You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@cxf.apache.org by "Yassine, Ramzi" <Ra...@gallup.com> on 2014/07/30 23:15:25 UTC
Apache CXF with WS-Security
Hey all,
I am working with .Net web services that need to use the WS-SECURITY standards (WS-Policy, WS-SecureConversation, WS-ReliableMessaging).
My environment
=======================================
- Oracle JSDK Java 6 Update 16
- Apache CXF 3.0.1
- Maven 3.0.4
What is happening?
=======================================
- Generating the java stubs using wsdl2java (apache cxf).
- We have a working certificate (PKCS12) that I know it works as we don't have an issue using it with jx-ws metro with wsit (we want to move to apache cxf as the support is lacking in Jx-ws and we have
had other issues with it)
- The current problem is I believe in the reliable messaging part (maybe)
- In calling the .Net service:
We see the create token request
<soap:Header>
<Action xmlns="http://www.w3.org/2005/08/addressing">http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT
</Action>
<MessageID xmlns="http://www.w3.org/2005/08/addressing">urn:uuid:cc07ca42-8183-4656-a073-98e91642f117
</MessageID>...... This is the request to create the token
With a successful response
....
<s:Body>
<t:RequestSecurityTokenResponse xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust">
<t:TokenType>http://schemas.xmlsoap.org/ws/2005/02/sc/sct</t:TokenType>
<t:RequestedSecurityToken>
<c:SecurityContextToken u:Id="uuid-7aa72faa-eb08-4fdd-a2d6-8c43fbfdb5d5-5"
xmlns:c="http://schemas.xmlsoap.org/ws/2005/02/sc">
<c:Identifier>urn:uuid:07701681-111c-41f7-8cc8-0f9b4211cb36</c:Identifier>
</c:SecurityContextToken>.... The contains the token
and then We send a create sequence
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
<soap:Header>
<Action xmlns="http://www.w3.org/2005/08/addressing">
http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
</Action>......
Response: (FAIL)
<s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing">
<s:Header>
<a:Action s:mustUnderstand="1">http://www.w3.org/2005/08/addressing/soap/fault</a:Action>
<a:RelatesTo>urn:uuid:4ff03c67-1b06-4b2c-8248-c0fa9ecaf6fd</a:RelatesTo>
</s:Header>
<s:Body>
<s:Fault>
<s:Code>
<s:Value>s:Sender</s:Value>
<s:Subcode>
<s:Value xmlns:a="http://schemas.xmlsoap.org/ws/2005/02/sc">a:BadContextToken</s:Value>
</s:Subcode>
</s:Code>
<s:Reason>
<s:Text xml:lang="en-US">The message could not be processed. This is most likely because the action
'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message
contains an invalid or expired security context token or because there is a mismatch between
bindings. The security context token would be invalid if the service aborted the channel due to
inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive
timeout on the service endpoint's binding.
</s:Text>
</s:Reason>
</s:Fault>
</s:Body>
</s:Envelope>
All Soap requests are signed, and we are OK in getting the token however the second call FAILS. Any help on this is highly appreciated
Here is the client code
=======================================
System.setProperty("com.sun.xml.ws.transport.http.client.HttpTransportPipe.dump", "true");
SpringBusFactory bf = new SpringBusFactory();
try {
File file = new File(this.getClass().getResource("/cxf.xml").toURI());
URI busFile = file.toURI();
Bus bus = bf.createBus(busFile.toString());
BusFactory.setDefaultBus(bus);
Authentication authentication = new Authentication();
service = authentication.getAuthenticationEndpoint();
((BindingProvider) service).getRequestContext().put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, "https://someUrl/Authentication.svc"); //removed for privacy
} catch (URISyntaxException e) {
// TODO handle error
e.printStackTrace();
}
The configuration
=======================================
The client properties file
--------------------------
org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
org.apache.ws.security.crypto.merlin.keystore.file=/keys/ourpkcs12_store
org.apache.ws.security.crypto.merlin.keystore.password=somePasswrord
org.apache.ws.security.crypto.merlin.keystore.type=PKCS12
org.apache.ws.security.crypto.merlin.keystore.alias=someAlias
The CXF file
-------------
<beans xmlns="http://www.springframework.org/schema/beans"
xmlns:jaxws="http://cxf.apache.org/jaxws" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:http="http://cxf.apache.org/transports/http/configuration"
xmlns:wsrm-policy="http://schemas.xmlsoap.org/ws/2005/02/rm/policy"
xmlns:wsrm-mgr="http://cxf.apache.org/ws/rm/manager"
xmlns:wsa="http://cxf.apache.org/ws/addressing"
xmlns:cxf="http://cxf.apache.org/core"
xsi:schemaLocation="http://cxf.apache.org/core
http://cxf.apache.org/schemas/core.xsd
http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans.xsd
http://cxf.apache.org/jaxws
http://cxf.apache.org/schemas/jaxws.xsd
http://cxf.apache.org/transports/http/configuration
http://cxf.apache.org/schemas/configuration/http-conf.xsd
http://schemas.xmlsoap.org/ws/2005/02/rm/policy
http://schemas.xmlsoap.org/ws/2005/02/rm/wsrm-policy.xsd
http://cxf.apache.org/ws/rm/manager
http://cxf.apache.org/schemas/configuration/wsrm-manager.xsd">
<bean id="logInBound" class="org.apache.cxf.interceptor.LoggingInInterceptor"/>
<bean id="logOutBound" class="org.apache.cxf.interceptor.LoggingOutInterceptor"/>
<jaxws:client name="{http://tempuri.org/}AuthenticationEndpoint" createdFromAPI="true"
address="https://someWsdlUrl">
<jaxws:properties>
<entry key="ws-security.signature.properties" value="/client.properties"/>
<entry key="ws-security.callback-handler" value="OurOwnPasswordCallBackForTheKeyStore"/>
</jaxws:properties>
<jaxws:inInterceptors>
<ref bean="logInBound"/>
<ref bean="inbound-security"/>
</jaxws:inInterceptors>
<jaxws:outInterceptors>
<ref bean="logOutBound"/>
<ref bean="outbound-security"/>
</jaxws:outInterceptors>
<jaxws:features>
<wsa:addressing xmlns:wsa="http://cxf.apache.org/ws/addressing"/>
<wsrm-mgr:reliableMessaging>
<wsrm-policy:RMAssertion>
<wsrm-policy:BaseRetransmissionInterval Milliseconds="10000"/>
<wsrm-policy:AcknowledgementInterval Milliseconds="2000"/>
</wsrm-policy:RMAssertion>
<wsrm-mgr:destinationPolicy>
<wsrm-mgr:acksPolicy intraMessageThreshold="0" />
</wsrm-mgr:destinationPolicy>
</wsrm-mgr:reliableMessaging>
</jaxws:features>
</jaxws:client>
<!-- WSS4JOutInterceptor for signing outbound SOAP -->
<bean class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor" id="outbound-security">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature"/>
<entry key="user" value="someUser"/>
<entry key="signatureUser" value="someUser"/>
<entry key="signaturePropFile" value="/client.properties"/>
<entry key="signatureKeyIdentifier" value="X509KeyIdentifier" />
<entry key="passwordCallbackClass" value="OurOwnPasswordCallBackForTheKeyStore.java"/>
<entry key="signatureParts"
value="{Element}{http://schemas.xmlsoap.org/soap/envelope/}Body;{Element}{http://www.w3.org/2005/08/addressing}To;{Element}{http://www.w3.org/2005/08/addressing}From;;{Element}{http://www.w3.org/2005/08/addressing}FaultTo;{Element}{http://www.w3.org/2005/08/addressing}ReplyTo;{Element}{http://www.w3.org/2005/08/addressing}MessageID;{Element}{http://www.w3.org/2005/08/addressing}RelatesTo;{Element}{http://www.w3.org/2005/08/addressing}Action"/>
</map>
</constructor-arg>
</bean>
<!-- WSS4JInInterceptor for validating the signature of inbound
SOAP -->
<bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor"
id="inbound-security">
<constructor-arg>
<map>
<entry key="action" value="Timestamp Signature"/>
<entry key="signaturePropFile" value="/client.properties"/>
<entry key="passwordCallbackClass" value="OurOwnPasswordCallBackForTheKeyStore.java"/>
</map>
</constructor-arg>
</bean>
</beans>
Trace logs on the .net side
===========================
An error occurred while processing a message. The RM Destination requires the WS-SecureConversation protocol in the binding. This is likely caused by a binding mismatch.
The logs and exception
=======================
Jul 30, 2014 2:04:39 PM org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor handleMessage
WARNING: Request does not contain Security header, but it's a fault.
Jul 30, 2014 2:04:39 PM org.apache.cxf.ws.rm.Proxy invoke
SEVERE: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
org.apache.cxf.binding.soap.SoapFault: The message could not be processed. This is most likely because the action 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding.
at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.unmarshalFault(Soap12FaultInInterceptor.java:155)
at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:66)
at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:52)
at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:140)
at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:71)
at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1636)
......
Jul 30, 2014 2:04:39 PM org.apache.cxf.phase.PhaseInterceptorChain doDefaultLogging
org.apache.cxf.interceptor.Fault: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
at org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMInterceptor.java:104)
at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
.....
at com.intellij.rt.execution.junit.JUnitStarter.main(JUnitStarter.java:65)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.intellij.rt.execution.application.AppMain.main(AppMain.java:120)
Caused by: org.apache.cxf.ws.rm.RMException: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:323)
at org.apache.cxf.ws.rm.Proxy.createSequence(Proxy.java:199)
at org.apache.cxf.ws.rm.RMManager.getSequence(RMManager.java:472)
at org.apache.cxf.ws.rm.RMCaptureOutInterceptor.handle(RMCaptureOutInterceptor.java:156)
at org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMInterceptor.java:83)
... 33 more
Caused by: org.apache.cxf.binding.soap.SoapFault: The message could not be processed. This is most likely because the action 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding.
at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.unmarshalFault(Soap12FaultInInterceptor.java:155)
at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:66)
at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:52)
at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:140)
at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:71)
at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1636)
at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponse(HTTPConduit.java:1525)
at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(HTTPConduit.java:1330)
at org.apache.cxf.io.CacheAndWriteOutputStream.postClose(CacheAndWriteOutputStream.java:56)
at org.apache.cxf.io.CachedOutputStream.close(CachedOutputStream.java:215)
at org.apache.cxf.transport.AbstractConduit.close(AbstractConduit.java:56)
at org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:638)
at org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInterceptor.handleMessage(MessageSenderInterceptor.java:62)
at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:313)
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Dennis Sosnoski <dm...@sosnoski.com>.
Hi Ramzi,
CXF version 3 has not been tested for interoperable RM+SC with other
stacks, and I'm not surprised if you run into problems. It's unlikely
you'd have a better experience with older versions of CXF, though you
can always give it a try. Certainly the older versions are not going to
support UsesSequenceSTR. I'm glad to take a look at captures of the
message exchanges to see what's going wrong, and when/if I have time
available will get the problems fixed.
I don't think the JDK version makes much difference.
- Dennis
On 07/31/2014 01:20 PM, Yassine, Ramzi wrote:
> Thank you Dennis,
>
> I am new to those standards so that was very enlightening. However if you don't mind from your reply I gathered the following:
>
> 1. CXF Version 3 does not mix RM and Secure conversation
>
> 2. Based on the standard we need to use UsesSequenceSTR but that is not supported in CXF
>
> 3. We are not configuring CXF right
>
> >From the notes above do you recommend that I NOT use apache CXF at all, or move down to version 2.7 (maybe?)
>
> This code is going to live in a server that does not use the Oracle (sun) JDK, I will have to use the IBM JDK, so it is only going to get tougher.
>
> I appreciate your insights,
>
>
> Thank you,
> Ramzi
>
>
>
> Thank you,
> Ramzi
>
>> On Jul 30, 2014, at 7:08 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>>
>> Hi Ramzi,
>>
>> There are issues in combining WS-SecureConversation with WS-ReliableMessaging in the 3.0.x release. I did some work to support this last year, but it was not a priority for the group I was working with. Since I didn't have a working endpoint to test with I didn't pursue it at that time.
>>
>> The correct way of handling this, according to the WS-I Reliable Secure Profile (http://www.ws-i.org/Profiles/ReliableSecureProfile-1.0-2010-11-09.html#sec_reliable_msg), is for the WS-RM CreateSequence to include a wsrm:UsesSequenceSTR element that identifies the security context token. That's currently not supported. There might also be a problem in the ordering of the interceptors when using WS-RM in combination with WS-SC. If you want to send me the full message exchange I can take a look at where things are going wrong.
>>
>> Also, I see that you're configuring the WSS4JInInterceptor and WSS4JOutInterceptor manually, which is something you probably don't want to do if you're using WS-Policy. You should instead be configuring the security properties in the JAX-WS client element - see http://cxf.apache.org/docs/ws-secureconversation.html for an example.
>>
>> - Dennis
>>
>> Dennis M. Sosnoski
>> Java Web Services Consulting <http://www.sosnoski.com/consult.html>
>> CXF and Web Services Security Training <http://www.sosnoski.com/training.html>
>> Web Services Jump-Start <http://www.sosnoski.com/jumpstart.html>
>>
>>> On 07/31/2014 09:15 AM, Yassine, Ramzi wrote:
>>> Hey all,
>>>
>>> I am working with .Net web services that need to use the WS-SECURITY standards (WS-Policy, WS-SecureConversation, WS-ReliableMessaging).
>>>
>>> My environment
>>> =======================================
>>>
>>> - Oracle JSDK Java 6 Update 16
>>> - Apache CXF 3.0.1
>>> - Maven 3.0.4
>>>
>>> What is happening?
>>> =======================================
>>>
>>> - Generating the java stubs using wsdl2java (apache cxf).
>>> - We have a working certificate (PKCS12) that I know it works as we don't have an issue using it with jx-ws metro with wsit (we want to move to apache cxf as the support is lacking in Jx-ws and we have
>>> had other issues with it)
>>> - The current problem is I believe in the reliable messaging part (maybe)
>>> - In calling the .Net service:
>>>
>>> We see the create token request
>>> <soap:Header>
>>> <Action xmlns="http://www.w3.org/2005/08/addressing">http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT
>>> </Action>
>>> <MessageID xmlns="http://www.w3.org/2005/08/addressing">urn:uuid:cc07ca42-8183-4656-a073-98e91642f117
>>> </MessageID>...... This is the request to create the token
>>>
>>> With a successful response
>>> ....
>>> <s:Body>
>>> <t:RequestSecurityTokenResponse xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust">
>>> <t:TokenType>http://schemas.xmlsoap.org/ws/2005/02/sc/sct</t:TokenType>
>>> <t:RequestedSecurityToken>
>>> <c:SecurityContextToken u:Id="uuid-7aa72faa-eb08-4fdd-a2d6-8c43fbfdb5d5-5"
>>> xmlns:c="http://schemas.xmlsoap.org/ws/2005/02/sc">
>>> <c:Identifier>urn:uuid:07701681-111c-41f7-8cc8-0f9b4211cb36</c:Identifier>
>>> </c:SecurityContextToken>.... The contains the token
>>>
>>>
>>> and then We send a create sequence
>>> <soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>>> <soap:Header>
>>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>>> http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>>> </Action>......
>>>
>>> Response: (FAIL)
>>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing">
>>> <s:Header>
>>> <a:Action s:mustUnderstand="1">http://www.w3.org/2005/08/addressing/soap/fault</a:Action>
>>> <a:RelatesTo>urn:uuid:4ff03c67-1b06-4b2c-8248-c0fa9ecaf6fd</a:RelatesTo>
>>> </s:Header>
>>> <s:Body>
>>> <s:Fault>
>>> <s:Code>
>>> <s:Value>s:Sender</s:Value>
>>> <s:Subcode>
>>> <s:Value xmlns:a="http://schemas.xmlsoap.org/ws/2005/02/sc">a:BadContextToken</s:Value>
>>> </s:Subcode>
>>> </s:Code>
>>> <s:Reason>
>>> <s:Text xml:lang="en-US">The message could not be processed. This is most likely because the action
>>> 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message
>>> contains an invalid or expired security context token or because there is a mismatch between
>>> bindings. The security context token would be invalid if the service aborted the channel due to
>>> inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive
>>> timeout on the service endpoint's binding.
>>> </s:Text>
>>> </s:Reason>
>>> </s:Fault>
>>> </s:Body>
>>> </s:Envelope>
>>>
>>>
>>>
>>> All Soap requests are signed, and we are OK in getting the token however the second call FAILS. Any help on this is highly appreciated
>>>
>>>
>>>
>>>
>>> Here is the client code
>>> =======================================
>>>
>>> System.setProperty("com.sun.xml.ws.transport.http.client.HttpTransportPipe.dump", "true");
>>> SpringBusFactory bf = new SpringBusFactory();
>>> try {
>>> File file = new File(this.getClass().getResource("/cxf.xml").toURI());
>>> URI busFile = file.toURI();
>>> Bus bus = bf.createBus(busFile.toString());
>>> BusFactory.setDefaultBus(bus);
>>>
>>> Authentication authentication = new Authentication();
>>> service = authentication.getAuthenticationEndpoint();
>>> ((BindingProvider) service).getRequestContext().put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, "https://someUrl/Authentication.svc"); //removed for privacy
>>>
>>> } catch (URISyntaxException e) {
>>> // TODO handle error
>>> e.printStackTrace();
>>> }
>>>
>>>
>>> The configuration
>>> =======================================
>>>
>>> The client properties file
>>> --------------------------
>>> org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
>>> org.apache.ws.security.crypto.merlin.keystore.file=/keys/ourpkcs12_store
>>> org.apache.ws.security.crypto.merlin.keystore.password=somePasswrord
>>> org.apache.ws.security.crypto.merlin.keystore.type=PKCS12
>>> org.apache.ws.security.crypto.merlin.keystore.alias=someAlias
>>>
>>> The CXF file
>>> -------------
>>> <beans xmlns="http://www.springframework.org/schema/beans"
>>> xmlns:jaxws="http://cxf.apache.org/jaxws" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
>>> xmlns:http="http://cxf.apache.org/transports/http/configuration"
>>> xmlns:wsrm-policy="http://schemas.xmlsoap.org/ws/2005/02/rm/policy"
>>> xmlns:wsrm-mgr="http://cxf.apache.org/ws/rm/manager"
>>> xmlns:wsa="http://cxf.apache.org/ws/addressing"
>>> xmlns:cxf="http://cxf.apache.org/core"
>>>
>>> xsi:schemaLocation="http://cxf.apache.org/core
>>> http://cxf.apache.org/schemas/core.xsd
>>> http://www.springframework.org/schema/beans
>>> http://www.springframework.org/schema/beans/spring-beans.xsd
>>> http://cxf.apache.org/jaxws
>>> http://cxf.apache.org/schemas/jaxws.xsd
>>> http://cxf.apache.org/transports/http/configuration
>>> http://cxf.apache.org/schemas/configuration/http-conf.xsd
>>> http://schemas.xmlsoap.org/ws/2005/02/rm/policy
>>> http://schemas.xmlsoap.org/ws/2005/02/rm/wsrm-policy.xsd
>>> http://cxf.apache.org/ws/rm/manager
>>> http://cxf.apache.org/schemas/configuration/wsrm-manager.xsd">
>>>
>>> <bean id="logInBound" class="org.apache.cxf.interceptor.LoggingInInterceptor"/>
>>> <bean id="logOutBound" class="org.apache.cxf.interceptor.LoggingOutInterceptor"/>
>>> <jaxws:client name="{http://tempuri.org/}AuthenticationEndpoint" createdFromAPI="true"
>>> address="https://someWsdlUrl">
>>> <jaxws:properties>
>>> <entry key="ws-security.signature.properties" value="/client.properties"/>
>>> <entry key="ws-security.callback-handler" value="OurOwnPasswordCallBackForTheKeyStore"/>
>>> </jaxws:properties>
>>> <jaxws:inInterceptors>
>>> <ref bean="logInBound"/>
>>> <ref bean="inbound-security"/>
>>> </jaxws:inInterceptors>
>>> <jaxws:outInterceptors>
>>> <ref bean="logOutBound"/>
>>> <ref bean="outbound-security"/>
>>> </jaxws:outInterceptors>
>>> <jaxws:features>
>>> <wsa:addressing xmlns:wsa="http://cxf.apache.org/ws/addressing"/>
>>> <wsrm-mgr:reliableMessaging>
>>> <wsrm-policy:RMAssertion>
>>> <wsrm-policy:BaseRetransmissionInterval Milliseconds="10000"/>
>>> <wsrm-policy:AcknowledgementInterval Milliseconds="2000"/>
>>> </wsrm-policy:RMAssertion>
>>> <wsrm-mgr:destinationPolicy>
>>> <wsrm-mgr:acksPolicy intraMessageThreshold="0" />
>>> </wsrm-mgr:destinationPolicy>
>>> </wsrm-mgr:reliableMessaging>
>>> </jaxws:features>
>>> </jaxws:client>
>>> <!-- WSS4JOutInterceptor for signing outbound SOAP -->
>>> <bean class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor" id="outbound-security">
>>> <constructor-arg>
>>> <map>
>>> <entry key="action" value="Timestamp Signature"/>
>>> <entry key="user" value="someUser"/>
>>> <entry key="signatureUser" value="someUser"/>
>>> <entry key="signaturePropFile" value="/client.properties"/>
>>> <entry key="signatureKeyIdentifier" value="X509KeyIdentifier" />
>>> <entry key="passwordCallbackClass" value="OurOwnPasswordCallBackForTheKeyStore.java"/>
>>> <entry key="signatureParts"
>>> value="{Element}{http://schemas.xmlsoap.org/soap/envelope/}Body;{Element}{http://www.w3.org/2005/08/addressing}To;{Element}{http://www.w3.org/2005/08/addressing}From;;{Element}{http://www.w3.org/2005/08/addressing}FaultTo;{Element}{http://www.w3.org/2005/08/addressing}ReplyTo;{Element}{http://www.w3.org/2005/08/addressing}MessageID;{Element}{http://www.w3.org/2005/08/addressing}RelatesTo;{Element}{http://www.w3.org/2005/08/addressing}Action"/>
>>> </map>
>>> </constructor-arg>
>>> </bean>
>>>
>>> <!-- WSS4JInInterceptor for validating the signature of inbound
>>> SOAP -->
>>> <bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor"
>>> id="inbound-security">
>>> <constructor-arg>
>>> <map>
>>> <entry key="action" value="Timestamp Signature"/>
>>> <entry key="signaturePropFile" value="/client.properties"/>
>>> <entry key="passwordCallbackClass" value="OurOwnPasswordCallBackForTheKeyStore.java"/>
>>> </map>
>>> </constructor-arg>
>>> </bean>
>>> </beans>
>>>
>>>
>>> Trace logs on the .net side
>>> ===========================
>>> An error occurred while processing a message. The RM Destination requires the WS-SecureConversation protocol in the binding. This is likely caused by a binding mismatch.
>>>
>>>
>>> The logs and exception
>>> =======================
>>>
>>>
>>> Jul 30, 2014 2:04:39 PM org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor handleMessage
>>> WARNING: Request does not contain Security header, but it's a fault.
>>> Jul 30, 2014 2:04:39 PM org.apache.cxf.ws.rm.Proxy invoke
>>> SEVERE: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
>>> org.apache.cxf.binding.soap.SoapFault: The message could not be processed. This is most likely because the action 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding.
>>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.unmarshalFault(Soap12FaultInInterceptor.java:155)
>>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:66)
>>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:52)
>>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>>> at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
>>> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:140)
>>> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:71)
>>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>>> at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
>>> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1636)
>>> ......
>>> Jul 30, 2014 2:04:39 PM org.apache.cxf.phase.PhaseInterceptorChain doDefaultLogging
>>> org.apache.cxf.interceptor.Fault: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
>>> at org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMInterceptor.java:104)
>>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>>> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
>>> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
>>> .....
>>> at com.intellij.rt.execution.junit.JUnitStarter.main(JUnitStarter.java:65)
>>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>>> at java.lang.reflect.Method.invoke(Method.java:597)
>>> at com.intellij.rt.execution.application.AppMain.main(AppMain.java:120)
>>> Caused by: org.apache.cxf.ws.rm.RMException: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
>>> at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:323)
>>> at org.apache.cxf.ws.rm.Proxy.createSequence(Proxy.java:199)
>>> at org.apache.cxf.ws.rm.RMManager.getSequence(RMManager.java:472)
>>> at org.apache.cxf.ws.rm.RMCaptureOutInterceptor.handle(RMCaptureOutInterceptor.java:156)
>>> at org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMInterceptor.java:83)
>>> ... 33 more
>>> Caused by: org.apache.cxf.binding.soap.SoapFault: The message could not be processed. This is most likely because the action 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding.
>>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.unmarshalFault(Soap12FaultInInterceptor.java:155)
>>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:66)
>>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:52)
>>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>>> at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
>>> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:140)
>>> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:71)
>>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>>> at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
>>> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1636)
>>> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponse(HTTPConduit.java:1525)
>>> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(HTTPConduit.java:1330)
>>> at org.apache.cxf.io.CacheAndWriteOutputStream.postClose(CacheAndWriteOutputStream.java:56)
>>> at org.apache.cxf.io.CachedOutputStream.close(CachedOutputStream.java:215)
>>> at org.apache.cxf.transport.AbstractConduit.close(AbstractConduit.java:56)
>>> at org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:638)
>>> at org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInterceptor.handleMessage(MessageSenderInterceptor.java:62)
>>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>>> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
>>> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
>>> at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:313)
>>> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
>
Re: Apache CXF with WS-Security
Posted by "Yassine, Ramzi" <Ra...@gallup.com>.
Thank you Dennis,
I am new to those standards so that was very enlightening. However if you don't mind from your reply I gathered the following:
1. CXF Version 3 does not mix RM and Secure conversation
2. Based on the standard we need to use UsesSequenceSTR but that is not supported in CXF
3. We are not configuring CXF right
>From the notes above do you recommend that I NOT use apache CXF at all, or move down to version 2.7 (maybe?)
This code is going to live in a server that does not use the Oracle (sun) JDK, I will have to use the IBM JDK, so it is only going to get tougher.
I appreciate your insights,
Thank you,
Ramzi
Thank you,
Ramzi
> On Jul 30, 2014, at 7:08 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>
> Hi Ramzi,
>
> There are issues in combining WS-SecureConversation with WS-ReliableMessaging in the 3.0.x release. I did some work to support this last year, but it was not a priority for the group I was working with. Since I didn't have a working endpoint to test with I didn't pursue it at that time.
>
> The correct way of handling this, according to the WS-I Reliable Secure Profile (http://www.ws-i.org/Profiles/ReliableSecureProfile-1.0-2010-11-09.html#sec_reliable_msg), is for the WS-RM CreateSequence to include a wsrm:UsesSequenceSTR element that identifies the security context token. That's currently not supported. There might also be a problem in the ordering of the interceptors when using WS-RM in combination with WS-SC. If you want to send me the full message exchange I can take a look at where things are going wrong.
>
> Also, I see that you're configuring the WSS4JInInterceptor and WSS4JOutInterceptor manually, which is something you probably don't want to do if you're using WS-Policy. You should instead be configuring the security properties in the JAX-WS client element - see http://cxf.apache.org/docs/ws-secureconversation.html for an example.
>
> - Dennis
>
> Dennis M. Sosnoski
> Java Web Services Consulting <http://www.sosnoski.com/consult.html>
> CXF and Web Services Security Training <http://www.sosnoski.com/training.html>
> Web Services Jump-Start <http://www.sosnoski.com/jumpstart.html>
>
>> On 07/31/2014 09:15 AM, Yassine, Ramzi wrote:
>> Hey all,
>>
>> I am working with .Net web services that need to use the WS-SECURITY standards (WS-Policy, WS-SecureConversation, WS-ReliableMessaging).
>>
>> My environment
>> =======================================
>>
>> - Oracle JSDK Java 6 Update 16
>> - Apache CXF 3.0.1
>> - Maven 3.0.4
>>
>> What is happening?
>> =======================================
>>
>> - Generating the java stubs using wsdl2java (apache cxf).
>> - We have a working certificate (PKCS12) that I know it works as we don't have an issue using it with jx-ws metro with wsit (we want to move to apache cxf as the support is lacking in Jx-ws and we have
>> had other issues with it)
>> - The current problem is I believe in the reliable messaging part (maybe)
>> - In calling the .Net service:
>>
>> We see the create token request
>> <soap:Header>
>> <Action xmlns="http://www.w3.org/2005/08/addressing">http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT
>> </Action>
>> <MessageID xmlns="http://www.w3.org/2005/08/addressing">urn:uuid:cc07ca42-8183-4656-a073-98e91642f117
>> </MessageID>...... This is the request to create the token
>>
>> With a successful response
>> ....
>> <s:Body>
>> <t:RequestSecurityTokenResponse xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust">
>> <t:TokenType>http://schemas.xmlsoap.org/ws/2005/02/sc/sct</t:TokenType>
>> <t:RequestedSecurityToken>
>> <c:SecurityContextToken u:Id="uuid-7aa72faa-eb08-4fdd-a2d6-8c43fbfdb5d5-5"
>> xmlns:c="http://schemas.xmlsoap.org/ws/2005/02/sc">
>> <c:Identifier>urn:uuid:07701681-111c-41f7-8cc8-0f9b4211cb36</c:Identifier>
>> </c:SecurityContextToken>.... The contains the token
>>
>>
>> and then We send a create sequence
>> <soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>> <soap:Header>
>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>> http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>> </Action>......
>>
>> Response: (FAIL)
>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing">
>> <s:Header>
>> <a:Action s:mustUnderstand="1">http://www.w3.org/2005/08/addressing/soap/fault</a:Action>
>> <a:RelatesTo>urn:uuid:4ff03c67-1b06-4b2c-8248-c0fa9ecaf6fd</a:RelatesTo>
>> </s:Header>
>> <s:Body>
>> <s:Fault>
>> <s:Code>
>> <s:Value>s:Sender</s:Value>
>> <s:Subcode>
>> <s:Value xmlns:a="http://schemas.xmlsoap.org/ws/2005/02/sc">a:BadContextToken</s:Value>
>> </s:Subcode>
>> </s:Code>
>> <s:Reason>
>> <s:Text xml:lang="en-US">The message could not be processed. This is most likely because the action
>> 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message
>> contains an invalid or expired security context token or because there is a mismatch between
>> bindings. The security context token would be invalid if the service aborted the channel due to
>> inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive
>> timeout on the service endpoint's binding.
>> </s:Text>
>> </s:Reason>
>> </s:Fault>
>> </s:Body>
>> </s:Envelope>
>>
>>
>>
>> All Soap requests are signed, and we are OK in getting the token however the second call FAILS. Any help on this is highly appreciated
>>
>>
>>
>>
>> Here is the client code
>> =======================================
>>
>> System.setProperty("com.sun.xml.ws.transport.http.client.HttpTransportPipe.dump", "true");
>> SpringBusFactory bf = new SpringBusFactory();
>> try {
>> File file = new File(this.getClass().getResource("/cxf.xml").toURI());
>> URI busFile = file.toURI();
>> Bus bus = bf.createBus(busFile.toString());
>> BusFactory.setDefaultBus(bus);
>>
>> Authentication authentication = new Authentication();
>> service = authentication.getAuthenticationEndpoint();
>> ((BindingProvider) service).getRequestContext().put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, "https://someUrl/Authentication.svc"); //removed for privacy
>>
>> } catch (URISyntaxException e) {
>> // TODO handle error
>> e.printStackTrace();
>> }
>>
>>
>> The configuration
>> =======================================
>>
>> The client properties file
>> --------------------------
>> org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
>> org.apache.ws.security.crypto.merlin.keystore.file=/keys/ourpkcs12_store
>> org.apache.ws.security.crypto.merlin.keystore.password=somePasswrord
>> org.apache.ws.security.crypto.merlin.keystore.type=PKCS12
>> org.apache.ws.security.crypto.merlin.keystore.alias=someAlias
>>
>> The CXF file
>> -------------
>> <beans xmlns="http://www.springframework.org/schema/beans"
>> xmlns:jaxws="http://cxf.apache.org/jaxws" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
>> xmlns:http="http://cxf.apache.org/transports/http/configuration"
>> xmlns:wsrm-policy="http://schemas.xmlsoap.org/ws/2005/02/rm/policy"
>> xmlns:wsrm-mgr="http://cxf.apache.org/ws/rm/manager"
>> xmlns:wsa="http://cxf.apache.org/ws/addressing"
>> xmlns:cxf="http://cxf.apache.org/core"
>>
>> xsi:schemaLocation="http://cxf.apache.org/core
>> http://cxf.apache.org/schemas/core.xsd
>> http://www.springframework.org/schema/beans
>> http://www.springframework.org/schema/beans/spring-beans.xsd
>> http://cxf.apache.org/jaxws
>> http://cxf.apache.org/schemas/jaxws.xsd
>> http://cxf.apache.org/transports/http/configuration
>> http://cxf.apache.org/schemas/configuration/http-conf.xsd
>> http://schemas.xmlsoap.org/ws/2005/02/rm/policy
>> http://schemas.xmlsoap.org/ws/2005/02/rm/wsrm-policy.xsd
>> http://cxf.apache.org/ws/rm/manager
>> http://cxf.apache.org/schemas/configuration/wsrm-manager.xsd">
>>
>> <bean id="logInBound" class="org.apache.cxf.interceptor.LoggingInInterceptor"/>
>> <bean id="logOutBound" class="org.apache.cxf.interceptor.LoggingOutInterceptor"/>
>> <jaxws:client name="{http://tempuri.org/}AuthenticationEndpoint" createdFromAPI="true"
>> address="https://someWsdlUrl">
>> <jaxws:properties>
>> <entry key="ws-security.signature.properties" value="/client.properties"/>
>> <entry key="ws-security.callback-handler" value="OurOwnPasswordCallBackForTheKeyStore"/>
>> </jaxws:properties>
>> <jaxws:inInterceptors>
>> <ref bean="logInBound"/>
>> <ref bean="inbound-security"/>
>> </jaxws:inInterceptors>
>> <jaxws:outInterceptors>
>> <ref bean="logOutBound"/>
>> <ref bean="outbound-security"/>
>> </jaxws:outInterceptors>
>> <jaxws:features>
>> <wsa:addressing xmlns:wsa="http://cxf.apache.org/ws/addressing"/>
>> <wsrm-mgr:reliableMessaging>
>> <wsrm-policy:RMAssertion>
>> <wsrm-policy:BaseRetransmissionInterval Milliseconds="10000"/>
>> <wsrm-policy:AcknowledgementInterval Milliseconds="2000"/>
>> </wsrm-policy:RMAssertion>
>> <wsrm-mgr:destinationPolicy>
>> <wsrm-mgr:acksPolicy intraMessageThreshold="0" />
>> </wsrm-mgr:destinationPolicy>
>> </wsrm-mgr:reliableMessaging>
>> </jaxws:features>
>> </jaxws:client>
>> <!-- WSS4JOutInterceptor for signing outbound SOAP -->
>> <bean class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor" id="outbound-security">
>> <constructor-arg>
>> <map>
>> <entry key="action" value="Timestamp Signature"/>
>> <entry key="user" value="someUser"/>
>> <entry key="signatureUser" value="someUser"/>
>> <entry key="signaturePropFile" value="/client.properties"/>
>> <entry key="signatureKeyIdentifier" value="X509KeyIdentifier" />
>> <entry key="passwordCallbackClass" value="OurOwnPasswordCallBackForTheKeyStore.java"/>
>> <entry key="signatureParts"
>> value="{Element}{http://schemas.xmlsoap.org/soap/envelope/}Body;{Element}{http://www.w3.org/2005/08/addressing}To;{Element}{http://www.w3.org/2005/08/addressing}From;;{Element}{http://www.w3.org/2005/08/addressing}FaultTo;{Element}{http://www.w3.org/2005/08/addressing}ReplyTo;{Element}{http://www.w3.org/2005/08/addressing}MessageID;{Element}{http://www.w3.org/2005/08/addressing}RelatesTo;{Element}{http://www.w3.org/2005/08/addressing}Action"/>
>> </map>
>> </constructor-arg>
>> </bean>
>>
>> <!-- WSS4JInInterceptor for validating the signature of inbound
>> SOAP -->
>> <bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor"
>> id="inbound-security">
>> <constructor-arg>
>> <map>
>> <entry key="action" value="Timestamp Signature"/>
>> <entry key="signaturePropFile" value="/client.properties"/>
>> <entry key="passwordCallbackClass" value="OurOwnPasswordCallBackForTheKeyStore.java"/>
>> </map>
>> </constructor-arg>
>> </bean>
>> </beans>
>>
>>
>> Trace logs on the .net side
>> ===========================
>> An error occurred while processing a message. The RM Destination requires the WS-SecureConversation protocol in the binding. This is likely caused by a binding mismatch.
>>
>>
>> The logs and exception
>> =======================
>>
>>
>> Jul 30, 2014 2:04:39 PM org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor handleMessage
>> WARNING: Request does not contain Security header, but it's a fault.
>> Jul 30, 2014 2:04:39 PM org.apache.cxf.ws.rm.Proxy invoke
>> SEVERE: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
>> org.apache.cxf.binding.soap.SoapFault: The message could not be processed. This is most likely because the action 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding.
>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.unmarshalFault(Soap12FaultInInterceptor.java:155)
>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:66)
>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:52)
>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>> at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
>> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:140)
>> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:71)
>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>> at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
>> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1636)
>> ......
>> Jul 30, 2014 2:04:39 PM org.apache.cxf.phase.PhaseInterceptorChain doDefaultLogging
>> org.apache.cxf.interceptor.Fault: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
>> at org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMInterceptor.java:104)
>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
>> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
>> .....
>> at com.intellij.rt.execution.junit.JUnitStarter.main(JUnitStarter.java:65)
>> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
>> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
>> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
>> at java.lang.reflect.Method.invoke(Method.java:597)
>> at com.intellij.rt.execution.application.AppMain.main(AppMain.java:120)
>> Caused by: org.apache.cxf.ws.rm.RMException: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
>> at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:323)
>> at org.apache.cxf.ws.rm.Proxy.createSequence(Proxy.java:199)
>> at org.apache.cxf.ws.rm.RMManager.getSequence(RMManager.java:472)
>> at org.apache.cxf.ws.rm.RMCaptureOutInterceptor.handle(RMCaptureOutInterceptor.java:156)
>> at org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMInterceptor.java:83)
>> ... 33 more
>> Caused by: org.apache.cxf.binding.soap.SoapFault: The message could not be processed. This is most likely because the action 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding.
>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.unmarshalFault(Soap12FaultInInterceptor.java:155)
>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:66)
>> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:52)
>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>> at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
>> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:140)
>> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:71)
>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>> at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
>> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1636)
>> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponse(HTTPConduit.java:1525)
>> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(HTTPConduit.java:1330)
>> at org.apache.cxf.io.CacheAndWriteOutputStream.postClose(CacheAndWriteOutputStream.java:56)
>> at org.apache.cxf.io.CachedOutputStream.close(CachedOutputStream.java:215)
>> at org.apache.cxf.transport.AbstractConduit.close(AbstractConduit.java:56)
>> at org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:638)
>> at org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInterceptor.handleMessage(MessageSenderInterceptor.java:62)
>> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
>> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
>> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
>> at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:313)
>> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
>
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
Replying to my own message again. We noticed that even though the change
di make one Signature element appear, it is referring to the signing of
the timestamp itself. There is no Signature element for anything else
that the policy assertions insist should be signed.
On 8/14/14 11:30 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>n 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>
>>The policy has a <sp:EncryptSignature/> assertion in it so I wuld
>>have expected the signatures to be encrypted. The CXF request has two
>>ncryptedData elements whch MAY correspond to the two Signatures that
>>the .NET client is sending. No really sure though as I dn¹t know what
>>is in the encrypted data.
>>
>>You could try removing that rom the policy and see if XF does something
>>different. At the very least, it may show the Signatures.
>>
>>That sad, there is still an issue. I don¹t see a wsu:Id on the
>>soap:Body. Thus, it doesn¹t look like CXF is siging the Body like it
>>should be. Actully, I don¹t see the Id on the and of the WS-A headers
>>ither. It would be good to see what CXF is signing. Or at least hat
>>is in the encrypted data.
>
>>Dan
>
>Dan, I really appreciate your attention here. Thank you.
>
>I askd the .NET tam to make the specific change that you requested
>(removing the EncryptSignatureassertio from their WSDL). They must have
>not been able to do such a small, targetd change. Instead, the made the
>following change, which had the side-effect of theEncryptSignature no
>longer beng there. That said, a few other small things in the WSL also
>changed, perhaps not in a way that matters For reference, here's what
>they sy they changed:
>
>> I¹ve changed the message security versio to be an older versio
>>
>>(WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecuity
>>Policy11BasicSecrityProfile10
>> instead of
>>WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecurityP
>>oliy11)
>
>
>
>Now our soap request has Signature element in it, although the id
>attributes that you notd were absent ar still not there. The end result,
>from a soap fault perspective, is the same.
>
>Doe ths help you analyze what is going wrong here?
>
>
>
>
>
>----- CXF SOAP REQUEST -----
>
>soap:Envelopexmlns:soap="http://www.w3.org/2003/05/soap-envelope">
> <soap:Header
> <Action xmlns="http://www.w3.org/2005/08/addressing">
> http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
> </Action>
> <MessageID
>xmlns"http://www.w3.org/200/08/addressing">urn:uuid:421e07a9-4fa4-4984-86
>28-c4298b0fa3b1
> </MessageID>
> <To
>xmlns="http://www.w3.org/205/08/addressing">https://services.gallup.com/O
>M
>S/V2/Diacap/Autentication.svc
> </To>
> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>
><Address>http://www.w3.org/2005/08/ddressing/anonymous</Address>
> </ReplyTo>
> <wss:Security
>xmlns:wsse="http://docs.oass-open.org/wss/2004/01/oasis-200401-wss-wssecu
>r
>ity-secext-1.0.xsd"
>
>mlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
>i
>ty-utility-1.0.xsd"
> soap:mustUnderstand=true">
> <wsu:Timestamp
>wsu:Id="TS-fd886f00-f83a-49c-98e6-ed726c946b4f">
> <wsu:Created>2014-08-14T6:12:04.392Z</wsu:Created>
> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
> </wsu:Timestamp>
> <wsse:BinarySecurityToken
>
>EncodingType="http://do.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
>message-security-1.0#Base64Binar"
>
>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-20040-wss-x509-to
>k
>en-profle-1.0#X509v3"
> wsu:Id="X509-0bef70e2-c2fd4f38-b91e-b69f19e02c12">
>
>MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhki9w0BAQUFADBYMRMwEQYKCZImiZPyLGQ
>BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZmiZPyLGQBGRYEbm9hbTETMB
>EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxCzAJB>gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEExDzANBgNVBAoTBkdB
>TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0GCSq
>GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCgk87lbdHZ5yV1y9LTH31n2FflLym28RBSc9cRDBBr
>dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlHpI
>T1sZh9xSe1d4mvyn66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9NL
>3
>Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWen3JT3V1vHdPRjU2b7tsx1wW1S00/gnJ1fC
>d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOEVF
>OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObOj/bi
>UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6c6XJ
>/09MjATev+kGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/IybiI
>G6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sg/YhG/7HkQf2
>bY
>XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLLJs
>ezsj6lSjcifxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7mF9NMIIBDwYD
>VR0fBIIBBjCCAQIwgf+ggfyggfmGgbZsZGFwOi8v0NOPW5vYW1zdWJjYTEoMyksQ049bm9hbX
>N
>1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmlZXMsQ049Q2
>9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/
>Y
>mzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vYW1zdWJjYTEu
>bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEFBQ
>c
>BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bN1YmNhMSxDTj1BSUEsQ0
>49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbixE
>Q
z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F
>0
>aW9uQXV0G9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vb9hbXN1YmNhMS5ub2FtLmdhbGx1cC5
>jb20vQ2VydEVuc9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQpL
>m
>NydDAhBgkrBgEEAYI3FAEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwCwYDV
>R0PBAQDAgWgMBMGA1UdJQQMMAoGCCGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lUqd
>M
>eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3uOj
>+SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42Cx0V5zGVHbCKYnKbfe5/qLO9qCF
>5
>n0mItQMmTb
> </wsse:BinarySecurityToken>
> <ds:Signatur xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>Id="SIG-e137681a-07ba-4b9c-bb9-6512baaf6651">
> <ds:SignedInfo>
> <ds:CanonicalizationMethod
>Algorithm="ttp://www.w3.org/2001/10/xml-exc-c14n#">
> <ec:InclusiveNamespaces
>xmlns:ec="htt://www.w3.org/001/10/xml-exc-c14n#" PrefixList="soap"/>
> </ds:CanonicalizationMethod
> <ds:SignatureMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
> <ds:Reference
>URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
> <ds:Transforms>
> <ds:Transform
>Algorithm="http://www.w3.org/2001/10/xm-exc-c14n#">
> <ec:InclusiveNamespaces
>xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
> PrefixList="wsse
>soap"/>
> </ds:Transform>
> </d:Transforms>
> <ds:DigestMethod
>Algorithm="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>
><ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
> </ds:Reference>
> </ds:Signednfo>
> <ds:SignaturValue>
>
>KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9iI/A
>F
>9gTWGtOrCB7nrlE38bOLxt3nggokrD8v8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3JrFjY
>3
>/yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s+MMP
>jnmD9E7SM9kCedPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4c4V8dbco6RS
>SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKcduvB
>W
>8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQMjIRP72Hj7WKuUCw
>I
>Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfakLWSR
>tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUm7xsTof
>a
>1fgcSkaBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3MoqToT
>d6JzuGRw=
> </ds:SignatureValue>
> <ds:KeyInfo Id="KI-929233b6-26de-41cf-a02-f52de4d4bf9">
> <wsse:SecurityTokenReference
>wsu:Id="STR-5789ea2-2fa3-425e-a31b-bfb9f1e49787">
> <sse:Referece
>URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>
>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509to
>k
>en-profile-1.0#X509v3"/>
> /wsse:SecurityTokenReference>
> </ds:KeyInfo>
> </ds:Signature>
> </wsse:Security>
> </soap:Header>
> <soapBody>
> <CreateSequence
>xmlns="http://docs.oasis-open.org/w-rx/wsrm/200702"
> xmlns:ns2="http://wwww3.org/2005/08/addressing">
> <AcksTo>
>
><ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
> /AcksTo>
> <Expires>PT0S</Expires>
> <Offer>
>
><Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
> <Endpoint>
>
><ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
> </Endpoint>
> <Expires>PT0S</Epires>
> </Offer>
> </CreateSequence>
> </soap:Body>
></soap:Envelope>
>
>
>
>
>----- .NET SOAP REQUEST -----
>
><?xml version="1.0" encodig="utf-8"?>
><s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
>xlns:a="http://www.w3.org/2005/08/addressing"
>xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecurity>-utility-1.0.sd">
> <s:Header>
> <a:Action s:mustUnderstand="1"
>u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a:A
>c>tion>
> <a:MessageID
>uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
> <ActivityId
>xmlns="http://schemas.microsoft.com/2004/09/SericeModel/Diagnostics"
>CorrelationId="bcd3db57-178d-48a-bf82-e2c8df52dd37">22aecc77-9a7c-49d9-91d
>7-9533bf1599d7</ActivityId>
> <a:To s:mustUnderstand="1"
>u:Id="_4">http://orfdinsjx75w7.nom.gallup.om/oms.wcf/Authentication.svc</
>a:To>
> <o:Security
>xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurit
>y
>-secext-1.0xd" s:mustUnderstand="1">
> <u:Timestamp u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
> <u:Created>2014-08-14T15:56:02.747Z</u:Created>
> <u:Expire>2014-08-14T16:01:02.747Z/u:Expires>
> </u:Timestamp>
> <o:BinarySecurityToken
>u:Id="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
>ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-509-tok
>en-profile-1.0#X509v3"
>EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap
>-
>message-ecurity-1.0#Base64Binary">MIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBgkq
>hkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbH
>V
>wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAMKbm9hbN1YmNhMTAeFw0xNDA0MDIyMD
>E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJKoZI
>h
>vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uLA4HPKuSi2Ocld3f
>DFhb4OYRRucjvrk1Ui5V5OOrOm7cWDrGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9TaPr
>I
>61bnCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkBgEEAY
>I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1UdDwQE
>A
>wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnpq4WXm
>0
>+Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6CB/KCB+YaBtmxkYXA6L8vQ049bm9hbXN
>1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlc
>y
>xDTj1TZXJ2aWNlcyxDTj1Db5maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNh
>d
>GVSZXZvY2F0aW9uTGlzd9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hj5
>o
>dHRwO8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExKD
>M
>pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DTj1ub
>2
>FtcViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyxD
>T
>j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29iamV
>j
>dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2Ftc3
>V
>iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsdXAuY
>2
>9tX25vYW1zdWJjYTEoNCkuY30MA0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyNMYgg
>a
>vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2BzFl0x
>i
>16WbmydufMDIILhSYWb5d0t8U0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28Tj</
>o
>:BinarySecurityToken>
> <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
> <SignedInfo>
> <CanonicalizationMethod
>Algorithm="http//www.w3.org/2001/10/xml-exc-c14n#"/>
> <SignatureMethod
>Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
> <Reference URI="#_1">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/000/09/xmldsig#sha1"/>
> <DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
> </Reference>
> <Reference URI="#_2">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sa1"/>
> <DigestValue>/yJ/ysxeFBIlVOQK860fYd641KA=</DigestValue>
> </Reference>
> <Reference URI="#_3">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
> </Reference>
> <Reference URI="#_4">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
> </Reference>
> <Reference URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
> </Reference>
> </SignedInfo>
> <SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0
>O
>lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+XnRpNy
>5
>ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
> <KeyInfo>
> <o:SecurityTokenReference>
> <o:Reference
>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-to
>k
>en-profile-1.0#X509v3"
>URI="#uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"/>
> </o:SecurityTokenReference>
> </KeyInfo>
> </Signature>
> </o:Security>
> </s:Header>
> <s:Body u:Id="_1">
> <CreateSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
> <AcksTo>
> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
> </AcksTo>
> <Offer>
> <Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
> <Endpoint>
> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
> </Endpoint>
> <IncompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequen
>c
>eBehavior>
> </Offer>
> </CreateSequence>
> </s:Body>
></s:Envelope>
>
>
>
>
>----- WSDL -----
>
><?xml version="1.0" encoding="utf-8"?>
><wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
>i
>ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/addressing"
>xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
>xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>xmlns:tns="http://tempuri.org/"
>xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>name="Authentication" targetNamespace="http://tempuri.org/">
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <wsrmp:RMAssertion
>xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
> <wsp:Policy>
> <wsrmp:DeliveryAssurance>
> <wsp:Policy>
> <wsrmp:ExactlyOnce/>
> <wsrmp:InOrder/>
> </wsp:Policy>
> </wsrmp:DeliveryAssurance>
> </wsp:Policy>
> <netrmp:InactivityTimeout
>xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>Milliseconds="600000"/>
> <netrmp:AcknowledgementInterval
>xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>Milliseconds="200"/>
> </wsrmp:RMAssertion>
> <sp:AsymmetricBinding
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:InitiatorToken>
> <wsp:Policy>
> <sp:X509Token
>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Incl
>u
>deToken/AlwaysToRecipient">
> <wsp:Policy>
> <sp:WssX509V3Token10/>
> </wsp:Policy>
> </sp:X509Token>
> </wsp:Policy>
> </sp:InitiatorToken>
> <sp:RecipientToken>
> <wsp:Policy>
> <sp:X509Token
>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Incl
>u
>deToken/Never">
> <wsp:Policy>
> <sp:WssX509V3Token10/>
> </wsp:Policy>
> </sp:X509Token>
> </wsp:Policy>
> </sp:RecipientToken>
> <sp:AlgorithmSuite>
> <wsp:Policy>
> <sp:Basic256/>
> </wsp:Policy>
> </sp:AlgorithmSuite>
> <sp:Layout>
> <wsp:Policy>
> <sp:Strict/>
> </wsp:Policy>
> </sp:Layout>
> <sp:IncludeTimestamp/>
> <sp:OnlySignEntireHeadersAndBody/>
> </wsp:Policy>
> </sp:AsymmetricBinding>
> <sp:Wss10
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:MustSupportRefKeyIdentifier/>
> <sp:MustSupportRefIssuerSerial/>
> </wsp:Policy>
> </sp:Wss10>
> <sp:Trust10
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:MustSupportIssuedTokens/>
> <sp:RequireClientEntropy/>
> <sp:RequireServerEntropy/>
> </wsp:Policy>
> </sp:Trust10>
> <wsaw:UsingAddressing/>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
>location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc
>?
>wsdl=wsdl0"/>
> <wsdl:types/>
> <wsdl:binding name="AuthenticationDiacapEndpoint"
>type="i0:IAuthentication">
> <wsp:PolicyReference URI="#AuthenticationDiacapEndpoint_policy"/>
> <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
> <wsdl:operation name="Activate">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activate
>"
> style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="ChangePassword">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ChangePa
>s
>sword" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Create">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create"
>style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Expire">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire"
>style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetAnswers">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAnswe
>r
>s" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetPolicy">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPolic
>y
>" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetQuestions">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQuest
>i
>ons" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetUsernames">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUsern
>a
>mes" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Reset">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
>style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Update">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update"
>style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Validate">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Validate
>"
> style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="ValidateEmail">
> <soap12:operation
>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Validate
>E
>mail" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> </wsdl:binding>
> <wsdl:service name="Authentication">
> <wsdl:port name="AuthenticationDiacapEndpoint"
>binding="tns:AuthenticationDiacapEndpoint">
> <soap12:address
>location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc"
>/
>>
> <wsa10:EndpointReference>
> <wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentica
>t
>ion.svc</wsa10:Address>
> <Identity
>xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
> <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
> <X509Data>
> <X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQ
>U
>FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwFQYKC
>Z
>ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcxNDEy
>M
>jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQ
>B
>GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb21wdX
>R
>lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wdXRlc
>n
>MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKTG
>+
>rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/IMJh
>E
>tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO51H1
>8
>bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQiSz
>T
>iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr
>B
>gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBggrBgE
>F
>BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ4EFg
>Q
>UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/OUwg
>g
>EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNhMSxD
>T
>j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ
>2
>aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZXZvY2
>F
>0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwOi8vY
>2
>VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3ViY2Ex
>L
>mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1jZW5
>0
>ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcy
>x
>DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29ia
>m
>VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9jZW50
>Z
>XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTEuY2V
>u
>dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4ICAQ
>A
>aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBWmLZg
>I
>9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8dCQBp
>H
>3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYivG9VF
>X
>ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAuvQBQ
>f
>0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFLakyi
>A
>eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpUrD+M
>a
>Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V+yyd
>v
>/hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT9VHN
>6
>gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJbkda0
>B
>pF1xatiQ==</X509Certificate>
> </X509Data>
> </KeyInfo>
> </Identity>
> </wsa10:EndpointReference>
> </wsdl:port>
> </wsdl:service>
></wsdl:definitions>
>
>
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Colm O hEigeartaigh <co...@apache.org>.
> So my question is: is CXF doing the right thing here?
No...it's a bug that I've just fixed in WSS4J:
http://svn.apache.org/viewvc?view=revision&revision=r1626783
It'll be picked up in the next CXF release.
Colm.
On Fri, Sep 19, 2014 at 6:19 PM, Longsine, Pohl <Po...@gallup.com>
wrote:
> So this is interesting. There appear to be two different WS-Security
> namespace URIs in the WSDL, and if we manually change the one instance of:
>
> <sp:TransportBinding
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>
> …to…
>
>
> <sp:TransportBinding
> xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
>
> …then the service call works. (The whole thing: the RM messages and the
> actual method call).
>
> So, to sum up, we're running with a locally-hacked WSDL with two changes:
> one where we pulled the policies from the methods up to the endpoint (the
> change discussed several days ago) plus the namespace change above.
>
> So my question is: is CXF doing the right thing here? Does CXF want to be
> able to interoperate with WCF in the event that it is using old & new
> WS-Security namespaces like this? If not, could it be failing in a more
> informative manner?
>
>
>
> On 9/19/14 11:25 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>
> >We followed this suggestion and found out that Basic 256 is being
> >asserted, but with the wrong namespace.
