diff --git a/schemas/saml-2.0/saml-schema-assertion-2.0.xsd b/schemas/saml-2.0/saml-schema-assertion-2.0.xsd
new file mode 100644
index 00000000..6aa3b27d
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-assertion-2.0.xsd
@@ -0,0 +1,283 @@
+
+
+
+
+
+
+ Document identifier: saml-schema-assertion-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V1.0 (November, 2002):
+ Initial Standard Schema.
+ V1.1 (September, 2003):
+ Updates within the same V1.0 namespace.
+ V2.0 (March, 2005):
+ New assertion schema for SAML V2.0 namespace.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-2.0.xsd
new file mode 100644
index 00000000..5723bb91
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-2.0.xsd
@@ -0,0 +1,23 @@
+
+
+
+
+
+ Document identifier: saml-schema-authn-context-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New core authentication context schema for SAML V2.0.
+ This is just an include of all types from the schema
+ referred to in the include statement below.
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-auth-telephony-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-auth-telephony-2.0.xsd
new file mode 100644
index 00000000..84dc4ec1
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-auth-telephony-2.0.xsd
@@ -0,0 +1,81 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:AuthenticatedTelephony
+ Document identifier: saml-schema-authn-context-auth-telephony-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-ip-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-ip-2.0.xsd
new file mode 100644
index 00000000..add9e0cc
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-ip-2.0.xsd
@@ -0,0 +1,65 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocol
+ Document identifier: saml-schema-authn-context-ip-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-ippword-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-ippword-2.0.xsd
new file mode 100644
index 00000000..7496a046
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-ippword-2.0.xsd
@@ -0,0 +1,67 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:InternetProtocolPassword
+ Document identifier: saml-schema-authn-context-ippword-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-kerberos-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-kerberos-2.0.xsd
new file mode 100644
index 00000000..88398cf0
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-kerberos-2.0.xsd
@@ -0,0 +1,83 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:Kerberos
+ Document identifier: saml-schema-authn-context-kerberos-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-mobileonefactor-reg-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-mobileonefactor-reg-2.0.xsd
new file mode 100644
index 00000000..745a277c
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-mobileonefactor-reg-2.0.xsd
@@ -0,0 +1,186 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorContract
+ Document identifier: saml-schema-authn-context-mobileonefactor-reg-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd
new file mode 100644
index 00000000..deea9966
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-mobileonefactor-unreg-2.0.xsd
@@ -0,0 +1,183 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:MobileOneFactorUnregistered
+ Document identifier: saml-schema-authn-context-mobileonefactor-unreg-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-mobiletwofactor-reg-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-mobiletwofactor-reg-2.0.xsd
new file mode 100644
index 00000000..3bfa7c5c
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-mobiletwofactor-reg-2.0.xsd
@@ -0,0 +1,202 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:MobileTwoFactorContract
+ Document identifier: saml-schema-authn-context-mobiletwofactor-reg-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-mobiletwofactor-unreg-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-mobiletwofactor-unreg-2.0.xsd
new file mode 100644
index 00000000..714e0fd9
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-mobiletwofactor-unreg-2.0.xsd
@@ -0,0 +1,200 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:MobileTwoFactorUnregistered
+ Document identifier: saml-schema-authn-context-mobiletwofactor-unreg-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-nomad-telephony-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-nomad-telephony-2.0.xsd
new file mode 100644
index 00000000..c9065145
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-nomad-telephony-2.0.xsd
@@ -0,0 +1,81 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:NomadTelephony
+ Document identifier: saml-schema-authn-context-nomad-telephony-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-personal-telephony-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-personal-telephony-2.0.xsd
new file mode 100644
index 00000000..bdb0f72b
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-personal-telephony-2.0.xsd
@@ -0,0 +1,80 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:PersonalizedTelephony
+ Document identifier: saml-schema-authn-context-personal-telephony-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-pgp-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-pgp-2.0.xsd
new file mode 100644
index 00000000..cbff52ae
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-pgp-2.0.xsd
@@ -0,0 +1,83 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:PGP
+ Document identifier: saml-schema-authn-context-pgp-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-ppt-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-ppt-2.0.xsd
new file mode 100644
index 00000000..a0d9bcb6
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-ppt-2.0.xsd
@@ -0,0 +1,81 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
+ Document identifier: saml-schema-authn-context-ppt-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-pword-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-pword-2.0.xsd
new file mode 100644
index 00000000..7c98cdd2
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-pword-2.0.xsd
