Author: ay Date: Fri Dec 20 12:42:08 2013 New Revision: 1552623 URL: http://svn.apache.org/r1552623 Log: Merged revisions 1552270 via git cherry-pick from https://svn.apache.org/repos/asf/cxf/branches/2.7.x-fixes
........ r1552270 | ay | 2013-12-19 10:56:11 +0100 (Thu, 19 Dec 2013) | 10 lines Merged revisions 1551509 via git cherry-pick from https://svn.apache.org/repos/asf/cxf/trunk ........ r1551509 | ay | 2013-12-17 11:59:21 +0100 (Tue, 17 Dec 2013) | 2 lines [CXF-5461] Add ws-securitypolicy-1.2.xsd to rt-ws-policy's schema resolution ........ ........ Added: cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/schemas/ws-securitypolicy-1.2.xsd Modified: cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/build-resources/catalog.cat cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/java/org/apache/cxf/ws/policy/blueprint/PolicyBPHandler.java cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/OSGI-INF/blueprint/policy.xml Modified: cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/build-resources/catalog.cat URL: http://svn.apache.org/viewvc/cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/build-resources/catalog.cat?rev=1552623&r1=1552622&r2=1552623&view=diff ============================================================================== --- cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/build-resources/catalog.cat (original) +++ cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/build-resources/catalog.cat Fri Dec 20 12:42:08 2013 @@ -1,25 +1,27 @@ - --- - Licensed to the Apache Software Foundation (ASF) under one - or more contributor license agreements. See the NOTICE file - distributed with this work for additional information - regarding copyright ownership. The ASF licenses this file - to you under the Apache License, Version 2.0 (the - "License"); you may not use this file except in compliance - with the License. You may obtain a copy of the License at - - http://www.apache.org/licenses/LICENSE-2.0 - - Unless required by applicable law or agreed to in writing, - software distributed under the License is distributed on an - "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY - KIND, either express or implied. See the License for the - specific language governing permissions and limitations - under the License. --- - -SYSTEM "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"; "../../../src/main/resources/schemas/oasis-200401-wss-wssecurity-secext-1.0.xsd" -SYSTEM "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"; "../../../src/main/resources/schemas/oasis-200401-wss-wssecurity-utility-1.0.xsd" -SYSTEM "http://www.w3.org/2001/xml.xsd"; "../../../src/main/resources/schemas/xml.xsd" -SYSTEM "http://www.w3.org/TR/xmldsig-core/xmldsig-core-schema.xsd"; "../../../src/main/resources/schemas/xmldsig-core-schema.xsd" -PUBLIC "-//W3C//DTD XMLSchema 200102//EN" "../../../src/main/resources/schemas/XMLSchema.dtd" + +-- + Licensed to the Apache Software Foundation (ASF) under one + or more contributor license agreements. See the NOTICE file + distributed with this work for additional information + regarding copyright ownership. The ASF licenses this file + to you under the Apache License, Version 2.0 (the + "License"); you may not use this file except in compliance + with the License. You may obtain a copy of the License at + + http://www.apache.org/licenses/LICENSE-2.0 + + Unless required by applicable law or agreed to in writing, + software distributed under the License is distributed on an + "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY + KIND, either express or implied. See the License for the + specific language governing permissions and limitations + under the License. +-- + +SYSTEM "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd"; "../../../src/main/resources/schemas/oasis-200401-wss-wssecurity-secext-1.0.xsd" +SYSTEM "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"; "../../../src/main/resources/schemas/oasis-200401-wss-wssecurity-utility-1.0.xsd" +SYSTEM "http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/ws-securitypolicy-1.2.xsd"; "../../../src/main/resources/schemas/ws-securitypolicy-1.2.xsd" +SYSTEM "http://www.w3.org/2006/03/addressing/ws-addr.xsd"; "../../../../../../api/src/main/resources/schemas/wsdl/ws-addr.xsd" +SYSTEM "http://www.w3.org/2001/xml.xsd"; "../../../src/main/resources/schemas/xml.xsd" +SYSTEM "http://www.w3.org/TR/xmldsig-core/xmldsig-core-schema.xsd"; "../../../src/main/resources/schemas/xmldsig-core-schema.xsd" +PUBLIC "-//W3C//DTD XMLSchema 200102//EN" "../../../src/main/resources/schemas/XMLSchema.dtd" Modified: cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/java/org/apache/cxf/ws/policy/blueprint/PolicyBPHandler.java URL: http://svn.apache.org/viewvc/cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/java/org/apache/cxf/ws/policy/blueprint/PolicyBPHandler.java?rev=1552623&r1=1552622&r2=1552623&view=diff ============================================================================== --- cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/java/org/apache/cxf/ws/policy/blueprint/PolicyBPHandler.java (original) +++ cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/java/org/apache/cxf/ws/policy/blueprint/PolicyBPHandler.java Fri Dec 20 12:42:08 2013 @@ -46,6 +46,8 @@ public class PolicyBPHandler implements location = "schemas/oasis-200401-wss-wssecurity-secext-1.0.xsd"; } else if ("http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd".equals(s)) { location = "schemas/oasis-200401-wss-wssecurity-utility-1.0.xsd"; + } else if ("http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/ws-securitypolicy-1.2.xsd".equals(s)) { + location = "schemas/ws-securitypolicy-1.2.xsd"; } if (location != null) { return getClass().getClassLoader().getResource(location); Modified: cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/OSGI-INF/blueprint/policy.xml URL: http://svn.apache.org/viewvc/cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/OSGI-INF/blueprint/policy.xml?rev=1552623&r1=1552622&r2=1552623&view=diff ============================================================================== --- cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/OSGI-INF/blueprint/policy.xml (original) +++ cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/OSGI-INF/blueprint/policy.xml Fri Dec 20 12:42:08 2013 @@ -55,4 +55,9 @@ <entry key="osgi.service.blueprint.namespace" value="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd"/> </service-properties> </service> -</blueprint> \ No newline at end of file + <service ref="PolicyBPHandler" interface="org.apache.aries.blueprint.NamespaceHandler"> + <service-properties> + <entry key="osgi.service.blueprint.namespace" value="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702"/> + </service-properties> + </service> +</blueprint> Added: cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/schemas/ws-securitypolicy-1.2.xsd URL: http://svn.apache.org/viewvc/cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/schemas/ws-securitypolicy-1.2.xsd?rev=1552623&view=auto ============================================================================== --- cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/schemas/ws-securitypolicy-1.2.xsd (added) +++ cxf/branches/2.6.x-fixes/rt/ws/policy/src/main/resources/schemas/ws-securitypolicy-1.2.xsd Fri Dec 20 12:42:08 2013 @@ -0,0 +1,1205 @@ +<?xml version="1.0" encoding="utf-8"?> +<!-- +OASIS takes no position regarding the validity or scope of any intellectual property or other rights that might be claimed to pertain to the +implementation or use of the technology described in this document or the extent to which any license under such rights might or might not be available; +neither does it represent that it has made any effort to identify any such rights. Information on OASIS's procedures with respect to rights in OASIS +specifications can be found at the OASIS website. Copies of claims of rights made available for publication and any assurances of licenses to be made +available, or the result of an attempt made to obtain a general license or permission for the use of such proprietary rights by implementors or users +of this specification, can be obtained from the OASIS Executive Director. +OASIS invites any interested party to bring to its attention any copyrights, patents or patent applications, or other proprietary rights which may +cover technology that may be required to implement this specification. Please address the information to the OASIS Executive Director. +Copyright © OASIS Open 2002-2007. All Rights Reserved. +This document and translations of it may be copied and furnished to others, and derivative works that comment on or otherwise explain it or assist +in its implementation may be prepared, copied, published and distributed, in whole or in part, without restriction of any kind, provided that the +above copyright notice and this paragraph are included on all such copies and derivative works. However, this document itself does not be modified +in any way, such as by removing the copyright notice or references to OASIS, except as needed for the purpose of developing OASIS specifications, +in which case the procedures for copyrights defined in the OASIS Intellectual Property Rights document must be followed, or as required to translate +it into languages other than English. +The limited permissions granted above are perpetual and will not be revoked by OASIS or its successors or assigns. +This document and the information contained herein is provided on an AS IS basis and OASIS DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, +INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF +MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. +--> +<xs:schema + targetNamespace='http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702' + xmlns:tns='http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702' + xmlns:wsa="http://www.w3.org/2005/08/addressing"; + xmlns:xs="http://www.w3.org/2001/XMLSchema"; + elementFormDefault="qualified" + blockDefault="#all" > + + <xs:import namespace="http://www.w3.org/2005/08/addressing"; + schemaLocation="http://www.w3.org/2006/03/addressing/ws-addr.xsd"; /> + + <!-- + 4. Protection Assertions + --> + <xs:element name="SignedParts" type="tns:SePartsType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 4.1.1 SignedParts Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="EncryptedParts" type="tns:SePartsType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 4.2.1 EncryptedParts Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:complexType name="SePartsType"> + <xs:sequence> + <xs:element name="Body" type="tns:EmptyType" minOccurs="0" /> + <xs:element name="Header" type="tns:HeaderType" minOccurs="0" maxOccurs="unbounded" /> + <xs:element name="Attachments" type="tns:EmptyType" minOccurs="0" /> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax"/> + </xs:sequence> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + <xs:complexType name="EmptyType" /> + <xs:complexType name="HeaderType" > + <xs:attribute name="Name" type="xs:QName" use="optional" /> + <xs:attribute name="Namespace" type="xs:anyURI" use="required" /> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + + <xs:element name="SignedElements" type="tns:SerElementsType" > + <xs:annotation> + <xs:documentation xml:lang="en" > + 4.1.2 SignedElements Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="EncryptedElements" type="tns:SerElementsType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 4.2.2 EncryptedElements Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequiredElements" type="tns:SerElementsType" > + <xs:annotation> + <xs:documentation xml:lang="en" > + 4.3.1 RequiredElements Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:complexType name="SerElementsType"> + <xs:sequence> + <xs:element name="XPath" type="xs:string" minOccurs="1" maxOccurs="unbounded" /> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax"/> + </xs:sequence> + <xs:attribute name="XPathVersion" type="xs:anyURI" use="optional" /> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + + <!-- + 5. Token Assertions + --> + <xs:attribute name="IncludeToken" type="tns:IncludeTokenOpenType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.1 Token Inclusion + </xs:documentation> + </xs:annotation> + </xs:attribute> + <xs:simpleType name="IncludeTokenOpenType"> + <xs:union memberTypes="tns:IncludeTokenType xs:anyURI" /> + </xs:simpleType> + <xs:simpleType name="IncludeTokenType"> + <xs:restriction base="xs:anyURI" > + <xs:enumeration value="http://docs.oasis-open.org/ws-sx/ws-trust/200702/ws-securitypolicy/IncludeToken/Never"; /> + <xs:enumeration value="http://docs.oasis-open.org/ws-sx/ws-trust/200702/ws-securitypolicy/IncludeToken/Once"; /> + <xs:enumeration value="http://docs.oasis-open.org/ws-sx/ws-trust/200702/ws-securitypolicy/IncludeToken/AlwaysToRecipient"; /> + <xs:enumeration value="http://docs.oasis-open.org/ws-sx/ws-trust/200702/ws-securitypolicy/IncludeToken/AlwaysToInitiator"; /> + <xs:enumeration value="http://docs.oasis-open.org/ws-sx/ws-trust/200702/ws-securitypolicy/IncludeToken/Always"; /> + </xs:restriction> + </xs:simpleType> + + <xs:element name="UsernameToken" type="tns:TokenAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en" > + 5.4.1 UsernameToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:complexType name="TokenAssertionType"> + <xs:sequence> + <xs:choice minOccurs="0"> + <xs:element name="Issuer" type="wsa:EndpointReferenceType" /> + <xs:element name="IssuerName" type="xs:anyURI" /> + </xs:choice> + <!-- + Actual content model is non-deterministic, hence wildcard. The following shows intended content model: + <xs:element ref="wsp:Policy" minOccurs="0" /> + --> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax"/> + </xs:sequence> + <xs:attribute ref="tns:IncludeToken" use="optional" /> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + + <xs:element name="NoPassword" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.1 UsernameToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="HashPassword" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.1 UsernameToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssUsernameToken10" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.1 UsernameToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssUsernameToken11" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.1 UsernameToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- RequireDerivedKeys defined below. --> + <!-- RequireImpliedDerivedKeys defined below. --> + <!-- RequireExplicitDerivedKeys defined below. --> + + <xs:complexType name="QNameAssertionType"> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + + <xs:element name="IssuedToken" type="tns:IssuedTokenType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.2 IssuedToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:complexType name="IssuedTokenType"> + <xs:sequence> + <xs:choice minOccurs="0"> + <xs:element name="Issuer" type="wsa:EndpointReferenceType" /> + <xs:element name="IssuerName" type="xs:anyURI" /> + </xs:choice> + <xs:element name="RequestSecurityTokenTemplate" type="tns:RequestSecurityTokenTemplateType" /> + <!-- + Actual content model is non-deterministic, hence wildcard. The following shows intended content model: + <xs:element ref="wsp:Policy" minOccurs="0" /> + --> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax" /> + </xs:sequence> + <xs:attribute ref="tns:IncludeToken" use="optional" /> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + <xs:complexType name="RequestSecurityTokenTemplateType"> + <xs:sequence> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax" /> + </xs:sequence> + <xs:attribute name="TrustVersion" type="xs:anyURI" use="optional" /> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + + <xs:element name="RequireDerivedKeys" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.2 IssuedToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireImpliedDerivedKeys" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.2 IssuedToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireExplicitDerivedKeys" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.2 IssuedToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireExternalReference" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.2 IssuedToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireInternalReference" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.2 IssuedToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="X509Token" type="tns:TokenAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- RequireDerivedKeys defined above. --> + <!-- RequireImpliedDerivedKeys defined above. --> + <!-- RequireExplicitDerivedKeys defined above. --> + + <xs:element name="RequireKeyIdentifierReference" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireIssuerSerialReference" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireEmbeddedTokenReference" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireThumbprintReference" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssX509V3Token10" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssX509Pkcs7Token10" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssX509PkiPathV1Token10" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssX509V1Token11" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssX509V3Token11" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssX509Pkcs7Token11" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssX509PkiPathV1Token11" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.3 X509Token Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="KerberosToken" type="tns:TokenAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.4 KerberosToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- RequireDerivedKeys defined above. --> + <!