2.2.2.1 SignMessageRequest

The SignMessageRequest message requests that a SAML Message signature be applied to a SAML Message, if the configuration for the requested principal specifies that messages are to be signed. It is used by the following message:

Message type

Action URI

Request

http://schemas.microsoft.com/ws/2009/12/identityserver/samlprotocol/ProcessRequest

body: The SOAP body MUST contain a single msis:SignMessageRequest element with the following type:

  
   <complexType name="SignMessageRequestType">
     <complexContent>
       <extension base="msis:RequestType">
         <sequence>
           <element name="ActivityId" type="string"/>
           <element name="Message" type="msis:SamlMessageType"/>
           <element name="Principal" type="msis:PrincipalType"/>
           <any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded" />
         </sequence>
       </extension>
     </complexContent>
   </complexType>

ActivityId: An opaque string supplied by the caller to track the activity to which this message pertains.

Message: A complex type representing a SAML Protocol message.

Principal: A complex type representing a SAML EntityId for a SAML Identity Provider (IdP), a SAML Service Provider (SP), or this STS server.

Show: