15729,0.2773 -3.89259,0.7861 -5.21289,1.5625 -3.959,2.41209 -6.2471,5.9346 -6.76271,10.41701 l 0.4971,0.0586 h -0.50099 v 14.04489 h 6.09959 v -13.7139 c -0.0127,-0.21089 0.2187,-1.09079 0.7139,-2.37199 1.40131,-2.37309 3.25682,-3.62599 5.71681,-3.9063 l 21.9296,0.003 v -6.0986 h -22.4472 z"
+   id="path534"
+   style="fill:#ffffff;fill-opacity:1" />
+	</g>
+	<g
+   id="g540"
+   style="fill:#ffffff;fill-opacity:1">
+		<path
+   fill="#777676"
+   d="m 237.78809,163.3183 -0.0352,0.004 c -2.15819,0.27829 -3.89549,0.78619 -5.2148,1.56349 -3.95999,2.41409 -6.24608,5.93361 -6.76079,10.41701 l 0.49809,0.0596 h -0.502 v 14.04491 h 6.09961 v -13.7149 c -0.0126,-0.2099 0.22079,-1.08789 0.711,-2.36809 1.4014,-2.375 3.2598,-3.6299 5.71869,-3.9102 l 21.93269,0.004 v -6.09959 h -22.44729 z"
+   id="path538"
+   style="fill:#ffffff;fill-opacity:1" />
+	</g>
+	<g
+   id="g548"
+   style="fill:#ffffff;fill-opacity:1">
+		<g
+   id="g546"
+   style="fill:#ffffff;fill-opacity:1">
+			<g
+   id="g544"
+   style="fill:#ffffff;fill-opacity:1">
+				<rect
+   x="351.52148"
+   y="163.3203"
+   fill="#777676"
+   width="6.0995998"
+   height="26.086901"
+   id="rect542"
+   style="fill:#ffffff;fill-opacity:1" />
+			</g>
+		</g>
+	</g>
+	<path
+   fill="#777676"
+   d="m 183.79539,177.2421 c 0.0142,-0.27631 0.0337,-0.5546 0.0337,-0.8261 0.004,-3.2305 -1.03519,-6.1153 -3.0869,-8.5791 l -0.3833,0.31931 0.3623,-0.34181 c -2.4678,-2.63179 -5.437,-4.14549 -8.83499,-4.49319 l -21.6313,-0.004 v 3.18268 2.91299 l 21.7666,0.0801 c 2.47119,0.64549 4.08929,1.9082 5.0049,3.8721 h -27.2041 l -0.0684,0.4189 c -0.1655,1.002 -0.2466,1.95219 -0.2466,2.8555 0,1.2939 0.17191,2.48439 0.51759,3.5674 1.936,5.3418 5.83112,8.4668 11.44431,9.1953 l 0.0371,0.006 h 21.53421 v -10e-4 h 0.7549 v -12.1651 z m -22.4448,5.99029 c 0,0 -2.79044,-0.83711 -4.16116,-2.49815 -0.40854,-0.49507 -0.66992,-0.95995 -0.82513,-1.27045 h 21.38672 c 0,1.27574 0,2.55147 0,3.82721 -8.2823,-0.084 -16.40043,-0.0586 -16.40043,-0.0586 z"
+   id="path550"
+   style="fill:#ffffff;fill-opacity:1" />
+	<path
+   fill="#777676"
+   d="m 310.6611,176.56149 c 0,-0.0469 0.006,-0.0947 0.006,-0.1416 0,-0.0498 -0.006,-0.0987 -0.006,-0.1485 v -0.1337 h -0.005 c -0.0567,-3.1163 -1.08398,-5.90919 -3.0762,-8.3018 l -0.38278,0.3213 v -9.9e-4 l 0.3613,-0.3437 c -2.4668,-2.62801 -5.43561,-4.14461 -8.83401,-4.49319 l -21.63278,-0.002 v 3.18359 2.91209 l 21.76758,0.0811 c 2.47171,0.6445 4.08881,1.90721 5.00391,3.8721 h -27.2012 l -0.0693,0.41701 c -0.16901,1.0009 -0.25,1.95409 -0.25,2.85739 0,1.29291 0.17279,2.48241 0.5195,3.5674 1.93558,5.3398 5.83197,8.4668 11.44528,9.19431 l 0.0352,0.005 h 21.53421 v -0.0264 h 0.78409 v -12.81931 z m -6.04391,2.90131 c 0,1.27606 0,2.55212 0,3.8282 l -16.43069,-0.0586 c -0.91037,-0.21574 -2.7717,-0.80489 -4.1622,-2.50005 -0.35471,-0.43242 -0.62164,-0.86716 -0.8241,-1.26955 6.80825,-0.0709 14.60873,0.0709 21.41699,1e-5"
+   id="path552"
+   style="fill:#ffffff;fill-opacity:1" />
+	<path
+   fill="#777676"
+   d="m 348.7012,176.81729 c 0.004,-0.13379 0.0166,-0.27139 0.0166,-0.4043 0.004,-3.2285 -1.03519,-6.1142 -3.08499,-8.5771 l -0.3848,0.32031 0.36429,-0.3428 c -2.46869,-2.6299 -5.43848,-4.14551 -8.83688,-4.4931 l -21.63181,-0.002 v 3.18069 2.91501 l 21.76849,0.0801 c 2.4707,0.64551 4.08893,1.90721 5.00293,3.8721 h -27.20312 l -0.0693,0.41701 c -0.1651,1.00189 -0.24509,1.95499 -0.24509,2.8564 -0.002,1.293 0.16989,2.4834 0.51752,3.56839 1.93167,5.3398 5.83209,8.46581 11.44537,9.1953 l 0.0361,0.004 h 21.5332 v -0.041 h 0.77151 v -12.54891 z m -6.044,2.6465 c 0,1.27574 0,2.55147 0,3.82721 l -16.41891,-0.0586 c -0.90848,-0.21475 -2.77078,-0.80255 -4.16071,-2.49808 -0.3548,-0.43279 -0.62155,-0.86792 -0.8237,-1.27052 6.54724,-0.0573 14.85607,0.0573 21.40332,0"
+   id="path554"
+   style="fill:#ffffff;fill-opacity:1" />
+</g>
+<g
+   id="g558"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g560"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g562"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g564"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g566"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g568"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g570"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g572"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g574"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g576"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g578"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+<g
+   id="g580"
+   transform="translate(-112.0518,-76.0937)">
+</g>
+</svg>
diff --git a/example/static/spid/spid-ico-circle-bb.svg b/example/static/spid/spid-ico-circle-bb.svg
old mode 100644
new mode 100755
diff --git a/example/static/spid/spid-idp-infocertid.svg b/example/static/spid/spid-idp-infocertid.svg
old mode 100644
new mode 100755
diff --git a/example/static/spid/spid-idp-intesaid.svg b/example/static/spid/spid-idp-intesaid.svg
index 268f87f1..a83a7290 100644
--- a/example/static/spid/spid-idp-intesaid.svg
+++ b/example/static/spid/spid-idp-intesaid.svg
@@ -1,38 +1,57 @@
 <?xml version="1.0" encoding="utf-8"?>
-<!-- Generator: Adobe Illustrator 19.0.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
+<!-- Generator: Adobe Illustrator 26.2.1, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
 <svg version="1.1" id="Livello_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px"
-	 viewBox="0 0 423.1 130.2" style="enable-background:new 0 0 423.1 130.2;" xml:space="preserve">
+	 viewBox="0 0 608 181.8" style="enable-background:new 0 0 608 181.8;" xml:space="preserve">
 <style type="text/css">
-	.st0{fill:#F47B3F;}
+	.st0{fill:#6DC499;}
 	.st1{fill:#FFFFFF;}
-	.st2{fill:#137AB9;}
+	.st2{fill:#143257;}
+	.st3{fill:#71C597;}
+	.st4{fill:#117BB9;}
 </style>
-<circle class="st0" cx="358" cy="65.1" r="65.1"/>
 <g>
-	<path class="st1" d="M319.6,94.2V36.4h9.3v57.8H319.6z"/>
-	<path class="st1" d="M379.7,92.4c-4.7,1.3-10,1.8-16.5,1.8h-18.5V36.4h21.7c5.4,0,10,0.4,14.1,1.4c13.4,3.2,22.3,11.9,22.3,26.6
-		C402.7,79.1,393.6,88.5,379.7,92.4z M378,46c-3.7-1-7.8-1.2-12.8-1.2H354v41.1h9c5.7,0,10.4-0.5,14.5-1.7
-		c9.6-2.8,15.5-9.1,15.5-19.8C393,53.6,386.8,48.3,378,46z"/>
+	<circle class="st0" cx="508.7" cy="90.9" r="76.8"/>
 </g>
 <g>
-	<path class="st2" d="M19.3,94.7c-6.2,0-10.3-2.9-10.3-9.4V59.8H0v-8h18.1v32c0,1.8,1.1,2.6,3.1,2.6c1,0,2.5-0.2,3.7-0.5l1.8,7.7
-		C24.1,94.3,21.8,94.7,19.3,94.7z M13.4,44.5c-3.4,0-6.1-2.5-6.1-6s2.7-6,6.1-6c3.4,0,6.1,2.5,6.1,6S16.8,44.5,13.4,44.5z"/>
-	<path class="st2" d="M83.2,94.7c-6.2,0-10.3-2.9-10.3-9.4V67c0-4.9-1.5-8.1-6.9-8.1c-8.2,0-15.3,9.3-17.9,19.6
-		c-1.1,4.4-1.3,7.9-1.3,11.6v4.1h-9.1V59.8h-9.3v-8h18.4v12.9h0.2c4-8,10.9-14,20.4-14c9.3,0,14.6,5.1,14.6,14.9v18.2
-		c0,1.8,1.1,2.6,3.1,2.6c1,0,2.5-0.2,3.7-0.5l1.8,7.7C88.1,94.3,85.8,94.7,83.2,94.7z"/>
-	<path class="st2" d="M116.3,95.1c-6.8,0-13.3-3.2-13.3-12.6V59.8H91.6v-8H103V41.1h9.1v10.7h15.8v8h-15.8v20.9
-		c0,4.8,2.5,6.1,5.9,6.1c3.2,0,6.3-1.2,9.2-2.8l3.4,7.2C126.7,93.3,122.3,95.1,116.3,95.1z"/>
-	<path class="st2" d="M155.1,77c-3.2,0-6.7-0.1-9.7-0.4c0.4,6.7,6,10.2,14.2,10.2c5.8,0,9.8-1.2,14.5-3.2L177,91
-		c-5.2,2.5-10.8,4.1-18.4,4.1c-14.1,0-23.2-8.3-23.2-21.3c0-14.5,10.3-23.2,24.5-23.2c9.6,0,18.1,4.1,18.1,12.9
-		C178,72,170.1,77,155.1,77z M160,59c-7.3,0-12.8,3.2-14.2,9.6c2.9,0.4,6.1,0.4,8.9,0.4c10.9,0,13.8-3,13.8-5.7
-		C168.4,60.5,165,59,160,59z"/>
-	<path class="st2" d="M204.4,95.1c-7.4,0-14.4-1.8-19.4-4.7l3.7-7.5c4.1,2.3,9.2,3.9,15.4,3.9c4.9,0,9.9-1,9.9-5
-		c0-0.8-0.3-1.5-0.7-2c-3.7-4.2-19.6-1.3-24.6-9.6c-1-1.6-1.6-3.7-1.6-6.2c0-8.9,7.5-13.3,17-13.3c6.3,0,12.5,1.4,18.9,4l-3.1,7.5
-		c-5.9-2.2-10.2-3.2-15.4-3.2c-5.4,0-7.8,1.8-7.8,4.5c0,0.8,0.2,1.4,0.5,1.9c2.9,4.7,17.5,2.1,23.7,8.2c1.7,1.7,2.7,4,2.7,7.5
-		C223.6,91.4,214.5,95.1,204.4,95.1z"/>
-	<path class="st2" d="M275.9,94.7c-4.9,0-9.4-2-10.2-8.3c-0.1-0.7-0.2-1.5-0.2-2.4h-0.2c-3.6,6.9-9.9,11.1-18,11.1
-		c-8.7,0-16.8-5.8-16.8-18.4c0-8.9,3.8-16.3,10.6-20.9c4.8-3.2,11.1-5.2,20.2-5.2c3.9,0,9.2,0.4,12.9,0.9v31.7c0,2,1.1,3.2,3.3,3.2
-		c0.7,0,2.2-0.2,3.4-0.5l1.8,7.7C280.4,94.3,278.1,94.7,275.9,94.7z M265.2,59.2c-1.8-0.2-3.2-0.3-5.2-0.3c-5.6,0-10.2,1.4-13.5,3.9
-		c-4,3.1-6.3,7.8-6.3,13.4c0,6.9,3.4,10.4,8.4,10.4c7.6,0,16.6-8.2,16.6-26.7V59.2z"/>
+	<path class="st1" d="M462.8,50.2H477v78.2h-14.2V50.2z"/>
+	<path class="st1" d="M562,89.2c0,6.8-1.1,12.7-3.2,17.7c-2.1,5-5.1,9.2-9,12.5s-8.5,5.8-14,7.4s-11.5,2.4-18.1,2.4
+		c-3.2,0-6.7-0.1-10.7-0.4c-4-0.3-7.8-0.8-11.4-1.6V51.3c3.6-0.8,7.4-1.4,11.5-1.6c4.1-0.2,7.7-0.3,10.8-0.3
+		c6.5,0,12.5,0.8,17.9,2.3s10.1,3.9,13.9,7.2c3.9,3.3,6.9,7.4,9,12.4C561,76.3,562,82.3,562,89.2z"/>
+</g>
+<path class="st2" d="M79.5,93.2L79.5,93.2c1.8-5.4-0.2-11.5-4.9-14.9c-4.7-3.4-11-3.4-15.7,0s-6.6,9.4-4.9,14.9
+	c1.8,5.5,6.9,9.2,12.7,9.2C72.5,102.4,77.7,98.7,79.5,93.2"/>
+<polygon class="st3" points="88.8,50.9 71.7,50.9 63.1,65.7 80.3,65.7 88.9,80.5 97.5,65.6 "/>
+<polygon class="st4" points="89.1,97.7 80.4,112.6 63.3,112.6 71.9,127.3 89.1,127.3 97.7,112.5 "/>
+<polygon class="st4" points="30.9,74.3 22.4,89.2 31,104 48.2,104 39.6,89.2 48.1,74.3 "/>
+<rect x="119.3" y="50.9" class="st2" width="14" height="76.6"/>
+<path class="st2" d="M190,74.6c-4-3.2-9.9-4.7-17.9-4.7c-8.7,0-18.7,1.8-26.8,4.9h-0.1v52.7h13.3V83.1c3.6-1,8.1-1.6,12.6-1.6
+	c8.2,0,12.4,3.6,12.4,10.9v35.1h13.1V91.3C196.6,83.6,194.5,78.2,190,74.6"/>
+<path class="st2" d="M238.2,116.6c-1.9,0.6-4.1,0.7-6.5,0.7c-3.6,0-6.1-1-7.6-3c-1.5-2.1-2.2-5.4-2.2-10.1V80.3h20.8V69h-20.8V51.3
+	l-13.5,2.2v50.8c0,3.9,0.4,7.3,1,10.4c0.7,3,1.8,5.6,3.5,7.8c1.7,2.2,3.8,3.7,6.6,4.9c2.8,1.1,6.3,1.7,10.5,1.7c3.5,0,6.4-0.4,8.9-1
+	c2.5-0.7,4.6-1.4,6.2-2.1l-2.2-10.8C241.6,115.6,240.1,116,238.2,116.6"/>
+<path class="st2" d="M265.5,92.9c0.2-1.7,0.7-3.4,1.2-5c0.6-1.6,1.4-3.1,2.5-4.3c1.1-1.2,2.4-2.2,3.9-3.1c1.6-0.7,3.4-1.1,5.4-1.1
+	c2.1,0,3.7,0.4,5.1,1c1.4,0.7,2.7,1.7,3.6,2.9c1,1.2,1.8,2.6,2.2,4.3c0.6,1.7,0.7,3.5,0.7,5.2L265.5,92.9L265.5,92.9z M278.5,68.3
+	c-3.5,0-6.7,0.7-10,2s-6.2,3.2-8.7,5.8c-2.5,2.5-4.6,5.7-6.1,9.6s-2.3,8.3-2.3,13.4c0,4.4,0.6,8.3,1.8,12.1c1.2,3.7,3,6.8,5.4,9.5
+	s5.6,4.8,9.4,6.4c3.8,1.5,8.2,2.2,13.4,2.2c2,0,4-0.1,5.9-0.4c2-0.2,3.7-0.5,5.4-0.8c1.7-0.4,3.2-0.7,4.5-1.1s2.3-0.7,3.1-1.1
+	l-1.8-10.9c-1.6,0.7-3.7,1.3-6.5,1.9c-2.7,0.6-5.7,0.8-9,0.8c-5.6,0-9.8-1.3-12.7-3.8c-2.9-2.5-4.6-6.2-5-10.8h38.4
+	c0.1-0.7,0.1-1.6,0.2-2.5c0-0.9,0.1-1.8,0.1-2.5c0-9.8-2.2-17.2-6.7-22.2C292.8,70.8,286.6,68.3,278.5,68.3"/>
+<path class="st2" d="M352.5,100.7c-1.5-1.4-3.3-2.7-5.5-3.9c-2.2-1.1-5-2.3-8.1-3.5c-2-0.7-3.6-1.3-5-2c-1.3-0.7-2.4-1.2-3.3-1.9
+	s-1.4-1.3-1.7-2.1c-0.4-0.7-0.5-1.6-0.5-2.5c0-1.9,0.8-3.4,2.5-4.3s3.9-1.4,6.7-1.4c3.1,0,5.7,0.3,8,0.8c2.3,0.6,4.2,1.1,5.7,1.9
+	l2.4-10.8c-1.6-0.6-3.9-1.2-7-1.9c-3.1-0.7-6.4-0.9-9.8-0.9c-6.7,0-12.2,1.5-16.1,4.6s-5.9,7.3-5.9,12.6c0,2.7,0.5,5,1.3,6.9
+	s2.1,3.5,3.6,4.9s3.3,2.5,5.3,3.5c2.1,1,4.3,2,6.7,2.8c4,1.5,6.9,2.8,8.6,4.1c1.8,1.2,2.6,2.8,2.6,4.8c0,2.1-0.8,3.6-2.4,4.4
+	c-1.7,0.8-4.2,1.3-7.9,1.3c-3.6,0-6.7-0.4-9.5-1.1s-5.1-1.5-7.2-2.3l-2.3,11.2c1.3,0.6,3.5,1.2,6.5,2.1c3.1,0.8,7.3,1.3,12.3,1.3
+	c7.7,0,13.6-1.4,17.7-4.3s6.2-7,6.2-12.5c0-2.6-0.4-4.8-1-6.6C355,103.8,354,102.1,352.5,100.7"/>
+<path class="st2" d="M399.4,117.5c-2.2,0.5-5.3,0.7-9.4,0.7c-3.5,0-6.2-0.7-8.1-1.8c-2.1-1.2-3-3.5-3-6.6c0-1.6,0.4-3,1.1-4
+	s1.8-1.9,3-2.5s2.6-1,4.1-1.2s3-0.3,4.5-0.3c1.7,0,3.3,0.1,4.7,0.3s2.5,0.5,3.3,0.7L399.4,117.5L399.4,117.5z M411.2,81.8
+	c-0.7-2.8-2.1-5.2-3.9-7.3c-1.8-2-4.2-3.6-7.3-4.7c-3.1-1.1-6.8-1.7-11.2-1.7c-3.7,0-7.2,0.3-10.5,0.9s-5.8,1.2-7.5,1.8l1.7,10.8
+	c1.7-0.6,3.7-1.1,6.4-1.6c2.6-0.5,5.4-0.7,8.6-0.7c2.3,0,4.2,0.3,5.7,0.9c1.5,0.7,2.7,1.4,3.6,2.5s1.6,2.3,2,3.7
+	c0.4,1.4,0.6,2.9,0.6,4.4V93c-1.9-0.5-3.6-0.7-5.2-0.9c-1.7-0.2-3.2-0.3-4.7-0.3c-3.2,0-6.3,0.3-9.2,0.9c-2.9,0.7-5.5,1.7-7.8,3.1
+	c-2.2,1.4-4,3.3-5.3,5.6c-1.3,2.2-2,5-2,8.4c0,3.5,0.6,6.4,1.8,8.8c1.1,2.3,2.7,4.3,4.8,5.8c2.1,1.5,4.5,2.5,7.4,3.2
+	c2.9,0.7,6.1,1,9.6,1c5.2,0,10-0.3,14.2-0.9c4.2-0.7,7.3-1.1,9.4-1.6V91.3C412.3,87.8,412,84.7,411.2,81.8"/>
+<g>
+	<path class="st0" d="M526.3,93.4c4.2,0,7.3-1.4,10-4c2.6-2.7,3.9-6.1,3.9-10.2s-1.3-7.5-3.9-10.3c-2.5-2.7-5.8-4.2-10-4.2
+		s-7.5,1.3-10.1,4c-2.7,2.7-4,6.1-4,10.2s1.4,7.6,4,10.3C518.7,92,522.1,93.4,526.3,93.4z"/>
+	<path class="st0" d="M526.3,99.3c-4.2,0-7.5,1.3-10.1,4c-2.7,2.7-4,6-4,10.2l27.9,0.3c0-4.1-1.3-7.5-3.9-10.3
+		C533.8,100.7,530.4,99.3,526.3,99.3z"/>
 </g>
 </svg>
diff --git a/example/static/spid/spid-idp-lepidaid.svg b/example/static/spid/spid-idp-lepidaid.svg
index 0eb4df31..88f05576 100644
--- a/example/static/spid/spid-idp-lepidaid.svg
+++ b/example/static/spid/spid-idp-lepidaid.svg
@@ -1,45 +1,52 @@
 <?xml version="1.0" encoding="utf-8"?>
-<!-- Generator: Adobe Illustrator 22.1.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
+<!-- Generator: Adobe Illustrator 23.0.1, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
 <svg version="1.1" id="Livello_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px"
-	 viewBox="0 0 518.8 178.5" style="enable-background:new 0 0 518.8 178.5;" xml:space="preserve">
+	 viewBox="0 0 366.19 133.57" style="enable-background:new 0 0 366.19 133.57;" xml:space="preserve">
 <style type="text/css">
 	.st0{fill:#ED6C25;}
 	.st1{fill-rule:evenodd;clip-rule:evenodd;fill:#26201F;}
-	.st2{fill-rule:evenodd;clip-rule:evenodd;fill:none;stroke:#ED6C25;stroke-width:2;stroke-miterlimit:10;}
-	.st3{fill:none;stroke:#ED6C25;stroke-width:2;stroke-miterlimit:10;}
+	.st2{fill-rule:evenodd;clip-rule:evenodd;fill:#ED6C25;stroke:#ED6C27;stroke-width:2;stroke-miterlimit:10;}
+	.st3{fill-rule:evenodd;clip-rule:evenodd;fill:#ED6C25;}
 </style>
-<path class="st0" d="M87.8,25.4C96.6,11,112.2,1,130.3,0.1C159-1.4,183.5,20,186.1,48.3h-1.6c-6.1,0-11.1,5-11.1,11.1v28.5
-	c-9.1,10.6-22.4,17.6-37.5,18.4c-11.5,0.6-22.3-2.5-31.3-8.2c-8-7.3-11.1,0-13,2.9c-8.4,12.8-22.6,21.6-39.1,22.4
-	c-27.5,1.4-51-19.7-52.4-47.2c-1.4-27.5,19.7-51,47.2-52.4c8.5-0.4,16.6,1.3,23.8,4.7C75.3,30.5,85.7,28.8,87.8,25.4"/>
-<path class="st1" d="M224.9,156.3l-2.4-6.5c-0.3-0.8-0.9-1.2-1.9-0.8c-2.5,0.9-5.2,1.5-8.2,1.5c-3.7,0-6.8-1.3-9.3-3.8
-	c-2.5-2.5-3.8-5.6-3.8-9.3V63.5c0-1.1-0.4-1.5-1.5-1.5h-6.8c-0.9,0-1.5,0.4-1.5,1.5v73.8c0,6.4,2.3,11.8,6.6,16.2
-	c4.5,4.4,9.8,6.6,16.2,6.6c3.6,0,7.6-0.7,11.5-2C224.9,157.7,225.2,157.1,224.9,156.3"/>
-<path class="st1" d="M274.3,127.4v-14.1c0-6.6-2.3-12.3-7-17c-4.8-4.8-10.5-7.2-17.2-7.2c-6.6,0-12.3,2.4-17.1,7
-	c-4.8,4.8-7.2,10.4-7.2,17.1v21.2c0,7.2,2.5,13.1,7.6,18.2c5,5,11,7.6,18,7.6c7.7,0,14.6-2.1,20.6-6.5c0.8-0.5,0.9-1.3,0.4-2l-4-5.7
-	c-0.5-0.7-1.2-0.8-1.9-0.3c-4.5,3.2-9.5,4.8-15.1,4.8c-4.4,0-8.1-1.6-11.3-4.8c-3.1-3-4.6-6.8-4.6-11.3v-4.1c0-0.9,0.5-1.5,1.5-1.5
-	H273C273.9,128.8,274.3,128.3,274.3,127.4 M264.6,117.7c0,0.9-0.4,1.4-1.3,1.4h-26.4c-0.9,0-1.5-0.5-1.5-1.4v-4.5
-	c0-4,1.5-7.4,4.4-10.3c2.8-2.9,6.2-4.2,10.2-4.2s7.4,1.3,10.3,4.2c2.9,2.9,4.2,6.3,4.2,10.3V117.7z"/>
-<path class="st1" d="M337.5,131.1v-16.7c0-7-2.5-13-7.6-18c-4.9-5-11-7.4-18-7.4c-5.8,0-11.1,1.9-16,5.7c-0.1,0.1-0.4,0.3-0.8,0.3
-	c-0.9,0-1.5-0.5-1.5-1.5V92c0-1.1-0.4-1.5-1.5-1.5h-4.4c-0.9,0-1.5,0.4-1.5,1.5v85c0,0.9,0.5,1.5,1.5,1.5h6.9c0.9,0,1.3-0.5,1.3-1.5
-	v-23.2c0-0.9,0.5-1.3,1.5-1.3c0.5,0,0.8,0.1,1.1,0.3c4,2.7,8.5,4,13.4,4c7,0,13.1-2.5,18-7.6C335,144.1,337.5,138.2,337.5,131.1
-	 M327.9,131.1c0,4.4-1.6,8.1-4.6,11.2c-3,3-6.9,4.6-11.3,4.6c-4.4,0-8.1-1.6-11.1-4.6c-3.2-3.2-4.8-6.9-4.8-11.2v-16.7
-	c0-4.4,1.6-7.9,4.8-11.1c3.2-3.2,6.8-4.6,11.1-4.6c4.4,0,8,1.5,11.1,4.6c3.2,3.2,4.8,6.7,4.8,11.1V131.1z"/>
-<path class="st2" d="M457.9,156.8V63.5c0-1.1-0.4-1.5-1.3-1.5h-6.9c-0.9,0-1.5,0.4-1.5,1.5V92c0,0.8-0.4,1.2-1.3,1.2
-	c-0.5,0-0.8-0.1-1.1-0.3c-4-2.7-8.5-3.8-13.4-3.8c-7,0-13.1,2.4-18,7.4c-5,5-7.6,11-7.6,18v20.1c0,7,2.5,13,7.6,18
-	c5,5,11,7.6,18,7.6c5.8,0,11.1-1.9,16-5.7c0.1-0.3,0.4-0.3,0.8-0.3c0.9,0,1.5,0.4,1.5,1.5v1.2c0,0.9,0.4,1.5,1.5,1.5h4.4
-	C457.5,158.3,457.9,157.7,457.9,156.8 M448.2,134.6c0,4.4-1.5,8.1-4.6,11.2c-3.1,3-6.8,4.6-11.1,4.6c-4.4,0-8.2-1.6-11.3-4.6