@@ -0,0 +1,64 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:Password
+ Document identifier: saml-schema-authn-context-pword-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-session-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-session-2.0.xsd
new file mode 100644
index 00000000..c7340bf8
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-session-2.0.xsd
@@ -0,0 +1,64 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:PreviousSession
+ Document identifier: saml-schema-authn-context-session-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-smartcard-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-smartcard-2.0.xsd
new file mode 100644
index 00000000..64a7479a
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-smartcard-2.0.xsd
@@ -0,0 +1,64 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:Smartcard
+ Document identifier: saml-schema-authn-context-smartcard-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-smartcardpki-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-smartcardpki-2.0.xsd
new file mode 100644
index 00000000..bb6474d4
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-smartcardpki-2.0.xsd
@@ -0,0 +1,129 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:SmartcardPKI
+ Document identifier: saml-schema-authn-context-smartcardpki-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-softwarepki-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-softwarepki-2.0.xsd
new file mode 100644
index 00000000..2054a816
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-softwarepki-2.0.xsd
@@ -0,0 +1,129 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:SoftwarePKI
+ Document identifier: saml-schema-authn-context-softwarepki-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-spki-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-spki-2.0.xsd
new file mode 100644
index 00000000..698c7c6c
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-spki-2.0.xsd
@@ -0,0 +1,83 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:SPKI
+ Document identifier: saml-schema-authn-context-spki-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-srp-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-srp-2.0.xsd
new file mode 100644
index 00000000..07c6ae47
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-srp-2.0.xsd
@@ -0,0 +1,82 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:SecureRemotePassword
+ Document identifier: saml-schema-authn-context-srp-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-sslcert-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-sslcert-2.0.xsd
new file mode 100644
index 00000000..88a4f178
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-sslcert-2.0.xsd
@@ -0,0 +1,97 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:TLSClient
+ Document identifier: saml-schema-authn-context-sslcert-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-telephony-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-telephony-2.0.xsd
new file mode 100644
index 00000000..e4906c52
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-telephony-2.0.xsd
@@ -0,0 +1,79 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:Telephony
+ Document identifier: saml-schema-authn-context-telephony-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/schemas/saml-2.0/saml-schema-authn-context-timesync-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-timesync-2.0.xsd
new file mode 100644
index 00000000..53b425fc
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-timesync-2.0.xsd
@@ -0,0 +1,105 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:TimeSyncToken
+ Document identifier: saml-schema-authn-context-timesync-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-types-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-types-2.0.xsd
new file mode 100644
index 00000000..6ae1875e
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-types-2.0.xsd
@@ -0,0 +1,821 @@
+
+
+
+
+
+ Document identifier: saml-schema-authn-context-types-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New core authentication context schema types for SAML V2.0.
+
+
+
+
+
+
+ A particular assertion on an identity
+ provider's part with respect to the authentication
+ context associated with an authentication assertion.
+
+
+
+
+
+
+
+ Refers to those characteristics that describe the
+ processes and mechanisms
+ the Authentication Authority uses to initially create
+ an association between a Principal
+ and the identity (or name) by which the Principal will
+ be known
+
+
+
+
+
+
+
+ This element indicates that identification has been
+ performed in a physical
+ face-to-face meeting with the principal and not in an
+ online manner.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ Refers to those characterstics that describe how the
+ 'secret' (the knowledge or possession
+ of which allows the Principal to authenticate to the
+ Authentication Authority) is kept secure
+
+
+
+
+
+
+
+ This element indicates the types and strengths of
+ facilities
+ of a UA used to protect a shared secret key from
+ unauthorized access and/or use.
+
+
+
+
+
+
+
+ This element indicates the types and strengths of
+ facilities
+ of a UA used to protect a private key from
+ unauthorized access and/or use.
+
+
+
+
+
+
+ The actions that must be performed
+ before the private key can be used.
+
+
+
+
+
+ Whether or not the private key is shared
+ with the certificate authority.
+
+
+
+
+
+
+ In which medium is the key stored.
+ memory - the key is stored in memory.
+ smartcard - the key is stored in a smartcard.
+ token - the key is stored in a hardware token.
+ MobileDevice - the key is stored in a mobile device.
+ MobileAuthCard - the key is stored in a mobile
+ authentication card.
+
+
+
+
+
+
+
+
+
+
+ This element indicates that a password (or passphrase)
+ has been used to
+ authenticate the Principal to a remote system.
+
+
+
+
+
+
+
+ This element indicates that a Pin (Personal
+ Identification Number) has been used to authenticate the Principal to
+ some local system in order to activate a key.
