-<?xml version="1.0" encoding="US-ASCII"?>\r
-<schema\r
- targetNamespace="urn:oasis:names:tc:SAML:2.0:assertion"\r
- xmlns="http://www.w3.org/2001/XMLSchema"\r
- xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"\r
- xmlns:ds="http://www.w3.org/2000/09/xmldsig#"\r
- xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"\r
- elementFormDefault="unqualified"\r
- attributeFormDefault="unqualified"\r
- blockDefault="substitution"\r
- version="2.0">\r
- <import namespace="http://www.w3.org/2000/09/xmldsig#"\r
- schemaLocation="http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/xmldsig-core-schema.xsd"/>\r
- <import namespace="http://www.w3.org/2001/04/xmlenc#"\r
- schemaLocation="http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/xenc-schema.xsd"/>\r
- <annotation>\r
- <documentation>\r
- Document identifier: saml-schema-assertion-2.0\r
- Location: http://docs.oasis-open.org/security/saml/v2.0/\r
- Revision history:\r
- V1.0 (November, 2002):\r
- Initial Standard Schema.\r
- V1.1 (September, 2003):\r
- Updates within the same V1.0 namespace.\r
- V2.0 (March, 2005):\r
- New assertion schema for SAML V2.0 namespace.\r
- </documentation>\r
- </annotation>\r
- <attributeGroup name="IDNameQualifiers">\r
- <attribute name="NameQualifier" type="string" use="optional"/>\r
- <attribute name="SPNameQualifier" type="string" use="optional"/>\r
- </attributeGroup>\r
- <element name="BaseID" type="saml:BaseIDAbstractType"/>\r
- <complexType name="BaseIDAbstractType" abstract="true">\r
- <attributeGroup ref="saml:IDNameQualifiers"/>\r
- </complexType>\r
- <element name="NameID" type="saml:NameIDType"/>\r
- <complexType name="NameIDType">\r
- <simpleContent>\r
- <extension base="string">\r
- <attributeGroup ref="saml:IDNameQualifiers"/>\r
- <attribute name="Format" type="anyURI" use="optional"/>\r
- <attribute name="SPProvidedID" type="string" use="optional"/>\r
- </extension>\r
- </simpleContent>\r
- </complexType>\r
- <complexType name="EncryptedElementType">\r
- <sequence>\r
- <element ref="xenc:EncryptedData"/>\r
- <element ref="xenc:EncryptedKey" minOccurs="0" maxOccurs="unbounded"/>\r
- </sequence>\r
- </complexType>\r
- <element name="EncryptedID" type="saml:EncryptedElementType"/>\r
- <element name="Issuer" type="saml:NameIDType"/>\r
- <element name="AssertionIDRef" type="NCName"/>\r
- <element name="AssertionURIRef" type="anyURI"/>\r
- <element name="Assertion" type="saml:AssertionType"/>\r
- <complexType name="AssertionType">\r
- <sequence>\r
- <element ref="saml:Issuer"/>\r
- <element ref="ds:Signature" minOccurs="0"/>\r
- <element ref="saml:Subject" minOccurs="0"/>\r
- <element ref="saml:Conditions" minOccurs="0"/>\r
- <element ref="saml:Advice" minOccurs="0"/>\r
- <choice minOccurs="0" maxOccurs="unbounded">\r
- <element ref="saml:Statement"/>\r
- <element ref="saml:AuthnStatement"/>\r
- <element ref="saml:AuthzDecisionStatement"/>\r
- <element ref="saml:AttributeStatement"/>\r
- </choice>\r
- </sequence>\r
- <attribute name="Version" type="string" use="required"/>\r
- <attribute name="ID" type="ID" use="required"/>\r
- <attribute name="IssueInstant" type="dateTime" use="required"/>\r
- </complexType>\r
- <element name="Subject" type="saml:SubjectType"/>\r
- <complexType name="SubjectType">\r
- <choice>\r
- <sequence>\r
- <choice>\r
- <element ref="saml:BaseID"/>\r
- <element ref="saml:NameID"/>\r
- <element ref="saml:EncryptedID"/>\r
- </choice>\r
- <element ref="saml:SubjectConfirmation" minOccurs="0" maxOccurs="unbounded"/>\r
- </sequence>\r
- <element ref="saml:SubjectConfirmation" maxOccurs="unbounded"/>\r
- </choice>\r
- </complexType>\r