-	c-3-3.2-4.6-6.9-4.6-11.2v-20.1c0-4.4,1.6-8.1,4.6-11.1c3-3.2,6.9-4.6,11.3-4.6c4.2,0,8,1.5,11.1,4.6c3.2,3,4.6,6.7,4.6,11.1V134.6z
+<path class="st0" d="M51.57,19.69c4.64-7.57,12.81-12.8,22.34-13.3c15.03-0.79,27.9,10.46,29.25,25.32h-0.86
+	c-3.21,0-5.8,2.6-5.8,5.81v14.98c-4.8,5.55-11.76,9.22-19.67,9.64c-6.03,0.32-11.72-1.31-16.44-4.33c-4.17-3.83-5.82,0-6.83,1.54
+	c-4.41,6.72-11.86,11.33-20.51,11.78C18.62,71.88,6.31,60.8,5.55,46.37C4.8,31.94,15.88,19.63,30.31,18.87
+	c4.47-0.23,8.73,0.66,12.51,2.45C45.04,22.37,50.49,21.45,51.57,19.69"/>
+<path class="st1" d="M129.53,109.93l-2.01-5.04c-0.23-0.62-0.79-0.92-1.57-0.62c-2.13,0.72-4.36,1.13-6.94,1.13
+	c-3.13,0-5.71-1.03-7.83-2.98c-2.13-1.96-3.25-4.32-3.25-7.19V38c0-0.82-0.34-1.13-1.23-1.13H101c-0.78,0-1.23,0.31-1.23,1.13v57.24
+	c0,4.93,1.9,9.14,5.59,12.54c3.81,3.39,8.28,5.14,13.65,5.14c3.02,0,6.38-0.51,9.74-1.55C129.53,111.06,129.75,110.55,129.53,109.93
 	"/>
-<path class="st1" d="M518.8,156.8v-43.5c0-6.7-2.4-12.4-7.2-17.1c-4.8-4.8-10.5-7.2-17.2-7.2c-7.6,0-14.3,2.1-20.3,6.4
-	c-0.9,0.5-0.9,1.2-0.4,2l4,5.5c0.4,0.8,1.1,0.9,1.9,0.4c4.5-3.1,9.5-4.6,14.9-4.6c4.1,0,7.6,1.3,10.3,4.2c2.9,2.9,4.4,6.3,4.4,10.4
-	v1.7c0,1.1-0.4,1.2-1.3,0.7c-4-2.8-8.5-4.1-13.4-4.1c-6.8,0-12.5,2.4-17.2,7.2c-4.6,4.8-7,10.5-7,17.1c0,6.8,2.4,12.5,7,17.2
-	c4.8,4.8,10.5,7.2,17.2,7.2c4.8,0,9-1.3,12.7-3.7c1.9-1.2,2.9-1.9,2.9-1.9c0.9,0,1.5,0.5,1.5,1.5v0.7c0,0.9,0.5,1.5,1.5,1.5h4.4
-	C518.3,158.3,518.8,157.7,518.8,156.8 M509.1,135.9c0,4.1-1.5,7.4-4.4,10.3c-2.9,2.9-6.2,4.4-10.3,4.4c-4.1,0-7.4-1.5-10.3-4.4
-	c-2.9-2.9-4.2-6.2-4.2-10.3c0-4,1.3-7.4,4.2-10.3c2.9-2.9,6.4-4.2,10.3-4.2c4.1,0,7.6,1.5,10.3,4.2
-	C507.7,128.5,509.1,131.9,509.1,135.9"/>
-<path class="st2" d="M392.3,108.1c0-5.6-2-10.3-5.9-13.9c-3.5-4-8.3-5.6-13.8-5.6c-5.1,0-9.8,1.6-13.4,5.6
-	c-3.9,3.6-5.9,8.3-5.9,13.9c0,5.1,1.9,9.9,5.9,13.5c3.5,4,8.3,6,13.4,6c5.5,0,10.2-2,13.8-6C390.3,118,392.3,113.2,392.3,108.1"/>
+<path class="st1" d="M171.18,87.53V76.57c0-5.1-1.91-9.5-5.93-13.18c-4.03-3.7-8.84-5.55-14.54-5.55c-5.6,0-10.41,1.85-14.43,5.45
+	c-4.03,3.69-6.04,8.08-6.04,13.29v16.41c0,5.55,2.13,10.17,6.37,14.08c4.25,3.9,9.29,5.86,15.22,5.86c6.49,0,12.31-1.65,17.34-5.04
+	c0.67-0.41,0.78-1.03,0.33-1.54l-3.36-4.42c-0.45-0.51-1.01-0.61-1.57-0.21c-3.81,2.47-8.05,3.7-12.75,3.7
+	c-3.69,0-6.82-1.23-9.51-3.7c-2.57-2.36-3.91-5.24-3.91-8.73v-3.19c0-0.72,0.45-1.13,1.23-1.13h30.43
+	C170.84,88.66,171.18,88.25,171.18,87.53 M163.01,80.04c0,0.71-0.34,1.12-1.12,1.12h-22.26c-0.78,0-1.23-0.41-1.23-1.12v-3.47
+	c0-3.07,1.23-5.72,3.69-7.97c2.35-2.24,5.26-3.27,8.61-3.27c3.36,0,6.26,1.02,8.73,3.27c2.46,2.25,3.58,4.9,3.58,7.97V80.04z"/>
+<path class="st1" d="M220.33,90.44V77.53c0-5.43-2.13-10.04-6.38-13.94c-4.14-3.9-9.29-5.75-15.22-5.75c-4.92,0-9.4,1.44-13.54,4.42
+	c-0.11,0.11-0.34,0.21-0.67,0.21c-0.78,0-1.23-0.41-1.23-1.13v-1.23c0-0.82-0.34-1.13-1.23-1.13h-3.69c-0.78,0-1.23,0.31-1.23,1.13
+	v65.88c0,0.72,0.45,1.13,1.23,1.13h5.82c0.78,0,1.12-0.41,1.12-1.13v-17.99c0-0.72,0.45-1.03,1.23-1.03c0.45,0,0.67,0.1,0.89,0.21
+	c3.36,2.06,7.16,3.08,11.3,3.08c5.93,0,11.08-1.96,15.22-5.86C218.21,100.49,220.33,95.87,220.33,90.44 M212.17,90.44
+	c0,3.38-1.34,6.25-3.92,8.71c-2.57,2.36-5.82,3.58-9.51,3.58c-3.69,0-6.82-1.23-9.4-3.58c-2.69-2.46-4.03-5.33-4.03-8.71V77.53
+	c0-3.38,1.34-6.15,4.03-8.61c2.69-2.46,5.7-3.59,9.4-3.59c3.69,0,6.71,1.13,9.4,3.59c2.69,2.46,4.03,5.23,4.03,8.61V90.44z"/>
+<path class="st2" d="M311.74,110.34V38.01c0-0.83-0.34-1.14-1.12-1.14h-5.82c-0.79,0-1.23,0.31-1.23,1.14v22.09
+	c0,0.62-0.34,0.93-1.12,0.93c-0.45,0-0.67-0.11-0.9-0.21c-3.35-2.05-7.16-2.98-11.3-2.98c-5.93,0-11.08,1.85-15.22,5.76
+	c-4.25,3.9-6.38,8.51-6.38,13.94v15.58c0,5.43,2.13,10.04,6.38,13.94c4.25,3.9,9.29,5.86,15.22,5.86c4.93,0,9.4-1.44,13.54-4.42
+	c0.11-0.2,0.33-0.2,0.67-0.2c0.78,0,1.23,0.31,1.23,1.13v0.92c0,0.72,0.34,1.13,1.23,1.13h3.69
+	C311.4,111.47,311.74,111.06,311.74,110.34 M303.57,93.11c0,3.38-1.23,6.25-3.92,8.71c-2.57,2.36-5.71,3.59-9.4,3.59
+	c-3.69,0-6.94-1.23-9.51-3.59c-2.57-2.46-3.91-5.33-3.91-8.71V77.53c0-3.38,1.34-6.25,3.91-8.61c2.57-2.46,5.82-3.59,9.51-3.59
+	c3.58,0,6.71,1.13,9.4,3.59c2.68,2.36,3.92,5.23,3.92,8.61V93.11z"/>
+<path class="st1" d="M359.77,110.34v-33.7c0-5.2-2.01-9.57-6.04-13.26c-4.03-3.7-8.84-5.55-14.54-5.55
+	c-6.38,0-12.08,1.65-17.12,4.93c-0.78,0.41-0.78,0.92-0.33,1.54l3.36,4.28c0.33,0.61,0.9,0.71,1.57,0.31
+	c3.8-2.44,8.05-3.56,12.53-3.56c3.47,0,6.37,1.02,8.73,3.26c2.46,2.24,3.69,4.88,3.69,8.05v1.34c0,0.82-0.33,0.92-1.12,0.51
+	c-3.35-2.16-7.16-3.19-11.3-3.19c-5.71,0-10.52,1.85-14.55,5.55c-3.91,3.7-5.93,8.12-5.93,13.26c0,5.24,2.01,9.66,5.93,13.36
+	c4.03,3.7,8.84,5.55,14.55,5.55c4.02,0,7.6-1.03,10.74-2.88c1.57-0.93,2.46-1.44,2.46-1.44c0.79,0,1.23,0.41,1.23,1.13v0.51
+	c0,0.72,0.45,1.13,1.23,1.13h3.69C359.33,111.47,359.77,111.06,359.77,110.34 M351.6,94.11c0,3.19-1.23,5.75-3.69,8.01
+	c-2.46,2.26-5.26,3.39-8.73,3.39c-3.47,0-6.27-1.13-8.73-3.39c-2.46-2.26-3.58-4.83-3.58-8.01c0-3.09,1.12-5.75,3.58-8.01
+	c2.46-2.26,5.37-3.29,8.73-3.29c3.47,0,6.37,1.13,8.73,3.29C350.37,88.35,351.6,91.02,351.6,94.11"/>
+<path class="st3" d="M258.93,72.56c0-4.31-1.66-8-4.99-10.76c-2.99-3.08-6.97-4.31-11.61-4.31c-4.32,0-8.31,1.23-11.3,4.31
+	c-3.32,2.76-4.96,6.45-4.96,10.76c0,3.99,1.64,7.69,4.96,10.46c2.99,3.07,6.97,4.61,11.3,4.61c4.64,0,8.62-1.55,11.61-4.61
+	C257.28,80.24,258.93,76.55,258.93,72.56"/>
 <g>
-	<path class="st3" d="M372.8,135.3c-13.4,0-24.2,10.9-24.2,24.2h48.5C397.1,146.2,386.2,135.3,372.8,135.3z"/>
+	<path class="st0" d="M242.5,93.67c-11.3,0-20.45,8.41-20.45,18.79h40.91C262.96,102.08,253.8,93.67,242.5,93.67z"/>
 </g>
 </svg>
diff --git a/example/static/spid/spid-idp-posteid.svg b/example/static/spid/spid-idp-posteid.svg
old mode 100644
new mode 100755
diff --git a/example/static/spid/spid-idp-sielteid.svg b/example/static/spid/spid-idp-sielteid.svg
index 8615bfcb..ae3a780b 100644
--- a/example/static/spid/spid-idp-sielteid.svg
+++ b/example/static/spid/spid-idp-sielteid.svg
@@ -1,76 +1,585 @@
-<?xml version="1.0" encoding="utf-8"?>
-<!-- Generator: Adobe Illustrator 19.0.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
-<svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px"
-	 viewBox="0 0 483.3 128.8" style="enable-background:new 0 0 483.3 128.8;" xml:space="preserve">
-<style type="text/css">
-	.st0{fill:#1B72B8;}
-	.st1{fill:#E5092E;}
-	.st2{fill:#012E6D;}
-</style>
-<g>
-	<path class="st0" d="M75.7,128.2C52.8,124,35.8,110,26.8,87.8c-1.7-4.2-3.9-11.6-3.5-11.9c0.1-0.1,7.2-0.3,15.7-0.3h15.5L87.8,92
-		l33.3,16.4h7.4c4.7,0,7.4,0.2,7.4,0.5c0,1-6.4,6.6-10.3,9.2c-6.9,4.5-14.1,7.4-22.8,9.4C97.1,128.9,81.4,129.2,75.7,128.2
-		L75.7,128.2z M88,79.6L54.5,63.3H0v-9.5h54.7l33.3,16.4l33.3,16.4H483v9.5l-180.7,0l-180.7,0L88,79.6z M452.2,75.7
-		c-6.4-1.2-9.5-8.3-7.6-17.1c2-9.3,7.3-14.7,14.9-15.2c3.2-0.2,5.8,0.5,8.4,2.4c0.5,0.3,1,0.5,1.1,0.3c0.2-0.2,0.7-2.9,1.3-6.2
-		c1.4-8.7,0.9-8,7.3-8c4.2,0,5.4,0.1,5.6,0.7c0.1,0.4-1,7.7-2.5,16.3c-1.5,8.6-3.1,17.5-3.5,19.9c-1.1,6.8-0.7,6.4-6.7,6.4h-5.1
-		v-1.7c0-2-0.6-2.1-2.6-0.4C460.1,75.3,455.9,76.4,452.2,75.7L452.2,75.7z M463,66.4c1.8-0.9,3.2-3.2,3.9-6.6c1-4.7-0.7-7.5-4.4-7.5
-		c-3.6,0-5.8,3.3-6.2,8.9c-0.2,3.2-0.1,3.5,1,4.6C458.8,67.2,460.8,67.4,463,66.4L463,66.4z M188.3,74.2c-3.6-1.1-5.8-2.8-7.5-5.6
-		c-1.4-2.4-2.7-6.4-2.2-6.9c0.2-0.2,2.7-0.5,5.7-0.6l5.4-0.3l0.6,1.8c1.1,3.5,3.8,5.4,7.5,5.4c3.9,0,6.6-2.1,6.6-5.1
-		c0-2.3-2.1-4.1-5.6-5.1c-11-3-15-4.8-17-7.8c-2.5-3.7-2.5-8.4,0.1-12.4c1.1-1.8,2.1-2.6,4.8-3.9l3.3-1.7h7.4c6.7,0,7.6,0.1,9.9,1.1
-		c3.1,1.4,5.5,3.9,6.7,6.9c1.3,3.3,0.9,3.7-3.3,3.7c-1.9,0-4.3,0.1-5.2,0.3c-1.6,0.2-1.8,0.1-2.7-1.5c-1.5-2.7-3.2-3.7-6.3-3.7
-		c-2.2,0-2.9,0.2-4,1.2c-1.5,1.5-1.7,3.4-0.4,4.7c0.5,0.5,3.7,1.6,7.5,2.6c10.2,2.7,13.6,4.5,15.5,8.6c0.7,1.5,1,3.1,1,5.4
-		c0,5.6-2.9,10-8.3,12.5c-2.4,1.1-3.3,1.2-9.7,1.3C192.3,75.1,190.6,75,188.3,74.2L188.3,74.2z M423.4,74.8
-		c-0.4-0.7,5.1-30.3,5.7-30.7c0.8-0.5,9.7-0.4,10.5,0.1c0.6,0.4,0.3,2.7-1.9,15.1c-1.4,8.1-2.7,14.9-2.8,15.3
-		C434.6,75.2,423.8,75.4,423.4,74.8L423.4,74.8z M87.9,58.2L54.8,41.9l-14.5,0c-8,0-14.5-0.2-14.5-0.4c0-0.2,1.1-2.6,2.4-5.2
-		l2.4-4.9h24l67,33.3h33.8l-0.3,4.3c-0.2,2.4-0.5,4.6-0.6,5c-0.2,0.6-2.6,0.7-16.9,0.6L121,74.6L87.9,58.2z M225.5,53.6l0.1-21.1
-		h11.7v41.9l-11.9,0.3L225.5,53.6z M248.9,53.6l0.1-21.1l17.2-0.1l17.2-0.1v8.1h-10.7c-8.6,0-10.8,0.1-11.2,0.7
-		c-0.4,0.4-0.5,1.9-0.4,3.9l0.1,3.3l10.2,0.2l10.2,0.2v7.6l-10.2,0.2l-10.2,0.2l-0.1,4.1c-0.1,3,0,4.2,0.5,4.6
-		c0.4,0.4,4.3,0.6,11.6,0.7l10.9,0.1v8.1l-17.7,0.1l-17.7,0.1L248.9,53.6z M293.2,53.6l0.1-21.1H305l0.2,16.2l0.2,16.2l10.3,0.1
-		l10.3,0.1v9.5h-33.1L293.2,53.6z M341.6,74.4c-0.2-0.2-0.3-7.5-0.3-16.2V42.3l-1.1-0.2c-0.6-0.1-3.6-0.3-6.7-0.4l-5.6-0.1v-9h39.4
-		v9l-6.4,0.2c-3.5,0.1-6.6,0.4-6.8,0.6c-0.2,0.2-0.5,7.5-0.5,16.2l-0.1,15.8l-5.8,0.1C344.6,74.6,341.8,74.6,341.6,74.4L341.6,74.4z
-		 M375.1,74.1c-0.1-0.3-0.2-9.8-0.1-21.1l0.1-20.5h34.6v7.6l-11,0.2l-11,0.2l-0.3,7.8l20.2,0.3v7.6l-10.1,0.1l-10.1,0.1l0.1,4.6
-		l0.1,4.6l11.3,0.1l11.3,0.1v8.5h-17.5C379.3,74.7,375.3,74.5,375.1,74.1L375.1,74.1z M88.1,36.1L55.3,20l-7.4,0
-		c-4.4,0-7.4-0.2-7.4-0.5c0-1.6,8.1-8.1,14.2-11.3C59.3,5.7,66.6,3,73,1.6c7.1-1.6,20.5-2.1,27.8-0.9C121.5,4,137.6,16,147,35
-		c2.3,4.6,5.6,13.5,5.9,15.9l0.2,1.2l-16.1,0.1L121,52.3L88.1,36.1z M429.4,39.3c0-1.4,1.1-6.3,1.6-6.9c0.3-0.4,2.1-0.6,5.8-0.6
-		c3.9,0,5.3,0.2,5.4,0.6c0.1,1-0.1,2.4-0.6,5l-0.5,2.5h-5.8C430.7,39.9,429.4,39.8,429.4,39.3L429.4,39.3z M429.4,39.3"/>
-	<path class="st1" d="M75.7,128.2C52.8,124,35.8,110,26.8,87.8c-1.7-4.2-3.9-11.6-3.5-11.9c0.1-0.1,7.2-0.3,15.7-0.3h15.5L87.8,92
-		l33.3,16.4h7.4c4.7,0,7.4,0.2,7.4,0.5c0,1-6.4,6.6-10.3,9.2c-6.9,4.5-14.1,7.4-22.8,9.4C97.1,128.9,81.4,129.2,75.7,128.2
-		L75.7,128.2z M452.2,75.7c-6.4-1.2-9.5-8.3-7.6-17.1c2-9.3,7.3-14.7,14.9-15.2c3.2-0.2,5.8,0.5,8.4,2.4c0.5,0.3,1,0.5,1.1,0.3
-		c0.2-0.2,0.7-2.9,1.3-6.2c1.4-8.7,0.9-8,7.3-8c4.2,0,5.4,0.1,5.6,0.7c0.1,0.4-1,7.7-2.5,16.3c-1.5,8.6-3.1,17.5-3.5,19.9
-		c-1.1,6.8-0.7,6.4-6.7,6.4h-5.1v-1.7c0-2-0.6-2.1-2.6-0.4C460.1,75.3,455.9,76.4,452.2,75.7L452.2,75.7z M463,66.4
-		c1.8-0.9,3.2-3.2,3.9-6.6c1-4.7-0.7-7.5-4.4-7.5c-3.6,0-5.8,3.3-6.2,8.9c-0.2,3.2-0.1,3.5,1,4.6C458.8,67.2,460.8,67.4,463,66.4
-		L463,66.4z M188.3,74.2c-3.6-1.1-5.8-2.8-7.5-5.6c-1.4-2.4-2.7-6.4-2.2-6.9c0.2-0.2,2.7-0.5,5.7-0.6l5.4-0.3l0.6,1.8
-		c1.1,3.5,3.8,5.4,7.5,5.4c3.9,0,6.6-2.1,6.6-5.1c0-2.3-2.1-4.1-5.6-5.1c-11-3-15-4.8-17-7.8c-2.5-3.7-2.5-8.4,0.1-12.4
-		c1.1-1.8,2.1-2.6,4.8-3.9l3.3-1.7h7.4c6.7,0,7.6,0.1,9.9,1.1c3.1,1.4,5.5,3.9,6.7,6.9c1.3,3.3,0.9,3.7-3.3,3.7
-		c-1.9,0-4.3,0.1-5.2,0.3c-1.6,0.2-1.8,0.1-2.7-1.5c-1.5-2.7-3.2-3.7-6.3-3.7c-2.2,0-2.9,0.2-4,1.2c-1.5,1.5-1.7,3.4-0.4,4.7
-		c0.5,0.5,3.7,1.6,7.5,2.6c10.2,2.7,13.6,4.5,15.5,8.6c0.7,1.5,1,3.1,1,5.4c0,5.6-2.9,10-8.3,12.5c-2.4,1.1-3.3,1.2-9.7,1.3
-		C192.3,75.1,190.6,75,188.3,74.2L188.3,74.2z M423.4,74.8c-0.4-0.7,5.1-30.3,5.7-30.7c0.8-0.5,9.7-0.4,10.5,0.1
-		c0.6,0.4,0.3,2.7-1.9,15.1c-1.4,8.1-2.7,14.9-2.8,15.3C434.6,75.2,423.8,75.4,423.4,74.8L423.4,74.8z M87.9,58.2L54.8,41.9l-14.5,0
-		c-8,0-14.5-0.2-14.5-0.4c0-0.2,1.1-2.6,2.4-5.2l2.4-4.9h24l67,33.3h33.8l-0.3,4.3c-0.2,2.4-0.5,4.6-0.6,5
-		c-0.2,0.6-2.6,0.7-16.9,0.6L121,74.6L87.9,58.2z M225.5,53.6l0.1-21.1h11.7v41.9l-11.9,0.3L225.5,53.6z M248.9,53.6l0.1-21.1
-		l17.2-0.1l17.2-0.1v8.1h-10.7c-8.6,0-10.8,0.1-11.2,0.7c-0.4,0.4-0.5,1.9-0.4,3.9l0.1,3.3l10.2,0.2l10.2,0.2v7.6l-10.2,0.2
-		l-10.2,0.2l-0.1,4.1c-0.1,3,0,4.2,0.5,4.6c0.4,0.4,4.3,0.6,11.6,0.7l10.9,0.1v8.1l-17.7,0.1l-17.7,0.1L248.9,53.6z M293.2,53.6
-		l0.1-21.1H305l0.2,16.2l0.2,16.2l10.3,0.1l10.3,0.1v9.5h-33.1L293.2,53.6z M341.6,74.4c-0.2-0.2-0.3-7.5-0.3-16.2V42.3l-1.1-0.2
-		c-0.6-0.1-3.6-0.3-6.7-0.4l-5.6-0.1v-9h39.4v9l-6.4,0.2c-3.5,0.1-6.6,0.4-6.8,0.6c-0.2,0.2-0.5,7.5-0.5,16.2l-0.1,15.8l-5.8,0.1
-		C344.6,74.6,341.8,74.6,341.6,74.4L341.6,74.4z M375.1,74.1c-0.1-0.3-0.2-9.8-0.1-21.1l0.1-20.5h34.6v7.6l-11,0.2l-11,0.2l-0.3,7.8
-		l20.2,0.3v7.6l-10.1,0.1l-10.1,0.1l0.1,4.6l0.1,4.6l11.3,0.1l11.3,0.1v8.5h-17.5C379.3,74.7,375.3,74.5,375.1,74.1L375.1,74.1z
-		 M429.4,39.3c0-1.4,1.1-6.3,1.6-6.9c0.3-0.4,2.1-0.6,5.8-0.6c3.9,0,5.3,0.2,5.4,0.6c0.1,1-0.1,2.4-0.6,5l-0.5,2.5h-5.8
-		C430.7,39.9,429.4,39.8,429.4,39.3L429.4,39.3z M429.4,39.3"/>
-	<path class="st2" d="M75.7,128.2C52.8,124,35.8,110,26.8,87.8c-1.7-4.2-3.9-11.6-3.5-11.9c0.1-0.1,7.2-0.3,15.7-0.3h15.5L87.8,92
-		l33.3,16.4h7.4c4.7,0,7.4,0.2,7.4,0.5c0,1-6.4,6.6-10.3,9.2c-6.9,4.5-14.1,7.4-22.8,9.4C97.1,128.9,81.4,129.2,75.7,128.2
-		L75.7,128.2z M188.3,74.2c-3.6-1.1-5.8-2.8-7.5-5.6c-1.4-2.4-2.7-6.4-2.2-6.9c0.2-0.2,2.7-0.5,5.7-0.6l5.4-0.3l0.6,1.8
-		c1.1,3.5,3.8,5.4,7.5,5.4c3.9,0,6.6-2.1,6.6-5.1c0-2.3-2.1-4.1-5.6-5.1c-11-3-15-4.8-17-7.8c-2.5-3.7-2.5-8.4,0.1-12.4
-		c1.1-1.8,2.1-2.6,4.8-3.9l3.2-1.7l3.2-0.6c8.3-1.5,11.9,0.7,14.2,1.7c3.1,1.4,5.5,3.9,6.7,6.9c1.3,3.3,0.9,3.7-3.3,3.7
-		c-1.9,0-4.3,0.1-5.2,0.3c-1.6,0.2-1.8,0.1-2.7-1.5c-1.5-2.7-3.2-3.7-6.3-3.7c-2.2,0-2.9,0.2-4,1.2c-1.5,1.5-1.7,3.4-0.4,4.7
-		c0.5,0.5,3.7,1.6,7.5,2.6c10.2,2.7,13.6,4.5,15.5,8.6c0.7,1.5,1,3.1,1,5.4c0,5.6-2.9,10-8.3,12.5c-2.4,1.1-3.3,1.2-9.7,1.3
-		C192.3,75.1,190.6,75,188.3,74.2L188.3,74.2z M87.9,58.2L54.8,41.9l-14.5,0c-8,0-14.5-0.2-14.5-0.4c0-0.2,1.1-2.6,2.4-5.2l2.4-4.9
-		h24l67,33.3h33.8l-0.3,4.3c-0.2,2.4-0.3,5.5-0.7,5.5c-1.1,0.1-2.5,0.2-16.8,0.1L121,74.6L87.9,58.2z M225.5,53.6l0.1-21.1h11.7
-		v41.9l-11.9,0.3L225.5,53.6z M248.9,53.6l0.1-21.1l17.2-0.1l17.2-0.1v8.1h-10.7c-8.6,0-10.8,0.1-11.2,0.7c-0.4,0.4-0.5,1.9-0.4,3.9
-		l0.1,3.3l10.2,0.2l10.2,0.2v7.6l-10.2,0.2l-10.2,0.2l-0.1,4.1c-0.1,3,0,4.2,0.5,4.6c0.4,0.4,4.3,0.6,11.6,0.7l10.9,0.1v8.1
-		l-17.7,0.1l-17.7,0.1L248.9,53.6z M293.2,53.6l0.1-21.1H305l0.2,16.2l0.2,16.2l10.3,0.1l10.3,0.1v9.5h-33.1L293.2,53.6z
-		 M341.6,74.4c-0.2-0.2-0.3-7.5-0.3-16.2V42.3l-1.1-0.2c-0.6-0.1-3.6-0.3-6.7-0.4l-5.6-0.1v-9h39.4v9l-6.4,0.2
-		c-3.5,0.1-6.6,0.4-6.8,0.6c-0.2,0.2-0.5,7.5-0.5,16.2l-0.1,15.8l-5.8,0.1C344.6,74.6,341.8,74.6,341.6,74.4L341.6,74.4z
-		 M375.1,74.1c-0.1-0.3-0.2-9.8-0.1-21.1l0.1-20.5h34.6v7.6l-11,0.2l-11,0.2l-0.3,7.8l20.2,0.3v7.6l-10.1,0.1l-10.1,0.1l0.1,4.6
-		l0.1,4.6l11.3,0.1l11.3,0.1v8.5h-17.5C379.3,74.7,375.3,74.5,375.1,74.1L375.1,74.1z M375.1,74.1"/>
-</g>
-</svg>
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg version="1.1" id="Layer_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px" width="3494px" height="991px" viewBox="0 0 3494 991" enable-background="new 0 0 3494 991" xml:space="preserve">  <image id="image0" width="3494" height="991" x="0" y="0"
+    href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAADaYAAAPfCAMAAACxBw/WAAAABGdBTUEAALGPC/xhBQAAACBjSFJN
+AAB6JgAAgIQAAPoAAACA6AAAdTAAAOpgAAA6mAAAF3CculE8AAAAolBMVEX///9HdbdHdbdHdbdH
+dbdHdbdHdbdHdbdHdbdHdbdHdbdHdbdHdbdHdbdHdbdHdbcjNWkjNWkjNWkjNWkjNWkjNWkjNWkj
+NWkjNWkjNWkjNWkjNWkjNWkjNWkjNWnkDzPkDzPkDzPkDzPkDzPkDzPkDzPkDzPkDzPkDzPkDzPk
+DzPkDzPkDzPkDzNHdbdHdbdHdbdHdbdHdbcjNWnkDzP///9hcYSTAAAAMnRSTlMAQHCAkMBQIOCw
+MKDwEGDQMEAQYICQwPBwoOBQsNAgEEAwUIDA4NCQcLCgYPAgmLjlxLW+UkcAAAABYktHRACIBR1I
+AAAAB3RJTUUH5AsMCi4RECfRlQAAfyJJREFUeNrt3Wl3GzfXJmrN80CJ1DxYsRXbsZ3uPk/y/3/b
+ESXRkW1JFkmgNoC6ri+9Vj95rSoUisRNABsLC5DP4tjS8r2V1Zc9/BfLa+P/fD36ogEAABrykMrG
+iWzjf/O4+wc2H3Kb1AYAADCtrcW15eXt1dWduZLZyzZWV1eWlxYXd6NvFAAAoGjri3vjebNM2eyF
+wLa5vLy4GH3nAAAARdldXFvennNR47zG29kWt6JbAgAAINhdPtvsdPbsdzZWV6Q1AACgj3YXl1ay
+bT2b3/7m8p6VkAAAQE+UHdCe2thcXjOzBgAANGx9bTl4B9osVreXlIQEAACas7VXyxTa8zY2l2U1
+AACgEetrK0VVCZHVAACA/tpdXN6seQ7tOfvbS/arAQAANVrf296PjlTZrJpWAwAAqrK11Nwk2q/2
+V/bWoxsaAADg9xaXq64VMp2NbVENAAAo2dZSI8VCRDUAAKB+vVjo+HJUW7NXDQAAKMju3nZ9x1an
+tr+yGP0cAAAAxhZX2q3oOKWdzSXrHwEAgFDrez1e6fi8jZW16KcCAAD01dayabTnbSoqAgAAdG7N
+brRX7S9vRT8iAACgP3b3NqNTUA0sfwQAADqx3sez0Wa1sy2pAQAAWa0v2Y42pZ3tPUeqAQAAecho
+s9qU1AAAgORktPlsWv0IAAAktCujzc8+NQAAIBF1HZPZ2ValHwAAmNfa9k50uGnKxoqTrwEAgNlt
+rcho6e0vKSgCAADMwoa0fBQUAQAAprZmQ1pWOxY/AgAAU1hf2YiOMT2w7zQ1AADgbfZWowNMX6j8
+CAAA/N66qiGdMqUGAAC8ykRa90ypAQAALzGRFsWUGgAA8IxFpR0DKfwIAAD8aHdJacdom4vRvQAA
+ACjG+rbVjiXYsPYRAAAYs9qxHNY+AgAAC3tWO5Zl29pHAADos91lqx3Ls7oX3S8AAIAgtqSVyiY1