-- RequireImpliedDerivedKeys defined above. --> + <!-- RequireExplicitDerivedKeys defined above. --> + <!-- RequireKeyIdentifierReference defined above. --> + + <xs:element name="WssKerberosV5ApReqToken11" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.4 KerberosToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssGssKerberosV5ApReqToken11" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.4 KerberosToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="SpnegoContextToken" type="tns:SpnegoContextTokenType" > + <xs:annotation> + <xs:documentation xml:lang="en" > + 5.4.5 SpnegoContextToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:complexType name="SpnegoContextTokenType"> + <xs:sequence> + <xs:choice minOccurs="0"> + <xs:element name="Issuer" type="wsa:EndpointReferenceType" /> + <xs:element name="IssuerName" type="xs:anyURI" /> + </xs:choice> + <!-- + Actual content model is non-deterministic, hence wildcard. The following shows intended content model: + <xs:element ref="wsp:Policy" minOccurs="0" /> + --> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax" /> + </xs:sequence> + <xs:attribute ref="tns:IncludeToken" use="optional" /> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + <!-- RequireDerivedKeys defined above. --> + <!-- RequireImpliedDerivedKeys defined above. --> + <!-- RequireExplicitDerivedKeys defined above. --> + <xs:element name="MustNotSendCancel" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.5 SpnegoContextToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="MustNotSendAmend" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.5 SpnegoContextToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="MustNotSendRenew" type="tns:QNameAssertionType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.5 SpnegoContextToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="SecurityContextToken" type="tns:TokenAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.6 SecurityContextToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- RequireDerivedKeys defined above. --> + <!-- RequireImpliedDerivedKeys defined above. --> + <!-- RequireExplicitDerivedKeys defined above. --> + + <xs:element name="RequireExternalUriReference" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.6 SecurityContextToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="SC13SecurityContextToken" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.6 SecurityContextToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="SecureConversationToken" type="tns:SecureConversationTokenType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.7 SecureConversationToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:complexType name="SecureConversationTokenType"> + <xs:sequence> + <xs:choice minOccurs="0"> + <xs:element name="Issuer" type="wsa:EndpointReferenceType" /> + <xs:element name="IssuerName" type="xs:anyURI" /> + </xs:choice> + <!-- + Actual content model is non-deterministic, hence wildcard. The following shows intended content model: + <xs:element ref="wsp:Policy" minOccurs="0" /> + --> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax" /> + </xs:sequence> + <xs:attribute ref="tns:IncludeToken" use="optional" /> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + <!-- RequireDerivedKeys defined above. --> + <!-- RequireImpliedDerivedKeys defined above. --> + <!-- RequireExplicitDerivedKeys defined above. --> + <!-- RequireExternalUriReference defined above. --> + <!-- SC13SecurityContextToken defined above. --> + <!-- MustNotSendCancel defined above. --> + <!-- MustNotSendAmend defined above. --> + <!-- MustNotSendRenew defined above. --> + + <xs:element name="BootstrapPolicy" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.7 SecureConversationToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="SamlToken" type="tns:TokenAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en" > + 5.4.8 SamlToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- RequireDerivedKeys defined above. --> + <!-- RequireImpliedDerivedKeys defined above. --> + <!-- RequireExplicitDerivedKeys defined above. --> + <!-- RequireKeyIdentifierReference defined above. --> + + <xs:element name="WssSamlV11Token10" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.8 SamlToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssSamlV11Token11" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.8 SamlToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssSamlV20Token11" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.8 SamlToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="RelToken" type="tns:TokenAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.9 RelToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- RequireDerivedKeys defined above. --> + <!-- RequireImpliedDerivedKeys defined above. --> + <!-- RequireExplicitDerivedKeys defined above. --> + <!-- RequireKeyIdentifierReference defined above. --> + + <xs:element name="WssRelV10Token10" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.9 RelToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssRelV20Token10" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.9 RelToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssRelV10Token11" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.9 RelToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="WssRelV20Token11" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.9 RelToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="HttpsToken" type="tns:TokenAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.10 HttpsToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="HttpBasicAuthentication" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.10 HttpsToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="HttpDigestAuthentication" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.10 HttpsToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireClientCertificate" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.10 HttpsToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="KeyValueToken" type="tns:KeyValueTokenType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.11 KeyValueToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:complexType name="KeyValueTokenType"> + <xs:sequence> + <!