1 <?xml version="1.0" encoding="US-ASCII"?>
2 <schema targetNamespace="urn:mace:shibboleth:2.0:native:sp:config"
3 xmlns="http://www.w3.org/2001/XMLSchema"
4 xmlns:conf="urn:mace:shibboleth:2.0:native:sp:config"
5 xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
6 xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
7 xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
8 elementFormDefault="qualified"
9 attributeFormDefault="unqualified"
10 blockDefault="substitution"
13 <import namespace="urn:oasis:names:tc:SAML:2.0:assertion" schemaLocation="saml-schema-assertion-2.0.xsd"/>
14 <import namespace="urn:oasis:names:tc:SAML:2.0:protocol" schemaLocation="saml-schema-protocol-2.0.xsd"/>
15 <import namespace="urn:oasis:names:tc:SAML:2.0:metadata" schemaLocation="saml-schema-metadata-2.0.xsd"/>
19 2.0 schema for XML-based configuration of Shibboleth Native SP instances.
20 First appearing in Shibboleth 2.0 release.
24 <simpleType name="string">
25 <restriction base="string">
26 <minLength value="1"/>
30 <simpleType name="listOfStrings">
31 <list itemType="conf:string"/>
34 <simpleType name="listOfURIs">
35 <list itemType="anyURI"/>
38 <simpleType name="bindingBoolean">
39 <restriction base="string">
40 <enumeration value="true"/>
41 <enumeration value="false"/>
42 <enumeration value="front"/>
43 <enumeration value="back"/>
47 <complexType name="PluggableType">
49 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
51 <attribute name="type" type="conf:string" use="required"/>
52 <anyAttribute namespace="##any" processContents="lax"/>
55 <complexType name="ExtensionsType">
57 <documentation>Container for extension libraries and custom configuration</documentation>
60 <element name="Library" minOccurs="0" maxOccurs="unbounded">
63 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
65 <attribute name="path" type="anyURI" use="required"/>
66 <attribute name="fatal" type="boolean"/>
67 <anyAttribute namespace="##any" processContents="lax"/>
70 <any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
74 <complexType name="StorageServiceType">
76 <documentation>References StorageService plugins</documentation>
79 <restriction base="conf:PluggableType">
81 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
83 <attribute name="id" type="ID" use="required"/>
84 <attribute name="cleanupInterval" type="unsignedInt"/>
85 <anyAttribute namespace="##any" processContents="lax"/>
90 <complexType name="SessionCacheType">
92 <documentation>References SessionCache plugins</documentation>
95 <restriction base="conf:PluggableType">
97 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
99 <attribute name="StorageService" type="IDREF"/>
100 <attribute name="cacheTimeout" type="unsignedInt"/>
101 <anyAttribute namespace="##any" processContents="lax"/>
106 <complexType name="ReplayCacheType">
108 <documentation>Ties ReplayCache to a custom StorageService</documentation>
111 <attribute name="StorageService" type="IDREF" use="required"/>
114 <complexType name="ArtifactMapType">
116 <documentation>Customizes an ArtifactMap</documentation>
119 <attribute name="StorageService" type="IDREF"/>
120 <attribute name="context" type="conf:string"/>
121 <attribute name="artifactTTL" type="unsignedInt"/>
124 <complexType name="OutOfProcessType">
126 <documentation>Container for out-of-process (shibd) configuration</documentation>
129 <element name="Extensions" type="conf:ExtensionsType" minOccurs="0"/>