+AADopcXt6DDCy3aWBTUAAOiZxdXoIMLrdrZVEwEAgB7Z248OIbyBoAYAAH2huGM1HHkNAAB9IKRV
+ZVVQAwCAtu0uCWm1EdQAAKBhjkmrk6AGAACNEtLqJagBAECLhLSqCWoAANAahUOqJ6gBAEBLhLQm
+CGoAANAKIa0Zmw68BgCABizuR2cLEtoW1AAAoHKLq9G5gsRWdqM7FQAAMLv1zehMQXo7y4IaAABU
+anc7OlCQx85edN8CAABm4DTrlm0o+ggAANVR3rFxq1vRXQwAAJiG8o49oOgjAADUQ+WQflBLBAAA
+KrG7HB0f6MqGWiIAAFCBPZVD+mRVLREAACicTWm9s23lIwAAFGzdSWk9tLMU3e8AAICXOCmtp5yi
+BgAAZVp0Ulp/bSrODwAAxVGEv9+sfAQAgNIsWe/Yd/tWPgIAQEHUd+R/aj4CAEA5dlei8wFl2HHa
+NQAAFGHNekcmVpUSAQCAcOur0cmAoixH90gAAOg7pUP4iVIiAAAQaUvpEH61opQIAABEWY7OA5Rp
+w4QaAACEUIWfF22aUAMAgM6pws9rdtaieygAAPTN4kZ0DqBwJtQAAKBLptL4PRNqAADQHVNpvIkJ
+NQAA6IipNN7IhBoAAHTBWWlMYduEGgAA5OasNKbiDDUAAMhr3VQa01qJ7rUAANCypZ3oIT8V2t+K
+7rgAANCq3c3o8T6VWoruuwAA0KZFU2nMalUlEQAASE8ZfuagND8AAKSmDD9zWjGhBgAAKe1Z8Mi8
+VBIBAIB01A4hhR2VRAAAIJGtjejxPY3YtPARAABSWIoe29OODQsfAQBgbhY8kpSFjwAAMCcLHknM
+wkcAAJjLUvSYnvZY+AgAALOz4JEsLHwEAIAZWfBIJtsWPgIAwCwcaU02jroGAIAZbEeP5GnZzl50
+BwcAgNqs70eP42ncSnQfBwCAuixa8EhuqzaoAQDA2y1Fj+Dpgx0b1AAA4I12bUujGzaoAQDAm9iW
+Rme2o3s7AADUwLY0OmSDGgAA/NZS9LidftmwQQ0AAF5nWxodc4IaAAC8Zte2NLq3HN3vAQCgXFsb
+0QN2emnbBjUAAHjemuIhxNiX0wAA4DlL0WN1+stJ1wAA8AzFQwikkAgAAPxsdzV6nE7PLUW/AwAA
+UJZ1JR6Jth39FgAAQEm2FA8h3qpCIgAAMLEnpVECBR8BAODRXvToHB4o+AgAAPeUeKQYO4vRrwMA
+AMTbldIoicL8AAD03q4Sj5RFYX4AAHpOSqM4CvMDANBrCvFTIDkNAIAek9IoksL8AAD0luPSKJSc
+BgBATzkujWLtO0ANAIA+ktIomIOuAQDooZXocTi8Rk4DAKB3HGpN4XYWo18SAADolJRG+faiXxMA
+AOiQlEYN5DQAAHpjdz96+A1vIqcBANATUhrVkNMAAOgFKY2KLEe/LwAAkJ+URlW2o98YAADITUqj
+MnIaAACNk9KojpwGAEDTpDQqJKcBANAwKY0qyWkAADRLSqNSchoAAI2S0qiWnAYAQJOkNCompwEA
+0CApjarJaQAANEdKo3JyGgAAjZHSqJ6cBgBAU6Q0GiCnAQDQECmNJshpAAA0Q0qjEXvR7xIAAKQh
+pdEMOQ0AgDasRg+tIRk5DQCAFmxHD6whITkNAID6SWm0ZS36lQIAgDlJaTRmZyv6pQIAgLksR4+p
+ITU5DQCAqu1Fj6ghPTkNAICKSWk0aWM3+tUCAIAZrUWPpiGPfTkNAIA6be1ED6YhEzkNAIAqSWk0
+bDv6/QIAgOntbkQPpCEjOQ0AgOrs7kcPoyGr5eh3DAAApiSl0bq96JcMAACmsh09hIbs1qJfMwAA
+mMJK9AAa8nPMNQAAFXGsNb2wsx79qgEAwBs51pqecHwaAACVcGAavbEf/bYBAMBbrEtp9Ifj0wAA
+qIAD0+gVx6cBAFC+zehhM3TK8WkAAJTOgWn0jbL8AACUTSl+ekdZfgAAirYYPWKG7inLDwBAwZTi
+p5c2o988AAB4iSKP9NRK9LsHAAAvWI0eLEMQ5R4BACiTIo/0l3KPAACUSJFHemxHGREAAMqzFT1O
+hkjKPQIAUJxdRR7pt+3odxAAAH6kyCO9txT9FgIAwA+UD4HF6NcQAACeWIoeIEO8nfXoFxEAAL5T
+PgT+p4wIAAAFUT4E7ikjAgBAKZQPgQd70S8jAADcW4keGkMxtqJfRwAAuLMXPTCGcmzYngYAQLwt
+G9PgP6vRbyQAADjXGn6wHP1OAgDQe861hh855RoAgFhL0UNiKM2O7WkAAERyrjX8wvY0AAAC7W5E
+D4ihQLanAQAQZzN6OAxFsj0NAIAoS9GDYSiT7WkAAASxMQ1eYHsaAAAhnJgGL7I9DQCACE5Mg5fZ
+ngYAQPfWoofBULIN29MAAOja+k668ezqneWxpcVHr49wJ//V4vKD1XvRw3L4wWb0OwoAQO/MvDFt
+fxLK7jPZeuLLGv+ba5PoFj1Op9+Wol9SAAB6ZvltA9W8mewNdu/+7NLy8vbqqoIndGxnK/o1BQCg
+VxafGZTeR7KVcSZbC8pkv7N7P9N2F9nSLdiEl+1H93gAAHrlLuqsbt7vC7vfIxZ9OdO7S2x7yysC
+G1mtRPdzAACo0vp4hk1eI4sKf8EAAICCbC3uLW+vbkQP7GmJqvwAAJDC+uLS8qYqkSShKj8AACS0
+uLa8bS0kc1qL7scAANCexb3lTcX8mdWOZY8AAJDH+uLyiqk1ZrAa3XcBAKBpu4tLwhpTWorutgAA
+0L67sLatxAhvtVPgSe8AANCk9bXlTdX7eQPLHgEAoEPjiTX1RfgNyx4BAKBri3srFkHyMsseAQAg
+xNbeink1nmfZIwAAhLEGkmdZ9ggAAJF2F5cV7edHlj0CAEC4dUsgecqyRwAAKIFpNf5j2SMAAJRi
+a8npavzPskcAACjL+t62qNZ7m9HdEAAA+JGo1ntr0X0QAAD4hajWazu70R0QAAB4jqjWXyvRnQ8A
+AHjJ+tKmCpB9tBjd8wAAgFdsLa9Ghwa6thHd6wAAgN9YW7H+sV+Wo7scAADwW+t71j/2icPTAACg
+Cosr+9HpgY6sRnc2AADgjUyq9YXD0wAAoCJ2qvWBw9MAAKAuW0uWP7bO4WkAAFCb3b3N6CBBVlvR
+XQwAAJje2raNau1SRQQAAOq0tm2jWqv2ojsXAAAwoy0lRdqkiggAAFRMUmuSKiIAAFA1Sa1Bqoh0
+a3AwNoi+DAAAWiKptUYVkYwODw6Go9HR8Z1/XnAy/h+PR6PR6V16i75eAACqtaj2Y1PWojtUgwYH
+p6Pj45N/ZnB8fHaX2AbRdwAAQH1U6W/IRnRvasrBcHR8Pks8+3WW7Wx0MYi+HQAAquLk63YsR3em
+NhwejC6vUgS0H5xfCmsAAExhd28/OmCQws56dFeq3mB4lj6hPV0JeTS8jr7HVxxkvPPEl5rzKdUk
+dbtCUsfz9/E2RD8IoGbrywqKNGA7uh9VbXB6OdMmtGmdXJ4Oou/1BWJadcQ0iiamPYp+EEDltmxT
+q99idC+q1eHwLMlGtLcqNKqJadVJ1K4Zr3DUeTee3jGvG87etNFvSCmi+zhQP9vUaqco/yyuT7Mu
+dHzJ+dnFYfSt/0RMq46YVvjtt2H2hyimPYru40AL1pcsfqyaovzTGhx1Oo32k8thUUlNTKuOmFb4
+7bdBTJtbdB8HGmHxY80U5Z/K9Sgyoz04LiipiWnVEdMKv/02iGlzi+7jQDNUfqzYUnTvqcfhMGSt
+4zMuL6Lb4pGYVh0xrfDbb4OYNrfoPg60ZH3FlFqddnaj+04lDs6iv7afOjkqok6/mFYdMa3w22+D
+mDa36D4ONGZvNTpxMAtnXL/B4Wn8YsefzVFMLRkxrTpiWuG33wYxbW7RfRxojim1Kjnj+neuzzo5
+H21q56fRu9TEtOqIaYXffhvEtLlF93GgRabU6uOM69cdXEZ/X7/sZBQb1MS06ohphd9+G8S0uUX3
+caBNptSqYzrtFQeFjxpig5qYVh0xrfDbb4OYNrfoPg60SuHHyjjj+kWlh7SxyKAmplVHTCv89tsg
+ps0tuo8DDVvcjo4eTGExur8UqoaQNnZyGtZC+W5KTMtDTCv89tsgps0tuo8DTdtd3ogOH7yV6bTn
+XFc0Xjg/iGkjMa06Ylrht98GMW1u0X0caJ1yItUwnfaLw6KOSfu9y5CVj2JadcS0wm+/DWLa3KL7
+ONC+LWsf67AR3VOKMyqzBP8rQlY+imnVEdMKv/02iGlzi+7jQB+sL6v7WIO96I5SloPyDrN+g+Pr
+7hsq490kvtTop1MKMa3w22+DmDa36D4O9MSeTWrlM532RG3rHb87GXbdVGJadcS0wm+/DWLa3KL7
+ONAbizapFc902ncX1a13/E/XO9TEtOqIaYXffhvEtLlF93GgR9ZtUiuc6bRHh5fR385zuRp02lpi
+WnXEtMJvvw1i2tyi+zjQKzapFc502r2ap9LunVx02VxiWnXEtMJvvw1i2tyi+zjQM7tLNqkVzHTa
+QsW70p7qsuKjmFYdMa3w22+DmDa36D7+nHc3D/6IvhAgC9VECmY6bWFQZYHHX5x112JiWnXEtMJv
+vw1i2tyi+/iP3r3/cPvnv098vP30+Sb6qoDU1lQTKZXptNPo7+VUustpYlp1xLTCb78NYtrcovv4
+E398+vjv8/68vf3rw4cPX26/++vDV3NtUDNlH0vV8+m0JhY8Puosp4lp1RHTCr/9Nohpc4vu4xPv
+vr6U0V707a/30VcNzG5L2cci9Xs67foq+ls5pa5ymphWHTGt8Ntvg5g2t+g+/uDdh2/ThrSHabav
+0VcOzE59/iL1eTptUHuFx590lNPEtOqIaYXffhvEtLlF9/F7n2cLaWO376IvHpidoFagHk+nDaO/
+kpPrJqeJadUR0wq//TaIaXOL7uN3/ridOaSNJ9TsUYOaCWrl6e10WjPFQ54YdtFwYlp1xLTCb78N
+Ytrcovv4wsLX2afSHrao/R19B2X4++bm64dH72+irwbeTlArTV+n0xoqHvJEF+dci2nVEdMKv/02
+iGlzi+7jC1/mC2l3PvZ73ePNzYdPt79OSN5+7XezTO/w4M5o7Oz4wStnJ109/ifHR/f/F6Px/+3B
+IPoW6iWoFaaf02ltprR/Tgb5m05Mq46YVvjtt0FMm1twF38314LHR5+CbyLIH+8/fLl9ZSrym0KY
+r7ge56rTccIah62Etd1OJuHt4u4PRN9lRQS1ovRyOq3RlPbPP+eH2dtOTKuOmFb47bdBTJtbbA9/
+N3UV/mfdxN5F56128/WnU8Bf8CX6SksxjmQX40h29JtJsgzGse0htOUfKtVNUCtJD6fTmk1p//xz
+mb3xxLTqiGmF334bxLS5xfbwNCnt39vYu+jOu5vPn26n2MvXw/m0w++R7H6arLAX/Woc2YYS2wsE
+tXLsR3eGzjWc0v755zR364lp1RHTCr/9Nohpcwvt4PPvS+vNdNq0Ae3Bt7b3pw2+L1w8636WbE4n
+D4FtEN2GhRHUirEY3Rc61nRK++efQebmE9OqI6YVfvttENPmFtm/P6dKaW2v7rv5/OV21oZp5vjv
++0myg1InyeYyzmsX5tcmtlaj8wn3VqN7QrdarMT/VO7taWJadcS0wm+/DWLa3AK7902ylPbvv63O
+Gr3/NN+60L+ib2AWhz9uJUtY3qNoV8dHd3EtuvELsCioFaFX02nD6Nc/u6O8DSimVUdMK/z22yCm
+zS2ud797SxGM3s0aPfX+r7nb5c/oe5jOgffy7svzcjTs+eTa4kZ0ROF//9uO7gYdGpxEv/b55f0J
+SEyrjphW+O23QUybW1zv/pQwpdU5a/Sqdx/mPPb7QfRtTMdr+Z/7tBb9QMLsCWrx1qN7QWcOe5DS
+Mi97FNOqI6YVfvttENPmFta5/0iZ0mqLI7+VKKRVtho04zd9rU6Oj0YH19EPJsLyTnRK6b3+TKf1
+Y2F11mWPYlp1xLTCb78NYtrcwjr3bdqYdhN2IzncJFsQWlW7NF5rbQ7HZ/0La7vL0TGl93aj+0BH
+jqLf747knJ0X06ojphV++20Q0+YW1bdT1g8Z+xB1IzkkXA96E30vU7iOfhlKd3x02qtNa6rzB1uO
+7gHduIh+sbtylbERxbTqiGmF334bxLS5RfXt28QxraXNacmOk6sspvXlN+35nB+PLgbRj6orqvOH
+2unFdFovNqY9yHjItZhWHTGt8Ntvg5g2t6CunXoy7d+PQTeSQcqUVtPetB6NluZ3fNST+iKKPkba
+i378XejRYOAk32S8mFYdMa3w22+DmDa3oK49f6n5nwXdSHpJK2DW1Cytny+b3tXZaQ+y2p5aImE2
+oh9+B3r1uZOvioiYVh0xrfDbb4OYNreYnv138pT2798xd5Jc4nnG6NuZwnn0u1Cnq7PhIPrR5bWr
+6GOYteiHn911vybxsxUiEtOqI6YVfvttENPmFtOzP6SPaTcxd5Ja0kO/qzreehj9KtTs+Oii5UKQ
+aolEWY1+9NldRr+73TrL1Y5iWnXEtMJvvw1i2txienbaLNJSTEscYG+j7+ftvJJzOrkctbsEclEt
+kRitH3Hdu7MaB/U1pJiWh5hW+O23QUybW0jHTny09b2vIXeS2rtEp1pP1FMAs3fDpTyump1W21NL
+JELrR1z3bql16swzIaZVR0wr/PbbIKbNLaRjZ1jz2MjBaalbpp5WcbR1Mudnp4Pox5mB464jNF6T
+fxT9snYv05S7mFYdMa3w22+DmDa3kI79UUx7QerVoNXMMTraOq2Tywaj2vpmdGjpoaaPuO7jISCZ
+ptPEtOqIaYXffhvEtLlF9Ot3GVJaGzHtfepWuYm+o7fq4a/a2TW4Wc0pap1ruiZ/Lz92BlmaUkyr
+jphW+O23QUybW0S/Th5Gxt5H3ElqSU+2HqvldOs+/qrdieZm1RTn71rDNfn7+bGTp9ijmFYdMa3w
+22+DmDa3iH6dY2taPfNGr0lcQOTfb9E39FbD6PegZW1FNSsfO9ZwTf5eTqZlOjtNTKuOmFb47bdB
+TJtbRL++FdOel/ho64rq8feu3lrXzs+GzVSAtPKxW83W5O9+Mu38+N7l6HL8/0R9GBzlaEwxrTpi
+WuG33wYxbW4R/Tr1nNG9Wpb3veZT6kb5En1Hb6Qafxeuji6iH3Qiaj52aSX6cefS3WTa1eVoePDM
+7yQHF6Pj7hdenhxmaEwxrTpiWuG33wYxbW4B3frvHCnt34AbSS55Bcxa6qp4Hbty3Mb6x3WnXXen
+2Zr83czhH/+ukM/g9LLjqHaaoTHFtOqIaYXffhvEtLkFdOvkS/vGqlne94r0FTBvom/pbVTj79L5
+2UWOX9M7tqaUSGf2oh92HsMOXrbL4dvetYuzLpPaeYbWFNOqI6YVfvttENPmFtCtP+eIaZ8CbiS1
+r8lbpZKVoI627loDk2q7K9HppTf2o591HtkHASejKfaDHg6vunv/MxzUIaZVR0wr/PbbIKbNLaBb
+Zyn0WM05zq9IXo6/kkKP/SyLHe28+p1qi/vR+aUvtqIfdQ7Z5/BH005aH3T2e1WGmvxiWnXEtMJv
+vw1i2twCuvVfOWLa3wE3klryrWmVrAQ9jX4J+urkrUuySqWUSDe2ox90DpkLiBzPUln1uquglv69
+F9OqI6YVfvttENPmFtCtbzOktI8B95Fa+q1plawEVY0/0NVpzYX6lRLpRJNFRPJ+7Mw6Nrm+7OS1
+T19EREyrjphW+O23QUybW0C3zhHTKgkkr3qfvFU+R9/Sm1xEvwN9d3U0iO4Ds1tSSqQDDRYRGWR9
+p4azX9hBF3vUrpK3p5j2/XJrkej8vIxNKaY1oNiYdhX9Ar5ZQLfOcWxaC2sek5+aVkmhRz+ZxDuv
+N6mZUOtAg0VEjjK+TieDuS7ttIPNuvNd4TPEtInULVu6jE0ppjWg2JiWoZBSOzKktBbWPKbfmlZH
+oUfV+MtQb1JTmz+/9oqIZFzzOGdKW1g4zL/yMdFMyn/EtInULVu6jE0ppjVATKtRhpjWQp3H9FvT
+/oy+pTfJ+as2U6k1qe1uRqeY5jVXRCTnmscEX/8XuSfUkh+dJqZNpG7Z0mVsSjGtAWJajdKntDry
+yG+kP/W7ikKPqvEXpdKkZkIts+aKiGQsL5ukPEf2CbVB4gYV0yYSX23xMjalmNYAMa1G6WNaC5Np
+GY6T+xB9S29xPRqN90iq9liMKpOaCbXMWisikm8EcJnoCjPX5k+96lFMm0h8tcXL2JRiWgPEtBol
+jyNNTKZlOE6uuvR6cGc4unM5Tm7Rny49dj6qr0q/CbWsVqOfb2LZ3p2TZEeS5c1pqVc9imkTia+2
+eBmbUkxrgJhWo+Rx5Cb6jpJIX0GkhXYZJ7eD0+/RzQrJrlyd1nbytQm1rNajn29S+ULFHKX4f5Y3
+pw1qaVExrWwZm1JMa4CYVqPUaaSFM9MyNMu//0bfUS6D77NuZ9ZLZnQ5rCypOUMto+Xop5vUKNdL
+k3KS6jDrCWqJVz2KaROJr7Z4GZtSTGuAmFajxGHkzyrKzv/WH8lTWhtrQd/ocBzdLsbR7X6rmxWT
+SZycXUQ/2Kk4Qy2fjeiHm1S2D4iEk2kLC4OcqwcSn3Atpk0kvtriZWxKMa0BYlqNbpOGkW9/RN9P
+Gj0t9JjVfysmj44tmZzN+VFV29SWotNMuxajn21K2T4K0k5AZ6xH+c8/aV9sMW0i8dUWL2NTimkN
+ENNqlLZWRnV1Ml7Q00KP3TsU3qZ0VdPix6396DjTqpaOTrvO9a6kKvM4kXOgknTiT0z7LvHVFi9j
+U9YQ0w6yy/ljzVX+y5/95yAxLU7SQNJKSssQ05ppmi48hLeHVZPjYiVZd4XU56yiT7SV6DzTqJaO
+TrvI9aKkHlfmPIU7baQU0yYSX23xMjZlDTEtv4yvVvJ3KykxLU7K5X3tRJHb5DHtJvqWqvcY3C6V
+KamqRv/iRnSiaVNDR6dlqyCS/Jv/KN8rfZL0QsW0idRdoHQZm1JMGxPT8hDTXvMtVRD51k5KyxDT
+ou+oMdf31SUve1yd5LKWeiJK82exGf1c08n2Eif/LeMw45rsQcoLFdMmUneB0mVsSjFtTEzLQ0x7
+zadEOeTPRqqH3EuWXb9n2Og7atddYhsHtv4tjKymnsie0vwZtHN0WrZXN/2lZpv4SzwIFtMm0veB
+smVsSjFtTEzLQ0x7zd9pIslfbVTif5Q6pSn02IWHvNanIiTHdUypraskkt5S9FNNJtvrkf5SM06n
+JR2iiWkT6ftA2TI2pZg2JqblIaa96nOKyaL30XeR1N/JY1ojp37XYXBw2pu4VskuNZVEktuPfqap
+5CvMkeFiM06npbxMMS1Hq9YgY1OKaWNiWh5i2uu+zB1CPjQ1lZbj2DT1+AMcHIyOelBv5LKGD7hF
+Cx9Ta2XVY75xT4aLzTidNqiiTcW0smVsSjFtTEzLo4ZRTKj5ys9/+/J39A2klj6m3UTfUo8NDkZn
+bc+tnZ+Wf5ba7mp0rGnNSvQjTSTfQUQ5vvnzFXs8TXiVYtpEhi5QtIxNKaaNiWl5iGm/8/fsE2p/
+fm5sJm0s/bFpzSXZ6hweDEftTq2dnJW/9nE5Otc0ZiP6gSaSbx1hjm/+bGdxJz05TUybyNAFipax
+KcW0MTEtDzHt9959/XI7ffj4+Kml8o7/SR/Tou+IRwcXo8s2w1r55US2HKGW1Fb0A00j3/xUlnHl
+Wa6rPU94kWLaRI4uULKMTSmmjYlpeYhpb3Uz8f7D2O3H1yLal6/NThGlOqTgv8aKviN+MJ5Za28Z
+ZPFrH3e3o5NNUxpZ9Zjv6z/l/NR3+YZpCd9eMW0iRxcoWcamFNPGxLQ8xLTZ/X3z+cOn29snM23f
+bm+/fHh/E31hWc0wsfg69fgLdHgwOmvstLXi1z46Qi2hRlY95vv6P8lyvdkm4xMOVMS0iSxdoGAZ
+m1JMGxPT8hDTmE7ymKbQY7EGw6PMnz/dKrzuoyPUEmpj1WPG12+Q43qzlTxJOAwW0yZy9ICSZWxK
+MW1MTMuj7HEL5Ulz4vcTn6PviFcNLhpaBHk1jG7OV6kkkkwbqx4zvgpHOa43WxGRs3TXKKZN5OgB
+JcvYlGLamJiWh5jGdFKnNPX4a3DdzLxa2ZvUHKGWShurHnO+CFku+DLT1V6lu0QxbSJLDyhYxqYU
+08bEtDzENKbyLnlMa7MgZosGwyb2q52MCg5qu5vR+aYVTax6zPkeZJlYHiZ8T4/vXI7GDg7sTcsg
+RwcoWcamFNPGxLQ8xDSmkv506+g7YioHo8v6l0CWXE1kKTrfNKKJVY85X4Is02mHs304jBPZ8dE4
+kV3cRbKDrK+nmDaRs5VLlLEpxbQxMS0PMY2pJI9p36LviKldD49qn1Y7G0Q34ou2VBJJoYlVj1nf
+gZij087HiexsnMhOx4ms+xGImDbRedMHy9iUYtqYmJaHmMZUkp9urR5/nQ4PRnXvVjsu9rNvdyU6
+4jShhVWPeV+BQYYrvnjy798vWzyeLFs8OChjsbGYNhH9JLqWsSnFtDExLY9ihyqUKXlM+xJ9R8zu
+4LTmFZDlBrU1lUTm18Kqx7wvwMkgwyWPhuNEluNfTkRMm4h+El3L2JRi2piYlkexAxXKdJs6pjk2
+rXKDiqNasUFtfTU65NSvhVWPmft/lpxWOjFtIvpJdC1jU4ppY2JaHqUOUyjUx9Qx7Wv0HTG/eqNa
+sQepOUJtbg2seszd/U96OAAQ0yain0TXMjalmDYmpuXRw09p5pE6pTk2rRW1RrXzQoPa1kZ0zKnd
+UvQjnF/+7t+/8aWYNhH9JLqWsSn79xo9R0zLQ0xjGn8kj2nvom+JdAZVlhUpNKg5Qm1O+9FPcH4d
+9P6rQfRNdkxMm4h+El3L2JRi2piYloeYxjTeJ49p0XdEYhcVFus/v4hutWepJDKf9egHOLdOev9R
+GRUYuyKmTUQ/ia5lbEoxbUxMy0NMYxrq8fN718Oz2tY/lllMxITaXOpf9dhN5z8Z9SmoiWkT0U+i
+axmbUkwbE9PyKHJwQrH+Sh3T/oq+I/IYnFa2/rHMoGZCbQ6b0U9vbl11/pOz6+hb7YyYNhH9JLqW
+sSnFtDExLY8ihyYU68/UMU09/nYdXpyd5/34SqvIoOas6znsRj+9eXX4/hyXuUMzPTFtIvpJdC1j
+U4ppY2JaHiUOTCjW36lT2r+fo2+JrAajmnaqXZY4p7Co5OOs1qKf3bw6nZE+OStzi2ZiYtpE9JPo
+WsamFNPGxLQ8xDSmkL6CyE30LZHb4bCiSv1FLv5yhtqMtqOf3Ly6Xjh8l9Sa36Ympk1EP4muZWxK
+MW1MTMtDTGMKn5LHtL+jb4kuXBxVs/yxxHIKW6vRgadOO9EPbl6XAS/A5ekg+razEtMmop9E1zI2
+pZg2JqblIaYxhY/JY1r0HdGVwWklyx9PSvzKXVJKZBZb0c9tTqOYV+D8bFjirHIaYtpE9JPoWsam
+LPE7o3tiWh5iGm+Xfmvax+hbokPXpxGzA9Mr8bxrtflnsRz92OYUFNPuX4Kz4SD69rMQ0yain0TX
+MjalmDYmpuUhpvF2n5PHNMem9czhsIqkdlXgB6NSItPbj35oc8o57nmDk8vTAl+EcttUTCtaxqYU
+08bEtDza+xDO4++bDx/+uh378OHzzU8bqv64edT6Rqvkp6apx99Dh1Ucfn1c4KqvZSsfp7Ue/czm
+ExzTHt6EUVtlRcS0iegn0bWMTSmmjYlpeYhpv/fu65dvv8wCffn6x7ubr3fR7ceTxL7dfnr/LvqC
+szVE8pT279foeyLERQVJ7ay8wen6dnTsqc1e9CObU/RL8OjqqJ3NamLaRPST6FrGphTTxsS0PMS0
+3/n714z2Ox+/lpXUvs/23ftj5n8n/ZpH9fj7q/ykdlJg0cdFNR+nUntJ/oLekfOzYXnvwwzEtIno
+J9G1jE0ppo2JaXmIaa9792Wm9PHtQ3hQe3fz/sOH258m+75f3+3tXx8+3NxMd5Xp6zz+G95MBCo+
+qZVYS2TPyscp1F6Sv+uD037jalT/iEFMm4h+El3L2JRi2piYlkf9H7pZfZ16Ju17EHofd9U3nz/d
+vvXCP95++PzGtHaTPqWpx99zxVcUOS7vE3LXFrUpVF6S/yj6BXjmlag8qolpE9FPomsZm1JMGxPT
+8qj7Aze32abSHn2JuOK/v36ZZc7r2+2nrzdZW+N5Cj1SelI7K29Tji1qb1d5Sf5hdPd/Xs1RTUyb
+iH4SXcvYlGLamJiWR70ftvm9m3ORX9c57d37L3/OdcEfv3x+ZeNa+kPT/v33r9AHTCGuiz75usTj
+rm1Re6vV6Ec1n0F073/ZXVSrcq+amDYR/SS6lrEpC/yOCCCm5SGmvWjelNZtTvv7822a5HT74YVS
+lRkm09Tj59H16DzvJ908zgv8mHSK2hvtRj+p+UT3/dddHdVXrF9Mm4h+El3L2JRi2piYlkeB449S
+JIg9nzu61L8/p63u8fGZUwVyTKb9G7iBj9IMCi4oUuIpanuC2lusRT+n+RRWQ+QZtUU1MW0i+kl0
+LWNTimljYloeYtpLPiVIId86Oe/6ffpTp++j2s0PfyXLH7mZ6YZp1UW529QKLM6vlshbrEQ/pvmM
+ojv+m9QU1cS0iegn0bWMTSmmjYlpeYhpL3ifJIbkX/b494f59qO96q/P33NmjjKPCj3ys8Nit6mV
+uPJRUPu9jeiHNJ+L6H7/ZrWUFRHTJqKfRNcyNqWYNiam5VHHB2v33s1cif9HmafT/s6xYewHf356
+WJiYJQx+i37MFGhwVOjix8sCVz7uLkfHoOKtRz+juRxG9/ppnFwOC3xHfiKmTUQ/ia5lbEoxbUxM
+y0NMe16q+JN1Ou3mNndIewhTX76++5DlX1aPn2cVWqP/5DS6YZ6hOv9v7EU/ofmUvzntR1dHhQ8q
+xLSJ6CfRtYxNKaaNiWl5FP6JGiXZEr+M80UdhbScPkU/Z0pVaOXHqxI/MAW1V21HP5/5nEb3+emd
+XA4L3qkmpk1EP4muZWxKMW1MTMujxFFHAdIloJtMV5h/uWMHuqqESY0OzvJ+9s3mqMQBqKD2iso3
+pxV8ctprjk9LXf4opk1EP4muZWxKMW1MTMtDTHtOwnoZeU4Gy7QIsWs30Q+aoh2eFjildn4R3SzP
+Wd9WTOQldW9OWyjwHXibq9Eguu2eI6ZNRD+JrmVsSjFtTEzLQ0x7zm26JJJl+9X7jNUdu9TJeQXU
+rMQptcsSJ9RUfXxR5ZvTjqL7+xzOjwbRzfcLMW0i+kl0LWNTimljYloeYtozUp7k/GeGy8tyhFmE
+6AdNBQ7L26VWZCkRQe0llW9Oq3TV48T5qLDVj2LaRPST6FrGphTTxsS0PMS0Z6Q42TpfFPmc6KyA
+eAo98iblnXp9XNjQ89Hu0kZ0JipQ5ZvT6l31OHFV1D41MW1iVKpMw9KcTZm929ZATMvjLPqFfFFg
+myfNQX+kvbZ3zUyl/fvvX4HPmKpcl3aWWqETagsLe4LaLyrfnDaK7uwJXA6jW/E7Ma14mUZ/9V1x
+ZcS0volr8vdJs8hN0mu7aWYq7d9c5VVo0/Aq+iPpR4VOqC0sLK5Gx6LSVL457Tq6qydxcjaIbsgH
+YlrxxLQ6iWl9E9fkaUvd36S8tDYKPE68j3vGVKiwciLFTqgtbKnP/4PKN6ctFLfmd0bnpyUU3xHT
+iiem1UlM65u4Jk87YXWT7sLe3UYHq7QSrweleYWtfSx2Qm1hXTWRJ2rfnHYR3dHTOYvfDS+mFU9M
+q5OY1jdhLZ52zWPCmPZHI2X4vwt7xFTrcFhSQYVyJ9RsUntqN/phzKmkPj+vq2HwlJqYVjwxrU5i
+Wt+EtXjSOo8JY9r7lraljX0Me8TU7KKkz8RyJ9QWFhY3o+NRKdaiH8WchtHdPKmTo9CXRkwrnphW
+JzGtb8Ja/GPaMHKT6LK+Rqeq5BR6ZDaDgjapnVxEt8YrrH18sBL9IOZV1FrfBCLXPoppxRPT6iSm
+9U1Ug79LHEZu0lxWW8VD7in0yKxK2qR2WUJdhBftqfv4v/+tRj+FebVQk/9Hx2E/b4hpxRPT6iSm
+9U1UgyfempYopqWtPlmGr1GPmAYcjooJaufxZRFes7VtSi36GczrsKXdaZPXJugoNTGteGJancS0
+volq8MRb0/59l+KiWkxpiU+Uo3fKqSZyFN0Ur9vd24/OScEWox/BvIbRXTyHmKAmphVPTKuTmNY3
+UQ1+mziMpLimJlOaQo/Mq5igdjWIborf6PmU2lJ0+8+tlJ6eVkRQE9OKJ6bVSUzrm6gGT5xFviW4
+pDZT2p9RT5iGHBTyAVlyaf5Hfd6lthnd+HPLOQKK1H1QE9OKJ6bVSUzrm6D2/iNxGLmd/5LaTGkp
+WgaKCWplVxK5t77c17PUaj/g+s5ldAfP5bjjrZ1iWvHEtDqJaX0T1N6p697PX3X+c3SeykShR9Io
+JKgVXknkwdp2dGKKsR7d8HO7LqZkTnLdHj4ophVPTKuTmNY3Qe2duvD93GGkvfPSHin0SCqFBLUq
+vqt3e7n4sfYDru+cRnfvjI46nIoW04onptVJTOuboPa+TRxG3s95PTfRaSqbm6AnTIvKCGrH5S98
+HFtf6t3ix+XoNk/gKrp7Z3TS3RY1Ma14YlqdxLS+CWrvPxOHkT/mu5w/vkWnqWyCHjCNKiKonYQd
+2julrZV+JbXqD7heaHrZ4z8drnwU04onptVJTOuboPYuK4y8+xgdprJR6JHEighqhR+h9sRin2r0
+70S3dgotL3v855+Tjoa6YlrxxLQ6iWl9E9PcqdcYfpzvcm6jw1Q+Cj2SXAlBrfgj1J5Y609S24pu
+6xSarfb4+Op0MqEmphVPTKuTmNY3Mc39PnEY+TLX1aSuZ1IShR7JoICg1uE2mwT6ktT2ohs6hcM2
+D7n+79Xp4vRBMa14YlqdxLS+iWnu1MHo8zwXkzozFkWhR7IYxg9lKzhC7aleJLWV6FZOYtD09rRu
+Xh0xrXhiWp3EtL6Jae7UR0nPU0HkXbvlQ/5V6JFs4oPa+SC6Daa01nxFkRZqiNwZRnft+l8dMa14
+YlqdxLS+iWnu28RhpKRrKUvM86UPDkfhkw71fW23Xvsxun0TOYru2bllL5YqphVPTKuTmNY3Mc2d
+OIvMUyej5Y1pc9dWgdccjqI/vyo5Qu0H60v70WEqnyZqiNw5i+7Z2WXeoCamFU9Mq5OY1jchrf0u
+cRiZo07GH9FBKq+/Qp4vvXEdPZyt5gi1H+zubTa6UW0tumkTOWz5lOsHZ1kbUEwrnphWJzGtb0Ja
+O3U9/vezX0q7J6bdU+iRzAbRn531HKH2ozY3qi1HN2sqfchpOaeixbTiiWl1EtP6JqS1PycOI+9m
+vpK2lzzOFWDhbS6Ca4nUdITaj9aXNqNjVWqN1BBZ6EVOu8qY08S04olpdRLT+iaktT+lzSJ/znwh
+jS95nK8EJrzRaWwtkbqOUPtJY5NqO9HtmY6cNg8xrXhiWp3EtL4Jae3btFlk9sOtE19IeUIeL71z
+GFwZr7Ij1H6y3tJOtd3o1kxHTpuDmFY8Ma1OYlrfhLT2n2mzyMyHW3+NTlG5KfRIR65jP0KrO0Lt
