samlesa 2.14.7 → 2.14.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of samlesa might be problematic. Click here for more details.

Files changed (116) hide show
  1. package/README.md +8 -7
  2. package/build/index.js +0 -1
  3. package/build/src/api.js +2 -2
  4. package/build/src/binding-post.js +0 -1
  5. package/build/src/binding-redirect.js +0 -1
  6. package/build/src/binding-simplesign.js +0 -1
  7. package/build/src/entity-idp.js +0 -1
  8. package/build/src/entity-sp.js +0 -1
  9. package/build/src/entity.js +0 -1
  10. package/build/src/extractor.js +0 -1
  11. package/build/src/flow.js +0 -1
  12. package/build/src/libsaml.js +0 -74
  13. package/build/src/metadata-idp.js +0 -1
  14. package/build/src/metadata-sp.js +0 -1
  15. package/build/src/metadata.js +0 -1
  16. package/build/src/schema/XMLSchema.dtd +402 -0
  17. package/build/src/schema/datatypes.dtd +203 -0
  18. package/build/src/schema/saml-schema-assertion-2.0.xsd +283 -0
  19. package/build/src/schema/saml-schema-authn-context-2.0.xsd +23 -0
  20. package/build/src/schema/saml-schema-authn-context-auth-telephony-2.0.xsd +81 -0
  21. package/build/src/schema/saml-schema-authn-context-ip-2.0.xsd +65 -0
  22. package/build/src/schema/saml-schema-authn-context-ippword-2.0.xsd +67 -0
  23. package/build/src/schema/saml-schema-authn-context-kerberos-2.0.xsd +83 -0
  24. package/build/src/schema/saml-schema-authn-context-mobileonefactor-reg-2.0.xsd +186 -0
  25. package/build/src/schema/saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd +183 -0
  26. package/build/src/schema/saml-schema-authn-context-mobiletwofactor-reg-2.0.xsd +202 -0
  27. package/build/src/schema/saml-schema-authn-context-mobiletwofactor-unreg-2.0.xsd +200 -0
  28. package/build/src/schema/saml-schema-authn-context-nomad-telephony-2.0.xsd +81 -0
  29. package/build/src/schema/saml-schema-authn-context-personal-telephony-2.0.xsd +80 -0
  30. package/build/src/schema/saml-schema-authn-context-pgp-2.0.xsd +83 -0
  31. package/build/src/schema/saml-schema-authn-context-ppt-2.0.xsd +81 -0
  32. package/build/src/schema/saml-schema-authn-context-pword-2.0.xsd +64 -0
  33. package/build/src/schema/saml-schema-authn-context-session-2.0.xsd +64 -0
  34. package/build/src/schema/saml-schema-authn-context-smartcard-2.0.xsd +64 -0
  35. package/build/src/schema/saml-schema-authn-context-smartcardpki-2.0.xsd +129 -0
  36. package/build/src/schema/saml-schema-authn-context-softwarepki-2.0.xsd +129 -0
  37. package/build/src/schema/saml-schema-authn-context-spki-2.0.xsd +83 -0
  38. package/build/src/schema/saml-schema-authn-context-srp-2.0.xsd +82 -0
  39. package/build/src/schema/saml-schema-authn-context-sslcert-2.0.xsd +97 -0
  40. package/build/src/schema/saml-schema-authn-context-telephony-2.0.xsd +79 -0
  41. package/build/src/schema/saml-schema-authn-context-timesync-2.0.xsd +105 -0
  42. package/build/src/schema/saml-schema-authn-context-types-2.0.xsd +821 -0
  43. package/build/src/schema/saml-schema-authn-context-x509-2.0.xsd +83 -0
  44. package/build/src/schema/saml-schema-authn-context-xmldsig-2.0.xsd +83 -0
  45. package/build/src/schema/saml-schema-dce-2.0.xsd +29 -0
  46. package/build/src/schema/saml-schema-ecp-2.0.xsd +57 -0
  47. package/build/src/schema/saml-schema-metadata-2.0.xsd +337 -0
  48. package/build/src/schema/saml-schema-protocol-2.0.xsd +302 -0
  49. package/build/src/schema/saml-schema-x500-2.0.xsd +20 -0
  50. package/build/src/schema/saml-schema-xacml-2.0.xsd +19 -0
  51. package/build/src/schema/xenc-schema.xsd +145 -0
  52. package/build/src/schema/xmldsig-core-schema.xsd +317 -0
  53. package/build/src/schemaValidator.js +40 -0