> >
> >It is tying it to http://schemas.xmlsoap.org/ws/2005/07/securitypolicy
> >
> >However, the namespace in the WSDL is <sp:AsymmetricBinding
> >xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
> >
> >
> >
> >On 9/19/14 6:16 AM, "Colm O hEigeartaigh" <co...@apache.org> wrote:
> >
> >>The AlgorithmSuite security policies are asserted if "valid" in the
> >>AlgorithmSuitePolicyValidator:
> >>
> >>if (valid) {
> >> String namespace =
> >>algorithmSuite.getAlgorithmSuiteType().getNamespace();
> >> String name =
> >>algorithmSuite.getAlgorithmSuiteType().getName();
> >> Collection<AssertionInfo> algSuiteAis = aim.get(new
> >>QName(namespace, name));
> >> if (algSuiteAis != null) {
> >> for (AssertionInfo algSuiteAi : algSuiteAis) {
> >> algSuiteAi.setAsserted(true);
> >> }
> >> }
> >> } else if (!valid && ai.isAsserted()) {
> >> ai.setNotAsserted("Error in validating AlgorithmSuite
> >>policy");
> >> }
> >>
> >>So I recommend setting a breakpoint above this + see if valid is being
> >>set
> >>to "false". If so then find out exactly where in the "validatePolicy"
> >>method this is happening.
> >>
> >>Colm.
> >>
> >>On Thu, Sep 18, 2014 at 8:25 PM, Longsine, Pohl
> >><Po...@gallup.com>
> >>wrote:
> >>
> >>> We followed your suggestion and put breakpoints in every method in that
> >>> class. We could not witness any unassert happening there.
> >>>
> >>> Where in the CXF codebase would a Basic256 assertPolicy(...) happen in
> >>>the
> >>> first place? Judging by how other things are asserted (such as
> >>>lax/strict
> >>> layout) we would expect something like the following line to be
> >>>somewhere
> >>> in CXF source:
> >>>
> >>> assertPolicy(new
> >>> QName(binding.getAlgorithmSuite().getName().getNamespaceURI(),
> >>> SPConstants.ALGO_SUITE_BASIC256));
> >>>
> >>> …but we can't find such a thing anywhere. We figured maybe something
> >>>like
> >>> that should be somewhere below the
> >>> AbstractCommonBindingHandler.assertAlgorithmSuite() method.
> >>>
> >>> In fact, we can't find any use of the SPConstants.ALGO_SUITE_BASIC256
> >>> constant at all.
> >>>
> >>>
> >>>
> >>>
> >>>
> >>> On 9/18/14 4:01 AM, "Colm O hEigeartaigh" <co...@apache.org> wrote:
> >>>
> >>> >Hi,
> >>> >
> >>> >I don't see anything obviously wrong in the messages. If "Basic256"
> >>>policy
> >>> >validation is failing, then it sounds like there is a mismatch
> >>>somewhere
> >>> >in
> >>> >the AlgorithmSuitePolicyValidator:
> >>> >
> >>> >
> >>>
> >>>
> https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob_plain;f=rt/ws/s
> >>>e
> >>>c
> >>>
> >>>>urity/src/main/java/org/apache/cxf/ws/security/wss4j/policyvalidators/A
> >>>>l
> >>>>go
> >>> >rithmSuitePolicyValidator.java;hb=HEAD
> >>> >
> >>> >I recommend putting some breakpoints in there and see where it is
> >>> >unasserting the policy (if this in fact is the problem).
> >>> >
> >>> >Colm.
> >>> >
> >>> >On Wed, Sep 17, 2014 at 6:05 PM, Longsine, Pohl
> >>><Pohl_Longsine@gallup.com
> >>> >
> >>> >wrote:
> >>> >
> >>> >> A member of my team wrote this to pass on to you:
> >>> >>
> >>> >> Thank you so much for your guidance so far.
> >>> >>
> >>> >> We had a chance to monitor the actual request being sent and it is
> >>>being
> >>> >> signed and encrypted. Here is the request, response, modified wsdl
> >>>with
> >>> >> copied policy as suggested, and the stack trace.
> >>> >>
> >>> >> https://gist.github.com/themmer/b274c9f720c4dcbaec83
> >>> >>
> >>> >> I believe this proves that JCE is functioning in our environment.
> >>>Our
> >>> >> Soap handler log unfortunately happens before signing/encryption,
> >>>hence
> >>> >> the confusion earlier about the request not being correct.
> >>> >>
> >>> >> One interesting thing: it is failing when the response is coming in
> >>>and
> >>> >>we
> >>> >> are verifying the policy. What is happening is the AssertionInfo for
> >>> >> Basic256 policy is not asserted for some reason. See stack trace in
> >>>the
> >>> >> above gist and the code snippet below for an explanation of what is
> >>> >> happening in debug mode.
> >>> >>
> >>> >> (the following is from AssertionInfoMap.java CXF 3.0.1)
> >>> >>
> >>> >> Assertion ass = (Assertion)assertion;
> >>> >> Collection<AssertionInfo> ail = getAssertionInfo(ass.getName());
> >>> >> boolean found = false;
> >>> >> for (AssertionInfo ai : ail) {
> >>> >> if (ai.getAssertion().equal(ass)) { // Expression A
> >>> >> found = true;
> >>> >> if (!ai.isAsserted() && !ass.isOptional()) { // Expression B,
> >>> >>where
> >>> >> we fail
> >>> >> // I believe Basic 256 should be asserted since it is part
> >>>of
> >>> >>the
> >>> >> Algo Suite
> >>> >> errors.add(ass.getName());
> >>> >> pass = false;
> >>> >> }
> >>> >> }
> >>> >> ...
> >>> >>
> >>> >>
> >>> >>
> >>> >> We are failing here in AssertionInfoMap. "Expression A" evaluates to
> >>> >>true
> >>> >> (where the AssertionInfo is the basic 256 assertion info from inside
> >>> >> asymmetric binding). But then "Expression B" evaluates to false
> >>>because
> >>> >> it is not optional and not asserted (this would be the problem I
> >>> >>believe).
> >>> >> At this point it adds the error and will fail due to this.
> >>> >>
> >>> >> Is it possible that the assertPolicy is not called for the
> >>>Asymmetric
> >>> >> Binding with policies in the lower layers (Basic 256)? The
> >>>asymmetric
> >>> >> binding is what is failing through the debugger when verifying the
> >>> >>policy
> >>> >> on the incoming create sequence response.
> >>> >>
> >>> >>
> >>> >>
> >>> >>
> >>> >> On 9/17/14 10:33 AM, "Longsine, Pohl" <Po...@gallup.com>
> >>>wrote:
> >>> >>
> >>> >> >Yes, we do have JCE in place.
> >>> >> >
> >>> >> >Sorry about not using a pastebin. Most of those are blacklisted by
> >>>our
> >>> >> >draconian gateway, but I see that Github gists have somehow slipped
> >>> >> >through the cracks, so next time I'll use that.
> >>> >> >
> >>> >> >
> >>> >> >
> >>> >> >
> >>> >> >>
> >>> >> >>
> >>> >> >>On 9/16/14 6:15 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
> >>> >> >>
> >>> >> >>>I'm not sure what's going on now, Pohl. It looks like the request
> >>> >> >>>message is being sent without security headers, and the server
> >>> >>responds
> >>> >> >>>anyway with a signed message. But the stack trace says the
> >>>request is
> >>> >> >>>not being sent in the first place because of a security
> >>>assertion:
> >>> >> >>>
> >>> >> >>>Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
> >>> >> >>>alternatives can not be satisfied:
> >>> >>
> >>>>>>{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
> >>> >> >>>
> >>> >> >>>Do you have the unlimited strength cryptography extensions
> >>>installed
> >>> >>in
> >>> >> >>>your JVM? I believe you need these in order to use Basic256. That
> >>> >>aside,
> >>> >> >>>it would be better if you used http://pastebin.com/ or something
> >>> >> similar
> >>> >> >>>for your files, since it's really hard to read them in the email.
> >>> >> >>>
> >>> >> >>>- Dennis
> >>>
> >>> All information in this message is confidential and may be legally
> >>> privileged. Only intended recipients are authorized to use it.
> >>>
> >>
> >>
> >>
> >>--
> >>Colm O hEigeartaigh
> >>
> >>Talend Community Coder
> >>http://coders.talend.com
> >
> >All information in this message is confidential and may be legally
> >privileged. Only intended recipients are authorized to use it.
>
> All information in this message is confidential and may be legally
> privileged. Only intended recipients are authorized to use it.
>
--
Colm O hEigeartaigh
Talend Community Coder
http://coders.talend.com
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
So this is interesting. There appear to be two different WS-Security
namespace URIs in the WSDL, and if we manually change the one instance of:
<sp:TransportBinding
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
…to…
<sp:TransportBinding
xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
…then the service call works. (The whole thing: the RM messages and the
actual method call).
So, to sum up, we're running with a locally-hacked WSDL with two changes:
one where we pulled the policies from the methods up to the endpoint (the
change discussed several days ago) plus the namespace change above.
So my question is: is CXF doing the right thing here? Does CXF want to be
able to interoperate with WCF in the event that it is using old & new
WS-Security namespaces like this? If not, could it be failing in a more
informative manner?
On 9/19/14 11:25 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>We followed this suggestion and found out that Basic 256 is being
>asserted, but with the wrong namespace.
>
>It is tying it to http://schemas.xmlsoap.org/ws/2005/07/securitypolicy
>
>However, the namespace in the WSDL is <sp:AsymmetricBinding
>xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
>
>
>
>On 9/19/14 6:16 AM, "Colm O hEigeartaigh" <co...@apache.org> wrote:
>
>>The AlgorithmSuite security policies are asserted if "valid" in the
>>AlgorithmSuitePolicyValidator:
>>
>>if (valid) {
>> String namespace =
>>algorithmSuite.getAlgorithmSuiteType().getNamespace();
>> String name =
>>algorithmSuite.getAlgorithmSuiteType().getName();
>> Collection<AssertionInfo> algSuiteAis = aim.get(new
>>QName(namespace, name));
>> if (algSuiteAis != null) {
>> for (AssertionInfo algSuiteAi : algSuiteAis) {
>> algSuiteAi.setAsserted(true);
>> }
>> }
>> } else if (!valid && ai.isAsserted()) {
>> ai.setNotAsserted("Error in validating AlgorithmSuite
>>policy");
>> }
>>
>>So I recommend setting a breakpoint above this + see if valid is being
>>set
>>to "false". If so then find out exactly where in the "validatePolicy"
>>method this is happening.
>>
>>Colm.
>>
>>On Thu, Sep 18, 2014 at 8:25 PM, Longsine, Pohl
>><Po...@gallup.com>
>>wrote:
>>
>>> We followed your suggestion and put breakpoints in every method in that
>>> class. We could not witness any unassert happening there.
>>>
>>> Where in the CXF codebase would a Basic256 assertPolicy(...) happen in
>>>the
>>> first place? Judging by how other things are asserted (such as
>>>lax/strict
>>> layout) we would expect something like the following line to be
>>>somewhere
>>> in CXF source:
>>>
>>> assertPolicy(new
>>> QName(binding.getAlgorithmSuite().getName().getNamespaceURI(),
>>> SPConstants.ALGO_SUITE_BASIC256));
>>>
>>> …but we can't find such a thing anywhere. We figured maybe something
>>>like
>>> that should be somewhere below the
>>> AbstractCommonBindingHandler.assertAlgorithmSuite() method.
>>>
>>> In fact, we can't find any use of the SPConstants.ALGO_SUITE_BASIC256
>>> constant at all.
>>>
>>>
>>>
>>>
>>>
>>> On 9/18/14 4:01 AM, "Colm O hEigeartaigh" <co...@apache.org> wrote:
>>>
>>> >Hi,
>>> >
>>> >I don't see anything obviously wrong in the messages. If "Basic256"
>>>policy
>>> >validation is failing, then it sounds like there is a mismatch
>>>somewhere
>>> >in
>>> >the AlgorithmSuitePolicyValidator:
>>> >
>>> >
>>>
>>>https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob_plain;f=rt/ws/s
>>>e
>>>c
>>>
>>>>urity/src/main/java/org/apache/cxf/ws/security/wss4j/policyvalidators/A
>>>>l
>>>>go
>>> >rithmSuitePolicyValidator.java;hb=HEAD
>>> >
>>> >I recommend putting some breakpoints in there and see where it is
>>> >unasserting the policy (if this in fact is the problem).
>>> >
>>> >Colm.
>>> >
>>> >On Wed, Sep 17, 2014 at 6:05 PM, Longsine, Pohl
>>><Pohl_Longsine@gallup.com
>>> >
>>> >wrote:
>>> >
>>> >> A member of my team wrote this to pass on to you:
>>> >>
>>> >> Thank you so much for your guidance so far.
>>> >>
>>> >> We had a chance to monitor the actual request being sent and it is
>>>being
>>> >> signed and encrypted. Here is the request, response, modified wsdl
>>>with
>>> >> copied policy as suggested, and the stack trace.
>>> >>
>>> >> https://gist.github.com/themmer/b274c9f720c4dcbaec83
>>> >>
>>> >> I believe this proves that JCE is functioning in our environment.
>>>Our
>>> >> Soap handler log unfortunately happens before signing/encryption,
>>>hence
>>> >> the confusion earlier about the request not being correct.
>>> >>
>>> >> One interesting thing: it is failing when the response is coming in
>>>and
>>> >>we
>>> >> are verifying the policy. What is happening is the AssertionInfo for
>>> >> Basic256 policy is not asserted for some reason. See stack trace in
>>>the
>>> >> above gist and the code snippet below for an explanation of what is
>>> >> happening in debug mode.
>>> >>
>>> >> (the following is from AssertionInfoMap.java CXF 3.0.1)
>>> >>
>>> >> Assertion ass = (Assertion)assertion;
>>> >> Collection<AssertionInfo> ail = getAssertionInfo(ass.getName());
>>> >> boolean found = false;
>>> >> for (AssertionInfo ai : ail) {
>>> >> if (ai.getAssertion().equal(ass)) { // Expression A
>>> >> found = true;
>>> >> if (!ai.isAsserted() && !ass.isOptional()) { // Expression B,
>>> >>where
>>> >> we fail
>>> >> // I believe Basic 256 should be asserted since it is part
>>>of
>>> >>the
>>> >> Algo Suite
>>> >> errors.add(ass.getName());
>>> >> pass = false;
>>> >> }
>>> >> }
>>> >> ...
>>> >>
>>> >>
>>> >>
>>> >> We are failing here in AssertionInfoMap. "Expression A" evaluates to
>>> >>true
>>> >> (where the AssertionInfo is the basic 256 assertion info from inside
>>> >> asymmetric binding). But then "Expression B" evaluates to false
>>>because
>>> >> it is not optional and not asserted (this would be the problem I
>>> >>believe).
>>> >> At this point it adds the error and will fail due to this.
>>> >>
>>> >> Is it possible that the assertPolicy is not called for the
>>>Asymmetric
>>> >> Binding with policies in the lower layers (Basic 256)? The
>>>asymmetric
>>> >> binding is what is failing through the debugger when verifying the
>>> >>policy
>>> >> on the incoming create sequence response.
>>> >>
>>> >>
>>> >>
>>> >>
>>> >> On 9/17/14 10:33 AM, "Longsine, Pohl" <Po...@gallup.com>
>>>wrote:
>>> >>
>>> >> >Yes, we do have JCE in place.
>>> >> >
>>> >> >Sorry about not using a pastebin. Most of those are blacklisted by
>>>our
>>> >> >draconian gateway, but I see that Github gists have somehow slipped
>>> >> >through the cracks, so next time I'll use that.
>>> >> >
>>> >> >
>>> >> >
>>> >> >
>>> >> >>
>>> >> >>
>>> >> >>On 9/16/14 6:15 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>>> >> >>
>>> >> >>>I'm not sure what's going on now, Pohl. It looks like the request
>>> >> >>>message is being sent without security headers, and the server
>>> >>responds
>>> >> >>>anyway with a signed message. But the stack trace says the
>>>request is
>>> >> >>>not being sent in the first place because of a security
>>>assertion:
>>> >> >>>
>>> >> >>>Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
>>> >> >>>alternatives can not be satisfied:
>>> >>
>>>>>>{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
>>> >> >>>
>>> >> >>>Do you have the unlimited strength cryptography extensions
>>>installed
>>> >>in
>>> >> >>>your JVM? I believe you need these in order to use Basic256. That
>>> >>aside,
>>> >> >>>it would be better if you used http://pastebin.com/ or something
>>> >> similar
>>> >> >>>for your files, since it's really hard to read them in the email.
>>> >> >>>
>>> >> >>>- Dennis
>>>
>>> All information in this message is confidential and may be legally
>>> privileged. Only intended recipients are authorized to use it.
>>>
>>
>>
>>
>>--
>>Colm O hEigeartaigh
>>
>>Talend Community Coder
>>http://coders.talend.com
>
>All information in this message is confidential and may be legally
>privileged. Only intended recipients are authorized to use it.
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
We followed this suggestion and found out that Basic 256 is being
asserted, but with the wrong namespace.
It is tying it to http://schemas.xmlsoap.org/ws/2005/07/securitypolicy
However, the namespace in the WSDL is <sp:AsymmetricBinding
xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
On 9/19/14 6:16 AM, "Colm O hEigeartaigh" <co...@apache.org> wrote:
>The AlgorithmSuite security policies are asserted if "valid" in the
>AlgorithmSuitePolicyValidator:
>
>if (valid) {
> String namespace =
>algorithmSuite.getAlgorithmSuiteType().getNamespace();
> String name =
>algorithmSuite.getAlgorithmSuiteType().getName();
> Collection<AssertionInfo> algSuiteAis = aim.get(new
>QName(namespace, name));
> if (algSuiteAis != null) {
> for (AssertionInfo algSuiteAi : algSuiteAis) {
> algSuiteAi.setAsserted(true);
> }
> }
> } else if (!valid && ai.isAsserted()) {
> ai.setNotAsserted("Error in validating AlgorithmSuite
>policy");
> }
>
>So I recommend setting a breakpoint above this + see if valid is being set
>to "false". If so then find out exactly where in the "validatePolicy"
>method this is happening.
>
>Colm.
>
>On Thu, Sep 18, 2014 at 8:25 PM, Longsine, Pohl <Po...@gallup.com>
>wrote:
>
>> We followed your suggestion and put breakpoints in every method in that
>> class. We could not witness any unassert happening there.
>>
>> Where in the CXF codebase would a Basic256 assertPolicy(...) happen in
>>the
>> first place? Judging by how other things are asserted (such as
>>lax/strict
>> layout) we would expect something like the following line to be
>>somewhere
>> in CXF source:
>>
>> assertPolicy(new
>> QName(binding.getAlgorithmSuite().getName().getNamespaceURI(),
>> SPConstants.ALGO_SUITE_BASIC256));
>>
>> …but we can't find such a thing anywhere. We figured maybe something
>>like
>> that should be somewhere below the
>> AbstractCommonBindingHandler.assertAlgorithmSuite() method.
>>
>> In fact, we can't find any use of the SPConstants.ALGO_SUITE_BASIC256
>> constant at all.
>>
>>
>>
>>
>>
>> On 9/18/14 4:01 AM, "Colm O hEigeartaigh" <co...@apache.org> wrote:
>>
>> >Hi,
>> >
>> >I don't see anything obviously wrong in the messages. If "Basic256"
>>policy
>> >validation is failing, then it sounds like there is a mismatch
>>somewhere
>> >in
>> >the AlgorithmSuitePolicyValidator:
>> >
>> >
>>
>>https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob_plain;f=rt/ws/se
>>c
>>
>>>urity/src/main/java/org/apache/cxf/ws/security/wss4j/policyvalidators/Al
>>>go
>> >rithmSuitePolicyValidator.java;hb=HEAD
>> >
>> >I recommend putting some breakpoints in there and see where it is
>> >unasserting the policy (if this in fact is the problem).
>> >
>> >Colm.
>> >
>> >On Wed, Sep 17, 2014 at 6:05 PM, Longsine, Pohl
>><Pohl_Longsine@gallup.com
>> >
>> >wrote:
>> >
>> >> A member of my team wrote this to pass on to you:
>> >>
>> >> Thank you so much for your guidance so far.
>> >>
>> >> We had a chance to monitor the actual request being sent and it is
>>being
>> >> signed and encrypted. Here is the request, response, modified wsdl
>>with
>> >> copied policy as suggested, and the stack trace.
>> >>
>> >> https://gist.github.com/themmer/b274c9f720c4dcbaec83
>> >>
>> >> I believe this proves that JCE is functioning in our environment.
>>Our
>> >> Soap handler log unfortunately happens before signing/encryption,
>>hence
>> >> the confusion earlier about the request not being correct.
>> >>
>> >> One interesting thing: it is failing when the response is coming in
>>and
>> >>we
>> >> are verifying the policy. What is happening is the AssertionInfo for
>> >> Basic256 policy is not asserted for some reason. See stack trace in
>>the
>> >> above gist and the code snippet below for an explanation of what is
>> >> happening in debug mode.
>> >>
>> >> (the following is from AssertionInfoMap.java CXF 3.0.1)
>> >>
>> >> Assertion ass = (Assertion)assertion;
>> >> Collection<AssertionInfo> ail = getAssertionInfo(ass.getName());
>> >> boolean found = false;
>> >> for (AssertionInfo ai : ail) {
>> >> if (ai.getAssertion().equal(ass)) { // Expression A
>> >> found = true;
>> >> if (!ai.isAsserted() && !ass.isOptional()) { // Expression B,
>> >>where
>> >> we fail
>> >> // I believe Basic 256 should be asserted since it is part
>>of
>> >>the
>> >> Algo Suite
>> >> errors.add(ass.getName());
>> >> pass = false;
>> >> }
>> >> }
>> >> ...
>> >>
>> >>
>> >>
>> >> We are failing here in AssertionInfoMap. "Expression A" evaluates to
>> >>true
>> >> (where the AssertionInfo is the basic 256 assertion info from inside
>> >> asymmetric binding). But then "Expression B" evaluates to false
>>because
>> >> it is not optional and not asserted (this would be the problem I
>> >>believe).
>> >> At this point it adds the error and will fail due to this.
>> >>
>> >> Is it possible that the assertPolicy is not called for the Asymmetric
>> >> Binding with policies in the lower layers (Basic 256)? The asymmetric
>> >> binding is what is failing through the debugger when verifying the
>> >>policy
>> >> on the incoming create sequence response.
>> >>
>> >>
>> >>
>> >>
>> >> On 9/17/14 10:33 AM, "Longsine, Pohl" <Po...@gallup.com>
>>wrote:
>> >>
>> >> >Yes, we do have JCE in place.
>> >> >
>> >> >Sorry about not using a pastebin. Most of those are blacklisted by
>>our
>> >> >draconian gateway, but I see that Github gists have somehow slipped
>> >> >through the cracks, so next time I'll use that.
>> >> >
>> >> >
>> >> >
>> >> >
>> >> >>
>> >> >>
>> >> >>On 9/16/14 6:15 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>> >> >>
>> >> >>>I'm not sure what's going on now, Pohl. It looks like the request
>> >> >>>message is being sent without security headers, and the server
>> >>responds
>> >> >>>anyway with a signed message. But the stack trace says the
>>request is
>> >> >>>not being sent in the first place because of a security assertion:
>> >> >>>
>> >> >>>Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
>> >> >>>alternatives can not be satisfied:
>> >>
>>>>>{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
>> >> >>>
>> >> >>>Do you have the unlimited strength cryptography extensions
>>installed
>> >>in
>> >> >>>your JVM? I believe you need these in order to use Basic256. That
>> >>aside,
>> >> >>>it would be better if you used http://pastebin.com/ or something
>> >> similar
>> >> >>>for your files, since it's really hard to read them in the email.
>> >> >>>
>> >> >>>- Dennis
>>
>> All information in this message is confidential and may be legally
>> privileged. Only intended recipients are authorized to use it.
>>
>
>
>
>--
>Colm O hEigeartaigh
>
>Talend Community Coder
>http://coders.talend.com
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Colm O hEigeartaigh <co...@apache.org>.
The AlgorithmSuite security policies are asserted if "valid" in the
AlgorithmSuitePolicyValidator:
if (valid) {
String namespace =
algorithmSuite.getAlgorithmSuiteType().getNamespace();
String name =
algorithmSuite.getAlgorithmSuiteType().getName();
Collection<AssertionInfo> algSuiteAis = aim.get(new
QName(namespace, name));
if (algSuiteAis != null) {
for (AssertionInfo algSuiteAi : algSuiteAis) {
algSuiteAi.setAsserted(true);
}
}
} else if (!valid && ai.isAsserted()) {
ai.setNotAsserted("Error in validating AlgorithmSuite
policy");
}
So I recommend setting a breakpoint above this + see if valid is being set
to "false". If so then find out exactly where in the "validatePolicy"
method this is happening.
Colm.
On Thu, Sep 18, 2014 at 8:25 PM, Longsine, Pohl <Po...@gallup.com>
wrote:
> We followed your suggestion and put breakpoints in every method in that
> class. We could not witness any unassert happening there.
>
> Where in the CXF codebase would a Basic256 assertPolicy(...) happen in the
> first place? Judging by how other things are asserted (such as lax/strict
> layout) we would expect something like the following line to be somewhere
> in CXF source:
>
> assertPolicy(new
> QName(binding.getAlgorithmSuite().getName().getNamespaceURI(),
> SPConstants.ALGO_SUITE_BASIC256));
>
> …but we can't find such a thing anywhere. We figured maybe something like
> that should be somewhere below the
> AbstractCommonBindingHandler.assertAlgorithmSuite() method.
>
> In fact, we can't find any use of the SPConstants.ALGO_SUITE_BASIC256
> constant at all.
>
>
>
>
>
> On 9/18/14 4:01 AM, "Colm O hEigeartaigh" <co...@apache.org> wrote:
>
> >Hi,
> >
> >I don't see anything obviously wrong in the messages. If "Basic256" policy
> >validation is failing, then it sounds like there is a mismatch somewhere
> >in
> >the AlgorithmSuitePolicyValidator:
> >
> >
> https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob_plain;f=rt/ws/sec
> >urity/src/main/java/org/apache/cxf/ws/security/wss4j/policyvalidators/Algo
> >rithmSuitePolicyValidator.java;hb=HEAD
> >
> >I recommend putting some breakpoints in there and see where it is
> >unasserting the policy (if this in fact is the problem).
> >
> >Colm.
> >
> >On Wed, Sep 17, 2014 at 6:05 PM, Longsine, Pohl <Pohl_Longsine@gallup.com
> >
> >wrote:
> >
> >> A member of my team wrote this to pass on to you:
> >>
> >> Thank you so much for your guidance so far.
> >>
> >> We had a chance to monitor the actual request being sent and it is being
> >> signed and encrypted. Here is the request, response, modified wsdl with
> >> copied policy as suggested, and the stack trace.
> >>
> >> https://gist.github.com/themmer/b274c9f720c4dcbaec83
> >>
> >> I believe this proves that JCE is functioning in our environment. Our
> >> Soap handler log unfortunately happens before signing/encryption, hence
> >> the confusion earlier about the request not being correct.
> >>
> >> One interesting thing: it is failing when the response is coming in and
> >>we
> >> are verifying the policy. What is happening is the AssertionInfo for
> >> Basic256 policy is not asserted for some reason. See stack trace in the
> >> above gist and the code snippet below for an explanation of what is
> >> happening in debug mode.
> >>
> >> (the following is from AssertionInfoMap.java CXF 3.0.1)
> >>
> >> Assertion ass = (Assertion)assertion;
> >> Collection<AssertionInfo> ail = getAssertionInfo(ass.getName());
> >> boolean found = false;
> >> for (AssertionInfo ai : ail) {
> >> if (ai.getAssertion().equal(ass)) { // Expression A
> >> found = true;
> >> if (!ai.isAsserted() && !ass.isOptional()) { // Expression B,
> >>where
> >> we fail
> >> // I believe Basic 256 should be asserted since it is part of
> >>the
> >> Algo Suite
> >> errors.add(ass.getName());
> >> pass = false;
> >> }
> >> }
> >> ...
> >>
> >>
> >>
> >> We are failing here in AssertionInfoMap. "Expression A" evaluates to
> >>true
> >> (where the AssertionInfo is the basic 256 assertion info from inside
> >> asymmetric binding). But then "Expression B" evaluates to false because
> >> it is not optional and not asserted (this would be the problem I
> >>believe).
> >> At this point it adds the error and will fail due to this.
> >>
> >> Is it possible that the assertPolicy is not called for the Asymmetric
> >> Binding with policies in the lower layers (Basic 256)? The asymmetric
> >> binding is what is failing through the debugger when verifying the
> >>policy
> >> on the incoming create sequence response.
> >>
> >>
> >>
> >>
> >> On 9/17/14 10:33 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
> >>
> >> >Yes, we do have JCE in place.
> >> >
> >> >Sorry about not using a pastebin. Most of those are blacklisted by our
> >> >draconian gateway, but I see that Github gists have somehow slipped
> >> >through the cracks, so next time I'll use that.
> >> >
> >> >
> >> >
> >> >
> >> >>
> >> >>
> >> >>On 9/16/14 6:15 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
> >> >>
> >> >>>I'm not sure what's going on now, Pohl. It looks like the request
> >> >>>message is being sent without security headers, and the server
> >>responds
> >> >>>anyway with a signed message. But the stack trace says the request is
> >> >>>not being sent in the first place because of a security assertion:
> >> >>>
> >> >>>Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
> >> >>>alternatives can not be satisfied:
> >> >>>{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
> >> >>>
> >> >>>Do you have the unlimited strength cryptography extensions installed
> >>in
> >> >>>your JVM? I believe you need these in order to use Basic256. That
> >>aside,
> >> >>>it would be better if you used http://pastebin.com/ or something
> >> similar
> >> >>>for your files, since it's really hard to read them in the email.
> >> >>>
> >> >>>- Dennis
>
> All information in this message is confidential and may be legally
> privileged. Only intended recipients are authorized to use it.
>
--
Colm O hEigeartaigh
Talend Community Coder
http://coders.talend.com
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
We followed your suggestion and put breakpoints in every method in that
class. We could not witness any unassert happening there.
Where in the CXF codebase would a Basic256 assertPolicy(...) happen in the
first place? Judging by how other things are asserted (such as lax/strict
layout) we would expect something like the following line to be somewhere
in CXF source:
assertPolicy(new
QName(binding.getAlgorithmSuite().getName().getNamespaceURI(),
SPConstants.ALGO_SUITE_BASIC256));
…but we can't find such a thing anywhere. We figured maybe something like
that should be somewhere below the
AbstractCommonBindingHandler.assertAlgorithmSuite() method.
In fact, we can't find any use of the SPConstants.ALGO_SUITE_BASIC256
constant at all.
On 9/18/14 4:01 AM, "Colm O hEigeartaigh" <co...@apache.org> wrote:
>Hi,
>
>I don't see anything obviously wrong in the messages. If "Basic256" policy
>validation is failing, then it sounds like there is a mismatch somewhere
>in
>the AlgorithmSuitePolicyValidator:
>
>https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob_plain;f=rt/ws/sec
>urity/src/main/java/org/apache/cxf/ws/security/wss4j/policyvalidators/Algo
>rithmSuitePolicyValidator.java;hb=HEAD
>
>I recommend putting some breakpoints in there and see where it is
>unasserting the policy (if this in fact is the problem).
>
>Colm.
>
>On Wed, Sep 17, 2014 at 6:05 PM, Longsine, Pohl <Po...@gallup.com>
>wrote:
>
>> A member of my team wrote this to pass on to you:
>>
>> Thank you so much for your guidance so far.
>>
>> We had a chance to monitor the actual request being sent and it is being
>> signed and encrypted. Here is the request, response, modified wsdl with
>> copied policy as suggested, and the stack trace.
>>
>> https://gist.github.com/themmer/b274c9f720c4dcbaec83
>>
>> I believe this proves that JCE is functioning in our environment. Our
>> Soap handler log unfortunately happens before signing/encryption, hence
>> the confusion earlier about the request not being correct.
>>
>> One interesting thing: it is failing when the response is coming in and
>>we
>> are verifying the policy. What is happening is the AssertionInfo for
>> Basic256 policy is not asserted for some reason. See stack trace in the
>> above gist and the code snippet below for an explanation of what is
>> happening in debug mode.
>>
>> (the following is from AssertionInfoMap.java CXF 3.0.1)
>>
>> Assertion ass = (Assertion)assertion;
>> Collection<AssertionInfo> ail = getAssertionInfo(ass.getName());
>> boolean found = false;
>> for (AssertionInfo ai : ail) {
>> if (ai.getAssertion().equal(ass)) { // Expression A
>> found = true;
>> if (!ai.isAsserted() && !ass.isOptional()) { // Expression B,
>>where
>> we fail
>> // I believe Basic 256 should be asserted since it is part of
>>the
>> Algo Suite
>> errors.add(ass.getName());
>> pass = false;
>> }
>> }
>> ...
>>
>>
>>
>> We are failing here in AssertionInfoMap. "Expression A" evaluates to
>>true
>> (where the AssertionInfo is the basic 256 assertion info from inside
>> asymmetric binding). But then "Expression B" evaluates to false because
>> it is not optional and not asserted (this would be the problem I
>>believe).
>> At this point it adds the error and will fail due to this.
>>
>> Is it possible that the assertPolicy is not called for the Asymmetric
>> Binding with policies in the lower layers (Basic 256)? The asymmetric
>> binding is what is failing through the debugger when verifying the
>>policy
>> on the incoming create sequence response.
>>
>>
>>
>>
>> On 9/17/14 10:33 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>>
>> >Yes, we do have JCE in place.
>> >
>> >Sorry about not using a pastebin. Most of those are blacklisted by our
>> >draconian gateway, but I see that Github gists have somehow slipped
>> >through the cracks, so next time I'll use that.
>> >
>> >
>> >
>> >
>> >>
>> >>
>> >>On 9/16/14 6:15 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>> >>
>> >>>I'm not sure what's going on now, Pohl. It looks like the request
>> >>>message is being sent without security headers, and the server
>>responds
>> >>>anyway with a signed message. But the stack trace says the request is
>> >>>not being sent in the first place because of a security assertion:
>> >>>
>> >>>Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
>> >>>alternatives can not be satisfied:
>> >>>{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
>> >>>
>> >>>Do you have the unlimited strength cryptography extensions installed
>>in
>> >>>your JVM? I believe you need these in order to use Basic256. That
>>aside,
>> >>>it would be better if you used http://pastebin.com/ or something
>> similar
>> >>>for your files, since it's really hard to read them in the email.
>> >>>
>> >>>- Dennis
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Colm O hEigeartaigh <co...@apache.org>.
Hi,
I don't see anything obviously wrong in the messages. If "Basic256" policy
validation is failing, then it sounds like there is a mismatch somewhere in
the AlgorithmSuitePolicyValidator:
https://git-wip-us.apache.org/repos/asf?p=cxf.git;a=blob_plain;f=rt/ws/security/src/main/java/org/apache/cxf/ws/security/wss4j/policyvalidators/AlgorithmSuitePolicyValidator.java;hb=HEAD
I recommend putting some breakpoints in there and see where it is
unasserting the policy (if this in fact is the problem).
Colm.
On Wed, Sep 17, 2014 at 6:05 PM, Longsine, Pohl <Po...@gallup.com>
wrote:
> A member of my team wrote this to pass on to you:
>
> Thank you so much for your guidance so far.
>
> We had a chance to monitor the actual request being sent and it is being
> signed and encrypted. Here is the request, response, modified wsdl with
> copied policy as suggested, and the stack trace.
>
> https://gist.github.com/themmer/b274c9f720c4dcbaec83
>
> I believe this proves that JCE is functioning in our environment. Our
> Soap handler log unfortunately happens before signing/encryption, hence
> the confusion earlier about the request not being correct.
>
> One interesting thing: it is failing when the response is coming in and we
> are verifying the policy. What is happening is the AssertionInfo for
> Basic256 policy is not asserted for some reason. See stack trace in the
> above gist and the code snippet below for an explanation of what is
> happening in debug mode.
>
> (the following is from AssertionInfoMap.java CXF 3.0.1)
>
> Assertion ass = (Assertion)assertion;
> Collection<AssertionInfo> ail = getAssertionInfo(ass.getName());
> boolean found = false;
> for (AssertionInfo ai : ail) {
> if (ai.getAssertion().equal(ass)) { // Expression A
> found = true;
> if (!ai.isAsserted() && !ass.isOptional()) { // Expression B, where
> we fail
> // I believe Basic 256 should be asserted since it is part of the
> Algo Suite
> errors.add(ass.getName());
> pass = false;
> }
> }
> ...
>
>
>
> We are failing here in AssertionInfoMap. "Expression A" evaluates to true
> (where the AssertionInfo is the basic 256 assertion info from inside
> asymmetric binding). But then "Expression B" evaluates to false because
> it is not optional and not asserted (this would be the problem I believe).
> At this point it adds the error and will fail due to this.
>
> Is it possible that the assertPolicy is not called for the Asymmetric
> Binding with policies in the lower layers (Basic 256)? The asymmetric
> binding is what is failing through the debugger when verifying the policy
> on the incoming create sequence response.
>
>
>
>
> On 9/17/14 10:33 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>
> >Yes, we do have JCE in place.
> >
> >Sorry about not using a pastebin. Most of those are blacklisted by our
> >draconian gateway, but I see that Github gists have somehow slipped
> >through the cracks, so next time I'll use that.
> >
> >
> >
> >
> >>
> >>
> >>On 9/16/14 6:15 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
> >>
> >>>I'm not sure what's going on now, Pohl. It looks like the request
> >>>message is being sent without security headers, and the server responds
> >>>anyway with a signed message. But the stack trace says the request is
> >>>not being sent in the first place because of a security assertion:
> >>>
> >>>Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
> >>>alternatives can not be satisfied:
> >>>{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
> >>>
> >>>Do you have the unlimited strength cryptography extensions installed in
> >>>your JVM? I believe you need these in order to use Basic256. That aside,
> >>>it would be better if you used http://pastebin.com/ or something
> similar
> >>>for your files, since it's really hard to read them in the email.
> >>>
> >>>- Dennis
> >>>
> >
> >All information in this message is confidential and may be legally
> >privileged. Only intended recipients are authorized to use it.
>
> All information in this message is confidential and may be legally
> privileged. Only intended recipients are authorized to use it.
>
--
Colm O hEigeartaigh
Talend Community Coder
http://coders.talend.com
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
A member of my team wrote this to pass on to you:
Thank you so much for your guidance so far.
We had a chance to monitor the actual request being sent and it is being
signed and encrypted. Here is the request, response, modified wsdl with
copied policy as suggested, and the stack trace.
https://gist.github.com/themmer/b274c9f720c4dcbaec83
I believe this proves that JCE is functioning in our environment. Our
Soap handler log unfortunately happens before signing/encryption, hence
the confusion earlier about the request not being correct.
One interesting thing: it is failing when the response is coming in and we
are verifying the policy. What is happening is the AssertionInfo for
Basic256 policy is not asserted for some reason. See stack trace in the
above gist and the code snippet below for an explanation of what is
happening in debug mode.
(the following is from AssertionInfoMap.java CXF 3.0.1)
Assertion ass = (Assertion)assertion;
Collection<AssertionInfo> ail = getAssertionInfo(ass.getName());
boolean found = false;
for (AssertionInfo ai : ail) {
if (ai.getAssertion().equal(ass)) { // Expression A
found = true;
if (!ai.isAsserted() && !ass.isOptional()) { // Expression B, where
we fail
// I believe Basic 256 should be asserted since it is part of the
Algo Suite
errors.add(ass.getName());
pass = false;
}
}
...
We are failing here in AssertionInfoMap. "Expression A" evaluates to true
(where the AssertionInfo is the basic 256 assertion info from inside
asymmetric binding). But then "Expression B" evaluates to false because
it is not optional and not asserted (this would be the problem I believe).
At this point it adds the error and will fail due to this.
Is it possible that the assertPolicy is not called for the Asymmetric
Binding with policies in the lower layers (Basic 256)? The asymmetric
binding is what is failing through the debugger when verifying the policy
on the incoming create sequence response.
On 9/17/14 10:33 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>Yes, we do have JCE in place.
>
>Sorry about not using a pastebin. Most of those are blacklisted by our
>draconian gateway, but I see that Github gists have somehow slipped
>through the cracks, so next time I'll use that.
>
>
>
>
>>
>>
>>On 9/16/14 6:15 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>>
>>>I'm not sure what's going on now, Pohl. It looks like the request
>>>message is being sent without security headers, and the server responds
>>>anyway with a signed message. But the stack trace says the request is
>>>not being sent in the first place because of a security assertion:
>>>
>>>Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
>>>alternatives can not be satisfied:
>>>{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
>>>
>>>Do you have the unlimited strength cryptography extensions installed in
>>>your JVM? I believe you need these in order to use Basic256. That aside,
>>>it would be better if you used http://pastebin.com/ or something similar
>>>for your files, since it's really hard to read them in the email.
>>>
>>>- Dennis
>>>
>
>All information in this message is confidential and may be legally
>privileged. Only intended recipients are authorized to use it.
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
Yes, we do have JCE in place.
Sorry about not using a pastebin. Most of those are blacklisted by our
draconian gateway, but I see that Github gists have somehow slipped
through the cracks, so next time I'll use that.
>
>
>On 9/16/14 6:15 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>
>>I'm not sure what's going on now, Pohl. It looks like the request
>>message is being sent without security headers, and the server responds
>>anyway with a signed message. But the stack trace says the request is
>>not being sent in the first place because of a security assertion:
>>
>>Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
>>alternatives can not be satisfied:
>>{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
>>
>>Do you have the unlimited strength cryptography extensions installed in
>>your JVM? I believe you need these in order to use Basic256. That aside,
>>it would be better if you used http://pastebin.com/ or something similar
>>for your files, since it's really hard to read them in the email.
>>
>>- Dennis
>>
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Dennis Sosnoski <dm...@sosnoski.com>.
I'm not sure what's going on now, Pohl. It looks like the request
message is being sent without security headers, and the server responds
anyway with a signed message. But the stack trace says the request is
not being sent in the first place because of a security assertion:
Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
alternatives can not be satisfied:
{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
Do you have the unlimited strength cryptography extensions installed in
your JVM? I believe you need these in order to use Basic256. That aside,
it would be better if you used http://pastebin.com/ or something similar
for your files, since it's really hard to read them in the email.
- Dennis
On 09/17/2014 04:27 AM, Longsine, Pohl wrote:
> I have attempted your suggestion. I'll include the resulting WSDL below
> so you can verify that we made the suggested change correctly.
>
> Te result was an exception, also included. Does this mean I made the
> change incorrectly, or does this mean we're encountering some other
> problem? Here's the part that stands out:
>
> PolicyException: These policy alternatives can not be satisfied:
> {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
>
> More context included below...
>
>
>
>
> ----- log snippet -----
> Sep-16-2014 11:06:14.659 (main:10) FINE [gallup.soap.SoapHandlerLog_log]
> SOAP_REQUEST_:SequenceAbstractService_MSG: <soap:Envelope
> xmlns:soap="http://www.w3.org/2003/05/soap-envelope"><soap:Header><Action
> xmls="http://www.w3.org/2005/08/addressing">http://docs.oasis-open.org/ws-
> rx/wsrm/200702/CreateSequence</Action><MessageID
> xmlns="http://www.w3.org/2005/08/addressing">urn:uuid:5fc57e8c-26a0-41fe-ab
> cb-b287f42ec0db</MessageID><To
> xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com/OM
> S/V2/Diacap/Authentication.svc<To><ReplyTo
> xmlns="http://www.w3.org/2005/08/addressing"><Address>http://www.w3.org/200
> 5/08/addressing/anonymous</Address></ReplyTo></soap:Header><soap:Body><Crea
> teSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
> xmlns:ns2="http://www.w3.org/2005/08/addressing"><AcksTo><ns2:Address>http:
> //www.w3.org/2005/08/addressing/anonymous</ns2:Address></AcksTo><Expires>PT
> 0S</Expires><Offer><Identifier>urn:uuid:272af86f-7611-4979-ac98-37b37c1c437
> 2</Identifier><Endpoint><ns2:Address>http://www.w3.org/2005/08/addressing/a
> nonymous</ns2:Address></Endpoint><Expires>PT0S</Expires></Offer></CreateSeq
> uence></soap:Body></soap:Envelope>
> Sep-16-2014 11:06:15.643 (main:10) FINE [gallup.soap.SoapHandlerLog_log]
> SOAP_RESPONSE_:SequenceAbstractService_MSG: <s:Envelope
> xmlns:s="http://www.w3.org/2003/05/oap-envelope"
> xmlns:a="http://www.w3.org/2005/08/addressing"
> xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity
> -utility-1.0.xsd"><s:Header><a:Action s:mustUnderstand="1"
> u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequenceRespon
> se</a:Action><a:RelatesTo
> u:Id="_3">urn:uuid:5fc57e8c-26a0-41fe-bcb-b287f42ec0db</a:RelatesTo><o:Sec
> urity
> xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-ws-wssecurity
> -secext-1.0.xsd" s:mustUnderstand="1"><u:Timestamp
> u:Id="uuid-55763b18-a23f-462b-8478-cf533fb34db9-6"><u:Created>2014-09-16T16
> :06:15.429Z</u:Created><u:Expires>2014-09-16T16:11:15.429Z</u:Expires></u:T
> imestamp><Signature
> xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMet
> hod Algorithm="http://ww.w3.org/2001/10/xml-exc-c14n#"/><SignatureMethod
> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/><Reference
> URI="#_1"><Transforms><Transform
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMe
> thod
> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><DigestValue>rRF2MwR7t4
> ReYbhlgJNjDdP92Wo=</DigestValue></Reference><Reference
> URI="#_2"><Transforms><Transform
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMe
> thod
> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><DigestValue>NwGeJOyu6x
> HroM8K2ZrWHmCG2cw=</DigestValue></Reference><Reference
> URI="#_3"><Transforms><Transform
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMe
> thod
> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><DigestValue>FkteBiT/ux
> FcPVvMdYPN+PyT0MA=</DigestValue></Reference><Reference
> URI="#uuid-55763b18-a23f-462b-8478-cf533fb34db9-6"><Transforms><Transform
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMe
> thod
> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><DigestValue>DPM2sLwPEd
> CzBq3AnwSZX8xVcvs=</DigestValue></Reference></SignedInfo><SignatureValue>Ux
> F19HMA6N6Fe484Qd9E8zsvWSs0MEjOOvG5CrT3Wc8j4o7x8rJIT2pGb+oTXYZYEUziiwBAR+D1U
> 2kCRSZxBkZtVR80krcUgwgXhS4TkHzr0v2VYMzaYTFjXnRd4XENj70P54rmntKvK4VxgwBZqAqK
> eXpQAjCfd68QVEMocjMJm3gQsLDxU8djaTW+uQTad/FR7M9vjteHP4yv8f0kK1l7cbr9slllk0M
> 9esjTnEbfoUI7IyOrZ+zglQ5Ll70SiahgpeEiSnA28QYvEuMbTEqhvGkVhgwaBOeuGcHuJxJOnX
> Rc8sJ6I94bVXgUbG5c19mDqXZwRxuJaWaNhlFJ1Q==</SigntureValue><KeyInfo><o:Secu
> rityTokenReference><o:KeyIdentifier
> EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
> message-security-1.0#Base64Binary"
> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
> en-profile-1.0#X509SubjectKeyIdentifier">3sGLmmxRfTlQ0KgRPqZdXrhYxus=</o:Ke
> yIdentifer></o:SecurityTokenReference></KeyInfo></Signature></o:Security><
> /s:Header><s:Body u:Id="_1"><CreateSequenceResponse
> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"><Identifier>urn:uuid:a
> 0fca929-d838-4488-8581-3ba69861f0e8</Identifier><Expires>PT0S</Expires><Inc
> ompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenceBehavio
> r><Accept><AcksTo><a:Address>https://services.gallup.com/OMS/V2/Diacap/Auth
> entication.svc</a:Address></AcksTo></Accept></CreateSequenceResponse></s:Bo
> dy></s:Envelope>
> Sep-16-2014 11:06:15.668 (main:10) INFO
> [gallup.guice.TimedMethodInterceptor_invoke] TIMER
> AuthenticationDaoDiacapJaxWsImpl.validateLogin 1991ms F
> gallup.org.oms.OmsDaoException: Problem calling OMS Authentication web
> service.
> at
> gallup.org.oms.authentication.AuthenticationDaoDiacapJaxWsIml.validate(Aut
> henticationDaoDiacapJaxWsImpl.java:168)
> at
> gallup.org.oms.authentication.AuthenticationDaoDiacapJaxWsImpl.validateLogi
> n(AuthenticationDaoDiacapJaxWsImpl.java:63)
> at
> gallup.guice.TimedMethodInterceptor.invoke(TimedMethodInterceptor.java:49)
> at
> gallup.org.oms.authentication.AuthenticationDaoTestBase.testalidateLogin_S
> uccess(AuthenticationDaoTestBase.java:48)
> at
> gallup.org.oms.authentication.AuthenticationDaoDiacapJaxsImplManualTest.te
> stValidateLogin_Success(AuthenticationDaoDiacapJaxWsImplManualTest.java:45)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:3
> 9)
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImp
> .java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at
> org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod
> .java:45)
> at
> org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.
> java:15)
> at
> org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.j
> ava:42)
> at
> org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.ja
> va:20)
> at
> org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:2
> 8)
> at org.junit.runners.ParentRunner.runLeaf(ParentRunner.java:263)
> at
> org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.ja
> va:68)
> at
> org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.ja
> va:47)
> at org.junit.runners.ParentRunner$3.run(ParentRunner.java:231)
> at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:60)
> at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:229)
> at org.junit.runners.ParentRunner.access$000(ParentRunner.java:50)
> at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:222)
> at
> org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:2
> 8)
> at org.junit.runners.ParentRunner.run(ParentRunner.java:300)
> at org.junit.runner.JUnitCore.run(JUnitCore.java:157)
> at
> com.intellij.junit4.JUnit4IdeaTestRunner.startRunnerWithArgs(JUnit4IdeaTest
> Runner.java:74)
> at
> com.intellij.rt.execution.junit.JUnitStarter.prepareStreamsAndStart(JUnitSt
> arter.java:211)
> at com.intellij.rt.execution.junit.JUnitStater.main(JUnitStarter.java:67)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at
> sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:3
> 9)
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImp
> l.java:25)
> at java.langreflect.Method.invoke(Method.java:597) at com.intellij.rt.execution.application.AppMain.main(AppMain.java:134)
> Caused by: javax.xml.ws.soap.SOAPFaultException: Failed to send RM
> protocol message
> {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
> at org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:159)
> at com.sun.proxy.$Proxy71.validate(Unknown Source)
> at
> gallup.org.oms.authentication.AuthenticationDaoDiacapJaxWsImpl.validate(Aut
> henticationDaoDiacapJaxWsImpl.java:151)
> ... 32 more
> Caused by: org.apache.cxf.ws.rm.RMException: Failed to send RM protocol
> message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
> at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:323)
> at org.apache.cxf.ws.rm.Proxy.createSequence(Proxy.java:199)
> at org.apache.cxf.ws.rm.RMManager.getSequence(RMManager.java:472)
> at
> org.apache.cxf.ws.rm.RMCaptureOutInterceptor.handle(RMCaptureOutInterceptor
> .java:156)
> at
> org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMIntercep
> tor.java:83)
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChai
> n.java:307)
> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClentImpl.java:514)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:326)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:279)
> at org.apache.cxf.frontend.ClientProxy.invokeSync(ClientProxy.java:96)
> at org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:137)
> ... 34 more
> Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
> alternatives can not be satisfied:
> {http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
> at
> org.apache.cxf.ws.policy.AssertionInfoMap.checkEffectivePolicy(AssertionInf
> oMap.java:179)
> at
> org.apache.cxf.ws.policy.PolicyVerificationInInterceptor.handle(PolicyVerif
> icationInInterceptor.java:102)
> at
> org.apache.cxf.ws.policy.AbstractPolicyInterceptor.handleMessage(AbstractPo
> licyInterceptor.java:44)
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChai
> n.java:307)
> at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
> at
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleRespons
> eInternal(HTTPConduit.java:1636)
> at
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleRespons
> e(HTTPConduit.java:1525)
> at
> org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(HTTPCon
> duit.java:1330)
> at org.apache.cxf.transport.AbstractConduit.close(AbstractConduit.java:56)
> at org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:638)
> at
> org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInte
> rceptor.handleMessage(MessageSenderInterceptor.java:62)
> at
> org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChai
> n.java:307)
> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
> at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:313)
> ... 45 more
>
>
>
>
>
>
>
> ----- local modified WSDL -----
>
> <?xml version="1.0" encoding="utf-8"?>
> <wsdl:definitions name="Authentication"
> targetNamespace="http://tempuri.org/"
> xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>
> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-20001-wss-wssecuri
> ty-utility-1.0.xsd"
> xmlns:wsa10="http://www.w3.org/2005/08/addressing"
> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
> xmlns:tns="http://tempuri.org/"
> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
> >
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <wsrmp:RMAssertion
> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
> <wsp:Policy>
> <wsrmp:DeliveryAssurance>
> <wsp:Policy>
> <wsrmp:ExactlyOnce/>
> <wsrmp:InOrder/>
> </wsp:Policy>
> </wsrmp:DeliveryAssurance>
> </wsp:Policy>
> <netrmp:InactivityTimeout Milliseconds="600000"
>
> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"/>
> <netrmp:AcknowledgmentInterval Milliseconds="200"
>
> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"/>
> </wsrmp:RMAssertion>
> <sp:AsymmetricBinding
> xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
> <wsp:Policy>
> <sp:InitiatorToken>
> <wsp:Policy>
> <sp:X509Token
>
> sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/
> IncludeToken/AlwaysToRecipient">
> <wsp:Policy>
> <sp:WssX509V3Token10/>
> </wsp:Policy>
> </sp:X509Token>
> </wsp:Policy>
> </sp:InitiatorToken>
> <sp:RecipientToken>
> <wsp:Policy>
> <sp:X509Token
>
> sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/
> IncludeToken/Never">
> <wsp:Policy>
> <sp:WssX509V3Token10/>
> </wsp:Policy>
> </sp:X509Token>
> </wsp:Policy>
> </sp:RecipientToken>
> <sp:AlgorithmSuite>
> <wsp:Policy>
> <sp:Basic256/>
> </wsp:Policy>
> </sp:AlgorithmSuite>
> <sp:Layout>
> <wsp:Policy>
> <sp:Lax/>
> </wsp:Policy>
> </sp:Layout>
> <sp:IncludeTimestamp/>
> <sp:OnlySignEntireHeadersAndBody/>
> </wsp:Policy>
> </sp:AsymmetricBinding>
> <sp:Wss10
> xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
> <wsp:Policy>
> <sp:MustSupportRefKeyIdentifier/>
> <sp:MustSupportRefIssuerSerial/>
> </wsp:Policy>
> </sp:ss10>
> <sp:Trust13
> xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
> <wsp:Policy>
> <sp:MustSupportIssuedTokens/>
> <sp:RequireClientEntropy/>
> <sp:RequireServerEntropy/>
> </wsp:Policy>
> </sp:Trust13>
> <sp:TransportBinding
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:TransportToken>
> <wsp:Policy>
> <sp:HttpsToken
> RequireClientCertificate="false"/>
> </wsp:Policy>
> </sp:TransportToken>
> <sp:AlgorithmSuite>
> <wsp:Policy>
> <sp:Basic256/>
> </wsp:Policy>
> </sp:AlgorithmSuite>
> <sp:Layout>
> <wsp:Policy>
> <sp:Strict/>
> </wsp:Policy>
> </sp:Layout>
> <sp:IncludeTimestamp/>
> </wsp:Policy>
> </sp:TransportBinding>
> <wsaw:UsingAddressing/>
> <sp:SignedParts
> xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
>
> location="https://services.gallup.com/OMS/V2/Diacap/Authentication.svc?wsdl
> =wsdl0"/>
> <wsdl:types/>
> <wsdl:binding name="AuthenticationDiacapEndpoint"
> type="i0:IAuthentication">
> <wsp:PolicyReference URI="#AuthenticationDiacapEndpoint_policy"/>
> <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
> <wsdl:operation name="Activate">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activate"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="ChangePassword">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ChangePas
> sword"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operaton>
> <wsdl:operation name="Create">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Expire">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetAnswers">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAnswer
> s"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetPolicy">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPolicy
> "
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetQuestions">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQuesti
> ons"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetUsernames">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUserna
> mes"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Reset">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Update">
> <soap12:opeation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Validate">
> <soap12:operation
> soapAction="http://scheas.gallup.com/oms/2010/10/IAuthentication/Validate"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="ValidateEmail">
> <soap12:operatin
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ValidateE
> mail"
> style="document"/>
> <wsdl:input>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> </wsdl:binding>
> <wsdl:service name="Authentication">
> <wsdl:port name="AuthenticationDiacapEndpoint"
> binding="tns:AuthenticationDiacapEndpoint">
> <soap12:address
> location="https://services.gallup.com/OMS/V2/Diacap/Authentication.svc"/>
> <wsa10:EndpointReference>
>
> <wsa10:Address>https://services.gallup.com/OMS/V2/Diacap/Authentication.svc
> </wsa10:Address>
> <Identity
> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
> <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
> <X509Data>
> <X509Certificate>
>
> MIIFFjCCA/6gAwIBAgIETCKptDANBgkqhkiG9w0BAQUFADCBsTELMAkGA1UEBhMCVVMxFjAUBgN
> VBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0Lm5ldC9ycGEgaXMgaW5jb3
> Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMWKGMpIDIwMDkgRW50cnVzdCwgSW5jLjEuM
> CwGA1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxQzAeFw0xNDA0MTAx
> MzIyMjBaFw0xODA2MTAxNjQ2NDdaMF0xCzAJBgNVBAYTAlVTMREwDwYDVQQIEwhOZWJyYXNrYTE
> OMAwGA1UEBxMFT21haGExFDASBgNVBAoTC0dhbGx1cCBJmMuMRUwEwYDVQQDFAwqLmdhbGx1cC
> 5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe9YLdVUrFmSBn4K8bgDOBwi5+F
> sCT6/hUcuuJkyYqNIHWXkcWFxFxxbZeaocpm2oyI3sZU2FzX+NOMjokQNaLUJQZzwdTO9Ir7C/v
> IhYd+kWlH176F+NAPQ+SfcbAAOSIEFiJSW4sVqEeOCeP1majyAhFzlKub8/IhjzWMeuHDj/AJKt
> ZjH3F5ICexAUyi4sJsShHSXTivr6+vowwLvvoI/VAhAJr3PaoW7NJiUZSFfH+Tott6CtSBOUx2h
> jHP4K19boRg3zcSdWzqFdaDLBWZjVmt/FZeynJPOsZVMksrrbIjOFkqvfwpwdF/WKOMS/jctniL
> IBdH343pwBpJLWjAgMBAAGjggGHMIIBgzALBgNVHQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH
> AwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly9jcmwuZW50cnVzdC5uZXQvbGV
> 2ZWwxYy5jcmwwZAYIKwYBBQUHAQEEWDBWMCMGCCsGAQUFBzABhhdodHRwOi8vb2NzcC5lbnRydX
> N0Lm5ldDAvBggrBgEFBQcwAoYjaHR0cDovL2FpYS5lbnRydXN0Lm5ldC8yMDQ4LWwxYy5jZXIwS
> gYDVR0gBEMwQTA1BgkqhkiG9n0HSwIwKDAmBggrBgEFBQcCARYaaHR0cDovL3d3dy5lbnRydXN0
> Lm5ldC9ycGEwCAYGZ4EMAQICMCMGA1UdEQQcMBqCDCouZ2FsbHVwLmNvbYIKZ2FsbHVwLmNvbTA
> fBgNVHSMEGDAWgBQe8auJBvhJDwEzd+4Ueu4ZfJMoTTAdBgNVHQ4EFgQU3sGLmmxRfTlQ0KgRPq
> ZdXrhYxuswCQYDVR0TBAIwADANBgkqhkiG9w0BAQUFAAOCAQEAX1rcxlCxbnJ7/ee43Uy20Hjnp
> IadcSOvqUp8N6PPkVLO1T6W0GFezJfxFl737PcjOBU8hBmGDDTt1SUDEfqhmJLXsMk4VN6OJbDZ
> Ul/WJHOg9eLbBuxR/CEdqxYjkCBy0YTOoxuJs8Uni19lFCuipu+p+t6hYSXSaYy8S/xaYUuRib
> m8Hfn0/Ks7w/UGkYvbivmD3AZtpUqqT9xNa/rmE/U+IoKFpSNxXQw7d0Tp8QuvI4sL37bDT3lE0
> wYVb2jvkYWr6ASMpO7gAMNyPUeKLtcIStAAu2JzTRa8i+UfYhBuJnBRAdhyUg4Wie32nhb/H6qp
> HUICvm1mXSkGla9ng==
> </X509Certificate>
> </X509Data>
> </KeyInfo>
> </Identity>
> </wsa10:EndpointReference>
> </wsdl:port>
> </wsdl:service>
> </wsdl:definitions
>
>
>
>
> On 9/15/14 6:38 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>
>> Hi Pohl,
>>
>> Sorry the mirage faded away. :-(
>>
>> The problem with your policy (at least from the standpoint of the CXF
>> code) is that it's in a bunch of separate pieces. That adds a lot of
>> bulk to the WSDL, but otherwise is not normally a problem - the
>> different pieces are applied in different places and at different
>> levels, and it all works out to be the same combination of policy
>> applied throughout to all the messages exchanged by your application.