- <element name="SubjectConfirmation" type="saml:SubjectConfirmationType"/>\r
- <complexType name="SubjectConfirmationType">\r
- <sequence>\r
- <choice minOccurs="0">\r
- <element ref="saml:BaseID"/>\r
- <element ref="saml:NameID"/>\r
- <element ref="saml:EncryptedID"/>\r
- </choice>\r
- <element ref="saml:SubjectConfirmationData" minOccurs="0"/>\r
- </sequence>\r
- <attribute name="Method" type="anyURI" use="required"/>\r
- </complexType>\r
- <element name="SubjectConfirmationData" type="saml:SubjectConfirmationDataType"/>\r
- <complexType name="SubjectConfirmationDataType" mixed="true">\r
- <complexContent>\r
- <restriction base="anyType">\r
- <sequence>\r
- <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>\r
- </sequence>\r
- <attribute name="NotBefore" type="dateTime" use="optional"/>\r
- <attribute name="NotOnOrAfter" type="dateTime" use="optional"/>\r
- <attribute name="Recipient" type="anyURI" use="optional"/>\r
- <attribute name="InResponseTo" type="NCName" use="optional"/>\r
- <attribute name="Address" type="string" use="optional"/>\r
- <anyAttribute namespace="##other" processContents="lax"/>\r
- </restriction>\r
- </complexContent>\r
- </complexType>\r
- <complexType name="KeyInfoConfirmationDataType" mixed="false">\r
- <complexContent>\r
- <restriction base="saml:SubjectConfirmationDataType">\r
- <sequence>\r
- <element ref="ds:KeyInfo" maxOccurs="unbounded"/>\r
- </sequence>\r
- </restriction>\r
- </complexContent>\r
- </complexType>\r
- <element name="Conditions" type="saml:ConditionsType"/>\r
- <complexType name="ConditionsType">\r
- <choice minOccurs="0" maxOccurs="unbounded">\r
- <element ref="saml:Condition"/>\r
- <element ref="saml:AudienceRestriction"/>\r
- <element ref="saml:OneTimeUse"/>\r
- <element ref="saml:ProxyRestriction"/>\r
- </choice>\r
- <attribute name="NotBefore" type="dateTime" use="optional"/>\r
- <attribute name="NotOnOrAfter" type="dateTime" use="optional"/>\r
- </complexType>\r
- <element name="Condition" type="saml:ConditionAbstractType"/>\r
- <complexType name="ConditionAbstractType" abstract="true"/>\r
- <element name="AudienceRestriction" type="saml:AudienceRestrictionType"/>\r
- <complexType name="AudienceRestrictionType">\r
- <complexContent>\r
- <extension base="saml:ConditionAbstractType">\r
- <sequence>\r
- <element ref="saml:Audience" maxOccurs="unbounded"/>\r
- </sequence>\r
- </extension>\r
- </complexContent>\r
- </complexType>\r
- <element name="Audience" type="anyURI"/>\r
- <element name="OneTimeUse" type="saml:OneTimeUseType" />\r
- <complexType name="OneTimeUseType">\r
- <complexContent>\r
- <extension base="saml:ConditionAbstractType"/>\r
- </complexContent>\r
- </complexType>\r
- <element name="ProxyRestriction" type="saml:ProxyRestrictionType"/>\r
- <complexType name="ProxyRestrictionType">\r
- <complexContent>\r
- <extension base="saml:ConditionAbstractType">\r
- <sequence>\r
- <element ref="saml:Audience" minOccurs="0" maxOccurs="unbounded"/>\r
- </sequence>\r
- <attribute name="Count" type="nonNegativeInteger" use="optional"/>\r
- </extension>\r
- </complexContent>\r
- </complexType>\r
- <element name="Advice" type="saml:AdviceType"/>\r
- <complexType name="AdviceType">\r
- <choice minOccurs="0" maxOccurs="unbounded">\r
- <element ref="saml:AssertionIDRef"/>\r
- <element ref="saml:AssertionURIRef"/>\r
- <element ref="saml:Assertion"/>\r
- <element ref="saml:EncryptedAssertion"/>\r
- <any namespace="##other" processContents="lax"/>\r
- </choice>\r
- </complexType>\r
- <element name="EncryptedAssertion" type="saml:EncryptedElementType"/>\r
- <element name="Statement" type="saml:StatementAbstractType"/>\r
- <complexType name="StatementAbstractType" abstract="true"/>\r