  54. package/build/src/types.js +0 -1
  55. package/build/src/urn.js +0 -1
  56. package/build/src/utility.js +0 -1
  57. package/build/src/validator.js +0 -1
  58. package/package.json +80 -75
  59. package/types/api.d.ts +15 -0
  60. package/types/api.d.ts.map +1 -0
  61. package/types/binding-post.d.ts +48 -0
  62. package/types/binding-post.d.ts.map +1 -0
  63. package/types/binding-redirect.d.ts +54 -0
  64. package/types/binding-redirect.d.ts.map +1 -0
  65. package/types/binding-simplesign.d.ts +41 -0
  66. package/types/binding-simplesign.d.ts.map +1 -0
  67. package/types/entity-idp.d.ts +38 -0
  68. package/types/entity-idp.d.ts.map +1 -0
  69. package/types/entity-sp.d.ts +38 -0
  70. package/types/entity-sp.d.ts.map +1 -0
  71. package/types/entity.d.ts +100 -0
  72. package/types/entity.d.ts.map +1 -0
  73. package/types/extractor.d.ts +26 -0
  74. package/types/extractor.d.ts.map +1 -0
  75. package/types/flow.d.ts +7 -0
  76. package/types/flow.d.ts.map +1 -0
  77. package/types/libsaml.d.ts +208 -0
  78. package/types/libsaml.d.ts.map +1 -0
  79. package/types/metadata-idp.d.ts +25 -0
  80. package/types/metadata-idp.d.ts.map +1 -0
  81. package/types/metadata-sp.d.ts +37 -0
  82. package/types/metadata-sp.d.ts.map +1 -0
  83. package/types/metadata.d.ts +58 -0
  84. package/types/metadata.d.ts.map +1 -0
  85. package/types/src/api.d.ts.map +1 -1
  86. package/types/src/libsaml.d.ts +0 -1
  87. package/types/src/libsaml.d.ts.map +1 -1
  88. package/types/src/schemaValidator.d.ts +2 -0
  89. package/types/src/schemaValidator.d.ts.map +1 -0
  90. package/types/src/utility.d.ts.map +1 -1
  91. package/types/types.d.ts +128 -0
  92. package/types/types.d.ts.map +1 -0
  93. package/types/urn.d.ts +195 -0
  94. package/types/urn.d.ts.map +1 -0
  95. package/types/utility.d.ts +133 -0
  96. package/types/utility.d.ts.map +1 -0
  97. package/types/validator.d.ts +4 -0
  98. package/types/validator.d.ts.map +1 -0
  99. package/build/index.js.map +0 -1
  100. package/build/src/api.js.map +0 -1
  101. package/build/src/binding-post.js.map +0 -1
  102. package/build/src/binding-redirect.js.map +0 -1
  103. package/build/src/binding-simplesign.js.map +0 -1
  104. package/build/src/entity-idp.js.map +0 -1
  105. package/build/src/entity-sp.js.map +0 -1
  106. package/build/src/entity.js.map +0 -1
  107. package/build/src/extractor.js.map +0 -1
  108. package/build/src/flow.js.map +0 -1
  109. package/build/src/libsaml.js.map +0 -1
  110. package/build/src/metadata-idp.js.map +0 -1
  111. package/build/src/metadata-sp.js.map +0 -1
  112. package/build/src/metadata.js.map +0 -1
  113. package/build/src/types.js.map +0 -1
  114. package/build/src/urn.js.map +0 -1
  115. package/build/src/utility.js.map +0 -1
  116. package/build/src/validator.js.map +0 -1
package/build/src/schema/saml-schema-authn-context-ippword-2.0.xsd ADDED
@@ -0,0 +1,67 @@
1
+ <?xml version="1.0" encoding="UTF-8"?>
2
+
3
+ <xs:schema targetNamespace="urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"
4
+ xmlns:ac="urn:oasis:names:tc:SAML:2.0:ac"
5
+ xmlns:xs="http://www.w3.org/2001/XMLSchema"
6
+ xmlns="urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword"
7
+ finalDefault="extension"
8
+ blockDefault="substitution"
9
+ version="2.0">
10
+
11
+ <xs:redefine schemaLocation="saml-schema-authn-context-types-2.0.xsd">
12
+
13
+ <xs:annotation>
14
+ <xs:documentation>
15
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword
16
+ Document identifier: saml-schema-authn-context-ippword-2.0
17
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
18
+ Revision history:
19
+ V2.0 (March, 2005):
20
+ New authentication context class schema for SAML V2.0.
