adal 1.0.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (98) hide show
  1. checksums.yaml +7 -0
  2. data/.gitignore +5 -0
  3. data/.rubocop.yml +7 -0
  4. data/.travis.yml +7 -0
  5. data/Gemfile +25 -0
  6. data/LICENSE.txt +21 -0
  7. data/README.md +97 -0
  8. data/Rakefile +39 -0
  9. data/adal.gemspec +52 -0
  10. data/contributing.md +127 -0
  11. data/lib/adal.rb +24 -0
  12. data/lib/adal/authentication_context.rb +202 -0
  13. data/lib/adal/authentication_parameters.rb +126 -0
  14. data/lib/adal/authority.rb +165 -0
  15. data/lib/adal/cache_driver.rb +171 -0
  16. data/lib/adal/cached_token_response.rb +190 -0
  17. data/lib/adal/client_assertion.rb +63 -0
  18. data/lib/adal/client_assertion_certificate.rb +89 -0
  19. data/lib/adal/client_credential.rb +46 -0
  20. data/lib/adal/core_ext.rb +26 -0
  21. data/lib/adal/core_ext/hash.rb +34 -0
  22. data/lib/adal/jwt_parameters.rb +39 -0
  23. data/lib/adal/logger.rb +90 -0
  24. data/lib/adal/logging.rb +98 -0
  25. data/lib/adal/memory_cache.rb +95 -0
  26. data/lib/adal/mex_request.rb +52 -0
  27. data/lib/adal/mex_response.rb +141 -0
  28. data/lib/adal/noop_cache.rb +38 -0
  29. data/lib/adal/oauth_request.rb +76 -0
  30. data/lib/adal/request_parameters.rb +48 -0
  31. data/lib/adal/self_signed_jwt_factory.rb +96 -0
  32. data/lib/adal/templates/rst.13.xml.erb +35 -0
  33. data/lib/adal/templates/rst.2005.xml.erb +32 -0
  34. data/lib/adal/token_request.rb +231 -0
  35. data/lib/adal/token_response.rb +144 -0
  36. data/lib/adal/user_assertion.rb +57 -0
  37. data/lib/adal/user_credential.rb +152 -0
  38. data/lib/adal/user_identifier.rb +83 -0
  39. data/lib/adal/user_information.rb +49 -0
  40. data/lib/adal/util.rb +49 -0
  41. data/lib/adal/version.rb +36 -0
  42. data/lib/adal/wstrust_request.rb +100 -0
  43. data/lib/adal/wstrust_response.rb +168 -0
  44. data/lib/adal/xml_namespaces.rb +64 -0
  45. data/samples/authorization_code_example/README.md +10 -0
  46. data/samples/authorization_code_example/web_app.rb +139 -0
  47. data/samples/client_assertion_certificate_example/README.md +42 -0
  48. data/samples/client_assertion_certificate_example/app.rb +55 -0
  49. data/samples/on_behalf_of_example/README.md +35 -0
  50. data/samples/on_behalf_of_example/native_app.rb +52 -0
  51. data/samples/on_behalf_of_example/web_api.rb +71 -0
  52. data/samples/user_credentials_example/README.md +7 -0
  53. data/samples/user_credentials_example/app.rb +52 -0
  54. data/spec/adal/authentication_context_spec.rb +186 -0
  55. data/spec/adal/authentication_parameters_spec.rb +107 -0
  56. data/spec/adal/authority_spec.rb +122 -0
  57. data/spec/adal/cache_driver_spec.rb +191 -0
  58. data/spec/adal/cached_token_response_spec.rb +148 -0
  59. data/spec/adal/client_assertion_certificate_spec.rb +113 -0
  60. data/spec/adal/client_assertion_spec.rb +38 -0
  61. data/spec/adal/core_ext/hash_spec.rb +47 -0
  62. data/spec/adal/logging_spec.rb +48 -0
  63. data/spec/adal/memory_cache_spec.rb +107 -0
  64. data/spec/adal/mex_request_spec.rb +57 -0
  65. data/spec/adal/mex_response_spec.rb +143 -0
  66. data/spec/adal/self_signed_jwt_factory_spec.rb +63 -0
  67. data/spec/adal/token_request_spec.rb +150 -0
  68. data/spec/adal/token_response_spec.rb +102 -0
  69. data/spec/adal/user_credential_spec.rb +125 -0
  70. data/spec/adal/user_identifier_spec.rb +115 -0
  71. data/spec/adal/wstrust_request_spec.rb +51 -0
  72. data/spec/adal/wstrust_response_spec.rb +152 -0
  73. data/spec/fixtures/mex/insecureaddress.xml +924 -0
  74. data/spec/fixtures/mex/invalid_namespaces.xml +916 -0
  75. data/spec/fixtures/mex/malformed.xml +914 -0
  76. data/spec/fixtures/mex/microsoft.xml +916 -0
  77. data/spec/fixtures/mex/multiple_endpoints.xml +922 -0
  78. data/spec/fixtures/mex/no_matching_bindings.xml +916 -0
  79. data/spec/fixtures/mex/no_username_token_policies.xml +914 -0
  80. data/spec/fixtures/mex/no_wstrust_endpoints.xml +838 -0
  81. data/spec/fixtures/mex/only_13.xml +842 -0
  82. data/spec/fixtures/mex/only_2005.xml +842 -0
  83. data/spec/fixtures/oauth/error.json +1 -0
  84. data/spec/fixtures/oauth/success.json +1 -0
  85. data/spec/fixtures/oauth/success_with_id_token.json +1 -0
  86. data/spec/fixtures/wstrust/error.xml +24 -0
  87. data/spec/fixtures/wstrust/invalid_namespaces.xml +136 -0
  88. data/spec/fixtures/wstrust/missing_security_tokens.xml +90 -0
  89. data/spec/fixtures/wstrust/success.xml +136 -0
  90. data/spec/fixtures/wstrust/token.xml +1 -0
  91. data/spec/fixtures/wstrust/too_many_security_tokens.xml +219 -0
  92. data/spec/fixtures/wstrust/unrecognized_token_type.xml +136 -0
  93. data/spec/fixtures/wstrust/wstrust.13.xml +1 -0
  94. data/spec/fixtures/wstrust/wstrust.2005.xml +89 -0
  95. data/spec/spec_helper.rb +53 -0
  96. data/spec/support/fake_data.rb +40 -0
  97. data/spec/support/fake_token_endpoint.rb +108 -0
  98. metadata +265 -0
@@ -0,0 +1,51 @@
1
+ #-------------------------------------------------------------------------------
2
+ # Copyright (c) 2015 Micorosft Corporation
3
+ #
4
+ # Permission is hereby granted, free of charge, to any person obtaining a copy
5
+ # of this software and associated documentation files (the "Software"), to deal
6
+ # in the Software without restriction, including without limitation the rights
7
+ # to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
8
+ # copies of the Software, and to permit persons to whom the Software is
9
+ # furnished to do so, subject to the following conditions:
10
+ #
11
+ # The above copyright notice and this permission notice shall be included in
12
+ # all copies or substantial portions of the Software.
13
+ #
14
+ # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15
+ # IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16
+ # FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17
+ # AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18
+ # LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19
+ # OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
20
+ # THE SOFTWARE.