>> But the RM code operates as an add-on to your application, so it doesn't
>> get covered by all these policies.
>>
>> In particular, RM is seeing the AuthenticationDiacapEndpoint_policy
>> policy because that's referenced from the <wsdl:binding> element that
>> contains all the operations, but does not see any of the Input or output
>> polices that are only referenced by specific messages. That means RM
>> knows it needs to use security with a SymmetricBinding, but doesn't know
>> that it should be signing the RM messages bodies and Addressing headers,
>> as WCF apparently expects.
>>
>> Fortunately, these Input and output policies all appear to be the same,
>> so if you just copy the <sp:SignedParts> and <sp:EncryptedParts>
>> elements from one of these and add these to the
>> AuthenticationDiacapEndpoint_policy it should (hopefully) work out
>> correctly. Once you've done that you could even get rid of all the Input
>> and output policies and the references to them, but leaving them in
>> should not do any harm.
>>
>> Regards,
>>
>> - Dennis
>>
>> On 09/16/2014 09:13 AM, Longsine, Pohl wrote:
>>> Dan & Dennis,
>>>
>>> The last 3 weeks were a blissful mirage, appearing like we had been
>>> given
>>> a reprieve in getting this particular WSDL configuration on the WCF
>>> service to work. Today I learned we have to make this work.
>>>
>>> Dan, I hav a question about your suggestion below. How literally
>>> should
>>> I take the word "move"? Should the WSDL no longer have those assertions
>>> within
>>> the methods themselves, or should I merely copy them so that they appear
>>> both within the methods and within AuthenticationDiacapEndpoint_policy?
>>>
>>> On 8/14/14 9:09 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>>
>>>> On Aug 14, 2014, at 4:58 PM, Dennis Sosnoski <dm...@sosnoski.com> wrote:
>>>>
>>>>> Hi Paul,
>>>>>
>>>>> I think I see what's going on here. Your
>>>>> AuthenticationDiacapEndpoit_policy which specifies the use of RM and
>>>>> AsymmetricBinding doesn't set anything to be signed, instead leaving
>>>>> that to the individual input andoutput policies (such as
>>>>> AuthenticationDiacapEndpoint_Activate_Input_policy). But because RM
>>>>> isn't using one of those specified inputs or outputs i doesn't get a
>>>>> policy that says the body should be signed.
>>>>>
>>>>> Dan, how do you think this should be handled? We obviously want to be
>>>>> compatible with WCF, but I'm not sure how it should be implemented.
>>>> Hmm…. that’s a very good point. I’m not sure either. If it’ picking
>>>> up policies from the Input, and with that wsdl, the CreateSequence call
>>>> could have different security requirements depending on which as the
>>>> first operation you were trying to call. I cannot imaging that being a
>>>> good thing. Not even sure how we could implement that. On the client
>>>> side, we could use the current operation to get the operation policy
>>>> and
>>>> use it. On the service side, no idea as we’d haveNO idea whic
>>>> operation was the intended target.
>>>>
>>>> The simple workaround if you want to try something is to copy the wsdl
>>>> locally and update the AuthenticationDiacapEndpoint_policy to move the
>>>> sp:SignedParts and sp:EncryptedParts assertions directly into it. That
>>>> SHOULD work.
>>>>
>>>> Dan
>>>>
>>>>
>>>>
>>>>> - Dennis
>>>>>
>>>>> On 08/15/2014 04:30 AM, Longsine, Pohl wrote:
>>>>>> On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>>>>>
>>>>>>> The policy has a <sp:EncryptSignature/> assertion in it so I would
>>>>>>> have expected the signatures to be encrypted. The CXF request has
>>>>>>> two
>>>>>>> ncryptedData elements which MAY correspond to the two Signatures
>>>>>>> that
>>>>>>> the .NET client is sending. No really sure though as I don¹t know
>>>>>>> what
>>>>>>> is in the encrypted data.
>>>>>>>
>>>>>>> You could try removing that rom the policy and see if CXF does
>>>>>>> something
>>>>>>> different. At the very least, it may show the Signatures.
>>>>>>>
>>>>>>> That said, there is still an issue. I don¹t see a wsu:Id on the
>>>>>>> soap:Body. Thus, it doesn¹t look like CXF is signing the Body like
>>>>>>> it
>>>>>>> should be. Actully, I don¹t see the Id on the and of the WS-A
>>>>>>> headers
>>>>>>> either. It would be good to see wha CXF is signing. Or at least
>>>>>>> hat
>>>>>>> is in the encrypted data.
>>>>>>>
>>>>>>> Dan
>>>>>> Dan, I really appreciate your attention here. Thank you.
>>>>>>
>>>>>> I askd the .NET team to make the specific change that you requested
>>>>>> (removing the EncryptSignature assertio from their WSDL). They must
>>>>>> hae
>>>>>> not been able to do such a small, targeted change. Instead, the made
>>>>>> the
>>>>>> following change, which had the side-effect of the EncryptSignature
>>>>>> no
>>>>>> longer beng there. That said, a few other small things in the WSDL
>>>>> also
>>>>>> changed, perhaps not in a way that matters For reference, here's
>>>>>> what
>>>>>> they say they changed:
>>>>>>
>>>>>>> I¹ve changed the message security versio to be an older version
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> (WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSec
>>>>>>> ui
>>>>>>> ty
>>>>>>> Policy11BasicSecurityProfile10
>>>>>>> instead of
>>>>>>>
>>>>>>>
>>>>>>> WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecur
>>>>>>> it
>>>>>>> yP
>>>>>>> olicy11)
>>>>>> Now our soap request has Signature element in it, although the id
>>>>>> attributes that you noted were absent ar sill not there. The end
>>>>>> result,
>>>>>> from a soap fault perspective, is the same.
>>>>>>
>>>>>> Doe this help you analyze what is going wrong here?
>>>>>>
>>>>>>
>>>>>>
>>>>>> ----- CXF SOAP REQUEST -----
>>>>>>
>>>>>> soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>>>>>> <soap:Header
>>>>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>>>>>> http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>>>>>> </Action>
>>>>>> <MessageID
>>>>>>
>>>>>>
>>>>>> xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-498
>>>>>> 4-
>>>>>> 86
>>>>>> 28-c4298b0fa3b1
>>>>>> </MessageID>
>>>>>> <To
>>>>>>
>>>>>>
>>>>>> xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.c
>>>>>> om
>>>>>> /OM
>>>>> S/V2/Diacap/Autentication.svc
>>>>>> </To>
>>>>>> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>>>>>>
>>>>>> <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
>>>>>> </ReplyTo>
>>>>>> <wss:Security
>>>>>>
>>>>>>
>>>>>> xmlns:wsse="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wss
>>>>>> e
>>>>>> cur
>>>>>> ity-secext-1.0.xsd"
>>>>>>
>>>>>>
>>>>>>
>>>>>> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wss
>>>>>> ec
>>>>>> uri
>>>>>> ty-utility-1.0.xsd"
>>>>>> soap:mustUnderstand=true">
>>>>>> <wsu:Timestamp
>>>>>> wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
>>>>>> <wsu:Created>2014-08-14T6:12:04.392Z</wsu:Created>
>>>>>> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
>>>>>> </wsu:Timestamp>
>>>>>> <wsse:BinarySecurityToken
>>>>>>
>>>>>>
>>>>>>
>>>>>> EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-s
>>>>>> oa
>>>>>> p-
>>>>>> message-security-1.0#Base64Binary"
>>>>>>
>>>>>>
>>>>>>
>>>>>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x50
>>>>>> 9-
>>>>>> tok
>>>>>> en-profle-1.0#X509v3"
>>>>>>
>>>>>> wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">
>>>>>>
>>>>>>
>>>>>>
>>>>>> MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRMwEQYKCZImiZP
>>>>>> yL
>>>>>> GQ
>>>>>>
>>>>>>
>>>>>> BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbT
>>>>>> ET
>>>>>> MB
>>>>>>
>>>>>>
>>>>>> EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxC
>>>>>> zA
>>>>>> JB
>>>>>>
>>>>>>
>>>>>> gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEEDzANBgNVBAoTB
>>>>>> k
>>>>>> dB
>>>>>>
>>>>>>
>>>>>> TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAxQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0
>>>>>> GC
>>>>>> Sq
>>>>>>
>>>>>>
>>>>>> GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCk87lbdHZ5yV1y9LTH31n2FflLym28QRBSc9cRD
>>>>>> B
>>>>>> Br
>>>>>>
>>>>>>
>>>>>> dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoG
>>>>>> lH
>>>>>> pI
>>>>>>
>>>>>>
>>>>>> T1sZh9xSe14mvyrn66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia
>>>>>> 9
>>>>>> NL3
>>>>>>
>>>>>>
>>>>>> Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWPen3JT3V1vHdPRjU2b7tsx1wW1S00/gn
>>>>>> J1
>>>>>> fC
>>>>>>
>>>>>>
>>>>>> d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGl
>>>>>> OE
>>>>>> VF
>>>>>>
>>>>>>
>>>>>> OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObO
>>>>>> j/
>>>>>> bi
>>>>>>
>>>>>>
>>>>>> UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6
>>>>>> c6
>>>>>> XJ
>>>>>>
>>>>>>
>>>>>> /09MjATev+wkGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/I
>>>>>> yb
>>>>>>
>>>>>> iIG6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/
>>>>>> 7H
>>>>>> kQf2bY
>>>>>>
>>>>>>
>>>>>> XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEF
>>>>>> LL
>>>>>> Js
>>>>>>
>>>>>>
>>>>>> ezsj6lSjcifjxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7mF9NMIIB
>>>>>> Dw
>>>>>> YD
>>>>>>
>>>>>>
>>>>>> VR0fBIIBBjCCAQIwgf+ggfygfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9
>>>>>> h
>>>>>> bXN
>>>>>>
>>>>>>
>>>>>> 1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ0
>>>>>> 49
>>>>>> Q2
>>>>>>
>>>>> 9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc
>>>>> 3
>>>>>> Q/Y
>>>>>>
>>>>>>
>>>>>> mFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vW1zdWJjY
>>>>>> T
>>>>>> Eu
>>>>>>
>>>>>>
>>>>>> bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBg
>>>>>> EF
>>>>>> BQc
>>>>>>
>>>>>>
>>>>>> BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bXN1YmNhMSxDTj1BSU
>>>>>> Es
>>>>>> Q0
>>>>>>
>>>>>>
>>>>>> 49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlv
>>>>>> bi
>>>>>> xEQ
>>>>>>
>>>>>>
>>>>>> z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZ
>>>>>> pY
>>>>>> 2F0
>>>>>>
>>>>>>
>>>>>> aW9uQXV0aG9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vbhbXN1YmNhMS5ub2FtLmdhbGx1
>>>>>> c
>>>>>> C5
>>>>>>
>>>>>>
>>>>>> jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExK
>>>>>> DQ
>>>>>> pLm
>>>>>>
>>>>>>
>>>>>> NydDAhBgkrBgEEAYI3FAIEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwC
>>>>>> wY
>>>>>> DV
>>>>>>
>>>>>>
>>>>>> R0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8
>>>>>> lU
>>>>> qdM
>>>>>> eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm
>>>>>> 3u
>>>>>> Oj
>>>>>>
>>>>>>
>>>>>> +SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO
>>>>>> 9q
>>>>>> CF5
>>>>>> n0mItQMmTb
>>>>>> </wsse:BinarySecurityToken>
>>>>>> <ds:Signatur
>>>>>> xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>>>>>> Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
>>>>>> <ds:SignedInfo>
>>>>>> <ds:CanonicalizationMethod
>>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>>>>> <ec:InclusiveNamespaces
>>>>>> xmlns:ec="http://www.w3.org/001/10/xml-exc-c14n#" PrefixList="soap"/>
>>>>>> </ds:CanonicalizationMethod>
>>>>>> <ds:SignatureMethod
>>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
>>>>>> <ds:Reference
>>>>>> URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
>>>>>> <ds:Transforms>
>>>>>> <ds:Transform
>>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>>>>> <ec:InclusiveNamespaces
>>>>>> xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
>>>>>>
>>>>>> PrefixList="wsse
>>>>>> soap"/>
>>>>> </ds:Transform>
>>>>>> </d:Transforms>
>>>>>> <ds:DigestMethod
>>>>>> Algorith="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>>>>>>
>>>>>> <ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
>>>>>> </ds:Reference
>>>>>> </ds:SignedInfo>
>>>>>> <ds:SignaturValue>
>>>>>>
>>>>>>
>>>>>>
>>>>>> KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9
>>>>>> iI
>>>>>> /AF
>>>>>>
>>>>>>
>>>>>> 9gTWGtOrCB7nrlE3f8bOLxt3nggokrD8v8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3J
>>>>>> rF
>>>>>> jY3
>>>>>>
>>>>>>
>>>>>> /yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s
>>>>>> +M
>>>>>> MP
>>>>>>
>>>>>>
>>>>>> jnmD9E7SM9kCedPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbc
>>>>>> o6
>>>>>> RS
>>>>>>
>>>>>>
>>>>>> SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKc
>>>>>> du
>>>>>> vBW
>>>>>>
>>>>>>
>>>>>> 8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WK
>>>>>> uU
>>>>>> CwI
>>>>>>
>>>>>>
>>>>>> Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfak
>>>>>> LW
>>>>>> SR
>>>>>>
>>>>>>
>>>>>> tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7x
>>>>>> sT
>>>>>> ofa
>>>>>>
>>>>>>
>>>>>> fgcSkaBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3Moq
>>>>>> T
>>>>>> oT
>>>>>> d6JzuGRw=
>>>>>> </ds:SignatureValue>
>>>>>> <ds:KeyInfo
>>>>>> Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
>>>>>> <wsse:SecurityTokenReference
>>>>>> wsu:Id="STR-51789ea2-2fa3-425ea31b-bfb9f1e49787">
>>>>>> <wsse:Referece
>>>>>> URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>>>>>>
>>>>>>
>>>>>>
>>>>>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x50
>>>>>> 9-
>>>>>> tok
>>>>>> en-profile-1.0#X509v3"/>
>>>>>> /wsse:SecurityTokenReference>
>>>>>> </ds:KeyInfo>
>>>>>> </ds:Signature>
>>>>>> </wsse:Security>
>>>>>> </soap:Header>
>>>>>> <sapBody>
>>>>>> <CreateSequence
>>>>>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>>>>>>
>>>>>> xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
>>>>>>
>>>>>>
>>>>>>
>>>>>> <ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Addre
>>>>>> ss
>>>>>> </AcksTo>
>>>>>> <Expires>PT0S</Expires>
>>>>>> <Offer>
>>>>>>
>>>>>>
>>>>>> <Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
>>>>>> <Endpoint>
>>>>>>
>>>>>>
>>>>>>
>>>>>> <ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Addres
>>>>>> s>
>>>>>> </Endpoint>
>>>>>> <Expires>PT0S</Expires>
>>>>>> </Offer>
>>>>>> </CreateSequence>
>>>>>> </soap:Body>
>>>>>> </soap:Envelope>
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> ----- .NET SOAP REQUEST -----
>>>>>>
>>>>>> <?xml version="1.0" encoding="utf-8"?>
>>>>>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
>>>>>> xlns:a="http://www.w3.org/2005/08/addressing"
>>>>>>
>>>>>>
>>>>>> xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecu
>>>>>> ri
>>>>>> ty
>>>>>> -utility-1.0.sd">
>>>>>> <s:Header>
>>>>>> <a:Action s:mustUnderstand="1"
>>>>>>
>>>>>>
>>>>>> u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence<
>>>>>> /a
>>>>>> :Ac
>>>>>> tion>
>>>>>> <a:MessageID
>>>>>> uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
>>>>>> <ActivityId
>>>>>> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
>>>>>>
>>>>>>
>>>>>> CorrelationId="bcd3db57-178d48a-bf82-e2c8df52dd37">22aecc77-9a7c-49d9-
>>>>>> 9
>>>>>> 1d
>>>>>> 7-9533bf1599d7</ActivityId>
>>>>>> <a:To s:mustUnderstand="1"
>>>>>>
>>>>>>
>>>>>> u:Id="_4">http://ordinsjx75w7.nom.gallup.com/oms.wcf/Authentication.sv
>>>>>> c
>>>>>> </
>>>>>> a:To>
>>>>>> <o:Security
>>>>>>
>>>>>>
>>>>>> xmlns:o="http://docs.oasis-open.org/wss/204/01/oasis-200401-wss-wssecu
>>>>>> r
>>>>>> ity
>>>>>> -secext-1.0xsd" s:mustUnderstand="1">
>>>>>> <u:Timestamp
>>>>>> u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>>>>>
>>>>>> <u:Created>2014-08-14T15:56:02.747Z</u:Created>
>>>>>>
>>>>>> <u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
>>>>>> </u:Timestamp>
>>>>>> <o:BinarySecurityToken
>>>>>> uId="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
>>>>>>
>>>>>>
>>>>>> ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509
>>>>>> -t
>>>>>> ok
>>>>>> en-profile-1.0#X509v3"
>>>>>>
>>>>>>
>>>>>> EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-
>>>>>> so
>>>>>> ap-
>>>>>>
>>>>>>
>>>>>> message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTAN
>>>>>> Bg
>>>>>> kq
>>>>>>
>>>>>>
>>>>>> hkiG9w0BAQUFADBYMRMwEYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2F
>>>>>> s
>>>>>> bHV
>>>>>>
>>>>>>
>>>>>> wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbN1YmNhMTAeFw0xNDA0MD
>>>>>> Iy
>>>>>> MD
>>>>>>
>>>>>>
>>>>>> E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJ
>>>>>> Ko
>>>>>> ZIh
>>>>>>
>>>>>>
>>>>>> vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uL4HPKuSi2Ocl
>>>>>> d
>>>>>> 3f
>>>>>>
>>>>>>
>>>>>> DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDrGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9
>>>>>> Ta
>>>>>> PrI
>>>>>>
>>>>>>
>>>>>> 61b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkrBg
>>>>>> EE
>>>>>> AY
>>>>>>
>>>>>>
>>>>>> I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1Ud
>>>>>> Dw
>>>>>> QEA
>>>>>>
>>>>>>
>>>>>> wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq
>>>>>> 4W
>>>>>> Xm0
>>>>>>
>>>>>>
>>>>>> +Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6B/KCB+YaBtmxkYXA6L8vQ049bm9h
>>>>>> b
>>>>>> XN
>>>>>>
>>>>>>
>>>>>> 1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2a
>>>>>> WN
>>>>>> lcy
>>>>>>
>>>>>>
>>>>>> xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlm
>>>>>> aW
>>>>>> Nhd
>>>>>>
>>>>>>
>>>>>> GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW5
>>>>>> h
>>>>>> j5o
>>>>>>
>>>>>>
>>>>>> dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2
>>>>>> Ex
>>>>>> KDM
>>>>>>
>>>>>>
>>>>>> pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DT
>>>>>> j1
>>>>>> ub2
>>>>>>
>>>>>>
>>>>>> Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNl
>>>>>> cy
>>>>>> xDT
>>>>>>
>>>>>>
>>>>>> j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29
>>>>>> ia
>>>>>> mVj
>>>>>>
>>>>>>
>>>>>> dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2
>>>>>> Ft
>>>>>> c3V
>>>>>>
>>>>>>
>>>>>> iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsd
>>>>>> XA
>>>>>> uY2
>>>>>>
>>>>>>
>>>>>> 9tX25vYW1zdWJjYTEoNCkuY3J0MA0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyN
>>>>>> MY
>>>>>> gga
>>>>>>
>>>>>>
>>>>>> vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2Bz
>>>>>> Fl
>>>>>> 0xi
>>>>>>
>>>>>>
>>>>>> 16WbmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28
>>>>>> Tj
>>>>>> </o
>>>>>> :BinarySecurityToken>
>>>>>> <Signature
>>>>>> xmlns="http://www.w3.org/2000/09/xmldsig#">
>>>>>> <SignedInfo>
>>>>>> <CanonicalizationMethod
>>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>>> <SignatureMethod
>>>>>> Algorithm="http://www.w3.org/2000/09/xmdsig#rsa-sha1"/>
>>>>>> <Reference URI="#_1">
>>>>>> <Transforms>
>>>>> <Transform
>>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>>> </Transforms>
>>>>>> <DigestMethod
>>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>>
>>>>>> <DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
>>>>>> </Reference>
>>>>>> <Reference URI="#_2">
>>>>>> <Transforms>
>>>>>> <Transform
>>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>>> </Transforms>
>>>>>> <DigestMethod
>>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>>
>>>>>> <DigestValue>/y/ysxeFBIlVOQK860fYd641KA=</DigestValue>
>>>>>> </Reference>
>>>>>> <Referece URI="#_3">
>>>>>> <Transforms>
>>>>>> <Transform
>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>>> </Transforms>
>>>>>> <DigestMethod
>>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>>
>>>>>> <DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
>>>>>> </Reference>
>>>>>> <Reference URI="#_4">
>>>>>> <Transforms>
>>>>>> <Transform
>>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>>> </Transforms>
>>>>>> <DigestMethod
>>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>>
>>>>>> <DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
>>>>>> </Reference>
>>>>>> <Reference
>>>>>> URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>>>>> <Transforms>
>>>>>> <Transform
>>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>>> </Transforms>
>>>>>> <DigestMethod
>>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>>
>>>>>> <DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
>>>>>> </Reference>
>>>>>> </SignedInfo>
>>>>>>
>>>>>>
>>>>>> <SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0
>>>>>> O
>>>>>>
>>>>>>
>>>>>> lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+Xn
>>>>>> Rp
>>>>>> Ny5
>>>>>> ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
>>>>>> <KeyInfo>
>>>>>> <o:SecurityTokenReference>
>>>>>> <o:Reference
>>>>>>
>>>>>>
>>>>>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x50
>>>>>> 9-
>>>>>> tok
>>>>>> en-profile-1.0#X509v3"
>>>>>> URI="#uuid-40c54dbb369c-4ce8-8b8d-6fcfcd03dc29-2"/>
>>>>>> </o:SecurityTokenReference>
>>>>>> </KeyInfo>
>>>>>> </Signature>
>>>>>> </o:Security>
>>>>>> </s:Header>
>>>>>> <s:Body u:Id="_1">
>>>>>> <CreateSequence
>>>>>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
>>>>>> <AcksTo>
>>>>>>
>>>>>> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
>>>>>> </AcksTo>
>>>>>> <Offer>
>>>>>>
>>>>>>
>>>>>> <Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
>>>>>> <Endpoint>
>>>>>>
>>>>>> <a:Address>http://www.w3.org/2005/08/addrssing/anonymous</a:Address>
>>>>>> </Endpoint>
>>>>>>
>>>>>>
>>>>>> <IncompleteSequenceBehavior>DiscardFollowingFirstap</IncompleteSequenc
>>>>>> eBehavior>
>>>>>> </Offer>
>>>>>> </CreateSequence>
>>>>>> </s:Body>
>>>>>> </s:Envelope>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> ----- WSDL -----
>>>>>>
>>>>>> <?xml version="1.0" encoding="utf-8"?>
>>>>>> <wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>>>>>> xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>>>>>> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>>>>>>
>>>>>>
>>>>>> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wss
>>>>>> ec
>>>>>> uri
>>>>>> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/ddressing"
>>>>>> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>>>>>> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>>>>>> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>>>>>> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>>>>>> xmlns:wsa="htp://schemas.xmlsoap.org/ws/2004/08/addressing"
>>>>>> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>>>>>> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>>>>>> xmlns:tns="http://tempuri.org/"
>>>>>> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>>>>>> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>>>>>> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>>>>>> name="Authentication" targetNamespace="http://tempuri.org/">
>>>>>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <wsrmp:RMAssertion
>>>>>> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <wsrmp:DeliveryAssurance>
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <wsrmp:ExactlyOnce/>
>>>>>>
>>>>>> <wsrmp:InOrder/>
>>>>>> </wsp:Policy>
>>>>>>
>>>>>> </wsrmp:DeliveryAssurance>
>>>>>> </wsp:Policy>
>>>>>> <etrmp:InactivityTimeout
>>>>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>>>>> Milliseconds="600000"/>
>>>>>>
>>>>>> <netrmp:AcknowledgementInterval
>>>>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>>>>> Milliseconds="200"/>
>>>>>> </wsrmp:RMAssertion>
>>>>>> <sp:AsymmetricBinding
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <wsp:Policy>
>>>>>> <sp:InitiatorToken>
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <sp:X509Token
>>>>>>
>>>>> sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/I
>>>>> n
>>>>>> clu
>>>>>> deToken/AlwaysToRecipient">
>>>>>>
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <sp:WssX509V3Token10/>
>>>>>>
>>>>>> </wsp:Policy>
>>>>>>
>>>>>> </sp:X509Token>
>>>>>> </wsp:Policy>
>>>>>> </sp:InitiatorToken>
>>>>>> <sp:RecipientToken>
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <sp:X509Token
>>>>>>
>>>>>>
>>>>>> sp:IncludeToken="http://schemas.xmlsoap.org/ws/200507/securitypolicy/I
>>>>>> n
>>>>>> clu
>>>>>> deToken/Never">
>>>>>>
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <sp:WssX509V3Token10/>
>>>>>>
>>>>>> </wsp:Policy>
>>>>>>
>>>>>> </sp:X509Token>
>>>>>> </wsp:Policy>
>>>>>> </sp:RecipientToken>
>>>>>> <sp:lgorithmSuite>
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <sp:Basic256/>
>>>>>> </wsp:Policy>
>>>>>> </sp:AlgorithmSuite>
>>>>>> <sp:Layout>
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <sp:Strict/>
>>>>>> </wsp:Policy>
>>>>>> </sp:Layout>
>>>>>>
>>>>>> <sp:IncludeTimestamp/>
>>>>>>
>>>>>> <sp:OnlySignEntireHeadersAndBody/>
>>>>>> </wsp:Policy>
>>>>>> </sp:AsymmetricBinding>
>>>>>> <sp:Wss10
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <sp:MustSupportRefKeyIdentifier/>
>>>>>>
>>>>>> <sp:MustSupportRefIssuerSerial/>
>>>>>> </wsp:Policy>
>>>>>> </sp:Wss10>
>>>>>> <sp:Trust10
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <wsp:Policy>
>>>>>>
>>>>>> <sp:MustSupportIssuedTokens/>
>>>>>>
>>>>>> <sp:ReuireClientEntropy/>
>>>>>>
>>>>>> <sp:RequireServerEntropy/>
>>>>>> </wsp:Policy>
>>>>>> </sp:Trust10>
>>>>>> <wsaw:UsingAddressing/>
>>>>>> </wsp:All>
>>>>>> </wp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://scheas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmloap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.og/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.mcrosoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.rg/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/s/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/srm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.om/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/205/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsp:Policy
>>>>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
>>>>>> <wsp:ExactlyOne>
>>>>>> <wsp:All>
>>>>>> <sp:SignedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Body/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> <sp:Header Name="Sequence"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="SequenceAcknowledgement"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="AckRequested"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header
>>>>>> Name="UsesSequenceSTR"
>>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>>> <sp:Header Name="To"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="From"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="FaultTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="ReplyTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="MessageID"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="RelatesTo"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> <sp:Header Name="Action"
>>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>>> </sp:SignedParts>
>>>>>> <sp:EncryptedParts
>>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>>> <sp:Header
>>>>>> Name="CoordinationContext"
>>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>>> <sp:Header
>>>>>> Name="OleTxTransaction"
>>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>>> <sp:Header
>>>>>> Name="IssuedTokens"
>>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>>> </sp:EncryptedParts>
>>>>>> </wsp:All>
>>>>>> </wsp:ExactlyOne>
>>>>>> </wsp:Policy>
>>>>>> <wsdl:import
>>>>>> namespace="http://schemas.gallup.com/oms/2010/10/"
>>>>>>
>>>>>>
>>>>>> location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication
>>>>>> .s
>>>>>> vc?
>>>>>> wsdl=wsdl0"/>
>>>>>> <wsdl:types/>
>>>>>> <wsdl:binding name="AuthenticationDiacapEndpoint"
>>>>>> type="i0:IAuthentication">
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_policy"/>
>>>>>> <soap12:binding
>>>>>> transport="http://schemas.xmlsoap.org/soap/http"/>
>>>>>> <wsdl:operation name="Activate">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Acti
>>>>>> va
>>>>>> te"
>>>>>> style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="ChangePassword">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Chan
>>>>>> ge
>>>>>> Pas
>>>>>> sword" style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="Create">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Crea
>>>>>> te
>>>>>> "
>>>>>> style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="Expire">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expi
>>>>>> re
>>>>>> "
>>>>>> style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="GetAnswers">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetA
>>>>>> ns
>>>>>> wer
>>>>>> s" style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="GetPolicy">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetP
>>>>>> ol
>>>>>> icy
>>>>>> " style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="GetQuestions">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQ
>>>>>> ue
>>>>>> sti
>>>>>> ons" style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="GetUsernames">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetU
>>>>>> se
>>>>>> rna
>>>>>> mes" style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="Reset">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Rese
>>>>>> t"
>>>>>> style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="Update">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Upda
>>>>>> te
>>>>>> "
>>>>>> style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="Validate">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Vali
>>>>>> da
>>>>>> te"
>>>>>> style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> <wsdl:operation name="ValidateEmail">
>>>>>> <soap12:operation
>>>>>>
>>>>>>
>>>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Vali
>>>>>> da
>>>>>> teE
>>>>>> mail" style="document"/>
>>>>>> <wsdl:input>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:input>
>>>>>> <wsdl:output>
>>>>>> <wsp:PolicyReference
>>>>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
>>>>>> <soap12:body use="literal"/>
>>>>>> </wsdl:output>
>>>>>> </wsdl:operation>
>>>>>> </wsdl:binding>
>>>>>> <wsdl:service name="Authentication">
>>>>>> <wsdl:port name="AuthenticationDiacapEndpoint"
>>>>>> binding="tns:AuthenticationDiacapEndpoint">
>>>>>> <soap12:address
>>>>>>
>>>>>>
>>>>>> location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.
>>>>>> sv
>>>>>> c"/
>>>>>> <wsa10:EndpointReference>
>>>>>>
>>>>>>
>>>>>> <wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentica
>>>>>> t
>>>>>> ion.svc</wsa10:Address>
>>>>>> <Identity
>>>>>> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
>>>>>> <KeyInfo
>>>>>> xmlns="http://www.w3.org/2000/09/xmldsig#">
>>>>>> <X509Data>
>>>>>>
>>>>>> <X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU
>>>>>>
>>>>>>
>>>>>> FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwF
>>>>>> QY
>>>>>> KCZ
>>>>>>
>>>>>>
>>>>>> ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcx
>>>>>> ND
>>>>>> EyM
>>>>>>
>>>>>>
>>>>>> jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZP
>>>>>> yL
>>>>>> GQB
>>>>>>
>>>>>>
>>>>>> GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb2
>>>>>> 1w
>>>>>> dXR
>>>>>>
>>>>>>
>>>>>> lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wd
>>>>>> XR
>>>>>> lcn
>>>>>>
>>>>>>
>>>>>> MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB
>>>>>> AK
>>>>>> TG+
>>>>>>
>>>>>>
>>>>>> rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/
>>>>>> IM
>>>>>> JhE
>>>>>>
>>>>>>
>>>>>> tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO
>>>>>> 51
>>>>>> H18
>>>>>>
>>>>>>
>>>>>> bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3F
>>>>>> Qi
>>>>>> SzT
>>>>>>
>>>>>>
>>>>>> iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMB
>>>>>> Bg
>>>>>> grB
>>>>>>
>>>>>>
>>>>>> gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBgg
>>>>>> rB
>>>>>> gEF
>>>>>>
>>>>>>
>>>>>> BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ
>>>>>> 4E
>>>>>> FgQ
>>>>>>
>>>>>>
>>>>>> UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/
>>>>>> OU
>>>>>> wgg
>>>>>>
>>>>>>
>>>>>> EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNh
>>>>>> MS
>>>>>> xDT
>>>>>>
>>>>>>
>>>>>> j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1
>>>>>> TZ
>>>>>> XJ2
>>>>>>
>>>>>>
>>>>>> aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZX
>>>>>> Zv
>>>>>> Y2F
>>>>>>
>>>>>>
>>>>>> 0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwO
>>>>>> i8
>>>>>> vY2
>>>>>>
>>>>>>
>>>>>> VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3Vi
>>>>>> Y2
>>>>>> ExL
>>>>>>
>>>>>>
>>>>>> mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1
>>>>>> jZ
>>>>>> W50
>>>>>>
>>>>>>
>>>>>> ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aW
>>>>>> Nl
>>>>>> cyx
>>>>>>
>>>>>>
>>>>>> DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP
>>>>>> 29
>>>>>> iam
>>>>>>
>>>>>>
>>>>>> VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9j
>>>>>> ZW
>>>>>> 50Z
>>>>>>
>>>>>>
>>>>>> XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTE
>>>>>> uY
>>>>>> 2Vu
>>>>>>
>>>>>>
>>>>>> dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4
>>>>>> IC
>>>>>> AQA
>>>>>>
>>>>>>
>>>>>> aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBW
>>>>>> mL
>>>>>> ZgI
>>>>>>
>>>>>>
>>>>>> 9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8d
>>>>>> CQ
>>>>>> BpH
>>>>>>
>>>>>>
>>>>>> 3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYiv
>>>>>> G9
>>>>>> VFX
>>>>>>
>>>>>>
>>>>>> ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAu
>>>>>> vQ
>>>>>> BQf
>>>>>>
>>>>>>
>>>>>> 0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFL
>>>>>> ak
>>>>>> yiA
>>>>>>
>>>>>>
>>>>>> eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpU
>>>>>> rD
>>>>>> +Ma
>>>>>>
>>>>>>
>>>>>> Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V
>>>>>> +y
>>>>>> ydv
>>>>>>
>>>>>>
>>>>>> /hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT
>>>>>> 9V
>>>>>> HN6
>>>>>>
>>>>>>
>>>>>> gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJb
>>>>>> kd
>>>>>> a0B
>>>>>> pF1xatiQ==</X509Certificate>
>>>>>> </X509Data>
>>>>>> </KeyInfo>
>>>>>> </Identity>
>>>>>> </wsa10:EndpointReference>
>>>>>> </wsdl:port>
>>>>>> </wsdl:service>
>>>>>> </wsdl:definitions>
>>>>>>
>>>>>>
>>>>>> All information in this message is confidential and may be legally
>>>>>> privileged. Only intended recipients are authorized to use it.
>>>>>>
>>>> --
>>>> Daniel Kulp
>>>> dkulp@apache.org - http://dankulp.com/blog
>>>> Talend Community Coder - http://coders.talend.com
>>> All information in this message is confidential and may be legally
>>> privileged. Only intended recipients are authorized to use it.
> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
I have attempted your suggestion. I'll include the resulting WSDL below
so you can verify that we made the suggested change correctly.
Te result was an exception, also included. Does this mean I made the
change incorrectly, or does this mean we're encountering some other
problem? Here's the part that stands out:
PolicyException: These policy alternatives can not be satisfied:
{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
More context included below...
----- log snippet -----
Sep-16-2014 11:06:14.659 (main:10) FINE [gallup.soap.SoapHandlerLog_log]
SOAP_REQUEST_:SequenceAbstractService_MSG: <soap:Envelope
xmlns:soap="http://www.w3.org/2003/05/soap-envelope"><soap:Header><Action
xmls="http://www.w3.org/2005/08/addressing">http://docs.oasis-open.org/ws-
rx/wsrm/200702/CreateSequence</Action><MessageID
xmlns="http://www.w3.org/2005/08/addressing">urn:uuid:5fc57e8c-26a0-41fe-ab
cb-b287f42ec0db</MessageID><To
xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com/OM
S/V2/Diacap/Authentication.svc<To><ReplyTo
xmlns="http://www.w3.org/2005/08/addressing"><Address>http://www.w3.org/200
5/08/addressing/anonymous</Address></ReplyTo></soap:Header><soap:Body><Crea
teSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
xmlns:ns2="http://www.w3.org/2005/08/addressing"><AcksTo><ns2:Address>http:
//www.w3.org/2005/08/addressing/anonymous</ns2:Address></AcksTo><Expires>PT
0S</Expires><Offer><Identifier>urn:uuid:272af86f-7611-4979-ac98-37b37c1c437
2</Identifier><Endpoint><ns2:Address>http://www.w3.org/2005/08/addressing/a
nonymous</ns2:Address></Endpoint><Expires>PT0S</Expires></Offer></CreateSeq
uence></soap:Body></soap:Envelope>
Sep-16-2014 11:06:15.643 (main:10) FINE [gallup.soap.SoapHandlerLog_log]
SOAP_RESPONSE_:SequenceAbstractService_MSG: <s:Envelope
xmlns:s="http://www.w3.org/2003/05/oap-envelope"
xmlns:a="http://www.w3.org/2005/08/addressing"
xmlns:u="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity
-utility-1.0.xsd"><s:Header><a:Action s:mustUnderstand="1"
u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequenceRespon
se</a:Action><a:RelatesTo
u:Id="_3">urn:uuid:5fc57e8c-26a0-41fe-bcb-b287f42ec0db</a:RelatesTo><o:Sec
urity
xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-ws-wssecurity
-secext-1.0.xsd" s:mustUnderstand="1"><u:Timestamp
u:Id="uuid-55763b18-a23f-462b-8478-cf533fb34db9-6"><u:Created>2014-09-16T16
:06:15.429Z</u:Created><u:Expires>2014-09-16T16:11:15.429Z</u:Expires></u:T
imestamp><Signature
xmlns="http://www.w3.org/2000/09/xmldsig#"><SignedInfo><CanonicalizationMet
hod Algorithm="http://ww.w3.org/2001/10/xml-exc-c14n#"/><SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/><Reference
URI="#_1"><Transforms><Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMe
thod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><DigestValue>rRF2MwR7t4
ReYbhlgJNjDdP92Wo=</DigestValue></Reference><Reference
URI="#_2"><Transforms><Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMe
thod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><DigestValue>NwGeJOyu6x
HroM8K2ZrWHmCG2cw=</DigestValue></Reference><Reference
URI="#_3"><Transforms><Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMe
thod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><DigestValue>FkteBiT/ux
FcPVvMdYPN+PyT0MA=</DigestValue></Reference><Reference
URI="#uuid-55763b18-a23f-462b-8478-cf533fb34db9-6"><Transforms><Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></Transforms><DigestMe
thod
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/><DigestValue>DPM2sLwPEd
CzBq3AnwSZX8xVcvs=</DigestValue></Reference></SignedInfo><SignatureValue>Ux
F19HMA6N6Fe484Qd9E8zsvWSs0MEjOOvG5CrT3Wc8j4o7x8rJIT2pGb+oTXYZYEUziiwBAR+D1U
2kCRSZxBkZtVR80krcUgwgXhS4TkHzr0v2VYMzaYTFjXnRd4XENj70P54rmntKvK4VxgwBZqAqK
eXpQAjCfd68QVEMocjMJm3gQsLDxU8djaTW+uQTad/FR7M9vjteHP4yv8f0kK1l7cbr9slllk0M
9esjTnEbfoUI7IyOrZ+zglQ5Ll70SiahgpeEiSnA28QYvEuMbTEqhvGkVhgwaBOeuGcHuJxJOnX
Rc8sJ6I94bVXgUbG5c19mDqXZwRxuJaWaNhlFJ1Q==</SigntureValue><KeyInfo><o:Secu
rityTokenReference><o:KeyIdentifier
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
message-security-1.0#Base64Binary"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
en-profile-1.0#X509SubjectKeyIdentifier">3sGLmmxRfTlQ0KgRPqZdXrhYxus=</o:Ke
yIdentifer></o:SecurityTokenReference></KeyInfo></Signature></o:Security><
/s:Header><s:Body u:Id="_1"><CreateSequenceResponse
xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"><Identifier>urn:uuid:a
0fca929-d838-4488-8581-3ba69861f0e8</Identifier><Expires>PT0S</Expires><Inc
ompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenceBehavio
r><Accept><AcksTo><a:Address>https://services.gallup.com/OMS/V2/Diacap/Auth
entication.svc</a:Address></AcksTo></Accept></CreateSequenceResponse></s:Bo
dy></s:Envelope>
Sep-16-2014 11:06:15.668 (main:10) INFO
[gallup.guice.TimedMethodInterceptor_invoke] TIMER
AuthenticationDaoDiacapJaxWsImpl.validateLogin 1991ms F
gallup.org.oms.OmsDaoException: Problem calling OMS Authentication web
service.
at
gallup.org.oms.authentication.AuthenticationDaoDiacapJaxWsIml.validate(Aut
henticationDaoDiacapJaxWsImpl.java:168)
at
gallup.org.oms.authentication.AuthenticationDaoDiacapJaxWsImpl.validateLogi
n(AuthenticationDaoDiacapJaxWsImpl.java:63)
at
gallup.guice.TimedMethodInterceptor.invoke(TimedMethodInterceptor.java:49)
at
gallup.org.oms.authentication.AuthenticationDaoTestBase.testalidateLogin_S
uccess(AuthenticationDaoTestBase.java:48)
at
gallup.org.oms.authentication.AuthenticationDaoDiacapJaxsImplManualTest.te
stValidateLogin_Success(AuthenticationDaoDiacapJaxWsImplManualTest.java:45)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:3
9)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImp
.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at
org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod
.java:45)
at
org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.
java:15)
at
org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.j
ava:42)
at
org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.ja
va:20)
at
org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:2
8)
at org.junit.runners.ParentRunner.runLeaf(ParentRunner.java:263)
at
org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.ja
va:68)
at
org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.ja
va:47)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:231)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:60)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:229)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:50)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:222)
at
org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:2
8)
at org.junit.runners.ParentRunner.run(ParentRunner.java:300)
at org.junit.runner.JUnitCore.run(JUnitCore.java:157)
at
com.intellij.junit4.JUnit4IdeaTestRunner.startRunnerWithArgs(JUnit4IdeaTest
Runner.java:74)
at
com.intellij.rt.execution.junit.JUnitStarter.prepareStreamsAndStart(JUnitSt
arter.java:211)
at com.intellij.rt.execution.junit.JUnitStater.main(JUnitStarter.java:67)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:3
9)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImp
l.java:25)
at java.langreflect.Method.invoke(Method.java:597) at com.intellij.rt.execution.application.AppMain.main(AppMain.java:134)
Caused by: javax.xml.ws.soap.SOAPFaultException: Failed to send RM
protocol message
{http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
at org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:159)
at com.sun.proxy.$Proxy71.validate(Unknown Source)
at
gallup.org.oms.authentication.AuthenticationDaoDiacapJaxWsImpl.validate(Aut
henticationDaoDiacapJaxWsImpl.java:151)
... 32 more
Caused by: org.apache.cxf.ws.rm.RMException: Failed to send RM protocol
message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:323)
at org.apache.cxf.ws.rm.Proxy.createSequence(Proxy.java:199)
at org.apache.cxf.ws.rm.RMManager.getSequence(RMManager.java:472)
at
org.apache.cxf.ws.rm.RMCaptureOutInterceptor.handle(RMCaptureOutInterceptor
.java:156)
at
org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMIntercep
tor.java:83)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChai
n.java:307)
at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClentImpl.java:514)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:326)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:279)
at org.apache.cxf.frontend.ClientProxy.invokeSync(ClientProxy.java:96)
at org.apache.cxf.jaxws.JaxWsClientProxy.invoke(JaxWsClientProxy.java:137)
... 34 more
Caused by: org.apache.cxf.ws.policy.PolicyException: These poliy
alternatives can not be satisfied:
{http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702}Basic256
at
org.apache.cxf.ws.policy.AssertionInfoMap.checkEffectivePolicy(AssertionInf
oMap.java:179)
at
org.apache.cxf.ws.policy.PolicyVerificationInInterceptor.handle(PolicyVerif
icationInInterceptor.java:102)
at
org.apache.cxf.ws.policy.AbstractPolicyInterceptor.handleMessage(AbstractPo
licyInterceptor.java:44)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChai
n.java:307)
at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
at
org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleRespons
eInternal(HTTPConduit.java:1636)
at
org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleRespons
e(HTTPConduit.java:1525)
at
org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(HTTPCon
duit.java:1330)
at org.apache.cxf.transport.AbstractConduit.close(AbstractConduit.java:56)
at org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:638)
at
org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInte
rceptor.handleMessage(MessageSenderInterceptor.java:62)
at
org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChai
n.java:307)
at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:313)
... 45 more
----- local modified WSDL -----
<?xml version="1.0" encoding="utf-8"?>
<wsdl:definitions name="Authentication"
targetNamespace="http://tempuri.org/"
xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-20001-wss-wssecuri
ty-utility-1.0.xsd"
xmlns:wsa10="http://www.w3.org/2005/08/addressing"
xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
xmlns:tns="http://tempuri.org/"
xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
<wsp:ExactlyOne>
<wsp:All>
<wsrmp:RMAssertion
xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
<wsp:Policy>
<wsrmp:DeliveryAssurance>
<wsp:Policy>
<wsrmp:ExactlyOnce/>
<wsrmp:InOrder/>
</wsp:Policy>
</wsrmp:DeliveryAssurance>
</wsp:Policy>
<netrmp:InactivityTimeout Milliseconds="600000"
xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"/>
<netrmp:AcknowledgmentInterval Milliseconds="200"
xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"/>
</wsrmp:RMAssertion>
<sp:AsymmetricBinding
xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
<wsp:Policy>
<sp:InitiatorToken>
<wsp:Policy>
<sp:X509Token
sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/
IncludeToken/AlwaysToRecipient">
<wsp:Policy>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:InitiatorToken>
<sp:RecipientToken>
<wsp:Policy>
<sp:X509Token
sp:IncludeToken="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/
IncludeToken/Never">
<wsp:Policy>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:RecipientToken>
<sp:AlgorithmSuite>
<wsp:Policy>
<sp:Basic256/>
</wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout>
<wsp:Policy>
<sp:Lax/>
</wsp:Policy>
</sp:Layout>
<sp:IncludeTimestamp/>
<sp:OnlySignEntireHeadersAndBody/>
</wsp:Policy>
</sp:AsymmetricBinding>
<sp:Wss10
xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
<wsp:Policy>
<sp:MustSupportRefKeyIdentifier/>
<sp:MustSupportRefIssuerSerial/>
</wsp:Policy>
</sp:ss10>
<sp:Trust13
xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
<wsp:Policy>
<sp:MustSupportIssuedTokens/>
<sp:RequireClientEntropy/>
<sp:RequireServerEntropy/>
</wsp:Policy>
</sp:Trust13>
<sp:TransportBinding
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:TransportToken>
<wsp:Policy>
<sp:HttpsToken
RequireClientCertificate="false"/>
</wsp:Policy>
</sp:TransportToken>
<sp:AlgorithmSuite>
<wsp:Policy>
<sp:Basic256/>
</wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout>
<wsp:Policy>
<sp:Strict/>
</wsp:Policy>
</sp:Layout>
<sp:IncludeTimestamp/>
</wsp:Policy>
</sp:TransportBinding>
<wsaw:UsingAddressing/>
<sp:SignedParts
xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
location="https://services.gallup.com/OMS/V2/Diacap/Authentication.svc?wsdl
=wsdl0"/>
<wsdl:types/>
<wsdl:binding name="AuthenticationDiacapEndpoint"
type="i0:IAuthentication">
<wsp:PolicyReference URI="#AuthenticationDiacapEndpoint_policy"/>
<soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
<wsdl:operation name="Activate">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activate"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="ChangePassword">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ChangePas
sword"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operaton>
<wsdl:operation name="Create">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Expire">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetAnswers">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAnswer
s"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetPolicy">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPolicy
"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetQuestions">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQuesti
ons"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetUsernames">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUserna
mes"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Reset">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Update">
<soap12:opeation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Validate">
<soap12:operation
soapAction="http://scheas.gallup.com/oms/2010/10/IAuthentication/Validate"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="ValidateEmail">
<soap12:operatin
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ValidateE
mail"
style="document"/>
<wsdl:input>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
</wsdl:binding>
<wsdl:service name="Authentication">
<wsdl:port name="AuthenticationDiacapEndpoint"
binding="tns:AuthenticationDiacapEndpoint">
<soap12:address
location="https://services.gallup.com/OMS/V2/Diacap/Authentication.svc"/>
<wsa10:EndpointReference>
<wsa10:Address>https://services.gallup.com/OMS/V2/Diacap/Authentication.svc
</wsa10:Address>
<Identity
xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
<X509Data>
<X509Certificate>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</X509Certificate>
</X509Data>
</KeyInfo>
</Identity>
</wsa10:EndpointReference>
</wsdl:port>
</wsdl:service>
</wsdl:definitions
On 9/15/14 6:38 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>Hi Pohl,
>
>Sorry the mirage faded away. :-(
>
>The problem with your policy (at least from the standpoint of the CXF
>code) is that it's in a bunch of separate pieces. That adds a lot of
>bulk to the WSDL, but otherwise is not normally a problem - the
>different pieces are applied in different places and at different
>levels, and it all works out to be the same combination of policy
>applied throughout to all the messages exchanged by your application.
>But the RM code operates as an add-on to your application, so it doesn't
>get covered by all these policies.
>
>In particular, RM is seeing the AuthenticationDiacapEndpoint_policy
>policy because that's referenced from the <wsdl:binding> element that
>contains all the operations, but does not see any of the Input or output
>polices that are only referenced by specific messages. That means RM
>knows it needs to use security with a SymmetricBinding, but doesn't know
>that it should be signing the RM messages bodies and Addressing headers,
>as WCF apparently expects.
>
>Fortunately, these Input and output policies all appear to be the same,
>so if you just copy the <sp:SignedParts> and <sp:EncryptedParts>
>elements from one of these and add these to the
>AuthenticationDiacapEndpoint_policy it should (hopefully) work out
>correctly. Once you've done that you could even get rid of all the Input
>and output policies and the references to them, but leaving them in
>should not do any harm.
>
>Regards,
>
>- Dennis
>
>On 09/16/2014 09:13 AM, Longsine, Pohl wrote:
>> Dan & Dennis,
>>
>> The last 3 weeks were a blissful mirage, appearing like we had been
>>given
>> a reprieve in getting this particular WSDL configuration on the WCF
>> service to work. Today I learned we have to make this work.
>>
>> Dan, I hav a question about your suggestion below. How literally
>>should
>> I take the word "move"? Should the WSDL no longer have those assertions
>> within
>> the methods themselves, or should I merely copy them so that they appear
>> both within the methods and within AuthenticationDiacapEndpoint_policy?
>>
>> On 8/14/14 9:09 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>
>>> On Aug 14, 2014, at 4:58 PM, Dennis Sosnoski <dm...@sosnoski.com> wrote:
>>>
>>>> Hi Paul,
>>>>
>>>> I think I see what's going on here. Your
>>>> AuthenticationDiacapEndpoit_policy which specifies the use of RM and
>>>> AsymmetricBinding doesn't set anything to be signed, instead leaving
>>>> that to the individual input andoutput policies (such as
>>>> AuthenticationDiacapEndpoint_Activate_Input_policy). But because RM
>>>> isn't using one of those specified inputs or outputs i doesn't get a
>>>> policy that says the body should be signed.
>>>>
>>>> Dan, how do you think this should be handled? We obviously want to be
>>>> compatible with WCF, but I'm not sure how it should be implemented.
>>> Hmm…. that’s a very good point. I’m not sure either. If it’ picking
>>> up policies from the Input, and with that wsdl, the CreateSequence call
>>> could have different security requirements depending on which as the
>>> first operation you were trying to call. I cannot imaging that being a
>>> good thing. Not even sure how we could implement that. On the client
>>> side, we could use the current operation to get the operation policy
>>>and
>>> use it. On the service side, no idea as we’d haveNO idea whic
>>> operation was the intended target.
>>>
>>> The simple workaround if you want to try something is to copy the wsdl
>>> locally and update the AuthenticationDiacapEndpoint_policy to move the
>>> sp:SignedParts and sp:EncryptedParts assertions directly into it. That
>>> SHOULD work.
>>>
>>> Dan
>>>
>>>
>>>
>>>> - Dennis
>>>>
>>>> On 08/15/2014 04:30 AM, Longsine, Pohl wrote:
>>>>> On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>>>>
>>>>>> The policy has a <sp:EncryptSignature/> assertion in it so I would
>>>>>> have expected the signatures to be encrypted. The CXF request has
>>>>>> two
>>>>>> ncryptedData elements which MAY correspond to the two Signatures
>>>>>>that
>>>>>> the .NET client is sending. No really sure though as I don¹t know
>>>>>> what
>>>>>> is in the encrypted data.
