RestrictedPassword
Element information
Namespace: None
Schema document: saml-2.0-os/saml-schema-authn-context-types-2.0.xsd
Type: RestrictedPasswordType
Properties: Global, Qualified
Content
- Sequence [1..1]
- Length [1..1]
- Generation [0..1] Indicates whether the password was chosen by the Principal or auto-supplied by the Authentication Authority. principalchosen - the Principal is allowed to choose the value of the password. This is true even if the initial password is chosen at random by the UA or the IdP and the Principal is then free to change the password. automatic - the password is chosen by the UA or the IdP to be cryptographically strong in some sense, or to satisfy certain password rules, and that the Principal is not free to change it or to choose a new password.
- Extension [0..*]
Attributes
| Name | Occ | Type | Description | Notes |
|---|---|---|---|---|
| ExternalVerification | [0..1] | xsd:anyURI |
Used in
- Group AuthenticatorChoiceGroup
- Group AuthenticatorSequenceGroup
- Type AuthenticatorBaseType via reference to AuthenticatorChoiceGroup (Element Authenticator)
- Type AuthenticatorBaseType via reference to AuthenticatorSequenceGroup (Element Authenticator)
- Type ComplexAuthenticatorType via reference to AuthenticatorChoiceGroup (Element ComplexAuthenticator)
- Type ComplexAuthenticatorType via reference to AuthenticatorSequenceGroup (Element ComplexAuthenticator)
- Type PrincipalAuthenticationMechanismType (Element PrincipalAuthenticationMechanism)
Sample instance
<RestrictedPassword> <Length min="1"/> <Generation mechanism="principalchosen"/> <Extension> <!--any element--> </Extension> </RestrictedPassword>