21
+ #-------------------------------------------------------------------------------
22
+
23
+ require_relative '../spec_helper'
24
+
25
+ describe ADAL::WSTrustRequest do
26
+ subject { ADAL::WSTrustRequest.new(uri) }
27
+
28
+ describe '#initialize' do
29
+ context 'with an invalid URI' do
30
+ let(:uri) { 'not a uri' }
31
+
32
+ it 'should raise InvalidURIError' do
33
+ expect do
34
+ ADAL::WSTrustRequest.new(uri)
35
+ end.to raise_error(URI::InvalidURIError)
36
+ end
37
+ end
38
+ end
39
+
40
+ describe '#execute' do
41
+ let(:uri) { 'https://microsoft.com/' }
42
+
43
+ it 'parses the body as an ADAL::WSTrustResponse' do
44
+ mex_response_body = 'mex body'
45
+ expect_any_instance_of(Net::HTTP).to receive(:request).once
46
+ .and_return(double(body: mex_response_body, code: '200'))
47
+ expect(ADAL::WSTrustResponse).to receive(:parse).with(mex_response_body)
48
+ subject.execute('some user', 'some password')
49
+ end
50
+ end
51
+ end
@@ -0,0 +1,152 @@
1
+ #-------------------------------------------------------------------------------
2
+ # Copyright (c) 2015 Micorosft Corporation
3
+ #
4
+ # Permission is hereby granted, free of charge, to any person obtaining a copy
5
+ # of this software and associated documentation files (the "Software"), to deal
6
+ # in the Software without restriction, including without limitation the rights
7
+ # to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
8
+ # copies of the Software, and to permit persons to whom the Software is
9
+ # furnished to do so, subject to the following conditions:
10
+ #
11
+ # The above copyright notice and this permission notice shall be included in
12
+ # all copies or substantial portions of the Software.
13
+ #
14
+ # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
15
+ # IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
16
+ # FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
17
+ # AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
18
+ # LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
19
+ # OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
20
+ # THE SOFTWARE.
21
+ #-------------------------------------------------------------------------------
22
+
23
+ require_relative '../spec_helper'
24
+
25
+ WSTRUST_FIXTURES = File.expand_path('../../fixtures/wstrust', __FILE__)
26
+
27
+ describe ADAL::WSTrustResponse do
28
+ describe '::parse' do
29
+ let(:response) { File.read(File.expand_path(file_name, WSTRUST_FIXTURES)) }
30
+
31
+ context 'with a successful response' do
32
+ let(:file_name) { 'success.xml' }
33
+
34
+ let(:token) do
35
+ File.read(File.expand_path('token.xml', WSTRUST_FIXTURES))
36
+ end
37
+
38
+ it 'correctly extracts the token' do
39
+ wstrust_response = ADAL::WSTrustResponse.parse(response)
40
+ expect(wstrust_response.token.strip).to eq(token.strip)
41
+ end
42
+
43
+ it 'has the correct grant type' do
44
+ wstrust_response = ADAL::WSTrustResponse.parse(response)
45
+ expect(wstrust_response.grant_type).to eq(
46
+ ADAL::TokenRequest::GrantType::SAML1)
47
+ end
48
+ end
49
+
50
+ context 'with an unrecognized token type' do
51
+ let(:file_name) { 'unrecognized_token_type.xml' }
52
+
53
+ it 'throws the appropriate error' do
54
+ expect { ADAL::WSTrustResponse.parse(response) }
55
+ .to raise_error(ADAL::WSTrustResponse::UnrecognizedTokenTypeError)
56
+ end
57
+ end
58
+
59
+ context 'with a WS-Trust 1.3 response' do
60
+ let(:file_name) { 'wstrust.13.xml' }
61
+
62
+ it 'extracts the token' do
63
+ wstrust_response = ADAL::WSTrustResponse.parse(response)
64
+ expect(wstrust_response.token.strip).to_not be nil
65
+ end
66
+ end
67
+
68
+ context 'with a WS-Trust 2005 response' do
69
+ let(:file_name) { 'wstrust.2005.xml' }
70
+
71
+ it 'extracts the token' do
72
+ wstrust_response = ADAL::WSTrustResponse.parse(response)
73
+ expect(wstrust_response.token.strip).to_not be nil
74
+ end
75
+ end
76
+
77
+ context 'with an error response' do
78
+ let(:file_name) { 'error.xml' }
79
+
80
+ it 'throws the appropriate error' do
81
+ expect do
82
+ ADAL::WSTrustResponse.parse(response)
83
+ end.to raise_error(ADAL::WSTrustResponse::WSTrustError, /MSIS3127/)
84
+ end
85
+ end
86
+
87
+ context 'with invalid namespaces' do
88
+ let(:file_name) { 'invalid_namespaces.xml' }
89
+
90
+ it 'throws the appropriate error' do
91
+ expect { ADAL::WSTrustResponse.parse(response) }
92
+ .to raise_error(
93
+ ADAL::WSTrustResponse::WSTrustError, /Unable to parse token/)
94
+ end
95
+ end
96
+
97
+ context 'with an invalid abundance of security tokens' do
98
+ let(:file_name) { 'too_many_security_tokens.xml' }
99
+
100
+ it 'throws the appropriate error' do
101
+ expect { ADAL::WSTrustResponse.parse(response) }
102
+ .to raise_error(
103
+ ADAL::WSTrustResponse::WSTrustError,
104
+ /too many RequestedSecurityTokens/)
105
+ end
106
+ end
107
+
108
+ context 'with no security tokens on the first token response node' do
109
+ let(:file_name) { 'missing_security_tokens.xml' }
110
+ let(:expected_token) { '<foo:Assertion xmlns:foo="bar"/>' }
111
+ subject { ADAL::WSTrustResponse.parse(response) }
112
+
113
+ it { expect { subject }.to_not raise_error }
114
+
115
+ it 'should use the backup' do
116
+ expect(subject.token.to_s).to eq(expected_token)
117
+ end
118
+ end
119
+ end
120
+
121
+ describe '#grant_type' do
122
+ context 'with a SAML1 token type' do
123
+ subject do
124
+ response = ADAL::WSTrustResponse.new(
125
+ 'irrelevant', ADAL::WSTrustResponse::TokenType::V1)
126
+ response.grant_type
127
+ end
128
+ it { is_expected.to eq(ADAL::TokenRequest::GrantType::SAML1) }
129
+ end
130
+
131
+ context 'with a SAML2 token type' do
132
+ subject do
133
+ response = ADAL::WSTrustResponse.new(
134
+ 'irrelevant', ADAL::WSTrustResponse::TokenType::V2)
135
+ response.grant_type
136
+ end
137
+ it { is_expected.to eq(ADAL::TokenRequest::GrantType::SAML2) }
138
+ end
139
+
140
+ # This case should not happen unless the developer is being intentionally
141
+ # hacky. The constructor ensures that the token type is valid.