21
+ </xs:documentation>
22
+ </xs:annotation>
23
+
24
+ <xs:complexType name="AuthnContextDeclarationBaseType">
25
+ <xs:complexContent>
26
+ <xs:restriction base="AuthnContextDeclarationBaseType">
27
+ <xs:sequence>
28
+ <xs:element ref="Identification" minOccurs="0"/>
29
+ <xs:element ref="TechnicalProtection" minOccurs="0"/>
30
+ <xs:element ref="OperationalProtection" minOccurs="0"/>
31
+ <xs:element ref="AuthnMethod"/>
32
+ <xs:element ref="GoverningAgreements" minOccurs="0"/>
33
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
34
+ </xs:sequence>
35
+ <xs:attribute name="ID" type="xs:ID" use="optional"/>
36
+ </xs:restriction>
37
+ </xs:complexContent>
38
+ </xs:complexType>
39
+
40
+ <xs:complexType name="AuthnMethodBaseType">
41
+ <xs:complexContent>
42
+ <xs:restriction base="AuthnMethodBaseType">
43
+ <xs:sequence>
44
+ <xs:element ref="PrincipalAuthenticationMechanism" minOccurs="0"/>
45
+ <xs:element ref="Authenticator"/>
46
+ <xs:element ref="AuthenticatorTransportProtocol" minOccurs="0"/>
47
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
48
+ </xs:sequence>
49
+ </xs:restriction>
50
+ </xs:complexContent>
51
+ </xs:complexType>
52
+
53
+ <xs:complexType name="AuthenticatorBaseType">
54
+ <xs:complexContent>
55
+ <xs:restriction base="AuthenticatorBaseType">
56
+ <xs:sequence>
57
+ <xs:element ref="Password"/>
58
+ <xs:element ref="IPAddress"/>
59
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
60
+ </xs:sequence>
61
+ </xs:restriction>
62
+ </xs:complexContent>
63
+ </xs:complexType>
64
+
65
+ </xs:redefine>
66
+
67
+ </xs:schema>
package/build/src/schema/saml-schema-authn-context-kerberos-2.0.xsd ADDED
@@ -0,0 +1,83 @@
1
+ <?xml version="1.0" encoding="UTF-8"?>
2
+
3
+ <xs:schema targetNamespace="urn:oasis:names:tc:SAML:2.0:ac:classes:Kerberos"
4
+ xmlns:xs="http://www.w3.org/2001/XMLSchema"
5
+ xmlns="urn:oasis:names:tc:SAML:2.0:ac:classes:Kerberos"
6
+ finalDefault="extension"
7
+ blockDefault="substitution"
8
+ version="2.0">
9
+
10
+ <xs:redefine schemaLocation="saml-schema-authn-context-types-2.0.xsd">
11
+
12
+ <xs:annotation>
13
+ <xs:documentation>
14
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:Kerberos
15
+ Document identifier: saml-schema-authn-context-kerberos-2.0
16
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
17
+ Revision history:
18
+ V2.0 (March, 2005):
19
+ New authentication context class schema for SAML V2.0.