130 <any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
132 <attribute name="logger" type="anyURI"/>
133 <attribute name="catchAll" type="boolean"/>
134 <anyAttribute namespace="##other" processContents="lax"/>
137 <complexType name="InProcessType">
140 Container for configuration of locally integrated or platform-specific
141 features (e.g. web server filters)
145 <element name="Extensions" type="conf:ExtensionsType" minOccurs="0"/>
146 <element name="ISAPI" minOccurs="0">
149 <element name="Site" maxOccurs="unbounded">
152 <element name="Alias" type="conf:string" minOccurs="0" maxOccurs="unbounded"/>
154 <attribute name="id" type="unsignedInt" use="required"/>
155 <attribute name="name" type="conf:string" use="required"/>
156 <attribute name="port" type="unsignedInt"/>
157 <attribute name="sslport" type="unsignedInt"/>
158 <attribute name="scheme" type="conf:string"/>
161 <any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
163 <attribute name="normalizeRequest" type="boolean"/>
164 <attribute name="safeHeaderNames" type="boolean"/>
165 <anyAttribute namespace="##other" processContents="lax"/>
168 <any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
170 <attribute name="logger" type="anyURI"/>
171 <attribute name="unsetHeaderValue" type="conf:string"/>
172 <attribute name="checkSpoofing" type="boolean"/>
173 <attribute name="spoofKey" type="conf:string"/>
174 <attribute name="catchAll" type="boolean"/>
175 <anyAttribute namespace="##other" processContents="lax"/>
178 <element name="AccessControl" type="conf:UniOperatorType">
181 A simple example access policy language extension that supersedes Apache .htaccess
185 <complexType name="UniOperatorType">
187 <element name="AND" type="conf:MultiOperatorType"/>
188 <element name="OR" type="conf:MultiOperatorType"/>
189 <element name="NOT" type="conf:UniOperatorType"/>
190 <element name="Rule" type="conf:RuleType"/>
191 <element name="RuleRegex" type="conf:RuleRegexType"/>
194 <complexType name="MultiOperatorType">
195 <choice minOccurs="2" maxOccurs="unbounded">
196 <element name="AND" type="conf:MultiOperatorType"/>
197 <element name="OR" type="conf:MultiOperatorType"/>
198 <element name="NOT" type="conf:UniOperatorType"/>
199 <element name="Rule" type="conf:RuleType"/>
200 <element name="RuleRegex" type="conf:RuleRegexType"/>
203 <complexType name="RuleType">
205 <extension base="conf:listOfStrings">
206 <attribute name="require" type="conf:string" use="required"/>
207 <attribute name="list" type="boolean"/>
211 <complexType name="RuleRegexType">
213 <extension base="conf:string">
214 <attribute name="require" type="conf:string" use="required"/>
215 <attribute name="ignoreCase" type="boolean"/>
220 <attributeGroup name="ContentSettings">
221 <attribute name="authType" type="conf:string"/>
222 <attribute name="requireSession" type="boolean"/>
223 <attribute name="requireSessionWith" type="conf:string"/>
224 <attribute name="exportAssertion" type="boolean"/>
225 <attribute name="redirectToSSL" type="unsignedInt"/>
226 <attribute name="entityID" type="anyURI"/>
227 <attribute name="discoveryURL" type="anyURI"/>
228 <attribute name="isPassive" type="boolean"/>
229 <attribute name="returnOnError" type="boolean"/>
230 <attribute name="forceAuthn" type="boolean"/>
231 <attribute name="authnContextClassRef" type="anyURI"/>
232 <attribute name="authnContextComparison" type="samlp:AuthnContextComparisonType"/>