142
+ context 'with an unrecognized token type' do
143
+ subject do
144
+ response = ADAL::WSTrustResponse.new(
145
+ 'irrelevant', ADAL::WSTrustResponse::TokenType::V1)
146
+ response.instance_variable_set(:@token_type, 'not a token type')
147
+ response.grant_type
148
+ end
149
+ it { is_expected.to be_nil }
150
+ end
151
+ end
152
+ end
@@ -0,0 +1,924 @@
1
+ <?xml version="1.0" encoding="utf-8"?>
2
+ <wsdl:definitions name="SecurityTokenService" targetNamespace="http://schemas.microsoft.com/ws/2008/06/identity/securitytokenservice" xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust" xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/" xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:tns="http://schemas.microsoft.com/ws/2008/06/identity/securitytokenservice" xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract" xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata" xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/" xmlns:wsa10="http://www.w3.org/2005/08/addressing" xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl" xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex" xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:trust="http://docs.oasis-open.org/ws-sx/ws-trust/200512" xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy">
3
+ <wsp:Policy wsu:Id="CustomBinding_IWSTrustFeb2005Async_policy">
4
+ <wsp:ExactlyOne>
5
+ <wsp:All>
6
+ <http:NegotiateAuthentication xmlns:http="http://schemas.microsoft.com/ws/06/2004/policy/http"/>
7
+ <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
8
+ <wsp:Policy>
9
+ <sp:TransportToken>
10
+ <wsp:Policy>
11
+ <sp:HttpsToken RequireClientCertificate="false"/>
12
+ </wsp:Policy>
13
+ </sp:TransportToken>
14
+ <sp:AlgorithmSuite>
15
+ <wsp:Policy>
16
+ <sp:Basic256/>
17
+ </wsp:Policy>
18
+ </sp:AlgorithmSuite>
19
+ <sp:Layout>
20
+ <wsp:Policy>
21
+ <sp:Strict/>
22
+ </wsp:Policy>
23
+ </sp:Layout>
24
+ </wsp:Policy>
25
+ </sp:TransportBinding>
26
+ <wsaw:UsingAddressing/>
27
+ </wsp:All>
28
+ </wsp:ExactlyOne>
29
+ </wsp:Policy>
30
+ <wsp:Policy wsu:Id="CertificateWSTrustBinding_IWSTrustFeb2005Async_policy">
31
+ <wsp:ExactlyOne>
32
+ <wsp:All>
33
+ <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
34
+ <wsp:Policy>
35
+ <sp:TransportToken>
36
+ <wsp:Policy>
37
+ <sp:HttpsToken RequireClientCertificate="false"/>
38
+ </wsp:Policy>
39
+ </sp:TransportToken>
40
+ <sp:AlgorithmSuite>
41
+ <wsp:Policy>
42
+ <sp:Basic256/>
43
+ </wsp:Policy>
44
+ </sp:AlgorithmSuite>
45
+ <sp:Layout>
46
+ <wsp:Policy>
47
+ <sp:Strict/>
48
+ </wsp:Policy>
49
+ </sp:Layout>
50
+ <sp:IncludeTimestamp/>
51
+ </wsp:Policy>
52
+ </sp:TransportBinding>
53
+ <sp:EndorsingSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
54
+ <wsp:Policy>
55
+ <sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
56
+ <wsp:Policy>
57
+ <sp:RequireThumbprintReference/>
58
+ <sp:WssX509V3Token10/>
59
+ </wsp:Policy>
60
+ </sp:X509Token>
61
+ <mssp:RsaToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never" wsp:Optional="true" xmlns:mssp="http://schemas.microsoft.com/ws/2005/07/securitypolicy"/>
62
+ <sp:SignedParts>
63
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
64
+ </sp:SignedParts>
65
+ </wsp:Policy>
66
+ </sp:EndorsingSupportingTokens>
67
+ <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
68
+ <wsp:Policy>
69
+ <sp:MustSupportRefThumbprint/>
70
+ </wsp:Policy>
71
+ </sp:Wss11>
72
+ <sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
73
+ <wsp:Policy>
74
+ <sp:MustSupportIssuedTokens/>
75
+ <sp:RequireClientEntropy/>
76
+ <sp:RequireServerEntropy/>
77
+ </wsp:Policy>
78
+ </sp:Trust10>
79
+ <wsaw:UsingAddressing/>
80
+ </wsp:All>
81
+ </wsp:ExactlyOne>
82
+ </wsp:Policy>
83
+ <wsp:Policy wsu:Id="CertificateWSTrustBinding_IWSTrustFeb2005Async1_policy">
84
+ <wsp:ExactlyOne>
85
+ <wsp:All>
86
+ <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
87
+ <wsp:Policy>
88
+ <sp:TransportToken>
89
+ <wsp:Policy>
90
+ <sp:HttpsToken RequireClientCertificate="true"/>
91
+ </wsp:Policy>
92
+ </sp:TransportToken>
93
+ <sp:AlgorithmSuite>
94
+ <wsp:Policy>
95
+ <sp:Basic256/>
96
+ </wsp:Policy>
97
+ </sp:AlgorithmSuite>
98
+ <sp:Layout>
99
+ <wsp:Policy>
100
+ <sp:Strict/>
101
+ </wsp:Policy>
102
+ </sp:Layout>
103
+ </wsp:Policy>
104
+ </sp:TransportBinding>
105
+ <wsaw:UsingAddressing/>
106
+ </wsp:All>
107
+ </wsp:ExactlyOne>
108
+ </wsp:Policy>
109
+ <wsp:Policy wsu:Id="UserNameWSTrustBinding_IWSTrustFeb2005Async_policy">
110
+ <wsp:ExactlyOne>
111
+ <wsp:All>
112
+ <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
113
+ <wsp:Policy>
114
+ <sp:TransportToken>
115
+ <wsp:Policy>
116
+ <sp:HttpsToken RequireClientCertificate="false"/>
117
+ </wsp:Policy>
118
+ </sp:TransportToken>
119
+ <sp:AlgorithmSuite>
120
+ <wsp:Policy>
121
+ <sp:Basic256/>
122
+ </wsp:Policy>
123
+ </sp:AlgorithmSuite>
124
+ <sp:Layout>
125
+ <wsp:Policy>
126
+ <sp:Strict/>
127
+ </wsp:Policy>
128
+ </sp:Layout>
129
+ <sp:IncludeTimestamp/>
130
+ </wsp:Policy>
131
+ </sp:TransportBinding>
132
+ <sp:SignedSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
133
+ <wsp:Policy>
134
+ <sp:UsernameToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
135
+ <wsp:Policy>
136
+ <sp:WssUsernameToken10/>
137
+ </wsp:Policy>
138
+ </sp:UsernameToken>
139
+ </wsp:Policy>
140
+ </sp:SignedSupportingTokens>
141
+ <sp:EndorsingSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
142
+ <wsp:Policy>
143
+ <mssp:RsaToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never" wsp:Optional="true" xmlns:mssp="http://schemas.microsoft.com/ws/2005/07/securitypolicy"/>
144
+ <sp:SignedParts>
145
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
146
+ </sp:SignedParts>
147
+ </wsp:Policy>
148
+ </sp:EndorsingSupportingTokens>
149
+ <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
150
+ <wsp:Policy/>
151
+ </sp:Wss11>
152
+ <sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
153
+ <wsp:Policy>
154
+ <sp:MustSupportIssuedTokens/>
155
+ <sp:RequireClientEntropy/>
156
+ <sp:RequireServerEntropy/>
157
+ </wsp:Policy>
158
+ </sp:Trust10>
159
+ <wsaw:UsingAddressing/>
160
+ </wsp:All>
161
+ </wsp:ExactlyOne>
162
+ </wsp:Policy>
163
+ <wsp:Policy wsu:Id="CustomBinding_IWSTrustFeb2005Async1_policy">
164
+ <wsp:ExactlyOne>
165
+ <wsp:All>
166
+ <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
167
+ <wsp:Policy>
168
+ <sp:TransportToken>
169
+ <wsp:Policy>
170
+ <sp:HttpsToken RequireClientCertificate="false"/>
171
