1# zxid/sg/liberty-idwsf-security-mechanisms-v2.0.sg 2# Slightly edited, 5.9.2006, Sampo Kellomaki (sampo@iki.fi) 3# 10.2.2007, added sa:Assertion as potential security token type --Sampo 4# $Id: liberty-idwsf-security-mechanisms-v2.0.sg,v 1.7 2009-08-25 16:22:45 sampo Exp $ 5 6target(sec, urn:liberty:security:2006-08) 7ns(sa, urn:oasis:names:tc:SAML:2.0:assertion) 8ns(sp, urn:oasis:names:tc:SAML:2.0:protocol) 9ns(sa11, urn:oasis:names:tc:SAML:1.0:assertion) 10ns(ff12, urn:liberty:iff:2003-08) 11 12TokenPolicy -> %sec:TokenPolicyType 13%TokenPolicyType: 14 sp:NameIDPolicy? 15 any* processContents(lax) 16 @validUntil? -> %xs:dateTime 17 @issueTo? -> %xs:anyURI 18 @type? -> %xs:anyURI 19 @wantDSEPR? -> %xs:boolean 20 ; 21 22# @any* 23 24TransitedProvider -> %sec:TransitedProviderType 25%TransitedProviderType: base(xs:anyURI) 26 @timeStamp? -> %xs:dateTime 27 @confirmationURI? -> %xs:anyURI 28 ; 29 30TransitedProviderPath -> %sec:TransitedProviderPathType 31%TransitedProviderPathType: 32 sec:TransitedProvider+ 33 ; 34 35Token -> %sec:TokenType 36%TokenType: 37 sa:Assertion? 38 sa:EncryptedAssertion? 39 sa11:Assertion? 40 ff12:Assertion? 41 any* processContents(lax) 42 @id? -> %xs:ID 43 @ref? -> %xs:anyURI 44 @usage? -> %xs:anyURI 45 ; 46 47#EOF 48