- <element name="AuthnStatement" type="saml:AuthnStatementType"/>\r
- <complexType name="AuthnStatementType">\r
- <complexContent>\r
- <extension base="saml:StatementAbstractType">\r
- <sequence>\r
- <element ref="saml:SubjectLocality" minOccurs="0"/>\r
- <element ref="saml:AuthnContext"/>\r
- </sequence>\r
- <attribute name="AuthnInstant" type="dateTime" use="required"/>\r
- <attribute name="SessionIndex" type="string" use="optional"/>\r
- <attribute name="SessionNotOnOrAfter" type="dateTime" use="optional"/>\r
- </extension>\r
- </complexContent>\r
- </complexType>\r
- <element name="SubjectLocality" type="saml:SubjectLocalityType"/>\r
- <complexType name="SubjectLocalityType">\r
- <attribute name="Address" type="string" use="optional"/>\r
- <attribute name="DNSName" type="string" use="optional"/>\r
- </complexType>\r
- <element name="AuthnContext" type="saml:AuthnContextType"/>\r
- <complexType name="AuthnContextType">\r
- <sequence>\r
- <choice>\r
- <sequence>\r
- <element ref="saml:AuthnContextClassRef"/>\r
- <choice minOccurs="0">\r
- <element ref="saml:AuthnContextDecl"/>\r
- <element ref="saml:AuthnContextDeclRef"/>\r
- </choice>\r
- </sequence>\r
- <choice>\r
- <element ref="saml:AuthnContextDecl"/>\r
- <element ref="saml:AuthnContextDeclRef"/>\r
- </choice>\r
- </choice>\r
- <element ref="saml:AuthenticatingAuthority" minOccurs="0" maxOccurs="unbounded"/>\r
- </sequence>\r
- </complexType>\r
- <element name="AuthnContextClassRef" type="anyURI"/>\r
- <element name="AuthnContextDeclRef" type="anyURI"/>\r
- <element name="AuthnContextDecl" type="anyType"/>\r
- <element name="AuthenticatingAuthority" type="anyURI"/>\r
- <element name="AuthzDecisionStatement" type="saml:AuthzDecisionStatementType"/>\r
- <complexType name="AuthzDecisionStatementType">\r
- <complexContent>\r
- <extension base="saml:StatementAbstractType">\r
- <sequence>\r
- <element ref="saml:Action" maxOccurs="unbounded"/>\r
- <element ref="saml:Evidence" minOccurs="0"/>\r
- </sequence>\r
- <attribute name="Resource" type="anyURI" use="required"/>\r
- <attribute name="Decision" type="saml:DecisionType" use="required"/>\r
- </extension>\r
- </complexContent>\r
- </complexType>\r
- <simpleType name="DecisionType">\r
- <restriction base="string">\r
- <enumeration value="Permit"/>\r
- <enumeration value="Deny"/>\r
- <enumeration value="Indeterminate"/>\r
- </restriction>\r
- </simpleType>\r
- <element name="Action" type="saml:ActionType"/>\r
- <complexType name="ActionType">\r
- <simpleContent>\r
- <extension base="string">\r
- <attribute name="Namespace" type="anyURI" use="required"/>\r
- </extension>\r
- </simpleContent>\r
- </complexType>\r
- <element name="Evidence" type="saml:EvidenceType"/>\r
- <complexType name="EvidenceType">\r
- <choice maxOccurs="unbounded">\r
- <element ref="saml:AssertionIDRef"/>\r
- <element ref="saml:AssertionURIRef"/>\r
- <element ref="saml:Assertion"/>\r
- <element ref="saml:EncryptedAssertion"/>\r
- </choice>\r
- </complexType>\r
- <element name="AttributeStatement" type="saml:AttributeStatementType"/>\r
- <complexType name="AttributeStatementType">\r
- <complexContent>\r
- <extension base="saml:StatementAbstractType">\r
- <choice maxOccurs="unbounded">\r
- <element ref="saml:Attribute"/>\r
- <element ref="saml:EncryptedAttribute"/>\r
- </choice>\r
- </extension>\r
- </complexContent>\r
- </complexType>\r
- <element name="Attribute" type="saml:AttributeType"/>\r
- <complexType name="AttributeType">\r
- <sequence>\r
- <element ref="saml:AttributeValue" minOccurs="0" maxOccurs="unbounded"/>\r
- </sequence>\r
- <attribute name="Name" type="string" use="required"/>\r