233 <attribute name="NameIDFormat" type="anyURI"/>
234 <attribute name="SPNameQualifier" type="conf:string"/>
235 <attribute name="redirectErrors" type="anyURI"/>
236 <attribute name="sessionError" type="anyURI"/>
237 <attribute name="metadataError" type="anyURI"/>
238 <attribute name="accessError" type="anyURI"/>
239 <attribute name="sslError" type="anyURI"/>
240 <attribute name="target" type="anyURI"/>
241 <attribute name="acsIndex" type="unsignedShort"/>
242 <attribute name="REMOTE_ADDR" type="conf:string"/>
243 <anyAttribute namespace="##other" processContents="lax"/>
246 <element name="RequestMap">
249 Built-in request mapping syntax, decomposes URLs into Host/Path/Path/...
254 <choice minOccurs="0">
255 <element name="htaccess" type="conf:PluggableType"/>
256 <element ref="conf:AccessControl"/>
257 <element name="AccessControlProvider" type="conf:PluggableType"/>
259 <choice minOccurs="0" maxOccurs="unbounded">
260 <element name="Host" type="conf:HostType"/>
261 <element name="HostRegex" type="conf:HostRegexType"/>
264 <attribute name="applicationId" type="conf:string" fixed="default"/>
265 <attributeGroup ref="conf:ContentSettings"/>
269 <complexType name="HostType">
271 <choice minOccurs="0">
272 <element name="htaccess" type="conf:PluggableType"/>
273 <element ref="conf:AccessControl"/>
274 <element name="AccessControlProvider" type="conf:PluggableType"/>
276 <choice minOccurs="0" maxOccurs="unbounded">
277 <element name="Path" type="conf:PathType"/>
278 <element name="PathRegex" type="conf:PathRegexType"/>
279 <element name="Query" type="conf:QueryType"/>
282 <attribute name="scheme">
284 <restriction base="conf:string">
285 <enumeration value="http"/>
286 <enumeration value="https"/>
287 <enumeration value="ftp"/>
288 <enumeration value="ldap"/>
289 <enumeration value="ldaps"/>
293 <attribute name="name" type="conf:string" use="required"/>
294 <attribute name="port" type="unsignedInt"/>
295 <attribute name="applicationId" type="conf:string"/>
296 <attributeGroup ref="conf:ContentSettings"/>
299 <complexType name="HostRegexType">
301 <choice minOccurs="0">
302 <element name="htaccess" type="conf:PluggableType"/>
303 <element ref="conf:AccessControl"/>
304 <element name="AccessControlProvider" type="conf:PluggableType"/>
306 <choice minOccurs="0" maxOccurs="unbounded">
307 <element name="Path" type="conf:PathType"/>
308 <element name="PathRegex" type="conf:PathRegexType"/>
309 <element name="Query" type="conf:QueryType"/>
312 <attribute name="regex" type="conf:string" use="required"/>
313 <attribute name="ignoreCase" type="boolean"/>
314 <attribute name="applicationId" type="conf:string"/>
315 <attributeGroup ref="conf:ContentSettings"/>
318 <complexType name="PathType">
320 <choice minOccurs="0">
321 <element name="htaccess" type="conf:PluggableType"/>
322 <element ref="conf:AccessControl"/>
323 <element name="AccessControlProvider" type="conf:PluggableType"/>
325 <choice minOccurs="0" maxOccurs="unbounded">
326 <element name="Path" type="conf:PathType"/>
327 <element name="PathRegex" type="conf:PathRegexType"/>
328 <element name="Query" type="conf:QueryType"/>
331 <attribute name="name" type="conf:string" use="required"/>
332 <attribute name="applicationId" type="conf:string"/>
333 <attributeGroup ref="conf:ContentSettings"/>
336 <complexType name="PathRegexType">
338 <choice minOccurs="0">
339 <element name="htaccess" type="conf:PluggableType"/>
340 <element ref="conf:AccessControl"/>
341 <element name="AccessControlProvider" type="conf:PluggableType"/>
343 <element name="Query" type="conf:QueryType" minOccurs="0" maxOccurs="unbounded"/>
345 <attribute name="regex" type="conf:string" use="required"/>
346 <attribute name="ignoreCase" type="boolean"/>
347 <attribute name="applicationId" type="conf:string"/>
348 <attributeGroup ref="conf:ContentSettings"/>
351 <complexType name="QueryType">
353 <choice minOccurs="0">
354 <element name="htaccess" type="conf:PluggableType"/>
355 <element ref="conf:AccessControl"/>
356 <element name="AccessControlProvider" type="conf:PluggableType"/>
358 <element name="Query" type="conf:QueryType" minOccurs="0" maxOccurs="unbounded"/>
360 <attribute name="name" type="conf:string" use="required"/>