+ </wsp:Policy>
172
+ </sp:TransportToken>
173
+ <sp:AlgorithmSuite>
174
+ <wsp:Policy>
175
+ <sp:Basic128/>
176
+ </wsp:Policy>
177
+ </sp:AlgorithmSuite>
178
+ <sp:Layout>
179
+ <wsp:Policy>
180
+ <sp:Strict/>
181
+ </wsp:Policy>
182
+ </sp:Layout>
183
+ <sp:IncludeTimestamp/>
184
+ </wsp:Policy>
185
+ </sp:TransportBinding>
186
+ <sp:EndorsingSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
187
+ <wsp:Policy>
188
+ <sp:KerberosToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Once">
189
+ <wsp:Policy>
190
+ <sp:WssGssKerberosV5ApReqToken11/>
191
+ </wsp:Policy>
192
+ </sp:KerberosToken>
193
+ <mssp:RsaToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never" wsp:Optional="true" xmlns:mssp="http://schemas.microsoft.com/ws/2005/07/securitypolicy"/>
194
+ <sp:SignedParts>
195
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
196
+ </sp:SignedParts>
197
+ </wsp:Policy>
198
+ </sp:EndorsingSupportingTokens>
199
+ <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
200
+ <wsp:Policy/>
201
+ </sp:Wss11>
202
+ <sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
203
+ <wsp:Policy>
204
+ <sp:MustSupportIssuedTokens/>
205
+ <sp:RequireClientEntropy/>
206
+ <sp:RequireServerEntropy/>
207
+ </wsp:Policy>
208
+ </sp:Trust10>
209
+ <wsaw:UsingAddressing/>
210
+ </wsp:All>
211
+ </wsp:ExactlyOne>
212
+ </wsp:Policy>
213
+ <wsp:Policy wsu:Id="IssuedTokenWSTrustBinding_IWSTrustFeb2005Async_policy">
214
+ <wsp:ExactlyOne>
215
+ <wsp:All>
216
+ <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
217
+ <wsp:Policy>
218
+ <sp:TransportToken>
219
+ <wsp:Policy>
220
+ <sp:HttpsToken RequireClientCertificate="false"/>
221
+ </wsp:Policy>
222
+ </sp:TransportToken>
223
+ <sp:AlgorithmSuite>
224
+ <wsp:Policy>
225
+ <sp:Basic256/>
226
+ </wsp:Policy>
227
+ </sp:AlgorithmSuite>
228
+ <sp:Layout>
229
+ <wsp:Policy>
230
+ <sp:Strict/>
231
+ </wsp:Policy>
232
+ </sp:Layout>
233
+ <sp:IncludeTimestamp/>
234
+ </wsp:Policy>
235
+ </sp:TransportBinding>
236
+ <sp:EndorsingSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
237
+ <wsp:Policy>
238
+ <sp:IssuedToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
239
+ <sp:RequestSecurityTokenTemplate>
240
+ <t:KeyType>http://schemas.xmlsoap.org/ws/2005/02/trust/PublicKey</t:KeyType>
241
+ <t:EncryptWith>http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p</t:EncryptWith>
242
+ <t:SignatureAlgorithm>http://www.w3.org/2000/09/xmldsig#rsa-sha1</t:SignatureAlgorithm>
243
+ <t:CanonicalizationAlgorithm>http://www.w3.org/2001/10/xml-exc-c14n#</t:CanonicalizationAlgorithm>
244
+ <t:EncryptionAlgorithm>http://www.w3.org/2001/04/xmlenc#aes256-cbc</t:EncryptionAlgorithm>
245
+ </sp:RequestSecurityTokenTemplate>
246
+ <wsp:Policy>
247
+ <sp:RequireInternalReference/>
248
+ </wsp:Policy>
249
+ </sp:IssuedToken>
250
+ <mssp:RsaToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never" wsp:Optional="true" xmlns:mssp="http://schemas.microsoft.com/ws/2005/07/securitypolicy"/>
251
+ <sp:SignedParts>
252
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
253
+ </sp:SignedParts>
254
+ </wsp:Policy>
255
+ </sp:EndorsingSupportingTokens>
256
+ <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
257
+ <wsp:Policy/>
258
+ </sp:Wss11>
259
+ <sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
260
+ <wsp:Policy>
261
+ <sp:MustSupportIssuedTokens/>
262
+ <sp:RequireClientEntropy/>
263
+ <sp:RequireServerEntropy/>
264
+ </wsp:Policy>
265
+ </sp:Trust10>
266
+ <wsaw:UsingAddressing/>
267
+ </wsp:All>
268
+ </wsp:ExactlyOne>
269
+ </wsp:Policy>
270
+ <wsp:Policy wsu:Id="IssuedTokenWSTrustBinding_IWSTrustFeb2005Async1_policy">
271
+ <wsp:ExactlyOne>
272
+ <wsp:All>
273
+ <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
274
+ <wsp:Policy>
275
+ <sp:TransportToken>
276
+ <wsp:Policy>
277
+ <sp:HttpsToken RequireClientCertificate="false"/>
278
+ </wsp:Policy>
279
+ </sp:TransportToken>
280
+ <sp:AlgorithmSuite>
281
+ <wsp:Policy>
282
+ <sp:Basic256/>
283
+ </wsp:Policy>
284
+ </sp:AlgorithmSuite>
285
+ <sp:Layout>
286
+ <wsp:Policy>
287
+ <sp:Strict/>
288
+ </wsp:Policy>
289
+ </sp:Layout>
290
+ <sp:IncludeTimestamp/>
291
+ </wsp:Policy>
292
+ </sp:TransportBinding>
293
+ <sp:EndorsingSupportingTokens xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
294
+ <wsp:Policy>
295
+ <sp:IssuedToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
296
+ <sp:RequestSecurityTokenTemplate>
297
+ <t:KeyType>http://schemas.xmlsoap.org/ws/2005/02/trust/SymmetricKey</t:KeyType>
298
+ <t:KeySize>256</t:KeySize>
299
+ <t:EncryptWith>http://www.w3.org/2001/04/xmlenc#aes256-cbc</t:EncryptWith>
300
+ <t:SignatureAlgorithm>http://www.w3.org/2000/09/xmldsig#hmac-sha1</t:SignatureAlgorithm>
301
+ <t:CanonicalizationAlgorithm>http://www.w3.org/2001/10/xml-exc-c14n#</t:CanonicalizationAlgorithm>
302
+ <t:EncryptionAlgorithm>http://www.w3.org/2001/04/xmlenc#aes256-cbc</t:EncryptionAlgorithm>
303
+ </sp:RequestSecurityTokenTemplate>
304
+ <wsp:Policy>
305
+ <sp:RequireInternalReference/>
306
+ </wsp:Policy>
307
+ </sp:IssuedToken>
308
+ <mssp:RsaToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never" wsp:Optional="true" xmlns:mssp="http://schemas.microsoft.com/ws/2005/07/securitypolicy"/>
309
+ <sp:SignedParts>
310
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
311
+ </sp:SignedParts>
312
+ </wsp:Policy>
313
+ </sp:EndorsingSupportingTokens>
314
+ <sp:Wss11 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
315
+ <wsp:Policy/>
316
+ </sp:Wss11>
317
+ <sp:Trust10 xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
318
+ <wsp:Policy>
319
+ <sp:MustSupportIssuedTokens/>
320
+ <sp:RequireClientEntropy/>
321
+ <sp:RequireServerEntropy/>
322
+ </wsp:Policy>
323
+ </sp:Trust10>
324
+ <wsaw:UsingAddressing/>
325
+ </wsp:All>
326
+ </wsp:ExactlyOne>
327
+ </wsp:Policy>
328
+ <wsp:Policy wsu:Id="CustomBinding_IWSTrust13Async_policy">
329
+ <wsp:ExactlyOne>
330
+ <wsp:All>
331
+ <sp:TransportBinding xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
332
+ <wsp:Policy>
333
+ <sp:TransportToken>
334
+ <wsp:Policy>
335
+ <sp:HttpsToken/>
336
+ </wsp:Policy>
337
+ </sp:TransportToken>
338
+ <sp:AlgorithmSuite>
339
+ <wsp:Policy>
340
+ <sp:Basic128/>
341
+ </wsp:Policy>
342
+ </sp:AlgorithmSuite>
343
+ <sp:Layout>
344
+ <wsp:Policy>
345
+ <sp:Strict/>
346
+ </wsp:Policy>
347
+ </sp:Layout>
348
+ <sp:IncludeTimestamp/>
349
+ </wsp:Policy>
350
+ </sp:TransportBinding>
351
+ <sp:EndorsingSupportingTokens xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
