I2 Ping Identity with openinfocard
From OSIS Open Source Identity Systems
Created a card and imported it into the openinfocard id selector.
Trying to use it at: https://labs.pingidentity.com/cardspace/rp/ The id selector fails because it currently only supports TransportBinding. It does not support symmetric binding.
Please see below to inspect the returned meta data.
Tested by Axel Nennker with
- Firefox 2.0.0.8
- xmldap-0.9.8.20071017.xpi openinfocard id selector
- IdentitySelector.xpi (1.0.1) IdentitySelector.xpi
- (Windows XP SP2)
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope" xmlns:wsa="http://www.w3.org/2005/08/addressing">
<soap:Header>
<wsa:Action soap:mustUnderstand="1">http://schemas.xmlsoap.org/ws/2004/09/transfer/GetResponse</wsa:Action>
</soap:Header>
<soap:Body>
<wsx:Metadata xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex">
<wsx:MetadataSection Dialect="http://schemas.xmlsoap.org/wsdl/" Identifier="http://tempuri.org/">
<wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/" xmlns:ic="http://schemas.xmlsoap.org/ws/2005/05/identity" xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/" xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy" xmlns:tns="http://tempuri.org/" xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl" xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:xsd="http://www.w3.org/2001/XMLSchema" name="WsTrustListener" targetNamespace="http://tempuri.org/">
<wsp:Policy wsu:Id="Binding_IWsTrustContract_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SymmetricBinding>
<wsp:Policy>
<sp:ProtectionToken>
<wsp:Policy>
<sp:X509Token sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Never">
<wsp:Policy>
<sp:RequireThumbprintReference/>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:ProtectionToken>
<sp:AlgorithmSuite>
<wsp:Policy>
<sp:Basic256/>
</wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout>
<wsp:Policy>
<sp:Strict/>
</wsp:Policy>
</sp:Layout>
<sp:IncludeTimestamp/>
<sp:OnlySignEntireHeadersAndBody/>
</wsp:Policy>
</sp:SymmetricBinding>
<sp:SignedSupportingTokens>
<wsp:Policy>
<sp:UsernameToken sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/AlwaysToRecipient">
<wsp:Policy>
<sp:WssUsernameToken10/>
</wsp:Policy>
</sp:UsernameToken>
</wsp:Policy>
</sp:SignedSupportingTokens>
<sp:Wss11>
<wsp:Policy>
<sp:MustSupportRefThumbprint/>
<sp:MustSupportRefEncryptedKey/>
</wsp:Policy>
</sp:Wss11>
<sp:Trust10>
<wsp:Policy>
<sp:RequireClientEntropy/>
<!--<sp:RequireServerEntropy/>-->
</wsp:Policy>
</sp:Trust10>
<wsaw:UsingAddressing wsdl:required="true"/>
<ic:RequireFederatedIdentityProvisioning/>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsdl:types>
<xsd:schema targetNamespace="http://schemas.microsoft.com/Message">
<xsd:complexType name="MessageBody">
<xsd:sequence>
<xsd:any maxOccurs="unbounded" minOccurs="0" namespace="##any"/>
</xsd:sequence>
</xsd:complexType>
</xsd:schema>
</wsdl:types>
<wsdl:message name="IWsTrustContract_CommonMessage">
<wsdl:part xmlns:q="http://schemas.microsoft.com/Message" name="common" type="q:MessageBody"/>
</wsdl:message>
<wsdl:portType name="IWsTrustContract">
<wsdl:operation name="Issue">
<wsdl:input message="tns:IWsTrustContract_CommonMessage" wsaw:Action="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue"/>
<wsdl:output message="tns:IWsTrustContract_CommonMessage" wsaw:Action="http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/Issue"/>
</wsdl:operation>
</wsdl:portType>
<wsdl:binding name="Binding_IWsTrustContract" type="tns:IWsTrustContract">
<wsp:PolicyReference URI="#Binding_IWsTrustContract_policy"/>
<soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
<wsdl:operation name="Issue">
<soap12:operation soapAction="http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue" style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
</wsdl:binding>
<wsdl:service name="WsTrustListener">
<wsdl:port binding="tns:Binding_IWsTrustContract" name="Binding_IWsTrustContract">
<wsa:EndpointReference>
<wsa:Address>
http://labs.pingidentity.com/cardspace/idp/username-symmetric
</wsa:Address>
<Identity xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
<X509Data>
<X509Certificate>
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
</X509Certificate>
</X509Data>
</KeyInfo>
</Identity>
</wsa:EndpointReference>
</wsdl:port>
</wsdl:service>
</wsdl:definitions>
</wsx:MetadataSection>
</wsx:Metadata>
</soap:Body>
</soap:Envelope>