20
+ </xs:documentation>
21
+ </xs:annotation>
22
+
23
+ <xs:complexType name="AuthnContextDeclarationBaseType">
24
+ <xs:complexContent>
25
+ <xs:restriction base="AuthnContextDeclarationBaseType">
26
+ <xs:sequence>
27
+ <xs:element ref="Identification" minOccurs="0"/>
28
+ <xs:element ref="TechnicalProtection" minOccurs="0"/>
29
+ <xs:element ref="OperationalProtection" minOccurs="0"/>
30
+ <xs:element ref="AuthnMethod"/>
31
+ <xs:element ref="GoverningAgreements" minOccurs="0"/>
32
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
33
+ </xs:sequence>
34
+ <xs:attribute name="ID" type="xs:ID" use="optional"/>
35
+ </xs:restriction>
36
+ </xs:complexContent>
37
+ </xs:complexType>
38
+
39
+ <xs:complexType name="AuthnMethodBaseType">
40
+ <xs:complexContent>
41
+ <xs:restriction base="AuthnMethodBaseType">
42
+ <xs:sequence>
43
+ <xs:element ref="PrincipalAuthenticationMechanism"/>
44
+ <xs:element ref="Authenticator"/>
45
+ <xs:element ref="AuthenticatorTransportProtocol" minOccurs="0"/>
46
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
47
+ </xs:sequence>
48
+ </xs:restriction>
49
+ </xs:complexContent>
50
+ </xs:complexType>
51
+
52
+ <xs:complexType name="PrincipalAuthenticationMechanismType">
53
+ <xs:complexContent>
54
+ <xs:restriction base="PrincipalAuthenticationMechanismType">
55
+ <xs:sequence>
56
+ <xs:element ref="RestrictedPassword"/>
57
+ </xs:sequence>
58
+ <xs:attribute name="preauth" type="xs:integer" use="optional"/>
59
+ </xs:restriction>
60
+ </xs:complexContent>
61
+ </xs:complexType>
62
+
63
+ <xs:complexType name="AuthenticatorBaseType">
64
+ <xs:complexContent>
65
+ <xs:restriction base="AuthenticatorBaseType">
66
+ <xs:sequence>
67
+ <xs:element ref="SharedSecretChallengeResponse"/>
68
+ </xs:sequence>
69
+ </xs:restriction>
70
+ </xs:complexContent>
71
+ </xs:complexType>
72
+
73
+ <xs:complexType name="SharedSecretChallengeResponseType">
74
+ <xs:complexContent>
75
+ <xs:restriction base="SharedSecretChallengeResponseType">
76
+ <xs:attribute name="method" type="xs:anyURI" fixed="urn:oasis:names:tc:SAML:2.0:ac:classes:Kerberos"/>
77
+ </xs:restriction>
78
+ </xs:complexContent>
79
+ </xs:complexType>
80
+
81
+ </xs:redefine>
82
+
83
+ </xs:schema>
package/build/src/schema/saml-schema-authn-context-mobileonefactor-reg-2.0.xsd ADDED
@@ -0,0 +1,186 @@
1
+ <?xml version="1.0" encoding="UTF-8"?>
2
+
3
+ <xs:schema targetNamespace="urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorContract"
4
+ xmlns:xs="http://www.w3.org/2001/XMLSchema"
5
+ xmlns="urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorContract"
6
+ finalDefault="extension"
7
+ blockDefault="substitution"
8
+ version="2.0">
9
+
10
+ <xs:redefine schemaLocation="saml-schema-authn-context-types-2.0.xsd">
11
+
12
+ <xs:annotation>
13
+ <xs:documentation>
14
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorContract
15
+ Document identifier: saml-schema-authn-context-mobileonefactor-reg-2.0
16
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
17
+ Revision history:
18
+ V2.0 (March, 2005):
19
+ New authentication context class schema for SAML V2.0.
20
+ </xs:documentation>
21
+ </xs:annotation>
22
+
23
+ <xs:complexType name="AuthnContextDeclarationBaseType">
24
+ <xs:complexContent>
25
+ <xs:restriction base="AuthnContextDeclarationBaseType">
26
+ <xs:sequence>
27
+ <xs:element ref="Identification" minOccurs="0"/>
28
+ <xs:element ref="TechnicalProtection" minOccurs="0"/>
29
+ <xs:element ref="OperationalProtection" minOccurs="0"/>
30
+ <xs:element ref="AuthnMethod"/>
31
+ <xs:element ref="GoverningAgreements" minOccurs="0"/>
32
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
33
+ </xs:sequence>
34
+ <xs:attribute name="ID" type="xs:ID" use="optional"/>
35