>>>>>>
>>>>>> You could try removing that rom the policy and see if CXF does
>>>>>> something
>>>>>> different. At the very least, it may show the Signatures.
>>>>>>
>>>>>> That said, there is still an issue. I don¹t see a wsu:Id on the
>>>>>> soap:Body. Thus, it doesn¹t look like CXF is signing the Body like
>>>>>>it
>>>>>> should be. Actully, I don¹t see the Id on the and of the WS-A
>>>>>> headers
>>>>>> either. It would be good to see wha CXF is signing. Or at least
>>>>>> hat
>>>>>> is in the encrypted data.
>>>>>>
>>>>>> Dan
>>>>> Dan, I really appreciate your attention here. Thank you.
>>>>>
>>>>> I askd the .NET team to make the specific change that you requested
>>>>> (removing the EncryptSignature assertio from their WSDL). They must
>>>>> hae
>>>>> not been able to do such a small, targeted change. Instead, the made
>>>>> the
>>>>> following change, which had the side-effect of the EncryptSignature
>>>>>no
>>>>> longer beng there. That said, a few other small things in the WSDL
>>>> also
>>>>> changed, perhaps not in a way that matters For reference, here's
>>>>>what
>>>>> they say they changed:
>>>>>
>>>>>> I¹ve changed the message security versio to be an older version
>>>>>>
>>>>>>
>>>>>>
>>>>>>(WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSec
>>>>>>ui
>>>>>> ty
>>>>>> Policy11BasicSecurityProfile10
>>>>>> instead of
>>>>>>
>>>>>>
>>>>>>WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecur
>>>>>>it
>>>>>> yP
>>>>>> olicy11)
>>>>>
>>>>> Now our soap request has Signature element in it, although the id
>>>>> attributes that you noted were absent ar sill not there. The end
>>>>> result,
>>>>> from a soap fault perspective, is the same.
>>>>>
>>>>> Doe this help you analyze what is going wrong here?
>>>>>
>>>>>
>>>>>
>>>>> ----- CXF SOAP REQUEST -----
>>>>>
>>>>> soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>>>>> <soap:Header
>>>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>>>>>
>>>>>http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>>>>> </Action>
>>>>> <MessageID
>>>>>
>>>>>
>>>>>xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-498
>>>>>4-
>>>>> 86
>>>>> 28-c4298b0fa3b1
>>>>> </MessageID>
>>>>> <To
>>>>>
>>>>>
>>>>>xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.c
>>>>>om
>>>>> /OM
>>>> S/V2/Diacap/Autentication.svc
>>>>> </To>
>>>>> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>>>>>
>>>>> <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
>>>>> </ReplyTo>
>>>>> <wss:Security
>>>>>
>>>>>
>>>>>xmlns:wsse="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wss
>>>>>e
>>>>> cur
>>>>> ity-secext-1.0.xsd"
>>>>>
>>>>>
>>>>>
>>>>>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wss
>>>>>ec
>>>>> uri
>>>>> ty-utility-1.0.xsd"
>>>>> soap:mustUnderstand=true">
>>>>> <wsu:Timestamp
>>>>> wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
>>>>> <wsu:Created>2014-08-14T6:12:04.392Z</wsu:Created>
>>>>> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
>>>>> </wsu:Timestamp>
>>>>> <wsse:BinarySecurityToken
>>>>>
>>>>>
>>>>>
>>>>>EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-s
>>>>>oa
>>>>> p-
>>>>> message-security-1.0#Base64Binary"
>>>>>
>>>>>
>>>>>
>>>>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x50
>>>>>9-
>>>>> tok
>>>>> en-profle-1.0#X509v3"
>>>>>
>>>>>wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">
>>>>>
>>>>>
>>>>>
>>>>>MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRMwEQYKCZImiZP
>>>>>yL
>>>>> GQ
>>>>>
>>>>>
>>>>>BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbT
>>>>>ET
>>>>> MB
>>>>>
>>>>>
>>>>>EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxC
>>>>>zA
>>>>> JB
>>>>>
>>>>>
>>>>>gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEEDzANBgNVBAoTB
>>>>>k
>>>>> dB
>>>>>
>>>>>
>>>>>TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAxQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0
>>>>>GC
>>>>> Sq
>>>>>
>>>>>
>>>>>GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCk87lbdHZ5yV1y9LTH31n2FflLym28QRBSc9cRD
>>>>>B
>>>>> Br
>>>>>
>>>>>
>>>>>dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoG
>>>>>lH
>>>>> pI
>>>>>
>>>>>
>>>>>T1sZh9xSe14mvyrn66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia
>>>>>9
>>>>> NL3
>>>>>
>>>>>
>>>>>Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWPen3JT3V1vHdPRjU2b7tsx1wW1S00/gn
>>>>>J1
>>>>> fC
>>>>>
>>>>>
>>>>>d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGl
>>>>>OE
>>>>> VF
>>>>>
>>>>>
>>>>>OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObO
>>>>>j/
>>>>> bi
>>>>>
>>>>>
>>>>>UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6
>>>>>c6
>>>>> XJ
>>>>>
>>>>>
>>>>>/09MjATev+wkGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/I
>>>>>yb
>>>>>
>>>>>iIG6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/
>>>>>7H
>>>>> kQf2bY
>>>>>
>>>>>
>>>>>XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEF
>>>>>LL
>>>>> Js
>>>>>
>>>>>
>>>>>ezsj6lSjcifjxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7mF9NMIIB
>>>>>Dw
>>>>> YD
>>>>>
>>>>>
>>>>>VR0fBIIBBjCCAQIwgf+ggfygfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9
>>>>>h
>>>>> bXN
>>>>>
>>>>>
>>>>>1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ0
>>>>>49
>>>>> Q2
>>>>>
>>>>
>>>>9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc
>>>>3
>>>>> Q/Y
>>>>>
>>>>>
>>>>>mFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vW1zdWJjY
>>>>>T
>>>>> Eu
>>>>>
>>>>>
>>>>>bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBg
>>>>>EF
>>>>> BQc
>>>>>
>>>>>
>>>>>BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bXN1YmNhMSxDTj1BSU
>>>>>Es
>>>>> Q0
>>>>>
>>>>>
>>>>>49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlv
>>>>>bi
>>>>> xEQ
>>>>>
>>>>>
>>>>>z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZ
>>>>>pY
>>>>> 2F0
>>>>>
>>>>>
>>>>>aW9uQXV0aG9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vbhbXN1YmNhMS5ub2FtLmdhbGx1
>>>>>c
>>>>> C5
>>>>>
>>>>>
>>>>>jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExK
>>>>>DQ
>>>>> pLm
>>>>>
>>>>>
>>>>>NydDAhBgkrBgEEAYI3FAIEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwC
>>>>>wY
>>>>> DV
>>>>>
>>>>>
>>>>>R0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8
>>>>>lU
>>>> qdM
>>>>>
>>>>>eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm
>>>>>3u
>>>>> Oj
>>>>>
>>>>>
>>>>>+SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO
>>>>>9q
>>>>> CF5
>>>>> n0mItQMmTb
>>>>> </wsse:BinarySecurityToken>
>>>>> <ds:Signatur
>>>>>xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>>>>> Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
>>>>> <ds:SignedInfo>
>>>>> <ds:CanonicalizationMethod
>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>>>> <ec:InclusiveNamespaces
>>>>> xmlns:ec="http://www.w3.org/001/10/xml-exc-c14n#" PrefixList="soap"/>
>>>>> </ds:CanonicalizationMethod>
>>>>> <ds:SignatureMethod
>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
>>>>> <ds:Reference
>>>>> URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
>>>>> <ds:Transforms>
>>>>> <ds:Transform
>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>>>> <ec:InclusiveNamespaces
>>>>> xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
>>>>>
>>>>> PrefixList="wsse
>>>>> soap"/>
>>>> </ds:Transform>
>>>>> </d:Transforms>
>>>>> <ds:DigestMethod
>>>>> Algorith="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>>>>>
>>>>> <ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
>>>>> </ds:Reference
>>>>> </ds:SignedInfo>
>>>>> <ds:SignaturValue>
>>>>>
>>>>>
>>>>>
>>>>>KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9
>>>>>iI
>>>>> /AF
>>>>>
>>>>>
>>>>>9gTWGtOrCB7nrlE3f8bOLxt3nggokrD8v8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3J
>>>>>rF
>>>>> jY3
>>>>>
>>>>>
>>>>>/yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s
>>>>>+M
>>>>> MP
>>>>>
>>>>>
>>>>>jnmD9E7SM9kCedPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbc
>>>>>o6
>>>>> RS
>>>>>
>>>>>
>>>>>SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKc
>>>>>du
>>>>> vBW
>>>>>
>>>>>
>>>>>8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WK
>>>>>uU
>>>>> CwI
>>>>>
>>>>>
>>>>>Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfak
>>>>>LW
>>>>> SR
>>>>>
>>>>>
>>>>>tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7x
>>>>>sT
>>>>> ofa
>>>>>
>>>>>
>>>>>fgcSkaBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3Moq
>>>>>T
>>>>> oT
>>>>> d6JzuGRw=
>>>>> </ds:SignatureValue>
>>>>> <ds:KeyInfo
>>>>> Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
>>>>> <wsse:SecurityTokenReference
>>>>> wsu:Id="STR-51789ea2-2fa3-425ea31b-bfb9f1e49787">
>>>>> <wsse:Referece
>>>>> URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>>>>>
>>>>>
>>>>>
>>>>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x50
>>>>>9-
>>>>> tok
>>>>> en-profile-1.0#X509v3"/>
>>>>> /wsse:SecurityTokenReference>
>>>>> </ds:KeyInfo>
>>>>> </ds:Signature>
>>>>> </wsse:Security>
>>>>> </soap:Header>
>>>>> <sapBody>
>>>>> <CreateSequence
>>>>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>>>>>
>>>>> xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
>>>>>
>>>>>
>>>>>
>>>>><ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Addre
>>>>>ss
>>>>> </AcksTo>
>>>>> <Expires>PT0S</Expires>
>>>>> <Offer>
>>>>>
>>>>>
>>>>><Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
>>>>> <Endpoint>
>>>>>
>>>>>
>>>>>
>>>>><ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Addres
>>>>>s>
>>>>> </Endpoint>
>>>>> <Expires>PT0S</Expires>
>>>>> </Offer>
>>>>> </CreateSequence>
>>>>> </soap:Body>
>>>>> </soap:Envelope>
>>>>>
>>>>>
>>>>>
>>>>>
>>>>> ----- .NET SOAP REQUEST -----
>>>>>
>>>>> <?xml version="1.0" encoding="utf-8"?>
>>>>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
>>>>> xlns:a="http://www.w3.org/2005/08/addressing"
>>>>>
>>>>>
>>>>>xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecu
>>>>>ri
>>>>> ty
>>>>> -utility-1.0.sd">
>>>>> <s:Header>
>>>>> <a:Action s:mustUnderstand="1"
>>>>>
>>>>>
>>>>>u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence<
>>>>>/a
>>>>> :Ac
>>>>> tion>
>>>>> <a:MessageID
>>>>> uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
>>>>> <ActivityId
>>>>> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
>>>>>
>>>>>
>>>>>CorrelationId="bcd3db57-178d48a-bf82-e2c8df52dd37">22aecc77-9a7c-49d9-
>>>>>9
>>>>> 1d
>>>>> 7-9533bf1599d7</ActivityId>
>>>>> <a:To s:mustUnderstand="1"
>>>>>
>>>>>
>>>>>u:Id="_4">http://ordinsjx75w7.nom.gallup.com/oms.wcf/Authentication.sv
>>>>>c
>>>>> </
>>>>> a:To>
>>>>> <o:Security
>>>>>
>>>>>
>>>>>xmlns:o="http://docs.oasis-open.org/wss/204/01/oasis-200401-wss-wssecu
>>>>>r
>>>>> ity
>>>>> -secext-1.0xsd" s:mustUnderstand="1">
>>>>> <u:Timestamp
>>>>> u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>>>>
>>>>> <u:Created>2014-08-14T15:56:02.747Z</u:Created>
>>>>>
>>>>> <u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
>>>>> </u:Timestamp>
>>>>> <o:BinarySecurityToken
>>>>> uId="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
>>>>>
>>>>>
>>>>>ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509
>>>>>-t
>>>>> ok
>>>>> en-profile-1.0#X509v3"
>>>>>
>>>>>
>>>>>EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-
>>>>>so
>>>>> ap-
>>>>>
>>>>>
>>>>>message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTAN
>>>>>Bg
>>>>> kq
>>>>>
>>>>>
>>>>>hkiG9w0BAQUFADBYMRMwEYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2F
>>>>>s
>>>>> bHV
>>>>>
>>>>>
>>>>>wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbN1YmNhMTAeFw0xNDA0MD
>>>>>Iy
>>>>> MD
>>>>>
>>>>>
>>>>>E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJ
>>>>>Ko
>>>>> ZIh
>>>>>
>>>>>
>>>>>vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uL4HPKuSi2Ocl
>>>>>d
>>>>> 3f
>>>>>
>>>>>
>>>>>DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDrGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9
>>>>>Ta
>>>>> PrI
>>>>>
>>>>>
>>>>>61b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkrBg
>>>>>EE
>>>>> AY
>>>>>
>>>>>
>>>>>I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1Ud
>>>>>Dw
>>>>> QEA
>>>>>
>>>>>
>>>>>wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq
>>>>>4W
>>>>> Xm0
>>>>>
>>>>>
>>>>>+Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6B/KCB+YaBtmxkYXA6L8vQ049bm9h
>>>>>b
>>>>> XN
>>>>>
>>>>>
>>>>>1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2a
>>>>>WN
>>>>> lcy
>>>>>
>>>>>
>>>>>xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlm
>>>>>aW
>>>>> Nhd
>>>>>
>>>>>
>>>>>GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW5
>>>>>h
>>>>> j5o
>>>>>
>>>>>
>>>>>dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2
>>>>>Ex
>>>>> KDM
>>>>>
>>>>>
>>>>>pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DT
>>>>>j1
>>>>> ub2
>>>>>
>>>>>
>>>>>Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNl
>>>>>cy
>>>>> xDT
>>>>>
>>>>>
>>>>>j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29
>>>>>ia
>>>>> mVj
>>>>>
>>>>>
>>>>>dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2
>>>>>Ft
>>>>> c3V
>>>>>
>>>>>
>>>>>iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsd
>>>>>XA
>>>>> uY2
>>>>>
>>>>>
>>>>>9tX25vYW1zdWJjYTEoNCkuY3J0MA0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyN
>>>>>MY
>>>>> gga
>>>>>
>>>>>
>>>>>vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2Bz
>>>>>Fl
>>>>> 0xi
>>>>>
>>>>>
>>>>>16WbmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28
>>>>>Tj
>>>>> </o
>>>>> :BinarySecurityToken>
>>>>> <Signature
>>>>> xmlns="http://www.w3.org/2000/09/xmldsig#">
>>>>> <SignedInfo>
>>>>> <CanonicalizationMethod
>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>> <SignatureMethod
>>>>> Algorithm="http://www.w3.org/2000/09/xmdsig#rsa-sha1"/>
>>>>> <Reference URI="#_1">
>>>>> <Transforms>
>>>> <Transform
>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>> </Transforms>
>>>>> <DigestMethod
>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>
>>>>> <DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
>>>>> </Reference>
>>>>> <Reference URI="#_2">
>>>>> <Transforms>
>>>>> <Transform
>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>> </Transforms>
>>>>> <DigestMethod
>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>
>>>>> <DigestValue>/y/ysxeFBIlVOQK860fYd641KA=</DigestValue>
>>>>> </Reference>
>>>>> <Referece URI="#_3">
>>>>> <Transforms>
>>>>> <Transform
>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>> </Transforms>
>>>>> <DigestMethod
>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>
>>>>> <DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
>>>>> </Reference>
>>>>> <Reference URI="#_4">
>>>>> <Transforms>
>>>>> <Transform
>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>> </Transforms>
>>>>> <DigestMethod
>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>
>>>>> <DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
>>>>> </Reference>
>>>>> <Reference
>>>>> URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>>>> <Transforms>
>>>>> <Transform
>>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>>> </Transforms>
>>>>> <DigestMethod
>>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>>
>>>>> <DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
>>>>> </Reference>
>>>>> </SignedInfo>
>>>>>
>>>>>
>>>>><SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0
>>>>>O
>>>>>
>>>>>
>>>>>lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+Xn
>>>>>Rp
>>>>> Ny5
>>>>> ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
>>>>> <KeyInfo>
>>>>> <o:SecurityTokenReference>
>>>>> <o:Reference
>>>>>
>>>>>
>>>>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x50
>>>>>9-
>>>>> tok
>>>>> en-profile-1.0#X509v3"
>>>>> URI="#uuid-40c54dbb369c-4ce8-8b8d-6fcfcd03dc29-2"/>
>>>>> </o:SecurityTokenReference>
>>>>> </KeyInfo>
>>>>> </Signature>
>>>>> </o:Security>
>>>>> </s:Header>
>>>>> <s:Body u:Id="_1">
>>>>> <CreateSequence
>>>>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
>>>>> <AcksTo>
>>>>>
>>>>> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
>>>>> </AcksTo>
>>>>> <Offer>
>>>>>
>>>>>
>>>>><Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
>>>>> <Endpoint>
>>>>>
>>>>> <a:Address>http://www.w3.org/2005/08/addrssing/anonymous</a:Address>
>>>>> </Endpoint>
>>>>>
>>>>>
>>>>><IncompleteSequenceBehavior>DiscardFollowingFirstap</IncompleteSequenc
>>>>> eBehavior>
>>>>> </Offer>
>>>>> </CreateSequence>
>>>>> </s:Body>
>>>>> </s:Envelope>>>>
>>>>>
>>>>>
>>>>>
>>>>> ----- WSDL -----
>>>>>
>>>>> <?xml version="1.0" encoding="utf-8"?>
>>>>> <wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>>>>> xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>>>>> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>>>>>
>>>>>
>>>>>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wss
>>>>>ec
>>>>> uri
>>>>> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/ddressing"
>>>>> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>>>>> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>>>>> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>>>>> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>>>>> xmlns:wsa="htp://schemas.xmlsoap.org/ws/2004/08/addressing"
>>>>> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>>>>> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>>>>> xmlns:tns="http://tempuri.org/"
>>>>> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>>>>> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>>>>> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>>>>> name="Authentication" targetNamespace="http://tempuri.org/">
>>>>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <wsrmp:RMAssertion
>>>>> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
>>>>> <wsp:Policy>
>>>>>
>>>>> <wsrmp:DeliveryAssurance>
>>>>> <wsp:Policy>
>>>>>
>>>>> <wsrmp:ExactlyOnce/>
>>>>>
>>>>> <wsrmp:InOrder/>
>>>>> </wsp:Policy>
>>>>>
>>>>> </wsrmp:DeliveryAssurance>
>>>>> </wsp:Policy>
>>>>> <etrmp:InactivityTimeout
>>>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>>>> Milliseconds="600000"/>
>>>>>
>>>>><netrmp:AcknowledgementInterval
>>>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>>>> Milliseconds="200"/>
>>>>> </wsrmp:RMAssertion>
>>>>> <sp:AsymmetricBinding
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <wsp:Policy>
>>>>> <sp:InitiatorToken>
>>>>> <wsp:Policy>
>>>>>
>>>>> <sp:X509Token
>>>>>
>>>>
>>>>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/I
>>>>n
>>>>> clu
>>>>> deToken/AlwaysToRecipient">
>>>>>
>>>>> <wsp:Policy>
>>>>>
>>>>> <sp:WssX509V3Token10/>
>>>>>
>>>>> </wsp:Policy>
>>>>>
>>>>> </sp:X509Token>
>>>>> </wsp:Policy>
>>>>> </sp:InitiatorToken>
>>>>> <sp:RecipientToken>
>>>>> <wsp:Policy>
>>>>>
>>>>> <sp:X509Token
>>>>>
>>>>>
>>>>>sp:IncludeToken="http://schemas.xmlsoap.org/ws/200507/securitypolicy/I
>>>>>n
>>>>> clu
>>>>> deToken/Never">
>>>>>
>>>>> <wsp:Policy>
>>>>>
>>>>> <sp:WssX509V3Token10/>
>>>>>
>>>>> </wsp:Policy>
>>>>>
>>>>> </sp:X509Token>
>>>>> </wsp:Policy>
>>>>> </sp:RecipientToken>
>>>>> <sp:lgorithmSuite>
>>>>> <wsp:Policy>
>>>>>
>>>>> <sp:Basic256/>
>>>>> </wsp:Policy>
>>>>> </sp:AlgorithmSuite>
>>>>> <sp:Layout>
>>>>> <wsp:Policy>
>>>>>
>>>>> <sp:Strict/>
>>>>> </wsp:Policy>
>>>>> </sp:Layout>
>>>>>
>>>>><sp:IncludeTimestamp/>
>>>>>
>>>>> <sp:OnlySignEntireHeadersAndBody/>
>>>>> </wsp:Policy>
>>>>> </sp:AsymmetricBinding>
>>>>> <sp:Wss10
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <wsp:Policy>
>>>>>
>>>>> <sp:MustSupportRefKeyIdentifier/>
>>>>>
>>>>> <sp:MustSupportRefIssuerSerial/>
>>>>> </wsp:Policy>
>>>>> </sp:Wss10>
>>>>> <sp:Trust10
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <wsp:Policy>
>>>>>
>>>>> <sp:MustSupportIssuedTokens/>
>>>>>
>>>>> <sp:ReuireClientEntropy/>
>>>>>
>>>>> <sp:RequireServerEntropy/>
>>>>> </wsp:Policy>
>>>>> </sp:Trust10>
>>>>> <wsaw:UsingAddressing/>
>>>>> </wsp:All>
>>>>> </wp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://scheas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmloap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.og/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.mcrosoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.rg/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/s/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/srm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.om/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/205/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsp:Policy
>>>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
>>>>> <wsp:ExactlyOne>
>>>>> <wsp:All>
>>>>> <sp:SignedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Body/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> <sp:Header Name="Sequence"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="SequenceAcknowledgement"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>>Name="AckRequested"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header
>>>>> Name="UsesSequenceSTR"
>>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>>> <sp:Header Name="To"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="From"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="FaultTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="ReplyTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="MessageID"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="RelatesTo"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> <sp:Header Name="Action"
>>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>>> </sp:SignedParts>
>>>>> <sp:EncryptedParts
>>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>>> <sp:Header
>>>>> Name="CoordinationContext"
>>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>>> <sp:Header
>>>>> Name="OleTxTransaction"
>>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>>> <sp:Header
>>>>>Name="IssuedTokens"
>>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>>> </sp:EncryptedParts>
>>>>> </wsp:All>
>>>>> </wsp:ExactlyOne>
>>>>> </wsp:Policy>
>>>>> <wsdl:import
>>>>>namespace="http://schemas.gallup.com/oms/2010/10/"
>>>>>
>>>>>
>>>>>location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication
>>>>>.s
>>>>> vc?
>>>>> wsdl=wsdl0"/>
>>>>> <wsdl:types/>
>>>>> <wsdl:binding name="AuthenticationDiacapEndpoint"
>>>>> type="i0:IAuthentication">
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_policy"/>
>>>>> <soap12:binding
>>>>> transport="http://schemas.xmlsoap.org/soap/http"/>
>>>>> <wsdl:operation name="Activate">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Acti
>>>>>va
>>>>> te"
>>>>> style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="ChangePassword">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Chan
>>>>>ge
>>>>> Pas
>>>>> sword" style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="Create">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Crea
>>>>>te
>>>>> "
>>>>> style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="Expire">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expi
>>>>>re
>>>>> "
>>>>> style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="GetAnswers">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetA
>>>>>ns
>>>>> wer
>>>>> s" style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="GetPolicy">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetP
>>>>>ol
>>>>> icy
>>>>> " style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="GetQuestions">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQ
>>>>>ue
>>>>> sti
>>>>> ons" style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="GetUsernames">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetU
>>>>>se
>>>>> rna
>>>>> mes" style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="Reset">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Rese
>>>>>t"
>>>>> style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="Update">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Upda
>>>>>te
>>>>> "
>>>>> style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="Validate">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Vali
>>>>>da
>>>>> te"
>>>>> style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> <wsdl:operation name="ValidateEmail">
>>>>> <soap12:operation
>>>>>
>>>>>
>>>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Vali
>>>>>da
>>>>> teE
>>>>> mail" style="document"/>
>>>>> <wsdl:input>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:input>
>>>>> <wsdl:output>
>>>>> <wsp:PolicyReference
>>>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
>>>>> <soap12:body use="literal"/>
>>>>> </wsdl:output>
>>>>> </wsdl:operation>
>>>>> </wsdl:binding>
>>>>> <wsdl:service name="Authentication">
>>>>> <wsdl:port name="AuthenticationDiacapEndpoint"
>>>>> binding="tns:AuthenticationDiacapEndpoint">
>>>>> <soap12:address
>>>>>
>>>>>
>>>>>location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.
>>>>>sv
>>>>> c"/
>>>>> <wsa10:EndpointReference>
>>>>>
>>>>>
>>>>><wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentica
>>>>>t
>>>>> ion.svc</wsa10:Address>
>>>>> <Identity
>>>>> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
>>>>> <KeyInfo
>>>>> xmlns="http://www.w3.org/2000/09/xmldsig#">
>>>>> <X509Data>
>>>>>
>>>>> <X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU
>>>>>
>>>>>
>>>>>FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwF
>>>>>QY
>>>>> KCZ
>>>>>
>>>>>
>>>>>ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcx
>>>>>ND
>>>>> EyM
>>>>>
>>>>>
>>>>>jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZP
>>>>>yL
>>>>> GQB
>>>>>
>>>>>
>>>>>GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb2
>>>>>1w
>>>>> dXR
>>>>>
>>>>>
>>>>>lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wd
>>>>>XR
>>>>> lcn
>>>>>
>>>>>
>>>>>MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB
>>>>>AK
>>>>> TG+
>>>>>
>>>>>
>>>>>rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/
>>>>>IM
>>>>> JhE
>>>>>
>>>>>
>>>>>tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO
>>>>>51
>>>>> H18
>>>>>
>>>>>
>>>>>bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3F
>>>>>Qi
>>>>> SzT
>>>>>
>>>>>
>>>>>iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMB
>>>>>Bg
>>>>> grB
>>>>>
>>>>>
>>>>>gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBgg
>>>>>rB
>>>>> gEF
>>>>>
>>>>>
>>>>>BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ
>>>>>4E
>>>>> FgQ
>>>>>
>>>>>
>>>>>UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/
>>>>>OU
>>>>> wgg
>>>>>
>>>>>
>>>>>EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNh
>>>>>MS
>>>>> xDT
>>>>>
>>>>>
>>>>>j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1
>>>>>TZ
>>>>> XJ2
>>>>>
>>>>>
>>>>>aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZX
>>>>>Zv
>>>>> Y2F
>>>>>
>>>>>
>>>>>0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwO
>>>>>i8
>>>>> vY2
>>>>>
>>>>>
>>>>>VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3Vi
>>>>>Y2
>>>>> ExL
>>>>>
>>>>>
>>>>>mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1
>>>>>jZ
>>>>> W50
>>>>>
>>>>>
>>>>>ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aW
>>>>>Nl
>>>>> cyx
>>>>>
>>>>>
>>>>>DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP
>>>>>29
>>>>> iam
>>>>>
>>>>>
>>>>>VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9j
>>>>>ZW
>>>>> 50Z
>>>>>
>>>>>
>>>>>XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTE
>>>>>uY
>>>>> 2Vu
>>>>>
>>>>>
>>>>>dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4
>>>>>IC
>>>>> AQA
>>>>>
>>>>>
>>>>>aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBW
>>>>>mL
>>>>> ZgI
>>>>>
>>>>>
>>>>>9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8d
>>>>>CQ
>>>>> BpH
>>>>>
>>>>>
>>>>>3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYiv
>>>>>G9
>>>>> VFX
>>>>>
>>>>>
>>>>>ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAu
>>>>>vQ
>>>>> BQf
>>>>>
>>>>>
>>>>>0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFL
>>>>>ak
>>>>> yiA
>>>>>
>>>>>
>>>>>eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpU
>>>>>rD
>>>>> +Ma
>>>>>
>>>>>
>>>>>Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V
>>>>>+y
>>>>> ydv
>>>>>
>>>>>
>>>>>/hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT
>>>>>9V
>>>>> HN6
>>>>>
>>>>>
>>>>>gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJb
>>>>>kd
>>>>> a0B
>>>>> pF1xatiQ==</X509Certificate>
>>>>> </X509Data>
>>>>> </KeyInfo>
>>>>> </Identity>
>>>>> </wsa10:EndpointReference>
>>>>> </wsdl:port>
>>>>> </wsdl:service>
>>>>> </wsdl:definitions>
>>>>>
>>>>>
>>>>> All information in this message is confidential and may be legally
>>>>> privileged. Only intended recipients are authorized to use it.
>>>>>
>>> --
>>> Daniel Kulp
>>> dkulp@apache.org - http://dankulp.com/blog
>>> Talend Community Coder - http://coders.talend.com
>> All information in this message is confidential and may be legally
>>privileged. Only intended recipients are authorized to use it.
>
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Dennis Sosnoski <dm...@sosnoski.com>.
Hi Pohl,
Sorry the mirage faded away. :-(
The problem with your policy (at least from the standpoint of the CXF
code) is that it's in a bunch of separate pieces. That adds a lot of
bulk to the WSDL, but otherwise is not normally a problem - the
different pieces are applied in different places and at different
levels, and it all works out to be the same combination of policy
applied throughout to all the messages exchanged by your application.
But the RM code operates as an add-on to your application, so it doesn't
get covered by all these policies.
In particular, RM is seeing the AuthenticationDiacapEndpoint_policy
policy because that's referenced from the <wsdl:binding> element that
contains all the operations, but does not see any of the Input or output
polices that are only referenced by specific messages. That means RM
knows it needs to use security with a SymmetricBinding, but doesn't know
that it should be signing the RM messages bodies and Addressing headers,
as WCF apparently expects.
Fortunately, these Input and output policies all appear to be the same,
so if you just copy the <sp:SignedParts> and <sp:EncryptedParts>
elements from one of these and add these to the
AuthenticationDiacapEndpoint_policy it should (hopefully) work out
correctly. Once you've done that you could even get rid of all the Input
and output policies and the references to them, but leaving them in
should not do any harm.
Regards,
- Dennis
On 09/16/2014 09:13 AM, Longsine, Pohl wrote:
> Dan & Dennis,
>
> The last 3 weeks were a blissful mirage, appearing like we had been given
> a reprieve in getting this particular WSDL configuration on the WCF
> service to work. Today I learned we have to make this work.
>
> Dan, I have a question about your suggestion below. How literally should
> I take the word "move"? Should the WSDL no longer have those assertions
> within
> the methods themselves, or should I merely copy them so that they appear
> both within the methods and within AuthenticationDiacapEndpoint_policy?
>
> On 8/14/14 9:09 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>
>> On Aug 14, 2014, at 4:58 PM, Dennis Sosnoski <dm...@sosnoski.com> wrote:
>>
>>> Hi Paul,
>>>
>>> I think I see what's going on here. Your
>>> AuthenticationDiacapEndpoit_policy which specifies the use of RM and
>>> AsymmetricBinding doesn't set anything to be signed, instead leaving
>>> that to the individual input andoutput policies (such as
>>> AuthenticationDiacapEndpoint_Activate_Input_policy). But because RM
>>> isn't using one of those specified inputs or outputs i doesn't get a
>>> policy that says the body should be signed.
>>>
>>> Dan, how do you think this should be handled? We obviously want to be
>>> compatible with WCF, but I'm not sure how it should be implemented.
>> Hmm…. that’s a very good point. I’m not sure either. If it’s picking
>> up policies from the Input, and with that wsdl, the CreateSequence call
>> could have different security requirements depending on which as the
>> first operation you were trying to call. I cannot imaging that being a
>> good thing. Not even sure how we could implement that. On the client
>> side, we could use the current operation to get the operation policy and
>> use it. On the service side, no idea as we’d have NO idea whic
>> operation was the intended target.
>>
>> The simple workaround if you want to try something is to copy the wsdl
>> locally and update the AuthenticationDiacapEndpoint_policy to move the
>> sp:SignedParts and sp:EncryptedParts assertions directly into it. That
>> SHOULD work.
>>
>> Dan
>>
>>
>>
>>> - Dennis
>>>
>>> On 08/15/2014 04:30 AM, Longsine, Pohl wrote:
>>>> On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>>>
>>>>> The policy has a <sp:EncryptSignature/> assertion in it so I would
>>>>> have expected the signatures to be encrypted. The CXF request has
>>>>> two
>>>>> ncryptedData elements which MAY correspond to the two Signatures that
>>>>> the .NET client is sending. No really sure though as I don¹t know
>>>>> what
>>>>> is in the encrypted data.
>>>>>
>>>>> You could try removing that rom the policy and see if CXF does
>>>>> something
>>>>> different. At the very least, it may show the Signatures.
>>>>>
>>>>> That said, there is still an issue. I don¹t see a wsu:Id on the
>>>>> soap:Body. Thus, it doesn¹t look like CXF is signing the Body like it
>>>>> should be. Actully, I don¹t see the Id on the and of the WS-A
>>>>> headers
>>>>> either. It would be good to see wha CXF is signing. Or at least
>>>>> hat
>>>>> is in the encrypted data.
>>>>>
>>>>> Dan
>>>> Dan, I really appreciate your attention here. Thank you.
>>>>
>>>> I askd the .NET team to make the specific change that you requested
>>>> (removing the EncryptSignature assertio from their WSDL). They must
>>>> hae
>>>> not been able to do such a small, targeted change. Instead, the made
>>>> the
>>>> following change, which had the side-effect of the EncryptSignature no
>>>> longer beng there. That said, a few other small things in the WSDL
>>>> also
>>>> changed, perhaps not in a way that matters For reference, here's what
>>>> they say they changed:
>>>>
>>>>> I¹ve changed the message security versio to be an older version
>>>>>
>>>>>
>>>>> (WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecui
>>>>> ty
>>>>> Policy11BasicSecurityProfile10
>>>>> instead of
>>>>>
>>>>> WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecurit
>>>>> yP
>>>>> olicy11)
>>>>
>>>> Now our soap request has Signature element in it, although the id
>>>> attributes that you noted were absent ar sill not there. The end
>>>> result,
>>>> from a soap fault perspective, is the same.
>>>>
>>>> Doe this help you analyze what is going wrong here?
>>>>
>>>>
>>>>
>>>> ----- CXF SOAP REQUEST -----
>>>>
>>>> soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>>>> <soap:Header
>>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>>>> http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>>>> </Action>
>>>> <MessageID
>>>>
>>>> xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-4984-
>>>> 86
>>>> 28-c4298b0fa3b1
>>>> </MessageID>
>>>> <To
>>>>
>>>> xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com
>>>> /OM
>>> S/V2/Diacap/Autentication.svc
>>>> </To>
>>>> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>>>>
>>>> <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
>>>> </ReplyTo>
>>>> <wss:Security
>>>>
>>>> xmlns:wsse="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wsse
>>>> cur
>>>> ity-secext-1.0.xsd"
>>>>
>>>>
>>>> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
>>>> uri
>>>> ty-utility-1.0.xsd"
>>>> soap:mustUnderstand=true">
>>>> <wsu:Timestamp
>>>> wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
>>>> <wsu:Created>2014-08-14T6:12:04.392Z</wsu:Created>
>>>> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
>>>> </wsu:Timestamp>
>>>> <wsse:BinarySecurityToken
>>>>
>>>>
>>>> EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-soa
>>>> p-
>>>> message-security-1.0#Base64Binary"
>>>>
>>>>
>>>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
>>>> tok
>>>> en-profle-1.0#X509v3"
>>>> wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">
>>>>
>>>>
>>>> MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRMwEQYKCZImiZPyL
>>>> GQ
>>>>
>>>> BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTET
>>>> MB
>>>>
>>>> EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxCzA
>>>> JB
>>>>
>>>> gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEEDzANBgNVBAoTBk
>>>> dB
>>>>
>>>> TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAxQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0GC
>>>> Sq
>>>>
>>>> GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCk87lbdHZ5yV1y9LTH31n2FflLym28QRBSc9cRDB
>>>> Br
>>>>
>>>> dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlH
>>>> pI
>>>>
>>>> T1sZh9xSe14mvyrn66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9
>>>> NL3
>>>>
>>>> Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWPen3JT3V1vHdPRjU2b7tsx1wW1S00/gnJ1
>>>> fC
>>>>
>>>> d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOE
>>>> VF
>>>>
>>>> OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObOj/
>>>> bi
>>>>
>>>> UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6c6
>>>> XJ
>>>>
>>>> /09MjATev+wkGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/Iyb
>>>> iIG6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7H
>>>> kQf2bY
>>>>
>>>> XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLL
>>>> Js
>>>>
>>>> ezsj6lSjcifjxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7mF9NMIIBDw
>>>> YD
>>>>
>>>> VR0fBIIBBjCCAQIwgf+ggfygfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9h
>>>> bXN
>>>>
>>>> 1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049
>>>> Q2
>>>>
>>> 9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3
>>>> Q/Y
>>>>
>>>> mFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vW1zdWJjYT
>>>> Eu
>>>>
>>>> bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEF
>>>> BQc
>>>>
>>>> BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bXN1YmNhMSxDTj1BSUEs
>>>> Q0
>>>>
>>>> 49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbi
>>>> xEQ
>>>>
>>>> z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY
>>>> 2F0
>>>>
>>>> aW9uQXV0aG9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vbhbXN1YmNhMS5ub2FtLmdhbGx1c
>>>> C5
>>>>
>>>> jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQ
>>>> pLm
>>>>
>>>> NydDAhBgkrBgEEAYI3FAIEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwCwY
>>>> DV
>>>>
>>>> R0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lU
>>> qdM
>>>> eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3u
>>>> Oj
>>>>
>>>> +SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO9q
>>>> CF5
>>>> n0mItQMmTb
>>>> </wsse:BinarySecurityToken>
>>>> <ds:Signatur xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>>>> Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
>>>> <ds:SignedInfo>
>>>> <ds:CanonicalizationMethod
>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>>> <ec:InclusiveNamespaces
>>>> xmlns:ec="http://www.w3.org/001/10/xml-exc-c14n#" PrefixList="soap"/>
>>>> </ds:CanonicalizationMethod>
>>>> <ds:SignatureMethod
>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
>>>> <ds:Reference
>>>> URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
>>>> <ds:Transforms>
>>>> <ds:Transform
>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>>> <ec:InclusiveNamespaces
>>>> xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
>>>>
>>>> PrefixList="wsse
>>>> soap"/>
>>> </ds:Transform>
>>>> </d:Transforms>
>>>> <ds:DigestMethod
>>>> Algorith="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>>>>
>>>> <ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
>>>> </ds:Reference
>>>> </ds:SignedInfo>
>>>> <ds:SignaturValue>
>>>>
>>>>
>>>> KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9iI
>>>> /AF
>>>>
>>>> 9gTWGtOrCB7nrlE3f8bOLxt3nggokrD8v8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3JrF
>>>> jY3
>>>>
>>>> /yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s+M
>>>> MP
>>>>
>>>> jnmD9E7SM9kCedPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbco6
>>>> RS
>>>>
>>>> SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKcdu
>>>> vBW
>>>>
>>>> 8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WKuU
>>>> CwI
>>>>
>>>> Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfakLW
>>>> SR
>>>>
>>>> tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7xsT
>>>> ofa
>>>>
>>>> fgcSkaBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3MoqT
>>>> oT
>>>> d6JzuGRw=
>>>> </ds:SignatureValue>
>>>> <ds:KeyInfo
>>>> Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
>>>> <wsse:SecurityTokenReference
>>>> wsu:Id="STR-51789ea2-2fa3-425ea31b-bfb9f1e49787">
>>>> <wsse:Referece
>>>> URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>>>>
>>>>
>>>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
>>>> tok
>>>> en-profile-1.0#X509v3"/>
>>>> /wsse:SecurityTokenReference>
>>>> </ds:KeyInfo>
>>>> </ds:Signature>
>>>> </wsse:Security>
>>>> </soap:Header>
>>>> <sapBody>
>>>> <CreateSequence
>>>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>>>>
>>>> xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
>>>>
>>>>
>>>> <ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Address
>>>> </AcksTo>
>>>> <Expires>PT0S</Expires>
>>>> <Offer>
>>>>
>>>> <Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
>>>> <Endpoint>
>>>>
>>>>
>>>> <ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
>>>> </Endpoint>
>>>> <Expires>PT0S</Expires>
>>>> </Offer>
>>>> </CreateSequence>
>>>> </soap:Body>
>>>> </soap:Envelope>
>>>>
>>>>
>>>>
>>>>
>>>> ----- .NET SOAP REQUEST -----
>>>>
>>>> <?xml version="1.0" encoding="utf-8"?>
>>>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
>>>> xlns:a="http://www.w3.org/2005/08/addressing"
>>>>
>>>> xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecuri
>>>> ty
>>>> -utility-1.0.sd">
>>>> <s:Header>
>>>> <a:Action s:mustUnderstand="1"
>>>>
>>>> u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a
>>>> :Ac
>>>> tion>
>>>> <a:MessageID
>>>> uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
>>>> <ActivityId
>>>> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
>>>>
>>>> CorrelationId="bcd3db57-178d48a-bf82-e2c8df52dd37">22aecc77-9a7c-49d9-9
>>>> 1d
>>>> 7-9533bf1599d7</ActivityId>
>>>> <a:To s:mustUnderstand="1"
>>>>
>>>> u:Id="_4">http://ordinsjx75w7.nom.gallup.com/oms.wcf/Authentication.svc
>>>> </
>>>> a:To>
>>>> <o:Security
>>>>
>>>> xmlns:o="http://docs.oasis-open.org/wss/204/01/oasis-200401-wss-wssecur
>>>> ity
>>>> -secext-1.0xsd" s:mustUnderstand="1">
>>>> <u:Timestamp
>>>> u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>>>
>>>> <u:Created>2014-08-14T15:56:02.747Z</u:Created>
>>>>
>>>> <u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
>>>> </u:Timestamp>
>>>> <o:BinarySecurityToken
>>>> uId="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
>>>>
>>>> ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509-t
>>>> ok
>>>> en-profile-1.0#X509v3"
>>>>
>>>> EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-so
>>>> ap-
>>>>
>>>> message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBg
>>>> kq
>>>>
>>>> hkiG9w0BAQUFADBYMRMwEYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2Fs
>>>> bHV
>>>>
>>>> wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbN1YmNhMTAeFw0xNDA0MDIy
>>>> MD
>>>>
>>>> E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJKo
>>>> ZIh
>>>>
>>>> vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uL4HPKuSi2Ocld
>>>> 3f
>>>>
>>>> DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDrGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9Ta
>>>> PrI
>>>>
>>>> 61b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkrBgEE
>>>> AY
>>>>
>>>> I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1UdDw
>>>> QEA
>>>>
>>>> wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq4W
>>>> Xm0
>>>>
>>>> +Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6B/KCB+YaBtmxkYXA6L8vQ049bm9hb
>>>> XN
>>>>
>>>> 1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWN
>>>> lcy
>>>>
>>>> xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaW
>>>> Nhd
>>>>
>>>> GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW5h
>>>> j5o
>>>>
>>>> dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2Ex
>>>> KDM
>>>>
>>>> pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DTj1
>>>> ub2
>>>>
>>>> Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcy
>>>> xDT
>>>>
>>>> j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29ia
>>>> mVj
>>>>
>>>> dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2Ft
>>>> c3V
>>>>
>>>> iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsdXA
>>>> uY2
>>>>
>>>> 9tX25vYW1zdWJjYTEoNCkuY3J0MA0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyNMY
>>>> gga
>>>>
>>>> vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2BzFl
>>>> 0xi
>>>>
>>>> 16WbmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28Tj
>>>> </o
>>>> :BinarySecurityToken>
>>>> <Signature
>>>> xmlns="http://www.w3.org/2000/09/xmldsig#">
>>>> <SignedInfo>
>>>> <CanonicalizationMethod
>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>> <SignatureMethod
>>>> Algorithm="http://www.w3.org/2000/09/xmdsig#rsa-sha1"/>
>>>> <Reference URI="#_1">
>>>> <Transforms>
>>> <Transform
>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>> </Transforms>
>>>> <DigestMethod
>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>
>>>> <DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
>>>> </Reference>
>>>> <Reference URI="#_2">
>>>> <Transforms>
>>>> <Transform
>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>> </Transforms>
>>>> <DigestMethod
>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>
>>>> <DigestValue>/y/ysxeFBIlVOQK860fYd641KA=</DigestValue>
>>>> </Reference>
>>>> <Referece URI="#_3">
>>>> <Transforms>
>>>> <Transform
>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>> </Transforms>
>>>> <DigestMethod
>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>
>>>> <DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
>>>> </Reference>
>>>> <Reference URI="#_4">
>>>> <Transforms>
>>>> <Transform
>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>> </Transforms>
>>>> <DigestMethod
>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>
>>>> <DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
>>>> </Reference>
>>>> <Reference
>>>> URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>>> <Transforms>
>>>> <Transform
>>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>>> </Transforms>
>>>> <DigestMethod
>>>> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>>
>>>> <DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
>>>> </Reference>
>>>> </SignedInfo>
>>>>
>>>> <SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0O
>>>>
>>>> lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+XnRp
>>>> Ny5
>>>> ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
>>>> <KeyInfo>
>>>> <o:SecurityTokenReference>
>>>> <o:Reference
>>>>
>>>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
>>>> tok
>>>> en-profile-1.0#X509v3"
>>>> URI="#uuid-40c54dbb369c-4ce8-8b8d-6fcfcd03dc29-2"/>
>>>> </o:SecurityTokenReference>
>>>> </KeyInfo>
>>>> </Signature>
>>>> </o:Security>
>>>> </s:Header>
>>>> <s:Body u:Id="_1">
>>>> <CreateSequence
>>>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
>>>> <AcksTo>
>>>>
>>>> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
>>>> </AcksTo>
>>>> <Offer>
>>>>
>>>> <Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
>>>> <Endpoint>
>>>>
>>>> <a:Address>http://www.w3.org/2005/08/addrssing/anonymous</a:Address>
>>>> </Endpoint>
>>>>
>>>> <IncompleteSequenceBehavior>DiscardFollowingFirstap</IncompleteSequenc
>>>> eBehavior>
>>>> </Offer>
>>>> </CreateSequence>
>>>> </s:Body>
>>>> </s:Envelope>>>>
>>>>
>>>>
>>>>
>>>> ----- WSDL -----
>>>>
>>>> <?xml version="1.0" encoding="utf-8"?>
>>>> <wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>>>> xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>>>> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>>>>
>>>> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
>>>> uri
>>>> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/ddressing"
>>>> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>>>> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>>>> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>>>> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>>>> xmlns:wsa="htp://schemas.xmlsoap.org/ws/2004/08/addressing"
>>>> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>>>> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>>>> xmlns:tns="http://tempuri.org/"
>>>> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>>>> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>>>> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>>>> name="Authentication" targetNamespace="http://tempuri.org/">
>>>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <wsrmp:RMAssertion
>>>> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
>>>> <wsp:Policy>
>>>>
>>>> <wsrmp:DeliveryAssurance>
>>>> <wsp:Policy>
>>>>
>>>> <wsrmp:ExactlyOnce/>
>>>>
>>>> <wsrmp:InOrder/>
>>>> </wsp:Policy>
>>>>
>>>> </wsrmp:DeliveryAssurance>
>>>> </wsp:Policy>
>>>> <etrmp:InactivityTimeout
>>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>>> Milliseconds="600000"/>
>>>> <netrmp:AcknowledgementInterval
>>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>>> Milliseconds="200"/>
>>>> </wsrmp:RMAssertion>
>>>> <sp:AsymmetricBinding
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <wsp:Policy>
>>>> <sp:InitiatorToken>
>>>> <wsp:Policy>
>>>>
>>>> <sp:X509Token
>>>>
>>> sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/In
>>>> clu
>>>> deToken/AlwaysToRecipient">
>>>>
>>>> <wsp:Policy>
>>>>
>>>> <sp:WssX509V3Token10/>
>>>>
>>>> </wsp:Policy>
>>>>
>>>> </sp:X509Token>
>>>> </wsp:Policy>
>>>> </sp:InitiatorToken>
>>>> <sp:RecipientToken>
>>>> <wsp:Policy>
>>>>
>>>> <sp:X509Token
>>>>
>>>> sp:IncludeToken="http://schemas.xmlsoap.org/ws/200507/securitypolicy/In
>>>> clu
>>>> deToken/Never">
>>>>
>>>> <wsp:Policy>
>>>>
>>>> <sp:WssX509V3Token10/>
>>>>
>>>> </wsp:Policy>
>>>>
>>>> </sp:X509Token>
>>>> </wsp:Policy>
>>>> </sp:RecipientToken>
>>>> <sp:lgorithmSuite>
>>>> <wsp:Policy>
>>>>
>>>> <sp:Basic256/>
>>>> </wsp:Policy>
>>>> </sp:AlgorithmSuite>
>>>> <sp:Layout>
>>>> <wsp:Policy>
>>>>
>>>> <sp:Strict/>
>>>> </wsp:Policy>
>>>> </sp:Layout>
>>>> <sp:IncludeTimestamp/>
>>>>
>>>> <sp:OnlySignEntireHeadersAndBody/>
>>>> </wsp:Policy>
>>>> </sp:AsymmetricBinding>
>>>> <sp:Wss10
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <wsp:Policy>
>>>>
>>>> <sp:MustSupportRefKeyIdentifier/>
>>>>
>>>> <sp:MustSupportRefIssuerSerial/>
>>>> </wsp:Policy>
>>>> </sp:Wss10>
>>>> <sp:Trust10
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <wsp:Policy>
>>>>
>>>> <sp:MustSupportIssuedTokens/>
>>>>
>>>> <sp:ReuireClientEntropy/>
>>>>
>>>> <sp:RequireServerEntropy/>
>>>> </wsp:Policy>
>>>> </sp:Trust10>
>>>> <wsaw:UsingAddressing/>
>>>> </wsp:All>
>>>> </wp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://scheas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmloap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.og/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.mcrosoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.rg/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/s/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/srm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.om/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/205/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsp:Policy
>>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
>>>> <wsp:ExactlyOne>
>>>> <wsp:All>
>>>> <sp:SignedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Body/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> <sp:Header Name="Sequence"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="SequenceAcknowledgement"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="AckRequested"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header
>>>> Name="UsesSequenceSTR"
>>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>>> <sp:Header Name="To"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="From"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="FaultTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="ReplyTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="MessageID"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="RelatesTo"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> <sp:Header Name="Action"
>>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>>> </sp:SignedParts>
>>>> <sp:EncryptedParts
>>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>>> <sp:Header
>>>> Name="CoordinationContext"
>>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>>> <sp:Header
>>>> Name="OleTxTransaction"
>>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>>> <sp:Header Name="IssuedTokens"
>>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>>> </sp:EncryptedParts>
>>>> </wsp:All>
>>>> </wsp:ExactlyOne>
>>>> </wsp:Policy>
>>>> <wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
>>>>
>>>> location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.s
>>>> vc?
>>>> wsdl=wsdl0"/>
>>>> <wsdl:types/>
>>>> <wsdl:binding name="AuthenticationDiacapEndpoint"
>>>> type="i0:IAuthentication">
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_policy"/>
>>>> <soap12:binding
>>>> transport="http://schemas.xmlsoap.org/soap/http"/>
>>>> <wsdl:operation name="Activate">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activa
>>>> te"
>>>> style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="ChangePassword">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Change
>>>> Pas
>>>> sword" style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="Create">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create
>>>> "
>>>> style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="Expire">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire
>>>> "
>>>> style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="GetAnswers">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAns
>>>> wer
>>>> s" style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="GetPolicy">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPol
>>>> icy
>>>> " style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="GetQuestions">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQue
>>>> sti
>>>> ons" style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="GetUsernames">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUse
>>>> rna
>>>> mes" style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="Reset">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
>>>> style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="Update">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update
>>>> "
>>>> style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="Validate">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Valida
>>>> te"
>>>> style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> <wsdl:operation name="ValidateEmail">
>>>> <soap12:operation
>>>>
>>>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Valida
>>>> teE
>>>> mail" style="document"/>
>>>> <wsdl:input>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:input>
>>>> <wsdl:output>
>>>> <wsp:PolicyReference
>>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
>>>> <soap12:body use="literal"/>
>>>> </wsdl:output>
>>>> </wsdl:operation>
>>>> </wsdl:binding>
>>>> <wsdl:service name="Authentication">
>>>> <wsdl:port name="AuthenticationDiacapEndpoint"
>>>> binding="tns:AuthenticationDiacapEndpoint">
>>>> <soap12:address
>>>>
>>>> location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.sv
>>>> c"/
>>>> <wsa10:EndpointReference>
>>>>
>>>> <wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authenticat
>>>> ion.svc</wsa10:Address>
>>>> <Identity
>>>> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
>>>> <KeyInfo
>>>> xmlns="http://www.w3.org/2000/09/xmldsig#">
>>>> <X509Data>
>>>>
>>>> <X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU
>>>>
>>>> FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwFQY
>>>> KCZ
>>>>
>>>> ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcxND
>>>> EyM
>>>>
>>>> jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyL
>>>> GQB
>>>>
>>>> GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb21w
>>>> dXR
>>>>
>>>> lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wdXR
>>>> lcn
>>>>
>>>> MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAK
>>>> TG+
>>>>
>>>> rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/IM
>>>> JhE
>>>>
>>>> tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO51
>>>> H18
>>>>
>>>> bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQi
>>>> SzT
>>>>
>>>> iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMBBg
>>>> grB
>>>>
>>>> gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBggrB
>>>> gEF
>>>>
>>>> BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ4E
>>>> FgQ
>>>>
>>>> UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/OU
>>>> wgg
>>>>
>>>> EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNhMS
>>>> xDT
>>>>
>>>> j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZ
>>>> XJ2
>>>>
>>>> aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZXZv
>>>> Y2F
>>>>
>>>> 0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwOi8
>>>> vY2
>>>>
>>>> VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3ViY2
>>>> ExL
>>>>
>>>> mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1jZ
>>>> W50
>>>>
>>>> ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNl
>>>> cyx
>>>>
>>>> DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29
>>>> iam
>>>>
>>>> VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9jZW
>>>> 50Z
>>>>
>>>> XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTEuY
>>>> 2Vu
>>>>
>>>> dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4IC
>>>> AQA
>>>>
>>>> aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBWmL
>>>> ZgI
>>>>
>>>> 9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8dCQ
>>>> BpH
>>>>
>>>> 3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYivG9
>>>> VFX
>>>>
>>>> ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAuvQ
>>>> BQf
>>>>
>>>> 0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFLak
>>>> yiA
>>>>
>>>> eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpUrD
>>>> +Ma
>>>>
>>>> Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V+y
>>>> ydv
>>>>
>>>> /hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT9V
>>>> HN6
>>>>
>>>> gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJbkd
>>>> a0B
>>>> pF1xatiQ==</X509Certificate>
>>>> </X509Data>
>>>> </KeyInfo>
>>>> </Identity>
>>>> </wsa10:EndpointReference>
>>>> </wsdl:port>
>>>> </wsdl:service>
>>>> </wsdl:definitions>
>>>>
>>>>
>>>> All information in this message is confidential and may be legally
>>>> privileged. Only intended recipients are authorized to use it.
>>>>
>> --
>> Daniel Kulp
>> dkulp@apache.org - http://dankulp.com/blog
>> Talend Community Coder - http://coders.talend.com
> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
Dan & Dennis,
The last 3 weeks were a blissful mirage, appearing like we had been given
a reprieve in getting this particular WSDL configuration on the WCF
service to work. Today I learned we have to make this work.
Dan, I have a question about your suggestion below. How literally should
I take the word "move"? Should the WSDL no longer have those assertions
within
the methods themselves, or should I merely copy them so that they appear
both within the methods and within AuthenticationDiacapEndpoint_policy?
On 8/14/14 9:09 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>
>On Aug 14, 2014, at 4:58 PM, Dennis Sosnoski <dm...@sosnoski.com> wrote:
>
>> Hi Paul,
>>
>> I think I see what's going on here. Your
>>AuthenticationDiacapEndpoit_policy which specifies the use of RM and
>>AsymmetricBinding doesn't set anything to be signed, instead leaving
>>that to the individual input andoutput policies (such as
>>AuthenticationDiacapEndpoint_Activate_Input_policy). But because RM
>>isn't using one of those specified inputs or outputs i doesn't get a
>>policy that says the body should be signed.
