elementFormDefault="qualified"\r
attributeFormDefault="unqualified"\r
blockDefault="substitution"\r
- version="2.2">\r
+ version="2.3">\r
\r
<import namespace="urn:oasis:names:tc:SAML:2.0:assertion" schemaLocation="saml-schema-assertion-2.0.xsd"/>\r
<import namespace="urn:oasis:names:tc:SAML:2.0:protocol" schemaLocation="saml-schema-protocol-2.0.xsd"/>\r
<any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>\r
</sequence>\r
<attribute name="logger" type="anyURI"/>\r
- <attribute name="unsetHeaderValue" type="string"/>\r
+ <attribute name="unsetHeaderValue" type="conf:string"/>\r
<attribute name="checkSpoofing" type="boolean"/>\r
- <attribute name="spoofKey" type="string"/>\r
- <attribute name="catchAll" type="boolean"/>\r
+ <attribute name="spoofKey" type="conf:string"/>\r
+ <attribute name="catchAll" type="boolean"/>\r
<anyAttribute namespace="##other" processContents="lax"/>\r
</complexType>\r
</element>\r
<any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>\r
</sequence>\r
<attribute name="normalizeRequest" type="boolean"/>\r
+ <attribute name="safeHeaderNames" type="boolean"/>\r
<anyAttribute namespace="##other" processContents="lax"/>\r
</complexType>\r
</element>\r
<attribute name="exportAssertion" type="boolean"/>\r
<attribute name="redirectToSSL" type="unsignedInt"/>\r
<attribute name="entityID" type="anyURI"/>\r
+ <attribute name="discoveryURL" type="anyURI"/>\r
<attribute name="isPassive" type="boolean"/>\r
<attribute name="forceAuthn" type="boolean"/>\r
<attribute name="authnContextClassRef" type="anyURI"/>\r
<attribute name="authnContextComparison" type="samlp:AuthnContextComparisonType"/>\r
+ <attribute name="NameIDFormat" type="anyURI"/>\r
+ <attribute name="SPNameQualifier" type="conf:string"/>\r
<attribute name="redirectErrors" type="anyURI"/>\r
<attribute name="sessionError" type="anyURI"/>\r
<attribute name="metadataError" type="anyURI"/>\r
<attribute name="checkAddress" type="boolean"/>\r
<attribute name="consistentAddress" type="boolean"/>\r
<attribute name="postData" type="conf:string"/>\r
+ <attribute name="postLimit" type="positiveInteger"/>\r
<attribute name="postTemplate" type="conf:string"/>\r
+ <attribute name="postExpire" type="boolean"/>\r
<anyAttribute namespace="##other" processContents="lax"/>\r
</complexType>\r
</element>\r
<attribute name="template" type="anyURI"/>\r
<attribute name="postArtifact" type="boolean"/>\r
<attribute name="acsByIndex" type="boolean"/>\r
- <attribute name="defaultACSIndex" type="unsignedShort"/>\r
+ <attribute name="acsIndex" type="unsignedShort"/>\r
+ <attribute name="defaultACSIndex" type="unsignedShort"/> <!-- deprecated -->\r
<attribute name="isPassive" type="boolean"/>\r
<attribute name="forceAuthn" type="boolean"/>\r
<attribute name="authnContextClassRef" type="anyURI"/>\r
<attribute name="authnContextComparison" type="samlp:AuthnContextComparisonType"/>\r
+ <attribute name="NameIDFormat" type="anyURI"/>\r
+ <attribute name="SPNameQualifier" type="conf:string"/>\r
+ <attribute name="requestDelegation" type="boolean"/>\r
<anyAttribute namespace="##any" processContents="lax"/>\r
</restriction>\r
</complexContent>\r
<attribute name="ssl" type="anyURI"/>\r
<attribute name="localLogout" type="anyURI"/>\r
<attribute name="globalLogout" type="anyURI"/>\r
+ <attribute name="partialLogout" type="anyURI"/>\r
<attribute name="supportContact" type="conf:string"/>\r
<attribute name="logoLocation" type="anyURI"/>\r
<attribute name="styleSheet" type="anyURI"/>\r
<documentation>Specifies a set of SecurityPolicyRule plugins</documentation>\r
</annotation>\r
<complexType>\r
- <sequence>\r
+ <choice>\r
<element name="Rule" type="conf:PluggableType" minOccurs="1" maxOccurs="unbounded"/>\r
- </sequence>\r
+ <element name="PolicyRule" type="conf:PluggableType" minOccurs="1" maxOccurs="unbounded"/>\r
+ </choice>\r
<attribute name="id" type="conf:string" use="required"/>\r
<attribute name="validate" type="boolean"/>\r
<anyAttribute namespace="##any" processContents="lax"/>\r