-- + Actual content model is non-deterministic, hence wildcard. The following shows intended content model: + <xs:element ref="wsp:Policy" minOccurs="0" /> + --> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax" /> + </xs:sequence> + <xs:attribute ref="tns:IncludeToken" use="optional" /> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + <xs:element name="RsaKeyValue" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 5.4.11 KeyValueToken Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <!-- + 7. Security Binding Assertions + --> + <xs:element name="AlgorithmSuite" type="tns:NestedPolicyType" > + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:complexType name="NestedPolicyType"> + <xs:sequence> + <xs:any minOccurs="0" maxOccurs="unbounded" namespace="##other" processContents="lax"/> + </xs:sequence> + <xs:anyAttribute namespace="##any" processContents="lax" /> + </xs:complexType> + + <xs:element name="Basic256" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic192" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic128" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="TripleDes" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic256Rsa15" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic192Rsa15" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic128Rsa15" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="TripleDesRsa15" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic256Sha256" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic192Sha256" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic128Sha256" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="TripleDesSha256" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic256Sha256Rsa15" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic192Sha256Rsa15" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Basic128Sha256Rsa15" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="TripleDesSha256Rsa15" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="InclusiveC14N" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="SOAPNormalization10" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="STRTransform10" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="XPath10" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="XPathFilter20" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="AbsXPath" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.1 AlgorithmSuite Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="Layout" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.2 Layout Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="Strict" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.2 Layout Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="Lax" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.2 Layout Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="LaxTsFirst" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.2 Layout Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="LaxTsLast" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.2 Layout Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="TransportBinding" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.3 TransportBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="TransportToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.3 TransportBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- Layout defined above. --> + + <xs:element name="IncludeTimestamp" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.3 TransportBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="SymmetricBinding" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.4 SymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="EncryptionToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.4 SymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="SignatureToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8=7.4 SymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="ProtectionToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.4 SymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- Layout defined above. --> + <!-- IncludeTimestamp defined above. --> + + <xs:element name="EncryptBeforeSigning" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.4 SymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="EncryptSignature" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.4 SymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="ProtectTokens" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.4 SymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="OnlySignEntireHeadersAndBody" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.4 SymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="AsymmetricBinding" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.5 AsymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="InitiatorToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.5 AsymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="InitiatorSignatureToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.5 AsymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="InitiatorEncryptionToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.5 AsymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="RecipientToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.5 AsymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="RecipientSignatureToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.5 AsymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="RecipientEncryptionToken" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 7.5 AsymmetricBinding Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- Layout defined above. --> + <!