>>
>> Dan, how do you think this should be handled? We obviously want to be
>>compatible with WCF, but I'm not sure how it should be implemented.
>
>Hmm…. that’s a very good point. I’m not sure either. If it’s picking
>up policies from the Input, and with that wsdl, the CreateSequence call
>could have different security requirements depending on which as the
>first operation you were trying to call. I cannot imaging that being a
>good thing. Not even sure how we could implement that. On the client
>side, we could use the current operation to get the operation policy and
>use it. On the service side, no idea as we’d have NO idea whic
>operation was the intended target.
>
>The simple workaround if you want to try something is to copy the wsdl
>locally and update the AuthenticationDiacapEndpoint_policy to move the
>sp:SignedParts and sp:EncryptedParts assertions directly into it. That
>SHOULD work.
>
>Dan
>
>
>
>>
>> - Dennis
>>
>> On 08/15/2014 04:30 AM, Longsine, Pohl wrote:
>>> On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>>
>>>> The policy has a <sp:EncryptSignature/> assertion in it so I would
>>>> have expected the signatures to be encrypted. The CXF request has
>>>>two
>>>> ncryptedData elements which MAY correspond to the two Signatures that
>>>> the .NET client is sending. No really sure though as I don¹t know
>>>>what
>>>> is in the encrypted data.
>>>>
>>>> You could try removing that rom the policy and see if CXF does
>>>>something
>>>> different. At the very least, it may show the Signatures.
>>>>
>>>> That said, there is still an issue. I don¹t see a wsu:Id on the
>>>> soap:Body. Thus, it doesn¹t look like CXF is signing the Body like it
>>>> should be. Actully, I don¹t see the Id on the and of the WS-A
>>>>headers
>>>> either. It would be good to see wha CXF is signing. Or at least
>>>>hat
>>>> is in the encrypted data.
>>>>
>>>> Dan
>>> Dan, I really appreciate your attention here. Thank you.
>>>
>>> I askd the .NET team to make the specific change that you requested
>>> (removing the EncryptSignature assertio from their WSDL). They must
>>>hae
>>> not been able to do such a small, targeted change. Instead, the made
>>>the
>>> following change, which had the side-effect of the EncryptSignature no
>>> longer beng there. That said, a few other small things in the WSDL
>>>also
>>> changed, perhaps not in a way that matters For reference, here's what
>>> they say they changed:
>>>
>>>> I¹ve changed the message security versio to be an older version
>>>>
>>>>
>>>>(WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecui
>>>>ty
>>>> Policy11BasicSecurityProfile10
>>>> instead of
>>>>
>>>>WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecurit
>>>>yP
>>>> olicy11)
>>>
>>>
>>> Now our soap request has Signature element in it, although the id
>>> attributes that you noted were absent ar sill not there. The end
>>>result,
>>> from a soap fault perspective, is the same.
>>>
>>> Doe this help you analyze what is going wrong here?
>>>
>>
>>>
>>>
>>>
>>> ----- CXF SOAP REQUEST -----
>>>
>>> soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>>> <soap:Header
>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>>> http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>>> </Action>
>>> <MessageID
>>>
>>>xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-4984-
>>>86
>>> 28-c4298b0fa3b1
>>> </MessageID>
>>> <To
>>>
>>>xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com
>>>/OM
>> S/V2/Diacap/Autentication.svc
>>> </To>
>>> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>>>
>>> <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
>>> </ReplyTo>
>>> <wss:Security
>>>
>>>xmlns:wsse="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wsse
>>>cur
>>> ity-secext-1.0.xsd"
>>>
>>>
>>>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
>>>uri
>>> ty-utility-1.0.xsd"
>>> soap:mustUnderstand=true">
>>> <wsu:Timestamp
>>> wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
>>> <wsu:Created>2014-08-14T6:12:04.392Z</wsu:Created>
>>> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
>>> </wsu:Timestamp>
>>> <wsse:BinarySecurityToken
>>>
>>>
>>>EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-soa
>>>p-
>>> message-security-1.0#Base64Binary"
>>>
>>>
>>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
>>>tok
>>> en-profle-1.0#X509v3"
>>> wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">
>>>
>>>
>>>MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRMwEQYKCZImiZPyL
>>>GQ
>>>
>>>BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTET
>>>MB
>>>
>>>EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxCzA
>>>JB
>>>
>>>gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEEDzANBgNVBAoTBk
>>>dB
>>>
>>>TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAxQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0GC
>>>Sq
>>>
>>>GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCk87lbdHZ5yV1y9LTH31n2FflLym28QRBSc9cRDB
>>>Br
>>>
>>>dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlH
>>>pI
>>>
>>>T1sZh9xSe14mvyrn66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9
>>>NL3
>>>
>>>Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWPen3JT3V1vHdPRjU2b7tsx1wW1S00/gnJ1
>>>fC
>>>
>>>d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOE
>>>VF
>>>
>>>OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObOj/
>>>bi
>>>
>>>UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6c6
>>>XJ
>>>
>>>/09MjATev+wkGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/Iyb
>>>iIG6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7H
>>>kQf2bY
>>>
>>>XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLL
>>>Js
>>>
>>>ezsj6lSjcifjxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7mF9NMIIBDw
>>>YD
>>>
>>>VR0fBIIBBjCCAQIwgf+ggfygfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9h
>>>bXN
>>>
>>>1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049
>>>Q2
>>>
>>9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3
>>>Q/Y
>>>
>>>mFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vW1zdWJjYT
>>>Eu
>>>
>>>bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEF
>>>BQc
>>>
>>>BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bXN1YmNhMSxDTj1BSUEs
>>>Q0
>>>
>>>49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbi
>>>xEQ
>>>
>>>z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY
>>>2F0
>>>
>>>aW9uQXV0aG9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vbhbXN1YmNhMS5ub2FtLmdhbGx1c
>>>C5
>>>
>>>jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQ
>>>pLm
>>>
>>>NydDAhBgkrBgEEAYI3FAIEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwCwY
>>>DV
>>>
>>>R0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lU
>>qdM
>>>
>>>eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3u
>>>Oj
>>>
>>>+SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO9q
>>>CF5
>>> n0mItQMmTb
>>> </wsse:BinarySecurityToken>
>>> <ds:Signatur xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>>> Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
>>> <ds:SignedInfo>
>>> <ds:CanonicalizationMethod
>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>> <ec:InclusiveNamespaces
>>> xmlns:ec="http://www.w3.org/001/10/xml-exc-c14n#" PrefixList="soap"/>
>>> </ds:CanonicalizationMethod>
>>> <ds:SignatureMethod
>>> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
>>> <ds:Reference
>>> URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
>>> <ds:Transforms>
>>> <ds:Transform
>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>> <ec:InclusiveNamespaces
>>> xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
>>>
>>>PrefixList="wsse
>>> soap"/>
>> </ds:Transform>
>>> </d:Transforms>
>>> <ds:DigestMethod
>>> Algorith="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>> <ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
>>> </ds:Reference
>>> </ds:SignedInfo>
>>> <ds:SignaturValue>
>>>
>>>
>>>KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9iI
>>>/AF
>>>
>>>9gTWGtOrCB7nrlE3f8bOLxt3nggokrD8v8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3JrF
>>>jY3
>>>
>>>/yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s+M
>>>MP
>>>
>>>jnmD9E7SM9kCedPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbco6
>>>RS
>>>
>>>SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKcdu
>>>vBW
>>>
>>>8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WKuU
>>>CwI
>>>
>>>Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfakLW
>>>SR
>>>
>>>tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7xsT
>>>ofa
>>>
>>>fgcSkaBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3MoqT
>>>oT
>>> d6JzuGRw=
>>> </ds:SignatureValue>
>>> <ds:KeyInfo
>>>Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
>>> <wsse:SecurityTokenReference
>>> wsu:Id="STR-51789ea2-2fa3-425ea31b-bfb9f1e49787">
>>> <wsse:Referece
>>> URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>>>
>>>
>>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
>>>tok
>>> en-profile-1.0#X509v3"/>
>>> /wsse:SecurityTokenReference>
>>> </ds:KeyInfo>
>>> </ds:Signature>
>>> </wsse:Security>
>>> </soap:Header>
>>> <sapBody>
>>> <CreateSequence
>>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>>>
>>>xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
>>>
>>>
>>><ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Address
>>>>
>>> </AcksTo>
>>> <Expires>PT0S</Expires>
>>> <Offer>
>>>
>>> <Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
>>> <Endpoint>
>>>
>>>
>>><ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
>>> </Endpoint>
>>> <Expires>PT0S</Expires>
>>> </Offer>
>>> </CreateSequence>
>>> </soap:Body>
>>> </soap:Envelope>
>>>
>>>
>>>
>>>
>>> ----- .NET SOAP REQUEST -----
>>>
>>> <?xml version="1.0" encoding="utf-8"?>
>>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
>>> xlns:a="http://www.w3.org/2005/08/addressing"
>>>
>>>xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecuri
>>>ty
>>> -utility-1.0.sd">
>>> <s:Header>
>>> <a:Action s:mustUnderstand="1"
>>>
>>>u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a
>>>:Ac
>>> tion>
>>> <a:MessageID
>>> uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
>>> <ActivityId
>>> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
>>>
>>>CorrelationId="bcd3db57-178d48a-bf82-e2c8df52dd37">22aecc77-9a7c-49d9-9
>>>1d
>>> 7-9533bf1599d7</ActivityId>
>>> <a:To s:mustUnderstand="1"
>>>
>>>u:Id="_4">http://ordinsjx75w7.nom.gallup.com/oms.wcf/Authentication.svc
>>></
>>> a:To>
>>> <o:Security
>>>
>>>xmlns:o="http://docs.oasis-open.org/wss/204/01/oasis-200401-wss-wssecur
>>>ity
>>> -secext-1.0xsd" s:mustUnderstand="1">
>>> <u:Timestamp
>>>u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>>
>>><u:Created>2014-08-14T15:56:02.747Z</u:Created>
>>>
>>><u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
>>> </u:Timestamp>
>>> <o:BinarySecurityToken
>>> uId="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
>>>
>>>ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509-t
>>>ok
>>> en-profile-1.0#X509v3"
>>>
>>>EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-so
>>>ap-
>>>
>>>message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBg
>>>kq
>>>
>>>hkiG9w0BAQUFADBYMRMwEYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2Fs
>>>bHV
>>>
>>>wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbN1YmNhMTAeFw0xNDA0MDIy
>>>MD
>>>
>>>E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJKo
>>>ZIh
>>>
>>>vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uL4HPKuSi2Ocld
>>>3f
>>>
>>>DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDrGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9Ta
>>>PrI
>>>
>>>61b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkrBgEE
>>>AY
>>>
>>>I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1UdDw
>>>QEA
>>>
>>>wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq4W
>>>Xm0
>>>
>>>+Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6B/KCB+YaBtmxkYXA6L8vQ049bm9hb
>>>XN
>>>
>>>1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWN
>>>lcy
>>>
>>>xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaW
>>>Nhd
>>>
>>>GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW5h
>>>j5o
>>>
>>>dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2Ex
>>>KDM
>>>
>>>pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DTj1
>>>ub2
>>>
>>>Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcy
>>>xDT
>>>
>>>j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29ia
>>>mVj
>>>
>>>dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2Ft
>>>c3V
>>>
>>>iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsdXA
>>>uY2
>>>
>>>9tX25vYW1zdWJjYTEoNCkuY3J0MA0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyNMY
>>>gga
>>>
>>>vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2BzFl
>>>0xi
>>>
>>>16WbmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28Tj
>>></o
>>> :BinarySecurityToken>
>>> <Signature
>>>xmlns="http://www.w3.org/2000/09/xmldsig#">
>>> <SignedInfo>
>>> <CanonicalizationMethod
>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> <SignatureMethod
>>> Algorithm="http://www.w3.org/2000/09/xmdsig#rsa-sha1"/>
>>> <Reference URI="#_1">
>>> <Transforms>
>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
>>> </Reference>
>>> <Reference URI="#_2">
>>> <Transforms>
>>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>/y/ysxeFBIlVOQK860fYd641KA=</DigestValue>
>>> </Reference>
>>> <Referece URI="#_3">
>>> <Transforms>
>>> <Transform
>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
>>> </Reference>
>>> <Reference URI="#_4">
>>> <Transforms>
>>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
>>> </Reference>
>>> <Reference
>>>URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>> <Transforms>
>>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
>>> </Reference>
>>> </SignedInfo>
>>>
>>><SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0O
>>>
>>>lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+XnRp
>>>Ny5
>>> ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
>>> <KeyInfo>
>>> <o:SecurityTokenReference>
>>> <o:Reference
>>>
>>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
>>>tok
>>> en-profile-1.0#X509v3"
>>>URI="#uuid-40c54dbb369c-4ce8-8b8d-6fcfcd03dc29-2"/>
>>> </o:SecurityTokenReference>
>>> </KeyInfo>
>>> </Signature>
>>> </o:Security>
>>> </s:Header>
>>> <s:Body u:Id="_1">
>>> <CreateSequence
>>>xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
>>> <AcksTo>
>>>
>>><a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
>>> </AcksTo>
>>> <Offer>
>>>
>>><Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
>>> <Endpoint>
>>>
>>><a:Address>http://www.w3.org/2005/08/addrssing/anonymous</a:Address>
>>> </Endpoint>
>>>
>>><IncompleteSequenceBehavior>DiscardFollowingFirstap</IncompleteSequenc
>>> eBehavior>
>>> </Offer>
>>> </CreateSequence>
>>> </s:Body>
>>> </s:Envelope>>>>
>>>
>>>
>>>
>>> ----- WSDL -----
>>>
>>> <?xml version="1.0" encoding="utf-8"?>
>>> <wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>>> xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>>> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>>>
>>>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
>>>uri
>>> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/ddressing"
>>> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>>> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>>> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>>> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>>> xmlns:wsa="htp://schemas.xmlsoap.org/ws/2004/08/addressing"
>>> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>>> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>>> xmlns:tns="http://tempuri.org/"
>>> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>>> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>>> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>>> name="Authentication" targetNamespace="http://tempuri.org/">
>>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <wsrmp:RMAssertion
>>> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
>>> <wsp:Policy>
>>>
>>><wsrmp:DeliveryAssurance>
>>> <wsp:Policy>
>>>
>>><wsrmp:ExactlyOnce/>
>>>
>>><wsrmp:InOrder/>
>>> </wsp:Policy>
>>>
>>></wsrmp:DeliveryAssurance>
>>> </wsp:Policy>
>>> <etrmp:InactivityTimeout
>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>> Milliseconds="600000"/>
>>> <netrmp:AcknowledgementInterval
>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>> Milliseconds="200"/>
>>> </wsrmp:RMAssertion>
>>> <sp:AsymmetricBinding
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <wsp:Policy>
>>> <sp:InitiatorToken>
>>> <wsp:Policy>
>>>
>>><sp:X509Token
>>>
>>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/In
>>>clu
>>> deToken/AlwaysToRecipient">
>>>
>>> <wsp:Policy>
>>>
>>> <sp:WssX509V3Token10/>
>>>
>>> </wsp:Policy>
>>>
>>></sp:X509Token>
>>> </wsp:Policy>
>>> </sp:InitiatorToken>
>>> <sp:RecipientToken>
>>> <wsp:Policy>
>>>
>>><sp:X509Token
>>>
>>>sp:IncludeToken="http://schemas.xmlsoap.org/ws/200507/securitypolicy/In
>>>clu
>>> deToken/Never">
>>>
>>> <wsp:Policy>
>>>
>>> <sp:WssX509V3Token10/>
>>>
>>> </wsp:Policy>
>>>
>>></sp:X509Token>
>>> </wsp:Policy>
>>> </sp:RecipientToken>
>>> <sp:lgorithmSuite>
>>> <wsp:Policy>
>>>
>>><sp:Basic256/>
>>> </wsp:Policy>
>>> </sp:AlgorithmSuite>
>>> <sp:Layout>
>>> <wsp:Policy>
>>>
>>><sp:Strict/>
>>> </wsp:Policy>
>>> </sp:Layout>
>>> <sp:IncludeTimestamp/>
>>>
>>><sp:OnlySignEntireHeadersAndBody/>
>>> </wsp:Policy>
>>> </sp:AsymmetricBinding>
>>> <sp:Wss10
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <wsp:Policy>
>>>
>>><sp:MustSupportRefKeyIdentifier/>
>>>
>>><sp:MustSupportRefIssuerSerial/>
>>> </wsp:Policy>
>>> </sp:Wss10>
>>> <sp:Trust10
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <wsp:Policy>
>>>
>>><sp:MustSupportIssuedTokens/>
>>>
>>><sp:ReuireClientEntropy/>
>>>
>>><sp:RequireServerEntropy/>
>>> </wsp:Policy>
>>> </sp:Trust10>
>>> <wsaw:UsingAddressing/>
>>> </wsp:All>
>>> </wp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://scheas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmloap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.og/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.mcrosoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.rg/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/s/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/srm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.om/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/205/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
>>>
>>>location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.s
>>>vc?
>>> wsdl=wsdl0"/>
>>> <wsdl:types/>
>>> <wsdl:binding name="AuthenticationDiacapEndpoint"
>>> type="i0:IAuthentication">
>>> <wsp:PolicyReference
>>>URI="#AuthenticationDiacapEndpoint_policy"/>
>>> <soap12:binding
>>>transport="http://schemas.xmlsoap.org/soap/http"/>
>>> <wsdl:operation name="Activate">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activa
>>>te"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="ChangePassword">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Change
>>>Pas
>>> sword" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Create">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create
>>>"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Expire">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire
>>>"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="GetAnswers">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAns
>>>wer
>>> s" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="GetPolicy">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPol
>>>icy
>>> " style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="GetQuestions">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQue
>>>sti
>>> ons" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="GetUsernames">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUse
>>>rna
>>> mes" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Reset">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Update">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update
>>>"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Validate">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Valida
>>>te"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="ValidateEmail">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Valida
>>>teE
>>> mail" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> </wsdl:binding>
>>> <wsdl:service name="Authentication">
>>> <wsdl:port name="AuthenticationDiacapEndpoint"
>>> binding="tns:AuthenticationDiacapEndpoint">
>>> <soap12:address
>>>
>>>location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.sv
>>>c"/
>>> <wsa10:EndpointReference>
>>>
>>><wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authenticat
>>> ion.svc</wsa10:Address>
>>> <Identity
>>> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
>>> <KeyInfo
>>>xmlns="http://www.w3.org/2000/09/xmldsig#">
>>> <X509Data>
>>>
>>><X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU
>>>
>>>FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwFQY
>>>KCZ
>>>
>>>ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcxND
>>>EyM
>>>
>>>jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyL
>>>GQB
>>>
>>>GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb21w
>>>dXR
>>>
>>>lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wdXR
>>>lcn
>>>
>>>MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAK
>>>TG+
>>>
>>>rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/IM
>>>JhE
>>>
>>>tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO51
>>>H18
>>>
>>>bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQi
>>>SzT
>>>
>>>iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMBBg
>>>grB
>>>
>>>gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBggrB
>>>gEF
>>>
>>>BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ4E
>>>FgQ
>>>
>>>UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/OU
>>>wgg
>>>
>>>EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNhMS
>>>xDT
>>>
>>>j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZ
>>>XJ2
>>>
>>>aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZXZv
>>>Y2F
>>>
>>>0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwOi8
>>>vY2
>>>
>>>VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3ViY2
>>>ExL
>>>
>>>mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1jZ
>>>W50
>>>
>>>ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNl
>>>cyx
>>>
>>>DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29
>>>iam
>>>
>>>VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9jZW
>>>50Z
>>>
>>>XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTEuY
>>>2Vu
>>>
>>>dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4IC
>>>AQA
>>>
>>>aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBWmL
>>>ZgI
>>>
>>>9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8dCQ
>>>BpH
>>>
>>>3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYivG9
>>>VFX
>>>
>>>ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAuvQ
>>>BQf
>>>
>>>0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFLak
>>>yiA
>>>
>>>eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpUrD
>>>+Ma
>>>
>>>Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V+y
>>>ydv
>>>
>>>/hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT9V
>>>HN6
>>>
>>>gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJbkd
>>>a0B
>>> pF1xatiQ==</X509Certificate>
>>> </X509Data>
>>> </KeyInfo>
>>> </Identity>
>>> </wsa10:EndpointReference>
>>> </wsdl:port>
>>> </wsdl:service>
>>> </wsdl:definitions>
>>>
>>>
>>> All information in this message is confidential and may be legally
>>>privileged. Only intended recipients are authorized to use it.
>>>
>>
>
>--
>Daniel Kulp
>dkulp@apache.org - http://dankulp.com/blog
>Talend Community Coder - http://coders.talend.com
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Daniel Kulp <dk...@apache.org>.
On Aug 14, 2014, at 4:58 PM, Dennis Sosnoski <dm...@sosnoski.com> wrote:
> Hi Paul,
>
> I think I see what's going on here. Your AuthenticationDiacapEndpoint_policy which specifies the use of RM and AsymmetricBinding doesn't set anything to be signed, instead leaving that to the individual input and output policies (such as AuthenticationDiacapEndpoint_Activate_Input_policy). But because RM isn't using one of those specified inputs or outputs it doesn't get a policy that says the body should be signed.
>
> Dan, how do you think this should be handled? We obviously want to be compatible with WCF, but I'm not sure how it should be implemented.
Hmm…. that’s a very good point. I’m not sure either. If it’s picking up policies from the Input, and with that wsdl, the CreateSequence call could have different security requirements depending on which was the first operation you were trying to call. I cannot imaging that being a good thing. Not even sure how we could implement that. On the client side, we could use the current operation to get the operation policy and use it. On the service side, no idea as we’d have NO idea which operation was the intended target.
The simple workaround if you want to try something is to copy the wsdl locally and update the AuthenticationDiacapEndpoint_policy to move the sp:SignedParts and sp:EncryptedParts assertions directly into it. That SHOULD work.
Dan
>
> - Dennis
>
> On 08/15/2014 04:30 AM, Longsine, Pohl wrote:
>> On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>
>>> The policy has a <sp:EncryptSignature/> assertion in it so I would
>>> have expected the signatures to be encrypted. The CXF request has two
>>> ncryptedData elements which MAY correspond to the two Signatures that
>>> the .NET client is sending. No really sure though as I don¹t know what
>>> is in the encrypted data.
>>>
>>> You could try removing that rom the policy and see if CXF does something
>>> different. At the very least, it may show the Signatures.
>>>
>>> That said, there is still an issue. I don¹t see a wsu:Id on the
>>> soap:Body. Thus, it doesn¹t look like CXF is signing the Body like it
>>> should be. Actully, I don¹t see the Id on the and of the WS-A headers
>>> either. It would be good to see what CXF is signing. Or at least hat
>>> is in the encrypted data.
>>>
>>> Dan
>> Dan, I really appreciate your attention here. Thank you.
>>
>> I askd the .NET team to make the specific change that you requested
>> (removing the EncryptSignature assertio from their WSDL). They must have
>> not been able to do such a small, targeted change. Instead, the made the
>> following change, which had the side-effect of the EncryptSignature no
>> longer beng there. That said, a few other small things in the WSDL also
>> changed, perhaps not in a way that matters For reference, here's what
>> they say they changed:
>>
>>> I¹ve changed the message security versio to be an older version
>>>
>>> (WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecuity
>>> Policy11BasicSecurityProfile10
>>> instead of
>>> WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecurityP
>>> olicy11)
>>
>>
>> Now our soap request has Signature element in it, although the id
>> attributes that you noted were absent ar still not there. The end result,
>> from a soap fault perspective, is the same.
>>
>> Doe this help you analyze what is going wrong here?
>>
>>
>>
>>
>>
>> ----- CXF SOAP REQUEST -----
>>
>> soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>> <soap:Header
>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>> http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>> </Action>
>> <MessageID
>> xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-4984-86
>> 28-c4298b0fa3b1
>> </MessageID>
>> <To
>> xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com/OM
>> S/V2/Diacap/Autentication.svc
>> </To>
>> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>>
>> <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
>> </ReplyTo>
>> <wss:Security
>> xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
>> ity-secext-1.0.xsd"
>>
>> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
>> ty-utility-1.0.xsd"
>> soap:mustUnderstand=true">
>> <wsu:Timestamp
>> wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
>> <wsu:Created>2014-08-14T6:12:04.392Z</wsu:Created>
>> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
>> </wsu:Timestamp>
>> <wsse:BinarySecurityToken
>>
>> EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
>> message-security-1.0#Base64Binary"
>>
>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
>> en-profle-1.0#X509v3"
>> wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">
>>
>> MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLGQ
>> BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMB
>> EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxCzAJB
>> gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEExDzANBgNVBAoTBkdB
>> TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAxQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0GCSq
>> GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCgk87lbdHZ5yV1y9LTH31n2FflLym28QRBSc9cRDBBr
>> dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlHpI
>> T1sZh9xSe1d4mvyrn66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9NL3
>> Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWPen3JT3V1vHdPRjU2b7tsx1wW1S00/gnJ1fC
>> d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOEVF
>> OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObOj/bi
>> UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6c6XJ
>> /09MjATev+wkGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/IybiIG6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7HkQf2bY
>> XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLLJs
>> ezsj6lSjcifjxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7mF9NMIIBDwYD
>> VR0fBIIBBjCCAQIwgf+ggfyggfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9hbXN
>> 1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q2
>> 9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/Y
>> mFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vYW1zdWJjYTEu
>> bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEFBQc
>> BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bXN1YmNhMSxDTj1BSUEsQ0
>> 49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbixEQ
>> z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0
>> aW9uQXV0aG9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vb9hbXN1YmNhMS5ub2FtLmdhbGx1cC5
>> jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQpLm
>> NydDAhBgkrBgEEAYI3FAIEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwCwYDV
>> R0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lUqdM
>> eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3uOj
>> +SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO9qCF5
>> n0mItQMmTb
>> </wsse:BinarySecurityToken>
>> <ds:Signatur xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>> Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
>> <ds:SignedInfo>
>> <ds:CanonicalizationMethod
>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>> <ec:InclusiveNamespaces
>> xmlns:ec="http://www.w3.org/001/10/xml-exc-c14n#" PrefixList="soap"/>
>> </ds:CanonicalizationMethod>
>> <ds:SignatureMethod
>> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
>> <ds:Reference
>> URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
>> <ds:Transforms>
>> <ds:Transform
>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>> <ec:InclusiveNamespaces
>> xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
>> PrefixList="wsse
>> soap"/>
>> </ds:Transform>
>> </d:Transforms>
>> <ds:DigestMethod
>> Algorithm="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>>
>> <ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
>> </ds:Reference>
>> </ds:SignedInfo>
>> <ds:SignaturValue>
>>
>> KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9iI/AF
>> 9gTWGtOrCB7nrlE3f8bOLxt3nggokrD8v8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3JrFjY3
>> /yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s+MMP
>> jnmD9E7SM9kCedPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbco6RS
>> SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKcduvBW
>> 8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WKuUCwI
>> Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfakLWSR
>> tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7xsTofa
>> 1fgcSkaBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3MoqToT
>> d6JzuGRw=
>> </ds:SignatureValue>
>> <ds:KeyInfo Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
>> <wsse:SecurityTokenReference
>> wsu:Id="STR-51789ea2-2fa3-425e-a31b-bfb9f1e49787">
>> <wsse:Referece
>> URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>>
>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
>> en-profile-1.0#X509v3"/>
>> /wsse:SecurityTokenReference>
>> </ds:KeyInfo>
>> </ds:Signature>
>> </wsse:Security>
>> </soap:Header>
>> <soapBody>
>> <CreateSequence
>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>> xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
>>
>> <ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
>> </AcksTo>
>> <Expires>PT0S</Expires>
>> <Offer>
>>
>> <Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
>> <Endpoint>
>>
>> <ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
>> </Endpoint>
>> <Expires>PT0S</Expires>
>> </Offer>
>> </CreateSequence>
>> </soap:Body>
>> </soap:Envelope>
>>
>>
>>
>>
>> ----- .NET SOAP REQUEST -----
>>
>> <?xml version="1.0" encoding="utf-8"?>
>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
>> xlns:a="http://www.w3.org/2005/08/addressing"
>> xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecurity
>> -utility-1.0.sd">
>> <s:Header>
>> <a:Action s:mustUnderstand="1"
>> u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a:Ac
>> tion>
>> <a:MessageID
>> uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
>> <ActivityId
>> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
>> CorrelationId="bcd3db57-178d-48a-bf82-e2c8df52dd37">22aecc77-9a7c-49d9-91d
>> 7-9533bf1599d7</ActivityId>
>> <a:To s:mustUnderstand="1"
>> u:Id="_4">http://orfdinsjx75w7.nom.gallup.com/oms.wcf/Authentication.svc</
>> a:To>
>> <o:Security
>> xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity
>> -secext-1.0xsd" s:mustUnderstand="1">
>> <u:Timestamp u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>> <u:Created>2014-08-14T15:56:02.747Z</u:Created>
>> <u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
>> </u:Timestamp>
>> <o:BinarySecurityToken
>> u:Id="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
>> ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509-tok
>> en-profile-1.0#X509v3"
>> EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
>> message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBgkq
>> hkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHV
>> wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbN1YmNhMTAeFw0xNDA0MDIyMD
>> E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJKoZIh
>> vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uLA4HPKuSi2Ocld3f
>> DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDrGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9TaPrI
>> 61b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkrBgEEAY
>> I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1UdDwQEA
>> wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq4WXm0
>> +Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6CB/KCB+YaBtmxkYXA6L8vQ049bm9hbXN
>> 1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcy
>> xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhd
>> GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hj5o
>> dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExKDM
>> pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DTj1ub2
>> Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyxDT
>> j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29iamVj
>> dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2Ftc3V
>> iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsdXAuY2
>> 9tX25vYW1zdWJjYTEoNCkuY3J0MA0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyNMYgga
>> vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2BzFl0xi
>> 16WbmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28Tj</o
>> :BinarySecurityToken>
>> <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
>> <SignedInfo>
>> <CanonicalizationMethod
>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> <SignatureMethod
>> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
>> <Reference URI="#_1">
>> <Transforms>
>> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>> <DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
>> </Reference>
>> <Reference URI="#_2">
>> <Transforms>
>> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>> <DigestValue>/yJ/ysxeFBIlVOQK860fYd641KA=</DigestValue>
>> </Reference>
>> <Reference URI="#_3">
>> <Transforms>
>> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>> <DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
>> </Reference>
>> <Reference URI="#_4">
>> <Transforms>
>> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>> <DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
>> </Reference>
>> <Reference URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>> <Transforms>
>> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>> <DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
>> </Reference>
>> </SignedInfo>
>> <SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0O
>> lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+XnRpNy5
>> ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
>> <KeyInfo>
>> <o:SecurityTokenReference>
>> <o:Reference
>> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
>> en-profile-1.0#X509v3" URI="#uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"/>
>> </o:SecurityTokenReference>
>> </KeyInfo>
>> </Signature>
>> </o:Security>
>> </s:Header>
>> <s:Body u:Id="_1">
>> <CreateSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
>> <AcksTo>
>> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
>> </AcksTo>
>> <Offer>
>> <Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
>> <Endpoint>
>> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
>> </Endpoint>
>> <IncompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenc
>> eBehavior>
>> </Offer>
>> </CreateSequence>
>> </s:Body>
>> </s:Envelope>
>>
>>
>>
>>
>> ----- WSDL -----
>>
>> <?xml version="1.0" encoding="utf-8"?>
>> <wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>> xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
>> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/addressing"
>> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>> xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
>> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>> xmlns:tns="http://tempuri.org/"
>> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>> name="Authentication" targetNamespace="http://tempuri.org/">
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <wsrmp:RMAssertion
>> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
>> <wsp:Policy>
>> <wsrmp:DeliveryAssurance>
>> <wsp:Policy>
>> <wsrmp:ExactlyOnce/>
>> <wsrmp:InOrder/>
>> </wsp:Policy>
>> </wsrmp:DeliveryAssurance>
>> </wsp:Policy>
>> <netrmp:InactivityTimeout
>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>> Milliseconds="600000"/>
>> <netrmp:AcknowledgementInterval
>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>> Milliseconds="200"/>
>> </wsrmp:RMAssertion>
>> <sp:AsymmetricBinding
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>> <sp:InitiatorToken>
>> <wsp:Policy>
>> <sp:X509Token
>> sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inclu
>> deToken/AlwaysToRecipient">
>> <wsp:Policy>
>> <sp:WssX509V3Token10/>
>> </wsp:Policy>
>> </sp:X509Token>
>> </wsp:Policy>
>> </sp:InitiatorToken>
>> <sp:RecipientToken>
>> <wsp:Policy>
>> <sp:X509Token
>> sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inclu
>> deToken/Never">
>> <wsp:Policy>
>> <sp:WssX509V3Token10/>
>> </wsp:Policy>
>> </sp:X509Token>
>> </wsp:Policy>
>> </sp:RecipientToken>
>> <sp:AlgorithmSuite>
>> <wsp:Policy>
>> <sp:Basic256/>
>> </wsp:Policy>
>> </sp:AlgorithmSuite>
>> <sp:Layout>
>> <wsp:Policy>
>> <sp:Strict/>
>> </wsp:Policy>
>> </sp:Layout>
>> <sp:IncludeTimestamp/>
>> <sp:OnlySignEntireHeadersAndBody/>
>> </wsp:Policy>
>> </sp:AsymmetricBinding>
>> <sp:Wss10
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>> <sp:MustSupportRefKeyIdentifier/>
>> <sp:MustSupportRefIssuerSerial/>
>> </wsp:Policy>
>> </sp:Wss10>
>> <sp:Trust10
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>> <sp:MustSupportIssuedTokens/>
>> <sp:RequireClientEntropy/>
>> <sp:RequireServerEntropy/>
>> </wsp:Policy>
>> </sp:Trust10>
>> <wsaw:UsingAddressing/>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
>> location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc?
>> wsdl=wsdl0"/>
>> <wsdl:types/>
>> <wsdl:binding name="AuthenticationDiacapEndpoint"
>> type="i0:IAuthentication">
>> <wsp:PolicyReference URI="#AuthenticationDiacapEndpoint_policy"/>
>> <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
>> <wsdl:operation name="Activate">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activate"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="ChangePassword">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ChangePas
>> sword" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Create">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Expire">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetAnswers">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAnswer
>> s" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetPolicy">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPolicy
>> " style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetQuestions">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQuesti
>> ons" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetUsernames">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUserna
>> mes" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Reset">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Update">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Validate">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Validate"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="ValidateEmail">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ValidateE
>> mail" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> </wsdl:binding>
>> <wsdl:service name="Authentication">
>> <wsdl:port name="AuthenticationDiacapEndpoint"
>> binding="tns:AuthenticationDiacapEndpoint">
>> <soap12:address
>> location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc"/
>> <wsa10:EndpointReference>
>> <wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authenticat
>> ion.svc</wsa10:Address>
>> <Identity
>> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
>> <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
>> <X509Data>
>> <X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU
>> FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwFQYKCZ
>> ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcxNDEyM
>> jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQB
>> GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb21wdXR
>> lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wdXRlcn
>> MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKTG+
>> rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/IMJhE
>> tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO51H18
>> bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQiSzT
>> iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrB
>> gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBggrBgEF
>> BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ4EFgQ
>> UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/OUwgg
>> EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNhMSxDT
>> j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2
>> aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZXZvY2F
>> 0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwOi8vY2
>> VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3ViY2ExL
>> mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1jZW50
>> ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyx
>> DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29iam
>> VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9jZW50Z
>> XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTEuY2Vu
>> dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4ICAQA
>> aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBWmLZgI
>> 9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8dCQBpH
>> 3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYivG9VFX
>> ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAuvQBQf
>> 0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFLakyiA
>> eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpUrD+Ma
>> Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V+yydv
>> /hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT9VHN6
>> gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJbkda0B
>> pF1xatiQ==</X509Certificate>
>> </X509Data>
>> </KeyInfo>
>> </Identity>
>> </wsa10:EndpointReference>
>> </wsdl:port>
>> </wsdl:service>
>> </wsdl:definitions>
>>
>>
>> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
>>
>
--
Daniel Kulp
dkulp@apache.org - http://dankulp.com/blog
Talend Community Coder - http://coders.talend.com
Re: Apache CXF with WS-Security
Posted by "Yassine, Ramzi" <Ra...@gallup.com>.
Hey Dennis and Dan,
First I would like to thank you both for you help here. What we have done
so far is ask the .net team to remove ws secure conversation and disable
signing, and now in a Junit everything is looking ok. However I do have
few questions,
1) Do you have anything in your roadmap to help us with the bigger issues?
2) When we run apache CXF in a war (tomcat or jetty) it does not seem to
be picking up our end point configuration
Here is how we configuring it
SpringBusFactory bf = new SpringBusFactory();
URL url =
Resources.getResource(SpringBusFactoryFactory.class, "cxf.xml");
Bus bus = bf.createBus(url);
BusFactory.setDefaultBus(bus);
Our CXF.xml
<beans xmlns="http://www.springframework.org/schema/beans"
xmlns:jaxws="http://cxf.apache.org/jaxws"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:http="http://cxf.apache.org/transports/http/configuration"
xsi:schemaLocation="http://www.springframework.org/schema/beans
http://www.springframework.org/schema/beans/spring-beans.xsd
http://cxf.apache.org/jaxws
http://cxf.apache.org/schemas/jaxws.xsd
http://cxf.apache.org/transports/http/configuration
http://cxf.apache.org/schemas/configuration/http-conf.xsd">
<jaxws:client name="{http://tempuri.org/}SomeEndPoint"
createdFromAPI="true">
<jaxws:properties>
<entry key="user" value="someName"/>
<entry key="ws-security.signature.properties"
value="NameOfThePropertiesFiles"/>
<entry key="ws-security.callback-handler"
value="ClassForOurCallBack"/>
</jaxws:properties>
</jaxws:client>
</beans>
The three properties there never get picked up by CXF and we are worried
that the BusFactory is getting overridden, is that the right way of how to
configure it?
Any help is appreciated,
Thank you
Ramzi
On 8/14/14 5:09 PM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>While you and Dan are thinking about this, I asked the other team if they
>had any idea how they could configure things so that
>AuthenticationDiacapEndpoint_policy could set something to be signed, but
>it doesn't sound like they're yet aware of how they can do that. I'll let
>you know if something turns up on their end. Again, thank you both.
>
>On 8/14/14 3:58 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>
>>Hi Pohl,
>>
>>I think I see what's going on here. Your
>>AuthenticationDiacapEndpoint_policy which specifies the use of RM and
>>AsymmetricBinding doesn't set anything to be signed, instead leaving
>>that to the individual input and output policies (such as
>>AuthenticationDiacapEndpoint_Activate_Input_policy). But because RM
>>isn't using one of those specified inputs or outputs it doesn't get a
>>policy that says the body should be signed.
>>
>>Dan, how do you think this should be handled? We obviously want to be
>>compatible with WCF, but I'm not sure how it should be implemented.
>>
>> - Dennis
>>
>>On 08/15/2014 04:30 AM, Longsine, Pohl wrote:
>>> On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>>
>>>> The policy has a sp:EncryptSignature/> assertion in it so I would
>>>> have expected the signatures to be encrypted. The CXF request has
>>>>two
>>>> ncryptedData elemens which MAY correspond to the two Signatures that
>>>> the .NET client is sending. No really sure though as I don¹t know
>>>>what
>>>> is in the encrypted data.
>>>>
>>>> You could try removing that rom the policy and see if CXF does
>>>>something
>>>> different. At the very least, it may show the Signatures.
>>>>
>>>> That said, there is still an issue. I don¹t see a wsu:Id on the
>>>> soap:Body. Thus, it doesn¹t look like CXF is signing the Body like it
>>>> should be. Actully, I don¹t see the Id on the and of the WS-A
>>>>headers
>>>> either. It would be good to see what CXF is signing. Or at least
>>>>hat
>>>> is in the encrypted data.
>>>>
>>>> Dan
>>> Dan, I really appreciate your attention here. Thank you.
>>>
>>> I askd the .NET team to make the specific change that you requested
>>> (reoving the EncryptSignature assertio from their WSDL). They must
>>>have
>>> not been able to do such a small, targeted change. Instead, the made
>>the
>>> following change, which had the side-effect of the EncryptSignature no
>>> longer beng there. That said, a few other small things in the WSDL lso
>>> changed, perhaps not in a way that matters For reference, here's what
>>> they say they changed:
>>>
>>>> I¹ve changed the message security versio to be an older version
>>>>
>>>>
>>>>(WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecui
>>>>t
>>>>y
>>>> Policy11BasicSecurityProfile10
>>>> instead of
>>>>
>>>>WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecurit
>>>>y
>>>>P
>>>> olicy11)
>>>>>
>>> Now our soap request has Signature element in it, although the id
>>> attributes that you noted were absent ar still not there. The end
>>>result,
>>> from a soap fault perspective, is the same.
>>>
>>> Doe this help you analyze what is going wrong here?
>>>
>>>
>>>
>>>
>>>
>>> ----- CXF SOP REQUEST -----
>>>
>>> soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>>> <soap:Header
>>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>>> http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>>> </Action>
>>> <MessageID
>>>
>>>xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-4984-
>>>8
>>>6
>>> 28-c4298b0fa3b1
>>> </MessageID>
>>> <To
>>>
>>>xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com
>>>/
>>>OM
>>> S/V2/Diacap/Autentication.svc
>>> </To>
>>> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>>>
>>> <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
>>> </ReplyTo>
>>> <wss:Security
>>>
>>>xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wsse
>>>c
>>>ur
>>> ity-secext-1.0.xsd"
>>>
>>>
>>>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
>>>u
>>>ri
>>> ty-utility-1.0.xsd"
>>> soap:mustUnderstand=true">
>>> <wsu:Timestamp
>>> wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
>>> <wsu:Created>2014-08-14T6:12:04.392Z</wsuCreated>
>>> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
>>> </wsu:Timestamp>
>>> <wsse:BinarySecurtyToken
>>>
>>>
>>>EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-soa
>>>p
>>>-
>>> message-security-1.0#Base64Binary"
>>>
>>>
>>>ValueTye="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-t
>>>ok
>>> en-profle-1.0#X509v3"
>>>
>>>wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">
>>>
>>>
>>>MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRMwEQYKCZImiZPyL
>>>G
>>>Q
>>>
>>>BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTET
>>>M
>>>B
>>>
>>>EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxCzA
>>>J
>>>B
>>>
>>>gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEExDzANBgNVBAoTBk
>>>d
>>>B
>>>
>>>TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAxQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0GC
>>>S
>>>q
>>>
>>>GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCgk87lbdHZ5yV1y9LTH31n2FflLym28QRBSc9cRDB
>>>B
>>>r
>>>
>>>dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlH
>>>p
>>>I
>>>
>>>T1sZh9xSe1d4mvyr66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9N
>>>L3
>>>
>>>Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWPen3JT3V1vHdPRjU2b7tsx1wW1S00/gnJ1
>>>f
>>>C
>>
>>>d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOE
>>>V
>>>F
>>>
>>>OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8tYnK8klObOj/b
>>>i
>>>
>>>UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6c6
>>>X
>>>J
>>>
>>>/09MjATev+wkGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/Iyb
>>>i
>>>IG6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7Hk
>>>Q
>>>f2bY
>>>
>>>XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLL
>>>J
>>>s
>>>
>>>ezsj6lSjcifjxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7F9NMIIBDwY
>>>D
>>>
>>>VR0fBIIBBjCCAQIwgf+ggfyggfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9h
>>>b
>>>XN
>>>
>>>1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049
>>>Q
>>>2
>>>
>>>9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3
>>>Q
>>>/Y
>>>
>>>mFzZT9vYmplYRDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vYW1zdWJjYTE
>>>u
>>>
>>>bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEF
>>>B
>>>Qc
>>>
>>>BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bXN1YmNhMSxDTj1BSUEs
>>>Q
>>>0
>>>
>>>49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbi
>>>x
>>>EQ
>>>
>>>z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY
>>>2
>>>F0
>>>
>>>aW9uQXV0aG9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vb9hbXN1YmNhMS5ub2FtLmdhbGx1c
>>>C
>>>5
>>>
>>>jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQ
>>>p
>>>Lm
>>>
>>>NydDAhBgkrBgEEAYI3FAIEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwCwY
>>>D
>>>V
>>>
>>>R0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lU
>>>q
>>>dM
>>>
>>>eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3u
>>>O
>>>j
>>>
>>>+SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO9q
>>>C
>>>F5
>>> n0mItQMmTb
>>> </wsse:BinarySecurityToken>
>>> <ds:Signatur xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>>> Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
>>> <ds:SignedInfo>
>>> <ds:CanonicalizationMethod
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>> <ec:InclusiveNamespaces
>>> xmlns:ec="http://www.w3.org/001/10/xmlexc-c14n#" PrefixList="soap"/>
>>> </ds:CanonicalizationMethod>
>>> <ds:SignatureMethod
>>> Algorithm="http://ww.w3.org/2000/09/xmldsig#rsa-sha1"/>
>>> <ds:Reference
>>> URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
>>> <ds:Transforms>
>>> <ds:Transform
>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>>> <ec:InclusiveNamespaces
>>> xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
>>>
>>>PrefixList="wsse
>>> soap"/>
>>> </ds:Transform>
>>> </d:Transforms>
>>> <ds:DigestMethod
>>> Algorithm="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>> <ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
>>> </ds:Reference>
>>> </ds:SignedInfo>
>>> <ds:SignaturValue>
>>>
>>>
>>>KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9iI
>>>/
>>>AF
>>>
>>>9gTWGtOrCB7nrlE3f8bOLxt3nggokrDv8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3JrFj
>>>Y3
>>>
>>>/yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s+M
>>>M
>>>P
>>>
>>>jnmD9E7SM9kCdPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbco6R
>>>S
>>>
>>>SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKcdu
>>>v
>>>BW
>>>
>>>8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WKuU
>>>C
>>>wI
>>>
>>>Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfakLW
>>>S
>>>R
>>>
>>>tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7xsT
>>>o
>>>fa
>>>
>>>1fgcSkBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3MoqTo
>>>T
>>> d6JzuGRw=
>>> </ds:SignatureValue>
>>> <ds:KeyInfo
>>>Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
>>> <wsse:SecurityTokenReference
>>> wsu:Id="STR-51789ea2-2fa3-45e-a31b-bfb9f1e49787">
>>> <wsse:Referece
>>> URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>>>
>>>
>>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
>>>t
>>>ok
>>> en-profile-1.0#X509v3"/>
>>> /wsse:SecurityTokenReference>
>>> </ds:KeyInfo>
>>> </ds:Signature>
>>> </wsse:Security>
>>> </soap:Header>
>>> <soapBody>
>>> <CreateSequence
>>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>>>
>>>xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
>>>
>>>
>>><ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Address
>>>>
>>> </AcksTo>
>>> <Expires>PT0S</Expires>
>>> <Offer>
>>>
>>> <Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
>>> <Endpoint>
>>>
>>>
>>><ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
>>> </Endpoint>
>>> <Expires>PT0S</Expires>
>>> </Offer>
>>> </CreateSequence>
>>> </soap:Body>
>>> </soap:Envelope>
>>>
>>>
>>>
>>>
>>> ----- .NET SOAP REQUEST -----
>>>
>>><?xml version="1.0" encoding="utf-8"?>
>>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
>>> xlns:a="http://www.w3.org/2005/08/addresing"
>>>
>>>xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecuri
>>>t
>>>y
>>> -utility-1.0.sd">
>>> <s:Header>
>>> <a:Action s:mustUnderstand="1"
>>>
>>>u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a
>>>:
>>>Ac
>>> tion>
>>> <a:MessageID
>>> uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
>>> <ActivityId
>>> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
>>>
>>>CorrelationId="bcd3db57-178d-48a-bf82-e2c8df52dd37">22aecc77-9a7c-4d9-91
>>>d
>>> 7-9533bf1599d7</ActivityId>
>>> <a:To s:mustUnderstand="1"
>>>
>>>u:Id="_4">http://orfdinsjx75w7.nom.gallup.com/oms.wcf/Authentication.svc
>>><
>>>/
>>> a:To>
>>> <o:Security
>>>
>>>xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
>>>i
>>>ty
>>> -secext-1.0xsd" s:mustUnderstand="1">
>>> <u:Timstamp
>>>u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>>
>>><u:Created>2014-08-14T15:56:02.747Z</u:Created>
>>>
>>><u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
>>> </u:Timestamp>
>>> <o:BinarySecurityToken
>>> :Id="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
>>>
>>>ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509-t
>>>o
>>>k
>>> en-profile-1.0#X509v3"
>>>
>>>EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-so
>>>a
>>>p-
>>>
>>>message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBg
>>>k
>>>q
>>>
>>>hkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2Fs
>>>b
>>>HV
>>>
>>>wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbN1YmNhMTAeFw0xNDA0MDIy
>>>M
>>>D
>>>
>>>E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJKo
>>>Z
>>>Ih
>>>
>>>vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uLA4HPKuSi2Ocld
>>>3
>>>f
>>>
>>>DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9TaP
>>>rI
>>>
>>>61b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkrBgEE
>>>A
>>>Y
>>>
>>>I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1UdDw
>>>Q
>>>EA
>>>
>>>wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq4W
>>>X
>>>m0
>>>
>>>+Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6CB/KCB+YaBtmxkYXA6L8vQ049bm9hb
>>>X
>>>N
>>>
>>>1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWN
>>>l
>>>cy
>>>
>>>xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaW
>>>N
>>>hd
>>>
>>>GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50h
>>>j
>>>5o
>>>
>>>dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2Ex
>>>K
>>>DM
>>>
>>>pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DTj1
>>>u
>>>b2
>>>
>>>Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcy
>>>x
>>>DT
>>>
>>>j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29ia
>>>m
>>>Vj
>>>
>>>dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2Ft
>>>c
>>>3V
>>>
>>>iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsdXA
>>>u
>>>Y2
>>>
>>>9tX25vYW1zdWJjYTEoNCkuY3J0A0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyNMYg
>>>ga
>>>
>>>vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2BzFl
>>>0
>>>xi
>>>
>>>16WmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28Tj<
>>>/o
>>> :BinarySecurityToken>
>>> <Signature
>>>xmlns="htp://www.w3.org/2000/09/xmldsig#">
>>> <SignedInfo>
>>> <CanonicalizationMethod
>>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> <SignatureMethod
>>> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
>>> <Reference URI="#_1">
>>> <Transforms>
>>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
>>> </Reference>
>>> <Reference URI="#_2">
>>> <Transforms>
>>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>/yJ/ysxeFBIlVOQK860fYd641KA=</DigestValue>
>>> </Reference>
>>> <Reference URI="#_3">
>>> <Transforms>
>>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
>>> </Reference>
>>> <Reference URI="#_4">
>>> <Transforms>
>>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
>>> </Reference>
>>> <Reference
>>>URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>> <Transforms>
>>> <Transform
>>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>>> </Transforms>
>>> <DigestMethod
>>>Algorithm="http://www.w3.og/2000/09/xmldsig#sha1"/>
>>>
>>><DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
>>> <Reference>
>>> </SignedInfo>
>>>
>>><SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0O
>>>
>>>lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+XnRp
>>>N
>>>y5
>>> ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
>>> <KeyInfo>
>>> <o:SecurityTokenRefrence>
>>> <o:Reference
>>>
>>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-
>>>t
>>>ok
>>> en-profile-1.0#X509v3"
>>>URI="#uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"/>
>>> </o:SecurityTokenReference>
>>> </KeyInfo>
>>> </Signature>
>>> </o:Security>
>>> </s:Header>
>>> <s:Body u:Id="_1">
>>> <CreatSequence
>>>xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
>>> <AcksTo>
>>>
>>><a:Address>http://www.w3.rg/2005/08/addressing/anonymous</a:Address>
>>> </AcksTo>
>>> <Offer>
>>>
>>><Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
>>> <Endpoint>
>>>
>>><a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
>>> </Endpoint>
>>>
>>><IncompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenc
>>> eBehavior>
>>> </Offer>
>>> </CreateSequence>
>>> </s:Body>
>>> </s:Envelope>
>>>
>>>
>>>
>>>
>>> ----- WSDL -----
>>>
>>> <?xml version="1.0" encoding="utf-8"?>
>>> <wsd:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>>> xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>>> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>>>
>>>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
>>>u
>>>ri
>>> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/addressing"
>>> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>>> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>>> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>>> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>>> xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
>>> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>>> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>>> xmlns:tns="http://tempuri.org/"
>>> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>>> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>>> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>>> name="Authentication" targetNamespace="http://tempuri.org/">
>>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <wsrmp:RMAssertion
>>> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
>>> <wsp:Policy>
>>>
>>><wsrmp:DeliveryAssurance>
>>> <wsp:Policy>
>>>
>>><wsrmp:ExactlyOnce/>
>>>
>>><wsrmp:InOrder/>
>>> </wsp:Policy>
>>>
>>></wsrmp:DeliveryAssurance>
>>> </wsp:Policy>
>>> <netrmp:InactivityTimeout
>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>> Milliseconds="60000"/>
>>>
>>><netrmp:AcknowledgementInterval
>>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>>> Milliseconds="200"/>
>>> </wsrmp:RMAssertion>
>>> <sp:AsymmetricBinding
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <wsp:Policy>
>>> <sp:InitiatorToken>
>>> <wsp:Policy>
>>>
>>><sp:X509Token
>>>
>>>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securityolicy/Inc
>>>lu
>>> deToken/AlwaysToRecipient">
>>>
>>> <wsp:Policy>
>>>
>>> <sp:WssX509V3Token10/>
>>>
>>> </wsp:Policy>
>>>
>>></sp:X509Token>
>>> </wsp:Policy>
>>> </sp:InitiatorToken>
>>> <sp:ReipientToken>
>>> <wsp:Policy>
>>>
>>><sp:X509Token
>>>
>>>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/In
>>>c
>>>lu
>>> deToken/Never">
>>>
>>> <wsp:Policy>
>>>
>>> <sp:WssX509V3Token10/>
>>>
>>> </wsp:Policy>
>>>
>>></sp:X509Token>
>>> </wsp:Policy>
>>> </sp:RecipientToken>
>>> <sp:AlgorithmSuite>
>>> <wsp:Policy>
>>>
>>><sp:Basic256/>
>>> </wsp:Policy>
>>> </sp:AlgorithmSuite>
>>> <sp:Layout>
>>> <wsp:Policy>
>>>
>>><sp:Strict/>
>>> </wsp:Policy>
>>> </sp:Layout>
>>> <sp:IncludeTimestamp/>
>>>
>>><sp:OnlySignEntireHeadersAndBody/>
>>> </wsp:Policy>
>>> </sp:AsymmetricBinding>
>>> <sp:Ws10
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <wsp:Policy>
>>>
>>><sp:MustSupportRefKeyIdentifier/>
>>>
>>><sp:MustSupportRefIssuerSerial/>
>>> </wsp:Policy>>>
>>> </sp:Wss10>
>>> <sp:Trust10
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <wsp:Policy>
>>>
>>><sp:MustSupportIssuedTokens/>
>>>
>>><sp:RequireClientEntropy/>
>>>
>>><sp:RequireServerEntropy/>
>>> </wsp:Policy>
>>> </sp:Trust10>
>>> <wsaw:UsingAddressing/>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="htp://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header
>>>Name="IssuedTokens">>
>>>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Naespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/0/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://scemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http:/schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schmas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namesace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="ttp://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressng"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmloap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.mlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
>>> <wsp:ExactlyOne>
>>> <ws:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="htp://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://ocs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>>wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsp:Policy
>>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
>>> <wsp:ExactlyOne>
>>> <wsp:All>
>>> <sp:SignedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Body/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> <sp:Header Name="Sequence"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="SequenceAcknowledgement"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="AckRequested"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header
>>>Name="UsesSequenceSTR"
>>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>>> <sp:Header Name="To"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="From"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="FaultTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="ReplyTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="MessageID"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="RelatesTo"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> <sp:Header Name="Action"
>>> Namespace="http://www.w3.org/2005/08/addressing"/>
>>> </sp:SignedParts>
>>> <sp:EncryptedParts
>>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>>> <sp:Header
>>>Name="CoordinationContext"
>>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>>> <sp:Header
>>>Name="OleTxTransaction"
>>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>>> <sp:Header Name="IssuedTokens"
>>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>>> </sp:EncryptedParts>
>>> </wsp:All>
>>> </wsp:ExactlyOne>
>>> </wsp:Policy>
>>> <wsdl:import
>>>namespace="http://schemas.gallup.com/oms/2010/10/"
>>>
>>>location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.s
>>>v
>>>c?