352
+ <wsp:Policy>
353
+ <sp:KerberosToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/Once">
354
+ <wsp:Policy>
355
+ <sp:WssGssKerberosV5ApReqToken11/>
356
+ </wsp:Policy>
357
+ </sp:KerberosToken>
358
+ <sp:KeyValueToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/Never" wsp:Optional="true"/>
359
+ <sp:SignedParts>
360
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
361
+ </sp:SignedParts>
362
+ </wsp:Policy>
363
+ </sp:EndorsingSupportingTokens>
364
+ <sp:Wss11 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
365
+ <wsp:Policy/>
366
+ </sp:Wss11>
367
+ <sp:Trust13 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
368
+ <wsp:Policy>
369
+ <sp:MustSupportIssuedTokens/>
370
+ <sp:RequireClientEntropy/>
371
+ <sp:RequireServerEntropy/>
372
+ </wsp:Policy>
373
+ </sp:Trust13>
374
+ <wsaw:UsingAddressing/>
375
+ </wsp:All>
376
+ </wsp:ExactlyOne>
377
+ </wsp:Policy>
378
+ <wsp:Policy wsu:Id="CertificateWSTrustBinding_IWSTrust13Async_policy">
379
+ <wsp:ExactlyOne>
380
+ <wsp:All>
381
+ <sp:TransportBinding xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
382
+ <wsp:Policy>
383
+ <sp:TransportToken>
384
+ <wsp:Policy>
385
+ <sp:HttpsToken/>
386
+ </wsp:Policy>
387
+ </sp:TransportToken>
388
+ <sp:AlgorithmSuite>
389
+ <wsp:Policy>
390
+ <sp:Basic256/>
391
+ </wsp:Policy>
392
+ </sp:AlgorithmSuite>
393
+ <sp:Layout>
394
+ <wsp:Policy>
395
+ <sp:Strict/>
396
+ </wsp:Policy>
397
+ </sp:Layout>
398
+ <sp:IncludeTimestamp/>
399
+ </wsp:Policy>
400
+ </sp:TransportBinding>
401
+ <sp:EndorsingSupportingTokens xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
402
+ <wsp:Policy>
403
+ <sp:X509Token sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient">
404
+ <wsp:Policy>
405
+ <sp:RequireThumbprintReference/>
406
+ <sp:WssX509V3Token10/>
407
+ </wsp:Policy>
408
+ </sp:X509Token>
409
+ <sp:KeyValueToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/Never" wsp:Optional="true"/>
410
+ <sp:SignedParts>
411
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
412
+ </sp:SignedParts>
413
+ </wsp:Policy>
414
+ </sp:EndorsingSupportingTokens>
415
+ <sp:Wss11 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
416
+ <wsp:Policy>
417
+ <sp:MustSupportRefThumbprint/>
418
+ </wsp:Policy>
419
+ </sp:Wss11>
420
+ <sp:Trust13 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
421
+ <wsp:Policy>
422
+ <sp:MustSupportIssuedTokens/>
423
+ <sp:RequireClientEntropy/>
424
+ <sp:RequireServerEntropy/>
425
+ </wsp:Policy>
426
+ </sp:Trust13>
427
+ <wsaw:UsingAddressing/>
428
+ </wsp:All>
429
+ </wsp:ExactlyOne>
430
+ </wsp:Policy>
431
+ <wsp:Policy wsu:Id="UserNameWSTrustBinding_IWSTrust13Async_policy">
432
+ <wsp:ExactlyOne>
433
+ <wsp:All>
434
+ <sp:TransportBinding xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
435
+ <wsp:Policy>
436
+ <sp:TransportToken>
437
+ <wsp:Policy>
438
+ <sp:HttpsToken/>
439
+ </wsp:Policy>
440
+ </sp:TransportToken>
441
+ <sp:AlgorithmSuite>
442
+ <wsp:Policy>
443
+ <sp:Basic256/>
444
+ </wsp:Policy>
445
+ </sp:AlgorithmSuite>
446
+ <sp:Layout>
447
+ <wsp:Policy>
448
+ <sp:Strict/>
449
+ </wsp:Policy>
450
+ </sp:Layout>
451
+ <sp:IncludeTimestamp/>
452
+ </wsp:Policy>
453
+ </sp:TransportBinding>
454
+ <sp:SignedEncryptedSupportingTokens xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
455
+ <wsp:Policy>
456
+ <sp:UsernameToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient">
457
+ <wsp:Policy>
458
+ <sp:WssUsernameToken10/>
459
+ </wsp:Policy>
460
+ </sp:UsernameToken>
461
+ </wsp:Policy>
462
+ </sp:SignedEncryptedSupportingTokens>
463
+ <sp:EndorsingSupportingTokens xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
464
+ <wsp:Policy>
465
+ <sp:KeyValueToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/Never" wsp:Optional="true"/>
466
+ <sp:SignedParts>
467
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
468
+ </sp:SignedParts>
469
+ </wsp:Policy>
470
+ </sp:EndorsingSupportingTokens>
471
+ <sp:Wss11 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
472
+ <wsp:Policy/>
473
+ </sp:Wss11>
474
+ <sp:Trust13 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
475
+ <wsp:Policy>
476
+ <sp:MustSupportIssuedTokens/>
477
+ <sp:RequireClientEntropy/>
478
+ <sp:RequireServerEntropy/>
479
+ </wsp:Policy>
480
+ </sp:Trust13>
481
+ <wsaw:UsingAddressing/>
482
+ </wsp:All>
483
+ </wsp:ExactlyOne>
484
+ </wsp:Policy>
485
+ <wsp:Policy wsu:Id="IssuedTokenWSTrustBinding_IWSTrust13Async_policy">
486
+ <wsp:ExactlyOne>
487
+ <wsp:All>
488
+ <sp:TransportBinding xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
489
+ <wsp:Policy>
490
+ <sp:TransportToken>
491
+ <wsp:Policy>
492
+ <sp:HttpsToken/>
493
+ </wsp:Policy>
494
+ </sp:TransportToken>
495
+ <sp:AlgorithmSuite>
496
+ <wsp:Policy>
497
+ <sp:Basic256/>
498
+ </wsp:Policy>
499
+ </sp:AlgorithmSuite>
500
+ <sp:Layout>
501
+ <wsp:Policy>
502
+ <sp:Strict/>
503
+ </wsp:Policy>
504
+ </sp:Layout>
505
+ <sp:IncludeTimestamp/>
506
+ </wsp:Policy>
507
+ </sp:TransportBinding>
508
+ <sp:EndorsingSupportingTokens xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
509
+ <wsp:Policy>
510
+ <sp:IssuedToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient">
511
+ <sp:RequestSecurityTokenTemplate>
512
+ <trust:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/PublicKey</trust:KeyType>
513
+ <trust:KeyWrapAlgorithm>http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p</trust:KeyWrapAlgorithm>
514
+ <trust:EncryptWith>http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p</trust:EncryptWith>
515
+ <trust:SignatureAlgorithm>http://www.w3.org/2000/09/xmldsig#rsa-sha1</trust:SignatureAlgorithm>
516
+ <trust:CanonicalizationAlgorithm>http://www.w3.org/2001/10/xml-exc-c14n#</trust:CanonicalizationAlgorithm>
517
+ <trust:EncryptionAlgorithm>http://www.w3.org/2001/04/xmlenc#aes256-cbc</trust:EncryptionAlgorithm>
518
+ </sp:RequestSecurityTokenTemplate>
519
+ <wsp:Policy>
520
+ <sp:RequireInternalReference/>
521
+ </wsp:Policy>
522
+ </sp:IssuedToken>
523
+ <sp:KeyValueToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/Never" wsp:Optional="true"/>
524
+ <sp:SignedParts>
525
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
526
+ </sp:SignedParts>
527
+ </wsp:Policy>
528
+ </sp:EndorsingSupportingTokens>
529
+ <sp:Wss11 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
530
+ <wsp:Policy/>
531
+ </sp:Wss11>
532
+ <sp:Trust13 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
533
+ <wsp:Policy>