+Z1vLq9EBK43F6JZMSE6bnZhWPDGtTmJa34S0duIwcjPjZbR9sPXY7POMMKXgLWoNfIOvrTRQqb+Z
+GiJjctrMxLTiiWl1EtP6JqKxUxd6nPU6Em+RK5BCj3Qo9rjrGo9Q+8Vu9VFtO7oJ04o+cCK/TDlN
+TCuemFYnMa1vIho78VrDWQ+3br5+yOzzjDCL68vIz7I6j1D7Vd1RrZ1Sjw+Cd1124DJLu4lpxRPT
+6iSm9U1EYyeugv9pxsu4jQ5R+f0d8XjpsYPQlY9HLUyo3buLarXuVYtuutSG0d/R2WU551pMK56Y
+VicxrW8iGjtxPvo621WkXnpZoG8RT5d+C1352MqE2oPF5dUKK0BuRTdbaoPgcwHzyzH6FdOKJ6bV
+SUzrm4jGTlzoccYpo4/RISq/WZeDwuxiaz4eX0fff1pbS9uVnau2Ft1kyR02PzzIcPCgmFY8Ma1O
+YlrfRDR22iwy45RR88X4/519OSjMI7Tm48lp9O0nt7tWU7X+pko9PhpFf0/nfmkGyZtMTCuemFYn
+Ma1vAto68WrDGaeMEk/pFWnmA+VgHrGnXV8Nou8/h6297ToKi2xGt1QOg8Yr858n39UpphVPTKuT
+mNY3AW2deB5rtqLzfZhMU+iRKLHD2lEzpUR+srhUflZrrdTjo8Yn1JIPz8S04olpdRLT+iagrRMX
+enw/00X0YTJt5gPlYG6hpUTOD6JvP6PSs1p0+2QSe9pEdqlHwGJa8cS0OolpfRPQ1rdps8hMFUQ6
+nEy7vf3W3R/7wZ8BDxcexZYSOWt1Qu3RXVYrdb/aenTb5HLQ9DAh8S8bYlrxxLQ6iWl9E9DWaSey
+ZssiXUymffvrw827x7/3x82HL52XllTokVDD0Nr8GarXlWZrr8SS/YvRzZJPy0Et8fY0Ma14Ylqd
+xLS+6b6p36XNIn/Ncg35z0z79uXXxZjvvn7pdGJttl17kMph6Dqx1mrzv2B3cbmsibUWSz1+13BQ
+u0zbUPkuVExLQ0yrk5jWN903deKINFMWuc0ckP78+u6Fv/w1959+YrZde5DOQejRwM2WEvnV+try
+ZiE71lai2yKvg2b3qCU9G15MK56YVicxrW+6b+rPabPIzQyX8EfeePTn19f++M1t3r/+nz+6f7jw
+o9ja/E2XEnnGVgkza42WevzP9Vnkat58TlL+qiGmFU9Mq5OY1jfdN/WntFnk3QyX8CVnOPr22/m9
+9x2Vmez+2cIvYifUerLy8Qe7i0srqxthMW0j+v7zOzwN7dS5HCVsIjGteGJancS0vum+qW+TRpFZ
+Kogk3h33o49vqDz5LmtOnFBBhCLETqj1aeXjj7YWl2PSWvSNd+KixbWPg3TtI6YVT0yrk5jWN903
+ddosMksFkcQHt/3gjVvlujgQ4Ev3zxaeEzuhdt6Dmo+vuEtry6udbltruNTjU9ej5qbUEg7SxLTi
+iWl1EtP6pvOW/jskFv0g35rDb2+u2nGTv+bj586fLTwveELtuGdb1J6zu7i2vNJNXFuLvtfOXJxF
+f4Enlu4XDTGteGJancS0vum8pRMXepyhmuH7bMHozymKdvyRPafddP5s4SUHsVUXWj/t+u0e4lrW
+OiNNV+T/yeHwKvo7PKXzZA0jphVPTKuTmNY3nbd04hWHb9gJ9rO/cuWij1OVM8m+7nGW4ipt2128
+s7d8b3v1ZZvLj9bG/weL69HX3YTYM9T+OfEN/5PFxaW7tyDH9FrjFfl/dn3U0OLHZNNpYlrxxLQ6
+iWl903lLpw1J36a/gMSrLmdNaXm3yP07W3GVVtynq8WHqLV5n7x25h57fs9v4386+gardBE7odbz
+LWovG/90sZLiFfn+qkTfUecGzZToTzadJqYVT0yrk5jWN5239MekWWSGaoaJz22bOaXlPmS7B4Ue
+H9LY2n0aW3mYCMswN/CCnbu/trK8vLe4uBXdDrW4Dv6YtUXtdbvjCba7F2ne6pA9qMj/q4tGklqq
+HzPEtOKJaXUS0/qm85ZOm0VmqCCSqYDI9Clt4e+s29NmKa5SovWHMLb0NIzFnQn1cmbbvl8jGd1a
+hRsFf9xd9vAUtZls3U9Gz/q7R/TVB2kiqV0lagwxrXhiWp3EtL7puqHDK4j8kScUfZuiesh3uSb2
+ZmyaSFtPJsYm+8ais9dsNlZXx3NsptieNYjexnOklsi0th42dE7x80h/d3M2kNQSTTmLacUT0+ok
+pvVN1w2duHDG9BVEPuUJRbOktJxHA8x6RZntPkljD2Gs0wOdujVeFLmnAMmPDqNLmJ/09rjrNNYn
+ZXheeXt7Pak8qLyiyFmaZhDTiiem1UlM65uuGzpxSpr+AvIko6+ztUbOao9dP9mfPMljmxXPjaWw
+s7oprv1nGD3fcKKWSFpbT0v2jH9/6ftU8uC04ir9J2naQEwrnphWJzGtb7pu6NukUWT6Mhl51jx+
+mbU58k2ndVdBZPG/MvdlbhwrxcbqyvJarycaHlyHj2EVfSSz62HsARRzuEjSAGJa8cS0OolpfdN1
+Q6fNIp+m/vtZ1jz+OfMRZfl2p82cHF/zXzGP7cYXLGa0s7q9vNbv+Yaj6I+9f87TjEXhZRdnVS5/
+TLPqUUwrnphWJzGtbzpu58SHlk2/1jDL9NXs28DeZYtpn+d8Uuvf58hWJLIcNlaXlxZ3M79vpQo+
+Qm1MdX7yq3H5Y5pVj2LaxKhUmT4BczZlniuujJiWx1n0C/mijtv5fdoscjPt38+y5nGe0vdpT/ue
+tWm2JltLRLKO7ayu9DKsxS98FNToxOGwtuqPSWaaxbSJgD4XKmNTimljYloexgOPPqTNIlP//Rxr
+Hv+cp0GyFRH5zd9dnGwls5OsAD0Ma+EVH++/k3ww04XBqKb1OkcpbllMmwjob6EyNqWYNiam5WE0
+8Og2aRT5OPXfz7Hm8WaeBsm16vHV7Li7vBMdTPjVxmqv9qyFV3y8/1by0UwnDuvZqZbkhGsxbSKg
+s4XK2JRi2piYloexwKO0Memvaf984q1x9+as1fExT0x7rWm2zKAVbHV7qSfVIMOPun74XvLhTEeu
+Ty9L+G3it64T3KuYNhHR0yJlbEoxbUxMy8NI4EHiuaOpN4VlKKz4bfoTtn+Q6bjtV5pm3VRa8fZ7
+kdUOy6hZfqzqI505qGD9Y4rzKsS0iYheFiljU4ppY2JaHmLag5u0WeRm2r9/22keepPERVUm3r/8
+F3t80HRdepDVRnk/d9/KOWp06PDiqIAKOq9IUZJfTJuI6GKRMjalmDYmpuUhpj1IXEFk2omsDBvB
+vs18ZNqjHOswX22avej0wTT2t/da3q9WQGX+e4IanboeFrxV7TzBDYppExHdK1LGphTTxsS0PMS0
+B1/SRqRp/3yGmat5J9MWFr7lSGmvNM1mdPBgaqvLa63WgRyUMq9wPjqMbgv65brYUv0JXgUxbSKk
+bwXK2JRi2piYloeY9iBtvYzbaf98+n1gc0+mZVmI+WrTREcOZrOxvdTktFohG9TunIxSlE6AKQxO
+LwucVUswYBHTJkL6VaCMTSmmjYlpeYhpD9JmkU/T/vn05fjnn0zLU0PklaaJjhvMbmd1ucHdaoVs
+UBs7E9ToXHkLIBMMh8W0iZA+FShjU4ppY2JaHmLavcQVRL5O+eczbAObfzIt9X693zZNdNRgTvsr
+ra2ALOIEtcnXlM9qApQV1S7nvyExbSKkPwXK2JRi2piYloev/nuJ6+HfTPnnvyZPQ3OemXYvS6nH
+V5omOmWQQGNRbVBQTlNNhCDlRLUENUTEtImQvhQoY1OKaWNiWh5i2r20FUT+Df7zd/5I0CiJpxh/
+2zRKiDSipah2WEohkXs2qRGlkBOw578RMS1dW9YlY1OKaWNiWh5i2r3bpFHkz2n/fPKtaR9TNEqO
+mPbahSnI35BmotrhWd5P4GmdDaJbhN46iD9Wbf4Ri5g2EdOJ4mRsSjFtTEzLQ0y7lzaL/DXlX0+/
+NW3azXFdtMq9Vxdj7kdnC5Lab6OsyGnej+Dpv6+sfSTM9WlsAdSLue9ATJuI6UFxMjalmDYmpuUh
+po39kTaLTFtlMf3WtAQFRBayxLRXm2ZrJzpYkNpmA8X6Sznp+jtrHwl0OAxMavOPh8W0iZjuEydj
+U4ppY2JaHmLaWOKc9H7KP5+88n2KAiILWWLazat/cGsjOlWQ3sb2XuXrHweF1E944tInN3GuT6NW
+P57Nfe1i2kRM34mTsSnFtDExLQ9f9mOJc9K09TvSnq397/Q58QUZYtpvpvl2V0yoNWl/uepJtbIK
+iTw4Pz2MbhZ6bHAWMsk8/2hNTJuI6ThxMjalmDYmpuUhpo3dps0i0/751FnoW6JmSZ/Sfl9cZXdx
+eXl7ddU2tebsVD2pVlghkQdnPr6JczgMmGWevyK/mDYR023iZGxKMW1MTMvD9/xY2iwybZnF5BUV
+E615zBDTbqf581uLi3vLyyurq6um2BpR8aRaaYVEHphSI9JB5vHJM+a/5nzXJqYVLWNTimljYloe
+YtpC8goi0xZ6/JA6DKWp85gjpk1bXOU/u4uLi8v3E22r0VmDeWxsr2V7kbM6KK2QyCNTagQ66Hqe
+ef4rzndtYlrRMjalmDYmpuXhK34heQWRabPIX6nDUJo6jzliWqJNcwvrQlvNNqtc/jgocIPavXOF
+H4nT8Yza3EMWMW0iqMOEydiUYtqYmJaHmLaQvILIzZR/PvXh1knOth5LH9P+zvL8xjNtS3ep7S60
+KRVZif2l9Sx9IafD7ld4vdWls9QIc9DlDxhiWjJB3SVMxqYU08bEtDzEtIXkFUSmzCLvUmeh2VcW
+/ijxWtCxTh7n1uLi2uNUm01tBdtfqW6jWpGFRB6cnA2iW4feOu1uRbCYlkxQZwmTsSnFtDExLQ8x
+bSH5rNGUfz15BZGbRM2S/MKmqyCSyHiqbe8utW1aIFmejdqS2jDvx/F8zk8tfiTGYWcnXs89IBbT
+JoL6SpiMTSmmjYlpeYhpCwt/x2aR5BVEUrVL+pj2KfpRP6Q2c20FqSyplVpIZPJdNlT5kRAXHb0Z
+YloyQT0lTMamFNPGxLQ8xLSFhfdps8i05fC/JM5CybamJa6s8m+6EpQJLT4UIxmX/XdWW5Cqktp1
+qYVEJi4vopuIXupo66aYlkxQRwmTsSnFtDExLQ8xLfl01rRbwz4mzkLJpqyST/MlW46Zz2SJ5LbY
+1qmKklp3y7tmdXImqRHgqIveLaYlE9RNwmRsSjFtTEzLQ0xLXkHkZso/nzoLJZuySj3N11EFkbQW
+H6tIbisjmdlGNbUfOxmNzuf8aBDdSvTPsIOufTTvRYppE0G9JEzGphTTxsS0PMS0hYVvabPIlIUe
+k9dT/CNVu9ymvrJkyzED7T6ukrwvSSK3pVVLlf5h3g/lNCQ17gwO7ozuHB0fD7L/tWH+DWpzD9fE
+tIns3aEwGZtSTBsT0/IQ01JXEJl2yijxzriEU1aJ4+v0u/aqsP5Yk2R8aptSknOr4+TrQdmFRCYk
+tZ4ZR7KLx0x2fHz+c3+YeyLq9wbZO7WYlkz+7lCWjE0ppo2JaXmIaalzUnShx3RTVqlTWrID3cq2
+9WSZpO1tM9hei36Ev3dYeiGRCUmtWd8z2dk4k73lh4PzDq5qmLtHi2nJdNAdipKxKcW0MTEtDzEt
+dU6adsror8RZ6K9U7ZK+Hv9N9KOOsfVYluR+vs06yTeooKDIYcEnXf/k/MinfO0Ox5lsOFUme04X
+pWVOM3dnMS2ZDnpDUTI2pZg2Jqbl4Qs89Ras6EKPyaasPiePae+iH3Uhdid1ScbHADi97Vn7S6Uv
+fuxgG04yaj/W5fAxk12OM1nCfnDWxcVn/gFDTEumi95QkoxNKaaNiWl5iGmpt2DdTPnnU2ehcgs9
+/hn9pMt1H9wmO9yslHywWfjix0EtCx/vnVw6+boauYY7J11c/OH5/Bf6CjEtmS56Q0kyNqWYNiam
+5SGmpa4gMmWhx9R/Pt3KwtTTfFPv2uuz9fvUttLzzLaxUnTlx4oWPj44Pr2ObjPeIttwp5NJ1ZyD
+NTEtoS46Q0kyNqWYNiam5SGmpa60OOWfT74DLFU9/nepL6wnFUTSWx+vkFzp6erI1aIrP15UtPDx
+wZWNahXINty57OTysx4AL6Yl00lnKEjGphTTxsS0PHxnJ64gMm2hxeQ7wFK1S/KDAv59H/2oq7c7
+PrJts2dlSHa2C64ncl3VwscHJ2eWPxYuX1n7Tp78dc7uK6Yl00VfKEnGphTTxsS0PMS027RZZNpC
+i6nr8SeLaZ+Sx7Qpl4Pyst3FteWV/iyI3C94Su0o7wd0JlejQXTD8YpsD37YyeXnHLWIacl00hcK
+krEpxbQxMS0PMS1xBZFpV/bdJs5Cyep0JN+alu7cbSbGcW27D7NrBU+p1bfw8YFJtYJle+pXnVz+
+RcZ+K6Yl00lfKEjGphTTxsS0PHof01KX8Jh2ZV/qmJaqTkfy0iYqiGS0tbi80npaW92LbuUX1Ljw
+8dHVqPdfAGXKVyxx0Mn1Z/zpQkxLppOuUJCMTSmmjYlpefT+Wzr1FqxpK3iUGoa+Jo9pn6Ifdfu2
+xnNr0XEqn51SCz+O8n5IZ3VyeTqIbj9+lu9rv5Oj03IWERHTkumkKxQkY1OKaWNiWh69j2mp94ZN
++/dLjWl/JY9pyQ5043Xri0srrZaF3FyMbt1nHVS68PHR+dlQpf6i5Is5J52sdD3N11nFtGS66Akl
+ydiUYtqYmJZH72PabdosMm2hx+T1+BPFtPTl+NMd6MZb7I7DWnSqymBjqcRyIoeZP6fzOz+6sFWt
+GBnnZzspIpJxvDb3gFhMm+iiJ5QkY1OKaWNiWh69j2mJK4hMm5JKjWnp1zyqIBJhfXF5s7WCkDvb
+Ja59zDh/0JkrUa0Qw3wP+byL689Ykl9MS6aLnlCSjE0ppo2JaXn0PaalrpQxbaHH5MemfUnTLrfJ
+U9q084yks7jX2CrIEtc+DuqtJPKUqFaCnOOdTr7z812+mJZMFx2hJBmbUkwbE9Py6HtMSz2bNe0G
+rOTHpk2bE5+Xvs5jqvzIrNbXlhvKahsF1n2s8wi1Z1zZqxbsMOPT7WS8k+/yxbRkuugIJcnYlGLa
+mJiWR99jWuqYdBP89xMtekx/tnWi/Mh8GspqO8vFbVI7yFdHvXPnZypABspZk6aLL/2Cr15Mm+ig
+HxQlY1OKaWNiWh59j2mpCxpO+/dvy4xpiXfsjd1EP2omxlktOmQlUdwmtcOMhcgDnBw7Vy1Izu/9
+yw6uP9/Vi2nJdNAPipKxKcW0MTEtj75/C/+ZNov8Oe3fLzOmZSgg8u+76EfND7b2thuoLVLcJrWL
+ukvzP+PqaDiIbtX+ybqANv+K1ozjNTEtmezdoDAZm1JMGxPT8uh5TEtdd37qkFRmTEscXsemDrDk
+t7tY/xLI1cI2qR2e5f3EDjGeVlNYpEvDnI8z/3TaRb6Ln/vaxLRkTVmZjE0ppo2JaXn0PKalriDy
+adoLSB6HUsS05KcEJLouctja296IzlpzKa2aSEs71J46vzzt+ddFhwZZH2X255jx3Le5r01MS9aU
+lcnYlGLamJiWR8+/d1NX8Pg87QUkj0PfErTKbYaYpoJIyXbXVmpeAblRVjWRw4yD1GhXZ7JaJ7Iu
+ns0+5Mm3R/Nq7msT0yZy94LSZGxKMW1MTMuj51+5qSuI3Ex7Aenz0PyNkmMy7d/30Y+a31msuLBI
+YWUfGzlD7SWyWn55v/gvMl99vpA5/2hNTJvI3AmKk7EpxbQxMS2Pnn/bpt6ENXWdjPR56O+5G+Vj
+jpg2/2XRgXqjWmFBbdRcKZGfXV3ar5ZR3hnZ87wXn3HJ5tHcFyemTeTtBOXJ2JRi2piYlke/Y1rq
+CiJTT2VlmLi6mbdRcpR5TDHJR0dqjWo7RdXnv878yV2Gk+OROpBZ5Bzx/JN7WHla8oWLaRNZ+0CB
+MjalmDYmpuXR75iWOiVNXScjQ0ybdxPYuwxnpqkgUpvF5Sr3qhUV1IbNT6hNXJ2NDvIXee+ZzM8s
+6/PKuOZ3/hGLmDaRswuUKGNTimljYloe/Y5pqSuIfJn2AjLEtKmv4SefcqS06UtgEm13baXCCpAl
+BbUma/O/6OT46NQqyHQyf/PnHPVcZ7zu+eOlmDaRsQsUKWNTimljYloe/Y5pXxKHkalnsjLEtDkP
+KPsjS0r792v0o2YW63vb1Z2rVlJQa7U2/8vuwpqZtSRylws9rfPS5786MS1dW9YlY1OeHxdo2HUD
+i2l59DumpS6WcTPtBeQoqjhfsY4s9UMS7JgjylZ1W9VKCmrtlxJ51vHl6KLf3y1zy7w57Z+TQa4r
+P8zY5xMM1sS0iVwdoFSZm7M4nU/xiWl59PurNHUY+WPaC8gR0+aauEq9DHQi+kkzj921yk7AXimn
+6uN1viOkinc+nlobRD+BWuUO+POfQPaCnJNp8xd6FNO+y9UBSpW5OYsjpnVFTMsneUiKv4I7f5XU
+Io8+Rj9q5rW1VNOkWknl+S96t/LxJ/dprdffNDPJvrMxQeR5Ts7JtH8SrOMS0ybyPP9yZW7O4ohp
+XRHT8vkcHkayxKKpD2/7Lk+Vx3/ni46UYnetop1qBQW1w9zbjOpwcnw5OjW59mbD7E8kz96VrNPH
+g/mvT0ybyPL4C5a5OYsjpnVFTMsndQWR6cNIlpj2eeYGuc2U0uY+JYBSbK1UU6l/Zym6sb7r88rH
+X4hrb3OY/0kMMlz2RdYrTnCBYtpEhqdftMzNWRwxrStiWj6pU8n0YSRLTJu51mPq2Pqfm+hHTTrr
+S5vRCeyNNvai2+q7/tV8/K2T4+PR6EIN/xflz/Yn6WtyDrJuqUsxVhPTJpI//MJlbs7iiGldEdPy
+SR1Gpi/ekWcv2IxFRL5mS2lzrMOkRLt7m3Usf9xYjG6q73pa8/ENzo8vR6MDee1nw/xNf5W60Q8z
+nmz9T5qBp5g2kfhqi5e5OYsjpnVFTMsm+RFhN1NfQp6YNtt0WsaU9i36UZNeJRvVVosJav067XoW
+9/NrQ9VGHuVf9Zg8p2VOaUnGK2LaROKrLV7m5iyOmNaVzDHtbFSTtN/fyXPJ9JeQqbLiLFvBMqa0
+f2/zvBsE21qpoU5/OceoDTJ/mrfj/Pj4aDzD1u+DsrvY0Zg0p+VOaSm2polp3yW+2uJlbs7iiGld
+8cX+RNpu9ylxGJlhzihTTPs29QFuWVOaCiLtqiKplXOMWu+L80/vIbFd9DGyDbto34Q57TpzSvvn
+MsVVimkTia+2eJmbszhiWlfEtCfSdrvbxGFkhjmjvzPloo/TbgbLmtLmO3GbwlWQ1HaWoxvpO1vU
+5nByPF4WOV4X2YudbF2serzLaYNEl3uQvWufJrnMfNcnphUtc3MWR0zripj2RNpul/qQsE8zXEOu
+YPRlusv4kDWl/Tv95B5VKT+pbaxFt9GELWrJ3IW28UzbfWxrcrKtm65ykmYzQQenAyZ5xmLaxEFl
+BmU3Z3HEtK6IaU8k7XbJZ7JmOa8sWzKaJqe9y1eJ/0HeV4QSFJ/UVreim2ji2od6NsfHk+w2dvF9
+hBf9zGeTc9jzVIIv1i469VXpjVpZTKvNvM0bff1dE9O64hv9iaTd7n3qMHIzw0Xki0Zvz2l/fMwZ
+0e58zPyOUIatlbJrP5ZTS+TAx3rHop/4jLrayng87zzVaRdreY+StKmYVisxbTpiWld8nz+RtNsl
+X+j39wwXcZsvHH154/60zxkD2uOVdPCeUISyq/TvLBdTS2Solkinop/3jDpYSPjgZK5tXx3NDw+S
+tKmYVisxbTpiWlfEtCeSdru/UqeRWS7iNmM6+viWLWHZp9L+VeixX/Y2o9PYK8rZotbN/AOPop/2
+jLopInLveDDzRXYUJs/TtKmYVisxbTpiWlfEtCeSdrs/E4eRmQ4Hy7sr7NPvJtT+zr0r7d5NVy8L
+Rdjd24+OYy8rZ4vaoaKPnUk0wu9el/VmzmarntnZIRNJ6jyKafUS06YjpnVFTHsiabdLHUb+muUi
+MpdY/PbhtaDWTUj7999pTwegeuvL5RYUKecUtcOj6E/Uvij6O/41XRURuXcymj6odbjNMlEtTzGt
+VmLadMS0rohpT6TsdslPlp5paV/2jWHfvrx/4U9/Tb7q86VL6P6tId5WsdvUdvai2+a7a9X5O1H0
+d/yruh0AnJxNl4W6rIWT6hmKabUS06YjpnVFTHsiZbdLHpDez3IVycPiczHpy9efd6n9/fWv1KfG
+vWym1aA0oNhtavuL0U3znaDWhaK/41817LypLt5+bVddXtgwUYuKabUS06YjpnVFTHsiZbdLvuBv
+pjOckx/e9mJW+uvDh683d95/+HTbXUQbU0Gkv4pd/FjOykfHqHWg6O/413VfEvTk7C1JbXDU7dbK
+k1QNKqbVSkybjpjWFV/hT6Tsdrep08hsl9FpYIrxNfodItJimYsfC1r56Bi17Ir+jn/dMKK9Ts6G
+r65+HBx1nh7THJq2IKbVS0ybjpjWFV/gT6TsdqnDyJ+zXcZtdIjKb6ZpRtpRaOXHcmo+Cmq5Ff0d
+/xtR9UDPz04PnispcnB6GXFJiQqIiGn1EtOmI6Z1xdf3Ewm7XfLVhjPuwOqo2GKk6FeIeGXWEynn
+tGtBLa9kUzEBOjvi+jknx5ej0fDgwXA0Oo46lv0s3ZuW7yLFtKzEtOmIaV3x5f1Ewm73PnUYmXEH
+VvZSj+E+Rr9ClGB3bzU6lf1qo5xSIoJaTp0PWBI6dLzenYN071m+ixTTshLTpiOmdcVX9xMJu13y
+A8tm3IHVRanHWF+iXyEKsV7glNpmQRNqglo2Nce0hdPo1itAwkGamFYrMW06YlpXfHE/kbDbJT80
+7GbGC4lOUdkp9MhEgbvUSiolcvc9dxn9GdumqmNaQLHH4qSbTBPTqiWmTUdM64qY9kTCbvdn6jTy
+bsYL+Rgdo3K7iX6FKMnWdnQw+9nqenSbPOUctRzqjmnD6OYLl3KMJqbVSkybjpjWFTHtiYTdLnUY
++TbrhXyKjlG5/R39ClGW3aXCzlLbWYpukh8IaunVHdNMpyWcTBPTqiWmTUdM64qY9kS6bpd8S9iM
+hR4z1DIpzMz5lXatFVZOpKTa/HeuOz45uH0ph/kBcg5/anBZSWOKaVmJadMR07oipj2Rrtt9TZ1G
+Ps16Je+ic1RmM+dXWlZaOZHl6Ab50eFIUEup8pjW92FAsjPTxsS0Wolp0xHTutLzz+cfpet2yZca
+zl4oo/HNaTPnV9pW2NrH/bIm1BYOh71f6ZZQ7THtOroBQ6U99U5Mq5WYNh0xrSti2hPput1t6jRy
+M/OlJD8aoCyfo98gilXW2sfCJtQWFoZX0R+4zag9psWecR3s5DBpU4pptRLTpiOmdUVMeyJdt/uW
+Oo3MXijjj+gglddN9BtEwYqq+1jahJqD1JIZRD/JeR32eG51mLYpxbRaiWnTEdO64nv6iWTdLv2G
+sDkuJvnZAEWJfoEo2/pyOZvUCiv5OKbsYxLRj3F+/a0iknp8JqbVSkybjpjWFTHtiWTdrpxCjwuN
+l+T/M/oFonQlbVIr6wy1e6qJJBD9EBPo68HnJ0nrhyyIafUS06YjpnVFTHsiWbf7nDqNfJnjYppe
+9ajQI7+3V0xQ29mLbotn2KQ2r+gnmMBhT9P6aeqGFNNqJaZNR0zripj2RLJuV1Chx4W2az3O1TD0
+xmIx1UQ2d6Pb4hkHfZ1LSST6+aVwEd2IIdKPzsS0Wolp0xHTuiKmPZGs2yUPRu/nuZrkc3sF+Rr9
+AlGJxc3ogPZoZzG6KZ7jyOs5XEU/vST6GNWTL3kU0+olpk1HTOuKmPZEsm6XPI38Mc/VtHzC9VwN
+Q6+sl1L2cSW6JZ7lJLWZFf0V//YO0MPnf5G+GcW0Wolp0xHTuiKmPZGq2yWvIDJnPcMv0WEqn+j3
+h5qUEtTKK83/4EDdx5kU/RU/xeOPbsfOpT3YOnsrimlZiWnTEdO6IqY9karbJd+a9nG+6/k7Okxl
+M2fD0Dfr20XU5y+wNP+D61EPp1TmVvRX/BT6dsh1lsWqYlqtxLTpiGldEdOeSNXtkm9N+2vOC7qN
+jlO5zNsw9M5uGQepFVlJ5N7Qd8K0ckzKhOjXo8+wMW1BTKuXmDYdMa0r/fpc/o1E3S795NW89QzT
+r8IshEKPTK2MoLZR6MLHBeVEptb5eCWXfm1PG2RpQzGtVmLadMS0rohpTyTqdl+Tp5G5Cj2O3Ubn
+qUzmbhj6qIygthzdDK8wpTaNZmLawqBHAX2YpwnFtFqJadMR07ri2/iJRN3ur+Rp5GbeS2p1Ok2h
+R2ZSRFBbLXbh44IptWm0E9MWhtFtWf1DE9NqJaZNR0zripj2RKJu9y15Gpn/mm6jA1UesS8PFSuh
+6mOZR6h9Z0rtjQ6in1RCp9GN2ZGzXA0optVKTJuOmNYVX8RPpOl275OHkT/nv6g2iz1WW+hxdDw2
+Grs4uHMYfUF9VEJQK3nh44LCj2/UUkxb6MehDNlSmphWLTFtOmJaV8S0J9J0u+Tl+P+9LfKqCpCi
+YUI8+3lzNY5uR+PoNhxHtyxlyHiqgKBW9MLHsYt+DNvn0lRM60VOu8zXfGJarcS06YhpXRHTnkjT
+7f5MnkZS1DN8l34pZrxqCz2++fPm/L9pt/vs1taAMN7WanROK3zh453D06voT+bCNTYZ3v6g4Crj
+ExPTaiWmTUdM60r7n8hTSNLtMiwv/JriutKvxYz3Ofblmd31fB31ft7t8r81k4Po+6nYYnhQK3zh
+49hAPZHXRD+exA5bj+WXOXO1mFYrMW06YlpXxLQnknS7z+nTSJp6hukLUIa7iXx15pKj+z7MvN2v
+mjTvNoW1jeCcVvzCxzGLH18W/WxSazyn5duXNiam1UpMm46Y1hUx7Ykk3S5DGkrzqBtc9vh35Ksz
+l2469MlDbBva6Pa6veDq/OUvfBw7HLY9ep/ZefSTSf+oL6PbNKO8KU1Mq5aYNh0xrSti2hNJul36
+MJSqUEZ7yx4DX5w5Bbx35+PIdqqq5HPCj1GrYOHj2PWpyo+/Kvobfkbtzp3mHlyKabUS06YjpnVF
+THsiRbf7I30YSVYoo7Vqj9XW4w9+707GRUkuzLA9FV30cXU9ugXeaHAkqf2k6G/4WR1Ft2omw9wN
+J6bVSkybjpjWFTHtiRTdLsPWtJtkT/tjdLBK66+w12ZuZQyCzo/PRkNx7UFw0cedtegGeLOLMwVF
+nsq8ii7IMLpZczgZZG83Ma1WYtp0xLSuiGlPpOh2X5KHkW/pnnZj29Oqrce/sDCK7us/OD8+Gl2o
+ORJcS2Ql+v6nIKk90flwpRuD9qZNrzr4SUpMq5WYNh0xrSti2hMpul36CauUc0Z/NJXTboJemgSG
+0X39OSfHZ6OLQXTTRIrdorZfy8LHe8OWy0xMpdGY1l4hkbMu9uWKabUS06YjpnVFTHsiRbdLH0aS
+nJo28TU6WqVUb6HHrB848zo/Hp32tdDIbugWtYoWPo4dSmr3LqIfRDan0U2b0kn2bWn3xLRaiWnT
+EdO6IqY9kaDbvUsfRt4lfeAROe3Pvz789WeGfzbonUlhzvOtO3ByfNTLsBa7Ra2mhY9jktqdhpcL
+D9o5g6GLBY9jYlqtxLTpiGldEdOeSNDtbpKHkS+Jn3jnOe3Lzf3ffZ88qKVumU5F9/U3OjkeDRse
+hT4r9BS1uhY+jt0ltZ7vUxtEP4KcytpFO7vOxpRiWq3EtOmIaV0R054oMqbdpH7k3ea02z++/+HU
+1VWSrgbtWlXb868uR32aWNtdCcxpO3vRtz+DflcUiW79vJqYULsadNZeYlqtxLTpiGldEdOeKDGm
+ZVjZ12FO+/Y+4x+ueGtajS/e+fHooi+1+0NXPm7vRt/+LC7OqvrlIaXops9tVH0G73JAKabVSkyb
+jpjWlfpGixmVGNNyTBl1ltP+epfxD1d8uPWds+jOPpuTvmS1yJWP+1vRdz+bnp58fRXd7tld170B
+8bjTTywxrVZi2nTEtK6IaU8UGNPylMnoJqf9+f6XP/wp4T//Ofe7kVXNWz5O+rAGMnLl485S9N3P
+6vq0hSVy0yn6Cz6Rg3of63nHhTjFtFqJadMR07oipj2RoNv9nTjqZNp/1cX5aZ+eK1F5m+7fT1sB
+s2vD6M4+r6uz00F0I+a1tR8X1DarXPh4r3clRS6jW7wTwzpnSk9GXf+gJKbVSkybjpjWFTHtiRTd
+Lm3+uc313P9Ifwz3jz7ePPt33yWr91h1nceyD057u+O2p9WW4lY+VnaE2k8u+rT8sdXTrX9yWOMW
+tbPuV2iLabUS06YjpnVFTHsiRbf7K2nY+WP+C3rBu7QX+pNvH176u8lWhVZdQORu0BPd2ZO5Ohs2
+u1ttfdOE2owGp335bulJTKswqAWENDGtXmLadMS0rvTlq/RNUnS7pNu+sm6/+pwvpX15JUMl2p72
+KWfTdCG6syd13uwKyLXACbUaS/M/dTjsRZ3+Hp0rWFVQCwlpYlq9xLTpiGldEdOeSNLtEp7i/Ffe
+Z59r4ePtzWt/Nc2yxz/r3pm20OCbd3LZZFSLLCWyWt1Z178YjOotPvFGPYppC/XsUQsKaWJavcS0
+6YhpXWlusDiPJN3ufbK48zF3FHmXsvDi9wD1u6onKZY9fsu3GrQrdde4fkGTUW1xI25CrdqSj08c
+Nn6kWsu7M59zUf6g4WQUtw5bTKuVmDYdMa0r5X/idihNt0uVfbKntDs3Cef+HvLTG0pTJmigTAUw
+u1RzRf5XnTe3V82E2twGp03+LHEvum0DnmbZi1nPh5HJWUyrlZg2HTGtK2LaE4m63ZdqUtrCwrsP
+SUPahzdd9LyLLb+9f8tfKdwwurfndH500dQcQ2Bt/iYm1O4dHDW5/rH9062fcTgs9lmeBS9CFdNq
+JaZNR0zripj2RKpu9z5BVf7brjZf/X2bKqT9+baQdpcN58tpt5UXeXzQRkX+V1yNWtq0sxw4obYV
+ffPJtLj+sejv94wGRwVOqV2FTqTdE9NqJaZNR0zripj2RLJu9+7DvEHtw/wX8WZpVj7+dk/a0/aZ
+I6dN83dK1k5F/pedXLaz/jHysOvl6JtP6bqx+o9H0Q0a56KsJ3l+VMKnjZhWKzFtOmJaV8S0JxJ2
+u3df/5ojqd12XCHj69xB7Xa6dYizntr255ebblsmo6JGOPlcHbUyqRY4obaxGH3zaQ1OL5vp/r05
+Nu1ZxSS186NBdFs8ENNqJaZNR0zripj2ROJu98f7D19ub2+rmC+aK6h9+zT9MsTP06XYj7dfPny4
+aWK140R/Xr2Ty/ilSClETqit1H3Y9TNaiWoX0Q0ZrYCFrFejQXQrfHc9ymaY+FLzXWmV5m3e6Ovv
+Wue/v2Z8tZK/W0kNox91STJ2uz9ubj7chbY3hKGo+aKb6fPkg79mS5V/v63Syp+3H77eVH9I2nPO
+osc23Q6kmqjUHzihVv1h189pIaq1Mlk8j8Fp3I9OLa2sBiDY3zdfX45rHz9F1jD8+9P06zQ/fp59
+huvvL6/+vfuAFtgcuTVbkf8l50f1TzwEnqHWSm3+nw2G8bMx82hionh+hxcRhTyPm6pTBEAp3t3c