+
+
+
+
+
+
+
+ This element indicates that a hardware or software
+ token is used
+ as a method of identifying the Principal.
+
+
+
+
+
+
+
+ This element indicates that a time synchronization
+ token is used to identify the Principal. hardware -
+ the time synchonization
+ token has been implemented in hardware. software - the
+ time synchronization
+ token has been implemented in software. SeedLength -
+ the length, in bits, of the
+ random seed used in the time synchronization token.
+
+
+
+
+
+
+
+ This element indicates that a smartcard is used to
+ identity the Principal.
+
+
+
+
+
+
+
+ This element indicates the minimum and/or maximum
+ ASCII length of the password which is enforced (by the UA or the
+ IdP). In other words, this is the minimum and/or maximum number of
+ ASCII characters required to represent a valid password.
+ min - the minimum number of ASCII characters required
+ in a valid password, as enforced by the UA or the IdP.
+ max - the maximum number of ASCII characters required
+ in a valid password, as enforced by the UA or the IdP.
+
+
+
+
+
+
+
+ This element indicates the length of time for which an
+ PIN-based authentication is valid.
+
+
+
+
+
+
+
+ Indicates whether the password was chosen by the
+ Principal or auto-supplied by the Authentication Authority.
+ principalchosen - the Principal is allowed to choose
+ the value of the password. This is true even if
+ the initial password is chosen at random by the UA or
+ the IdP and the Principal is then free to change
+ the password.
+ automatic - the password is chosen by the UA or the
+ IdP to be cryptographically strong in some sense,
+ or to satisfy certain password rules, and that the
+ Principal is not free to change it or to choose a new password.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ Refers to those characteristics that define the
+ mechanisms by which the Principal authenticates to the Authentication
+ Authority.
+
+
+
+
+
+
+
+ The method that a Principal employs to perform
+ authentication to local system components.
+
+
+
+
+
+
+
+ The method applied to validate a principal's
+ authentication across a network
+
+
+
+
+
+
+
+ Supports Authenticators with nested combinations of
+ additional complexity.
+
+
+
+
+
+
+
+ Indicates that the Principal has been strongly
+ authenticated in a previous session during which the IdP has set a
+ cookie in the UA. During the present session the Principal has only
+ been authenticated by the UA returning the cookie to the IdP.
+
+
+
+
+
+
+
+ Rather like PreviousSession but using stronger
+ security. A secret that was established in a previous session with
+ the Authentication Authority has been cached by the local system and
+ is now re-used (e.g. a Master Secret is used to derive new session
+ keys in TLS, SSL, WTLS).
+
+
+
+
+
+
+
+ This element indicates that the Principal has been
+ authenticated by a zero knowledge technique as specified in ISO/IEC
+ 9798-5.
+
+
+
+
+
+
+
+
+
+ This element indicates that the Principal has been
+ authenticated by a challenge-response protocol utilizing shared secret
+ keys and symmetric cryptography.
+
+
+
+
+
+
+
+
+
+
+
+ This element indicates that the Principal has been
+ authenticated by a mechanism which involves the Principal computing a
+ digital signature over at least challenge data provided by the IdP.
+
+
+
+
+
+
+
+ The local system has a private key but it is used
+ in decryption mode, rather than signature mode. For example, the
+ Authentication Authority generates a secret and encrypts it using the
+ local system's public key: the local system then proves it has
+ decrypted the secret.
+
+
+
+
+
+
+
+ The local system has a private key and uses it for
+ shared secret key agreement with the Authentication Authority (e.g.
+ via Diffie Helman).
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ This element indicates that the Principal has been
+ authenticated through connection from a particular IP address.
+
+
+
+
+
+
+
+ The local system and Authentication Authority
+ share a secret key. The local system uses this to encrypt a
+ randomised string to pass to the Authentication Authority.
+
+
+
+
+
+
+
+ The protocol across which Authenticator information is
+ transferred to an Authentication Authority verifier.
+
+
+
+
+
+
+
+ This element indicates that the Authenticator has been
+ transmitted using bare HTTP utilizing no additional security
+ protocols.
+
+
+
+
+
+
+
+ This element indicates that the Authenticator has been
+ transmitted using a transport mechanism protected by an IPSEC session.
+
+
+
+
+
+
+
+ This element indicates that the Authenticator has been
+ transmitted using a transport mechanism protected by a WTLS session.
+
+
+
+
+
+
+
+ This element indicates that the Authenticator has been
+ transmitted solely across a mobile network using no additional
+ security mechanism.
+
+
+
+
+
+
+
+
+
+
+ This element indicates that the Authenticator has been
+ transmitted using a transport mechnanism protected by an SSL or TLS
+ session.
+
+
+
+
+
+
+
+
+
+
+
+ Refers to those characteristics that describe
+ procedural security controls employed by the Authentication Authority.
+
+
+
+
+
+
+
+
+
+
+
+ Provides a mechanism for linking to external (likely
+ human readable) documents in which additional business agreements,
+ (e.g. liability constraints, obligations, etc) can be placed.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ This attribute indicates whether or not the
+ Identification mechanisms allow the actions of the Principal to be
+ linked to an actual end user.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+ This element indicates that the Key Activation Limit is
+ defined as a specific duration of time.
+
+
+
+
+
+
+
+ This element indicates that the Key Activation Limit is
+ defined as a number of usages.
+
+
+
+
+
+
+
+ This element indicates that the Key Activation Limit is
+ the session.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-x509-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-x509-2.0.xsd
new file mode 100644
index 00000000..7ea725f5
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-x509-2.0.xsd
@@ -0,0 +1,83 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:X509
+ Document identifier: saml-schema-authn-context-x509-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-authn-context-xmldsig-2.0.xsd b/schemas/saml-2.0/saml-schema-authn-context-xmldsig-2.0.xsd
new file mode 100644
index 00000000..2616411f
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-authn-context-xmldsig-2.0.xsd
@@ -0,0 +1,83 @@
+
+
+
+
+
+
+
+
+ Class identifier: urn:oasis:names:tc:SAML:2.0:ac:classes:XMLDSig
+ Document identifier: saml-schema-authn-context-xmldsig-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ New authentication context class schema for SAML V2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-dce-2.0.xsd b/schemas/saml-2.0/saml-schema-dce-2.0.xsd
new file mode 100644
index 00000000..719dfe9e
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-dce-2.0.xsd
@@ -0,0 +1,29 @@
+
+
+
+
+ Document identifier: saml-schema-dce-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ Custom schema for DCE attribute profile, first published in SAML 2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-ecp-2.0.xsd b/schemas/saml-2.0/saml-schema-ecp-2.0.xsd
new file mode 100644
index 00000000..9eb457b1
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-ecp-2.0.xsd
@@ -0,0 +1,57 @@
+
+
+
+
+
+
+
+ Document identifier: saml-schema-ecp-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ Custom schema for ECP profile, first published in SAML 2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-metadata-2.0.xsd b/schemas/saml-2.0/saml-schema-metadata-2.0.xsd
new file mode 100644
index 00000000..0d158c0b
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-metadata-2.0.xsd
@@ -0,0 +1,337 @@
+
+
+
+
+
+
+
+
+ Document identifier: saml-schema-metadata-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ Schema for SAML metadata, first published in SAML 2.0.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-protocol-2.0.xsd b/schemas/saml-2.0/saml-schema-protocol-2.0.xsd
new file mode 100644
index 00000000..eb480e55
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-protocol-2.0.xsd
@@ -0,0 +1,302 @@
+
+
+
+
+
+
+ Document identifier: saml-schema-protocol-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V1.0 (November, 2002):
+ Initial Standard Schema.
+ V1.1 (September, 2003):
+ Updates within the same V1.0 namespace.
+ V2.0 (March, 2005):
+ New protocol schema based in a SAML V2.0 namespace.
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-x500-2.0.xsd b/schemas/saml-2.0/saml-schema-x500-2.0.xsd
new file mode 100644
index 00000000..141b6345
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-x500-2.0.xsd
@@ -0,0 +1,20 @@
+
+
+
+
+ Document identifier: saml-schema-x500-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ Custom schema for X.500 attribute profile, first published in SAML 2.0.
+
+
+
+
+
diff --git a/schemas/saml-2.0/saml-schema-xacml-2.0.xsd b/schemas/saml-2.0/saml-schema-xacml-2.0.xsd
new file mode 100644
index 00000000..a83bc020
--- /dev/null
+++ b/schemas/saml-2.0/saml-schema-xacml-2.0.xsd
@@ -0,0 +1,19 @@
+
+
+
+
+ Document identifier: saml-schema-xacml-2.0
+ Location: http://docs.oasis-open.org/security/saml/v2.0/
+ Revision history:
+ V2.0 (March, 2005):
+ Custom schema for XACML attribute profile, first published in SAML 2.0.
+
+
+
+