534
+ <sp:MustSupportIssuedTokens/>
535
+ <sp:RequireClientEntropy/>
536
+ <sp:RequireServerEntropy/>
537
+ </wsp:Policy>
538
+ </sp:Trust13>
539
+ <wsaw:UsingAddressing/>
540
+ </wsp:All>
541
+ </wsp:ExactlyOne>
542
+ </wsp:Policy>
543
+ <wsp:Policy wsu:Id="IssuedTokenWSTrustBinding_IWSTrust13Async1_policy">
544
+ <wsp:ExactlyOne>
545
+ <wsp:All>
546
+ <sp:TransportBinding xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
547
+ <wsp:Policy>
548
+ <sp:TransportToken>
549
+ <wsp:Policy>
550
+ <sp:HttpsToken/>
551
+ </wsp:Policy>
552
+ </sp:TransportToken>
553
+ <sp:AlgorithmSuite>
554
+ <wsp:Policy>
555
+ <sp:Basic256/>
556
+ </wsp:Policy>
557
+ </sp:AlgorithmSuite>
558
+ <sp:Layout>
559
+ <wsp:Policy>
560
+ <sp:Strict/>
561
+ </wsp:Policy>
562
+ </sp:Layout>
563
+ <sp:IncludeTimestamp/>
564
+ </wsp:Policy>
565
+ </sp:TransportBinding>
566
+ <sp:EndorsingSupportingTokens xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
567
+ <wsp:Policy>
568
+ <sp:IssuedToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/AlwaysToRecipient">
569
+ <sp:RequestSecurityTokenTemplate>
570
+ <trust:KeyType>http://docs.oasis-open.org/ws-sx/ws-trust/200512/SymmetricKey</trust:KeyType>
571
+ <trust:KeySize>256</trust:KeySize>
572
+ <trust:KeyWrapAlgorithm>http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p</trust:KeyWrapAlgorithm>
573
+ <trust:EncryptWith>http://www.w3.org/2001/04/xmlenc#aes256-cbc</trust:EncryptWith>
574
+ <trust:SignatureAlgorithm>http://www.w3.org/2000/09/xmldsig#hmac-sha1</trust:SignatureAlgorithm>
575
+ <trust:CanonicalizationAlgorithm>http://www.w3.org/2001/10/xml-exc-c14n#</trust:CanonicalizationAlgorithm>
576
+ <trust:EncryptionAlgorithm>http://www.w3.org/2001/04/xmlenc#aes256-cbc</trust:EncryptionAlgorithm>
577
+ </sp:RequestSecurityTokenTemplate>
578
+ <wsp:Policy>
579
+ <sp:RequireInternalReference/>
580
+ </wsp:Policy>
581
+ </sp:IssuedToken>
582
+ <sp:KeyValueToken sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/IncludeToken/Never" wsp:Optional="true"/>
583
+ <sp:SignedParts>
584
+ <sp:Header Name="To" Namespace="http://www.w3.org/2005/08/addressing"/>
585
+ </sp:SignedParts>
586
+ </wsp:Policy>
587
+ </sp:EndorsingSupportingTokens>
588
+ <sp:Wss11 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
589
+ <wsp:Policy/>
590
+ </sp:Wss11>
591
+ <sp:Trust13 xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
592
+ <wsp:Policy>
593
+ <sp:MustSupportIssuedTokens/>
594
+ <sp:RequireClientEntropy/>
595
+ <sp:RequireServerEntropy/>
596
+ </wsp:Policy>
597
+ </sp:Trust13>
598
+ <wsaw:UsingAddressing/>
599
+ </wsp:All>
600
+ </wsp:ExactlyOne>
601
+ </wsp:Policy>
602
+ <wsp:Policy wsu:Id="CustomBinding_IWSTrust13Async1_policy">
603
+ <wsp:ExactlyOne>
604
+ <wsp:All>
605
+ <http:NegotiateAuthentication xmlns:http="http://schemas.microsoft.com/ws/06/2004/policy/http"/>
606
+ <sp:TransportBinding xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
607
+ <wsp:Policy>
608
+ <sp:TransportToken>
609
+ <wsp:Policy>
610
+ <sp:HttpsToken RequireClientCertificate="false"/>
611
+ </wsp:Policy>
612
+ </sp:TransportToken>
613
+ <sp:AlgorithmSuite>
614
+ <wsp:Policy>
615
+ <sp:Basic256/>
616
+ </wsp:Policy>
617
+ </sp:AlgorithmSuite>
618
+ <sp:Layout>
619
+ <wsp:Policy>
620
+ <sp:Strict/>
621
+ </wsp:Policy>
622
+ </sp:Layout>
623
+ </wsp:Policy>
624
+ </sp:TransportBinding>
625
+ <wsaw:UsingAddressing/>
626
+ </wsp:All>
627
+ </wsp:ExactlyOne>
628
+ </wsp:Policy>
629
+ <wsdl:types>
630
+ <xsd:schema targetNamespace="http://schemas.microsoft.com/ws/2008/06/identity/securitytokenservice/Imports">
631
+ <xsd:import schemaLocation="https://arvmserver2012.archan.us/adfs/services/trust/mex?xsd=xsd0" namespace="http://schemas.microsoft.com/Message"/>
632
+ <xsd:import schemaLocation="https://arvmserver2012.archan.us/adfs/services/trust/mex?xsd=xsd1" namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
633
+ <xsd:import schemaLocation="https://arvmserver2012.archan.us/adfs/services/trust/mex?xsd=xsd2" namespace="http://docs.oasis-open.org/ws-sx/ws-trust/200512"/>
634
+ </xsd:schema>
635
+ </wsdl:types>
636
+ <wsdl:message name="IWSTrustFeb2005Async_TrustFeb2005IssueAsync_InputMessage">
637
+ <wsdl:part name="request" element="t:RequestSecurityToken"/>
638
+ </wsdl:message>
639
+ <wsdl:message name="IWSTrustFeb2005Async_TrustFeb2005IssueAsync_OutputMessage">
640
+ <wsdl:part name="TrustFeb2005IssueAsyncResult" element="t:RequestSecurityTokenResponse"/>
641
+ </wsdl:message>
642
+ <wsdl:message name="IWSTrust13Async_Trust13IssueAsync_InputMessage">
643
+ <wsdl:part name="request" element="trust:RequestSecurityToken"/>
644
+ </wsdl:message>
645
+ <wsdl:message name="IWSTrust13Async_Trust13IssueAsync_OutputMessage">
646
+ <wsdl:part name="Trust13IssueAsyncResult" element="trust:RequestSecurityTokenResponseCollection"/>
647
+ </wsdl:message>
648
+ <wsdl:portType name="IWSTrustFeb2005Async">
649
+ <wsdl:operation name="TrustFeb2005IssueAsync">
650
+ <wsdl:input wsaw:Action="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" message="tns:IWSTrustFeb2005Async_TrustFeb2005IssueAsync_InputMessage"/>
651
+ <wsdl:output wsaw:Action="http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/Issue" message="tns:IWSTrustFeb2005Async_TrustFeb2005IssueAsync_OutputMessage"/>
652
+ </wsdl:operation>
653
+ </wsdl:portType>
654
+ <wsdl:portType name="IWSTrust13Async">
655
+ <wsdl:operation name="Trust13IssueAsync">
656
+ <wsdl:input wsaw:Action="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" message="tns:IWSTrust13Async_Trust13IssueAsync_InputMessage"/>
657
+ <wsdl:output wsaw:Action="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RSTRC/IssueFinal" message="tns:IWSTrust13Async_Trust13IssueAsync_OutputMessage"/>
658
+ </wsdl:operation>
659
+ </wsdl:portType>
660
+ <wsdl:binding name="CustomBinding_IWSTrustFeb2005Async" type="tns:IWSTrustFeb2005Async">
661
+ <wsp:PolicyReference URI="#CustomBinding_IWSTrustFeb2005Async_policy"/>
662
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
663
+ <wsdl:operation name="TrustFeb2005IssueAsync">
664
+ <soap12:operation soapAction="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" style="document"/>
665
+ <wsdl:input>
666
+ <soap12:body use="literal"/>
667
+ </wsdl:input>
668
+ <wsdl:output>
669
+ <soap12:body use="literal"/>
670
+ </wsdl:output>
671
+ </wsdl:operation>
672
+ </wsdl:binding>
673
+ <wsdl:binding name="CertificateWSTrustBinding_IWSTrustFeb2005Async" type="tns:IWSTrustFeb2005Async">