- <attribute name="NameFormat" type="anyURI" use="optional"/>\r
- <attribute name="FriendlyName" type="string" use="optional"/>\r
- <anyAttribute namespace="##other" processContents="lax"/>\r
- </complexType>\r
- <element name="AttributeValue" type="anyType" nillable="true"/>\r
- <element name="EncryptedAttribute" type="saml:EncryptedElementType"/>\r
-</schema>\r
+<?xml version="1.0" encoding="US-ASCII"?>
+<schema
+ targetNamespace="urn:oasis:names:tc:SAML:2.0:assertion"
+ xmlns="http://www.w3.org/2001/XMLSchema"
+ xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
+ xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
+ xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
+ elementFormDefault="unqualified"
+ attributeFormDefault="unqualified"
+ blockDefault="substitution"
+ version="2.0">
+ <import namespace="http://www.w3.org/2000/09/xmldsig#"
+ schemaLocation="http://www.w3.org/TR/2002/REC-xmldsig-core-20020212/xmldsig-core-schema.xsd"/>
+ <import namespace="http://www.w3.org/2001/04/xmlenc#"
+ schemaLocation="http://www.w3.org/TR/2002/REC-xmlenc-core-20021210/xenc-schema.xsd"/>
+ <annotation>
+ <documentation>
+ Document identifier: saml-schema-assertion-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V1.0 (November, 2002):
+ Initial Standard Schema.
+ V1.1 (September, 2003):
+ Updates within the same V1.0 namespace.
+ V2.0 (March, 2005):
+ New assertion schema for SAML V2.0 namespace.
+ </documentation>
+ </annotation>
+ <attributeGroup name="IDNameQualifiers">
+ <attribute name="NameQualifier" type="string" use="optional"/>
+ <attribute name="SPNameQualifier" type="string" use="optional"/>
+ </attributeGroup>
+ <element name="BaseID" type="saml:BaseIDAbstractType"/>
+ <complexType name="BaseIDAbstractType" abstract="true">
+ <attributeGroup ref="saml:IDNameQualifiers"/>
+ </complexType>
+ <element name="NameID" type="saml:NameIDType"/>
+ <complexType name="NameIDType">
+ <simpleContent>
+ <extension base="string">
+ <attributeGroup ref="saml:IDNameQualifiers"/>
+ <attribute name="Format" type="anyURI" use="optional"/>
+ <attribute name="SPProvidedID" type="string" use="optional"/>
+ </extension>
+ </simpleContent>
+ </complexType>
+ <complexType name="EncryptedElementType">
+ <sequence>
+ <element ref="xenc:EncryptedData"/>
+ <element ref="xenc:EncryptedKey" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ </complexType>
+ <element name="EncryptedID" type="saml:EncryptedElementType"/>
+ <element name="Issuer" type="saml:NameIDType"/>
+ <element name="AssertionIDRef" type="NCName"/>
+ <element name="AssertionURIRef" type="anyURI"/>
+ <element name="Assertion" type="saml:AssertionType"/>
+ <complexType name="AssertionType">
+ <sequence>
+ <element ref="saml:Issuer"/>
+ <element ref="ds:Signature" minOccurs="0"/>
+ <element ref="saml:Subject" minOccurs="0"/>
+ <element ref="saml:Conditions" minOccurs="0"/>
+ <element ref="saml:Advice" minOccurs="0"/>
+ <choice minOccurs="0" maxOccurs="unbounded">
+ <element ref="saml:Statement"/>
+ <element ref="saml:AuthnStatement"/>
+ <element ref="saml:AuthzDecisionStatement"/>
+ <element ref="saml:AttributeStatement"/>
+ </choice>
+ </sequence>
+ <attribute name="Version" type="string" use="required"/>
+ <attribute name="ID" type="ID" use="required"/>
+ <attribute name="IssueInstant" type="dateTime" use="required"/>
+ </complexType>
+ <element name="Subject" type="saml:SubjectType"/>
+ <complexType name="SubjectType">
+ <choice>
+ <sequence>
+ <choice>
+ <element ref="saml:BaseID"/>
+ <element ref="saml:NameID"/>
+ <element ref="saml:EncryptedID"/>
+ </choice>
+ <element ref="saml:SubjectConfirmation" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <element ref="saml:SubjectConfirmation" maxOccurs="unbounded"/>
