1 <!-- Used by AAF (ATT inc 2016) -->
3 xmlns:xs="http://www.w3.org/2001/XMLSchema"
4 xmlns:certman="urn:certman:v1_0"
5 targetNamespace="urn:certman:v1_0"
6 elementFormDefault="qualified">
8 <!-- jg 4/21/2016 New for Certificate Info -->
9 <xs:element name="certInfo">
12 <!-- Base64 Encoded Private Key -->
13 <xs:element name="privatekey" type="xs:string" minOccurs="0" maxOccurs="1"/>
14 <!-- Base64 Encoded Certificate -->
15 <xs:element name="certs" type="xs:string" minOccurs="1" maxOccurs="unbounded"/>
16 <!-- Challenge Password (2 method Auth) -->
17 <xs:element name="challenge" type="xs:string" minOccurs="0" maxOccurs="1"/>
18 <!-- Notes from Server concerning Cert (not an error) -->
19 <xs:element name="notes" type="xs:string" minOccurs="0" maxOccurs="1"/>
24 <xs:complexType name="baseRequest">
26 <xs:element name="mechid" type="xs:string" minOccurs="1" maxOccurs="1"/>
27 <!-- Sponsor is only required if the caller is not Sponsor. In that case, the calling ID must be delegated to do the work. -->
28 <xs:element name="sponsor" type="xs:string" minOccurs="0" maxOccurs="1"/>
29 <xs:element name="start" type="xs:dateTime" minOccurs="1" maxOccurs="1" />
30 <xs:element name="end" type="xs:date" minOccurs="1" maxOccurs="1"/>
34 <xs:complexType name="specificRequest">
36 <xs:extension base="certman:baseRequest">
38 <xs:element name="serial" type="xs:string" minOccurs="1" maxOccurs="1"/>
39 <!-- Certificate has been compromised or other security issue -->
40 <xs:element name="revoke" type="xs:boolean" minOccurs="0" maxOccurs="1" default="false"/>
46 <xs:element name="certificateRequest">
49 <xs:extension base="certman:baseRequest">
51 <!-- One FQDN is required. Multiple driven by Policy -->
52 <xs:element name="fqdns" type="xs:string" minOccurs="1" maxOccurs="unbounded"/>
53 <!-- Optional Email for getting Public Certificate -->
54 <xs:element name="email" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
61 <xs:element name="certificateRenew">
64 <xs:extension base="certman:specificRequest">
66 <!-- One FQDN is required. Multiple driven by Policy -->
67 <xs:element name="fqdns" type="xs:string" minOccurs="1" maxOccurs="unbounded"/>
68 <!-- Challenge Password (for accessing manually) TODO Is it necessary? -->
69 <xs:element name="challenge" type="xs:string" minOccurs="0" maxOccurs="1"/>
70 <!-- Optional Email for getting Public Certificate -->
71 <xs:element name="email" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
78 <xs:element name="certificateDrop">
81 <xs:extension base="certman:specificRequest">
83 <!-- Challenge Password (for accessing manually) TODO Is it necessary? -->
84 <xs:element name="challenge" type="xs:string" minOccurs="0" maxOccurs="1"/>
91 <!-- Placement Structures -->
93 <xs:element name="artifacts">
96 <xs:element name="artifact" minOccurs="0" maxOccurs="unbounded">
99 <xs:element name="mechid" type="xs:string" minOccurs="1" maxOccurs="1"/>
100 <xs:element name="machine" type="xs:string" minOccurs="0" maxOccurs="1" />
101 <xs:element name="type" minOccurs="1" maxOccurs="3">
103 <xs:restriction base="xs:string">
104 <xs:enumeration value="file"/>
105 <xs:enumeration value="jks"/>
106 <xs:enumeration value="print"/>
110 <xs:element name="ca" type="xs:string" minOccurs="1" maxOccurs="1" />
111 <xs:element name="dir" type="xs:string" minOccurs="1" maxOccurs="1"/>
112 <xs:element name="os_user" type="xs:string" minOccurs="1" maxOccurs="1"/>
113 <!-- Ignored on input, and set by TABLES. However, returned on output -->
114 <xs:element name="sponsor" type="xs:string" minOccurs="0" maxOccurs="1" />
115 <!-- Optional... if empty, will use MechID Namespace -->
116 <xs:element name="appName" type="xs:string" minOccurs="0" maxOccurs="1"/>
117 <!-- Optional... if empty, will notify Sponsor -->
118 <xs:element name="notification" type="xs:string" minOccurs="0" maxOccurs="1"/>
119 <!-- Optional... Days before auto renewal. Min is 10. Max is 1/3 expiration (60) -->
120 <xs:element name="renewDays" type="xs:int" minOccurs="0" maxOccurs="1" default="30"/>
Code Review / aaf / authz.git / blob