>>> wsdl=wsdl0"/>
>>> <wsdl:types/>
>>> <wsdl:binding name="AuthenticationDiacapEndpoint"
>>> type="i0:IAuthentication">
>>> <wsp:PolicyReference
>>>URI="#AuthenticationDiacapEndpoint_policy"/>
>>> <soap12:binding
>>>transport="http://schemas.xmlsoap.org/soap/http"/>
>>> <wsdl:operation name="Activate">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activa
>>>t
>>>e"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="ChangePassword">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Change
>>>P
>>>as
>>> sword" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Create">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create
>>>"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Expire">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire
>>>"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="GetAnswers">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAns
>>>w
>>>er
>>> s" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="GetPolicy">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPol
>>>i
>>>cy
>>> " style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="GetQuestions">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQue
>>>s
>>>ti
>>> ons" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="GetUsernames">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUse
>>>r
>>>na
>>> mes" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Reset">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Update">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update
>>>"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="Validate">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Valida
>>>t
>>>e"
>>> style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> <wsdl:operation name="ValidateEmail">
>>> <soap12:operation
>>>
>>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Valida
>>>t
>>>eE
>>> mail" style="document"/>
>>> <wsdl:input>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:input>
>>> <wsdl:output>
>>> <wsp:PolicyReference
>>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
>>> <soap12:body use="literal"/>
>>> </wsdl:output>
>>> </wsdl:operation>
>>> </wsdl:binding>
>>> <wsdl:service name="Authentication">
>>> <wsdl:port name="AuthenticationDiacapEndpoint"
>>> binding="tns:AuthenticationDiacapEndpoint">
>>> <soap12:address
>>>
>>>location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.sv
>>>c
>>>"/
>>> <wsa10:EndpointReference>
>>>
>>><wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authenticat
>>> ion.svc</wsa10:Address>
>>> <Identity
>>> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
>>> <KeyInfo
>>>xmlns="http://www.w3.org/2000/09/xmldsig#">
>>> <X509Data>
>>>
>>><X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU
>>>
>>>FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwFQY
>>>K
>>>CZ
>>>
>>>ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcxND
>>>E
>>>yM
>>>
>>>jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyL
>>>G
>>>QB
>>>
>>>GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb21w
>>>d
>>>XR
>>>
>>>lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wdXR
>>>l
>>>cn
>>>
>>>MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAK
>>>T
>>>G+
>>>
>>>rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/IM
>>>J
>>>hE
>>>
>>>tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO51
>>>H
>>>18
>>>
>>>bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQi
>>>S
>>>zT
>>>
>>>iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMBBg
>>>g
>>>rB
>>>
>>>gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBggrB
>>>g
>>>EF
>>>
>>>BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ4E
>>>F
>>>gQ
>>>
>>>UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/OU
>>>w
>>>gg
>>>
>>>EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNhMS
>>>x
>>>DT
>>>
>>>j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZ
>>>X
>>>J2
>>>
>>>aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZXZv
>>>Y
>>>2F
>>>
>>>0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwOi8
>>>v
>>>Y2
>>>
>>>VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3ViY2
>>>E
>>>xL
>>>
>>>mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1jZ
>>>W
>>>50
>>>
>>>ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNl
>>>c
>>>yx
>>>
>>>DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29
>>>i
>>>am
>>>
>>>VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9jZW
>>>5
>>>0Z
>>>
>>>XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTEuY
>>>2
>>>Vu
>>>
>>>dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4IC
>>>A
>>>QA
>>>
>>>aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBWmL
>>>Z
>>>gI
>>>
>>>9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8dCQ
>>>B
>>>pH
>>>
>>>3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYivG9
>>>V
>>>FX
>>>
>>>ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAuvQ
>>>B
>>>Qf
>>>
>>>0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFLak
>>>y
>>>iA
>>>
>>>eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpUrD
>>>+
>>>Ma
>>>
>>>Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V+y
>>>y
>>>dv
>>>
>>>/hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT9V
>>>H
>>>N6
>>>
>>>gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJbkd
>>>a
>>>0B
>>> pF1xatiQ==</X509Certificate>
>>> </X509Data>
>>> </KeyInfo>
>>> </Identity>
>>> </wsa10:EndpointReference>
>>> </wsdl:port>
>>> </wsdl:service>
>>> </wsdl:definitions>
>>>
>>>
>>> All information in this message is confidential and may be legally
>>>privileged. Only intended recipients are authorized to use it.
>>>
>>
>
>All information in this message is confidential and may be legally
>privileged. Only intended recipients are authorized to use it.
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
While you and Dan are thinking about this, I asked the other team if they
had any idea how they could configure things so that
AuthenticationDiacapEndpoint_policy could set something to be signed, but
it doesn't sound like they're yet aware of how they can do that. I'll let
you know if something turns up on their end. Again, thank you both.
On 8/14/14 3:58 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>Hi Pohl,
>
>I think I see what's going on here. Your
>AuthenticationDiacapEndpoint_policy which specifies the use of RM and
>AsymmetricBinding doesn't set anything to be signed, instead leaving
>that to the individual input and output policies (such as
>AuthenticationDiacapEndpoint_Activate_Input_policy). But because RM
>isn't using one of those specified inputs or outputs it doesn't get a
>policy that says the body should be signed.
>
>Dan, how do you think this should be handled? We obviously want to be
>compatible with WCF, but I'm not sure how it should be implemented.
>
> - Dennis
>
>On 08/15/2014 04:30 AM, Longsine, Pohl wrote:
>> On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>>
>>> The policy has a sp:EncryptSignature/> assertion in it so I would
>>> have expected the signatures to be encrypted. The CXF request has two
>>> ncryptedData elemens which MAY correspond to the two Signatures that
>>> the .NET client is sending. No really sure though as I don¹t know what
>>> is in the encrypted data.
>>>
>>> You could try removing that rom the policy and see if CXF does
>>>something
>>> different. At the very least, it may show the Signatures.
>>>
>>> That said, there is still an issue. I don¹t see a wsu:Id on the
>>> soap:Body. Thus, it doesn¹t look like CXF is signing the Body like it
>>> should be. Actully, I don¹t see the Id on the and of the WS-A headers
>>> either. It would be good to see what CXF is signing. Or at least hat
>>> is in the encrypted data.
>>>
>>> Dan
>> Dan, I really appreciate your attention here. Thank you.
>>
>> I askd the .NET team to make the specific change that you requested
>> (reoving the EncryptSignature assertio from their WSDL). They must
>>have
>> not been able to do such a small, targeted change. Instead, the made
>the
>> following change, which had the side-effect of the EncryptSignature no
>> longer beng there. That said, a few other small things in the WSDL lso
>> changed, perhaps not in a way that matters For reference, here's what
>> they say they changed:
>>
>>> I¹ve changed the message security versio to be an older version
>>>
>>>
>>>(WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecuit
>>>y
>>> Policy11BasicSecurityProfile10
>>> instead of
>>>
>>>WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecurity
>>>P
>>> olicy11)
>>>>
>> Now our soap request has Signature element in it, although the id
>> attributes that you noted were absent ar still not there. The end
>>result,
>> from a soap fault perspective, is the same.
>>
>> Doe this help you analyze what is going wrong here?
>>
>>
>>
>>
>>
>> ----- CXF SOP REQUEST -----
>>
>> soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>> <soap:Header
>> <Action xmlns="http://www.w3.org/2005/08/addressing">
>> http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
>> </Action>
>> <MessageID
>>
>>xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-4984-8
>>6
>> 28-c4298b0fa3b1
>> </MessageID>
>> <To
>>
>>xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com/
>>OM
>> S/V2/Diacap/Autentication.svc
>> </To>
>> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>>
>> <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
>> </ReplyTo>
>> <wss:Security
>>
>>xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssec
>>ur
>> ity-secext-1.0.xsd"
>>
>>
>>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecu
>>ri
>> ty-utility-1.0.xsd"
>> soap:mustUnderstand=true">
>> <wsu:Timestamp
>> wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
>> <wsu:Created>2014-08-14T6:12:04.392Z</wsuCreated>
>> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
>> </wsu:Timestamp>
>> <wsse:BinarySecurtyToken
>>
>>
>>EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-soap
>>-
>> message-security-1.0#Base64Binary"
>>
>>
>>ValueTye="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-t
>>ok
>> en-profle-1.0#X509v3"
>> wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">
>>
>>
>>MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLG
>>Q
>>
>>BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETM
>>B
>>
>>EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxCzAJ
>>B
>>
>>gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEExDzANBgNVBAoTBkd
>>B
>>
>>TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAxQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0GCS
>>q
>>
>>GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCgk87lbdHZ5yV1y9LTH31n2FflLym28QRBSc9cRDBB
>>r
>>
>>dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlHp
>>I
>>
>>T1sZh9xSe1d4mvyr66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9N
>>L3
>>
>>Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWPen3JT3V1vHdPRjU2b7tsx1wW1S00/gnJ1f
>>C
>
>>d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOEV
>>F
>>
>>OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8tYnK8klObOj/b
>>i
>>
>>UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6c6X
>>J
>>
>>/09MjATev+wkGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/Iybi
>>IG6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7HkQ
>>f2bY
>>
>>XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLLJ
>>s
>>
>>ezsj6lSjcifjxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7F9NMIIBDwY
>>D
>>
>>VR0fBIIBBjCCAQIwgf+ggfyggfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9hb
>>XN
>>
>>1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q
>>2
>>
>>9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q
>>/Y
>>
>>mFzZT9vYmplYRDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vYW1zdWJjYTE
>>u
>>
>>bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEFB
>>Qc
>>
>>BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bXN1YmNhMSxDTj1BSUEsQ
>>0
>>
>>49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbix
>>EQ
>>
>>z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2
>>F0
>>
>>aW9uQXV0aG9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vb9hbXN1YmNhMS5ub2FtLmdhbGx1cC
>>5
>>
>>jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQp
>>Lm
>>
>>NydDAhBgkrBgEEAYI3FAIEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwCwYD
>>V
>>
>>R0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lUq
>>dM
>>
>>eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3uO
>>j
>>
>>+SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO9qC
>>F5
>> n0mItQMmTb
>> </wsse:BinarySecurityToken>
>> <ds:Signatur xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>> Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
>> <ds:SignedInfo>
>> <ds:CanonicalizationMethod
>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>> <ec:InclusiveNamespaces
>> xmlns:ec="http://www.w3.org/001/10/xmlexc-c14n#" PrefixList="soap"/>
>> </ds:CanonicalizationMethod>
>> <ds:SignatureMethod
>> Algorithm="http://ww.w3.org/2000/09/xmldsig#rsa-sha1"/>
>> <ds:Reference
>> URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
>> <ds:Transforms>
>> <ds:Transform
>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
>> <ec:InclusiveNamespaces
>> xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
>>
>>PrefixList="wsse
>> soap"/>
>> </ds:Transform>
>> </d:Transforms>
>> <ds:DigestMethod
>> Algorithm="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>>
>> <ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
>> </ds:Reference>
>> </ds:SignedInfo>
>> <ds:SignaturValue>
>>
>>
>>KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9iI/
>>AF
>>
>>9gTWGtOrCB7nrlE3f8bOLxt3nggokrDv8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3JrFj
>>Y3
>>
>>/yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s+MM
>>P
>>
>>jnmD9E7SM9kCdPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbco6R
>>S
>>
>>SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKcduv
>>BW
>>
>>8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WKuUC
>>wI
>>
>>Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfakLWS
>>R
>>
>>tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7xsTo
>>fa
>>
>>1fgcSkBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3MoqTo
>>T
>> d6JzuGRw=
>> </ds:SignatureValue>
>> <ds:KeyInfo
>>Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
>> <wsse:SecurityTokenReference
>> wsu:Id="STR-51789ea2-2fa3-45e-a31b-bfb9f1e49787">
>> <wsse:Referece
>> URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>>
>>
>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-t
>>ok
>> en-profile-1.0#X509v3"/>
>> /wsse:SecurityTokenReference>
>> </ds:KeyInfo>
>> </ds:Signature>
>> </wsse:Security>
>> </soap:Header>
>> <soapBody>
>> <CreateSequence
>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>>
>>xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
>>
>>
>><ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
>> </AcksTo>
>> <Expires>PT0S</Expires>
>> <Offer>
>>
>> <Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
>> <Endpoint>
>>
>> <ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
>> </Endpoint>
>> <Expires>PT0S</Expires>
>> </Offer>
>> </CreateSequence>
>> </soap:Body>
>> </soap:Envelope>
>>
>>
>>
>>
>> ----- .NET SOAP REQUEST -----
>>
>><?xml version="1.0" encoding="utf-8"?>
>> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
>> xlns:a="http://www.w3.org/2005/08/addresing"
>>
>>xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecurit
>>y
>> -utility-1.0.sd">
>> <s:Header>
>> <a:Action s:mustUnderstand="1"
>>
>>u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a:
>>Ac
>> tion>
>> <a:MessageID
>> uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
>> <ActivityId
>> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
>>
>>CorrelationId="bcd3db57-178d-48a-bf82-e2c8df52dd37">22aecc77-9a7c-4d9-91
>>d
>> 7-9533bf1599d7</ActivityId>
>> <a:To s:mustUnderstand="1"
>>
>>u:Id="_4">http://orfdinsjx75w7.nom.gallup.com/oms.wcf/Authentication.svc<
>>/
>> a:To>
>> <o:Security
>>
>>xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
>>ty
>> -secext-1.0xsd" s:mustUnderstand="1">
>> <u:Timstamp
>>u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>>
>><u:Created>2014-08-14T15:56:02.747Z</u:Created>
>>
>><u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
>> </u:Timestamp>
>> <o:BinarySecurityToken
>> :Id="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
>>
>>ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509-to
>>k
>> en-profile-1.0#X509v3"
>>
>>EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soa
>>p-
>>
>>message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBgk
>>q
>>
>>hkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2Fsb
>>HV
>>
>>wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbN1YmNhMTAeFw0xNDA0MDIyM
>>D
>>
>>E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJKoZ
>>Ih
>>
>>vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uLA4HPKuSi2Ocld3
>>f
>>
>>DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9TaP
>>rI
>>
>>61b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkrBgEEA
>>Y
>>
>>I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1UdDwQ
>>EA
>>
>>wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq4WX
>>m0
>>
>>+Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6CB/KCB+YaBtmxkYXA6L8vQ049bm9hbX
>>N
>>
>>1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNl
>>cy
>>
>>xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWN
>>hd
>>
>>GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hj
>>5o
>>
>>dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExK
>>DM
>>
>>pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DTj1u
>>b2
>>
>>Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyx
>>DT
>>
>>j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29iam
>>Vj
>>
>>dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2Ftc
>>3V
>>
>>iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsdXAu
>>Y2
>>
>>9tX25vYW1zdWJjYTEoNCkuY3J0A0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyNMYg
>>ga
>>
>>vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2BzFl0
>>xi
>>
>>16WmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28Tj<
>>/o
>> :BinarySecurityToken>
>> <Signature
>>xmlns="htp://www.w3.org/2000/09/xmldsig#">
>> <SignedInfo>
>> <CanonicalizationMethod
>> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> <SignatureMethod
>> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
>> <Reference URI="#_1">
>> <Transforms>
>> <Transform
>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod
>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>
>><DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
>> </Reference>
>> <Reference URI="#_2">
>> <Transforms>
>> <Transform
>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod
>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>
>><DigestValue>/yJ/ysxeFBIlVOQK860fYd641KA=</DigestValue>
>> </Reference>
>> <Reference URI="#_3">
>> <Transforms>
>> <Transform
>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod
>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>
>><DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
>> </Reference>
>> <Reference URI="#_4">
>> <Transforms>
>> <Transform
>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod
>>Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
>>
>><DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
>> </Reference>
>> <Reference
>>URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
>> <Transforms>
>> <Transform
>>Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
>> </Transforms>
>> <DigestMethod
>>Algorithm="http://www.w3.og/2000/09/xmldsig#sha1"/>
>>
>><DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
>> <Reference>
>> </SignedInfo>
>>
>><SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0O
>>
>>lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+XnRpN
>>y5
>> ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
>> <KeyInfo>
>> <o:SecurityTokenRefrence>
>> <o:Reference
>>
>>ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-t
>>ok
>> en-profile-1.0#X509v3"
>>URI="#uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"/>
>> </o:SecurityTokenReference>
>> </KeyInfo>
>> </Signature>
>> </o:Security>
>> </s:Header>
>> <s:Body u:Id="_1">
>> <CreatSequence
>>xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
>> <AcksTo>
>>
>><a:Address>http://www.w3.rg/2005/08/addressing/anonymous</a:Address>
>> </AcksTo>
>> <Offer>
>>
>><Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
>> <Endpoint>
>>
>><a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
>> </Endpoint>
>>
>><IncompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenc
>> eBehavior>
>> </Offer>
>> </CreateSequence>
>> </s:Body>
>> </s:Envelope>
>>
>>
>>
>>
>> ----- WSDL -----
>>
>> <?xml version="1.0" encoding="utf-8"?>
>> <wsd:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>> xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
>>
>>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecu
>>ri
>> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/addressing"
>> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>> xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
>> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>> xmlns:tns="http://tempuri.org/"
>> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
>> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>> name="Authentication" targetNamespace="http://tempuri.org/">
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <wsrmp:RMAssertion
>> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
>> <wsp:Policy>
>>
>><wsrmp:DeliveryAssurance>
>> <wsp:Policy>
>>
>><wsrmp:ExactlyOnce/>
>>
>><wsrmp:InOrder/>
>> </wsp:Policy>
>>
>></wsrmp:DeliveryAssurance>
>> </wsp:Policy>
>> <netrmp:InactivityTimeout
>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>> Milliseconds="60000"/>
>> <netrmp:AcknowledgementInterval
>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>> Milliseconds="200"/>
>> </wsrmp:RMAssertion>
>> <sp:AsymmetricBinding
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>> <sp:InitiatorToken>
>> <wsp:Policy>
>>
>><sp:X509Token
>>
>>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securityolicy/Inc
>>lu
>> deToken/AlwaysToRecipient">
>>
>> <wsp:Policy>
>>
>> <sp:WssX509V3Token10/>
>>
>> </wsp:Policy>
>>
>></sp:X509Token>
>> </wsp:Policy>
>> </sp:InitiatorToken>
>> <sp:ReipientToken>
>> <wsp:Policy>
>>
>><sp:X509Token
>>
>>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inc
>>lu
>> deToken/Never">
>>
>> <wsp:Policy>
>>
>> <sp:WssX509V3Token10/>
>>
>> </wsp:Policy>
>>
>></sp:X509Token>
>> </wsp:Policy>
>> </sp:RecipientToken>
>> <sp:AlgorithmSuite>
>> <wsp:Policy>
>>
>><sp:Basic256/>
>> </wsp:Policy>
>> </sp:AlgorithmSuite>
>> <sp:Layout>
>> <wsp:Policy>
>>
>><sp:Strict/>
>> </wsp:Policy>
>> </sp:Layout>
>> <sp:IncludeTimestamp/>
>>
>><sp:OnlySignEntireHeadersAndBody/>
>> </wsp:Policy>
>> </sp:AsymmetricBinding>
>> <sp:Ws10
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>>
>><sp:MustSupportRefKeyIdentifier/>
>>
>><sp:MustSupportRefIssuerSerial/>
>> </wsp:Policy>>> </sp:Wss10>
>> <sp:Trust10
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>>
>><sp:MustSupportIssuedTokens/>
>>
>><sp:RequireClientEntropy/>
>>
>><sp:RequireServerEntropy/>
>> </wsp:Policy>
>> </sp:Trust10>
>> <wsaw:UsingAddressing/>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="htp://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens">> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Naespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/0/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://scemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http:/schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schmas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namesace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="ttp://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressng"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmloap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.mlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
>> <wsp:ExactlyOne>
>> <ws:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="htp://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://ocs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>>wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>>Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>>Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header
>>Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
>>
>>location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.sv
>>c?
>> wsdl=wsdl0"/>
>> <wsdl:types/>
>> <wsdl:binding name="AuthenticationDiacapEndpoint"
>> type="i0:IAuthentication">
>> <wsp:PolicyReference
>>URI="#AuthenticationDiacapEndpoint_policy"/>
>> <soap12:binding
>>transport="http://schemas.xmlsoap.org/soap/http"/>
>> <wsdl:operation name="Activate">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activat
>>e"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="ChangePassword">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ChangeP
>>as
>> sword" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Create">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Expire">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetAnswers">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAnsw
>>er
>> s" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetPolicy">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPoli
>>cy
>> " style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetQuestions">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQues
>>ti
>> ons" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetUsernames">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUser
>>na
>> mes" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Reset">
>> <soap12:operation
>> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Update">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Validate">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Validat
>>e"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="ValidateEmail">
>> <soap12:operation
>>
>>soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Validat
>>eE
>> mail" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> </wsdl:binding>
>> <wsdl:service name="Authentication">
>> <wsdl:port name="AuthenticationDiacapEndpoint"
>> binding="tns:AuthenticationDiacapEndpoint">
>> <soap12:address
>>
>>location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc
>>"/
>> <wsa10:EndpointReference>
>>
>><wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authenticat
>> ion.svc</wsa10:Address>
>> <Identity
>> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
>> <KeyInfo
>>xmlns="http://www.w3.org/2000/09/xmldsig#">
>> <X509Data>
>>
>><X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU
>>
>>FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwFQYK
>>CZ
>>
>>ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcxNDE
>>yM
>>
>>jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLG
>>QB
>>
>>GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb21wd
>>XR
>>
>>lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wdXRl
>>cn
>>
>>MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKT
>>G+
>>
>>rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/IMJ
>>hE
>>
>>tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO51H
>>18
>>
>>bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQiS
>>zT
>>
>>iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMBBgg
>>rB
>>
>>gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBggrBg
>>EF
>>
>>BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ4EF
>>gQ
>>
>>UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/OUw
>>gg
>>
>>EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNhMSx
>>DT
>>
>>j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZX
>>J2
>>
>>aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZXZvY
>>2F
>>
>>0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwOi8v
>>Y2
>>
>>VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3ViY2E
>>xL
>>
>>mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1jZW
>>50
>>
>>ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlc
>>yx
>>
>>DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29i
>>am
>>
>>VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9jZW5
>>0Z
>>
>>XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTEuY2
>>Vu
>>
>>dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4ICA
>>QA
>>
>>aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBWmLZ
>>gI
>>
>>9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8dCQB
>>pH
>>
>>3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYivG9V
>>FX
>>
>>ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAuvQB
>>Qf
>>
>>0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFLaky
>>iA
>>
>>eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpUrD+
>>Ma
>>
>>Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V+yy
>>dv
>>
>>/hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT9VH
>>N6
>>
>>gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJbkda
>>0B
>> pF1xatiQ==</X509Certificate>
>> </X509Data>
>> </KeyInfo>
>> </Identity>
>> </wsa10:EndpointReference>
>> </wsdl:port>
>> </wsdl:service>
>> </wsdl:definitions>
>>
>>
>> All information in this message is confidential and may be legally
>>privileged. Only intended recipients are authorized to use it.
>>
>
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Dennis Sosnoski <dm...@sosnoski.com>.
Hi Paul,
I think I see what's going on here. Your
AuthenticationDiacapEndpoint_policy which specifies the use of RM and
AsymmetricBinding doesn't set anything to be signed, instead leaving
that to the individual input and output policies (such as
AuthenticationDiacapEndpoint_Activate_Input_policy). But because RM
isn't using one of those specified inputs or outputs it doesn't get a
policy that says the body should be signed.
Dan, how do you think this should be handled? We obviously want to be
compatible with WCF, but I'm not sure how it should be implemented.
- Dennis
On 08/15/2014 04:30 AM, Longsine, Pohl wrote:
> On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>
>> The policy has a <sp:EncryptSignature/> assertion in it so I would
>> have expected the signatures to be encrypted. The CXF request has two
>> ncryptedData elements which MAY correspond to the two Signatures that
>> the .NET client is sending. No really sure though as I don¹t know what
>> is in the encrypted data.
>>
>> You could try removing that rom the policy and see if CXF does something
>> different. At the very least, it may show the Signatures.
>>
>> That said, there is still an issue. I don¹t see a wsu:Id on the
>> soap:Body. Thus, it doesn¹t look like CXF is signing the Body like it
>> should be. Actully, I don¹t see the Id on the and of the WS-A headers
>> either. It would be good to see what CXF is signing. Or at least hat
>> is in the encrypted data.
>>
>> Dan
> Dan, I really appreciate your attention here. Thank you.
>
> I askd the .NET team to make the specific change that you requested
> (removing the EncryptSignature assertio from their WSDL). They must have
> not been able to do such a small, targeted change. Instead, the made the
> following change, which had the side-effect of the EncryptSignature no
> longer beng there. That said, a few other small things in the WSDL also
> changed, perhaps not in a way that matters For reference, here's what
> they say they changed:
>
>> I¹ve changed the message security versio to be an older version
>>
>> (WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecuity
>> Policy11BasicSecurityProfile10
>> instead of
>> WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecurityP
>> olicy11)
>
>
> Now our soap request has Signature element in it, although the id
> attributes that you noted were absent ar still not there. The end result,
> from a soap fault perspective, is the same.
>
> Doe this help you analyze what is going wrong here?
>
>
>
>
>
> ----- CXF SOAP REQUEST -----
>
> soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
> <soap:Header
> <Action xmlns="http://www.w3.org/2005/08/addressing">
> http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
> </Action>
> <MessageID
> xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-4984-86
> 28-c4298b0fa3b1
> </MessageID>
> <To
> xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com/OM
> S/V2/Diacap/Autentication.svc
> </To>
> <ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
>
> <Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
> </ReplyTo>
> <wss:Security
> xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
> ity-secext-1.0.xsd"
>
> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
> ty-utility-1.0.xsd"
> soap:mustUnderstand=true">
> <wsu:Timestamp
> wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
> <wsu:Created>2014-08-14T6:12:04.392Z</wsu:Created>
> <wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
> </wsu:Timestamp>
> <wsse:BinarySecurityToken
>
> EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
> message-security-1.0#Base64Binary"
>
> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
> en-profle-1.0#X509v3"
> wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">
>
> MIGmzCCBgSgAwIBAgIKWp2aTQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLGQ
> BGRYDY29tMRYwFAYKCZImiPyLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMB
> EGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDExNjU2NTBFw0xNTEyMTYxNzQ0MTRaMGwxCzAJB
> gNVBAYTAlVTMREwDwYDVQQIEwhORUJSQVNLQTEOMAwGA1UEBxMFT01BEExDzANBgNVBAoTBkdB
> TExVUDEKMAgGA1UECxMBRzEdMBsGA1UEAxQUV0NGX0dBTExVUE9OTElORV9UFAwggIiMA0GCSq
> GSIb3DQEBAQUAA4ICDwAwggIKAoICAQCgk87lbdHZ5yV1y9LTH31n2FflLym28QRBSc9cRDBBr
> dqWG1fw0co/zLNWwPF36iqruDHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlHpI
> T1sZh9xSe1d4mvyrn66CK4xU5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9NL3
> Hp92GJGB5+E874s9hq6YQ8JeFHO1Jh/h45CdbWPen3JT3V1vHdPRjU2b7tsx1wW1S00/gnJ1fC
> d2M4Y7/dt3xnIVtetaLefVgK4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOEVF
> OwkooOlSVGUyE6yAJ9zwdCQu2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObOj/bi
> UGQ7CKYaZ5gmRkrGDKxFfnDJFUVXw+gF0H94af+0PVDwb59g67Js9WvN9Gbf8GM8v0wDS6c6XJ
> /09MjATev+wkGcZiAo8ACGE6exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/IybiIG6cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7HkQf2bY
> XTMVAesLBJ3hYKnyKhp5yVfcP8mAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLLJs
> ezsj6lSjcifjxUrvWI9wU/uMB8GA1UdIwQYMBaAFN+R56qauFl5tP293D3bFr7mF9NMIIBDwYD
> VR0fBIIBBjCCAQIwgf+ggfyggfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9hbXN
> 1mNhMSxDTj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q2
> 9uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/Y
> mFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2luIY+aHR0cDovL25vYW1zdWJjYTEu
> bm9hbS5nYWxsdXAuY29tL0NlcnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEFBQc
> BAQSCARYwggESMIGoBggrBgEFBQcwAoaBm2xkYXA6Ly8vQ049bm9bXN1YmNhMSxDTj1BSUEsQ0
> 49UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049Q29uZmlndXJhdGlvbixEQ
> z1nYWxsdXAsREM9Y29tP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0
> aW9uQXV0aG9yaXR5MGUGCCsGAQUFBzAChllodHRwOi8vb9hbXN1YmNhMS5ub2FtLmdhbGx1cC5
> jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQpLm
> NydDAhBgkrBgEEAYI3FAIEFB4SAFcAZBiAFMAZQByAHYAZQByMAwGA1UdEwEB/wQCMAAwCwYDV
> R0PBAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lUqdM
> eFUJoB/DED+zgMrFXeAOyqlkb29f9A2uq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3uOj
> +SL4rLrp2kEDvgtPcIxOekCh594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO9qCF5
> n0mItQMmTb
> </wsse:BinarySecurityToken>
> <ds:Signatur xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
> Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
> <ds:SignedInfo>
> <ds:CanonicalizationMethod
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
> <ec:InclusiveNamespaces
> xmlns:ec="http://www.w3.org/001/10/xml-exc-c14n#" PrefixList="soap"/>
> </ds:CanonicalizationMethod>
> <ds:SignatureMethod
> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
> <ds:Reference
> URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
> <ds:Transforms>
> <ds:Transform
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
> <ec:InclusiveNamespaces
> xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
> PrefixList="wsse
> soap"/>
> </ds:Transform>
> </d:Transforms>
> <ds:DigestMethod
> Algorithm="http://ww.w3.org/2000/09/xmldsig#sha1"/>
>
> <ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
> </ds:Reference>
> </ds:SignedInfo>
> <ds:SignaturValue>
>
> KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9iI/AF
> 9gTWGtOrCB7nrlE3f8bOLxt3nggokrD8v8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3JrFjY3
> /yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s+MMP
> jnmD9E7SM9kCedPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbco6RS
> SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKcduvBW
> 8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WKuUCwI
> Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfakLWSR
> tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7xsTofa
> 1fgcSkaBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3MoqToT
> d6JzuGRw=
> </ds:SignatureValue>
> <ds:KeyInfo Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
> <wsse:SecurityTokenReference
> wsu:Id="STR-51789ea2-2fa3-425e-a31b-bfb9f1e49787">
> <wsse:Referece
> URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
>
> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
> en-profile-1.0#X509v3"/>
> /wsse:SecurityTokenReference>
> </ds:KeyInfo>
> </ds:Signature>
> </wsse:Security>
> </soap:Header>
> <soapBody>
> <CreateSequence
> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
> xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
>
> <ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
> </AcksTo>
> <Expires>PT0S</Expires>
> <Offer>
>
> <Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
> <Endpoint>
>
> <ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
> </Endpoint>
> <Expires>PT0S</Expires>
> </Offer>
> </CreateSequence>
> </soap:Body>
> </soap:Envelope>
>
>
>
>
> ----- .NET SOAP REQUEST -----
>
> <?xml version="1.0" encoding="utf-8"?>
> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
> xlns:a="http://www.w3.org/2005/08/addressing"
> xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecurity
> -utility-1.0.sd">
> <s:Header>
> <a:Action s:mustUnderstand="1"
> u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a:Ac
> tion>
> <a:MessageID
> uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
> <ActivityId
> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
> CorrelationId="bcd3db57-178d-48a-bf82-e2c8df52dd37">22aecc77-9a7c-49d9-91d
> 7-9533bf1599d7</ActivityId>
> <a:To s:mustUnderstand="1"
> u:Id="_4">http://orfdinsjx75w7.nom.gallup.com/oms.wcf/Authentication.svc</
> a:To>
> <o:Security
> xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity
> -secext-1.0xsd" s:mustUnderstand="1">
> <u:Timestamp u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
> <u:Created>2014-08-14T15:56:02.747Z</u:Created>
> <u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
> </u:Timestamp>
> <o:BinarySecurityToken
> u:Id="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
> ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509-tok
> en-profile-1.0#X509v3"
> EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
> message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBgkq
> hkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHV
> wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbN1YmNhMTAeFw0xNDA0MDIyMD
> E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJKoZIh
> vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQDXtKN27H523sadm7uLA4HPKuSi2Ocld3f
> DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDrGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9TaPrI
> 61b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgBAAGjggLEMIICwDAhBgkrBgEEAY
> I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1UdDwQEA
> wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq4WXm0
> +Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6CB/KCB+YaBtmxkYXA6L8vQ049bm9hbXN
> 1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcy
> xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhd
> GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hj5o
> dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExKDM
> pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DTj1ub2
> Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyxDT
> j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29iamVj
> dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2Ftc3V
> iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsdXAuY2
> 9tX25vYW1zdWJjYTEoNCkuY3J0MA0GCSqGSIb3DQEBBQUAA4GBAFID1ggNoy2KfjG5yGyNMYgga
> vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2BzFl0xi
> 16WbmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28Tj</o
> :BinarySecurityToken>
> <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
> <SignedInfo>
> <CanonicalizationMethod
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> <SignatureMethod
> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
> <Reference URI="#_1">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
> </Reference>
> <Reference URI="#_2">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>/yJ/ysxeFBIlVOQK860fYd641KA=</DigestValue>
> </Reference>
> <Reference URI="#_3">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
> </Reference>
> <Reference URI="#_4">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
> </Reference>
> <Reference URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
> </Reference>
> </SignedInfo>
> <SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0O
> lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+XnRpNy5
> ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
> <KeyInfo>
> <o:SecurityTokenReference>
> <o:Reference
> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
> en-profile-1.0#X509v3" URI="#uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"/>
> </o:SecurityTokenReference>
> </KeyInfo>
> </Signature>
> </o:Security>
> </s:Header>
> <s:Body u:Id="_1">
> <CreateSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
> <AcksTo>
> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
> </AcksTo>
> <Offer>
> <Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
> <Endpoint>
> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
> </Endpoint>
> <IncompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenc
> eBehavior>
> </Offer>
> </CreateSequence>
> </s:Body>
> </s:Envelope>
>
>
>
>
> ----- WSDL -----
>
> <?xml version="1.0" encoding="utf-8"?>
> <wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
> xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
> xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/addressing"
> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
> xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
> xmlns:tns="http://tempuri.org/"
> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
> xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
> name="Authentication" targetNamespace="http://tempuri.org/">
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <wsrmp:RMAssertion
> xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
> <wsp:Policy>
> <wsrmp:DeliveryAssurance>
> <wsp:Policy>
> <wsrmp:ExactlyOnce/>
> <wsrmp:InOrder/>
> </wsp:Policy>
> </wsrmp:DeliveryAssurance>
> </wsp:Policy>
> <netrmp:InactivityTimeout
> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
> Milliseconds="600000"/>
> <netrmp:AcknowledgementInterval
> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
> Milliseconds="200"/>
> </wsrmp:RMAssertion>
> <sp:AsymmetricBinding
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:InitiatorToken>
> <wsp:Policy>
> <sp:X509Token
> sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inclu
> deToken/AlwaysToRecipient">
> <wsp:Policy>
> <sp:WssX509V3Token10/>
> </wsp:Policy>
> </sp:X509Token>
> </wsp:Policy>
> </sp:InitiatorToken>
> <sp:RecipientToken>
> <wsp:Policy>
> <sp:X509Token
> sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inclu
> deToken/Never">
> <wsp:Policy>
> <sp:WssX509V3Token10/>
> </wsp:Policy>
> </sp:X509Token>
> </wsp:Policy>
> </sp:RecipientToken>
> <sp:AlgorithmSuite>
> <wsp:Policy>
> <sp:Basic256/>
> </wsp:Policy>
> </sp:AlgorithmSuite>
> <sp:Layout>
> <wsp:Policy>
> <sp:Strict/>
> </wsp:Policy>
> </sp:Layout>
> <sp:IncludeTimestamp/>
> <sp:OnlySignEntireHeadersAndBody/>
> </wsp:Policy>
> </sp:AsymmetricBinding>
> <sp:Wss10
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:MustSupportRefKeyIdentifier/>
> <sp:MustSupportRefIssuerSerial/>
> </wsp:Policy>
> </sp:Wss10>
> <sp:Trust10
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:MustSupportIssuedTokens/>
> <sp:RequireClientEntropy/>
> <sp:RequireServerEntropy/>
> </wsp:Policy>
> </sp:Trust10>
> <wsaw:UsingAddressing/>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="SequenceAcknowledgement"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
> Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header Name="CoordinationContext"
> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header Name="CoordinationContext"
> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
> location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc?
> wsdl=wsdl0"/>
> <wsdl:types/>
> <wsdl:binding name="AuthenticationDiacapEndpoint"
> type="i0:IAuthentication">
> <wsp:PolicyReference URI="#AuthenticationDiacapEndpoint_policy"/>
> <soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
> <wsdl:operation name="Activate">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activate"
> style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="ChangePassword">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ChangePas
> sword" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Create">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create"
> style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Expire">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire"
> style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetAnswers">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAnswer
> s" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetPolicy">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPolicy
> " style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetQuestions">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQuesti
> ons" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetUsernames">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUserna
> mes" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Reset">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
> style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Update">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update"
> style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Validate">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Validate"
> style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="ValidateEmail">
> <soap12:operation
> soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ValidateE
> mail" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> </wsdl:binding>
> <wsdl:service name="Authentication">
> <wsdl:port name="AuthenticationDiacapEndpoint"
> binding="tns:AuthenticationDiacapEndpoint">
> <soap12:address
> location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc"/
> <wsa10:EndpointReference>
> <wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authenticat
> ion.svc</wsa10:Address>
> <Identity
> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
> <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
> <X509Data>
> <X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU
> FADBeMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHVwMRcwFQYKCZ
> ImiZPyLGQBGRYHY2VudGV1cjEWMBQGA1UEAxMNY2VudGV1cnN1YmNhMTAeFw0xNDA3MDcxNDEyM
> jRaFw0xNTA3MDcxNDEyMjRaMIGtMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQB
> GRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYEbm9hbTEaMBgGA1UECxMRTWFuYWdlZCBDb21wdXR
> lcnMxEDAOBgNVBAsTB09tYWhhUkYxIjAgBgNVBAsMGU9tYWhhUkZfTWFuYWdlZF9Db21wdXRlcn
> MxFjAUBgNVBAMTDU9SRkRJTlNKWDc1VzcwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKTG+
> rgCIyjSwL/i2CV1yzekeu9GqUHmOBs3CAZ4Q8kSPCx8zhqUoPZh12pFmdOyf4jsgNKdhs/IMJhE
> tpac7IWu2Z8+lqvCdPN3UZ5hW2jZKmt0pq+HczSZmV5C0SDb8u9k5TuftNv93pgyBTEKdO51H18
> bxl8VzIvE/mEpgk0zAgMBAAGjggNaMIIDVjA8BgkrBgEEAYI3FQcELzAtBiUrBgEEAYI3FQiSzT
> iDze5nhamHGYXoqGGFyvNMgSDJok+D37AGAgFkAgEKMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrB
> gEFBQcDAjALBgNVHQ8EBAMCBaAwJwYJKwYBBAGCNxUKBBowGDAKBggrBgEFBQcDATAKBggrBgEF
> BQcDAjAoBgNVHREEITAfgh1PUkZESU5TSlg3NVc3Lm5vYW0uZ2FsbHVwLmNvbTAdBgNVHQ4EFgQ
> UlX5zw4NHfRQDn/6gE+w6Y3E7Y70wHwYDVR0jBBgwFoAUzA/JoN+rY2/04Mq9phIB6nsR/OUwgg
> EbBgNVHR8EggESMIIBDjCCAQqgggEGoIIBAoaBuWxkYXA6Ly8vQ049Y2VudGV1cnN1YmNhMSxDT
> j1jZW50ZXVyc3ViY2ExLENOPUNEUCxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2
> aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhdGVSZXZvY2F
> 0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hkRodHRwOi8vY2
> VudGV1cnN1YmNhMS5jZW50ZXVyLmdhbGx1cC5jb20vQ2VydEVucm9sbC9jZW50ZXVyc3ViY2ExL
> mNybDCCATYGCCsGAQUFBwEBBIIBKDCCASQwgasGCCsGAQUFBzAChoGebGRhcDovLy9DTj1jZW50
> ZXVyc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyx
> DTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29iam
> VjdENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwdAYIKwYBBQUHMAKGaGh0dHA6Ly9jZW50Z
> XVyc3ViY2ExLmNlbnRldXIuZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL2NlbnRldXJzdWJjYTEuY2Vu
> dGV1ci5nYWxsdXAuY29tX2NlbnRldXJzdWJjYTEoMykuY3J0MA0GCSqGSIb3DQEBBQUAA4ICAQA
> aYsfZ32uMJQldYlU4a8RB51ZjsoxG+fDrw0vwPbXcsxanUfpRpFMx5tJc0eiBlGq9JOmBWmLZgI
> 9fPl9BhH26Iz2o4wFygEbd73aM7yVZ4s+0DUxG3Nv/5mKOSDULsCS06CWQQXew4yo+Mg8dCQBpH
> 3EZnc1LaY5fR6+bI8FLVpJSsJvAoS+UIEA+rYK07NAeka0zpxhNV36NAHY+dEEllRGJYivG9VFX
> ycFv5UhXClfivxfdolGMI0vZo1tWTa35+fA2fOf0Q1hQW5kUZwRTUhC7l/PDE1dKVkULAuvQBQf
> 0xkj+svYWj3p8K+RH5M6UzwN0bT4/J3TWqdqGLQXW6ebgp0hZPFrcRiTDHLLq3ksrgXYFLakyiA
> eLxGs2xrJQdgH+KPCzECe0+SGhnfvVScxHpkoHznTTIQHz6MwX+D/s9P7hBVn6PH40aYpUrD+Ma
> Bd7pDwIB5e9iADf0+gm3hoIWrsTac+OezzZTyrbbmWoHt32VqmeOdeIAzQLL4PK8nsEh+V+yydv
> /hKCjP6RpZq9OFm2lMYOs4bgtxB3wfuqm687c8ASZTn4AyxnR3mdgG7HGBrno5S2vK4KeT9VHN6
> gLH5PNDqIfWJxriXKsVNS3T4peSNenTS4rSAaTdAs8o5bVpGCTSDc0rwKzFa25iA3nthJbkda0B
> pF1xatiQ==</X509Certificate>
> </X509Data>
> </KeyInfo>
> </Identity>
> </wsa10:EndpointReference>
> </wsdl:port>
> </wsdl:service>
> </wsdl:definitions>
>
>
> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
>
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
On 8/13/14 4:32 PM, "Daniel Kulp" <dk...@apache.org> wrote:
>The policy has a <sp:EncryptSignature/> assertion in it so I would
>have expected the signatures to be encrypted. The CXF request has two
>ncryptedData elements which MAY correspond to the two Signatures that
>the .NET client is sending. No really sure though as I don¹t know what
>is in the encrypted data.
>
>You could try removing that rom the policy and see if CXF does something
>different. At the very least, it may show the Signatures.
>
>That said, there is still an issue. I don¹t see a wsu:Id on the
>soap:Body. Thus, it doesn¹t look like CXF is signing the Body like it
>should be. Actully, I don¹t see the Id on the and of the WS-A headers
>either. It would be good to see what CXF is signing. Or at least hat
>is in the encrypted data.
>
>Dan
Dan, I really appreciate your attention here. Thank you.
I askd the .NET team to make the specific change that you requested
(removing the EncryptSignature assertio from their WSDL). They must have
not been able to do such a small, targeted change. Instead, the made the
following change, which had the side-effect of the EncryptSignature no
longer beng there. That said, a few other small things in the WSDL also
changed, perhaps not in a way that matters For reference, here's what
they say they changed:
> I¹ve changed the message security versio to be an older version
>
>(WSSecurity10WSTrustFebruary2005WSSecureConversationFebruary2005WSSecuity
>Policy11BasicSecurityProfile10
> instead of
>WSSecurity11WSTrustFebruary2005WSScureConversationFebruary2005WSSecurityP
>olicy11)
Now our soap request has Signature element in it, although the id
attributes that you noted were absent ar still not there. The end result,
from a soap fault perspective, is the same.
Doe this help you analyze what is going wrong here?
----- CXF SOAP REQUEST -----
soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
<soap:Header
<Action xmlns="http://www.w3.org/2005/08/addressing">
http:/docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
</Action>
<MessageID
xmlns"http://www.w3.org/2005/08/addressing">urn:uuid:421e07a9-4fa4-4984-86
28-c4298b0fa3b1
</MessageID>
<To
xmlns="http://www.w3.org/2005/08/addressing">https://services.gallup.com/OM
S/V2/Diacap/Autentication.svc
</To>
<ReplyTo xmlns="http://www.w3.org/2005/08/addressing">
<Address>http://www.w3.org/2005/08/addressing/anonymous</Address>
</ReplyTo>
<wss:Security
xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
ity-secext-1.0.xsd"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
ty-utility-1.0.xsd"
soap:mustUnderstand=true">
<wsu:Timestamp
wsu:Id="TS-fd886f00-f83a-49cc-98e6-ed726c946b4f">
<wsu:Created>2014-08-14T6:12:04.392Z</wsu:Created>
<wsu:Expires>2014-08-14T16:17:04.392Z</wsu:Expires>
</wsu:Timestamp>
<wsse:BinarySecurityToken
EncodingType="http://dos.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
message-security-1.0#Base64Binary"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
en-profle-1.0#X509v3"
wsu:Id="X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12">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cmvMmdSTtJ6su36PVHCwmIFZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7HkQf2bY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</wsse:BinarySecurityToken>
<ds:Signatur xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
Id="SIG-e137681a-07ba-4b9c-b7b9-6512baaf6651">
<ds:SignedInfo>
<ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
<ec:InclusiveNamespaces
xmlns:ec="http://www.w3.org/001/10/xml-exc-c14n#" PrefixList="soap"/>
</ds:CanonicalizationMethod>
<ds:SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<ds:Reference
URI="#TS-fd886f00-f83a-49cc-98e6-ed726c946b4f>
<ds:Transforms>
<ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#">
<ec:InclusiveNamespaces
xmlns:ec="http://ww.w3.org/2001/10/xml-exc-c14n#"
PrefixList="wsse
soap"/>
</ds:Transform>
</d:Transforms>
<ds:DigestMethod
Algorithm="http://ww.w3.org/2000/09/xmldsig#sha1"/>
<ds:DigetValue>XOuTAzmxvwA2Y/ec3KEkr5OsBXA=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignaturValue>
KOWLbHMWGwrZMid6x21WOEFzq3qAYzco+Dy7qNYnd2ZmyuImNIBUZ3XiqUHR4xytI2nqm9iI/AF
9gTWGtOrCB7nrlE3f8bOLxt3nggokrD8v8+41+5FQlT33Zg2A//3XcHYSuTZPm4uLxbZ3JrFjY3
/yqhSAVsQTOvWuuQsou2aUQjl/hGGFtG5k+HduBShnrub2j5lUSD6UrWgzTVapOdYSuP1s+MMP
jnmD9E7SM9kCedPKxgjvDtmMsta7LUfqPNR8lahIHrMAIHYo98BhWYBvEGCoS4Qc4V8dbco6RS
SLm4hjQeXm6V7ZeXsFYOdlk01O/jq5CDc5FSF/KV5NZSq8qKYltz1brXfg6WUEmcr/KOKcduvBW
8wJYKtKMtnYceVl+T7PMSWo7TNHZlYOAHYY7Ymc4q3EVMRKAZrBU98HXQgMjIRP72Hj7WKuUCwI
Rdd3hGaGfsW/3/HQXKcWxfiMvlGdTmWXEmQ9uYqHw/K6yooivGzXXFAIoCuwZOFDyjIfakLWSR
tA5HaXpIMprEGVnKcSAvLhj1dPiYmBrnz6WPQIlB/kBwQb6iV5g5j8a2QUohmfgPeUWm7xsTofa
1fgcSkaBNRQZIxt0vLQ+3F5pW1fglxRUIyGSXYAzmY3BwpDVrLNF8y9uKXalUifO3il3MoqToT
d6JzuGRw=
</ds:SignatureValue>
<ds:KeyInfo Id="KI-929233b6-26de-41cf-a02-f52dde4d4bf9">
<wsse:SecurityTokenReference
wsu:Id="STR-51789ea2-2fa3-425e-a31b-bfb9f1e49787">
<wsse:Referece
URI="#X509-0bef70e2-c2fd-4f38-b91e-b69f19e02c12"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
en-profile-1.0#X509v3"/>
/wsse:SecurityTokenReference>
</ds:KeyInfo>
</ds:Signature>
</wsse:Security>
</soap:Header>
<soapBody>
<CreateSequence
xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
xmlns:ns2="http://www.w3.org/2005/08/addressing"> <AcksTo>
<ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
</AcksTo>
<Expires>PT0S</Expires>
<Offer>
<Identifier>urn:uuid:088a3021-a1a6-45eb-94f0-1ed1ef45b724</Identifier>
<Endpoint>
<ns2:Address>ttp://www.w3.org/2005/08/addressing/anonymous</ns2:Address>
</Endpoint>
<Expires>PT0S</Expires>
</Offer>
</CreateSequence>
</soap:Body>
</soap:Envelope>
----- .NET SOAP REQUEST -----
<?xml version="1.0" encoding="utf-8"?>
<s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
xlns:a="http://www.w3.org/2005/08/addressing"
xmlns:u="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-wssecurity
-utility-1.0.sd">
<s:Header>
<a:Action s:mustUnderstand="1"
u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a:Ac
tion>
<a:MessageID
uId="_3">urn:uuid:c8fbad80-04ea-4231-a013-b3d3624d95d8</a:MessageID>
<ActivityId
xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
CorrelationId="bcd3db57-178d-48a-bf82-e2c8df52dd37">22aecc77-9a7c-49d9-91d
7-9533bf1599d7</ActivityId>
<a:To s:mustUnderstand="1"
u:Id="_4">http://orfdinsjx75w7.nom.gallup.com/oms.wcf/Authentication.svc</
a:To>
<o:Security
xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity
-secext-1.0xsd" s:mustUnderstand="1">
<u:Timestamp u:Id="uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
<u:Created>2014-08-14T15:56:02.747Z</u:Created>
<u:Expires>2014-08-14T16:01:02.747Z/u:Expires>
</u:Timestamp>
<o:BinarySecurityToken
u:Id="uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"
ValueType="http://docs.oasis-oen.org/wss/2004/01/oasis-200401-wss-x509-tok
en-profile-1.0#X509v3"
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
message-ecurity-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBgkq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</o
:BinarySecurityToken>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<Reference URI="#_1">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>ZFDzoLqhFd9JFXbIhp4Ye3OGzic=</DigestValue>
</Reference>
<Reference URI="#_2">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>/yJ/ysxeFBIlVOQK860fYd641KA=</DigestValue>
</Reference>
<Reference URI="#_3">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>L6pBGbPoTr+SUBd0oVRF5mkJAnw=</DigestValue>
</Reference>
<Reference URI="#_4">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>xMyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
</Reference>
<Reference URI="#uuid-8d8036fb-c4cc-4af1-8816-fbd5131a98ec-1">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>i65FNTbzzhokOJpR084vpRDlFX4=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>S4beQpRg8kMU1ih51x/eZDbvX6HwAmEsajKbYLI5Sl7BzdXwtH+Sb0O
lIYUa4hvxiRw9dneO95YUBpxkXmpMVf2kNdt9otzcTKYEZuc8iDxAOQtaOuUWjGwLZG+XnRpNy5
ofE//2oPPI/y0jPlE8v7O88PK6N4OvI+og221tOW8=</SignatureValue>
<KeyInfo>
<o:SecurityTokenReference>
<o:Reference
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
en-profile-1.0#X509v3" URI="#uuid-40c54dbb-369c-4ce8-8b8d-6fcfcd03dc29-2"/>
</o:SecurityTokenReference>
</KeyInfo>
</Signature>
</o:Security>
</s:Header>
<s:Body u:Id="_1">
<CreateSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
<AcksTo>
<a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
</AcksTo>
<Offer>
<Identifier>urn:uuid:6ad37f93-dece-4215-8fdd-1201c3e5c7df</Identifier>
<Endpoint>
<a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
</Endpoint>
<IncompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenc
eBehavior>
</Offer>
</CreateSequence>
</s:Body>
</s:Envelope>
----- WSDL -----
<?xml version="1.0" encoding="utf-8"?>
<wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
xmlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
xmlns:i0="http://schemas.gallup.com/oms/2010/10/"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/addressing"
xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:tns="http://tempuri.org/"
xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
name="Authentication" targetNamespace="http://tempuri.org/">
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
<wsp:ExactlyOne>
<wsp:All>
<wsrmp:RMAssertion
xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
<wsp:Policy>
<wsrmp:DeliveryAssurance>
<wsp:Policy>
<wsrmp:ExactlyOnce/>
<wsrmp:InOrder/>
</wsp:Policy>
</wsrmp:DeliveryAssurance>
</wsp:Policy>
<netrmp:InactivityTimeout
xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
Milliseconds="600000"/>
<netrmp:AcknowledgementInterval
xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
Milliseconds="200"/>
</wsrmp:RMAssertion>
<sp:AsymmetricBinding
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:InitiatorToken>
<wsp:Policy>
<sp:X509Token
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inclu
deToken/AlwaysToRecipient">
<wsp:Policy>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:InitiatorToken>
<sp:RecipientToken>
<wsp:Policy>
<sp:X509Token
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inclu
deToken/Never">
<wsp:Policy>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:RecipientToken>
<sp:AlgorithmSuite>
<wsp:Policy>
<sp:Basic256/>
</wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout>
<wsp:Policy>
<sp:Strict/>
</wsp:Policy>
</sp:Layout>
<sp:IncludeTimestamp/>
<sp:OnlySignEntireHeadersAndBody/>
</wsp:Policy>
</sp:AsymmetricBinding>
<sp:Wss10
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:MustSupportRefKeyIdentifier/>
<sp:MustSupportRefIssuerSerial/>
</wsp:Policy>
</sp:Wss10>
<sp:Trust10
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:MustSupportIssuedTokens/>
<sp:RequireClientEntropy/>
<sp:RequireServerEntropy/>
</wsp:Policy>
</sp:Trust10>
<wsaw:UsingAddressing/>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsdl:import namespace="http://schemas.gallup.com/oms/2010/10/"
location="https://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc?
wsdl=wsdl0"/>
<wsdl:types/>
<wsdl:binding name="AuthenticationDiacapEndpoint"
type="i0:IAuthentication">
<wsp:PolicyReference URI="#AuthenticationDiacapEndpoint_policy"/>
<soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
<wsdl:operation name="Activate">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Activate"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="ChangePassword">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ChangePas
sword" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Create">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Create"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Expire">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Expire"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetAnswers">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetAnswer
s" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetPolicy">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetPolicy
" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetQuestions">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetQuesti
ons" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetUsernames">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/GetUserna
mes" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Reset">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Reset"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Update">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Update"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Validate">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/Validate"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="ValidateEmail">
<soap12:operation
soapAction="http://schemas.gallup.com/oms/2010/10/IAuthentication/ValidateE
mail" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
</wsdl:binding>
<wsdl:service name="Authentication">
<wsdl:port name="AuthenticationDiacapEndpoint"
binding="tns:AuthenticationDiacapEndpoint">
<soap12:address
location="http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authentication.svc"/
>
<wsa10:EndpointReference>
<wsa10:Address>http://orfdinsjx75w7.noam.gallup.com/oms.wcf/Authenticat
ion.svc</wsa10:Address>
<Identity
xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
<X509Data>
<X509Certificate>MIIHaDCCBVCgAwIBAgIKZqAbnAADAAE8yjANBgkqhkiG9w0BAQU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</X509Certificate>
</X509Data>
</KeyInfo>
</Identity>
</wsa10:EndpointReference>
</wsdl:port>
</wsdl:service>
</wsdl:definitions>
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Daniel Kulp <dk...@apache.org>.
On Aug 13, 2014, at 5:06 PM, Longsine, Pohl <Po...@gallup.com> wrote:
> I am replying to my own question to provide one more interesting piece of
> information, in hopes of helping someone read and interpret what is going
> on here.
>
> I asked the .NET team to capture the SOAP messag from their own test
> client (also written in .NET) that is able to hit their service.
>
> Their SOAP turns out to be very different from the SOAP that CXF is
> sending. I don't fully understand the significance of the difference.
> Does anybody else?
The policy has a <sp:EncryptSignature/> assertion in it so I would have expected the signatures to be encrypted. The CXF request has two EncryptedData elements which MAY correspond to the two Signatures that the .NET client is sending. Not really sure though as I don’t know what is in the encrypted data.
You could try removing that from the policy and see if CXF does something different. At the very least, it may show the Signatures.
That said, there is still an issue. I don’t see a wsu:Id on the soap:Body. Thus, it doesn’t look like CXF is signing the Body like it should be. Actually, I don’t see the Id on the and of the WS-A headers either. It would be good to see what CXF is signing. Or at least what is in the encrypted data.