+fP5wvyjywYcP72+ir2lh4f2XaZLaX3NktMe/9+mZYiLfbr98eF//+dW/03ypx2ecnNW+/DHyDLX/
+LTe38vHR9bDeYv3RbVeQu6jW3azaiYgGQO+8//SmbWofP71PtBTx5v2HD5/GSfXLh3FWbT+fPbqO
+Hl8GqX2j2tpOXE7baHHl46PDi1GN2zWL3noe4eD0Mvvs6PHRcBB9nwAQ4u+vX16rmP/t9kOqiNZr
+0QPMOMenNe8m2d0MnFBr6BC153Qxxk/rMrrJSnR4MDrLMz16fjyS0ADovZuvH/66/fZTPrv98LnN
+eh4Rapw7SOaq5qS2FDih1mDNx59cd7l0bm79rsf/qsHF6Czdk7y6HA2tcgSAp/6+edBUMfwi9KvU
+4zPjrnqTWmRp/jZrPv7s4LSSwiJFF3IuwsHF6Oh45rh2cnx8NLo4qHuhNABQl96VevxVtUkttJLI
+//YbO+36BYcHo+Pi6/Wb4Hmr64OD0Wh0efz7yHb3nxzf/afDA+kMAIjQx1KPvzqutKJIZCWR//1v
+u83i/M+4vig7q0W3T7UGB8+o87MAAGjMYfQIsxR11n5cj1z4+L+dZovzP2cwLHW72nl00wAAkFrJ
+kwTdOjmr8eTr5cic1o8tak8NSpxXU48fAKA5hU4QxDg5GkQ/j6kthi58/N9GP7ao/WC8BrKk2iIK
+PQIANOcoeoxZmPPqCorELnxs/hS1l+Q7lmtqCj0CADRnGD3GLM9lbcPe0IqP/+tTLZFfDIYFLIJU
+6BEAoDmD6DFmiU7OBtHPZSqxFR//14Pjrl91eHCa8Ajl6UXfPwAA6UVHokKdn9ZU+TH0qOuxfhV9
+fNb1wSgmrCn0CADQoEL21xTosqLKj7vbwTntLqhFt0ERrg9OjzquL3IZfc8AAKR3Fp2GCnY+qqee
+yFJ0TvvfRt+q87/i4GJ02dXUmkKPAAANOo3OQmWrZ0otuDK/oParw4NhB2lNBREAgAYdRAeh0lUz
+pRZdmV9Qe8HhwcXoLN9KyJo2UQIA8FbRMagCZ3VMWMRvUBPUXjM4OB1dJq/fr4IIAECT1BB5g/Nh
+FXMWS9EhTVB7g+uD4ejoONV7p4IIAECT1BB5k5OjGtY+hp+gJqhN4eDg9C6vzbl5TQURAIAmqSHy
+VpcVrH0MP0HtMagt9f4ctWlcHxyMRmfHMy2IrKBTAgAwvUF0+qnI+TD6af3Wbhk5zYHXMzo4uLhP
+bG+uOFLFalwAAKYWnX2qcjIqflhcQiGRh6C2Ht0Udbu+j2yj41cz21X0VQIAkEdXx/C24qz0TWpL
+0QHtu21BLZmDh9B2dJfanlYfOYq+LgAA8jiKzj3VKX2T2l4RhUQegtpidGO06uAhtxXeFQEAmNVF
+dOqp0PFF9FN71VY5Oe1/q2vRrQEAAPW5js48VSq7mkgphUTubeypJgIAAFOapQw4ZR95vVtKIZF7
+qokAAMCULqMDT62KLvu4Ep3NfmSTGgAATMMB1zMrOajtRSezn+zvRbcIAADU4yA67NSs4KBWUiGR
+e9Y+AgDAm0VHnbqVG9S2Siok8sDaRwAAeBsHXM+n2KC2uxody361saTuIwAA/N4oOudUr9igVlTB
+x0c721vRzQIAAMVzwPX8TkbRT/F5S9Gh7Fn7jlIDAIDXHUZnnCYUeuD1WmmFRB6YUgMAgNddRUec
+NpQZ1Ior+Dixb5caAAC87Cg64LTi+CD6UT5jt7yCjxPba9GNAwAApbI5LZnj6+iH+avdEguJPNpw
+lhoAADzL5rSEzgoMaivRaew1q+qJAADAM2xOS6jE6vx70VnsdRY/AgDAL2xOS+qkvFoii6UWEnm0
+saLyIwAA/MDmtMSuiqslsrURncR+m9SWbFMDAID/2JyW3GVpW9QKLvj4nRr9AADwH5vTkitvi1rB
+BR//s6mgCAAAPLA5LYPzi+jH+pO9wjeoSWoAAPCEzWlZlHaK2lYFCx8lNQAAeBQdaFpV2MrHkk+6
+ltQAAOBHx9F5plWlrXws/AQ1SQ0AAL47jY4z7Sqs5mP5lfmf2lelHwCA/hpEh5mGnYyin+4Pdjej
+s9eUSW3ZydcAAPTUSXSYadnVIPrx/mApOnlNa2NlLbrNAAAgwFl0lGnbUVGlROpa+Hhvx0Y1AAD6
+ZxgdZBp3fhD9hJ+qbeHjg/0lyx8BAOiVw+gc07zLoibUlqIz12w2ttdMqgHwit3F5ywt/2fvv/9v
+daqA8l1Fx5jmnRRVm7/ChY+PVk2qATTjlzy1t/yc7dXn7KT8dtn/799d+e8P/3dhvnuAIKPoFNMD
+RU2o1bnw8cHGtp1qAOF+iVi/pKu8wSrMk0T33BydQAckpSR/B8qaUNur+ttyf2UxugEB2rD7zDzW
+89NXq9Gf/bV5NtAtWXQJTEVJ/i4UNaG2tR/9/TWnTesfAab2PZJtrq7W/j3QkP8C3eaz2+isIoH+
+UpK/E2VNqK1EfyvNbWdzyW+RAC/andTPWBkHgGq3JfPEzn+Jbvu/RLdm0SU0axgdYPqiqDPUFlv4
+yt7Y3hPVAO6sT3aIbVuhyJ2N5+qiWHQJtVGSvyvng+hn/UTNlUR++CYS1YBirT9bF37zp21fz6w/
+3Fl92fd/5//839X9jTvRn8PU7b9tdBZdQnGOo+NLf4yin/VTa1VXEnlqY9teNaA7T8LXs9kr+jMR
+MvnNokvzdJDcaXR46ZGr6+in/UQrE2r3djaXVIAE5vFf+lp7rrB8M79sQSd2fkx0a6bmYAbX0dml
+T8qqJLLW2FqZ1eU13wDAz3afWXn42opDIKv/9sytyW7wuvPo7NIrZyVVEtmtv+Tjz/a396yAhF5Z
+/2H14YrpL6jQ94k3KyfhqaPo5NIvV4PoB/5UEyUff7azuuzHOWjZ1sP5X7IYtGsy5bbnrAH6bBAd
+XHrmZBj9xJ9qcELtwca23WrQjt2HGbNtqxShr57mNl/w9IZVjx0rauFjmxNqjyyBhHptPdTycDYz
+8Kz9ySkCFkrSsLPo2NI7ZS18XFiO/qTNa3VFVoM6PFT5WFHUHpjFZMJtyYQbzbiITi39U1bFx4Wt
+9odEq9ZAQonWHxYzbpoyA9LbmEy4rZlwo1Yn0amlh46iH/qPlnqxD39/U20RCPdQ/2NF/Q+geybc
+qI1VjwGOi9qgtrDe0mHXr9pZXd7zyQyd+r6YUf0PoCwm3CicVY8RzgfRz/1HLZcS+dX+5vKaHWuQ
+zX+LGSUzoCqTM9yWHL5NEax6jFBWZf6Fhd3GS4k891G8veynM0hj/XvJ/PY3uwJ9Mp5wW51MuPmJ
+l65Z9RijsA1qfSgl8hwzazAbu8yAXrLDjQ5Z9RjksqwNagsLe/0dbG2s3n3cmlqD161Pkpm1jAAT
+driRkVWPQa6uox/9T3ZXoj/qgt19zO5Zig5PPUSzbXNmAG+0M5lw2zPhxryseoxyMoh+9j/r6crH
+n6xuL6/5WKXPdu+LM5o1A0hi/7EyybLKJEzJqsc4hRUSubPXq5qPr9lYXVFjhF5ZXFy7nzeLfvcA
+WrczqUyypzIJr7PqMU5phUR6WfPxVfurFkLSsvXxxNnK6qofaAACmXDjeVY9BirspOuxdT+m/8pC
+SJpyv+Fs06JGgFKZcOOeVY+RrgbRz/9X/Trtegr3CyF9VlKprfHZZoqBANTJhFs/nUdHlV47OYh+
+/s9YMpB7hfr91GP9sRqI314AGmPCrReOopNKz51Gd4Bn9L44/xvsj9Oaj0VK9Lio0QJmgD7Zn5zh
+tugMt2YMonNK351F94DnrG9Gf9hUYrwS0r41CmBRIwA/cIZbA6x6DHZVXiGRO4t+ip/G6qbJNQKs
+j8voO+IMgLfYmEy4rZlwq8RpdEzpvfJOur7nFLXp7Yw//fxiRWa7j3X0o/s7AJWbTLgtKU1Spuvo
+lMJJeSdd31u2fmpW+6vb44+86CdISxxADUBuG5PSJGtKkxThODql8M8ouhM8z3HXc9sYf9jt+YWK
+2SyOd5wtr8pmAARZfTwLwIRbiGF0RuGffy6L3KC2sLC+Hf3p0I79+3UFe7bx8pqth2S2acMZAEUy
+4dalw+iIwp2r6+h+8IJ1v+Pn8P28k4cKTD7l+mucy5YepswEMwAqZMIto7PoiMI/hZ50fU/Rx248
+5DaTbY0bp7K9uwe9smopIwBtcvh2OhfRCYV7hRYSWRDUuvdQeGlJZqvc7uJjKBvPlZksA6Cv9h8n
+3JZNuE3L0WllKPKk6weq8wfaePhJas8HW+HGE2XjfWXjcozOmQaAl5lwe6uj6HzCg+NCC4mMCWql
+mHyu+T0q1u7TUGaiDADmYsLteY5OK8X5ILovvEJQK9P971Gby5Otu5ZJ5vJYg3FFKoMarKZhXhzC
+mHB74Oi0UpxcRPeF1whqtfheLPf+J6nF9eieU5f1+0Zbu2+/+0ofqzo+FGf/MUetPNbMXXwU/QHy
+jN3F+S0tz21l/tD6y2fhziv/G6TXzwm3YXQ64btCT7p+JKhV7GFQs/n9FIDFHv849dPI53H0YpIM
+yjEJANvLP3xo+dmpKuv/Bc2173lxEuyiuxjV21npSVI7iQ4nfHdW8Aa1BUGtUd9/EZ38MH1/aGWF
+SW79uR+f/doLBXqcDnv86ehx1XZtHznM7/Fje++hH2yKcExhvx85zdFpBbkaRHeH1wlqfbX646Dq
+ybjqRd97zdZbV/b8+on7JHntPVm/s2qtDZRu/4cJsaWfPxfgdVtP5+E2rXrgV/3IaYPoaMITJ+We
+oPZAUANgTBIjwuPvdz+sWzc06aWV6L7YiavoaMJThS98vAtqFiQA9MTGwyj4xz1i0V9D8LwtCa5f
+erFddRgdTPhB6QsfFxYWBTWANvxUrWP55UXIULH1H3YuS3BtWIruVl04VESkLMUvfLwLapvRryYA
+09p/2GHqoEX4zw9zcNsOzavIfnTf6YQiIqUpfuHjwsL6dvTLCcBv7TwsWVwzPwbT2n1mCk4hk5L0
+4lNNEZHilL/w8S6orfixCaA8j3NmVi5CNusSXAn6sSjgODqV8IvT6E7xBrvLghpAAR5OPtyzlBHC
+SXDd2Yt+2J0YRmcSfnVZ/sLHBfX5AYJt96LYGbRAgktsOfqJdkMRkQKdD6K7xZso+wjQof+3v7//
+/01K5C8tLkpp0AClKGfRk5g2io4kPKeGhY93tlQTAUjrYZS28vTgaHkMeslxcC/qRUX+hYXr6EDC
+s46rWPi4sLBukxrATJ7Esfuh2Fb0BzpQjYcEt9bbwwT6shn3MjqQ8KyTg+ie8VZ7FlcDvG5j9aE6
+/sP8mEAGZLP4TIKL/ghMri9rDA6i8wgvOIruGm/myGuAH0xS2Zra+EApHo+D23tIcJsVJ7iN6Kbs
+zHl0HOEFNRyh9shJakCfjSfLNh/nykyVAdWprBTldnR7dWYYnUZ4yUkllUTuWfsI9Mb+466yPfU9
+gMatF1jIpD8/hx2qyV+uOo5Qe6TuI9AoaxgBfvFcKcoulletRt94h9TkL9jJRXT3mMbuUvTPKwDz
+23lcw3hfgTH6gxWgPosZS1Hu9GkRg5r8RTuraUJtYWFNORGgNju2lgF0Y/5CJmvRt9Cps+gkwmvO
+qynN/2B92ZQaULbHRYxiGUA5nktwv5Q+2OjZp7aa/IU7qmtCzZQaUJjJ3jKLGAFqNClFudSzkHbn
+ODqH8LraJtRMqQGhxDIAmnARHUP4neom1BYWFhV+BDoyKZC/JpYB0BRHXBevrpKPD3aXnKUGZLH/
+XyxTIB+Adg2jQwi/V9UZahNbK12cnwH0xP7q9rjuR/QnGwB0xBHXNTg5je4nM1FPBJjTxrhcvnkz
+AHrIEddVOL6O7igzsfgRmMWOdAZA35lOq8QouqfMaGtF5UfgbXbGVRrXFtejP7cAoACOuK7EVXW1
++SfWtm1TA14hnQHAL66j4wdvVWFt/ke7e7apAT8b12zcW+zfiaUA8Cam06pRY23+id0929SAMekM
+AN7CdFpFKi0l8mBdQRHosYeS+tIZALyV6bSajKpd+Ti2vqygCPSLA88AYEYH0cmDaZxXW0rkgdKP
+0AfjA8+kMwCYy3F08mAqlzWvfByT1KBVjyX1HXgGAAmYTqvMSa2HqP1HUoOWOPAMAHIwnVab2lc+
+jm0tqygCdZPOACAr02n1qbrm44Taj1Aj6QwAOmI6rUJ113ycWF9y8jVUYnzgmXQGAB0ynVaj82F0
+v0ljd29zJ3r4CbxoXFLfcdQAEMJ0WpWOG9ii9mBtW0kRKMvO6ubyspL6ABDKdFqlzlrYovZASREo
+wsb9edQmzwCgCKbTKnXSxha1B+t7NqpBlJ37A6ntPAOAophOq1YrW9QerTlRDbq1v7q8bPYMAApl
+Oq1e7WxRe7C+tBo9boUe2LgvDbIb/cIDAK8xnVazy3a2qD3YNakG2ayu2nwGANUwnVa1o4a2qD1y
+pBqkNZ4+WzN9BgB1MZ1Wt6ZqiXy3uKL8I8ztvjiI6TMAqNNldNBgPo3VEpnY3XOmGsxmY3Vlec3J
+ZwBQt+vomMG8zhurJfLd+tLmTvSAFyqitj4ANOQsOmUwt9aKPj6xpf4j/I7pMwBokOm0Fhy3VvTx
+qcVlUQ2eY/oMABp2FB0xSOGs5aAmqsFTijcCQA8cnkQnDJJoPKiJauDsMwDok1F0viCNNqvz/2hx
+WVkR+mh/1fJGAOgb02nN6ENQG5cV2VSsn76w/QwA+msYnS5Iph9BbWFhfc8R2DTtoXqj7WcA0Gvn
+0eGCdPoS1BYWdheXV62ApDHj6iB7ps8AgLGL6GhBSv0Jane29rZNq9GA1fvZM/EMAHjqODpZkFSv
+gpppNSq2v7q9vLToaGoA4FkH0bmCxHoW1Bbud6up108tVqUzAOAtzqJjBan1L6gtjItAWgJJuTZW
+N5eX15x7BgC82bWi/O3pZVC7syirUZL9cTjbM3UGAMzCGddNOruO7lhRZDVC7YyXNS4vmjkDAOZz
+qCh/m/ob1BZkNbo2mThz3BkAkMowOk+QydlBdN+Ktai2CFntr64uj+uBKKYPAOSgKH+zjnse1BbG
+x6up2U9KG+NzzmQzACA/RfkbdjWM7l4lWF9c3rQIktntjLOZDWcAQLcU5W/Z+bCfZR9/NV4EaWKN
+t1OpEQAIdagof9P6Wp//WeuLy6qL8Jp9Z5wBAIVQlL91vS77+IytNasg+cHquBzInnAGABRFUf7m
+qSbyK2Gt33buo9nyolWNAECpVBHpgXPVRJ61tbi8rXB/Tzwmsz3FQACAOlxGZwg6YJPay3YX95ZX
+Ta016C6YbT/MmSmhDwBU51oVkX44G0R3tbKtLy5Ja5Xbf5gxWxLMAIAGqCLSF8fWPv7eeG5tW/X+
+StzFsk25DABolCoivXFu7eNbbS0u3cW1jegcwlM7j7FsvI5R8Q8AoHWqiPTJmbqPU1lfXFteXpXX
+QtylstWVh7ofZssAgP5RRaRXroam1Gawu7i4tLwisGX0NJUpxwgAcKiKSL+cHDnzeh53KWJ5nNgU
+85/L/mMlRqkMAOB5p9G5ga4pJ5LI1uLi3l3U2BTanjWOYg/lF8fWFh9EPzQAgEocR6cGOncyMqWW
+3l1qu49t95Ntq32pGLlxf7ObT7OYrWQAAPMbRGcGIlxeRHe8fniYQnqcUXqYXqpwi9vjxNj2w23s
+mRcDAMjP4Wn9dG6XWrD1xYnlJ1ZWf5Ei1+3/+s9OYtdPlr5fliQGABDn0OFpfWWXGgAAFMrhaf11
+cjSI7n4AAMAzzqLDAoGcpQYAAAVyeFrPnaknAgAApbmIzgkEU08EAABKcxkdEwhn8SMAABTFskf+
+cZgaAAAUxbJHxk7OBtFdEQAAeGTZIw9sUwMAgEJcW/bIxNWppAYAAAUYRmcDSnKsoAgAAMSz7JEf
+XEpqAAAQTLVHfiapAQBALNUe+ZWkBgAAkSx75DmSGgAAhLHskRdIagAAEMSyR14kqQEAQIij6CxA
+yS6dpwYAAJ07PI9OApTNydcAANC1QXQMoHjnR4PobgoAAL0yig4BVODk7CK6owIAQI9cRUcA6nA5
+tPwRAAC6ca0qP290NRpEd1cAAOiFYfTgn4qcnF2o0w8AANldRg/9qcvx6SC6zwIAQONU5Wda5ybV
+AAAgK1X5mcGxnWoAAJCPqvzM5ORM+UcAAMjkOHq8T7WujpypBgAAGRyqys8crH8EAID0DqIH+lTu
+5FL9RwAASMv2NOZmqxoAACRlexopnItqAACQiu1ppCKqAQBAGrankdBdVBtEd2kAAKie7WmkpawI
+AADMy/Y0kjs5Hh1Ed2wAAKjX4Xn0mJ42XR1d2KwGAAAzGUQP52nX+ZkVkAAAMINh9Fieth2PLg6j
+OzkAAFTmLHocT/POz07tVgMAgLc7vIoexNMLx0fq9QMAwBtdO+Wajpwcj1QWAQCAN3DKNV2S1QAA
+4PdOowfu9I6sBgAAr1NGhAiyGgAAvEgZEeIcHw3VgQQAgF8oI0Ksq7PRgfPVAADgKWVEiHdyPDKx
+BgAA3w2jh+jw4OpydDGIfh8AAKAEyohQEmENAAAWFo6jB+bws7uwZhkkAAA9ptwjhTo/PhodqNwP
+AEAfDZR7pGRXx6NTaQ0AgJ5R7pEK3KW10cEg+mUBAICODKNH4PBW58dno6HJNQAA2ncUPfaGKT3E
+tUH0qwMAANlcRg+6YTYnx8ej0YXpNQAA2qPcI7W7y2tHo+GBOv4AADTj8Dx6lA2JnI8D2+mBGTYA
+AGqnLD8NuhonttHFwcFh9AsGAAAzGESPqCGru8h2NhqNBDYAACoyjB5GQ35X0e8ZAABM4zR6BA25
+XZlMAwCgLmfRY2jI60RZEQAAaiOn0bSTQfQrBgAA03J8Gk0bRL9hAAAwPTmNhg2j3y8AAJiFY65p
+lpQGAEClHHNNo0bR7xYAAMxKTqNJZ9FvFgAAzG4QPZ6G9KQ0AACqNoweUUNql9FvFQAAzGcYPaaG
+tK4Oo18qAACY0zB6VA0pSWkAADRgFD2uhnSkNAAAmnAWPbKGVKQ0AAAaIafRiJNB9MsEAACJyGk0
+QUoDAKAhchoNkNIAAGiKnEb1pDQAABojp1E5KQ0AgOZcRo+yYR5SGgAA7Tm8ih5nw+ykNAAAWiSn
+US8pDQCANslp1EpKAwCgVXIadZLSAABol5xGjaQ0AABadqguP9WR0gAAaJycRmWkNAAAmienURUp
+DQCAHpDTqIiUBgBAL8hpVENKAwCgJ+Q0KnE+iH5ZAACgI3IaVbg6jH5VAACgM6fR42/4PSkNAIBe
+GUaPwOF3pDQAAHpmGD0Gh9cdS2kAAPTN8CR6GA6vOIt+QwAAoHsDOY1ySWkAAPSSnEaxjqLfDgAA
+iDG4ih6Mw7OG0e8GAABEOZTTKJGUBgBAj8lplOfkIPq9AACAUGfRY3L40ckg+qUAAIBgchpFuRpE
+vxIAABBuGD0uh/9cOdQaAADkNApyJqUBAMCYA9QohEOtAQDgkQPUKIJC/AAA8J3C/MQ7kdIAAOCJ
+QwUfCaYQPwAA/OQoepROv11dR78CAABQnGH0OJ0+u1TiEQAAfqXgI2GUeAQAgGddKyRCDMVDAADg
+BYeX0cN1+ujkILrnAwBAwRQSoXNXg+huDwAARRtGj9npG8VDAADgNxQSoVNH0T0eAADKd6iQCJ05
+UTwEAADe4ix67E5fnA+iOzsAAFRiGD16px+ObUsDAIC3skGNDtiWBgAAU7BBjdxsSwMAgCnZoEZW
+TksDAICpDS18JB+npQEAwAwGFj6Sy2l07wYAgDodXkYP5mnTyUF03wYAgGqdRo/naZE6/AAAMIfB
+efSQnuaMons1AADUzcJH0rLgEQAA5mbhIwlZ8AgAAAlY+EgyFjwCAEASFj6ShgWPAACQzKmjrpmf
+BY8AAJCQo66ZmyOtAQAgqcOj6EE+dbsaRPdhAABozoWFj8zuzIJHAABI7/A4eqhPrU4uonsvAAA0
+yhFqzETtEAAAyEYlEaZ3onYIAADkNIoe81MbtUMAACCzg/PoYT9VGUX3WAAAaJ/S/Lzd+SC6vwIA
+QC+YUOONjtQOAQCAbhxeRg//qcH5QXRPBQCAHnHWNb9lKg0AADplQo3XmUoDAIDO2aHGK0ylAQBA
+ACUfeYmpNAAACGJCjWc5Kw0AAMIcjqIDAeW5GkT3SwAA6LXBVXQooCwnp9F9EgAAeu9UbX7+c3wd
+3SEBAICFa7X5eXRyEd0bAQCAexdKiTCmCj8AABRDbX7++edKFX4AACjJ4Dg6JBBL6RAAACjOUCmR
+Pjuz3hEAAMpj5WN/We8IAACFsvKxn6x3BACAgln52EPWOwIAQNEOR9GhgW4dW+8IAAClc9p1n5wP
+o/sbAADwBgdOu+6LkfWOAABQCVvUeuHsOrqjAQAAb2aLWvtsSgMAgMpcn0XHCHKyKQ0AACp04BS1
+Zp2MonsXAAAwE7VEGqVyCAAA1GsoqLVH5RAAAKja4UjRx7YcC2kAAFA7Qa0lyjsCAEATDhV9bISQ
+BgAAzVCdvwVq8AMAQFMEtdoJaQAA0BxBrWZCGgAANElQq5WQBgAAzRLUaiSkAQBA0wS12ghpAADQ
+PEGtJldCGgAA9MH1kQOv6+CcNAAA6I3DkaBWPiENAAB65fD0PDqF8KqzQXQfAQAAujYU1Ip1cnYd
+3T0AAIAIB8fRcYTnnIwOo7sGAAAQZaDsY3FU4AcAgJ67Vk2kKOqGAAAAC4c2qZXCljQAAODRwWV0
+QOGff85PbUkDAAC+c+R1tOOL6D4AAAAU5nB4FZ1U+stqRwAA4FnqPsa4GlrtCAAAvODwVDmRrp2p
+7QgAALzqwJRah5QNAQAA3sCUWkdOzgbRzxoAAKjF4Ezhx9zsSAMAAKZyODyOzjEtOz9S2hEAAJja
+9cjixzzOnJEGAADMyOLH9Cx2BAAA5nNxGZ1rWnI+stgRAACYm21qiZwfDaKfJQAA0Irr06vojFO7
+ExvSAACAtCS1OchoAABAFpLaTGQ0AAAgI0ltSjIaAACQ3fVQ7cc3Oj86iH5aAABAPxwOnaf2W1ej
+QfRzAgAAeuXi6Dw6CBXs8tT5aAAAQPcGpw5Ue8b52cVh9KMBAAB66/DizKTaU8eng+hnAgAA9J5J
+tUem0QAAgHJcHPW8UP+J3WgAAEBpDoe9Xf94rKgjAABQqOv+RbXjkbPRAACAsvUoqoloAABALQ6b
+36t2cqmkIwAAUJuD0eVJdJrK4upoqFwIAABQqevhUVPV+s8vrXMEAADqNzg9a2AJ5MnxyLFoAABA
+Qw5O651XO78cXVjmCAAAtGhwMTquqwzk8dnpgTk0AACgceOJtfKLi1xdji4G0U0FAADQmcOD4ei4
+yC1rJ8dno4NBdPsAAADEGByMjopJa8eXo6EljgAAAHeuD4ajs7Bta8fHR6MDhfYBAAB+dX1wMRod
+d5TXjo/PRqfiGQAAwJscjAPbWfrEdnx8PBqNDg4U2AcAAJjV4cHBwXB0H9qOpy4ReXX8EMxGFwfq
+ggAAAOQyOJgY/WT4/X9RCwQAAO79/4n0pKXjEV+MAAAAJXRFWHRkYXRlOmNyZWF0ZQAyMDIwLTEx
+LTEyVDEwOjQ2OjE2KzAwOjAwMa3k2wAAACV0RVh0ZGF0ZTptb2RpZnkAMjAyMC0xMS0xMlQxMDo0
+NjoxNyswMDowMOaHV9MAAAAZdEVYdFNvZnR3YXJlAEFkb2JlIEltYWdlUmVhZHlxyWU8AAAAAElF
+TkSuQmCC" />
+</svg>
diff --git a/example/static/spid/spid-idp-teamsystemid.svg b/example/static/spid/spid-idp-teamsystemid.svg
new file mode 100644
index 00000000..87a9904b
--- /dev/null
+++ b/example/static/spid/spid-idp-teamsystemid.svg
@@ -0,0 +1,410 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- Generator: Adobe Illustrator 26.2.0, SVG Export Plug-In . SVG Version: 6.00 Build 0)  -->
+<svg version="1.1" id="Livello_1" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" x="0px" y="0px"
+	 viewBox="0 0 219.2 30" style="enable-background:new 0 0 219.2 30;" xml:space="preserve">
+<style type="text/css">
+	.st0{enable-background:new    ;}
+	.st1{fill:#0090D1;}
+	.st2{fill:none;stroke:#0090D1;stroke-miterlimit:10;}
+	.st3{fill:#0090D1;stroke:#0090D1;stroke-width:0.3;stroke-miterlimit:10;}
+	
+		.st4{clip-path:url(#SVGID_00000133487098117880910290000005724759471769617063_);fill:url(#SVGID_00000119796250500852993160000012700664519295070121_);}
+	
+		.st5{clip-path:url(#SVGID_00000171718025371366103600000013126621550853174913_);fill:url(#SVGID_00000000219594378441445890000002404049244088866972_);}
+	
+		.st6{clip-path:url(#SVGID_00000090279921607307402700000015948709686229808518_);fill:url(#SVGID_00000095319389402680818750000003241865843864839860_);}
+	
+		.st7{clip-path:url(#SVGID_00000115498425241593638850000000462949633581221294_);fill:url(#SVGID_00000007426582632593461130000007614657255122612643_);}
+	
+		.st8{clip-path:url(#SVGID_00000107590624900073826070000018237020667454022558_);fill:url(#SVGID_00000055665856015188284250000002841184200773674901_);}
+	
+		.st9{clip-path:url(#SVGID_00000068636014668072431900000001843995982696346046_);fill:url(#SVGID_00000129189393481203215950000017994868679553377181_);}
+	
+		.st10{clip-path:url(#SVGID_00000110431429662464524830000007145976179065214373_);fill:url(#SVGID_00000104679131803436834120000015015502035762179752_);}
+	
+		.st11{clip-path:url(#SVGID_00000160155924072516481850000005314106354803135379_);fill:url(#SVGID_00000131342676767950283920000009049908015885989548_);}
+	
+		.st12{clip-path:url(#SVGID_00000091002810046255775500000002921771924551141801_);fill:url(#SVGID_00000049215384130010171940000002699532587897710512_);}
+	
+		.st13{clip-path:url(#SVGID_00000168099896941413748740000013656928941556947124_);fill:url(#SVGID_00000155848371908808281940000011964003223165120918_);}
+	
+		.st14{clip-path:url(#SVGID_00000173863094193522995940000005416442639032512902_);fill:url(#SVGID_00000013159118689180233510000011929444875067725207_);}
+	
+		.st15{clip-path:url(#SVGID_00000122703223084562760820000014031733021537737113_);fill:url(#SVGID_00000078013213881836487680000006403733807591101112_);}
+	
+		.st16{clip-path:url(#SVGID_00000088117037981360934640000014113943421369738674_);fill:url(#SVGID_00000025442441712104107240000012268760179308704904_);}
+	
+		.st17{clip-path:url(#SVGID_00000039828356498581988590000006730245541844260485_);fill:url(#SVGID_00000048472008005725650860000000115566521082848436_);}
+	.st18{fill:#2B66AE;}
+	.st19{fill:#2965AE;}
+	.st20{fill:none;stroke:#0E8FCF;stroke-width:2.5;stroke-miterlimit:10;}
+</style>
+<g>
+	<g class="st0">
+		<path class="st1" d="M147.9,9.2h1.8v14h-1.8V9.2z"/>
+		<path class="st1" d="M156.9,9.2c4.5,0,6.9,2.3,6.9,7c0,4.9-2.4,7-7.2,7h-3.8v-14H156.9z M154.6,10.9v10.8h2.4
+			c3.5,0,4.9-1.8,4.9-5.4c0-3.5-1.4-5.4-4.9-5.4H154.6z"/>
+	</g>
+	<g class="st0">
+		<path class="st2" d="M147.9,9.2h1.8v14h-1.8V9.2z"/>
+		<path class="st2" d="M156.9,9.2c4.5,0,6.9,2.3,6.9,7c0,4.9-2.4,7-7.2,7h-3.8v-14H156.9z M154.6,10.9v10.8h2.4
+			c3.5,0,4.9-1.8,4.9-5.4c0-3.5-1.4-5.4-4.9-5.4H154.6z"/>
+	</g>
+	<g>
+		<polygon class="st3" points="44.9,10.9 44.9,10.8 44.9,9.1 44.9,9.1 44.8,9.1 34.5,9.1 34.4,9.1 34.4,9.1 34.4,10.8 34.4,10.9 
+			34.5,10.9 38.7,10.9 38.7,23.2 38.7,23.3 38.8,23.3 40.6,23.3 40.6,23.3 40.6,23.2 40.6,10.9 44.8,10.9 		"/>
+		<path class="st3" d="M48.7,12.6c-2.9,0-4.7,2.2-4.7,5.5c0,3.4,1.7,5.4,4.8,5.4c1.5,0,2.8-0.5,3.9-1.4h0.1V22l-0.7-1.2v-0.1
+			L52,20.8c-1.1,0.7-2,1.1-3,1.1c-2.3,0-2.9-1.7-2.9-3.2h6.6h0.1v-0.1c0-0.2,0-0.7,0-0.9C52.8,14.3,51.4,12.6,48.7,12.6 M45.9,17.1
+			c0.1-0.6,0.4-2.9,2.8-2.9c1.5,0,2.3,1,2.3,2.9H45.9z"/>
+		<path class="st3" d="M58.7,12.6c-1.4,0-2.9,0.6-3.9,1.5l-0.1,0.1v0.1l0.8,1.1v0.1h0.1c0.9-0.7,1.7-1.1,2.9-1.1
+			c1.3,0,2.1,0.8,2.1,2.1v0.9c-0.5-0.1-1-0.1-1.5-0.1c-4.3,0-4.8,2.3-4.8,3.3c0,1.9,1.2,3.1,3.1,3.1c1.5,0,2.6-0.6,3.3-1.8l0.1,1.5
+			v0.1h0.1h1.4h0.1v-0.3v-6.9C62.5,13.9,61.1,12.6,58.7,12.6 M60.6,18.7V19c0,1.3-1.2,2.9-2.7,2.9c-1.1,0-1.7-0.5-1.7-1.5
+			c0-1.3,0.9-1.9,2.9-1.9C59.9,18.7,60.3,18.7,60.6,18.7"/>
+		<path class="st3" d="M75.5,12.6c-1.5,0-2.5,0.8-3.2,1.6c-0.4-1.1-1.2-1.6-2.5-1.6c-1.2,0-2.2,0.5-3.1,1.6l-0.1-1.3v-0.1h-0.1H65
+			h-0.1v0.1v10.3v0.1H65h1.7h0.1v-0.1v-7.4c0.6-0.7,1.5-1.5,2.5-1.5s1.4,0.6,1.4,2.1v6.8v0.1h0.1h1.7h0.1v-0.1v-7.4
+			c0.6-0.7,1.4-1.4,2.4-1.4s1.4,0.6,1.4,2v6.8v0.1h0.1h1.7h0.1v-0.1v-7.1C78.3,13.8,77.4,12.6,75.5,12.6"/>
+		<path class="st3" d="M86,15.2c-2.3-0.8-3.4-1.2-3.4-2.7c0-1.3,1-2,2.6-2c1.3,0,2.5,0.6,3.4,1.6l0.1,0.1l0.1-0.1l1-1.1v-0.1v-0.1
+			c-1.2-1.4-2.7-2-4.6-2c-2.8,0-4.6,1.5-4.6,3.9c0,2.1,1.1,3.1,4.2,4.1c2.5,0.8,3.1,1.3,3.1,2.7c0,1.4-1.1,2.3-2.8,2.3
+			c-1.3,0-2.6-0.6-3.9-1.8l-0.1-0.1L81,20l-1,1.2v0.1v0.1c1.3,1.4,3.1,2.2,5,2.2c2.9,0,4.8-1.6,4.8-4.2C89.8,17.2,88.9,16.2,86,15.2
+			"/>
+		<path class="st3" d="M97.6,12.9L97.6,12.9L97.6,12.9L95,21l-2.6-8v-0.1h-0.1h-1.8h-0.1V13L94,23.2l-0.2,0.5c-0.6,1.7-1,2-1.7,2
+			c-0.6,0-1.2-0.1-1.3-0.2h-0.1v0.1l-0.2,1.2v0.1h0.1c0.6,0.2,1.1,0.2,1.8,0.2c2.1,0,2.5-1.1,3.4-3.9l3.6-10.4v-0.1h-0.1h-1.7
+			L97.6,12.9L97.6,12.9z"/>
+		<path class="st3" d="M104.8,17.2c-1.8-0.5-2.4-0.8-2.4-1.7c0-0.8,0.7-1.3,1.9-1.3c1,0,2,0.4,2.8,1.2l0.1,0.1l0.1-0.1l0.8-1v-0.1
+			l-0.1-0.1c-1-1-2.3-1.6-3.8-1.6c-2.3,0-3.7,1.2-3.7,3.1c0,1.6,0.9,2.5,3.3,3.1c1.8,0.5,2.3,0.8,2.3,1.7c0,0.9-0.8,1.4-2.1,1.4
+			c-1,0-2.1-0.5-3.1-1.3l-0.1-0.1l-0.1,0.1l-0.8,1.1v0.1l0,0c1,1.1,2.6,1.7,4.2,1.7c2.4,0,3.9-1.2,3.9-3.3
+			C108.1,18.7,107.2,17.8,104.8,17.2"/>
+		<path class="st3" d="M114.1,21.8L114.1,21.8l-0.1-0.1c-0.3,0.1-0.5,0.2-0.9,0.2c-0.5,0-0.7-0.2-0.7-0.8v-6.7h1.6h0.1v-0.1v-1.4
+			v-0.1H114h-1.6V10V9.9h-0.1h-1.4h-0.1V10l-0.2,2.8l-1.2,0.3h-0.1v0.1v1.1v0.1h0.1h1.2v7c0,1.4,0.6,2.1,1.9,2.1
+			c0.6,0,1.3-0.1,1.8-0.3h0.1v-0.1L114.1,21.8z"/>
+		<path class="st3" d="M120.1,12.6c-2.9,0-4.7,2.2-4.7,5.5c0,3.4,1.7,5.4,4.8,5.4c1.5,0,2.8-0.5,3.9-1.4h0.1V22l-0.7-1.2v-0.1
+			l-0.1,0.1c-1.1,0.7-2,1.1-3,1.1c-2.3,0-2.9-1.7-2.9-3.2h6.8h0.1v-0.1c0-0.2,0-0.7,0-0.9C124.3,14.3,122.9,12.6,120.1,12.6
+			 M117.4,17.1c0.1-0.6,0.4-2.9,2.8-2.9c1.5,0,2.3,1,2.3,2.9H117.4z"/>
+		<path class="st3" d="M136.9,12.6c-1.5,0-2.5,0.8-3.2,1.6c-0.4-1.1-1.2-1.6-2.5-1.6c-1.2,0-2.2,0.5-3.1,1.6l-0.1-1.3v-0.1h-0.1
+			h-1.5h-0.1v0.1v10.3v0.1h0.1h1.7h0.1v-0.1v-7.4c0.6-0.7,1.5-1.5,2.5-1.5s1.4,0.6,1.4,2.1v6.8v0.1h0.1h1.7h0.1v-0.1v-7.4
+			c0.6-0.7,1.4-1.4,2.4-1.4s1.4,0.6,1.4,2v6.8v0.1h0.1h1.7h0.1v-0.1v-7.1C139.7,13.8,138.7,12.6,136.9,12.6"/>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_1_" d="M17.1,22.8C17,23.1,17,23.1,17,23.1l7.2,2.3c0,0,0.2-0.2,0.4-0.4c0.1-0.2,0.2-0.3,0.2-0.3l-7.6-2.4
+							C17.2,22.4,17.2,22.6,17.1,22.8"/>
+					</defs>
+					<clipPath id="SVGID_00000041976544197139447670000002673184266222257809_">
+						<use xlink:href="#SVGID_1_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000132085851851957405440000004719417871508315798_" gradientUnits="userSpaceOnUse" x1="-558.7468" y1="-342.695" x2="-558.4404" y2="-342.695" gradientTransform="matrix(25.3343 0 0 -25.3343 14172.4912 -8657.9873)">
+						<stop  offset="0" style="stop-color:#E62F72"/>
+						<stop  offset="0.1098" style="stop-color:#E62F72"/>
+						<stop  offset="0.8613" style="stop-color:#EC694A"/>
+						<stop  offset="1" style="stop-color:#EC694A"/>
+					</linearGradient>
+					
+						<rect x="17" y="22.4" style="clip-path:url(#SVGID_00000041976544197139447670000002673184266222257809_);fill:url(#SVGID_00000132085851851957405440000004719417871508315798_);" width="7.8" height="3.1"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<polygon id="SVGID_00000098222717382479632330000002046751090888846485_" points="0.7,10.1 9.6,11.1 9.6,10.2 0.7,9 						"/>
+					</defs>
+					<clipPath id="SVGID_00000171696301722496260450000001872865272929005725_">
+						<use xlink:href="#SVGID_00000098222717382479632330000002046751090888846485_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000156586922669604951060000011553940657108326565_" gradientUnits="userSpaceOnUse" x1="-559.8045" y1="-341.3809" x2="-559.4982" y2="-341.3809" gradientTransform="matrix(28.9794 0 0 -28.9794 16223.5 -9882.9639)">
+						<stop  offset="0" style="stop-color:#119ED9"/>
+						<stop  offset="1" style="stop-color:#72BFEB"/>
+					</linearGradient>
+					
+						<rect x="0.7" y="9" style="clip-path:url(#SVGID_00000171696301722496260450000001872865272929005725_);fill:url(#SVGID_00000156586922669604951060000011553940657108326565_);" width="8.9" height="2.1"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<polygon id="SVGID_00000174569951917121541660000011555776339437551504_" points="0.7,16.5 0.7,17.3 9.6,16.5 9.6,15.8 						
+							"/>
+					</defs>
+					<clipPath id="SVGID_00000077291166954325434090000013647867906125638569_">
+						<use xlink:href="#SVGID_00000174569951917121541660000011555776339437551504_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000130608543508958568370000016098288047688671916_" gradientUnits="userSpaceOnUse" x1="-559.8045" y1="-340.8685" x2="-559.4982" y2="-340.8685" gradientTransform="matrix(28.9794 0 0 -28.9794 16223.5 -9861.6143)">
+						<stop  offset="0" style="stop-color:#119ED9"/>
+						<stop  offset="1" style="stop-color:#007EC2"/>
+					</linearGradient>
+					
+						<rect x="0.7" y="15.8" style="clip-path:url(#SVGID_00000077291166954325434090000013647867906125638569_);fill:url(#SVGID_00000130608543508958568370000016098288047688671916_);" width="8.9" height="1.5"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000082359229655484603820000001284132348070107049_" d="M1.7,24.2c0,0,0.1,0.2,0.4,0.6
+							c0.2,0.2,0.3,0.3,0.3,0.3l7.6-3.2c0,0-0.1-0.2-0.1-0.5c-0.2-0.3-0.2-0.6-0.2-0.6L1.7,24.2z"/>
+					</defs>
+					<clipPath id="SVGID_00000059998683262859250360000015719055639793649841_">
+						<use xlink:href="#SVGID_00000082359229655484603820000001284132348070107049_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000178927385416486005030000003311228537523825315_" gradientUnits="userSpaceOnUse" x1="-578.598" y1="-360.2536" x2="-578.2917" y2="-360.2536" gradientTransform="matrix(12.6038 -14.0963 -14.0963 -12.6038 2218.0195 -12671.334)">
+						<stop  offset="0" style="stop-color:#1B61AB"/>
+						<stop  offset="1" style="stop-color:#007EC2"/>
+					</linearGradient>
+					
+						<polygon style="clip-path:url(#SVGID_00000059998683262859250360000015719055639793649841_);fill:url(#SVGID_00000178927385416486005030000003311228537523825315_);" points="
+						-0.4,23.2 5.4,16.7 12.1,22.7 6.3,29.2 					"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000072975142732248903570000006656384413969793447_" d="M16.8,17.4c0,0,0.1,0.4,0.1,0.6s8.1-1.2,8.1-1.2
+							s-0.1-0.5-0.1-0.7c0,0,0,0-0.1,0C23.8,16.2,16.8,17.4,16.8,17.4"/>
+					</defs>
+					<clipPath id="SVGID_00000168797412732620182370000006499921009983264190_">
+						<use xlink:href="#SVGID_00000072975142732248903570000006656384413969793447_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000021089873595476839540000005167017487646974343_" gradientUnits="userSpaceOnUse" x1="-559.7703" y1="-342.2018" x2="-559.4639" y2="-342.2018" gradientTransform="matrix(26.841 0 0 -26.841 15041.6162 -9167.7891)">
+						<stop  offset="0" style="stop-color:#F8B133"/>
+						<stop  offset="5.202310e-02" style="stop-color:#F8B133"/>
+						<stop  offset="0.7399" style="stop-color:#EC694A"/>
+						<stop  offset="1" style="stop-color:#EC694A"/>
+					</linearGradient>
+					
+						<rect x="16.8" y="16.2" style="clip-path:url(#SVGID_00000168797412732620182370000006499921009983264190_);fill:url(#SVGID_00000021089873595476839540000005167017487646974343_);" width="8.2" height="2.1"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000157299222974337175410000009919884584535411333_" d="M15.9,9.6c-0.1,0.4-0.2,0.7-0.2,0.7l8.6,2.3
+							c0,0,0-0.2,0.1-0.5c0-0.1,0.1-0.2,0.1-0.2L16.2,9C16.2,9,16,9.2,15.9,9.6"/>
+					</defs>
+					<clipPath id="SVGID_00000129897797242192098410000001414624330946750851_">
+						<use xlink:href="#SVGID_00000157299222974337175410000009919884584535411333_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000091012496352055563820000007678719037180975022_" gradientUnits="userSpaceOnUse" x1="-560.6643" y1="-341.6606" x2="-560.358" y2="-341.6606" gradientTransform="matrix(28.4324 0 0 -28.4324 15956.749 -9703.4297)">
+						<stop  offset="0" style="stop-color:#F8B133"/>
+						<stop  offset="0.1619" style="stop-color:#F8B133"/>
+						<stop  offset="0.8497" style="stop-color:#FFD631"/>
+						<stop  offset="1" style="stop-color:#FFD631"/>
+					</linearGradient>
+					
+						<rect x="15.7" y="9" style="clip-path:url(#SVGID_00000129897797242192098410000001414624330946750851_);fill:url(#SVGID_00000091012496352055563820000007678719037180975022_);" width="8.7" height="3.6"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000031182766530577229650000016705351448279257775_" d="M7.9,2.8c-4.7,0-7.2,1.9-7.2,5.9v0.8l9.2,1.1h2.2
+							V6.1H9.7V2.7L7.9,2.8L7.9,2.8z"/>
+					</defs>
+					<clipPath id="SVGID_00000181071975454429875570000002859947784556963765_">
+						<use xlink:href="#SVGID_00000031182766530577229650000016705351448279257775_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000088130422079972732250000014320173721332849041_" gradientUnits="userSpaceOnUse" x1="-563.573" y1="-337.7616" x2="-563.2667" y2="-337.7616" gradientTransform="matrix(36.9328 0 0 -36.9328 20815.0273 -12467.7324)">
+						<stop  offset="0" style="stop-color:#119ED9"/>
+						<stop  offset="1" style="stop-color:#72BFEB"/>
+					</linearGradient>
+					
+						<rect x="0.7" y="2.8" style="clip-path:url(#SVGID_00000181071975454429875570000002859947784556963765_);fill:url(#SVGID_00000088130422079972732250000014320173721332849041_);" width="11.3" height="7.9"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<polygon id="SVGID_00000108279773351103307980000016546123255167231404_" points="0.7,16.9 9.6,16.2 9.6,10.7 9.6,10.6 
+							9.9,10.6 0.7,9.5 						"/>
+					</defs>
+					<clipPath id="SVGID_00000179647595428956816800000016588050923130517665_">
+						<use xlink:href="#SVGID_00000108279773351103307980000016546123255167231404_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000142894694908296858480000002124561073134759060_" gradientUnits="userSpaceOnUse" x1="-558.1475" y1="-342.7358" x2="-557.8412" y2="-342.7358" gradientTransform="matrix(26.5555 0 0 -26.5555 14821.8916 -9088.3213)">
+						<stop  offset="0" style="stop-color:#119ED9"/>
+						<stop  offset="1" style="stop-color:#007EC2"/>
+					</linearGradient>
+					
+						<rect x="0.7" y="9.5" style="clip-path:url(#SVGID_00000179647595428956816800000016588050923130517665_);fill:url(#SVGID_00000142894694908296858480000002124561073134759060_);" width="9.2" height="7.4"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000059267636151434387110000013736406280082608545_" d="M2.1,24.8c1.4,2,3.6,3.2,6.3,3.7c0,0,5-1.2,6.5-4.3
+							c-0.3,0.1-1,0.1-1.4,0.1c-2.3,0-3.3-1.2-3.8-2.8L2.1,24.8z"/>
+					</defs>
+					<clipPath id="SVGID_00000011743311057861888570000012118129199084503202_">
+						<use xlink:href="#SVGID_00000059267636151434387110000013736406280082608545_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000133492047903829730370000011691663333417664135_" gradientUnits="userSpaceOnUse" x1="-543.0883" y1="-327.978" x2="-542.782" y2="-327.978" gradientTransform="matrix(15.9616 12.1308 12.1308 -15.9616 12653.8701 1376.5751)">
+						<stop  offset="0" style="stop-color:#1B61AB"/>
+						<stop  offset="1" style="stop-color:#164193"/>
+					</linearGradient>
+					
+						<polygon style="clip-path:url(#SVGID_00000011743311057861888570000012118129199084503202_);fill:url(#SVGID_00000133492047903829730370000011691663333417664135_);" points="
+						6.8,15.2 18.3,24 10.3,34.7 -1.3,25.9 					"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000058572177511161166350000005623362291415015054_" d="M0.7,16.9v3.2c0,1.9,0.5,3.5,1.4,4.7l7.7-3.3
+							c-0.2-0.7-0.2-1.6-0.2-2.4v-2.9L0.7,16.9z"/>
+					</defs>
+					<clipPath id="SVGID_00000108275689721643275330000010079006511989915288_">
+						<use xlink:href="#SVGID_00000058572177511161166350000005623362291415015054_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000042713408021384358430000000934080722328540808_" gradientUnits="userSpaceOnUse" x1="-578.262" y1="-350.0976" x2="-577.9556" y2="-350.0976" gradientTransform="matrix(17.6351 -19.7235 -19.7235 -17.6351 3295.0139 -17555.6738)">
+						<stop  offset="0" style="stop-color:#1B61AB"/>
+						<stop  offset="1" style="stop-color:#007EC2"/>
+					</linearGradient>
+					
+						<polygon style="clip-path:url(#SVGID_00000108275689721643275330000010079006511989915288_);fill:url(#SVGID_00000042713408021384358430000000934080722328540808_);" points="
+						-3.5,21 4.8,11.7 14.1,20 5.8,29.3 					"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000005957230594968058040000018289886910673517199_" d="M21.4,6.1c-2.8,0-4.8,1.4-5.5,3.5l8.5,2.5
+							c0.3-1.1,1.3-1.5,2.7-1.5V6.1H21.4z"/>
+					</defs>
+					<clipPath id="SVGID_00000106843983964405696810000003266461301598519211_">
+						<use xlink:href="#SVGID_00000005957230594968058040000018289886910673517199_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000047058161950219048000000006855432853022865537_" gradientUnits="userSpaceOnUse" x1="-564.3522" y1="-337.7784" x2="-564.0458" y2="-337.7784" gradientTransform="matrix(36.4954 0 0 -36.4954 20612.1602 -12318.2559)">
+						<stop  offset="0" style="stop-color:#F8B133"/>
+						<stop  offset="0.1619" style="stop-color:#F8B133"/>
+						<stop  offset="0.8497" style="stop-color:#FFD631"/>
+						<stop  offset="1" style="stop-color:#FFD631"/>
+					</linearGradient>
+					
+						<rect x="15.9" y="6.1" style="clip-path:url(#SVGID_00000106843983964405696810000003266461301598519211_);fill:url(#SVGID_00000047058161950219048000000006855432853022865537_);" width="11.2" height="6"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000062883352264132124810000000262496028590534325_" d="M15.8,12.8c0.4,1.9,0.8,3.4,1.1,4.9l8.1-1.2
+							c-0.3-1.4-0.6-2.7-0.6-3c-0.1-0.6-0.1-1,0-1.4l-8.5-2.5C15.6,10.6,15.5,11.7,15.8,12.8"/>
+					</defs>
+					<clipPath id="SVGID_00000127731456843985289130000015988125174825391790_">
+						<use xlink:href="#SVGID_00000062883352264132124810000000262496028590534325_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000177447984833154066330000016831682484104803261_" gradientUnits="userSpaceOnUse" x1="-561.8172" y1="-340.1906" x2="-561.5109" y2="-340.1906" gradientTransform="matrix(30.5656 0 0 -30.5656 17187.8867 -10384.4775)">
+						<stop  offset="0" style="stop-color:#F8B133"/>
+						<stop  offset="5.202310e-02" style="stop-color:#F8B133"/>
+						<stop  offset="0.7399" style="stop-color:#EC694A"/>
+						<stop  offset="1" style="stop-color:#EC694A"/>
+					</linearGradient>
+					
+						<rect x="15.5" y="9.6" style="clip-path:url(#SVGID_00000127731456843985289130000015988125174825391790_);fill:url(#SVGID_00000177447984833154066330000016831682484104803261_);" width="9.5" height="8.1"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000003808562646140379420000001602281668995939970_" d="M11.4,28.4l0.1,0.3c0.3,0,1.1,0,2.8,0
+							c3.9,0,8.2-0.9,10.2-3.8L17,22.7C16.6,25.3,14.8,27.2,11.4,28.4"/>
+					</defs>
+					<clipPath id="SVGID_00000047049523498837651270000014146034538676745347_">