+ </choice>
+ </complexType>
+ <element name="SubjectConfirmation" type="saml:SubjectConfirmationType"/>
+ <complexType name="SubjectConfirmationType">
+ <sequence>
+ <choice minOccurs="0">
+ <element ref="saml:BaseID"/>
+ <element ref="saml:NameID"/>
+ <element ref="saml:EncryptedID"/>
+ </choice>
+ <element ref="saml:SubjectConfirmationData" minOccurs="0"/>
+ </sequence>
+ <attribute name="Method" type="anyURI" use="required"/>
+ </complexType>
+ <element name="SubjectConfirmationData" type="saml:SubjectConfirmationDataType"/>
+ <complexType name="SubjectConfirmationDataType" mixed="true">
+ <complexContent>
+ <restriction base="anyType">
+ <sequence>
+ <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="NotBefore" type="dateTime" use="optional"/>
+ <attribute name="NotOnOrAfter" type="dateTime" use="optional"/>
+ <attribute name="Recipient" type="anyURI" use="optional"/>
+ <attribute name="InResponseTo" type="NCName" use="optional"/>
+ <attribute name="Address" type="string" use="optional"/>
+ <anyAttribute namespace="##other" processContents="lax"/>
+ </restriction>
+ </complexContent>
+ </complexType>
+ <complexType name="KeyInfoConfirmationDataType" mixed="false">
+ <complexContent>
+ <restriction base="saml:SubjectConfirmationDataType">
+ <sequence>
+ <element ref="ds:KeyInfo" maxOccurs="unbounded"/>
+ </sequence>
+ </restriction>
+ </complexContent>
+ </complexType>
+ <element name="Conditions" type="saml:ConditionsType"/>
+ <complexType name="ConditionsType">
+ <choice minOccurs="0" maxOccurs="unbounded">
+ <element ref="saml:Condition"/>
+ <element ref="saml:AudienceRestriction"/>
+ <element ref="saml:OneTimeUse"/>
+ <element ref="saml:ProxyRestriction"/>
+ </choice>
+ <attribute name="NotBefore" type="dateTime" use="optional"/>
+ <attribute name="NotOnOrAfter" type="dateTime" use="optional"/>
+ </complexType>
+ <element name="Condition" type="saml:ConditionAbstractType"/>
+ <complexType name="ConditionAbstractType" abstract="true"/>
+ <element name="AudienceRestriction" type="saml:AudienceRestrictionType"/>
+ <complexType name="AudienceRestrictionType">
+ <complexContent>
+ <extension base="saml:ConditionAbstractType">
+ <sequence>
+ <element ref="saml:Audience" maxOccurs="unbounded"/>
+ </sequence>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="Audience" type="anyURI"/>
+ <element name="OneTimeUse" type="saml:OneTimeUseType" />
+ <complexType name="OneTimeUseType">
+ <complexContent>
+ <extension base="saml:ConditionAbstractType"/>
+ </complexContent>
+ </complexType>
+ <element name="ProxyRestriction" type="saml:ProxyRestrictionType"/>
+ <complexType name="ProxyRestrictionType">
+ <complexContent>
+ <extension base="saml:ConditionAbstractType">
+ <sequence>
+ <element ref="saml:Audience" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="Count" type="nonNegativeInteger" use="optional"/>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="Advice" type="saml:AdviceType"/>
+ <complexType name="AdviceType">
+ <choice minOccurs="0" maxOccurs="unbounded">
+ <element ref="saml:AssertionIDRef"/>
+ <element ref="saml:AssertionURIRef"/>
+ <element ref="saml:Assertion"/>
+ <element ref="saml:EncryptedAssertion"/>
+ <any namespace="##other" processContents="lax"/>
+ </choice>
+ </complexType>
+ <element name="EncryptedAssertion" type="saml:EncryptedElementType"/>
+ <element name="Statement" type="saml:StatementAbstractType"/>
+ <complexType name="StatementAbstractType" abstract="true"/>
+ <element name="AuthnStatement" type="saml:AuthnStatementType"/>
+ <complexType name="AuthnStatementType">