+ </xs:restriction>
36
+ </xs:complexContent>
37
+ </xs:complexType>
38
+
39
+ <xs:complexType name="AuthnMethodBaseType">
40
+ <xs:complexContent>
41
+ <xs:restriction base="AuthnMethodBaseType">
42
+ <xs:sequence>
43
+ <xs:element ref="PrincipalAuthenticationMechanism" minOccurs="0"/>
44
+ <xs:element ref="Authenticator"/>
45
+ <xs:element ref="AuthenticatorTransportProtocol" minOccurs="0"/>
46
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
47
+ </xs:sequence>
48
+ </xs:restriction>
49
+ </xs:complexContent>
50
+ </xs:complexType>
51
+
52
+ <xs:complexType name="AuthenticatorBaseType">
53
+ <xs:complexContent>
54
+ <xs:restriction base="AuthenticatorBaseType">
55
+ <xs:sequence>
56
+ <xs:choice>
57
+ <xs:element ref="DigSig"/>
58
+ <xs:element ref="ZeroKnowledge"/>
59
+ <xs:element ref="SharedSecretChallengeResponse"/>
60
+ <xs:element ref="SharedSecretDynamicPlaintext"/>
61
+ <xs:element ref="AsymmetricDecryption"/>
62
+ <xs:element ref="AsymmetricKeyAgreement"/>
63
+ </xs:choice>
64
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
65
+ </xs:sequence>
66
+ </xs:restriction>
67
+ </xs:complexContent>
68
+ </xs:complexType>
69
+
70
+ <xs:complexType name="AuthenticatorTransportProtocolType">
71
+ <xs:complexContent>
72
+ <xs:restriction base="AuthenticatorTransportProtocolType">
73
+ <xs:sequence>
74
+ <xs:choice>
75
+ <xs:element ref="SSL"/>
76
+ <xs:element ref="MobileNetworkNoEncryption"/>
77
+ <xs:element ref="MobileNetworkRadioEncryption"/>
78
+ <xs:element ref="MobileNetworkEndToEndEncryption"/>
79
+ <xs:element ref="WTLS"/>
80
+ </xs:choice>
81
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
82
+ </xs:sequence>
83
+ </xs:restriction>
84
+ </xs:complexContent>
85
+ </xs:complexType>
86
+
87
+ <xs:complexType name="OperationalProtectionType">
88
+ <xs:complexContent>
89
+ <xs:restriction base="OperationalProtectionType">
90
+ <xs:sequence>
91
+ <xs:element ref="SecurityAudit"/>
92
+ <xs:element ref="DeactivationCallCenter"/>
93
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
94
+ </xs:sequence>
95
+ </xs:restriction>
96
+ </xs:complexContent>
97
+ </xs:complexType>
98
+
99
+ <xs:complexType name="TechnicalProtectionBaseType">
100
+ <xs:complexContent>
101
+ <xs:restriction base="TechnicalProtectionBaseType">
102
+ <xs:sequence>
103
+ <xs:choice>
104
+ <xs:element ref="PrivateKeyProtection"/>
105
+ <xs:element ref="SecretKeyProtection"/>
106
+ </xs:choice>
107
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
108
+ </xs:sequence>
109
+ </xs:restriction>
110
+ </xs:complexContent>
111
+ </xs:complexType>
112
+
113
+ <xs:complexType name="PrivateKeyProtectionType">
114
+ <xs:complexContent>
115
+ <xs:restriction base="PrivateKeyProtectionType">
116
+ <xs:sequence>
117
+ <xs:element ref="KeyStorage"/>
118
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
119
+ </xs:sequence>
120
+ </xs:restriction>
121
+ </xs:complexContent>
122
+ </xs:complexType>
123
+
124
+ <xs:complexType name="SecretKeyProtectionType">
125
+ <xs:complexContent>
126
+ <xs:restriction base="SecretKeyProtectionType">
127
+ <xs:sequence>
128
+ <xs:element ref="KeyStorage"/>
129
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
130
+ </xs:sequence>
131
+ </xs:restriction>
132
+ </xs:complexContent>
133
+ </xs:complexType>
134
+
135
+ <xs:complexType name="KeyStorageType">
136
+ <xs:complexContent>
137
+ <xs:restriction base="KeyStorageType">
138
+ <xs:attribute name="medium" use="required">
139
+ <xs:simpleType>
140
+ <xs:restriction base="mediumType">
141
+ <xs:enumeration value="smartcard"/>
142
+ <xs:enumeration value="MobileDevice"/>
143
+ <xs:enumeration value="MobileAuthCard"/>
144
+ </xs:restriction>
145
+ </xs:simpleType>
146
+ </xs:attribute>
147
+ </xs:restriction>
148