Dan
>
>
> ---- SOAP request sent by the .NET test client ----------
>
> <?xml version="1.0" encoding="utf-8"?>
> <s:Envlope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
> xmlns:a="http://www.w3.org/2005/08/addressing"
> xmlns:u="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wssecurity
> -utility-1.0.xsd">
> <s:Header>
> <a:Action s:mustUnderstand="1"
> u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a:Ac
> tion>
> <a:MessageID
> u:Id="_3">urn:uuid:884474d9-cd4d-4115-90f4-c71950dfe7a5</a:MessageID>
> <ActivityId
> xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
> CorrelationId="6a2389dc-dfef-4471-b19c-a7efa267cfbf">8aae0965-193d-44cb-919
> 1-e58c7bb7981a</ActivityId>
> <a:To s:mustUnderstand="1"
> u:Id="_4">http://orfdinsjx75w7.noam.example.org/oms.wcfAuthentication.svc<
> /a:To>
> <o:Security
> xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity
> -secext-1.0.xsd" s:mustUnderstand="1">
> <u:Timestamp u:Id="uuid-1d0f9d6b-d23b-4fc8-907c-5608e5790d1a-2">
> <u:Created>2014-08-13T20:41:28.877Z</u:Created>
> <u:Expires>2014-08-13T20:46:28.877Z</u:Expires>
> </u:Timestamp>
> <e:EncryptedKey xmlns:e="http://www.w3.org/2001/04/xmlenc#"
> Id="uuid-1d0f9d6b-d23b-4fc8-907c-5608e5790d1a-1">
> <e:EncryptionMethod
> Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
> <DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#"
> Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> </e:EncryptionMethod>
> <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
> <o:SecurityTokenReference>
> <o:KeyIdentifier
> ValueType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1
> .1#ThumbprintSHA1"
> EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
> message-security-1.0#Base64Binary">ZEZnwmqU/vov3xQpP6wQ97Up+lU=</o:KeyIdent
> ifier>
> </o:SecurityTokenReference>
> </KeyInfo>
> <e:CipherData>
> <e:CipherValue>JPYB5r5XId/i7Zas89KUR2zdeMYWwjHKqaBHoGEE4mMwYD5FxnhfoU3
> 6z/s0kiavd89v6HmF6/gmiVnBANehhL4HI7OQXuVbqO2oV96i/5uVk+/6K1X0a+4Nh18GiMCA/3
> wC0n/Sd+XIwL5zkhiCXxWPHtZC/v0Qqf5Q8PHS/AI=</e:CipherValue>
> </e:CipherData>
> </e:EncryptedKey>
> <o:BinarySecurityToken
> u:Id="uuidfbcbb4d7-e8b8-41fa-84ab-0f6639304603-1"
> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
> en-profile-1.0#X509v3"
> EcodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
> message-security-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBgkq
> hkiG9w0BAQUFADBYMRMwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZPyLGQBGRYGZ2FsbHV
> wMRQwEgYKCZImiZPyLGQBGRYEbm9hbTETMBEGA1UEAxMKbm9hbXN1YmNhMTAeFw0xNDA0MDIyMD
> E4MDBaFw0xNTEyMTYxNzQ0MTRaMBgxFjAUBgNVBAMMDXdjZl9kZXZlbG9wZXIwgZ8wDQYJKoZIh
> vcNAQEBBQADgY0AMIGJAoGBAJRMLWEBneNo0RZ9gQADXtKN27H523sadm7uLA4HPKuSi2Ocld3f
> DFhb4OYnRRucjvrk1Ui5V5OOrOm7cWDrGF1IqCpOX+rJK5CgJsI8vAJgo8OinrFHWRhap9TaPrI
> 6b7nCuVqKww04fMNKCh8BX9+Oe82u6s1MmQBagH90BM9AgMBAAGjggLEMIICwDAhBgkrBgEEAY
> I3FAIEFB4SAFcAZQBiAFMAZQByAHYAZQByMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAsGA1UdDwQEA
> wIFoDAdBgNVHQ4EFgQUmth0i3QPZpXdMW2eCdZ6gfLQYBowHwYDVR0jBBgwFoAU35Hnqpq4WXm0
> +Tb3cPdsWvuYX00wggEPBgNVHR8EggEGMIIBAjCB/6CB/KCB+YaBtmxkYXA6Ly8vQ049bm9hbXN
> 1YmNhMSgzKSxDTj1ub2Ftc3ViY2ExLENOPUNEUCxDTj1QdWJsaMlMjBLZXklMjBTZXJ2aWNlcy
> xDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y2VydGlmaWNhd
> GVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsXNzPWNSTERpc3RyaWJ1dGlvblBvaW50hj5o
> dHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2Ftc3ViY2ExKDM
> pLmNybDCCASQGCCsGAQUFBwEBBIIBFjCCARIwgagGCCsGAQUFBzAChoGbbGRhcDovLy9DTj1ub2
> Ftc3ViY2ExLENOPUFJQSxDTj1QdWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyxDT
> j1Db25maWd1cmF0aW9uLERDPWdhbGx1cCxEQz1jb20/Y0FDZXJ0aWZpY2F0ZT9iYXNlP29iamVj
> dENsYXNzPWNlcnRpZmljYXRpb25BdXRob3JpdHkwZQYIKwYBBQUHMAKGWWh0dHA6Ly9ub2Ftc3V
> iY2ExLm5vYW0uZ2FsbHVwLmNvbS9DZXJ0RW5yb2xsL25vYW1zdWJjYTEubm9hbS5nYWxsdXAuY2
> 9tX25vYW1zdWJjYTEoNCkuY3J0MA0GCSqGSIb3DQEBBQUAA4GBFID1ggNoy2KfjG5yGyNMYgga
> vxacZG9jHzfJ39vRiPAhgL1uKoRNoaskjk61YlGkvbF/u2/PCyZL8diMNk+AjDrkk4P2BzFl0xi
> 16WbmydufMDIILhSYWb5d0t8SU0aXCzWSGb9yegNwE2dPb1yZ6YxeFcU2Zrxap4m+tJZ28Tj</o
> :BinarySecurityToken>
> <Signature xmlns="http://www.w3.org/2000/09/xmldsig#" Id="_0">
> <SignedInfo>
> <CanonicalizationMethod
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> <SignatureMethod
> Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"/>
> <Reference URI="#_1">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>8QcRoqCq0NPtq+Lf+3bOyCe/RUg=</DigestValue>
> </Reference>
> <Reference URI="#_2">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>/yJ/ysxeFBIlVOQK860fYd641KA=</DigestValue>
> </Reference>
> <Reference URI="#_3">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>pGvi+FpjT0/ycBsrbYgo7bQD58Q=</DigestValue>
> </Reference>
> <Reference URI="#_4">
> <Transforms>
> <Transform Algorithm="http://www.w3.og/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>xyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
> </Reference>
> <Reference URI="#uuid-1d0f9d6b-d23b-4fc8-907c-5608e5790d1a-2">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>LKlkpCZZWvF46l5pkjGBeoH6QcI=</DigestValue>
> </Reference>
> </SignedInfo>
> <SignatureValue>SN9CI0J6f96QKMiL9hnznWJ7SbI=</SignatureValue>
> <KeyInfo>
> <o:SecurityTokenReference
> xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd
> "
> k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security
> -1.1#EncryptedKey">
> <o:Reference
> ValueType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1
> .1#EncryptedKey" URI="#uuid-1d0f9d6b-d23b-4fc8-907c-5608e5790d1a-1"/>
> </o:SecurityTokenReerence>
> </KeyInfo>
> </Signature>
> <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
> <SignedInfo>
> <CanonicalizationMethd
> Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> <SignatureMethod
> Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
> <Reference URI="#_0">
> <Transforms>
> <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
> </Transforms>
> <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
> <DigestValue>eqP/DwALm9A5VboF/QAaoCPNnxA=</DigestValue>
> </Reference>
> </SignedInfo>
> <SignatureValue>JB7pnGIDmcajd8lk2gKtTjbOHQl7aAN34HlkKTPg0ox+OEaLvkXU8Yd
> wCVzazOI2YZ+5w/7e+leH7kwKI2fhyFdv4DhzfbhDM6xl0XX7mlx6CG7nKFyDcaI3qKrJfn93b
> 16X/xTCUtqqK0dymofTsgPa1GvTszKVDK0DMBJRZI=</SignatureValue>
> <KeyInfo>
> <o:SecurityTokenReference>
> <o:Reference
> ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
> en-profile-1.0#X509v3" URI="#uuid-fbcbb4d7-e8b8-41fa-84ab-0f6639304603-1"/>
> </o:SecurityTokenReference>
> </KeyInfo>
> </Signature>
> </o:Security>
> </s:Header>
> <s:Body u:Id="_1">
> <CreateSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
> <AcksTo>
> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
> </AcksTo>
> <Offer>
> <Identifier>urn:uuid:11c7e05f-b390-4178-a5d2-816c358e9dce</Identifier>
> <Endpoint>
> <a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
> </Endpoint>
> <IncompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenc
> eBehavior>
> </Offer>
> </CreateSequence>
> </s:Body>
> </s:Envelope>
>
>
>
>
>
> On 8/13/14 11:41 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>
>> Dennis, this turned out a bit differently than thought a couple of weeks
>> ago.
>>
>> When the .NET team who own the service turned off W-SecureConversation
>> (which isn't needed) it had the side-effect of also causing thei end to
>> fail to digitally sign the SOAP traffic. Signing is a requirement for us
>> After getting some help from Microsoft to figure out how to get their end
> to sign responses inabsence of WS-SecureConversation, they're ready for
>> us to try to hit it with our CXF client again.
>>
>> When I d, I get te following symptoms. We first put together a
>> CreateSequence request, and send it over the wre. The request that we
>> send looks good to my eye, however we get a soap fault in response - a
>> fairly eneric-sounding one at that.
>>
>> We asked the .NET team to turn on the logging to see what sort of errr
>> they see on their side. Here is what they see:
>>
>> ³The security protocol cannot verify the incoming message.²
>>
>> "The EncryptedKey clause was not wrapped with the required encryption
>> token 'System.IdentityModel.Tokens.X509SecurityToken'."
>>
>>
>> As usual, I'mhaving a hard time reading the tea leaves here. Does
>> anything stick out to you as something I'm doing wrong?
>>
>> Pohl Longsine
>> ----- cxf.xml configuration ----------
>>
>> <beans xmlns="http://www.springframework.org/schema/beans"
>> xmlns:jaxws="http://cxf.apache.org/jaxws"
>> xmlns:xsi="http://www.w3.org/2001/XMLSchma-instance"
>> xmlns:http="http://cxf.apache.org/transports/http/configuration"
>> xmlns:wsrm-policy="http//schemas.xmlsoap.org/ws2005/02/rm/policy"
>> xmlns:wsrm-mgr="http://cxf.apache.org/w/rm/manager"
>> xmlns:wsa="http://cxf.apache.org/ws/addressing"
>> xmlns:cxf="http://cxf.apache.or/core"
>>
>> xsi:schemaLocation="http://cxf.apache.org/core
>> http://cxf.apache.orgschemas/core.xsd
>> http://www.springframework.org/schema/beans
>> http://www.spingframework.org/schema/beans/spring-beans.xsd
>> http://cxf.apache.org/jaxw
>> http://cxf.apache.org/schemas/jaxws.xsd
>> http://cxf.apahe.rg/transports/http/configuration
>> http://cxf.apache.org/schemas/coniguration/http-conf.xsd
>> http://schemas.xmlsoap.org/ws/2005/02/rm/polic
>> http://schemas.xmlsoap.org/ws/2005/02/rm/wsrm-policy.xsd
>> htp://cxf.apache.org/ws/rm/manager
>> http://cxf.apache.org/schemas/configuraion/wsrm-manager.xsd">
>>
>> <bean id="logInBound"
>> class="org.apache.cxf.interceptr.LoggingInInterceptor"/>
>> <bean id="logOutBound"
>> class="org.apache.cxf.interceptor.LoggingOuInterceptor"/>
>> <jaxws:client name="{http://tempuri.org/}AuthenticationDiacapEndpoint"
>> createdFromAPI="tre"
>>
>> address="https://services.gallup.com/OMS/V2/Diacap/Authentication.svc?wsdl
>> "
>>>
>> <jaxws:properties>
>> <entry key="ws-security.signature.properties"
>> value="/client.propeties"/>
>> <entry key="ws-security.encryption.properties"
>> value="/client.properties"/>
>> <entry key="ws-security.encryption.username"
>> value="oms-diacap"/>
>> <entry key="ws-security.callback-handler"
>> value="gallup.oms.client.KeystorePasswordCallback"/>
>> </jaxws:properties>
>> <jaxws:inInterceptors>
>> <ref bean="lgInBound"/>
>> <!-- <ref bean="inbound-security"/> -->
>> </jaxws:inInterceptors>
>> <jaxws:outInterceptos>
>> <ref bean="logOutBound"/>
>> <!-- <ref bean="outbound-security"/ -->
>> /jaxws:outInterceptors>
>> </jaxws:client>
>> </beans>
>>
>>
>>
>>
>>
>> ----- SOAP request ----------
>>
>> <?xml version"1.0" encoding"utf-8"?>
>> <soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
>> <soa:Header>
>> <Action
>> xmlns="http://www.w3.org/2005/08/addressing">http://docs.oasis-open.or/ws-
>> rx/wsrm/200702/CreateSequence</Action>
>> <MessageID
>> xmlns="http://www.w3.org/2005/08/addressing">urnuuid:f525b817-6a23-488c-a9
>> 59-af86a2d5038e</MessageID>
>> <To
>> xmlns="http://www.w3.org/2005/08/ddressing">https://services.example.org/O
>> MS/V2/Diacap/Authentication.svc</To>
>> <ReplyTo xmlns="htp://www.w3.org/2005/08/addressing">
>>
>> <Address>http://www.w3.org/2005/08/addressinganonymous</Address>
>> </ReplyTo>
>> <wsse:Security
>> xmlns:wsse="http://docs.oasi-open.org/wss/2004/01/oasis-200401-wss-wssecur
>> ity-secext-1.0.xsd"
>> xmlns:wsu="http//docs.oasis-open.org/wss/2004/01/oasis-20041-wss-wssecuri
>> ty-utility-1.0.xsd" sop:mustUnderstand="true">
>> <wsu:Timestamp
>> wsu:Id="TS-14ca0a45-b687-40a8-a648-4113a36950">
>>
>> <wsu:Created>2014-08-12T20:00:12.107Z</wsu:Created>
>>
>> <wsu:Expires>201-08-12T20:05:12.107Z</wsu:Expires>
>> </wsu:Timestamp>
>> <xenc:EncryptedKey
>> xmln:xenc="http://www.w3.org/2001/04/xmlenc#"
>> Id="EK-fc0835be-d236-4341-b6c5-0026c0a87b10">
>> <xen:EncryptionMethod
>> Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
>> <ds:KeyInfo
>> xmlns:ds="htp://www.w3.org/2000/09/xmldsi#">
>> <wsse:SecurityTokenReference
>> xmlns:wsse="http://docs.oasis-openorg/wss/2004/01/oasis-200401-wss-wssecur
>> ity-secext-1.0.xsd">
>> <wsse:KeyIdentifier
>> EncodingType="ttp://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
>> message-security-1.0#Base64Binary"
>> ValeType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1
>> .1#ThumbprintSHA1">xOqHfJA6nIVxH8Gnc5pGrx6nF2s=</wsse:KeyIdentifier>
>> </wsse:SecurityTokenReference>
>> </ds:KeyInfo>
>> <xenc:CipherData>
>>
>> <xenc:CipherValue>MUiocSMmyprxYEGkcOFFICZoPKxYWaq4UQYHAvkwXE0oRNlVAb8
>> Dfz0iUdPFpZmgkYOCpve24JtFLWefqYpgDIwgiP8HKaaS6RY50i7E8E5Nw44EwEJY8CLNsejzH
>> 5
>> 1nI7vxUO9KDZPv+QMUeickjx76Mzp7SbBjM9glLepuQXRwPdZM8UURokWzbrjlw4uy49JEibU/
>> WtESSUJbb9B9PuugziVT22Cndb61kJ61Lufua5lJ2hvj45uuf+KZGLdzmt6r5Cn2M1iVD/y6kx
>> t7hvk1ewXDAC6zbvvD0W778P+9ZqI2z7hyUUbvAN7VhU3WX12fERnJTohDUKsbsl4mdhepJQRF
>> 3rtBM6V9pJIpoJNd7JesHU6z0O0Cl98URzixkj4nz5yGvYce6KGjSVvHw5I48zMe/k6J6hW2sa
>> mg
>> wtpETTp095H9LWW2A1kNRFwzVBcdpBmJv3Qijk3GubhX7mNh/uKcZLgujxEyiqZZxWHeVXPHZB
>> C6ZDc/0IPRvxRWTwqxjzsoF7+E1eRTmtOvqtSgaYRFgepvIFsgfbZmKez1fD4gkzQt8shzKs50
>> 6ZNPHCXXxlJ6LiWlhDmSYhVUEK3dBmRaNESEHknfYxH9C7zHmNNTMLIw1SY5qywcSPGeWRoF6y
>> h684vy0aUhxYXsVkuX456sLszdJqIHs=/xenc:CipherValue>
>> </xenc:CipherData>
>> </xenc:EncrptedKey>
>> <xenc:ReferenceList
>> xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
>> <xenc:DataRefeence
>> URI="#ED-fadf5e47-993c-4feb-a972-1dd18cb102f6"/>
>> <xenc:DataReference
>> URI="#E-1153f3a3-61cd-4b45-bf1f-91b8dd789869"/>
>> </xenc:ReferenceList>
>> <wsse:BinaySecurityToken
>> EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-ws-soap-
>> message-security-1.0#Base64Binary"
>> ValueType="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-x509-tok
>> en-profile-1.0#X509v3"
>> wsu:Id="X509-f01b5e4b-8c5-447e-9b37-0590e0012444">MIIGmzCCBgSgAwIBAgIKWp2a
>> TQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZP
>> yLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYbm9hbTETMBEGA1UEAxMKbm9hbXN1YmNhMT
>> AeFw0xNDA0MDExNjU2NTBaFw0xNTEyMTYxNzQ0MTRaMGwxCzAJBgNVBAYTAlVMREwDwYDVQQIE
> whORUJSQVNLQTEOMAwGA1UEBxMFT01BSEExDzANBgNVBAoTBkdBTExVUDEKMAgGA1UECxMBRzE
>> d
>> MBsGA1UEAxQUV0NGX0BTExVUE9OTElORV9BUFAwggIiMA0GCSqGSIb3DQEBAQAA4ICDwAwggI
>> KAoICAQCgk87lbdHZ5yV1y9LTH31n2FflLym28QRBSqc9RDBBrdqWG1fw0co/zLNWwPF36iqru
>> DHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlHpTIT1sZh9xSe1d4mvyrn66CKxU
>> 5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9NL3Hp92GJqGB5+E874s9hq6YQ8
>> J
>> eFHO1Jh/h45CdbWPen3J3V1vHdPRjU2b7tsx1wW1S00/gnJ1fCd2M4Y7/dt3xnIVteetaLefVg
>> K4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOEVFOwkooOlSVGUyE6yAJ9zwdEC
>> Q
>> u2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObOj/biUGQ7CKYaZ5gmRkrGKxFfnDJ
>> FUVXw+gF0H94af+0PVdDwb59g67Js9WvN9Gbf8GM8v0wDS6c6XJ/09MjATev+wkGcZAo8ACGE
>> 6
>> exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/IybiIG6cmvMmdSTtJ6su36PVCwmIF
>> ZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7HkQf2bYXTMVAesLBJ3hYKnyKhp5yVf
>> c
>> P8gmAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLLJsezsj6lSjcifjxUrvWI9wU/u
>> M
>> B8GA1UdIwQYMBaAFN+R56qauFl5tPk293D3bFr7mF9NMIIBDwYDVR0fBIIBBjCAQIwgf+ggfyg
>> gfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9hbXN1YmNhMSxDTj1DRFAsQ049UH
>> V
>> ibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ04929uZmlndXJhdGlvbixEQz1nYW
>> xsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/YmFzZT9vYmplY3RDbGFzcz1j
>> U
>> kxEaXN0cmlidXRpb25Qb2ludIY+aHR0cDovL25vYW1zdWJjYTEbm9hbS5nYWxsdXAuY29tL0Nl
>> cnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEFBQcBAQSCARYwggESMIGoBggrBg
>> E
>> FBQcwAoaBm2xkYXA6Ly8vQ049bm9hbXN1YmNhMSxDTj1BSUEsQ049UHVibGljJTIwS2V5JTIwU
>> 2
>> VydmljZXMsQ049U2VdmljZXMsQ049Q29uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NBQ
>> 2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9yaXR5MGUGCCs
>> G
>> AQUFBzAChlodHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2F
>> tc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQpLmNydDAhBgkrBgEEAYI3FAIEF
>> B
>> 4SAFcAZQBiAFMAZQBAHYAZQByMAwGA1UdEwEB/wQCMAAwCwYDVR0PBAQDAgWgMBMGA1UdJQQMM
>> AoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lUqdMeFUJoB/DED+zgMrFXeAOyql
>> k
>> b29f9A2uTq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3uOj+SL4rLr2kEDvgtPcIxOekCh
>> 594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO9qCF5n0mItQMTb</wsse:BinaryS
>> eurityToken>
>> <xenc:EncryptedData
>> xmlns:enc="http://www.w3.org/2001/04/xmlenc#"
>> Id="ED-fadf5e47-993c-4feb-a972-1dd1cb102f6"
>> Type="http://www.w3.org/2001/04/xmlenc#Element">
>> <xenc:EncrypionMethod
>> Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
>> <ds:KeyInfo
>> xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
>> <wsse:SecurityTokenReference
>> xmlns:wsse="http://ocs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
>> ity-secext-1.0.xsd"xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-
>> wssecrity-secext-1.
>> 1.xsd"
>> wsse11:TokenTpe="http://docs.oasis-open.org/wss/oasis-wss-soap-message-se
>> c
>> urity-1.1#EncryptedKey">
>> <wsse:Reference
>> URI=#EK-fc0835be-d236-4341-b6c5-0026c0a87b10"/>
>> </wsse:SecurityTokenReference>
>> </ds:KeyInfo>
>> <xenc:CipherData>
>>
>> <xenc:CipherValue>i4I/pp76UglQjdso/5v1Du9z3PM2ndxVwc+15NhMcYIRu0JX97b
>> UDOWB66qaZkQp5HPCQHQNqkQLRK3Uy56iJsVmvBtWoQaUJQ/BeSBdDB43J+9/8fboNiXpDveo
>> 8
>> e91lP9ARhK0bIouSzQQTFohBM1rKcLlb35fToYt1pryzL3xImTcAgBLD+KCDQjlIl1jFsA/WVN
>> m6LspJxr3S9PndmE3ZBST5IlVAkWpAt3LjeFn+IYeGi/6EuyHnkI10QDbqKKIJ5KGm5xi8Utaz
>> C
>> RJlW0fysBddNptcAVHuRWnJQpE1urIarlmrQjv1fpQojXJapzjhXpU0IJvHTBm/z+FSSR0uP4S
>> QV1btv1c+TcgR6sYJkDDoOtznEanseh4MAwUQaT6r6/0igiv/ZO2pjiKyH8ty2HVvdcGcVFfXg
>> K
>> eGyx6eEap8mfjVO3Hj5gd8H+bTpWY/bE/yIauFCj30LI+rW1TLeUyjN4UnW7NyoZAcBUNWOCJW
>> E
>> 2F3fLQRYOd7ABS1Dgqc0m4KIDnHKyFklPKtYoJSYpWtdEEf24sboYBlJQC5tDd3IWwCf7loCGj
>> qx6rWVMt3TXXWBt6z1pWteVD4KSA6anqgXt1KxjQGu8O5wNyLnfAO5O6kBPbP2A7FFWQKtPA8
>> 3
>> zduYNpCwGXpMoxdqflBnMVNgPxMF/Ezfxnzbh+qIfhxvgfEUmlNgw7eREMEr7R7M8SGszv5rc7
>> DLWBRXnGXGGls+4n9FXbK1CO2Fcsm+BjF9GzoWo0QqMwdsbFL6JJOkgbPO+2kcvnjnFk1Yf/tT
>> H
>> rZjfsq2JpfhjZhWtkXyPkVJZtptHaDbaBGTMijg8iXjKlb8Xoaa3N8jhWQ70vKgCusYxheqy9/
>> 5W67O2f/xqnJfnqk5K8vP8QqyTG0vFa8XijxN8rW3fOGcjyWG/ZO6SSy4hNv9z0bdHh+QknYmm
>> t
>> cVz2pRUnOioJYlj4Gs9MMZ0eR8vkM9mmrEG3kKeofX7DB9TpirvyH07HizLfF7g67ZRXugGRh0
>> i0mPABAjcCjQMJlstx8MlkW+MvV2QYQx/ta5JgG/YYzvfc2IDmQvndwyEUuPRnsKJzlUwwr06A
>> J
>> o+/qQqPaeZSr5blfbMnbZtLf8KqDj5NlhatYgTyhzWhuu/oMJr3o6aCWKoBjRajWv33XbUDDP5
>> UhQTNyN1n9HAdqrwcKQ82APpDP+/Swy5hvqLxDvvzcPF3O0hVxZ/MVINd5U20gKKsZxjhKcjAi
>> A
>> 51qM0B5Z/3zshwk77KSHu9uTmCgtvgQBFe8j2ALhZXr7TgxpMDCx3ubZ3fJFKNfbhdsdw+s66W
>> TWPmHBsmv+RUNnwgAeTxU5ccDkWTxsH8UECF1UvZvPwlB2TRmHWQ+MeVrHt/nkZhX6HQ1+433U
>> V
>> +jnw4VJplK0pb/2iWYvseVaiNZZ6xdogktL2yIhghKIqoME/GcJs0eXMLnVGPRo6Z5eMa9hfEB
>> t
>> vIzB9/RolzJknBuAop+/g1tNQUNJv27M+12XgDGghHO685ei3tpw3dD+G4zU+8nc7W30dbH95M
>> u/CCU7DDGhLzzkEcyUAPndfYQPZc9taypMHqyVVmr2ey5HpuAPTj42Z3biw1EgOeXjMsSYTQLN
>> D
>> s1xzdIS/Snq+QuU0Osp/FmQ0SG7lJllpkMsWe6PE4iwg1mBkWLeGjuDTTd0Yj9y4Z9z8ixKklw
>> fQDK9lNWUOndrq+P4flNgHI9Quzf649eX/SDUYGd9sctZ4jqDphgXNNJXgmHBlGaV3YUZzGOjC
>> q
>> Ay7821r0p2hrk3rpAekld30zmV+QATYMZqJ08FVbMqINFs3uArlrNsyeD16eMPzf8JYiIOD9jX
>> B1jUHV/FLaleiXYacDkrL0z71B75Unjjb5DrrGeixrF854FUHaZZnrGC8307m1QfQKoi9HPNIm
>> k
>> pTohRpb34bDvOyTGFZzD1u0CBsopCOu+rrMhv7yYO+Zooiigtx3a+NHqmQ4Kc4BvQ6g7AhwZ/
>> brwPLHCy42R6IOeTszMCDQCvotUX8GFi+a7RkKiORv3J/Y2HtWHgGY5g3SRMDPcah+g==</xen
>> c:CipherValue>
>> </xenc:CipherData>
>> </xenc:EncryptedData>
>> <xenc:EncryptedData
>> xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
>> Id="ED-1153f3a3-61cd-4b45-bf1f-91b8dd789869"
>> Type="http:/www.w3.org/2001/04/xmlenc#Element">
>> <xenc:EncryptionMethod
>> Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
>> <ds:KeyInfo
>> xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
>> <wsse:SecurtyTokenReference
>> xmlns:wsse="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wssecur
>> ity-secext-1.0.xsd"
>> xmlnswsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.
>> 1.xsd"
>> wsse11:TokenType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-ec
>> urity-1.1#EncryptedKey">
>> <wsse:Reference
>> URI="#EK-fc0835be-d236-4341-b6c5-0026c0a87b10"/>
>> </wsse:SecurityTokenReference>
>> </ds:KeyInfo>
>> <xenc:CipherData>
>>
>> <xenc:ipherValue>V1D7pkNujvvB9pKeHHb+wOlKzLNEHhXgr7IdWzZBTdz0I93d/FVc
>> tjC/IFGvkAul1arNJ+iyTub5BVxBdeFAeYCqO107Q74mAWmHvtj2UqBuRmmkjs/wUhEJ4J6Mzx
>> UYxNOyMkyrqtmet9Izu8ICJ/ZajykbVPoxftyD3n9OULaAviwwKU85WCcuJtvPfgQXPbWnHkFi
>> k
>> JFP6TbCqgh/I0ngoQDadprWa+9IAhig+3PUSMoAfn+xlKuO09DJwwq0Sr9Irh8/PmFkq/rE0Ro
>> OmiznLDM9xM2coP/9QDS4rqDEVdQZtnYJuGpPiAI55kAdDq4o5XywjqbqnERWDiKntohw9qZY0
>> Mn
>> 4e3bcll4lqvN6ljfBstzgMyqebnWFJ7po4W4Zt0skuEp3KhfCPx0RypXsY0ofZnqWJImdDkR3
>> Q
>> D4+ZpIFU7ZyRxEwiqZFMVvWg83dtDbsQAdZll9A+kHU3q5NuCeCZkGrKcoGKR2XC3d1mGkMk0G
>> XKUWFXWxmFn3VUh1gJNcrEIAE/txnXJVfKhhwyg2Cc+h97mWR2PlKEDDonJpCkVXjBO65v/c08
>> l
>> +OgaSfP2Zf4CBINiY0hpN7cGwLzzrQS0RZo+GbrOZauhIseSU2K6aKEFWY7yD/gpIx55KJbWvx
>> gbN38Fz5yPsDgUzZ3sWsxU16ew1e/khia2PhKAEHT/S6U7xwM+2sEiyAMI9B+RlTVMIcpSrxUl
>> A
>> F4WtOCOtZuNsX5DTRBLMFr1Dn97RtjX3wqY23D/e6Sc3sWwamzpWZjVe4bb/MFOu6gaMKgTiGB
>> DJJzWn8KDMs/MaBdr1LQxMuur960KgrhWtDOGdT558ouFB3PPPQKk0h4NIezK9a+TvQMLa3X+P
>> V
>> yZNOvnRTFlIgqq7BXESDN63JMMT/w1OmpKyrP7OSsiCnDiT+TKdSgEVB+vDixiqv4CaxbEli6P
>> E
>> SoDJxS6LJx79bghB7FDlLi280yoxdBHFK50TcC9KIUAhFHASiPP+CZxKRX5t0H35uJ6FYyHK2Y
>> J2aYbUhcs1gU4JEpeOj7LjWKmh6lQP2e1KTodna7CGoeQOvXQyPOoBQCtzM+iEgX5SklWhZSj6
>> 3
>> KcxNsz1OmmoEmq8Uu++WByvuJksIdybJqnjtQjZQu1/GzWh3zwWtEYttE6wyN1a9YF1PVBOjVt
>> J
>> lfvYsC+bJ2VB4LQupYPJrva3KhstBaMbVGHaONIEK27d5XfbnhuyvSGvQIEOISGQssYo4Tarot
>> a
>> xbsVKAa9SjQMMvzSjEX4uVw8Jr7z35Mamys4QDelsp7qda9+Xqs68bf5i3jKfLHhzKsbrRKC2y
>> g
>> 7l/P2e3DJySf3pnbruDOkEVoYJTkozyl5w9WFR27KE6pJrabaTb2HBFbAlLOjwtvrgYfW/c8Cd
>> 1
>> lrrn8TrgJZMK8aHvtw+YcbyTyeGKYu1GIONRfgncrAqFP9P7/bTJkgkbGqmF9fKSsEs6lSLJxs
>> u
>> R0UdFxNeo6jN/KAPyrbZLJS6FMtkaVteQl0YjQh0usNiMfW2PoxLgYWDNLurYCadsqbkeInBKx
>> I
>> RkGXTiN+b6tn4AE0G6fWdDAQm8UO5AN5roboSgzg4whPfSTUNGKicAY/UbKdBeNLWlVIv9lklU
>> s
>> Fxk03RLgHC3w5tvyTvAgQ+aZQLFfqaDGDIpHMpU5bBmcI42D3TNJxeabyPsL/VjQFhZt3Y1xr8
>> p
>> VxIFbrK83cHaASd9kpxuQf1tHC29zZ+HaxaX7d34BIKXvZn/R3JoMXdFc8uZOfs1mBPhBXTEq
>> L
>> ZP/8F10umU05kekwnHnPujIYgd7+BMk6nX5gLuwh6mKZdsbXwpHIeWyxUkjUQWpYLTDYUl87rG
>> 5
>> dd5P9SdHr6wFPWWuZBERSxIN8f7ccXj/xeXyGA69kj0KrPX8cgB0znNQlATcIlSMUgjBIVXIT
>> 3
>> ASnAUpKnvoPFld/27gmap81gsJq1gt7QbQhBpvyFAjHFDtdAezCJWQVOOvdz+LTa1yxGe5EFqD
>> X
>> Vr62vN0/7A+ZJb+xRpsRYwJ4dVvq/tNvkdApiikcQ2L7/kq6+2HQgWtLopBdN3bmk7jZ/vYGzD
>> T
>> sP2qRaQYWBBtEH6XXRXacXYL3XUh66u+vMu1UzlcvNyrGbogSgAf2l2/b7sgQ5tRAfq7UX24jp
>> 0
>> w5Ior5+lBM5mbeZS6yYRcH8cFckJrpF58vsCMcDZHT5TI2IbZd4Ph/DP495cF+likgJdv87Vlx
>> h
>> fb37yb/muXTz6E6/UWzAnBWO7RROjtkIZowiIgH/eRg6kRxaGhPrwHNjdyBOs3mTKcx3ysTiJR
>> k
>> PgMLc1meoeBNle6rGM9CNi+/vGv98Q1d5J4WS9DMT63sr9R814Y46iLGINs7h3KQ77Mg/sExrx
>> 3
>> +W7KoIuk4QANA8ObI54u46En3poAI8Hiutam4JtkXsvuH1ZPWbwKOtV+k0dU6Azf0d+Pf7E+J
>> a
>> oV6ZVXJFbCfsNoOx2aQCW0abBlPtMrX80aKII+qEjwb0FYZ2M5cMM3Hz/MtDD5KjsMot3WCVPP
>> W
>> bXc7rmrPFtGqtDrOkLeQhyAksgqPO0xyFGY53fndzJFN+54IDIDxM8CR/zWjYeMDGYh81aaEHI
>> G
>> 9D1CwfpzqAXWNp7h8igHxVPcFWX1hJ2Ax79TOaBCFEt+deCE36ufhJEv4apjUz2AuGr19VkN6f
>> 4
>> fjSKi6ywwp6Ti2YOVpQAKGvrGo9CndgvCeDa984hXdhP5R3UQ/M2QnyMzxA0aICGeuZ9zn5CF
>> E
>> wqWardwJ/MLZFBYvXIHvUQ5xf4lrsckHEfvcoZiJ4d1zK6a4ltC3PNWVbUSDs92duQEqoO3lOs
>> l
>> gmhfcI5Wgwg==</xenc:CpherValue>
>> </xenc:CipherData>
>> </xenc:EncryptedData>
>> </wsse:Security>
>> </soap:Header>
>> <soap:Body>
>> <CreateSequence
>> xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>> xmlns:ns2="http://www.w3.org/2005/08/addressing">
>> <AcksTo>
>>
>> <ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Addres
>> s>
>> </AcksTo>
>> <Expires>PT0S</Expires>
> <Offer>
>>
>> <Identifier>urn:uuid:16a1f616-0cc0-4853-964f-11890ad2daae</Identifier>
>> <Endpoint>
>>
>> <ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Addre
>> ss>
>> </Endpoint>
>> <Expires>PT0S</Expires>
>> </Offer>
>> </CreateSequence>
>> </soap:Body>
>> </soap:Envelope>
>>
>>
>>
>>
>> ----- SOAP fault ----------
>>
>>
>> <s:Fault>
>> <s:Code>
>> <s:Value>s:Sender</s:Value>
>> <s:Subcode>
>> <s:Value
>> xmlns:a="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurit
>> y
>> -secext-1.0.xsd">a:InvalidSecurity</s:Value>
>> </s:Subcode>
>> </s:Code>
>> <s:Reason>
>> <s:Text xml:lang="en-US">An error
>> occurred when verifying security for
>> the message.</s:Text>
>> </s:Reason>
>> </s:Fault>
>>
>>
>>
>>
>>
>>
>> ----- WSDL follows ----------
>>
>> <?xml version="1.0" encoding="utf-8"?>
>> <wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>> xlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>> xmlns:i0="http://schemas.example.org/oms/2010/10/
>> xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
>> i
>> ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/ddressing"
>> xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>> xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>> xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>> xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>> xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
>> xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>> xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>> xmlns:tns="http://tempuri.org/"
>> xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>> xmlns:wsaw="htt://www.w3.org/2006/05/addressing/wsdl"
>> xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>> name="Authentication" targetNamespace="http://tempuri.org/">
>> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <wsrmp:RMAssertion
>> mlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
>> <wsp:Policy>
>> <wsrmp:DeliveryAssurance>
>> <wsp:Policy>
>>
>> <wsrmp:ExactlyOnce/>
>>
>> <wsrmp:InOrder/>
>> </wsp:Policy>
>> </wsrmp:DeliveryAssurance>
>> </wsp:Policy>
>> <netrmp:InactivityTimeout
>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>> Millisecons="600000"/>
>> <netrmp:AcknowledgementInterval
>> xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>> Milliseconds="200"/>
>> </wsrmp:RMAssertion>
>> <sp:SymmetricBinding
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>> <sp:ProtectionToken>
>> <wsp:Policy>
>>
>> <sp:X509Token
>> sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Incl
>> u
>> deToken/Never">
>>
>> <wsp:Policy>
>>
>> <sp:RequireThumbprintReference/>
>>
>> <sp:WssX509V3Token10/>
>>
>> </wsp:Policy>
>>
>> </sp:X509Token>
>> </wsp:Policy>
>> </sp:ProtectionToken>
>> <sp:AlgorithmSuite>
>> <wsp:Policy>
>>
>> <sp:Basic256/>
>> </wsp:Policy>
>> </sp:AlgorithmSuite>
>> <sp:Layout>
>> <wsp:Policy>
>>
>> <sp:Strict/>
>> </wsp:Policy>
>> </sp:Layout>
>> <sp:IncludeTimestamp/>
>> <sp:EncryptSignature/>
>>
>> <sp:OnlySignEntireHeadersAndBody/>
>> </wsp:Policy>
>> </sp:SymmetricBinding>
>> <sp:EndorsingSupportingTokens
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"
>> <wsp:Policy>
>> <sp:X509Token
>> sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Incl
>> u
>> deToken/AlwaysToRecipient">
>> <wsp:Policy>
>>
>> <sp:RequireThumbprintReference/>
>
>> <sp:WssX509V3Token10/>
>> </wsp:Policy>
>> </sp:X509Token>
>> </wsp:Policy>
>> </sp:EndorsingSupportingTokens>
>> <sp:Wss11
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>>
>> <sp:MustSupportRefThumbprint/>
>>
>> <sp:MustSupportRefEncryptedKey/>
>>
>> <sp:RequireSignatureConfirmation/>
>> </wsp:Policy>
>> </sp:Wss11>
>> <sp:Trust10
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>>
>> <sp:MustSupportIssuedTokens/>
>> <sp:RequireClientEntropy/>
>> <sp:RequireServerEntropy/>
>> </wsp:Policy>
>> </sp:Trust10>
>> <sp:TransportBinding
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <wsp:Policy>
>> <sp:TransportToken>
>> <wsp:Policy>
>>
>> <sp:HttpsToken RequireClientCertificate="false"/>
>> </wsp:Policy>
>> </sp:TransportToken>
>> <sp:AlgorithmSuite>
>> <wsp:Policy>
>>
>> <sp:Basic256/>
>> </wsp:Policy>
>> </sp:AlgorithmSuite>
>> <sp:Layout>
>> <wsp:Policy>
>>
>> <sp:Strict/>
>> </wsp:Policy>
>> </sp:Layout>
>> <sp:IncludeTimestamp/>
>> </wsp:Policy>
>> </sp:TransportBinding>
>> <wsaw:UsingAddressing/>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsp:Policy
>> wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
>> <wsp:ExactlyOne>
>> <wsp:All>
>> <sp:SignedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Body/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> <sp:Header Name="Sequence"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header
>> Name="SequenceAcknowledgement"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="AckRequested"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="UsesSequenceSTR"
>> Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
>> <sp:Header Name="To"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="From"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="FaultTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="ReplyTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="MessageID"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="RelatesTo"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> <sp:Header Name="Action"
>> Namespace="http://www.w3.org/2005/08/addressing"/>
>> </sp:SignedParts>
>> <sp:EncryptedParts
>> xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
>> <sp:Header
>> Name="CoordinationContext"
>> Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
>> <sp:Header Name="OleTxTransaction"
>> Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
>> <sp:Header Name="IssuedTokens"
>> Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
>> </sp:EncryptedParts>
>> </wsp:All>
>> </wsp:ExactlyOne>
>> </wsp:Policy>
>> <wsdl:import namespace="http://schemas.example.org/oms/2010/10/"
>> location="https://services.example.org/OMS/V2/Diacap/Authentication.svc?ws
>> d
>> l=wsdl0"/>
>> <wsdl:types/>
>> <wsdl:binding name="AuthenticationDiacapEndpoint"
>> type="i0:IAuthentication">
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_policy"/>
>> <soap12:binding
>> transport="http://schemas.xmlsoap.org/soap/http"/>
>> <wsdl:operation name="Activate">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Activat
>> e
>> " style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="ChangePassword">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/ChangeP
>> a
>> ssword" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Create">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Create"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Expire">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Expire"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetAnswers">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetAnsw
>> e
>> rs" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetPolicy">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetPoli
>> c
>> y" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetQuestions">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetQues
>> t
>> ions" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="GetUsernames">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetUser
>> n
>> ames" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Reset">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Reset"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Update">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Update"
>> style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="Validate">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Validat
>> e
>> " style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> <wsdl:operation name="ValidateEmail">
>> <soap12:operation
>> soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Validat
>> e
>> Email" style="document"/>
>> <wsdl:input>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:input>
>> <wsdl:output>
>> <wsp:PolicyReference
>> URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
>> <soap12:body use="literal"/>
>> </wsdl:output>
>> </wsdl:operation>
>> </wsdl:binding>
>> <wsdl:service name="Authentication">
>> <wsdl:port name="AuthenticationDiacapEndpoint"
>> binding="tns:AuthenticationDiacapEndpoint">
>> <soap12:address
>> location="https://services.example.org/OMS/V2/Diacap/Authentication.svc"/>
>> <wsa10:EndpointReference>
>>
>> <wsa10:Address>https://services.example.org/OMS/V2/Diacap/Authenticatio
>> n.svc</wsa10:Address>
>> <Identity
>> xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
>> <KeyInfo
>> xmlns="http://www.w3.org/2000/09/xmldsig#">
>> <X509Data>
>>
>> <X509Certificate>MIIFFjCCA/6gAwIBAgIETCKptDANBgkqhkiG9w0BAQUFADCBsTE
>> LMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRyd
>> X
>> N0Lm5ldC9ycGEgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMWKGMpIDIw
>> M
>> DkgRW50cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml
>> 0
>> eSAtIEwxQzAeFw0xNDA0MTAxMzIyMjBaFw0xODA2MTAxNjQ2NDdaMF0xCzAJBgNVBAYTAlVTMR
>> E
>> wDwYDVQQIEwhOZWJyYXNrYTEOMAwGA1UEBxMFT21haGExFDASBgNVBAoTC0dhbGx1cCBJbmMuM
>> R
>> UwEwYDVQQDFAwqLmdhbGx1cC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe
>> 9
>> YLdVUrFmSBn4K8bgDOBwi5+FsCT6/hUcuuJkyYqNIHWXkcWFxFxxbZeaocpm2oyI3sZU2FzX+N
>> O
>> MjokQNaLUJQZzwdTO9Ir7C/vIhYd+kWlH176F+NAPQ+SfcbAAOSIEFiJSW4sVqEeOCeP1majyA
>> h
>> FzlKub8/IhjzWMeuHDj/AJKtZjH3F5ICexAUyi4sJsShHSXTivr6+vowwLvvoI/VAhAJr3PaoW
>> 7
>> NJiUZSFfH+Tott6CtSBOUx2hjHP4K19boRg3zcSdWzqFdaDLBWZjVmt/FZeynJPOsZVMksrrbI
>> j
>> OFkqvfwpwdF/WKOMS/jctniLIBdH343pwBpJLWjAgMBAAGjggGHMIIBgzALBgNVHQ8EBAMCBaA
>> w
>> HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly
>> 9
>> jcmwuZW50cnVzdC5uZXQvbGV2ZWwxYy5jcmwwZAYIKwYBBQUHAQEEWDBWMCMGCCsGAQUFBzABh
>> h
>> dodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAvBggrBgEFBQcwAoYjaHR0cDovL2FpYS5lbnRydXN0
>> L
>> m5ldC8yMDQ4LWwxYy5jZXIwSgYDVR0gBEMwQTA1BgkqhkiG9n0HSwIwKDAmBggrBgEFBQcCARY
>> a
>> aHR0cDovL3d3dy5lbnRydXN0Lm5ldC9ycGEwCAYGZ4EMAQICMCMGA1UdEQQcMBqCDCouZ2FsbH
>> V
>> wLmNvbYIKZ2FsbHVwLmNvbTAfBgNVHSMEGDAWgBQe8auJBvhJDwEzd+4Ueu4ZfJMoTTAdBgNVH
>> Q
>> 4EFgQU3sGLmmxRfTlQ0KgRPqZdXrhYxuswCQYDVR0TBAIwADANBgkqhkiG9w0BAQUFAAOCAQEA
>> X
>> 1rcxlCxbnJ7/ee43Uy20HjnpIadcSOvqUp8N6PPkVLO1T6W0GFezJfxFl737PcjOBU8hBmGDDT
>> t
>> 1SUDEfqhmJLXsMk4VN6OJbDZUl/WJHOg9eLbBuxR/CEdqxYjkCBy0YTOoxuJs8Uni19l4FCuip
>> u
>> +p+t6hYSXSaYy8S/xaYUuRibm8Hfn0/Ks7w/UGkYvbivmD3AZtpUqqT9xNa/rmE/U+IoKFpSNx
>> X
>> Qw7d0Tp8QuvI4sL37bDT3lE0wYVb2jvkYWr6ASMpO7gAMNyPUeKLtcIStAAu2JzTRa8i+UfYhB
>> u
>> JnBRAdhyUg4Wie32nhb/H6qpHUICvm1mXSkGla9ng==</X509Certificate>
>> </X509Data>
>> </KeyInfo>
>> </Identity>
>> </wsa10:EndpointReference>
>> </wsdl:port>
>> </wsdl:service>
>> </wsdl:definitions>
>>
>>
>>
>> -------------------------------------------------
>>
>>
>>
>>
>> On 8/1/14 11:03 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>>
>>> Dennis,
>>>
>>> I am a colleague of Ramzi's. It turns out that WS-SecureConversation was
>>> not an actual requirement. We were able to ask the .NET team who owns
>>> the
>>> service to turn it off. We also removed the interceptors as you
>>> recommended. We managed to invoke the service after making those two
>>> changes.
>>>
>>> I just wanted to thank you for providing the key insights.
>>>
>>> Pohl Longsine
>>>
>>> On 7/30/14 6:59 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>>>
>>>> Hi Ramzi,
>>>>
>>>> There are issues in combining WS-SecureConversation with
>>>> WS-ReliableMessaging in the 3.0.x release.
>>>
>>
>> All information in this message is confidential and may be legally
>> privileged. Only intended recipients are authorized to use it.
>
> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
--
Daniel Kulp
dkulp@apache.org - http://dankulp.com/blog
Talend Community Coder - http://coders.talend.com
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
I am replying to my own question to provide one more interesting piece of
information, in hopes of helping someone read and interpret what is going
on here.
I asked the .NET team to capture the SOAP messag from their own test
client (also written in .NET) that is able to hit their service.
Their SOAP turns out to be very different from the SOAP that CXF is
sending. I don't fully understand the significance of the difference.
Does anybody else?
---- SOAP request sent by the .NET test client ----------
<?xml version="1.0" encoding="utf-8"?>
<s:Envlope xmlns:s="http://www.w3.org/2003/05/soap-envelope"
xmlns:a="http://www.w3.org/2005/08/addressing"
xmlns:u="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wssecurity
-utility-1.0.xsd">
<s:Header>
<a:Action s:mustUnderstand="1"
u:Id="_2">http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence</a:Ac
tion>
<a:MessageID
u:Id="_3">urn:uuid:884474d9-cd4d-4115-90f4-c71950dfe7a5</a:MessageID>
<ActivityId
xmlns="http://schemas.microsoft.com/2004/09/ServiceModel/Diagnostics"
CorrelationId="6a2389dc-dfef-4471-b19c-a7efa267cfbf">8aae0965-193d-44cb-919
1-e58c7bb7981a</ActivityId>
<a:To s:mustUnderstand="1"
u:Id="_4">http://orfdinsjx75w7.noam.example.org/oms.wcfAuthentication.svc<
/a:To>
<o:Security
xmlns:o="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity
-secext-1.0.xsd" s:mustUnderstand="1">
<u:Timestamp u:Id="uuid-1d0f9d6b-d23b-4fc8-907c-5608e5790d1a-2">
<u:Created>2014-08-13T20:41:28.877Z</u:Created>
<u:Expires>2014-08-13T20:46:28.877Z</u:Expires>
</u:Timestamp>
<e:EncryptedKey xmlns:e="http://www.w3.org/2001/04/xmlenc#"
Id="uuid-1d0f9d6b-d23b-4fc8-907c-5608e5790d1a-1">
<e:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
<DigestMethod xmlns="http://www.w3.org/2000/09/xmldsig#"
Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
</e:EncryptionMethod>
<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
<o:SecurityTokenReference>
<o:KeyIdentifier
ValueType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1
.1#ThumbprintSHA1"
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
message-security-1.0#Base64Binary">ZEZnwmqU/vov3xQpP6wQ97Up+lU=</o:KeyIdent
ifier>
</o:SecurityTokenReference>
</KeyInfo>
<e:CipherData>
<e:CipherValue>JPYB5r5XId/i7Zas89KUR2zdeMYWwjHKqaBHoGEE4mMwYD5FxnhfoU3
6z/s0kiavd89v6HmF6/gmiVnBANehhL4HI7OQXuVbqO2oV96i/5uVk+/6K1X0a+4Nh18GiMCA/3
wC0n/Sd+XIwL5zkhiCXxWPHtZC/v0Qqf5Q8PHS/AI=</e:CipherValue>
</e:CipherData>
</e:EncryptedKey>
<o:BinarySecurityToken
u:Id="uuidfbcbb4d7-e8b8-41fa-84ab-0f6639304603-1"
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
en-profile-1.0#X509v3"
EcodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
message-security-1.0#Base64Binary">MIIEtTCCBB6gAwIBAgIKYHwluwAEAAHQLTANBgkq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</o
:BinarySecurityToken>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#" Id="_0">
<SignedInfo>
<CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"/>
<Reference URI="#_1">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>8QcRoqCq0NPtq+Lf+3bOyCe/RUg=</DigestValue>
</Reference>
<Reference URI="#_2">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>/yJ/ysxeFBIlVOQK860fYd641KA=</DigestValue>
</Reference>
<Reference URI="#_3">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>pGvi+FpjT0/ycBsrbYgo7bQD58Q=</DigestValue>
</Reference>
<Reference URI="#_4">
<Transforms>
<Transform Algorithm="http://www.w3.og/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>xyNE+X1YkRwhn21/Bh5kWGpz/g=</DigestValue>
</Reference>
<Reference URI="#uuid-1d0f9d6b-d23b-4fc8-907c-5608e5790d1a-2">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>LKlkpCZZWvF46l5pkjGBeoH6QcI=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>SN9CI0J6f96QKMiL9hnznWJ7SbI=</SignatureValue>
<KeyInfo>
<o:SecurityTokenReference
xmlns:k="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd
"
k:TokenType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security
-1.1#EncryptedKey">
<o:Reference
ValueType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1
.1#EncryptedKey" URI="#uuid-1d0f9d6b-d23b-4fc8-907c-5608e5790d1a-1"/>
</o:SecurityTokenReerence>
</KeyInfo>
</Signature>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethd
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
<SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<Reference URI="#_0">
<Transforms>
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>eqP/DwALm9A5VboF/QAaoCPNnxA=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>JB7pnGIDmcajd8lk2gKtTjbOHQl7aAN34HlkKTPg0ox+OEaLvkXU8Yd
wCVzazOI2YZ+5w/7e+leH7kwKI2fhyFdv4DhzfbhDM6xl0XX7mlx6CG7nKFyDcaI3qKrJfn93b
16X/xTCUtqqK0dymofTsgPa1GvTszKVDK0DMBJRZI=</SignatureValue>
<KeyInfo>
<o:SecurityTokenReference>
<o:Reference
ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-tok
en-profile-1.0#X509v3" URI="#uuid-fbcbb4d7-e8b8-41fa-84ab-0f6639304603-1"/>
</o:SecurityTokenReference>
</KeyInfo>
</Signature>
</o:Security>
</s:Header>
<s:Body u:Id="_1">
<CreateSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702">
<AcksTo>
<a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
</AcksTo>
<Offer>
<Identifier>urn:uuid:11c7e05f-b390-4178-a5d2-816c358e9dce</Identifier>
<Endpoint>
<a:Address>http://www.w3.org/2005/08/addressing/anonymous</a:Address>
</Endpoint>
<IncompleteSequenceBehavior>DiscardFollowingFirstGap</IncompleteSequenc
eBehavior>
</Offer>
</CreateSequence>
</s:Body>
</s:Envelope>
On 8/13/14 11:41 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>Dennis, this turned out a bit differently than thought a couple of weeks
>ago.
>
>When the .NET team who own the service turned off W-SecureConversation
>(which isn't needed) it had the side-effect of also causing thei end to
>fail to digitally sign the SOAP traffic. Signing is a requirement for us
> After getting some help from Microsoft to figure out how to get their end
to sign responses inabsence of WS-SecureConversation, they're ready for
>us to try to hit it with our CXF client again.
>
>When I d, I get te following symptoms. We first put together a
>CreateSequence request, and send it over the wre. The request that we
>send looks good to my eye, however we get a soap fault in response - a
>fairly eneric-sounding one at that.
>
>We asked the .NET team to turn on the logging to see what sort of errr
>they see on their side. Here is what they see:
>
> ³The security protocol cannot verify the incoming message.²
>
> "The EncryptedKey clause was not wrapped with the required encryption
>token 'System.IdentityModel.Tokens.X509SecurityToken'."
>
>
>As usual, I'mhaving a hard time reading the tea leaves here. Does
>anything stick out to you as something I'm doing wrong?