361 <attribute name="regex" type="conf:string"/>
362 <attributeGroup ref="conf:ContentSettings"/>
365 <complexType name="ApplicationDefaultsType">
367 <documentation>Container for default settings and application-specific overrides</documentation>
370 <element name="Sessions" type="conf:SessionsType"/>
371 <element name="Errors" type="conf:ErrorsType" minOccurs="0"/>
372 <element name="RelyingParty" type="conf:RelyingPartyType" minOccurs="0" maxOccurs="unbounded"/>
373 <element name="Notify" type="conf:NotifyType" minOccurs="0" maxOccurs="unbounded"/>
374 <element ref="saml:Audience" minOccurs="0" maxOccurs="unbounded"/>
375 <element name="MetadataProvider" type="conf:PluggableType"/>
376 <element name="TrustEngine" type="conf:PluggableType"/>
377 <element name="AttributeExtractor" type="conf:PluggableType" minOccurs="0"/>
378 <element name="AttributeResolver" type="conf:PluggableType" minOccurs="0"/>
379 <element name="AttributeFilter" type="conf:PluggableType" minOccurs="0"/>
380 <element name="CredentialResolver" type="conf:PluggableType" minOccurs="0"/>
381 <element name="ApplicationOverride" type="conf:ApplicationOverrideType" minOccurs="0" maxOccurs="unbounded"/>
383 <attribute name="id" type="conf:string" fixed="default"/>
384 <attribute name="entityID" type="anyURI" use="required"/>
385 <attribute name="policyId" type="conf:string" use="required"/>
386 <attributeGroup ref="conf:ApplicationGroup"/>
387 <attributeGroup ref="conf:RelyingPartyGroup"/>
388 <anyAttribute namespace="##other" processContents="lax"/>
391 <complexType name="ApplicationOverrideType">
393 <documentation>Container for application-specific overrides</documentation>
396 <element name="Sessions" type="conf:SessionsType" minOccurs="0"/>
397 <element name="Errors" type="conf:ErrorsType" minOccurs="0"/>
398 <element name="RelyingParty" type="conf:RelyingPartyType" minOccurs="0" maxOccurs="unbounded"/>
399 <element name="Notify" type="conf:NotifyType" minOccurs="0" maxOccurs="unbounded"/>
400 <element ref="saml:Audience" minOccurs="0" maxOccurs="unbounded"/>
401 <element name="MetadataProvider" type="conf:PluggableType" minOccurs="0"/>
402 <element name="TrustEngine" type="conf:PluggableType" minOccurs="0"/>
403 <element name="AttributeExtractor" type="conf:PluggableType" minOccurs="0"/>
404 <element name="AttributeResolver" type="conf:PluggableType" minOccurs="0"/>
405 <element name="AttributeFilter" type="conf:PluggableType" minOccurs="0"/>
406 <element name="CredentialResolver" type="conf:PluggableType" minOccurs="0"/>
408 <attribute name="id" type="conf:string" use="required"/>
409 <attribute name="entityID" type="anyURI"/>
410 <attribute name="policyId" type="conf:string"/>
411 <attributeGroup ref="conf:ApplicationGroup"/>
412 <attributeGroup ref="conf:RelyingPartyGroup"/>
413 <anyAttribute namespace="##other" processContents="lax"/>
416 <attributeGroup name="ApplicationGroup">
417 <attribute name="homeURL" type="anyURI"/>
418 <attribute name="REMOTE_USER" type="conf:listOfStrings"/>
419 <attribute name="unsetHeaders" type="conf:listOfStrings"/>
420 <attribute name="metadataAttributePrefix" type="conf:string"/>
421 <attribute name="attributePrefix" type="conf:string"/>
424 <attributeGroup name="RelyingPartyGroup">
425 <attribute name="authType" type="conf:string"/>
426 <attribute name="authUsername" type="conf:string"/>
427 <attribute name="authPassword" type="conf:string"/>
428 <attribute name="signing" type="conf:bindingBoolean"/>
429 <attribute name="signingAlg" type="anyURI"/>
430 <attribute name="digestAlg" type="anyURI"/>
431 <attribute name="encryption" type="conf:bindingBoolean"/>
432 <attribute name="encryptionAlg" type="anyURI"/>
433 <attribute name="keyName" type="conf:string"/>
434 <attribute name="artifactEndpointIndex" type="unsignedShort"/>
435 <attribute name="chunkedEncoding" type="boolean"/>
436 <attribute name="connectTimeout" type="unsignedShort"/>
437 <attribute name="timeout" type="unsignedShort"/>
438 <attribute name="requireConfidentiality" type="boolean"/>
439 <attribute name="requireTransportAuth" type="boolean"/>
440 <attribute name="requireSignedAssertions" type="boolean"/>
443 <complexType name="SessionsType">
445 <documentation>Container for specifying protocol handlers and session policy</documentation>
447 <choice minOccurs="0" maxOccurs="unbounded">
448 <element ref="conf:SessionInitiator"/>
449 <element ref="conf:LogoutInitiator"/>
450 <element ref="md:AssertionConsumerService"/>
451 <element ref="md:ArtifactResolutionService"/>
452 <element ref="md:SingleLogoutService"/>
453 <element ref="md:ManageNameIDService"/>
454 <element name="Handler">
457 <restriction base="conf:PluggableType">
459 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
461 <attribute name="Location" type="anyURI" use="required"/>
462 <attribute name="acl" type="conf:listOfStrings"/>
463 <anyAttribute namespace="##any" processContents="lax"/>
469 <attribute name="handlerURL" type="anyURI" use="required"/>
470 <attribute name="handlerSSL" type="boolean"/>
471 <attribute name="exportLocation" type="conf:string"/>
472 <attribute name="exportACL" type="conf:listOfStrings"/>
473 <attribute name="cookieName" type="conf:string"/>
474 <attribute name="cookieProps" type="conf:string"/>
475 <attribute name="cookieLifetime" type="unsignedInt"/>
476 <attribute name="idpHistory" type="boolean"/>
477 <attribute name="idpHistoryDays" type="unsignedInt"/>
478 <attribute name="lifetime" type="unsignedInt"/>
479 <attribute name="timeout" type="unsignedInt"/>
480 <attribute name="maxTimeSinceAuthn" type="unsignedInt"/>
481 <attribute name="checkAddress" type="boolean"/>
482 <attribute name="consistentAddress" type="boolean"/>
483 <attribute name="postData" type="conf:string"/>
484 <attribute name="postLimit" type="positiveInteger"/>
485 <attribute name="postTemplate" type="conf:string"/>
486 <attribute name="postExpire" type="boolean"/>
487 <anyAttribute namespace="##other" processContents="lax"/>
490 <attribute name="policyId" type="conf:string">
492 <documentation>Used to reference Policy elements from profile endpoints.</documentation>
496 <element name="SessionInitiator">
498 <documentation>Used to specify handlers that can issue AuthnRequests or perform discovery</documentation>
502 <restriction base="conf:PluggableType">
504 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
506 <attribute name="Location" type="anyURI"/>
507 <attribute name="id" type="conf:string"/>
508 <attribute name="isDefault" type="boolean"/>
509 <attribute name="relayState" type="conf:string"/>
510 <attribute name="entityIDParam" type="conf:string"/>
511 <attribute name="entityID" type="anyURI"/>
512 <attribute name="URL" type="anyURI"/>
513 <attribute name="outgoingBindings" type="conf:listOfURIs"/>
514 <attribute name="template" type="anyURI"/>
515 <attribute name="postArtifact" type="boolean"/>
516 <attribute name="acsByIndex" type="boolean"/>
517 <attribute name="acsIndex" type="unsignedShort"/>
518 <attribute name="defaultACSIndex" type="unsignedShort"/> <!-- deprecated -->
519 <attribute name="isPassive" type="boolean"/>
520 <attribute name="returnOnError" type="boolean"/>
521 <attribute name="forceAuthn" type="boolean"/>
522 <attribute name="authnContextClassRef" type="anyURI"/>
523 <attribute name="authnContextComparison" type="samlp:AuthnContextComparisonType"/>
524 <attribute name="NameIDFormat" type="anyURI"/>
525 <attribute name="SPNameQualifier" type="conf:string"/>
526 <attribute name="requestDelegation" type="boolean"/>
527 <attribute name="target" type="anyURI"/>
528 <anyAttribute namespace="##any" processContents="lax"/>
534 <element name="LogoutInitiator">
536 <documentation>Used to specify handlers that can issue LogoutRequests</documentation>
540 <restriction base="conf:PluggableType">
542 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
544 <attribute name="Location" type="anyURI"/>
545 <attribute name="relayState" type="conf:string"/>
546 <attribute name="outgoingBindings" type="conf:listOfURIs"/>
547 <attribute name="template" type="anyURI"/>
548 <attribute name="postArtifact" type="boolean"/>
549 <anyAttribute namespace="##any" processContents="lax"/>
555 <complexType name="ErrorsType">
557 <documentation>Container for error templates and associated details</documentation>
560 <any namespace="##any" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