+ <complexContent>
+ <extension base="saml:StatementAbstractType">
+ <sequence>
+ <element ref="saml:SubjectLocality" minOccurs="0"/>
+ <element ref="saml:AuthnContext"/>
+ </sequence>
+ <attribute name="AuthnInstant" type="dateTime" use="required"/>
+ <attribute name="SessionIndex" type="string" use="optional"/>
+ <attribute name="SessionNotOnOrAfter" type="dateTime" use="optional"/>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="SubjectLocality" type="saml:SubjectLocalityType"/>
+ <complexType name="SubjectLocalityType">
+ <attribute name="Address" type="string" use="optional"/>
+ <attribute name="DNSName" type="string" use="optional"/>
+ </complexType>
+ <element name="AuthnContext" type="saml:AuthnContextType"/>
+ <complexType name="AuthnContextType">
+ <sequence>
+ <choice>
+ <sequence>
+ <element ref="saml:AuthnContextClassRef"/>
+ <choice minOccurs="0">
+ <element ref="saml:AuthnContextDecl"/>
+ <element ref="saml:AuthnContextDeclRef"/>
+ </choice>
+ </sequence>
+ <choice>
+ <element ref="saml:AuthnContextDecl"/>
+ <element ref="saml:AuthnContextDeclRef"/>
+ </choice>
+ </choice>
+ <element ref="saml:AuthenticatingAuthority" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ </complexType>
+ <element name="AuthnContextClassRef" type="anyURI"/>
+ <element name="AuthnContextDeclRef" type="anyURI"/>
+ <element name="AuthnContextDecl" type="anyType"/>
+ <element name="AuthenticatingAuthority" type="anyURI"/>
+ <element name="AuthzDecisionStatement" type="saml:AuthzDecisionStatementType"/>
+ <complexType name="AuthzDecisionStatementType">
+ <complexContent>
+ <extension base="saml:StatementAbstractType">
+ <sequence>
+ <element ref="saml:Action" maxOccurs="unbounded"/>
+ <element ref="saml:Evidence" minOccurs="0"/>
+ </sequence>
+ <attribute name="Resource" type="anyURI" use="required"/>
+ <attribute name="Decision" type="saml:DecisionType" use="required"/>
+ </extension>
+ </complexContent>
+ </complexType>
+ <simpleType name="DecisionType">
+ <restriction base="string">
+ <enumeration value="Permit"/>
+ <enumeration value="Deny"/>
+ <enumeration value="Indeterminate"/>
+ </restriction>
+ </simpleType>
+ <element name="Action" type="saml:ActionType"/>
+ <complexType name="ActionType">
+ <simpleContent>
+ <extension base="string">
+ <attribute name="Namespace" type="anyURI" use="required"/>
+ </extension>
+ </simpleContent>
+ </complexType>
+ <element name="Evidence" type="saml:EvidenceType"/>
+ <complexType name="EvidenceType">
+ <choice maxOccurs="unbounded">
+ <element ref="saml:AssertionIDRef"/>
+ <element ref="saml:AssertionURIRef"/>
+ <element ref="saml:Assertion"/>
+ <element ref="saml:EncryptedAssertion"/>
+ </choice>
+ </complexType>
+ <element name="AttributeStatement" type="saml:AttributeStatementType"/>
+ <complexType name="AttributeStatementType">
+ <complexContent>
+ <extension base="saml:StatementAbstractType">
+ <choice maxOccurs="unbounded">
+ <element ref="saml:Attribute"/>
+ <element ref="saml:EncryptedAttribute"/>
+ </choice>
+ </extension>
+ </complexContent>
+ </complexType>
+ <element name="Attribute" type="saml:AttributeType"/>
+ <complexType name="AttributeType">
+ <sequence>
+ <element ref="saml:AttributeValue" minOccurs="0" maxOccurs="unbounded"/>
+ </sequence>
+ <attribute name="Name" type="string" use="required"/>
+ <attribute name="NameFormat" type="anyURI" use="optional"/>
+ <attribute name="FriendlyName" type="string" use="optional"/>
+ <anyAttribute namespace="##other" processContents="lax"/>
+ </complexType>
+ <element name="AttributeValue" type="anyType" nillable="true"/>
+ <element name="EncryptedAttribute" type="saml:EncryptedElementType"/>
+</schema>