Sorry for the delay on getting back, we have been really busy at the winery for the last couple of weeks.
We have a choice between using our own name and referencing the type or reusing the same name and type from the WS Trust specification. Which is chosen is going to be just a question of style and a question of what that referenced specification looks as being a top level element. However in this case, there are differences between what is specified in this document and what is specified for wst:RequestedSecurityToken, specifically the addition of the tokenType parameter. We could alternatively defined this as <eps:WSToken> <wst:RequestedSecurityToken/> <wst:TokenType> </eps:WSToken> I would not object to doing the change to the latter structure, but it is not a direct mapping currently. Jim > -----Original Message----- > From: [email protected] [mailto:[email protected]] On > Behalf Of Ed Simon > Sent: Wednesday, October 24, 2012 4:05 PM > To: [email protected] > Subject: [plasma] Clarification of specifying WS-Trust tokens in the PLASMA > authentication element > > The "Plasma Service Trust Processing" document includes a fragment of an > XML Schema describing the <eps:Authentication> element as such: > > <xs:element name="Authentication" type="eps:AuthenticationType"/> > <xs:complexType name="AuthenticationType"> > <xs:choice maxOccurs="unbounded"> > <xs:element ref="saml:Assertion"/> .. > <xs:element name="WS-Token"> > <xs:complexType> > <xs:simpleContent> > <xs:extension base="xs:hexBinary"> > <xs:attribute name="tokenType" type="xs:anyURI"/> > </xs:extension> > </xs:simpleContent> > </xs:complexType> > </xs:element> > .. > > I presume, based on the text of the "Plasma Service Trust Processing" > document, that the "WS-Token" is actually supposed to be the > > /wst:RequestSecurityTokenResponse/wst:RequestedSecurityToken > > described in <http://docs.oasis-open.org/ws-sx/ws-trust/v1.4/errata01/ws- > trust-1.4-errata01-complete.html>. Correct? If so, the XML Schema in the > "Plasma Service Trust Processing" document needs to be adjusted to > something like <xs:element ref="wst:RequestedSecurityToken">. Also, with > respect to the "XML Nomenclature and Name Spaces" table, should we be > not be using this namespace > > http://docs.oasis-open.org/ws-sx/ws-trust/200802 > > for WS-Trust 1.4? > > Ed > _______________________________________________ > plasma mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/plasma _______________________________________________ plasma mailing list [email protected] https://www.ietf.org/mailman/listinfo/plasma
