This topic has not yet been rated - Rate this topic

8 Index

Abstract data model

relying party (section 3.1.1, section 3.3.1)

requestor IP/STS (section 3.1.1, section 3.2.1)

web browser requestor

Applicability

Assertion statements

Attribute element example

Attribute statements

Authentication

Authentication statements

Capability negotiation (section 1.7, section 1.7.2)

Certificate validation

Change tracking

Claim

IP/STS

relying party

Claim mapping (section 3.1.5.4.5, section 3.3.5.2.5)

Cleanup processing (section 3.2.5.2.2, section 3.2.5.3.3, section 3.3.5.4.2)

Confidentiality

Data model - abstract

relying party (section 3.1.1, section 3.3.1)

requestor IP/STS (section 3.1.1, section 3.2.1)

web browser requestor

Error handling

Examples

final HTTP 200 OK response from WS resource example

HTTP Get to Requestor IP/STS example

HTTP Get To Resource IP/STS example

HTTP post security token to resource IP/STS example

HTTP post security token to WS resource example

HTTP Redirect to Requestor IP/STS example

HTTP Redirect to Resource IP/STS example

message flows

original get to WS resource example

overview

raw messages examples

receive security token from requestor IP/STS in HTML form example

receive security token from resource IP/STS in HTML form example

RSTR

SAML attribute element example

X509Certificate element example

X509SKI element example

XML examples

Federation partner

IP/STS

relying party

web browser requestor

Fields - vendor-extensible

Final HTTP 200 OK response from WS resource example

Glossary

Higher-layer triggered events

relying party (section 3.1.4, section 3.3.4)

requestor IP/STS (section 3.1.4, section 3.2.4)

web browser requestor

High-level result - wresult

HTTP Get to Requestor IP/STS example

HTTP Get To Resource IP/STS example

HTTP post security token to resource IP/STS example

HTTP post security token to WS resource example

HTTP Redirect to Requestor IP/STS example

HTTP Redirect to Resource IP/STS example

Identification

Identifiers

Implementer - security considerations

Inbound wsignout1.0 request message processing

Inbound wsignoutcleanup1.0 request message processing

Index of security parameters

Informative references

Initialization

relying party (section 3.1.3, section 3.3.3)

requestor IP/STS (section 3.1.3, section 3.2.3)

web browser requestor

Introduction

IP/STS

claim

federation partner

user authentication context

web browser requestor sessions list

Local events

relying party (section 3.1.7, section 3.3.7)

requestor IP/STS (section 3.1.7, section 3.2.7)

web browser requestor

Message flow example

Message processing

relying party (section 3.1.5, section 3.3.5)

requestor IP/STS (section 3.1.5, section 3.2.5)

web browser requestor (section 3.1.5, section 3.4.5)

Message transmission (section 3.2.5.3.4, section 3.3.5.3.4, section 3.3.5.4.4)

Message type - determining

Message validation (section 3.1.5.4.2, section 3.3.5.2.2)

Messages

Original get to WS resource example

Outbound wsignout1.0 request message processing

Outbound wsignoutcleanup1.0 request message processing

Overview

Overview (synopsis)

Parameter marshaling (section 3.1.5.3.2, section 3.3.5.1.2, section 3.3.5.3.2)

Parameters - security

Protocol activation (section 3.1.5.3.1, section 3.1.5.4.1, section 3.2.5.2.1, section 3.2.5.3.1, section 3.3.5.1.1, section 3.3.5.2.1, section 3.3.5.3.1, section 3.3.5.4.1)

Protocol details

Raw messages examples

Receive security token from requestor IP/STS in HTML form example

Receive security token from resource IP/STS in HTML form example

References

informative

normative

Relationship to other protocols

Relying Party

abstract data model

claim

federation partner

higher-layer triggered events (section 3.1.4, section 3.3.4)

initialization (section 3.1.3, section 3.3.3)

local events (section 3.1.7, section 3.3.7)

message processing (section 3.1.5, section 3.3.5)

overview (section 3.1, section 3.3, section 3.3.1)

security token (section 3.1.1.1, section 3.1.5.3, section 3.1.5.4, section 3.3.5.1, section 3.3.5.2)

sequencing rules (section 3.1.5, section 3.3.5)

timer events (section 3.1.6, section 3.3.6)

timers (section 3.1.2, section 3.3.2)

user authentication context

web browser requestor sessions list

Relying party security realm (section 3.2.5.3.2, section 3.3.5.4.3)

Request messages

Requestor IP/STS

abstract data model (section 3.1.1, section 3.2.1)

higher-layer triggered events (section 3.1.4, section 3.2.4)

initialization (section 3.1.3, section 3.2.3)

local events (section 3.1.7, section 3.2.7)

message processing (section 3.1.5, section 3.2.5)

overview (section 3.1, section 3.2)

security token (section 3.1.1.1, section 3.1.5.3, section 3.1.5.4, section 3.2.5.1)

sequencing rules (section 3.1.5, section 3.2.5)

timer events (section 3.1.6, section 3.2.6)

timers (section 3.1.2, section 3.2.2)

Requestor IP/STS security realm (section 3.1.5.3.3, section 3.3.5.3.3)

Resource access control

Resource IP/STS abstract data model extensions

Response message (section 3.1.5.4.7, section 3.2.5.2.3, section 3.3.5.4.5)

Response messages

SAML attribute element example

Security

certificate validation

confidentiality

identifiers

implementer considerations

Security token

relying party (section 3.1.1.1, section 3.1.5.3, section 3.1.5.4, section 3.3.5.1, section 3.3.5.2)

requestor IP/STS (section 3.1.1.1, section 3.1.5.3, section 3.1.5.4, section 3.2.5.1)

Security token format

Security token integrity

Security token signature

Sequencing rules

relying party (section 3.1.5, section 3.3.5)

requestor IP/STS (section 3.1.5, section 3.2.5)

web browser requestor (section 3.1.5, section 3.4.5)

Signature - security token

Standards assignments

Statements

Syntax

Timer events

relying party (section 3.1.6, section 3.3.6)

requestor IP/STS (section 3.1.6, section 3.2.6)

web browser requestor

Timers

relying party (section 3.1.2, section 3.3.2)

requestor IP/STS (section 3.1.2, section 3.2.2)

web browser requestor

Tracking changes

Transmitting messages

Transport

Triggered events - higher-layer

relying party (section 3.1.4, section 3.3.4)

requestor IP/STS (section 3.1.4, section 3.2.4)

web browser requestor

User attributes (section 3.1.5.4.4, section 3.3.5.2.4)

User authentication context

IP/STS

relying party

User identification and authentication (section 3.1.5.4.3, section 3.3.5.2.3)

Vendor-extensible fields

Versioning (section 1.7, section 1.7.1)

Web browser requestor

abstract data model

federation partner

higher-layer triggered events

initialization

IP/STS - sessions list

local events

message processing (section 3.1.5, section 3.4.5)

overview

relying party - sessions list

sequencing rules (section 3.1.5, section 3.4.5)

timer events

timers

wresult

WS resource abstract data model extensions

wsignin1.0 (section 2.2.3, section 2.2.4)

wsignout1.0

wsignoutcleanup1.0

X509Certificate element example

X509SKI element example

XML examples

Did you find this helpful? Yes No

Not accurate

Not enough depth

Need more code examples

(1500 characters remaining)