</restriction>
</simpleType>
- <simpleType name="relayStateLimitType">
+ <simpleType name="redirectLimitType">
<restriction base="string">
<enumeration value="none"/>
<enumeration value="exact"/>
<enumeration value="host"/>
<enumeration value="whitelist"/>
+ <enumeration value="exact+whitelist"/>
+ <enumeration value="host+whitelist"/>
</restriction>
</simpleType>
<attribute name="StorageService" type="IDREF"/>
<attribute name="cacheAllowance" type="unsignedInt"/>
<attribute name="cacheTimeout" type="unsignedInt"/> <!-- deprecated -->
+ <attribute name="maintainReverseIndex" type="boolean"/>
+ <attribute name="excludeReverseIndex" type="conf:listOfStrings"/>
<anyAttribute namespace="##any" processContents="lax"/>
</restriction>
</complexContent>
<attribute name="authType" type="conf:string"/>
<attribute name="requireSession" type="boolean"/>
<attribute name="requireSessionWith" type="conf:string"/>
+ <attribute name="requireLogoutWith" type="anyURI"/>
<attribute name="exportAssertion" type="boolean"/>
<attribute name="exportStdVars" type="boolean"/>
+ <attribute name="exportCookie" type="boolean"/>
<attribute name="redirectToSSL" type="unsignedInt"/>
<attribute name="entityID" type="anyURI"/>
<attribute name="discoveryURL" type="anyURI"/>
+ <attribute name="discoveryPolicy" type="conf:string"/>
<attribute name="isPassive" type="boolean"/>
<attribute name="returnOnError" type="boolean"/>
<attribute name="forceAuthn" type="boolean"/>
</sequence>
<attribute name="id" type="conf:string" fixed="default"/>
<attribute name="entityID" type="anyURI" use="required"/>
- <attribute name="policyId" type="conf:string"/>
<attributeGroup ref="conf:ApplicationGroup"/>
<attributeGroup ref="conf:RelyingPartyGroup"/>
<anyAttribute namespace="##other" processContents="lax"/>
</sequence>
<attribute name="id" type="conf:string" use="required"/>
<attribute name="entityID" type="anyURI"/>
- <attribute name="policyId" type="conf:string"/>
<attributeGroup ref="conf:ApplicationGroup"/>
<attributeGroup ref="conf:RelyingPartyGroup"/>
<anyAttribute namespace="##other" processContents="lax"/>
<attributeGroup name="ApplicationGroup">
<attribute name="homeURL" type="anyURI"/>
+ <attribute name="policyId" type="conf:string"/>
<attribute name="REMOTE_USER" type="conf:listOfStrings"/>
<attribute name="unsetHeaders" type="conf:listOfStrings"/>
<attribute name="metadataAttributePrefix" type="conf:string"/>
<attribute name="attributePrefix" type="conf:string"/>
+ <attribute name="requireAuthenticatedCipher" type="boolean"/>
</attributeGroup>
<attributeGroup name="RelyingPartyGroup">
<attribute name="requireConfidentiality" type="boolean"/>
<attribute name="requireTransportAuth" type="boolean"/>
<attribute name="requireSignedAssertions" type="boolean"/>
+ <attribute name="sessionHook" type="anyURI"/>
</attributeGroup>
<complexType name="SessionsType">
<attribute name="postTemplate" type="conf:string"/>
<attribute name="postExpire" type="boolean"/>
<attribute name="relayState" type="conf:string"/>
- <attribute name="relayStateLimit" type="conf:relayStateLimitType"/>
+ <attribute name="relayStateLimit" type="conf:redirectLimitType"/>
<attribute name="relayStateWhitelist" type="conf:listOfURIs"/>
+ <attribute name="redirectLimit" type="conf:redirectLimitType"/>
+ <attribute name="redirectWhitelist" type="conf:listOfURIs"/>
<anyAttribute namespace="##other" processContents="lax"/>
</complexType>
<attribute name="SPNameQualifier" type="conf:string"/>
<attribute name="requestDelegation" type="boolean"/>
<attribute name="target" type="anyURI"/>
+ <attribute name="discoveryPolicy" type="conf:string"/>
<anyAttribute namespace="##any" processContents="lax"/>
</attributeGroup>
<attribute name="partialLogout" type="anyURI"/>
<attribute name="supportContact" type="conf:string"/>
<attribute name="logoLocation" type="anyURI"/>
+ <attribute name="helpLocation" type="anyURI"/>
<attribute name="styleSheet" type="anyURI"/>
<anyAttribute namespace="##any" processContents="lax"/>
</complexType>
<annotation>
<documentation>Container for specifying settings to use with particular peers</documentation>
</annotation>
- <sequence/>
- <attribute name="Name" type="conf:string" use="required"/>
+ <sequence>
+ <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="Name" type="conf:string"/>
+ <attribute name="type" type="conf:string"/>
<attributeGroup ref="conf:RelyingPartyGroup"/>
<attribute name="entityID" type="anyURI"/>
- <anyAttribute namespace="##other" processContents="lax"/>
+ <anyAttribute namespace="##any" processContents="lax"/>
</complexType>
<complexType name="NotifyType">
<attribute name="clockSkew" type="unsignedInt"/>
<attribute name="unsafeChars" type="conf:string"/>
<attribute name="allowedSchemes" type="conf:listOfStrings"/>
+ <attribute name="langFromClient" type="boolean"/>
+ <attribute name="langPriority" type="conf:listOfStrings"/>
+ <attribute name="contactPriority" type="conf:listOfStrings"/>
<anyAttribute namespace="##other" processContents="lax"/>
</complexType>
</element>
projects / shibboleth / cpp-sp.git / blobdiff