Initial import
authorcantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>
Fri, 7 Jun 2002 16:02:34 +0000 (16:02 +0000)
committercantor <cantor@ab3bd59b-922f-494d-bb5f-6f0a3c29deca>
Fri, 7 Jun 2002 16:02:34 +0000 (16:02 +0000)
git-svn-id: https://subversion.switch.ch/svn/shibboleth/java-idp/trunk@39 ab3bd59b-922f-494d-bb5f-6f0a3c29deca

src/schemas/eduPerson.xsd [new file with mode: 0644]
src/schemas/shibboleth.xsd [new file with mode: 0644]

diff --git a/src/schemas/eduPerson.xsd b/src/schemas/eduPerson.xsd
new file mode 100644 (file)
index 0000000..d0a8080
--- /dev/null
@@ -0,0 +1,61 @@
+<?xml version="1.0" encoding="US-ASCII"?>
+<schema targetNamespace="urn:mace:eduPerson:1.0" xmlns:edu="urn:mace:eduPerson:1.0" xmlns="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+
+    <!--
+    Attribute Identifiers:
+    
+    urn:mace:eduPerson:1.0:eduPersonPrincipalName
+        - AttributeValue xsi:type is eduPersonPrincipalNameType
+        - AttributeValue element contains the LHS of the eduPerson-defined EPPN
+        - Scope, if any, contains the RHS of the eduPerson-defined EPPN
+        - MUST be singly occurring value
+    
+    urn:mace:eduPerson:1.0:eduPersonAffiliation
+        - AttributeValue xsi:type is eduPersonAffiliationType
+        - AttributeValue elements contain an eduPerson-defined affiliation token
+        - Scope, if any, contains a DNS-style organization name
+        - MAY be multi-valued
+    
+    urn:mace:eduPerson:1.0:eduPersonPrimaryAffiliation
+        - AttributeValue xsi:type is eduPersonAffiliationType
+        - AttributeValue element contains an eduPerson-defined affiliation token
+        - Scope, if any, contains a DNS-style organization name
+        - MUST be singly occurring value
+    
+    urn:mace:eduPerson:1.0:eduPersonEntitlement
+        - AttributeValue xsi:type is xsd:anyURI
+        - AttributeValue elements contain a URI representing the entitlement
+        - MAY be multi-valued
+    -->
+    
+    <complexType name="ScopedStringValueType">
+        <simpleContent>
+            <extension base="string">
+                <attribute name="Scope" type="string" use="optional"/>
+            </extension>
+        </simpleContent>
+    </complexType>
+    
+    <complexType name="eduPersonPrincipalNameType">
+        <simpleContent>
+            <restriction base="edu:ScopedStringValueType">
+                <pattern value="[^\s@]+"/>
+            </restriction>
+        </simpleContent>
+    </complexType>
+    
+    <complexType name="eduPersonAffiliationType">
+        <simpleContent>
+            <restriction base="edu:ScopedStringValueType">
+                <enumeration value="faculty"/>
+                <enumeration value="student"/>
+                <enumeration value="staff"/>
+                <enumeration value="alum"/>
+                <enumeration value="member"/>
+                <enumeration value="affiliate"/>
+                <enumeration value="employee"/>
+            </restriction>
+        </simpleContent>
+    </complexType>
+    
+</schema>
diff --git a/src/schemas/shibboleth.xsd b/src/schemas/shibboleth.xsd
new file mode 100644 (file)
index 0000000..bbd70b9
--- /dev/null
@@ -0,0 +1,17 @@
+<?xml version="1.0" encoding="US-ASCII"?>
+<schema targetNamespace="urn:mace:shibboleth:1.0" xmlns:shib="urn:mace:shibboleth:1.0" xmlns="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+
+    <!-- Used by AA in samlp:StatusDetail to signal user wants real-time attribute release. -->  
+    <element name="RealTimeReleaseURL" type="anyURI"/>
+
+    <!--
+    The following SAML sub-status codes are defined in this namespace:
+    
+        "RealTimeRelease"
+            Used with samlp:Responder, signals user wants real-time attribute release
+        
+        "InvalidHandle"
+            Used with samlp:Requester, signals AA did not recognize handle as valid
+    -->
+    
+</schema>