562 <attribute name="redirectErrors" type="anyURI"/>
563 <attribute name="session" type="anyURI"/>
564 <attribute name="metadata" type="anyURI"/>
565 <attribute name="access" type="anyURI"/>
566 <attribute name="ssl" type="anyURI"/>
567 <attribute name="localLogout" type="anyURI"/>
568 <attribute name="globalLogout" type="anyURI"/>
569 <attribute name="partialLogout" type="anyURI"/>
570 <attribute name="supportContact" type="conf:string"/>
571 <attribute name="logoLocation" type="anyURI"/>
572 <attribute name="styleSheet" type="anyURI"/>
573 <anyAttribute namespace="##any" processContents="lax"/>
576 <complexType name="RelyingPartyType">
578 <documentation>Container for specifying settings to use with particular peers</documentation>
581 <attribute name="Name" type="conf:string" use="required"/>
582 <attributeGroup ref="conf:RelyingPartyGroup"/>
583 <attribute name="entityID" type="anyURI"/>
584 <anyAttribute namespace="##other" processContents="lax"/>
587 <complexType name="NotifyType">
589 <documentation>Used to specify locations to receive application notifications</documentation>
592 <attribute name="Channel" use="required">
594 <restriction base="string">
595 <enumeration value="front"/>
596 <enumeration value="back"/>
600 <attribute name="Location" type="anyURI" use="required"/>
601 <anyAttribute namespace="##any" processContents="lax"/>
604 <complexType name="SecurityPoliciesType">
606 <documentation>Container for specifying sets of policy rules to apply to incoming messages</documentation>
609 <element name="Policy" minOccurs="1" maxOccurs="unbounded">
611 <documentation>Specifies a set of SecurityPolicyRule plugins</documentation>
615 <element name="Rule" type="conf:PluggableType" minOccurs="1" maxOccurs="unbounded"/>
616 <element name="PolicyRule" type="conf:PluggableType" minOccurs="1" maxOccurs="unbounded"/>
618 <attribute name="id" type="conf:string" use="required"/>
619 <attribute name="validate" type="boolean"/>
620 <anyAttribute namespace="##any" processContents="lax"/>
623 <choice minOccurs="0">
624 <element name="AlgorithmWhitelist" type="conf:listOfURIs"/>
625 <element name="AlgorithmBlacklist" type="conf:listOfURIs"/>
630 <element name="TransportOption">
632 <documentation>Implementation-specific option to pass to SOAPTransport provider.</documentation>
636 <extension base="anySimpleType">
637 <attribute name="provider" type="conf:string" use="required"/>
638 <attribute name="option" type="conf:string" use="required"/>
644 <element name="SPConfig">
647 <documentation>Root of configuration</documentation>
650 <element name="Extensions" type="conf:ExtensionsType" minOccurs="0"/>
651 <element name="OutOfProcess" type="conf:OutOfProcessType"/>
652 <element name="InProcess" type="conf:InProcessType"/>
653 <choice minOccurs="0">
654 <element name="UnixListener">
656 <attribute name="address" type="conf:string" use="required"/>
657 <attribute name="stackSize" type="unsignedInt"/>
660 <element name="TCPListener">
662 <attribute name="address" type="conf:string" use="required"/>
663 <attribute name="port" type="unsignedInt" use="required"/>
664 <attribute name="acl" type="conf:listOfStrings"/>
665 <attribute name="stackSize" type="unsignedInt"/>
668 <element name="Listener" type="conf:PluggableType"/>
670 <element name="StorageService" type="conf:StorageServiceType" minOccurs="0" maxOccurs="unbounded"/>
671 <element name="SessionCache" type="conf:SessionCacheType" minOccurs="0"/>
672 <element name="ReplayCache" type="conf:ReplayCacheType" minOccurs="0"/>
673 <element name="ArtifactMap" type="conf:ArtifactMapType" minOccurs="0"/>
674 <element name="RequestMapper" type="conf:PluggableType" minOccurs="0"/>
675 <element name="ApplicationDefaults" type="conf:ApplicationDefaultsType"/>
676 <element name="SecurityPolicies" type="conf:SecurityPoliciesType"/>
677 <element ref="conf:TransportOption" minOccurs="0" maxOccurs="unbounded"/>
679 <attribute name="logger" type="anyURI"/>
680 <attribute name="clockSkew" type="unsignedInt"/>
681 <attribute name="unsafeChars" type="conf:string"/>
682 <attribute name="allowedSchemes" type="conf:listOfStrings"/>
683 <anyAttribute namespace="##other" processContents="lax"/>