674
+ <wsp:PolicyReference URI="#CertificateWSTrustBinding_IWSTrustFeb2005Async_policy"/>
675
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
676
+ <wsdl:operation name="TrustFeb2005IssueAsync">
677
+ <soap12:operation soapAction="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" style="document"/>
678
+ <wsdl:input>
679
+ <soap12:body use="literal"/>
680
+ </wsdl:input>
681
+ <wsdl:output>
682
+ <soap12:body use="literal"/>
683
+ </wsdl:output>
684
+ </wsdl:operation>
685
+ </wsdl:binding>
686
+ <wsdl:binding name="CertificateWSTrustBinding_IWSTrustFeb2005Async1" type="tns:IWSTrustFeb2005Async">
687
+ <wsp:PolicyReference URI="#CertificateWSTrustBinding_IWSTrustFeb2005Async1_policy"/>
688
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
689
+ <wsdl:operation name="TrustFeb2005IssueAsync">
690
+ <soap12:operation soapAction="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" style="document"/>
691
+ <wsdl:input>
692
+ <soap12:body use="literal"/>
693
+ </wsdl:input>
694
+ <wsdl:output>
695
+ <soap12:body use="literal"/>
696
+ </wsdl:output>
697
+ </wsdl:operation>
698
+ </wsdl:binding>
699
+ <wsdl:binding name="UserNameWSTrustBinding_IWSTrustFeb2005Async" type="tns:IWSTrustFeb2005Async">
700
+ <wsp:PolicyReference URI="#UserNameWSTrustBinding_IWSTrustFeb2005Async_policy"/>
701
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
702
+ <wsdl:operation name="TrustFeb2005IssueAsync">
703
+ <soap12:operation soapAction="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" style="document"/>
704
+ <wsdl:input>
705
+ <soap12:body use="literal"/>
706
+ </wsdl:input>
707
+ <wsdl:output>
708
+ <soap12:body use="literal"/>
709
+ </wsdl:output>
710
+ </wsdl:operation>
711
+ </wsdl:binding>
712
+ <wsdl:binding name="CustomBinding_IWSTrustFeb2005Async1" type="tns:IWSTrustFeb2005Async">
713
+ <wsp:PolicyReference URI="#CustomBinding_IWSTrustFeb2005Async1_policy"/>
714
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
715
+ <wsdl:operation name="TrustFeb2005IssueAsync">
716
+ <soap12:operation soapAction="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" style="document"/>
717
+ <wsdl:input>
718
+ <soap12:body use="literal"/>
719
+ </wsdl:input>
720
+ <wsdl:output>
721
+ <soap12:body use="literal"/>
722
+ </wsdl:output>
723
+ </wsdl:operation>
724
+ </wsdl:binding>
725
+ <wsdl:binding name="IssuedTokenWSTrustBinding_IWSTrustFeb2005Async" type="tns:IWSTrustFeb2005Async">
726
+ <wsp:PolicyReference URI="#IssuedTokenWSTrustBinding_IWSTrustFeb2005Async_policy"/>
727
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
728
+ <wsdl:operation name="TrustFeb2005IssueAsync">
729
+ <soap12:operation soapAction="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" style="document"/>
730
+ <wsdl:input>
731
+ <soap12:body use="literal"/>
732
+ </wsdl:input>
733
+ <wsdl:output>
734
+ <soap12:body use="literal"/>
735
+ </wsdl:output>
736
+ </wsdl:operation>
737
+ </wsdl:binding>
738
+ <wsdl:binding name="IssuedTokenWSTrustBinding_IWSTrustFeb2005Async1" type="tns:IWSTrustFeb2005Async">
739
+ <wsp:PolicyReference URI="#IssuedTokenWSTrustBinding_IWSTrustFeb2005Async1_policy"/>
740
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
741
+ <wsdl:operation name="TrustFeb2005IssueAsync">
742
+ <soap12:operation soapAction="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" style="document"/>
743
+ <wsdl:input>
744
+ <soap12:body use="literal"/>
745
+ </wsdl:input>
746
+ <wsdl:output>
747
+ <soap12:body use="literal"/>
748
+ </wsdl:output>
749
+ </wsdl:operation>
750
+ </wsdl:binding>
751
+ <wsdl:binding name="CustomBinding_IWSTrust13Async" type="tns:IWSTrust13Async">
752
+ <wsp:PolicyReference URI="#CustomBinding_IWSTrust13Async_policy"/>
753
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
754
+ <wsdl:operation name="Trust13IssueAsync">
755
+ <soap12:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/>
756
+ <wsdl:input>
757
+ <soap12:body use="literal"/>
758
+ </wsdl:input>
759
+ <wsdl:output>
760
+ <soap12:body use="literal"/>
761
+ </wsdl:output>
762
+ </wsdl:operation>
763
+ </wsdl:binding>
764
+ <wsdl:binding name="CertificateWSTrustBinding_IWSTrust13Async" type="tns:IWSTrust13Async">
765
+ <wsp:PolicyReference URI="#CertificateWSTrustBinding_IWSTrust13Async_policy"/>
766
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
767
+ <wsdl:operation name="Trust13IssueAsync">
768
+ <soap12:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/>
769
+ <wsdl:input>
770
+ <soap12:body use="literal"/>
771
+ </wsdl:input>
772
+ <wsdl:output>
773
+ <soap12:body use="literal"/>
774
+ </wsdl:output>
775
+ </wsdl:operation>
776
+ </wsdl:binding>
777
+ <wsdl:binding name="UserNameWSTrustBinding_IWSTrust13Async" type="tns:IWSTrust13Async">
778
+ <wsp:PolicyReference URI="#UserNameWSTrustBinding_IWSTrust13Async_policy"/>
779
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
780
+ <wsdl:operation name="Trust13IssueAsync">
781
+ <soap12:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/>
782
+ <wsdl:input>
783
+ <soap12:body use="literal"/>
784
+ </wsdl:input>
785
+ <wsdl:output>
786
+ <soap12:body use="literal"/>
787
+ </wsdl:output>
788
+ </wsdl:operation>
789
+ </wsdl:binding>
790
+ <wsdl:binding name="IssuedTokenWSTrustBinding_IWSTrust13Async" type="tns:IWSTrust13Async">
791
+ <wsp:PolicyReference URI="#IssuedTokenWSTrustBinding_IWSTrust13Async_policy"/>
792
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
793
+ <wsdl:operation name="Trust13IssueAsync">
794
+ <soap12:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/>
795
+ <wsdl:input>
796
+ <soap12:body use="literal"/>
797
+ </wsdl:input>
798
+ <wsdl:output>
799
+ <soap12:body use="literal"/>
800
+ </wsdl:output>
801
+ </wsdl:operation>
802
+ </wsdl:binding>
803
+ <wsdl:binding name="IssuedTokenWSTrustBinding_IWSTrust13Async1" type="tns:IWSTrust13Async">
804
+ <wsp:PolicyReference URI="#IssuedTokenWSTrustBinding_IWSTrust13Async1_policy"/>
805
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
806
+ <wsdl:operation name="Trust13IssueAsync">
807
+ <soap12:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/>
808
+ <wsdl:input>
809
+ <soap12:body use="literal"/>
810
+ </wsdl:input>
811
+ <wsdl:output>
812
+ <soap12:body use="literal"/>
813
+ </wsdl:output>
814
+ </wsdl:operation>
815
+ </wsdl:binding>
816
+ <wsdl:binding name="CustomBinding_IWSTrust13Async1" type="tns:IWSTrust13Async">
817
+ <wsp:PolicyReference URI="#CustomBinding_IWSTrust13Async1_policy"/>
818