+						<use xlink:href="#SVGID_00000003808562646140379420000001602281668995939970_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000002373756593949233530000010647796573859801279_" gradientUnits="userSpaceOnUse" x1="-590.0789" y1="-346.9878" x2="-589.7726" y2="-346.9878" gradientTransform="matrix(6.8759 -23.9024 -23.9024 -6.8759 -4220.0908 -16458.6934)">
+						<stop  offset="0" style="stop-color:#C2006B"/>
+						<stop  offset="0.8902" style="stop-color:#E62F72"/>
+						<stop  offset="1" style="stop-color:#E62F72"/>
+					</linearGradient>
+					
+						<polygon style="clip-path:url(#SVGID_00000047049523498837651270000014146034538676745347_);fill:url(#SVGID_00000002373756593949233530000010647796573859801279_);" points="
+						9.9,28.4 12.5,19.3 26.2,23.3 23.6,32.3 					"/>
+				</g>
+			</g>
+		</g>
+		<g>
+			<g>
+				<g>
+					<defs>
+						<path id="SVGID_00000172403250922139048820000012271209432173922188_" d="M16.9,17.7c0.2,1.2,0.4,2.4,0.4,3.8
+							c0,0.5,0,0.9-0.1,1.4l7.5,2.2c0.7-1,1.1-2.2,1.1-3.7c0-1.1-0.4-3.1-0.7-4.9L16.9,17.7z"/>
+					</defs>
+					<clipPath id="SVGID_00000099637313568255601500000015254607653514647169_">
+						<use xlink:href="#SVGID_00000172403250922139048820000012271209432173922188_"  style="overflow:visible;"/>
+					</clipPath>
+					
+						<linearGradient id="SVGID_00000030457155148916870820000018225999514751060667_" gradientUnits="userSpaceOnUse" x1="-563.8497" y1="-345.4606" x2="-563.5432" y2="-345.4606" gradientTransform="matrix(25.7551 -5.6134 -5.6134 -25.7551 12600.127 -12040.8203)">
+						<stop  offset="0" style="stop-color:#E62F72"/>
+						<stop  offset="0.1098" style="stop-color:#E62F72"/>
+						<stop  offset="0.8613" style="stop-color:#EC694A"/>
+						<stop  offset="1" style="stop-color:#EC694A"/>
+					</linearGradient>
+					
+						<polygon style="clip-path:url(#SVGID_00000099637313568255601500000015254607653514647169_);fill:url(#SVGID_00000030457155148916870820000018225999514751060667_);" points="
+						15.1,16.9 25.3,14.7 27.5,24.7 17.3,26.9 					"/>
+				</g>
+			</g>
+		</g>
+	</g>
+	<g>
+		<g>
+			<path class="st18" d="M194.5,26.9c0-4.1,0-8.1,0-12.2c0-0.3,0.1-0.4,0.4-0.4c0.5,0,1,0,1.5,0c0.3,0,0.5,0,0.5,0.4
+				c0.5-0.2,0.9-0.5,1.4-0.6c1.9-0.3,3.5,0.5,3.9,2.6c0.2,1.2,0.3,2.5,0,3.7c-0.3,1.9-1.4,2.8-3.4,2.9c-0.5,0-1.1,0-1.6-0.1
+				c-0.2,0-0.4-0.1-0.4,0.3c0,1.1-0.1,2.2,0,3.4C196.1,26.9,195.3,26.9,194.5,26.9z M196.8,18.9c0,0.7,0,1.3,0,2
+				c0,0.3,0.1,0.4,0.3,0.4c0.4,0,0.8,0.1,1.2,0c0.8-0.1,1.2-0.4,1.4-1.2c0.2-0.8,0.2-1.6,0.1-2.5c-0.2-1.1-0.8-1.6-1.9-1.4
+				c-0.3,0-0.5,0.1-0.7,0.2c-0.3,0.1-0.4,0.2-0.4,0.5C196.8,17.6,196.8,18.2,196.8,18.9z"/>
+			<path class="st18" d="M218.7,16.9c0,1.9,0,3.8,0,5.7c0,0.3-0.1,0.5-0.4,0.5c-0.4,0-0.9,0-1.3,0c-0.2,0-0.5,0.1-0.6-0.2
+				c-0.1-0.2-0.3,0-0.4,0.1c-0.9,0.4-1.8,0.5-2.7,0.3c-1.1-0.2-1.8-0.8-2.1-1.9c-0.5-1.6-0.5-3.3,0-4.9c0.5-1.8,2-2.4,3.7-2.3
+				c0.4,0,0.8,0.1,1.1,0.2c0.4,0.1,0.5-0.1,0.5-0.4c0-0.9,0-1.8,0-2.7c0-0.3,0.1-0.4,0.4-0.4c0.5,0,1,0,1.6,0c0.3,0,0.4,0.1,0.4,0.4
+				C218.7,13.1,218.7,15,218.7,16.9z M216.3,18.6c0-0.3,0-0.7,0-1c0-1.5,0-1.5-1.6-1.5c-0.7,0-1.1,0.2-1.3,0.9
+				c-0.4,1.1-0.3,2.3,0,3.4c0.1,0.4,0.4,0.7,0.8,0.7c0.6,0,1.2,0,1.8-0.2c0.2-0.1,0.3-0.2,0.3-0.4C216.3,20,216.3,19.3,216.3,18.6z"
+				/>
+			<path class="st18" d="M192.5,16.5c-1.2-0.1-2.2-0.3-3.3-0.3c-0.7,0-1.2,0.2-1.2,0.6c0,0.7,0.6,0.6,1,0.7c0.7,0.2,1.5,0.2,2.3,0.5
+				c1,0.4,1.5,1,1.5,2.1c0,0.8,0,1.5-0.6,2.2s-1.5,0.9-2.4,1c-1.2,0.1-2.5-0.1-3.7-0.3c-0.3,0-0.4-0.2-0.3-0.4c0-0.4,0-0.8,0-1.1
+				c-0.1-0.5,0.2-0.5,0.6-0.4c1,0.2,2,0.2,2.9,0.2c0.7,0,1-0.2,1.1-0.6c0-0.6-0.5-0.6-0.9-0.7c-0.7-0.2-1.4-0.2-2.1-0.4
+				c-1.3-0.4-1.7-1-1.8-2.2c-0.1-1.3,0.5-2.2,1.5-2.7c1.1-0.5,2.2-0.4,3.3-0.3c0.6,0.1,1.1,0.2,1.7,0.3c0.2,0,0.4,0.1,0.4,0.4
+				C192.4,15.4,192.5,15.9,192.5,16.5z"/>
+			<path class="st19" d="M204,16.8c0-1.5,1.1-2.5,2.6-2.4c1.4,0,2.5,1.1,2.4,2.6c0,1.5-1.1,2.5-2.6,2.5C205,19.4,204,18.3,204,16.8z
+				"/>
+			<path class="st18" d="M206.5,23c-0.7,0-1.4,0-2,0c-0.5,0-0.5-0.2-0.4-0.5c0.1-1,0.9-1.8,2.1-2c1.1-0.2,2.1,0.3,2.6,1.3
+				c0.5,1.1,0.4,1.3-0.7,1.3C207.5,23,207,23,206.5,23L206.5,23z"/>
+		</g>
+	</g>
+	<line class="st20" x1="174.6" y1="0.5" x2="174.6" y2="29.9"/>
+</g>
+</svg>
diff --git a/example/static/spid/spid-idp-timid.svg b/example/static/spid/spid-idp-timid.svg
old mode 100644
new mode 100755
diff --git a/example/static/spid/spid-idps.js b/example/static/spid/spid-idps.js
index 0e6b0e11..90b78696 100644
--- a/example/static/spid/spid-idps.js
+++ b/example/static/spid/spid-idps.js
@@ -16,7 +16,8 @@ const idps = [
   {"entityName": "Poste ID", "entityID": "https://posteid.poste.it", "logo": "spid/spid-idp-posteid.svg"},
   {"entityName": "Sielte ID", "entityID": "https://identity.sieltecloud.it", "logo": "spid/spid-idp-sielteid.svg"},
   {"entityName": "SPIDItalia Register.it", "entityID": "https://spid.register.it", "logo": "spid/spid-idp-spiditalia.svg"},
-  {"entityName": "Tim ID", "entityID": "https://login.id.tim.it/affwebservices/public/saml2sso", "logo": "spid/spid-idp-timid.svg"}
+  {"entityName": "Tim ID", "entityID": "https://login.id.tim.it/affwebservices/public/saml2sso", "logo": "spid/spid-idp-timid.svg"},
+  {"entityName": "TeamSystem ID", "entityID": "https://spid.teamsystem.com/idp", "logo": "spid/spid-idp-teamsystemid.svg"}
 ].sort(() => Math.random() - 0.5)
 
 // ** Values **
diff --git a/gallery/docker-design.svg b/gallery/docker-design.svg
new file mode 100644
index 00000000..3cf98d39
--- /dev/null
+++ b/gallery/docker-design.svg
@@ -0,0 +1,390 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!-- Created with Inkscape (http://www.inkscape.org/) -->
+
+<svg
+   width="800"
+   height="300"
+   viewBox="0 0 211.66666 79.375"
+   version="1.1"
+   id="svg28"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:svg="http://www.w3.org/2000/svg">
+  <defs
+     id="defs25">
+    <marker
+       style="overflow:visible"
+       id="marker20318"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path20316" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="TriangleStart"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path135" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="TriangleStart-0"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path135-3" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="marker20318-6"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path20316-1" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="TriangleStart-6"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path135-32" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="marker20318-0"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path20316-6" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="TriangleStart-6-5"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path135-32-5" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="marker20318-0-4"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path20316-6-7" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="TriangleStart-0-5"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path135-3-6" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="marker20318-6-9"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path20316-1-3" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="TriangleStart-6-7"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path135-32-4" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="marker20318-0-5"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path20316-6-2" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="TriangleStart-6-5-5"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path135-32-5-4" />
+    </marker>
+    <marker
+       style="overflow:visible"
+       id="marker20318-0-4-7"
+       refX="0"
+       refY="0"
+       orient="auto-start-reverse"
+       markerWidth="5.3244081"
+       markerHeight="6.155385"
+       viewBox="0 0 5.3244081 6.1553851"
+       preserveAspectRatio="xMidYMid">
+      <path
+         transform="scale(0.5)"
+         style="fill:context-stroke;fill-rule:evenodd;stroke:context-stroke;stroke-width:1pt"
+         d="M 5.77,0 -2.88,5 V -5 Z"
+         id="path20316-6-7-4" />
+    </marker>
+  </defs>
+  <g
+     id="layer1">
+    <path
+       d="m 121.99583,29.152929 c -2.52873,0 -4.58468,2.055942 -4.58468,4.58468 v 4.584679 c 0,2.528738 2.05595,4.58468 4.58468,4.58468 h 27.50808 c 2.52874,0 4.58467,-2.055942 4.58467,-4.58468 v -4.584679 c 0,-2.528738 -2.05593,-4.58468 -4.58467,-4.58468 z m 20.05798,8.596275 c -0.95276,0 -1.71926,-0.766501 -1.71926,-1.719256 0,-0.952753 0.7665,-1.719255 1.71926,-1.719255 0.95275,0 1.71925,0.766502 1.71925,1.719255 0,0.952755 -0.7665,1.719256 -1.71925,1.719256 z m 6.87701,-1.719256 c 0,0.952755 -0.7665,1.719256 -1.71925,1.719256 -0.95275,0 -1.71926,-0.766501 -1.71926,-1.719256 0,-0.952753 0.76651,-1.719255 1.71926,-1.719255 0.95275,0 1.71925,0.766502 1.71925,1.719255 z m -26.93499,11.4617 c -2.52873,0 -4.58468,2.055943 -4.58468,4.584682 v 4.584674 c 0,2.52874 2.05595,4.584684 4.58468,4.584684 h 27.50808 c 2.52874,0 4.58467,-2.055944 4.58467,-4.584684 V 52.07633 c 0,-2.528739 -2.05593,-4.584682 -4.58467,-4.584682 z m 20.05798,8.596279 c -0.95276,0 -1.71926,-0.766506 -1.71926,-1.71926 0,-0.952753 0.7665,-1.71925 1.71926,-1.71925 0.95275,0 1.71925,0.766497 1.71925,1.71925 0,0.952754 -0.7665,1.71926 -1.71925,1.71926 z m 7.4501,-1.71926 c 0,0.952754 -0.7665,1.71926 -1.71926,1.71926 -0.95275,0 -1.71925,-0.766506 -1.71925,-1.71926 0,-0.952753 0.7665,-1.71925 1.71925,-1.71925 0.95276,0 1.71926,0.766497 1.71926,1.71925 z"
+       id="path8105-8"
+       style="stroke-width:0.0716355" />
+    <path
+       id="path138"
+       style="fill:#62caca;stroke-width:0.264611;fill-opacity:1"
+       d="M 0.049092611 0 L 0.049092611 79.375 L 15.011487 79.375 A 5.4907393 15.02551 0 0 0 16.373678 75.926115 A 6.3363056 6.7838235 0 0 0 20.95376 69.411267 A 6.3363056 6.7838235 0 0 0 20.650936 67.341109 A 13.552896 10.768336 0 0 0 22.842533 64.45343 A 5.9642353 9.2009888 0 0 0 27.691333 55.41884 A 5.9642353 9.2009888 0 0 0 27.564726 53.534717 A 4.6175475 10.191626 0 0 0 30.132528 44.402974 A 4.6175475 10.191626 0 0 0 29.207003 38.282935 A 24.807627 14.981925 0 0 0 32.566488 30.774349 A 24.807627 14.981925 0 0 0 28.09906 22.199162 A 7.2395468 8.4743358 0 0 0 28.489734 19.471163 A 7.2395468 8.4743358 0 0 0 24.725623 12.038542 A 15.853206 15.742543 0 0 0 24.739575 11.663371 A 15.853206 15.742543 0 0 0 19.497001 0 L 0.049092611 0 z " />
+    <text
+       xml:space="preserve"
+       style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+       x="0.93844414"
+       y="5.1035638"
+       id="text4794"><tspan
+         id="tspan4792"
+         style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+         x="0.93844414"
+         y="5.1035638">Internet</tspan></text>
+    <path
+       id="path5316"
+       style="fill:#cecece;fill-opacity:1;stroke-width:0.264583"
+       d="M 68.379289 0 A 24.741014 49.194454 0 0 0 56.176416 42.391211 A 24.741014 49.194454 0 0 0 64.62913 79.375 L 97.210087 79.375 L 205.68357 79.375 L 211.57055 79.375 L 211.57055 0 L 125.3293 0 L 93.468197 0 L 68.379289 0 z " />
+    <text
+       xml:space="preserve"
+       style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+       x="70.401825"
+       y="5.1034827"
+       id="text4794-8"><tspan
+         id="tspan4792-7"
+         style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+         x="70.401825"
+         y="5.1034827">Docker</tspan></text>
+    <text
+       xml:space="preserve"
+       style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+       x="34.326866"
+       y="38.232296"
+       id="text4794-8-7"><tspan
+         id="tspan4792-7-8"
+         style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+         x="34.326866"
+         y="38.232296">80 - 443</tspan></text>
+    <text
+       xml:space="preserve"
+       style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+       x="77.416344"
+       y="29.870062"
+       id="text4794-8-2"><tspan
+         id="tspan4792-7-2"
+         style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+         x="77.416344"
+         y="29.870062">NGINX</tspan></text>
+    <text
+       xml:space="preserve"
+       style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+       x="182.73923"
+       y="20.922777"
+       id="text4794-8-2-8"><tspan
+         id="tspan4792-7-2-4"
+         style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+         x="182.73923"
+         y="20.922777">Mongo DB</tspan></text>
+    <text
+       xml:space="preserve"
+       style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+       x="121.08095"
+       y="12.521271"
+       id="text4794-8-2-1"><tspan
+         id="tspan4792-7-2-9"
+         style="font-style:normal;font-variant:normal;font-weight:bold;font-stretch:normal;font-size:4.58611px;font-family:sans-serif;-inkscape-font-specification:'sans-serif, Bold';font-variant-ligatures:normal;font-variant-caps:normal;font-variant-numeric:normal;font-variant-east-asian:normal;fill:#000000;fill-opacity:1;stroke-width:0.264583"
+         x="121.08095"
+         y="12.521271">Satosa-SAML2Spid</tspan></text>
+    <path
+       d="m 209.1555,28.777946 v 3.157773 c 0,2.907783 -6.59843,5.262955 -14.73627,5.262955 -8.13785,0 -14.73628,-2.355172 -14.73628,-5.262955 v -3.157773 c 0,-2.907782 6.59843,-5.262954 14.73628,-5.262954 8.13784,0 14.73627,2.355172 14.73627,5.262954 z m -3.60512,8.8615 c 1.36837,-0.486823 2.6249,-1.111799 3.60512,-1.881506 v 6.703689 c 0,2.907782 -6.59843,5.262954 -14.73627,5.262954 -8.13785,0 -14.73628,-2.355172 -14.73628,-5.262954 V 35.75794 c 0.98023,0.776286 2.23676,1.394683 3.60513,1.881506 2.95383,1.052591 6.88789,1.66441 11.13115,1.66441 4.24325,0 8.17731,-0.611819 11.13115,-1.66441 z m -25.86743,8.644404 c 0.98023,0.776285 2.23676,1.394683 3.60513,1.881506 2.95383,1.052591 6.88789,1.664409 11.13115,1.664409 4.24325,0 8.17731,-0.611818 11.13115,-1.664409 1.36837,-0.486823 2.6249,-1.111799 3.60512,-1.881506 v 5.651097 c 0,2.907783 -6.59843,5.262955 -14.73627,5.262955 -8.13785,0 -14.73628,-2.355172 -14.73628,-5.262955 z"
+       id="path8097"
+       style="stroke-width:0.0657869" />
+    <path
+       d="m 14.369843,35.390838 v 7.254554 H 4.006194 V 35.390838 Z M 4.006194,33.318108 c -1.1432398,0 -2.0727297,0.929491 -2.0727297,2.07273 v 7.254554 c 0,1.143239 0.9294899,2.07273 2.0727297,2.07273 H 7.8051187 L 7.4585842,45.754486 H 5.042559 c -0.5732393,0 -1.036365,0.463127 -1.036365,1.036365 0,0.573239 0.4631257,1.036365 1.036365,1.036365 h 8.290918 c 0.57324,0 1.036366,-0.463126 1.036366,-1.036365 0,-0.573238 -0.463126,-1.036365 -1.036366,-1.036365 h -2.419263 l -0.346535,-1.036364 h 3.802164 c 1.143239,0 2.072729,-0.929491 2.072729,-2.07273 v -7.254554 c 0,-1.143239 -0.92949,-2.07273 -2.072729,-2.07273 z m 15.027289,0 c -0.858239,0 -1.554546,0.696308 -1.554546,1.554548 v 11.400013 c 0,0.85824 0.696307,1.554547 1.554546,1.554547 h 2.07273 c 0.858242,0 1.554549,-0.696307 1.554549,-1.554547 V 34.872656 c 0,-0.85824 -0.696307,-1.554548 -1.554549,-1.554548 z m 0.518185,2.07273 h 1.036364 c 0.285,0 0.518181,0.233181 0.518181,0.518182 0,0.285 -0.233181,0.518183 -0.518181,0.518183 h -1.036364 c -0.285002,0 -0.518185,-0.233183 -0.518185,-0.518183 0,-0.285001 0.233183,-0.518182 0.518185,-0.518182 z m -0.518185,2.590912 c 0,-0.285001 0.233183,-0.518182 0.518185,-0.518182 h 1.036364 c 0.285,0 0.518181,0.233181 0.518181,0.518182 0,0.285 -0.233181,0.518183 -0.518181,0.518183 h -1.036364 c -0.285002,0 -0.518185,-0.233183 -0.518185,-0.518183 z m 1.036367,7.254554 c -0.57324,0 -1.036367,-0.463126 -1.036367,-1.036365 0,-0.573238 0.463127,-1.036365 1.036367,-1.036365 0.573239,0 1.036363,0.463127 1.036363,1.036365 0,0.573239 -0.463124,1.036365 -1.036363,1.036365 z"
+       id="path8113"
+       style="stroke-width:0.0323863" />
+    <path