+ </xs:complexContent>
149
+ </xs:complexType>
150
+
151
+ <xs:complexType name="SecurityAuditType">
152
+ <xs:complexContent>
153
+ <xs:restriction base="SecurityAuditType">
154
+ <xs:sequence>
155
+ <xs:element ref="SwitchAudit"/>
156
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
157
+ </xs:sequence>
158
+ </xs:restriction>
159
+ </xs:complexContent>
160
+ </xs:complexType>
161
+
162
+ <xs:complexType name="IdentificationType">
163
+ <xs:complexContent>
164
+ <xs:restriction base="IdentificationType">
165
+ <xs:sequence>
166
+ <xs:element ref="PhysicalVerification"/>
167
+ <xs:element ref="WrittenConsent"/>
168
+ <xs:element ref="GoverningAgreements"/>
169
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
170
+ </xs:sequence>
171
+ <xs:attribute name="nym">
172
+ <xs:simpleType>
173
+ <xs:restriction base="nymType">
174
+ <xs:enumeration value="anonymity"/>
175
+ <xs:enumeration value="verinymity"/>
176
+ <xs:enumeration value="pseudonymity"/>
177
+ </xs:restriction>
178
+ </xs:simpleType>
179
+ </xs:attribute>
180
+ </xs:restriction>
181
+ </xs:complexContent>
182
+ </xs:complexType>
183
+
184
+ </xs:redefine>
185
+
186
+ </xs:schema>
package/build/src/schema/saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd ADDED
@@ -0,0 +1,183 @@
1
+ <?xml version="1.0" encoding="UTF-8"?>
2
+
3
+ <xs:schema targetNamespace="urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorUnregistered"
4
+ xmlns:xs="http://www.w3.org/2001/XMLSchema"
5
+ xmlns="urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorUnregistered"
6
+ finalDefault="extension"
7
+ blockDefault="substitution"
8
+ version="2.0">
9
+
10
+ <xs:redefine schemaLocation="saml-schema-authn-context-types-2.0.xsd">
11
+
12
+ <xs:annotation>
13
+ <xs:documentation>
14
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorUnregistered
15
+ Document identifier: saml-schema-authn-context-mobileonefactor-unreg-2.0
16
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
17
+ Revision history:
18
+ V2.0 (March, 2005):
19
+ New authentication context class schema for SAML V2.0.
20
+ </xs:documentation>
21
+ </xs:annotation>
22
+
23
+ <xs:complexType name="AuthnContextDeclarationBaseType">
24
+ <xs:complexContent>
25
+ <xs:restriction base="AuthnContextDeclarationBaseType">
26
+ <xs:sequence>
27
+ <xs:element ref="Identification" minOccurs="0"/>
28
+ <xs:element ref="TechnicalProtection" minOccurs="0"/>
29
+ <xs:element ref="OperationalProtection" minOccurs="0"/>
30
+ <xs:element ref="AuthnMethod"/>
31
+ <xs:element ref="GoverningAgreements" minOccurs="0"/>
32
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
33
+ </xs:sequence>
34
+ <xs:attribute name="ID" type="xs:ID" use="optional"/>
35
+ </xs:restriction>
36
+ </xs:complexContent>
37
+ </xs:complexType>
38
+
39
+ <xs:complexType name="AuthnMethodBaseType">
40
+ <xs:complexContent>
41
+ <xs:restriction base="AuthnMethodBaseType">
42
+ <xs:sequence>
43
+ <xs:element ref="PrincipalAuthenticationMechanism" minOccurs="0"/>
44
+ <xs:element ref="Authenticator"/>
45
+ <xs:element ref="AuthenticatorTransportProtocol" minOccurs="0"/>
46
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
47
+ </xs:sequence>
48
+ </xs:restriction>
49
+ </xs:complexContent>
50
+ </xs:complexType>
51
+
52
+ <xs:complexType name="AuthenticatorBaseType">
53
+ <xs:complexContent>
54
+ <xs:restriction base="AuthenticatorBaseType">
55
+ <xs:sequence>
56
+ <xs:choice>
57
+ <xs:element ref="DigSig"/>
58
+ <xs:element ref="ZeroKnowledge"/>
59
+ <xs:element ref="SharedSecretChallengeResponse"/>
60
+ <xs:element ref="SharedSecretDynamicPlaintext"/>
61
+ <xs:element ref="AsymmetricDecryption"/>
62
+ <xs:element ref="AsymmetricKeyAgreement"/>
63
+ </xs:choice>
64
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