+ <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
819
+ <wsdl:operation name="Trust13IssueAsync">
820
+ <soap12:operation soapAction="http://docs.oasis-open.org/ws-sx/ws-trust/200512/RST/Issue" style="document"/>
821
+ <wsdl:input>
822
+ <soap12:body use="literal"/>
823
+ </wsdl:input>
824
+ <wsdl:output>
825
+ <soap12:body use="literal"/>
826
+ </wsdl:output>
827
+ </wsdl:operation>
828
+ </wsdl:binding>
829
+ <wsdl:service name="SecurityTokenService">
830
+ <wsdl:port name="CustomBinding_IWSTrustFeb2005Async" binding="tns:CustomBinding_IWSTrustFeb2005Async">
831
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/2005/windowstransport"/>
832
+ <wsa10:EndpointReference>
833
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/2005/windowstransport</wsa10:Address>
834
+ <Identity xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
835
+ <Spn>host/ARVMServer2012.archan.us</Spn>
836
+ </Identity>
837
+ </wsa10:EndpointReference>
838
+ </wsdl:port>
839
+ <wsdl:port name="CertificateWSTrustBinding_IWSTrustFeb2005Async" binding="tns:CertificateWSTrustBinding_IWSTrustFeb2005Async">
840
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/2005/certificatemixed"/>
841
+ <wsa10:EndpointReference>
842
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/2005/certificatemixed</wsa10:Address>
843
+ </wsa10:EndpointReference>
844
+ </wsdl:port>
845
+ <wsdl:port name="CertificateWSTrustBinding_IWSTrustFeb2005Async1" binding="tns:CertificateWSTrustBinding_IWSTrustFeb2005Async1">
846
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/2005/certificatetransport"/>
847
+ <wsa10:EndpointReference>
848
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/2005/certificatetransport</wsa10:Address>
849
+ </wsa10:EndpointReference>
850
+ </wsdl:port>
851
+ <wsdl:port name="UserNameWSTrustBinding_IWSTrustFeb2005Async" binding="tns:UserNameWSTrustBinding_IWSTrustFeb2005Async">
852
+ <soap12:address location="http://arvmserver2012.archan.us/adfs/services/trust/2005/usernamemixed"/>
853
+ <wsa10:EndpointReference>
854
+ <wsa10:Address>http://arvmserver2012.archan.us/adfs/services/trust/2005/usernamemixed</wsa10:Address>
855
+ </wsa10:EndpointReference>
856
+ </wsdl:port>
857
+ <wsdl:port name="CustomBinding_IWSTrustFeb2005Async1" binding="tns:CustomBinding_IWSTrustFeb2005Async1">
858
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/2005/kerberosmixed"/>
859
+ <wsa10:EndpointReference>
860
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/2005/kerberosmixed</wsa10:Address>
861
+ </wsa10:EndpointReference>
862
+ </wsdl:port>
863
+ <wsdl:port name="IssuedTokenWSTrustBinding_IWSTrustFeb2005Async" binding="tns:IssuedTokenWSTrustBinding_IWSTrustFeb2005Async">
864
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256"/>
865
+ <wsa10:EndpointReference>
866
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/2005/issuedtokenmixedasymmetricbasic256</wsa10:Address>
867
+ </wsa10:EndpointReference>
868
+ </wsdl:port>
869
+ <wsdl:port name="IssuedTokenWSTrustBinding_IWSTrustFeb2005Async1" binding="tns:IssuedTokenWSTrustBinding_IWSTrustFeb2005Async1">
870
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/2005/issuedtokenmixedsymmetricbasic256"/>
871
+ <wsa10:EndpointReference>
872
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/2005/issuedtokenmixedsymmetricbasic256</wsa10:Address>
873
+ </wsa10:EndpointReference>
874
+ </wsdl:port>
875
+ <wsdl:port name="CustomBinding_IWSTrust13Async" binding="tns:CustomBinding_IWSTrust13Async">
876
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/13/kerberosmixed"/>
877
+ <wsa10:EndpointReference>
878
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/13/kerberosmixed</wsa10:Address>
879
+ </wsa10:EndpointReference>
880
+ </wsdl:port>
881
+ <wsdl:port name="CertificateWSTrustBinding_IWSTrust13Async" binding="tns:CertificateWSTrustBinding_IWSTrust13Async">
882
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/13/certificatemixed"/>
883
+ <wsa10:EndpointReference>
884
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/13/certificatemixed</wsa10:Address>
885
+ </wsa10:EndpointReference>
886
+ </wsdl:port>
887
+ <wsdl:port name="UserNameWSTrustBinding_IWSTrust13Async" binding="tns:UserNameWSTrustBinding_IWSTrust13Async">
888
+ <soap12:address location="http://arvmserver2012.archan.us/adfs/services/trust/13/usernamemixed"/>
889
+ <wsa10:EndpointReference>
890
+ <wsa10:Address>http://arvmserver2012.archan.us/adfs/services/trust/13/usernamemixed</wsa10:Address>
891
+ </wsa10:EndpointReference>
892
+ </wsdl:port>
893
+ <wsdl:port name="IssuedTokenWSTrustBinding_IWSTrust13Async" binding="tns:IssuedTokenWSTrustBinding_IWSTrust13Async">
894
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/13/issuedtokenmixedasymmetricbasic256"/>
895
+ <wsa10:EndpointReference>
896
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/13/issuedtokenmixedasymmetricbasic256</wsa10:Address>
897
+ </wsa10:EndpointReference>
898
+ </wsdl:port>
899
+ <wsdl:port name="IssuedTokenWSTrustBinding_IWSTrust13Async1" binding="tns:IssuedTokenWSTrustBinding_IWSTrust13Async1">
900
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/13/issuedtokenmixedsymmetricbasic256"/>
901
+ <wsa10:EndpointReference>
902
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/13/issuedtokenmixedsymmetricbasic256</wsa10:Address>
903
+ </wsa10:EndpointReference>
904
+ </wsdl:port>
905
+ <wsdl:port name="CustomBinding_IWSTrust13Async1" binding="tns:CustomBinding_IWSTrust13Async1">
906
+ <soap12:address location="http://arvmserver2012.archan.us/adfs/services/trust/13/windowstransport"/>
907
+ <wsa10:EndpointReference>
908
+ <wsa10:Address>http://arvmserver2012.archan.us/adfs/services/trust/13/windowstransport</wsa10:Address>
909
+ <Identity xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
910
+ <Spn>host/ARVMServer2012.archan.us</Spn>
911
+ </Identity>
912
+ </wsa10:EndpointReference>
913
+ </wsdl:port>
914
+ <wsdl:port name="CustomBinding_IWSTrust13Async1" binding="tns:CustomBinding_IWSTrust13Async1">
915
+ <soap12:address location="https://arvmserver2012.archan.us/adfs/services/trust/13/windowstransport"/>
916
+ <wsa10:EndpointReference>
917
+ <wsa10:Address>https://arvmserver2012.archan.us/adfs/services/trust/13/windowstransport</wsa10:Address>
918
+ <Identity xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
919
+ <Spn>host/ARVMServer2012.archan.us</Spn>
920
+ </Identity>
921
+ </wsa10:EndpointReference>
922
+ </wsdl:port>
923
+ </wsdl:service>
924
+ </wsdl:definitions>