+       d="M 8.5471247,11.255565 V 14.22535 H 4.3045745 v -2.969785 z m -4.2425502,-0.84851 c -0.4680063,0 -0.8485101,0.380504 -0.8485101,0.84851 v 2.969785 c 0,0.468006 0.3805038,0.84851 0.8485101,0.84851 H 5.8597343 L 5.7178738,15.498115 H 4.7288296 c -0.2346659,0 -0.4242551,0.189589 -0.4242551,0.424255 0,0.234666 0.1895892,0.424255 0.4242551,0.424255 h 3.3940397 c 0.2346663,0 0.4242554,-0.189589 0.4242554,-0.424255 0,-0.234666 -0.1895891,-0.424255 -0.4242554,-0.424255 H 7.1324995 L 6.990639,15.07386 h 1.5564857 c 0.4680059,0 0.8485098,-0.380504 0.8485098,-0.84851 v -2.969785 c 0,-0.468006 -0.3805039,-0.84851 -0.8485098,-0.84851 z m 6.1516975,0 c -0.351336,0 -0.6363825,0.285047 -0.6363825,0.636383 v 4.666805 c 0,0.351336 0.2850465,0.636382 0.6363825,0.636382 h 0.84851 c 0.351337,0 0.636383,-0.285046 0.636383,-0.636382 v -4.666805 c 0,-0.351336 -0.285046,-0.636383 -0.636383,-0.636383 z m 0.212128,0.84851 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212127 0,0.11667 -0.09546,0.212128 -0.212127,0.212128 H 10.6684 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212128 0,-0.11667 0.09546,-0.212127 0.212128,-0.212127 z m -0.212128,1.060638 c 0,-0.116671 0.09546,-0.212128 0.212128,-0.212128 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212128 0,0.11667 -0.09546,0.212127 -0.212127,0.212127 H 10.6684 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212127 z m 0.424256,2.969785 c -0.234667,0 -0.424256,-0.18959 -0.424256,-0.424255 0,-0.234666 0.189589,-0.424256 0.424256,-0.424256 0.234666,0 0.424254,0.18959 0.424254,0.424256 0,0.234665 -0.189588,0.424255 -0.424254,0.424255 z"
+       id="path8113-9"
+       style="stroke-width:0.0132579" />
+    <path
+       d="m 20.258959,15.831929 v 2.969785 h -4.24255 v -2.969785 z m -4.24255,-0.84851 c -0.468006,0 -0.84851,0.380504 -0.84851,0.84851 v 2.969785 c 0,0.468006 0.380504,0.84851 0.84851,0.84851 h 1.55516 l -0.14186,0.424255 h -0.989045 c -0.234666,0 -0.424255,0.189589 -0.424255,0.424255 0,0.234666 0.189589,0.424255 0.424255,0.424255 h 3.39404 c 0.234666,0 0.424255,-0.189589 0.424255,-0.424255 0,-0.234666 -0.189589,-0.424255 -0.424255,-0.424255 h -0.99037 l -0.14186,-0.424255 h 1.556485 c 0.468006,0 0.84851,-0.380504 0.84851,-0.84851 v -2.969785 c 0,-0.468006 -0.380504,-0.84851 -0.84851,-0.84851 z m 6.151698,0 c -0.351336,0 -0.636383,0.285047 -0.636383,0.636383 v 4.666805 c 0,0.351336 0.285047,0.636382 0.636383,0.636382 h 0.84851 c 0.351337,0 0.636383,-0.285046 0.636383,-0.636382 v -4.666805 c 0,-0.351336 -0.285046,-0.636383 -0.636383,-0.636383 z m 0.212128,0.84851 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212127 0,0.11667 -0.09546,0.212128 -0.212127,0.212128 h -0.424255 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212128 0,-0.11667 0.09546,-0.212127 0.212128,-0.212127 z m -0.212128,1.060638 c 0,-0.116671 0.09546,-0.212128 0.212128,-0.212128 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212128 0,0.11667 -0.09546,0.212127 -0.212127,0.212127 h -0.424255 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212127 z m 0.424256,2.969785 c -0.234667,0 -0.424256,-0.18959 -0.424256,-0.424255 0,-0.234666 0.189589,-0.424256 0.424256,-0.424256 0.234666,0 0.424254,0.18959 0.424254,0.424256 0,0.234665 -0.189588,0.424255 -0.424254,0.424255 z"
+       id="path8113-9-0"
+       style="stroke-width:0.0132579" />
+    <path
+       d="m 11.410982,23.59684 v 2.969785 H 7.1684316 V 23.59684 Z M 7.1684316,22.74833 c -0.468007,0 -0.848511,0.380504 -0.848511,0.84851 v 2.969785 c 0,0.468006 0.380504,0.84851 0.848511,0.84851 h 1.555159 l -0.14186,0.424255 h -0.989044 c -0.234666,0 -0.424255,0.189589 -0.424255,0.424255 0,0.234666 0.189589,0.424255 0.424255,0.424255 h 3.3940394 c 0.234667,0 0.424256,-0.189589 0.424256,-0.424255 0,-0.234666 -0.189589,-0.424255 -0.424256,-0.424255 H 9.9963556 l -0.14186,-0.424255 h 1.5564864 c 0.468006,0 0.84851,-0.380504 0.84851,-0.84851 V 23.59684 c 0,-0.468006 -0.380504,-0.84851 -0.84851,-0.84851 z m 6.1516974,0 c -0.351336,0 -0.636383,0.285047 -0.636383,0.636383 v 4.666805 c 0,0.351336 0.285047,0.636382 0.636383,0.636382 h 0.84851 c 0.351337,0 0.636383,-0.285046 0.636383,-0.636382 v -4.666805 c 0,-0.351336 -0.285046,-0.636383 -0.636383,-0.636383 z m 0.212128,0.84851 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212127 0,0.11667 -0.09546,0.212128 -0.212127,0.212128 h -0.424255 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212128 0,-0.11667 0.09546,-0.212127 0.212128,-0.212127 z m -0.212128,1.060638 c 0,-0.116671 0.09546,-0.212128 0.212128,-0.212128 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212128 0,0.11667 -0.09546,0.212127 -0.212127,0.212127 h -0.424255 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212127 z m 0.424256,2.969785 c -0.234667,0 -0.424256,-0.18959 -0.424256,-0.424255 0,-0.234666 0.189589,-0.424256 0.424256,-0.424256 0.234666,0 0.424254,0.18959 0.424254,0.424256 0,0.234665 -0.189588,0.424255 -0.424254,0.424255 z"
+       id="path8113-9-2"
+       style="stroke-width:0.0132579" />
+    <path
+       d="m 11.647764,68.351957 v 2.969785 H 7.4052144 v -2.969785 z m -4.2425496,-0.84851 c -0.468006,0 -0.84851,0.380504 -0.84851,0.84851 v 2.969785 c 0,0.468006 0.380504,0.84851 0.84851,0.84851 h 1.55516 l -0.14186,0.424255 h -0.989045 c -0.234665,0 -0.424255,0.189589 -0.424255,0.424255 0,0.234666 0.18959,0.424255 0.424255,0.424255 h 3.3940396 c 0.234666,0 0.424255,-0.189589 0.424255,-0.424255 0,-0.234666 -0.189589,-0.424255 -0.424255,-0.424255 h -0.99037 l -0.14186,-0.424255 h 1.556485 c 0.468006,0 0.84851,-0.380504 0.84851,-0.84851 v -2.969785 c 0,-0.468006 -0.380504,-0.84851 -0.84851,-0.84851 z m 6.1516976,0 c -0.351336,0 -0.636383,0.285047 -0.636383,0.636383 v 4.666805 c 0,0.351336 0.285047,0.636382 0.636383,0.636382 h 0.84851 c 0.351337,0 0.636383,-0.285046 0.636383,-0.636382 V 68.13983 c 0,-0.351336 -0.285046,-0.636383 -0.636383,-0.636383 z m 0.212128,0.84851 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212127 0,0.11667 -0.09546,0.212128 -0.212127,0.212128 H 13.76904 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212128 0,-0.11667 0.09546,-0.212127 0.212128,-0.212127 z m -0.212128,1.060638 c 0,-0.116671 0.09546,-0.212128 0.212128,-0.212128 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212128 0,0.11667 -0.09546,0.212127 -0.212127,0.212127 H 13.76904 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212127 z m 0.424256,2.969785 c -0.234667,0 -0.424256,-0.18959 -0.424256,-0.424255 0,-0.234666 0.189589,-0.424256 0.424256,-0.424256 0.234666,0 0.424254,0.18959 0.424254,0.424256 0,0.234665 -0.189588,0.424255 -0.424254,0.424255 z"
+       id="path8113-9-3"
+       style="stroke-width:0.0132579" />
+    <path
+       d="m 18.752019,54.222379 v 2.969785 h -4.24255 v -2.969785 z m -4.24255,-0.84851 c -0.468007,0 -0.848511,0.380504 -0.848511,0.84851 v 2.969785 c 0,0.468006 0.380504,0.84851 0.848511,0.84851 h 1.555159 l -0.14186,0.424255 h -0.989044 c -0.234666,0 -0.424255,0.189589 -0.424255,0.424255 0,0.234666 0.189589,0.424255 0.424255,0.424255 h 3.394039 c 0.234667,0 0.424256,-0.189589 0.424256,-0.424255 0,-0.234666 -0.189589,-0.424255 -0.424256,-0.424255 h -0.99037 l -0.14186,-0.424255 h 1.556486 c 0.468006,0 0.84851,-0.380504 0.84851,-0.84851 v -2.969785 c 0,-0.468006 -0.380504,-0.84851 -0.84851,-0.84851 z m 6.151697,0 c -0.351336,0 -0.636383,0.285047 -0.636383,0.636383 v 4.666805 c 0,0.351336 0.285047,0.636382 0.636383,0.636382 h 0.84851 c 0.351337,0 0.636383,-0.285046 0.636383,-0.636382 v -4.666805 c 0,-0.351336 -0.285046,-0.636383 -0.636383,-0.636383 z m 0.212128,0.84851 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212127 0,0.11667 -0.09546,0.212128 -0.212127,0.212128 h -0.424255 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212128 0,-0.11667 0.09546,-0.212127 0.212128,-0.212127 z m -0.212128,1.060638 c 0,-0.116671 0.09546,-0.212128 0.212128,-0.212128 h 0.424255 c 0.11667,0 0.212127,0.09546 0.212127,0.212128 0,0.11667 -0.09546,0.212127 -0.212127,0.212127 h -0.424255 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212127 z m 0.424256,2.969785 c -0.234667,0 -0.424256,-0.18959 -0.424256,-0.424255 0,-0.234666 0.189589,-0.424256 0.424256,-0.424256 0.234666,0 0.424254,0.18959 0.424254,0.424256 0,0.234665 -0.189588,0.424255 -0.424254,0.424255 z"
+       id="path8113-9-7"
+       style="stroke-width:0.0132579" />
+    <path
+       d="m 7.2592202,57.614822 v 2.969785 H 3.01667 V 57.614822 Z M 3.01667,56.766312 c -0.4680063,0 -0.8485101,0.380504 -0.8485101,0.84851 v 2.969785 c 0,0.468006 0.3805038,0.84851 0.8485101,0.84851 H 4.5718298 L 4.4299693,61.857372 H 3.4409251 c -0.2346659,0 -0.4242551,0.189589 -0.4242551,0.424255 0,0.234666 0.1895892,0.424255 0.4242551,0.424255 h 3.3940397 c 0.2346663,0 0.4242554,-0.189589 0.4242554,-0.424255 0,-0.234666 -0.1895891,-0.424255 -0.4242554,-0.424255 H 5.844595 L 5.7027345,61.433117 h 1.5564857 c 0.4680059,0 0.8485098,-0.380504 0.8485098,-0.84851 v -2.969785 c 0,-0.468006 -0.3805039,-0.84851 -0.8485098,-0.84851 z m 6.1516975,0 c -0.351336,0 -0.6363825,0.285047 -0.6363825,0.636383 V 62.0695 c 0,0.351336 0.2850465,0.636382 0.6363825,0.636382 h 0.8485095 c 0.351337,0 0.636383,-0.285046 0.636383,-0.636382 v -4.666805 c 0,-0.351336 -0.285046,-0.636383 -0.636383,-0.636383 z m 0.212128,0.84851 h 0.424255 c 0.11667,0 0.2121265,0.09546 0.2121265,0.212127 0,0.11667 -0.095459,0.212128 -0.2121265,0.212128 h -0.424255 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212128 0,-0.11667 0.09546,-0.212127 0.212128,-0.212127 z m -0.212128,1.060638 c 0,-0.116671 0.09546,-0.212128 0.212128,-0.212128 h 0.424255 c 0.11667,0 0.2121265,0.09546 0.2121265,0.212128 0,0.11667 -0.095459,0.212127 -0.2121265,0.212127 h -0.424255 c -0.116671,0 -0.212128,-0.09546 -0.212128,-0.212127 z m 0.424256,2.969785 c -0.234667,0 -0.424256,-0.18959 -0.424256,-0.424255 0,-0.234666 0.189589,-0.424256 0.424256,-0.424256 0.234666,0 0.4242535,0.18959 0.4242535,0.424256 0,0.234665 -0.1895875,0.424255 -0.4242535,0.424255 z"
+       id="path8113-9-5"
+       style="stroke-width:0.0132579" />
+    <path
+       id="path8105-9"
+       style="stroke-width:0.0716355"
+       d="m 127.23058,49.285875 c -2.52873,0 -4.58473,2.055998 -4.58473,4.584733 v 4.584733 c 0,2.528736 2.056,4.584733 4.58473,4.584733 h 27.5084 c 2.52874,0 4.58473,-2.055997 4.58473,-4.584733 v -4.584733 c 0,-2.528735 -2.05599,-4.584733 -4.58473,-4.584733 z m 20.05821,5.157825 c 0.95275,0 1.71927,0.766523 1.71927,1.719275 0,0.952754 -0.76652,1.719275 -1.71927,1.719275 -0.95276,0 -1.71928,-0.766521 -1.71928,-1.719275 0,-0.952752 0.76652,-1.719275 1.71928,-1.719275 z m 5.15782,0 c 0.95275,0 1.71928,0.766523 1.71928,1.719275 0,0.952754 -0.76653,1.719275 -1.71928,1.719275 -0.95275,0 -1.71927,-0.766521 -1.71927,-1.719275 0,-0.952752 0.76652,-1.719275 1.71927,-1.719275 z" />
+    <path
+       id="path8105-9-2"
+       style="stroke-width:0.0716355"
+       d="m 127.23058,32.721161 c -2.52873,0 -4.58473,2.055998 -4.58473,4.584733 v 4.584733 c 0,2.528736 2.056,4.584733 4.58473,4.584733 h 27.5084 c 2.52874,0 4.58473,-2.055997 4.58473,-4.584733 v -4.584733 c 0,-2.528735 -2.05599,-4.584733 -4.58473,-4.584733 z m 20.05821,5.157825 c 0.95275,0 1.71927,0.766523 1.71927,1.719275 0,0.952754 -0.76652,1.719275 -1.71927,1.719275 -0.95276,0 -1.71928,-0.766521 -1.71928,-1.719275 0,-0.952752 0.76652,-1.719275 1.71928,-1.719275 z m 5.15782,0 c 0.95275,0 1.71928,0.766523 1.71928,1.719275 0,0.952754 -0.76653,1.719275 -1.71928,1.719275 -0.95275,0 -1.71927,-0.766521 -1.71927,-1.719275 0,-0.952752 0.76652,-1.719275 1.71927,-1.719275 z" />
+    <path
+       id="path8105-9-2-9"
+       style="stroke-width:0.0716355"
+       d="m 127.23058,16.627871 c -2.52873,0 -4.58473,2.055998 -4.58473,4.584733 v 4.584733 c 0,2.528736 2.056,4.584733 4.58473,4.584733 h 27.5084 c 2.52874,0 4.58473,-2.055997 4.58473,-4.584733 v -4.584733 c 0,-2.528735 -2.05599,-4.584733 -4.58473,-4.584733 z m 20.05821,5.157825 c 0.95275,0 1.71927,0.766523 1.71927,1.719275 0,0.952754 -0.76652,1.719275 -1.71927,1.719275 -0.95276,0 -1.71928,-0.766521 -1.71928,-1.719275 0,-0.952752 0.76652,-1.719275 1.71928,-1.719275 z m 5.15782,0 c 0.95275,0 1.71928,0.766523 1.71928,1.719275 0,0.952754 -0.76653,1.719275 -1.71928,1.719275 -0.95275,0 -1.71927,-0.766521 -1.71927,-1.719275 0,-0.952752 0.76652,-1.719275 1.71927,-1.719275 z" />
+    <path
+       id="path8105-9-2-9-7"
+       style="stroke-width:0.0716355"
+       d="m 71.541428,32.760119 c -2.52873,0 -4.58473,2.055998 -4.58473,4.584733 v 4.584733 c 0,2.528736 2.056,4.584733 4.58473,4.584733 h 27.5084 c 2.528742,0 4.584732,-2.055997 4.584732,-4.584733 v -4.584733 c 0,-2.528735 -2.05599,-4.584733 -4.584732,-4.584733 z m 20.05821,5.157825 c 0.95275,0 1.71927,0.766523 1.71927,1.719275 0,0.952754 -0.76652,1.719275 -1.71927,1.719275 -0.95276,0 -1.71928,-0.766521 -1.71928,-1.719275 0,-0.952752 0.76652,-1.719275 1.71928,-1.719275 z m 5.15782,0 c 0.95275,0 1.71928,0.766523 1.71928,1.719275 0,0.952754 -0.76653,1.719275 -1.71928,1.719275 -0.95275,0 -1.71927,-0.766521 -1.71927,-1.719275 0,-0.952752 0.76652,-1.719275 1.71927,-1.719275 z" />
+    <path
+       style="fill:#040404;fill-opacity:1;stroke:#000000;stroke-width:0.5;stroke-dasharray:4, 0.5;stroke-dashoffset:0;stroke-opacity:1;marker-start:url(#TriangleStart);marker-end:url(#marker20318)"
+       d="M 27.503408,39.784329 H 62.345923"
+       id="path17839" />
+    <path
+       style="fill:#040404;fill-opacity:1;stroke:#000000;stroke-width:0.5;stroke-dasharray:3.99998925,0.5;stroke-dashoffset:0;stroke-opacity:1;marker-start:url(#TriangleStart-6);marker-end:url(#marker20318-0)"
+       d="m 105.96117,39.696599 h 14.22585"
+       id="path17839-1" />
+    <path
+       style="fill:#040404;fill-opacity:1;stroke:#000000;stroke-width:0.470147;stroke-dasharray:3.76117, 0.470147;stroke-dashoffset:0;stroke-opacity:1;marker-start:url(#TriangleStart-6-5);marker-end:url(#marker20318-0-4)"
+       d="m 105.83833,43.373434 14.49721,11.694647"
+       id="path17839-1-6" />
+    <path
+       style="fill:#040404;fill-opacity:1;stroke:#000000;stroke-width:0.5;stroke-dasharray:3.99996781,0.5;stroke-dashoffset:0;stroke-opacity:1;marker-start:url(#TriangleStart-0);marker-end:url(#marker20318-6)"
+       d="M 105.76189,35.921333 120.00818,24.761132"
+       id="path17839-0" />
+    <path
+       style="fill:#040404;fill-opacity:1;stroke:#000000;stroke-width:0.5;stroke-dasharray:3.99999, 0.5;stroke-dashoffset:0;stroke-opacity:1;marker-start:url(#TriangleStart-6-7);marker-end:url(#marker20318-0-5)"
+       d="M 176.71096,38.963682 H 162.48511"
+       id="path17839-1-4" />
+    <path
+       style="fill:#040404;fill-opacity:1;stroke:#000000;stroke-width:0.470147;stroke-dasharray:3.76117, 0.470147;stroke-dashoffset:0;stroke-opacity:1;marker-start:url(#TriangleStart-6-5-5);marker-end:url(#marker20318-0-4-7)"
+       d="M 176.8338,42.640517 162.33659,54.335164"
+       id="path17839-1-6-3" />
+    <path
+       style="fill:#040404;fill-opacity:1;stroke:#000000;stroke-width:0.5;stroke-dasharray:3.99997, 0.5;stroke-dashoffset:0;stroke-opacity:1;marker-start:url(#TriangleStart-0-5);marker-end:url(#marker20318-6-9)"
+       d="M 176.91024,35.188416 162.66395,24.028215"
+       id="path17839-0-0" />
+  </g>
+</svg>
diff --git a/mongo/docker-compose.yml b/mongo/docker-compose.yml
deleted file mode 100644
index 7a287967..00000000
--- a/mongo/docker-compose.yml
+++ /dev/null
@@ -1,21 +0,0 @@
-# Use root/example as user/password credentials
-version: '3.1'
-
-services:
-
-  mongo:
-    image: mongo
-    restart: always
-    environment:
-      MONGO_INITDB_ROOT_USERNAME: root
-      MONGO_INITDB_ROOT_PASSWORD: example
-
-  mongo-express:
-    image: mongo-express
-    restart: always
-    ports:
-      - 8081:8081
-    environment:
-      ME_CONFIG_MONGODB_ADMINUSERNAME: root
-      ME_CONFIG_MONGODB_ADMINPASSWORD: example
-      ME_CONFIG_MONGODB_URL: mongodb://root:example@mongo:27017/