65
+ </xs:sequence>
66
+ </xs:restriction>
67
+ </xs:complexContent>
68
+ </xs:complexType>
69
+
70
+ <xs:complexType name="AuthenticatorTransportProtocolType">
71
+ <xs:complexContent>
72
+ <xs:restriction base="AuthenticatorTransportProtocolType">
73
+ <xs:sequence>
74
+ <xs:choice>
75
+ <xs:element ref="SSL"/>
76
+ <xs:element ref="MobileNetworkNoEncryption"/>
77
+ <xs:element ref="MobileNetworkRadioEncryption"/>
78
+ <xs:element ref="MobileNetworkEndToEndEncryption"/>
79
+ <xs:element ref="WTLS"/>
80
+ </xs:choice>
81
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
82
+ </xs:sequence>
83
+ </xs:restriction>
84
+ </xs:complexContent>
85
+ </xs:complexType>
86
+
87
+ <xs:complexType name="OperationalProtectionType">
88
+ <xs:complexContent>
89
+ <xs:restriction base="OperationalProtectionType">
90
+ <xs:sequence>
91
+ <xs:element ref="SecurityAudit"/>
92
+ <xs:element ref="DeactivationCallCenter"/>
93
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
94
+ </xs:sequence>
95
+ </xs:restriction>
96
+ </xs:complexContent>
97
+ </xs:complexType>
98
+
99
+ <xs:complexType name="TechnicalProtectionBaseType">
100
+ <xs:complexContent>
101
+ <xs:restriction base="TechnicalProtectionBaseType">
102
+ <xs:sequence>
103
+ <xs:choice>
104
+ <xs:element ref="PrivateKeyProtection"/>
105
+ <xs:element ref="SecretKeyProtection"/>
106
+ </xs:choice>
107
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
108
+ </xs:sequence>
109
+ </xs:restriction>
110
+ </xs:complexContent>
111
+ </xs:complexType>
112
+
113
+ <xs:complexType name="PrivateKeyProtectionType">
114
+ <xs:complexContent>
115
+ <xs:restriction base="PrivateKeyProtectionType">
116
+ <xs:sequence>
117
+ <xs:element ref="KeyStorage"/>
118
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
119
+ </xs:sequence>
120
+ </xs:restriction>
121
+ </xs:complexContent>
122
+ </xs:complexType>
123
+
124
+ <xs:complexType name="SecretKeyProtectionType">
125
+ <xs:complexContent>
126
+ <xs:restriction base="SecretKeyProtectionType">
127
+ <xs:sequence>
128
+ <xs:element ref="KeyStorage"/>
129
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
130
+ </xs:sequence>
131
+ </xs:restriction>
132
+ </xs:complexContent>
133
+ </xs:complexType>
134
+
135
+ <xs:complexType name="KeyStorageType">
136
+ <xs:complexContent>
137
+ <xs:restriction base="KeyStorageType">
138
+ <xs:attribute name="medium" use="required">
139
+ <xs:simpleType>
140
+ <xs:restriction base="mediumType">
141
+ <xs:enumeration value="MobileDevice"/>
142
+ <xs:enumeration value="MobileAuthCard"/>
143
+ <xs:enumeration value="smartcard"/>
144
+ </xs:restriction>
145
+ </xs:simpleType>
146
+ </xs:attribute>
147
+ </xs:restriction>
148
+ </xs:complexContent>
149
+ </xs:complexType>
150
+
151
+ <xs:complexType name="SecurityAuditType">
152
+ <xs:complexContent>
153
+ <xs:restriction base="SecurityAuditType">
154
+ <xs:sequence>
155
+ <xs:element ref="SwitchAudit"/>
156
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
157
+ </xs:sequence>
158
+ </xs:restriction>
159
+ </xs:complexContent>
160
+ </xs:complexType>
161
+
162
+ <xs:complexType name="IdentificationType">
163
+ <xs:complexContent>
164
+ <xs:restriction base="IdentificationType">
165
+ <xs:sequence>
166
+ <xs:element ref="GoverningAgreements"/>
167
+ <xs:element ref="Extension" minOccurs="0" maxOccurs="unbounded"/>
168
+ </xs:sequence>
169
+ <xs:attribute name="nym">
170
+ <xs:simpleType>
171
+ <xs:restriction base="nymType">
172
+ <xs:enumeration value="anonymity"/>
173
+ <xs:enumeration value="pseudonymity"/>
174
+ </xs:restriction>
175
+ </xs:simpleType>
176
+ </xs:attribute>
177
+ </xs:restriction>
178
+ </xs:complexContent>
179
+ </xs:complexType>
180
+
181
+ </xs:redefine>
182
+
183
+ </xs:schema>