-- IncludeTimestamp defined above. --> + <!-- EncryptBeforeSigning defined above. --> + <!-- EncryptSignature defined above. --> + <!-- ProtectTokens defined above. --> + <!-- OnlySignEntireHeadersAndBody defined above. --> + + <!-- + 8. Supporting Tokens + --> + <xs:element name="SupportingTokens" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8.1 SupportingTokens Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- SignedParts defined above. --> + <!-- SignedElements defined above. --> + <!-- EncryptedParts defined above. --> + <!-- EncryptedElements defined above. --> + + <xs:element name="SignedSupportingTokens" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8.2 SignedSupportingTokens Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- SignedParts defined above. --> + <!-- SignedElements defined above. --> + <!-- EncryptedParts defined above. --> + <!-- EncryptedElements defined above. --> + + <xs:element name="EndorsingSupportingTokens" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8.3 EndorsingSupportingTokens Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- SignedParts defined above. --> + <!-- SignedElements defined above. --> + <!-- EncryptedParts defined above. --> + <!-- EncryptedElements defined above. --> + + <xs:element name="SignedEndorsingSupportingTokens" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8.4 SignedEndorsingSupportingTokens Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- SignedParts defined above. --> + <!-- SignedElements defined above. --> + <!-- EncryptedParts defined above. --> + <!-- EncryptedElements defined above. --> + + <xs:element name="SignedEncryptedSupportingTokens" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8.5 SignedEncryptedSupportingTokens Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- SignedParts defined above. --> + <!-- SignedElements defined above. --> + <!-- EncryptedParts defined above. --> + <!-- EncryptedElements defined above. --> + + <xs:element name="EncryptedSupportingTokens" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8.6 EncryptedSupportingTokens Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- SignedParts defined above. --> + <!-- SignedElements defined above. --> + <!-- EncryptedParts defined above. --> + <!-- EncryptedElements defined above. --> + + <xs:element name="EndorsingEncryptedSupportingTokens" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8.7 EndorsingEncryptedSupportingTokens Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- SignedParts defined above. --> + <!-- SignedElements defined above. --> + <!-- EncryptedParts defined above. --> + <!-- EncryptedElements defined above. --> + + <xs:element name="SignedEndorsingEncryptedSupportingTokens" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 8.8 SignedEndorsingEncryptedSupportingTokens Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- AlgorithmSuite defined above. --> + <!-- SignedParts defined above. --> + <!-- SignedElements defined above. --> + <!-- EncryptedParts defined above. --> + <!-- EncryptedElements defined above. --> + + <!-- + 9. WSS: SOAP Message Security Options + --> + <xs:element name="Wss10" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.1 Wss10 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="MustSupportRefKeyIdentifier" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.1 Wss10 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="MustSupportRefIssuerSerial" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.1 Wss10 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="MustSupportRefExternalURI" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.1 Wss10 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="MustSupportRefEmbeddedToken" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.1 Wss10 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="Wss11" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.2 Wss11 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <!-- MustSupportRefKeyIdentifier defined above. --> + <!-- MustSupportRefIssuerSerial defined above. --> + <!-- MustSupportRefExternalURI defined above. --> + <!-- MustSupportRefEmbeddedToken defined above. --> + + <xs:element name="MustSupportRefThumbprint" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.2 Wss11 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="MustSupportRefEncryptedKey" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.2 Wss11 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireSignatureConfirmation" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 9.2 Wss11 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <!-- + 10. WS-Trust Options + --> + <xs:element name="Trust13" type="tns:NestedPolicyType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 10.1 Trust13 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + + <xs:element name="MustSupportClientChallenge" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 10.1 Trust13 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="MustSupportServerChallenge" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 10.1 Trust13 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireClientEntropy" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 10.1 Trust13 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireServerEntropy" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 10.1 Trust13 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="MustSupportIssuedTokens" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 10.1 Trust13 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireRequestSecurityTokenCollection" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 10.1 Trust13 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + <xs:element name="RequireAppiesTo" type="tns:QNameAssertionType"> + <xs:annotation> + <xs:documentation xml:lang="en"> + 10.1 Trust13 Assertion + </xs:documentation> + </xs:annotation> + </xs:element> + +</xs:schema> \ No newline at end of file
