Saturday, 8 August 2015

SAML: Conditions

Conditions are used to specify constrains for this assertion.

Conditions element contains following attributes.
Attribute
Description
Required
NotBefore
It is a time value encoded in utc, specifies the earliest time instant at which the assertion is valid.
Optional
NotOnOrAfter
It is a time value encoded in UTC, specifies the time instant at which the assertion has expired.
Optional

Conditions element contains following elements.

Element
Description
Required
Condition
Used to indicate the actual condition type. You can add any number of condition elements.
Optional
AudienceRestriction
Specifies assertion is addressed to particular audience. You can add any number of audience restrictions.
Optional
OneTimeUse
Specifies assertion is used for one time.
Optional
ProxyRestriction
Specifies limitations that the asserting party imposes on relying parties that wish to subsequently act as asserting parties themselves and issue assertions of their own on the basis of the information contained in the original assertion

Optional


Following schema defines Conditions element.

<element name="Conditions" type="saml:ConditionsType" />
<complexType name="ConditionsType">
  <choice minOccurs="0" maxOccurs="unbounded">
    <element ref="saml:Condition" />
    <element ref="saml:AudienceRestriction" />
    <element ref="saml:OneTimeUse" />
    <element ref="saml:ProxyRestriction" />
  </choice>
  <attribute name="NotBefore" type="dateTime" use="optional" />
  <attribute name="NotOnOrAfter" type="dateTime" use="optional" />
</complexType>




Prevoius                                                 Next                                                 Home

No comments:

Post a Comment