>
>Pohl Longsine
>----- cxf.xml configuration ----------
>
><beans xmlns="http://www.springframework.org/schema/beans"
> xmlns:jaxws="http://cxf.apache.org/jaxws"
>xmlns:xsi="http://www.w3.org/2001/XMLSchma-instance"
> xmlns:http="http://cxf.apache.org/transports/http/configuration"
> xmlns:wsrm-policy="http//schemas.xmlsoap.org/ws2005/02/rm/policy"
> xmlns:wsrm-mgr="http://cxf.apache.org/w/rm/manager"
> xmlns:wsa="http://cxf.apache.org/ws/addressing"
> xmlns:cxf="http://cxf.apache.or/core"
>
> xsi:schemaLocation="http://cxf.apache.org/core
> http://cxf.apache.orgschemas/core.xsd
> http://www.springframework.org/schema/beans
> http://www.spingframework.org/schema/beans/spring-beans.xsd
> http://cxf.apache.org/jaxw
> http://cxf.apache.org/schemas/jaxws.xsd
> http://cxf.apahe.rg/transports/http/configuration
> http://cxf.apache.org/schemas/coniguration/http-conf.xsd
> http://schemas.xmlsoap.org/ws/2005/02/rm/polic
> http://schemas.xmlsoap.org/ws/2005/02/rm/wsrm-policy.xsd
> htp://cxf.apache.org/ws/rm/manager
> http://cxf.apache.org/schemas/configuraion/wsrm-manager.xsd">
>
> <bean id="logInBound"
>class="org.apache.cxf.interceptr.LoggingInInterceptor"/>
> <bean id="logOutBound"
>class="org.apache.cxf.interceptor.LoggingOuInterceptor"/>
> <jaxws:client name="{http://tempuri.org/}AuthenticationDiacapEndpoint"
>createdFromAPI="tre"
>
>address="https://services.gallup.com/OMS/V2/Diacap/Authentication.svc?wsdl
>"
>>
> <jaxws:properties>
> <entry key="ws-security.signature.properties"
>value="/client.propeties"/>
> <entry key="ws-security.encryption.properties"
>value="/client.properties"/>
> <entry key="ws-security.encryption.username"
>value="oms-diacap"/>
> <entry key="ws-security.callback-handler"
>value="gallup.oms.client.KeystorePasswordCallback"/>
> </jaxws:properties>
> <jaxws:inInterceptors>
> <ref bean="lgInBound"/>
> <!-- <ref bean="inbound-security"/> -->
> </jaxws:inInterceptors>
> <jaxws:outInterceptos>
> <ref bean="logOutBound"/>
> <!-- <ref bean="outbound-security"/ -->
> /jaxws:outInterceptors>
> </jaxws:client>
></beans>
>
>
>
>
>
>----- SOAP request ----------
>
><?xml version"1.0" encoding"utf-8"?>
><soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
> <soa:Header>
> <Action
>xmlns="http://www.w3.org/2005/08/addressing">http://docs.oasis-open.or/ws-
>rx/wsrm/200702/CreateSequence</Action>
> <MessageID
>xmlns="http://www.w3.org/2005/08/addressing">urnuuid:f525b817-6a23-488c-a9
>59-af86a2d5038e</MessageID>
> <To
>xmlns="http://www.w3.org/2005/08/ddressing">https://services.example.org/O
>MS/V2/Diacap/Authentication.svc</To>
> <ReplyTo xmlns="htp://www.w3.org/2005/08/addressing">
>
><Address>http://www.w3.org/2005/08/addressinganonymous</Address>
> </ReplyTo>
> <wsse:Security
>xmlns:wsse="http://docs.oasi-open.org/wss/2004/01/oasis-200401-wss-wssecur
>ity-secext-1.0.xsd"
>xmlns:wsu="http//docs.oasis-open.org/wss/2004/01/oasis-20041-wss-wssecuri
>ty-utility-1.0.xsd" sop:mustUnderstand="true">
> <wsu:Timestamp
>wsu:Id="TS-14ca0a45-b687-40a8-a648-4113a36950">
>
><wsu:Created>2014-08-12T20:00:12.107Z</wsu:Created>
>
><wsu:Expires>201-08-12T20:05:12.107Z</wsu:Expires>
> </wsu:Timestamp>
> <xenc:EncryptedKey
>xmln:xenc="http://www.w3.org/2001/04/xmlenc#"
>Id="EK-fc0835be-d236-4341-b6c5-0026c0a87b10">
> <xen:EncryptionMethod
>Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
> <ds:KeyInfo
>xmlns:ds="htp://www.w3.org/2000/09/xmldsi#">
> <wsse:SecurityTokenReference
>xmlns:wsse="http://docs.oasis-openorg/wss/2004/01/oasis-200401-wss-wssecur
>ity-secext-1.0.xsd">
> <wsse:KeyIdentifier
>EncodingType="ttp://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
>message-security-1.0#Base64Binary"
>ValeType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1
>.1#ThumbprintSHA1">xOqHfJA6nIVxH8Gnc5pGrx6nF2s=</wsse:KeyIdentifier>
> </wsse:SecurityTokenReference>
> </ds:KeyInfo>
> <xenc:CipherData>
>
><xenc:CipherValue>MUiocSMmyprxYEGkcOFFICZoPKxYWaq4UQYHAvkwXE0oRNlVAb8
>Dfz0iUdPFpZmgkYOCpve24JtFLWefqYpgDIwgiP8HKaaS6RY50i7E8E5Nw44EwEJY8CLNsejzH
>5
>1nI7vxUO9KDZPv+QMUeickjx76Mzp7SbBjM9glLepuQXRwPdZM8UURokWzbrjlw4uy49JEibU/
>WtESSUJbb9B9PuugziVT22Cndb61kJ61Lufua5lJ2hvj45uuf+KZGLdzmt6r5Cn2M1iVD/y6kx
>t7hvk1ewXDAC6zbvvD0W778P+9ZqI2z7hyUUbvAN7VhU3WX12fERnJTohDUKsbsl4mdhepJQRF
>3rtBM6V9pJIpoJNd7JesHU6z0O0Cl98URzixkj4nz5yGvYce6KGjSVvHw5I48zMe/k6J6hW2sa
>mg
>wtpETTp095H9LWW2A1kNRFwzVBcdpBmJv3Qijk3GubhX7mNh/uKcZLgujxEyiqZZxWHeVXPHZB
>C6ZDc/0IPRvxRWTwqxjzsoF7+E1eRTmtOvqtSgaYRFgepvIFsgfbZmKez1fD4gkzQt8shzKs50
>6ZNPHCXXxlJ6LiWlhDmSYhVUEK3dBmRaNESEHknfYxH9C7zHmNNTMLIw1SY5qywcSPGeWRoF6y
>h684vy0aUhxYXsVkuX456sLszdJqIHs=/xenc:CipherValue>
> </xenc:CipherData>
> </xenc:EncrptedKey>
> <xenc:ReferenceList
>xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
> <xenc:DataRefeence
>URI="#ED-fadf5e47-993c-4feb-a972-1dd18cb102f6"/>
> <xenc:DataReference
>URI="#E-1153f3a3-61cd-4b45-bf1f-91b8dd789869"/>
> </xenc:ReferenceList>
> <wsse:BinaySecurityToken
>EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-ws-soap-
>message-security-1.0#Base64Binary"
>ValueType="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-x509-tok
>en-profile-1.0#X509v3"
>wsu:Id="X509-f01b5e4b-8c5-447e-9b37-0590e0012444">MIIGmzCCBgSgAwIBAgIKWp2a
>TQAEAAHP4DANBgkqhkiG9w0BAQUFADBYMRwEQYKCZImiZPyLGQBGRYDY29tMRYwFAYKCZImiZP
>yLGQBGRYGZ2FsbHVwMRQwEgYKCZImiZPyLGQBGRYbm9hbTETMBEGA1UEAxMKbm9hbXN1YmNhMT
>AeFw0xNDA0MDExNjU2NTBaFw0xNTEyMTYxNzQ0MTRaMGwxCzAJBgNVBAYTAlVMREwDwYDVQQIE
whORUJSQVNLQTEOMAwGA1UEBxMFT01BSEExDzANBgNVBAoTBkdBTExVUDEKMAgGA1UECxMBRzE
>d
>MBsGA1UEAxQUV0NGX0BTExVUE9OTElORV9BUFAwggIiMA0GCSqGSIb3DQEBAQAA4ICDwAwggI
>KAoICAQCgk87lbdHZ5yV1y9LTH31n2FflLym28QRBSqc9RDBBrdqWG1fw0co/zLNWwPF36iqru
>DHIOrebIm4g3NNJLJsQ/tMY3sNbxGq7U/j9BUzbt2AsEoGlHpTIT1sZh9xSe1d4mvyrn66CKxU
>5eJ8LntAjT5Tz3vSNtkiSAIKRiPUn4AAlDH2DqBrN0dBiia9NL3Hp92GJqGB5+E874s9hq6YQ8
>J
>eFHO1Jh/h45CdbWPen3J3V1vHdPRjU2b7tsx1wW1S00/gnJ1fCd2M4Y7/dt3xnIVteetaLefVg
>K4giAMf1p7pihdg1MtlP7/YbyKu+NyyL8PVWobbWPPhlcGlOEVFOwkooOlSVGUyE6yAJ9zwdEC
>Q
>u2J81epd8tmT2002Cj6X355tofGAfAeOAmZ8t7YnK8klObOj/biUGQ7CKYaZ5gmRkrGKxFfnDJ
>FUVXw+gF0H94af+0PVdDwb59g67Js9WvN9Gbf8GM8v0wDS6c6XJ/09MjATev+wkGcZAo8ACGE
>6
>exYXnjR1b21ErlPfSKU5EBwN+cEfkN0Kv00mtGIDP6hC/IybiIG6cmvMmdSTtJ6su36PVCwmIF
>ZQLpQRqA8DahQaEPOy9g4mWa2fadPMrVih8Sgp/YhG/7HkQf2bYXTMVAesLBJ3hYKnyKhp5yVf
>c
>P8gmAWKizWUmZyIwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFLLJsezsj6lSjcifjxUrvWI9wU/u
>M
>B8GA1UdIwQYMBaAFN+R56qauFl5tPk293D3bFr7mF9NMIIBDwYDVR0fBIIBBjCAQIwgf+ggfyg
>gfmGgbZsZGFwOi8vL0NOPW5vYW1zdWJjYTEoMyksQ049bm9hbXN1YmNhMSxDTj1DRFAsQ049UH
>V
>ibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ04929uZmlndXJhdGlvbixEQz1nYW
>xsdXAsREM9Y29tP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/YmFzZT9vYmplY3RDbGFzcz1j
>U
>kxEaXN0cmlidXRpb25Qb2ludIY+aHR0cDovL25vYW1zdWJjYTEbm9hbS5nYWxsdXAuY29tL0Nl
>cnRFbnJvbGwvbm9hbXN1YmNhMSgzKS5jcmwwggEkBggrBgEFBQcBAQSCARYwggESMIGoBggrBg
>E
>FBQcwAoaBm2xkYXA6Ly8vQ049bm9hbXN1YmNhMSxDTj1BSUEsQ049UHVibGljJTIwS2V5JTIwU
>2
>VydmljZXMsQ049U2VdmljZXMsQ049Q29uZmlndXJhdGlvbixEQz1nYWxsdXAsREM9Y29tP2NBQ
>2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFzcz1jZXJ0aWZpY2F0aW9uQXV0aG9yaXR5MGUGCCs
>G
>AQUFBzAChlodHRwOi8vbm9hbXN1YmNhMS5ub2FtLmdhbGx1cC5jb20vQ2VydEVucm9sbC9ub2F
>tc3ViY2ExLm5vYW0uZ2FsbHVwLmNvbV9ub2Ftc3ViY2ExKDQpLmNydDAhBgkrBgEEAYI3FAIEF
>B
>4SAFcAZQBiAFMAZQBAHYAZQByMAwGA1UdEwEB/wQCMAAwCwYDVR0PBAQDAgWgMBMGA1UdJQQMM
>AoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUAA4GBAAI6Gx8lUqdMeFUJoB/DED+zgMrFXeAOyql
>k
>b29f9A2uTq3qLsFMh0SrRXeNHCQ54MumhpPKfIn6tI/3Tmm3uOj+SL4rLr2kEDvgtPcIxOekCh
>594D4pJzmIJ+p/mrVBBE42CxI0V5zGVHbCKYnKbfe5/qLO9qCF5n0mItQMTb</wsse:BinaryS
>eurityToken>
> <xenc:EncryptedData
>xmlns:enc="http://www.w3.org/2001/04/xmlenc#"
>Id="ED-fadf5e47-993c-4feb-a972-1dd1cb102f6"
>Type="http://www.w3.org/2001/04/xmlenc#Element">
> <xenc:EncrypionMethod
>Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
> <ds:KeyInfo
>xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
> <wsse:SecurityTokenReference
>xmlns:wsse="http://ocs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
>ity-secext-1.0.xsd"xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-
>wssecrity-secext-1.
>1.xsd"
>wsse11:TokenTpe="http://docs.oasis-open.org/wss/oasis-wss-soap-message-se
>c
>urity-1.1#EncryptedKey">
> <wsse:Reference
>URI=#EK-fc0835be-d236-4341-b6c5-0026c0a87b10"/>
> </wsse:SecurityTokenReference>
> </ds:KeyInfo>
> <xenc:CipherData>
>
><xenc:CipherValue>i4I/pp76UglQjdso/5v1Du9z3PM2ndxVwc+15NhMcYIRu0JX97b
>UDOWB66qaZkQp5HPCQHQNqkQLRK3Uy56iJsVmvBtWoQaUJQ/BeSBdDB43J+9/8fboNiXpDveo
>8
>e91lP9ARhK0bIouSzQQTFohBM1rKcLlb35fToYt1pryzL3xImTcAgBLD+KCDQjlIl1jFsA/WVN
>m6LspJxr3S9PndmE3ZBST5IlVAkWpAt3LjeFn+IYeGi/6EuyHnkI10QDbqKKIJ5KGm5xi8Utaz
>C
>RJlW0fysBddNptcAVHuRWnJQpE1urIarlmrQjv1fpQojXJapzjhXpU0IJvHTBm/z+FSSR0uP4S
>QV1btv1c+TcgR6sYJkDDoOtznEanseh4MAwUQaT6r6/0igiv/ZO2pjiKyH8ty2HVvdcGcVFfXg
>K
>eGyx6eEap8mfjVO3Hj5gd8H+bTpWY/bE/yIauFCj30LI+rW1TLeUyjN4UnW7NyoZAcBUNWOCJW
>E
>2F3fLQRYOd7ABS1Dgqc0m4KIDnHKyFklPKtYoJSYpWtdEEf24sboYBlJQC5tDd3IWwCf7loCGj
>qx6rWVMt3TXXWBt6z1pWteVD4KSA6anqgXt1KxjQGu8O5wNyLnfAO5O6kBPbP2A7FFWQKtPA8
>3
>zduYNpCwGXpMoxdqflBnMVNgPxMF/Ezfxnzbh+qIfhxvgfEUmlNgw7eREMEr7R7M8SGszv5rc7
>DLWBRXnGXGGls+4n9FXbK1CO2Fcsm+BjF9GzoWo0QqMwdsbFL6JJOkgbPO+2kcvnjnFk1Yf/tT
>H
>rZjfsq2JpfhjZhWtkXyPkVJZtptHaDbaBGTMijg8iXjKlb8Xoaa3N8jhWQ70vKgCusYxheqy9/
>5W67O2f/xqnJfnqk5K8vP8QqyTG0vFa8XijxN8rW3fOGcjyWG/ZO6SSy4hNv9z0bdHh+QknYmm
>t
>cVz2pRUnOioJYlj4Gs9MMZ0eR8vkM9mmrEG3kKeofX7DB9TpirvyH07HizLfF7g67ZRXugGRh0
>i0mPABAjcCjQMJlstx8MlkW+MvV2QYQx/ta5JgG/YYzvfc2IDmQvndwyEUuPRnsKJzlUwwr06A
>J
>o+/qQqPaeZSr5blfbMnbZtLf8KqDj5NlhatYgTyhzWhuu/oMJr3o6aCWKoBjRajWv33XbUDDP5
>UhQTNyN1n9HAdqrwcKQ82APpDP+/Swy5hvqLxDvvzcPF3O0hVxZ/MVINd5U20gKKsZxjhKcjAi
>A
>51qM0B5Z/3zshwk77KSHu9uTmCgtvgQBFe8j2ALhZXr7TgxpMDCx3ubZ3fJFKNfbhdsdw+s66W
>TWPmHBsmv+RUNnwgAeTxU5ccDkWTxsH8UECF1UvZvPwlB2TRmHWQ+MeVrHt/nkZhX6HQ1+433U
>V
>+jnw4VJplK0pb/2iWYvseVaiNZZ6xdogktL2yIhghKIqoME/GcJs0eXMLnVGPRo6Z5eMa9hfEB
>t
>vIzB9/RolzJknBuAop+/g1tNQUNJv27M+12XgDGghHO685ei3tpw3dD+G4zU+8nc7W30dbH95M
>u/CCU7DDGhLzzkEcyUAPndfYQPZc9taypMHqyVVmr2ey5HpuAPTj42Z3biw1EgOeXjMsSYTQLN
>D
>s1xzdIS/Snq+QuU0Osp/FmQ0SG7lJllpkMsWe6PE4iwg1mBkWLeGjuDTTd0Yj9y4Z9z8ixKklw
>fQDK9lNWUOndrq+P4flNgHI9Quzf649eX/SDUYGd9sctZ4jqDphgXNNJXgmHBlGaV3YUZzGOjC
>q
>Ay7821r0p2hrk3rpAekld30zmV+QATYMZqJ08FVbMqINFs3uArlrNsyeD16eMPzf8JYiIOD9jX
>B1jUHV/FLaleiXYacDkrL0z71B75Unjjb5DrrGeixrF854FUHaZZnrGC8307m1QfQKoi9HPNIm
>k
>pTohRpb34bDvOyTGFZzD1u0CBsopCOu+rrMhv7yYO+Zooiigtx3a+NHqmQ4Kc4BvQ6g7AhwZ/
>brwPLHCy42R6IOeTszMCDQCvotUX8GFi+a7RkKiORv3J/Y2HtWHgGY5g3SRMDPcah+g==</xen
>c:CipherValue>
> </xenc:CipherData>
> </xenc:EncryptedData>
> <xenc:EncryptedData
>xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
>Id="ED-1153f3a3-61cd-4b45-bf1f-91b8dd789869"
>Type="http:/www.w3.org/2001/04/xmlenc#Element">
> <xenc:EncryptionMethod
>Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
> <ds:KeyInfo
>xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
> <wsse:SecurtyTokenReference
>xmlns:wsse="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wssecur
>ity-secext-1.0.xsd"
>xmlnswsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.
>1.xsd"
>wsse11:TokenType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-ec
>urity-1.1#EncryptedKey">
> <wsse:Reference
>URI="#EK-fc0835be-d236-4341-b6c5-0026c0a87b10"/>
> </wsse:SecurityTokenReference>
> </ds:KeyInfo>
> <xenc:CipherData>
>
><xenc:ipherValue>V1D7pkNujvvB9pKeHHb+wOlKzLNEHhXgr7IdWzZBTdz0I93d/FVc
>tjC/IFGvkAul1arNJ+iyTub5BVxBdeFAeYCqO107Q74mAWmHvtj2UqBuRmmkjs/wUhEJ4J6Mzx
>UYxNOyMkyrqtmet9Izu8ICJ/ZajykbVPoxftyD3n9OULaAviwwKU85WCcuJtvPfgQXPbWnHkFi
>k
>JFP6TbCqgh/I0ngoQDadprWa+9IAhig+3PUSMoAfn+xlKuO09DJwwq0Sr9Irh8/PmFkq/rE0Ro
>OmiznLDM9xM2coP/9QDS4rqDEVdQZtnYJuGpPiAI55kAdDq4o5XywjqbqnERWDiKntohw9qZY0
>Mn
>4e3bcll4lqvN6ljfBstzgMyqebnWFJ7po4W4Zt0skuEp3KhfCPx0RypXsY0ofZnqWJImdDkR3
>Q
>D4+ZpIFU7ZyRxEwiqZFMVvWg83dtDbsQAdZll9A+kHU3q5NuCeCZkGrKcoGKR2XC3d1mGkMk0G
>XKUWFXWxmFn3VUh1gJNcrEIAE/txnXJVfKhhwyg2Cc+h97mWR2PlKEDDonJpCkVXjBO65v/c08
>l
>+OgaSfP2Zf4CBINiY0hpN7cGwLzzrQS0RZo+GbrOZauhIseSU2K6aKEFWY7yD/gpIx55KJbWvx
>gbN38Fz5yPsDgUzZ3sWsxU16ew1e/khia2PhKAEHT/S6U7xwM+2sEiyAMI9B+RlTVMIcpSrxUl
>A
>F4WtOCOtZuNsX5DTRBLMFr1Dn97RtjX3wqY23D/e6Sc3sWwamzpWZjVe4bb/MFOu6gaMKgTiGB
>DJJzWn8KDMs/MaBdr1LQxMuur960KgrhWtDOGdT558ouFB3PPPQKk0h4NIezK9a+TvQMLa3X+P
>V
>yZNOvnRTFlIgqq7BXESDN63JMMT/w1OmpKyrP7OSsiCnDiT+TKdSgEVB+vDixiqv4CaxbEli6P
>E
>SoDJxS6LJx79bghB7FDlLi280yoxdBHFK50TcC9KIUAhFHASiPP+CZxKRX5t0H35uJ6FYyHK2Y
>J2aYbUhcs1gU4JEpeOj7LjWKmh6lQP2e1KTodna7CGoeQOvXQyPOoBQCtzM+iEgX5SklWhZSj6
>3
>KcxNsz1OmmoEmq8Uu++WByvuJksIdybJqnjtQjZQu1/GzWh3zwWtEYttE6wyN1a9YF1PVBOjVt
>J
>lfvYsC+bJ2VB4LQupYPJrva3KhstBaMbVGHaONIEK27d5XfbnhuyvSGvQIEOISGQssYo4Tarot
>a
>xbsVKAa9SjQMMvzSjEX4uVw8Jr7z35Mamys4QDelsp7qda9+Xqs68bf5i3jKfLHhzKsbrRKC2y
>g
>7l/P2e3DJySf3pnbruDOkEVoYJTkozyl5w9WFR27KE6pJrabaTb2HBFbAlLOjwtvrgYfW/c8Cd
>1
>lrrn8TrgJZMK8aHvtw+YcbyTyeGKYu1GIONRfgncrAqFP9P7/bTJkgkbGqmF9fKSsEs6lSLJxs
>u
>R0UdFxNeo6jN/KAPyrbZLJS6FMtkaVteQl0YjQh0usNiMfW2PoxLgYWDNLurYCadsqbkeInBKx
>I
>RkGXTiN+b6tn4AE0G6fWdDAQm8UO5AN5roboSgzg4whPfSTUNGKicAY/UbKdBeNLWlVIv9lklU
>s
>Fxk03RLgHC3w5tvyTvAgQ+aZQLFfqaDGDIpHMpU5bBmcI42D3TNJxeabyPsL/VjQFhZt3Y1xr8
>p
>VxIFbrK83cHaASd9kpxuQf1tHC29zZ+HaxaX7d34BIKXvZn/R3JoMXdFc8uZOfs1mBPhBXTEq
>L
>ZP/8F10umU05kekwnHnPujIYgd7+BMk6nX5gLuwh6mKZdsbXwpHIeWyxUkjUQWpYLTDYUl87rG
>5
>dd5P9SdHr6wFPWWuZBERSxIN8f7ccXj/xeXyGA69kj0KrPX8cgB0znNQlATcIlSMUgjBIVXIT
>3
>ASnAUpKnvoPFld/27gmap81gsJq1gt7QbQhBpvyFAjHFDtdAezCJWQVOOvdz+LTa1yxGe5EFqD
>X
>Vr62vN0/7A+ZJb+xRpsRYwJ4dVvq/tNvkdApiikcQ2L7/kq6+2HQgWtLopBdN3bmk7jZ/vYGzD
>T
>sP2qRaQYWBBtEH6XXRXacXYL3XUh66u+vMu1UzlcvNyrGbogSgAf2l2/b7sgQ5tRAfq7UX24jp
>0
>w5Ior5+lBM5mbeZS6yYRcH8cFckJrpF58vsCMcDZHT5TI2IbZd4Ph/DP495cF+likgJdv87Vlx
>h
>fb37yb/muXTz6E6/UWzAnBWO7RROjtkIZowiIgH/eRg6kRxaGhPrwHNjdyBOs3mTKcx3ysTiJR
>k
>PgMLc1meoeBNle6rGM9CNi+/vGv98Q1d5J4WS9DMT63sr9R814Y46iLGINs7h3KQ77Mg/sExrx
>3
>+W7KoIuk4QANA8ObI54u46En3poAI8Hiutam4JtkXsvuH1ZPWbwKOtV+k0dU6Azf0d+Pf7E+J
>a
>oV6ZVXJFbCfsNoOx2aQCW0abBlPtMrX80aKII+qEjwb0FYZ2M5cMM3Hz/MtDD5KjsMot3WCVPP
>W
>bXc7rmrPFtGqtDrOkLeQhyAksgqPO0xyFGY53fndzJFN+54IDIDxM8CR/zWjYeMDGYh81aaEHI
>G
>9D1CwfpzqAXWNp7h8igHxVPcFWX1hJ2Ax79TOaBCFEt+deCE36ufhJEv4apjUz2AuGr19VkN6f
>4
>fjSKi6ywwp6Ti2YOVpQAKGvrGo9CndgvCeDa984hXdhP5R3UQ/M2QnyMzxA0aICGeuZ9zn5CF
>E
>wqWardwJ/MLZFBYvXIHvUQ5xf4lrsckHEfvcoZiJ4d1zK6a4ltC3PNWVbUSDs92duQEqoO3lOs
>l
>gmhfcI5Wgwg==</xenc:CpherValue>
> </xenc:CipherData>
> </xenc:EncryptedData>
> </wsse:Security>
> </soap:Header>
> <soap:Body>
> <CreateSequence
>xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
>xmlns:ns2="http://www.w3.org/2005/08/addressing">
> <AcksTo>
>
><ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Addres
>s>
> </AcksTo>
> <Expires>PT0S</Expires>
<Offer>
>
><Identifier>urn:uuid:16a1f616-0cc0-4853-964f-11890ad2daae</Identifier>
> <Endpoint>
>
><ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Addre
>ss>
> </Endpoint>
> <Expires>PT0S</Expires>
> </Offer>
> </CreateSequence>
> </soap:Body>
></soap:Envelope>
>
>
>
>
>----- SOAP fault ----------
>
>
><s:Fault>
> <s:Code>
> <s:Value>s:Sender</s:Value>
> <s:Subcode>
> <s:Value
>xmlns:a="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurit
>y
>-secext-1.0.xsd">a:InvalidSecurity</s:Value>
> </s:Subcode>
> </s:Code>
> <s:Reason>
> <s:Text xml:lang="en-US">An error
>occurred when verifying security for
>the message.</s:Text>
> </s:Reason>
> </s:Fault>
>
>
>
>
>
>
>----- WSDL follows ----------
>
><?xml version="1.0" encoding="utf-8"?>
><wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
>xlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
>xmlns:i0="http://schemas.example.org/oms/2010/10/
>xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
>i
>ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/ddressing"
>xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
>xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
>xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
>xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
>xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
>xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
>xmlns:xsd="http://www.w3.org/2001/XMLSchema"
>xmlns:tns="http://tempuri.org/"
>xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
>xmlns:wsaw="htt://www.w3.org/2006/05/addressing/wsdl"
>xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
>name="Authentication" targetNamespace="http://tempuri.org/">
> <wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <wsrmp:RMAssertion
>mlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
> <wsp:Policy>
> <wsrmp:DeliveryAssurance>
> <wsp:Policy>
>
><wsrmp:ExactlyOnce/>
>
><wsrmp:InOrder/>
> </wsp:Policy>
> </wsrmp:DeliveryAssurance>
> </wsp:Policy>
> <netrmp:InactivityTimeout
>xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>Millisecons="600000"/>
> <netrmp:AcknowledgementInterval
>xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
>Milliseconds="200"/>
> </wsrmp:RMAssertion>
> <sp:SymmetricBinding
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:ProtectionToken>
> <wsp:Policy>
>
><sp:X509Token
>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Incl
>u
>deToken/Never">
>
><wsp:Policy>
>
> <sp:RequireThumbprintReference/>
>
> <sp:WssX509V3Token10/>
>
></wsp:Policy>
>
></sp:X509Token>
> </wsp:Policy>
> </sp:ProtectionToken>
> <sp:AlgorithmSuite>
> <wsp:Policy>
>
><sp:Basic256/>
> </wsp:Policy>
> </sp:AlgorithmSuite>
> <sp:Layout>
> <wsp:Policy>
>
><sp:Strict/>
> </wsp:Policy>
> </sp:Layout>
> <sp:IncludeTimestamp/>
> <sp:EncryptSignature/>
>
><sp:OnlySignEntireHeadersAndBody/>
> </wsp:Policy>
> </sp:SymmetricBinding>
> <sp:EndorsingSupportingTokens
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy"
> <wsp:Policy>
> <sp:X509Token
>sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Incl
>u
>deToken/AlwaysToRecipient">
> <wsp:Policy>
>
><sp:RequireThumbprintReference/>
><sp:WssX509V3Token10/>
> </wsp:Policy>
> </sp:X509Token>
> </wsp:Policy>
> </sp:EndorsingSupportingTokens>
> <sp:Wss11
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
>
><sp:MustSupportRefThumbprint/>
>
><sp:MustSupportRefEncryptedKey/>
>
><sp:RequireSignatureConfirmation/>
> </wsp:Policy>
> </sp:Wss11>
> <sp:Trust10
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
>
><sp:MustSupportIssuedTokens/>
> <sp:RequireClientEntropy/>
> <sp:RequireServerEntropy/>
> </wsp:Policy>
> </sp:Trust10>
> <sp:TransportBinding
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <wsp:Policy>
> <sp:TransportToken>
> <wsp:Policy>
>
><sp:HttpsToken RequireClientCertificate="false"/>
> </wsp:Policy>
> </sp:TransportToken>
> <sp:AlgorithmSuite>
> <wsp:Policy>
>
><sp:Basic256/>
> </wsp:Policy>
> </sp:AlgorithmSuite>
> <sp:Layout>
> <wsp:Policy>
>
><sp:Strict/>
> </wsp:Policy>
> </sp:Layout>
> <sp:IncludeTimestamp/>
> </wsp:Policy>
> </sp:TransportBinding>
> <wsaw:UsingAddressing/>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsp:Policy
>wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
> <wsp:ExactlyOne>
> <wsp:All>
> <sp:SignedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Body/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> <sp:Header Name="Sequence"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header
>Name="SequenceAcknowledgement"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="AckRequested"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="UsesSequenceSTR"
>Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
> <sp:Header Name="To"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="From"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="FaultTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="ReplyTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="MessageID"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="RelatesTo"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> <sp:Header Name="Action"
>Namespace="http://www.w3.org/2005/08/addressing"/>
> </sp:SignedParts>
> <sp:EncryptedParts
>xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
> <sp:Header
>Name="CoordinationContext"
>Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
> <sp:Header Name="OleTxTransaction"
>Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
> <sp:Header Name="IssuedTokens"
>Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
> </sp:EncryptedParts>
> </wsp:All>
> </wsp:ExactlyOne>
> </wsp:Policy>
> <wsdl:import namespace="http://schemas.example.org/oms/2010/10/"
>location="https://services.example.org/OMS/V2/Diacap/Authentication.svc?ws
>d
>l=wsdl0"/>
> <wsdl:types/>
> <wsdl:binding name="AuthenticationDiacapEndpoint"
>type="i0:IAuthentication">
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_policy"/>
> <soap12:binding
>transport="http://schemas.xmlsoap.org/soap/http"/>
> <wsdl:operation name="Activate">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Activat
>e
>" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="ChangePassword">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/ChangeP
>a
>ssword" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Create">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Create"
>style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Expire">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Expire"
>style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetAnswers">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetAnsw
>e
>rs" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetPolicy">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetPoli
>c
>y" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetQuestions">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetQues
>t
>ions" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="GetUsernames">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetUser
>n
>ames" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Reset">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Reset"
>style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Update">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Update"
>style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="Validate">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Validat
>e
>" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> <wsdl:operation name="ValidateEmail">
> <soap12:operation
>soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Validat
>e
>Email" style="document"/>
> <wsdl:input>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
> <soap12:body use="literal"/>
> </wsdl:input>
> <wsdl:output>
> <wsp:PolicyReference
>URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
> <soap12:body use="literal"/>
> </wsdl:output>
> </wsdl:operation>
> </wsdl:binding>
> <wsdl:service name="Authentication">
> <wsdl:port name="AuthenticationDiacapEndpoint"
>binding="tns:AuthenticationDiacapEndpoint">
> <soap12:address
>location="https://services.example.org/OMS/V2/Diacap/Authentication.svc"/>
> <wsa10:EndpointReference>
>
><wsa10:Address>https://services.example.org/OMS/V2/Diacap/Authenticatio
>n.svc</wsa10:Address>
> <Identity
>xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
> <KeyInfo
>xmlns="http://www.w3.org/2000/09/xmldsig#">
> <X509Data>
>
><X509Certificate>MIIFFjCCA/6gAwIBAgIETCKptDANBgkqhkiG9w0BAQUFADCBsTE
>LMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRyd
>X
>N0Lm5ldC9ycGEgaXMgaW5jb3Jwb3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMWKGMpIDIw
>M
>DkgRW50cnVzdCwgSW5jLjEuMCwGA1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml
>0
>eSAtIEwxQzAeFw0xNDA0MTAxMzIyMjBaFw0xODA2MTAxNjQ2NDdaMF0xCzAJBgNVBAYTAlVTMR
>E
>wDwYDVQQIEwhOZWJyYXNrYTEOMAwGA1UEBxMFT21haGExFDASBgNVBAoTC0dhbGx1cCBJbmMuM
>R
>UwEwYDVQQDFAwqLmdhbGx1cC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe
>9
>YLdVUrFmSBn4K8bgDOBwi5+FsCT6/hUcuuJkyYqNIHWXkcWFxFxxbZeaocpm2oyI3sZU2FzX+N
>O
>MjokQNaLUJQZzwdTO9Ir7C/vIhYd+kWlH176F+NAPQ+SfcbAAOSIEFiJSW4sVqEeOCeP1majyA
>h
>FzlKub8/IhjzWMeuHDj/AJKtZjH3F5ICexAUyi4sJsShHSXTivr6+vowwLvvoI/VAhAJr3PaoW
>7
>NJiUZSFfH+Tott6CtSBOUx2hjHP4K19boRg3zcSdWzqFdaDLBWZjVmt/FZeynJPOsZVMksrrbI
>j
>OFkqvfwpwdF/WKOMS/jctniLIBdH343pwBpJLWjAgMBAAGjggGHMIIBgzALBgNVHQ8EBAMCBaA
>w
>HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDMGA1UdHwQsMCowKKAmoCSGImh0dHA6Ly
>9
>jcmwuZW50cnVzdC5uZXQvbGV2ZWwxYy5jcmwwZAYIKwYBBQUHAQEEWDBWMCMGCCsGAQUFBzABh
>h
>dodHRwOi8vb2NzcC5lbnRydXN0Lm5ldDAvBggrBgEFBQcwAoYjaHR0cDovL2FpYS5lbnRydXN0
>L
>m5ldC8yMDQ4LWwxYy5jZXIwSgYDVR0gBEMwQTA1BgkqhkiG9n0HSwIwKDAmBggrBgEFBQcCARY
>a
>aHR0cDovL3d3dy5lbnRydXN0Lm5ldC9ycGEwCAYGZ4EMAQICMCMGA1UdEQQcMBqCDCouZ2FsbH
>V
>wLmNvbYIKZ2FsbHVwLmNvbTAfBgNVHSMEGDAWgBQe8auJBvhJDwEzd+4Ueu4ZfJMoTTAdBgNVH
>Q
>4EFgQU3sGLmmxRfTlQ0KgRPqZdXrhYxuswCQYDVR0TBAIwADANBgkqhkiG9w0BAQUFAAOCAQEA
>X
>1rcxlCxbnJ7/ee43Uy20HjnpIadcSOvqUp8N6PPkVLO1T6W0GFezJfxFl737PcjOBU8hBmGDDT
>t
>1SUDEfqhmJLXsMk4VN6OJbDZUl/WJHOg9eLbBuxR/CEdqxYjkCBy0YTOoxuJs8Uni19l4FCuip
>u
>+p+t6hYSXSaYy8S/xaYUuRibm8Hfn0/Ks7w/UGkYvbivmD3AZtpUqqT9xNa/rmE/U+IoKFpSNx
>X
>Qw7d0Tp8QuvI4sL37bDT3lE0wYVb2jvkYWr6ASMpO7gAMNyPUeKLtcIStAAu2JzTRa8i+UfYhB
>u
>JnBRAdhyUg4Wie32nhb/H6qpHUICvm1mXSkGla9ng==</X509Certificate>
> </X509Data>
> </KeyInfo>
> </Identity>
> </wsa10:EndpointReference>
> </wsdl:port>
> </wsdl:service>
></wsdl:definitions>
>
>
>
>-------------------------------------------------
>
>
>
>
>On 8/1/14 11:03 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>
>>Dennis,
>>
>>I am a colleague of Ramzi's. It turns out that WS-SecureConversation was
>>not an actual requirement. We were able to ask the .NET team who owns
>>the
>>service to turn it off. We also removed the interceptors as you
>>recommended. We managed to invoke the service after making those two
>>changes.
>>
>>I just wanted to thank you for providing the key insights.
>>
>>Pohl Longsine
>>
>>On 7/30/14 6:59 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>>
>>>Hi Ramzi,
>>>
>>>There are issues in combining WS-SecureConversation with
>>>WS-ReliableMessaging in the 3.0.x release.
>>
>
>All information in this message is confidential and may be legally
>privileged. Only intended recipients are authorized to use it.
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
Dennis, this turned out a bit differently than thought a couple of weeks
ago.
When the .NET team who own the service turned off W-SecureConversation
(which isn't needed) it had the side-effect of also causing thei end to
fail to digitally sign the SOAP traffic. Signing is a requirement for us
After getting some help from Microsoft to figure out how to get their end
to sign responses inabsence of WS-SecureConversation, they're ready for
us to try to hit it with our CXF client again.
When I d, I get the following symptoms. We first put together a
CreateSequence request, and send it over the wre. The request that we
send looks good to my eye, however we get a soap fault in response - a
fairly eneric-sounding one at that.
We asked the .NET team to turn on the logging to see what sort of errr
they see on their side. Here is what they see:
³The security protocol cannot verify the incoming message.²
"The EncryptedKey clause was not wrapped with the required encryption
token 'System.IdentityModel.Tokens.X509SecurityToken'."
As usual, I'mhaving a hard time reading the tea leaves here. Does
anything stick out to you as something I'm doing wrong?
Pohl Longsine
----- cxf.xml configuration ----------
<beans xmlns="http://www.springframework.org/schema/beans"
xmlns:jaxws="http://cxf.apache.org/jaxws"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:http="http://cxf.apache.org/transports/http/configuration"
xmlns:wsrm-policy="http//schemas.xmlsoap.org/ws/2005/02/rm/policy"
xmlns:wsrm-mgr="http://cxf.apache.org/w/rm/manager"
xmlns:wsa="http://cxf.apache.org/ws/addressing"
xmlns:cxf="http://cxf.apache.or/core"
xsi:schemaLocation="http://cxf.apache.org/core
http://cxf.apache.orgschemas/core.xsd
http://www.springframework.org/schema/beans
http://www.spingframework.org/schema/beans/spring-beans.xsd
http://cxf.apache.org/jaxw
http://cxf.apache.org/schemas/jaxws.xsd
http://cxf.apahe.org/transports/http/configuration
http://cxf.apache.org/schemas/coniguration/http-conf.xsd
http://schemas.xmlsoap.org/ws/2005/02/rm/polic
http://schemas.xmlsoap.org/ws/2005/02/rm/wsrm-policy.xsd
htp://cxf.apache.org/ws/rm/manager
http://cxf.apache.org/schemas/configuraion/wsrm-manager.xsd">
<bean id="logInBound"
class="org.apache.cxf.interceptr.LoggingInInterceptor"/>
<bean id="logOutBound"
class="org.apache.cxf.interceptor.LoggingOuInterceptor"/>
<jaxws:client name="{http://tempuri.org/}AuthenticationDiacapEndpoint"
createdFromAPI="tre"
address="https://services.gallup.com/OMS/V2/Diacap/Authentication.svc?wsdl"
>
<jaxws:properties>
<entry key="ws-security.signature.properties"
value="/client.propeties"/>
<entry key="ws-security.encryption.properties"
value="/client.properties"/>
<entry key="ws-security.encryption.username"
value="oms-diacap"/>
<entry key="ws-security.callback-handler"
value="gallup.oms.client.KeystorePasswordCallback"/>
</jaxws:properties>
<jaxws:inInterceptors>
<ref bean="lgInBound"/>
<!-- <ref bean="inbound-security"/> -->
</jaxws:inInterceptors>
<jaxws:outInterceptos>
<ref bean="logOutBound"/>
<!-- <ref bean="outbound-security"/> -->
/jaxws:outInterceptors>
</jaxws:client>
</beans>
----- SOAP request ----------
<?xml version"1.0" encoding="utf-8"?>
<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
<soa:Header>
<Action
xmlns="http://www.w3.org/2005/08/addressing">http://docs.oasis-open.or/ws-
rx/wsrm/200702/CreateSequence</Action>
<MessageID
xmlns="http://www.w3.org/2005/08/addressing">urnuuid:f525b817-6a23-488c-a9
59-af86a2d5038e</MessageID>
<To
xmlns="http://www.w3.org/2005/08/ddressing">https://services.example.org/O
MS/V2/Diacap/Authentication.svc</To>
<ReplyTo xmlns="htp://www.w3.org/2005/08/addressing">
<Address>http://www.w3.org/2005/08/addressinganonymous</Address>
</ReplyTo>
<wsse:Security
xmlns:wsse="http://docs.oasi-open.org/wss/2004/01/oasis-200401-wss-wssecur
ity-secext-1.0.xsd"
xmlns:wsu="http//docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
ty-utility-1.0.xsd" sop:mustUnderstand="true">
<wsu:Timestamp wsu:Id="TS-14ca0a45-b687-40a8-a648-4a113a36950">
<wsu:Created>2014-08-12T20:00:12.107Z</wsu:Created>
<wsu:Expires>201-08-12T20:05:12.107Z</wsu:Expires>
</wsu:Timestamp>
<xenc:EncryptedKey xmln:xenc="http://www.w3.org/2001/04/xmlenc#"
Id="EK-fc0835be-d236-4341-b6c5-0026c0a87b10">
<xen:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p"/>
<ds:KeyInfo xmlns:ds="htp://www.w3.org/2000/09/xmldsig#">
<wsse:SecurityTokenReference
xmlns:wsse="http://docs.oasis-openorg/wss/2004/01/oasis-200401-wss-wssecur
ity-secext-1.0.xsd">
<wsse:KeyIdentifier
EncodingType="ttp://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-
message-security-1.0#Base64Binary"
ValeType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1
.1#ThumbprintSHA1">xOqHfJA6nIVxH8Gnc5pGrx6nF2s=</wsse:KeyIdentifier>
</wsse:SecurityTokenReference>
</ds:KeyInfo>
<xenc:CipherData>
<xenc:CipherValue>MUiocSMmyprxYEGkcOFFICZoPKxYWaq4UQYHAvkwXE0oRNlVAb8
Dfz0iUdPFpZmgkYOCpve24JtFLWefqYpgDIwgiP8HKaaS6RY50i7E8E5Nw44EwEJY8CLNsejzH5
1nI7vxUO9KDZPv+QMUeickjx76Mzp7SbBjM9glLepuQXRwPdZM8UURokWzbrjlw4uy49JEibU/
WtESSUJbb9B9PuugziVT22Cndb61kJ61Lufua5lJ2hvj45uuf+KZGLdzmt6r5Cn2M1iVD/y6kx
t7hvk1ewXDAC6zbvvD0W778P+9ZqI2z7hyUUbvAN7VhU3WX12fERnJTohDUKsbsl4mdhepJQRF3rtBM6V9pJIpoJNd7JesHU6z0O0Cl98URzixkj4nz5yGvYce6KGjSVvHw5I48zMe/k6J6hW2samg
wtpETTp095H9LWW2A1kNRFwzVBcdpBmJv3Qijk3GubhX7mNh/uKcZLgujxEyiqZZxWHeVXPHZB
C6ZDc/0IPRvxRWTwqxjzsoF7+E1eRTmtOvqtSgaYRFgepvIFsgfbZmKez1fD4gkzQt8shzKs50
6ZNPHCXXxlJ6LiWlhDmSYhVUEK3dBmRaNESEHknfYxH9C7zHmNNTMLIw1SY5qywcSPGeWRoF6y
h684vy0aUhxYXsVkuX456sLszdJqIHs=</xenc:CipherValue>
</xenc:CipherData>
</xenc:EncrptedKey>
<xenc:ReferenceList xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
<xenc:DataRefeence URI="#ED-fadf5e47-993c-4feb-a972-1dd18cb102f6"/>
<xenc:DataReference URI="#E-1153f3a3-61cd-4b45-bf1f-91b8dd789869"/>
</xenc:ReferenceList>
<wsse:BinaySecurityToken
EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-ws-soap-
message-security-1.0#Base64Binary"
ValueType="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-x509-tok
en-profile-1.0#X509v3"
wsu:Id="X509-f01b5e4b-8c5-447e-9b37-0590e0012444">MIIGmzCCBgSgAwIBAgIKWp2a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</wsse:BinaryS
ecurityToken>
<xenc:EncryptedData xmlns:enc="http://www.w3.org/2001/04/xmlenc#"
Id="ED-fadf5e47-993c-4feb-a972-1dd18cb102f6"
Type="http://www.w3.org/2001/04/xmlenc#Element">
<xenc:EncrypionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
<wsse:SecurityTokenReference
xmlns:wsse="http://ocs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecur
ity-secext-1.0.xsd"xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecrity-secext-1.
1.xsd"
wsse11:TokenType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-sec
urity-1.1#EncryptedKey">
<wsse:Reference URI=#EK-fc0835be-d236-4341-b6c5-0026c0a87b10"/>
</wsse:SecurityTokenReference>
</ds:KeyInfo>
<xenc:CipherData>
<xenc:CipherValue>i4I/pp76UglQjdso/5v1Du9z3PM2ndxVwc+15NhMcYIRu0JX97b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==</xen
c:CipherValue>
</xenc:CipherData>
</xenc:EncryptedData>
<xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
Id="ED-1153f3a3-61cd-4b45-bf1f-91b8dd789869"
Type="http:/www.w3.org/2001/04/xmlenc#Element">
<xenc:EncryptionMethod
Algorithm="http://www.w3.org/2001/04/xmlenc#aes256-cbc"/>
<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
<wsse:SecurityTokenReference
xmlns:wsse="http://docs.oasis-open.org/ws/2004/01/oasis-200401-wss-wssecur
ity-secext-1.0.xsd"
xmlnswsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.
1.xsd"
wsse11:TokenType="http://docs.oasis-open.org/wss/oasis-wss-soap-message-ec
urity-1.1#EncryptedKey">
<wsse:Reference URI="#EK-fc0835be-d236-4341-b6c5-0026c0a87b10"/>
</wsse:SecurityTokenReference>
</ds:KeyInfo>
<xenc:CipherData>
<xenc:ipherValue>V1D7pkNujvvB9pKeHHb+wOlKzLNEHhXgr7IdWzZBTdz0I93d/FVc
tjC/IFGvkAul1arNJ+iyTub5BVxBdeFAeYCqO107Q74mAWmHvtj2UqBuRmmkjs/wUhEJ4J6Mzx
UYxNOyMkyrqtmet9Izu8ICJ/ZajykbVPoxftyD3n9OULaAviwwKU85WCcuJtvPfgQXPbWnHkFik
JFP6TbCqgh/I0ngoQDadprWa+9IAhig+3PUSMoAfn+xlKuO09DJwwq0Sr9Irh8/PmFkq/rE0RoOmiznLDM9xM2coP/9QDS4rqDEVdQZtnYJuGpPiAI55kAdDq4o5XywjqbqnERWDiKntohw9qZY0Mn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</xenc:CipherValue>
</xenc:CipherData>
</xenc:EncryptedData>
</wsse:Security>
</soap:Header>
<soap:Body>
<CreateSequence xmlns="http://docs.oasis-open.org/ws-rx/wsrm/200702"
xmlns:ns2="http://www.w3.org/2005/08/addressing">
<AcksTo>
<ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Addres
s>
</AcksTo>
<Expires>PT0S</Expires>
<Offer>
<Identifier>urn:uuid:16a1f616-0cc0-4853-964f-11890ad2daae</Identifier>
<Endpoint>
<ns2:Address>http://www.w3.org/2005/08/addressing/anonymous</ns2:Addre
ss>
</Endpoint>
<Expires>PT0S</Expires>
</Offer>
</CreateSequence>
</soap:Body>
</soap:Envelope>
----- SOAP fault ----------
<s:Fault>
<s:Code>
<s:Value>s:Sender</s:Value>
<s:Subcode>
<s:Value
xmlns:a="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity
-secext-1.0.xsd">a:InvalidSecurity</s:Value>
</s:Subcode>
</s:Code>
<s:Reason>
<s:Text xml:lang="en-US">An error occurred when verifying security for
the message.</s:Text>
</s:Reason>
</s:Fault>
----- WSDL follows ----------
<?xml version="1.0" encoding="utf-8"?>
<wsdl:definitions xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
xlns:wsx="http://schemas.xmlsoap.org/ws/2004/09/mex"
xmlns:i0="http://schemas.example.org/oms/2010/10/"
xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecuri
ty-utility-1.0.xsd" xmlns:wsa10="http://www.w3.org/2005/08/addressing"
xmlns:wsp="http://schemas.xmlsoap.org/ws/2004/09/policy"
xmlns:wsap="http://schemas.xmlsoap.org/ws/2004/08/addressing/policy"
xmlns:msc="http://schemas.microsoft.com/ws/2005/12/wsdl/contract"
xmlns:soap12="http://schemas.xmlsoap.org/wsdl/soap12/"
xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing"
xmlns:wsam="http://www.w3.org/2007/05/addressing/metadata"
xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:tns="http://tempuri.org/"
xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
xmlns:wsaw="http://www.w3.org/2006/05/addressing/wsdl"
xmlns:soapenc="http://schemas.xmlsoap.org/soap/encoding/"
name="Authentication" targetNamespace="http://tempuri.org/">
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_policy">
<wsp:ExactlyOne>
<wsp:All>
<wsrmp:RMAssertion
xmlns:wsrmp="http://docs.oasis-open.org/ws-rx/wsrmp/200702">
<wsp:Policy>
<wsrmp:DeliveryAssurance>
<wsp:Policy>
<wsrmp:ExactlyOnce/>
<wsrmp:InOrder/>
</wsp:Policy>
</wsrmp:DeliveryAssurance>
</wsp:Policy>
<netrmp:InactivityTimeout
xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
Milliseconds="600000"/>
<netrmp:AcknowledgementInterval
xmlns:netrmp="http://schemas.microsoft.com/ws-rx/wsrmp/200702"
Milliseconds="200"/>
</wsrmp:RMAssertion>
<sp:SymmetricBinding
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:ProtectionToken>
<wsp:Policy>
<sp:X509Token
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inclu
deToken/Never">
<wsp:Policy>
<sp:RequireThumbprintReference/>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:ProtectionToken>
<sp:AlgorithmSuite>
<wsp:Policy>
<sp:Basic256/>
</wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout>
<wsp:Policy>
<sp:Strict/>
</wsp:Policy>
</sp:Layout>
<sp:IncludeTimestamp/>
<sp:EncryptSignature/>
<sp:OnlySignEntireHeadersAndBody/>
</wsp:Policy>
</sp:SymmetricBinding>
<sp:EndorsingSupportingTokens
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:X509Token
sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/Inclu
deToken/AlwaysToRecipient">
<wsp:Policy>
<sp:RequireThumbprintReference/>
<sp:WssX509V3Token10/>
</wsp:Policy>
</sp:X509Token>
</wsp:Policy>
</sp:EndorsingSupportingTokens>
<sp:Wss11
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:MustSupportRefThumbprint/>
<sp:MustSupportRefEncryptedKey/>
<sp:RequireSignatureConfirmation/>
</wsp:Policy>
</sp:Wss11>
<sp:Trust10
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:MustSupportIssuedTokens/>
<sp:RequireClientEntropy/>
<sp:RequireServerEntropy/>
</wsp:Policy>
</sp:Trust10>
<sp:TransportBinding
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<wsp:Policy>
<sp:TransportToken>
<wsp:Policy>
<sp:HttpsToken RequireClientCertificate="false"/>
</wsp:Policy>
</sp:TransportToken>
<sp:AlgorithmSuite>
<wsp:Policy>
<sp:Basic256/>
</wsp:Policy>
</sp:AlgorithmSuite>
<sp:Layout>
<wsp:Policy>
<sp:Strict/>
</wsp:Policy>
</sp:Layout>
<sp:IncludeTimestamp/>
</wsp:Policy>
</sp:TransportBinding>
<wsaw:UsingAddressing/>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Activate_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_ChangePassword_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Create_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Expire_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetAnswers_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_GetPolicy_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetQuestions_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_GetUsernames_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Reset_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Update_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy wsu:Id="AuthenticationDiacapEndpoint_Validate_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_Input_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsp:Policy
wsu:Id="AuthenticationDiacapEndpoint_ValidateEmail_output_policy">
<wsp:ExactlyOne>
<wsp:All>
<sp:SignedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Body/>
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
<sp:Header Name="Sequence"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="SequenceAcknowledgement"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="AckRequested"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="UsesSequenceSTR"
Namespace="http://docs.oasis-open.org/ws-rx/wsrm/200702"/>
<sp:Header Name="To"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="From"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="FaultTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="ReplyTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="MessageID"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="RelatesTo"
Namespace="http://www.w3.org/2005/08/addressing"/>
<sp:Header Name="Action"
Namespace="http://www.w3.org/2005/08/addressing"/>
</sp:SignedParts>
<sp:EncryptedParts
xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy">
<sp:Header Name="CoordinationContext"
Namespace="http://schemas.xmlsoap.org/ws/2004/10/wscoor"/>
<sp:Header Name="CoordinationContext"
Namespace="http://docs.oasis-open.org/ws-tx/wscoor/2006/06"/>
<sp:Header Name="OleTxTransaction"
Namespace="http://schemas.microsoft.com/ws/2006/02/tx/oletx"/>
<sp:Header Name="IssuedTokens"
Namespace="http://schemas.xmlsoap.org/ws/2005/02/trust"/>
</sp:EncryptedParts>
</wsp:All>
</wsp:ExactlyOne>
</wsp:Policy>
<wsdl:import namespace="http://schemas.example.org/oms/2010/10/"
location="https://services.example.org/OMS/V2/Diacap/Authentication.svc?wsd
l=wsdl0"/>
<wsdl:types/>
<wsdl:binding name="AuthenticationDiacapEndpoint"
type="i0:IAuthentication">
<wsp:PolicyReference URI="#AuthenticationDiacapEndpoint_policy"/>
<soap12:binding transport="http://schemas.xmlsoap.org/soap/http"/>
<wsdl:operation name="Activate">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Activate
" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Activate_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Activate_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="ChangePassword">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/ChangePa
ssword" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_ChangePassword_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_ChangePassword_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Create">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Create"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Create_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Create_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Expire">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Expire"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Expire_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Expire_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetAnswers">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetAnswe
rs" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetAnswers_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetAnswers_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetPolicy">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetPolic
y" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetPolicy_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetPolicy_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetQuestions">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetQuest
ions" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetQuestions_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetQuestions_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="GetUsernames">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/GetUsern
ames" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetUsernames_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_GetUsernames_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Reset">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Reset"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Reset_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Reset_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Update">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Update"
style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Update_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Update_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="Validate">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Validate
" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Validate_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_Validate_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
<wsdl:operation name="ValidateEmail">
<soap12:operation
soapAction="http://schemas.example.org/oms/2010/10/IAuthentication/Validate
Email" style="document"/>
<wsdl:input>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_ValidateEmail_Input_policy"/>
<soap12:body use="literal"/>
</wsdl:input>
<wsdl:output>
<wsp:PolicyReference
URI="#AuthenticationDiacapEndpoint_ValidateEmail_output_policy"/>
<soap12:body use="literal"/>
</wsdl:output>
</wsdl:operation>
</wsdl:binding>
<wsdl:service name="Authentication">
<wsdl:port name="AuthenticationDiacapEndpoint"
binding="tns:AuthenticationDiacapEndpoint">
<soap12:address
location="https://services.example.org/OMS/V2/Diacap/Authentication.svc"/>
<wsa10:EndpointReference>
<wsa10:Address>https://services.example.org/OMS/V2/Diacap/Authenticatio
n.svc</wsa10:Address>
<Identity
xmlns="http://schemas.xmlsoap.org/ws/2006/02/addressingidentity">
<KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
<X509Data>
<X509Certificate>MIIFFjCCA/6gAwIBAgIETCKptDANBgkqhkiG9w0BAQUFADCBsTE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</X509Certificate>
</X509Data>
</KeyInfo>
</Identity>
</wsa10:EndpointReference>
</wsdl:port>
</wsdl:service>
</wsdl:definitions>
-------------------------------------------------
On 8/1/14 11:03 AM, "Longsine, Pohl" <Po...@gallup.com> wrote:
>Dennis,
>
>I am a colleague of Ramzi's. It turns out that WS-SecureConversation was
>not an actual requirement. We were able to ask the .NET team who owns the
>service to turn it off. We also removed the interceptors as you
>recommended. We managed to invoke the service after making those two
>changes.
>
>I just wanted to thank you for providing the key insights.
>
>Pohl Longsine
>
>On 7/30/14 6:59 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>
>>Hi Ramzi,
>>
>>There are issues in combining WS-SecureConversation with
>>WS-ReliableMessaging in the 3.0.x release.
>
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Dennis Sosnoski <dm...@sosnoski.com>.
Yes, using standard WS-Security (signing and/or encrypting) should be
fine. It's just the combination with WS-SecureConversation where there
are likely to be problems at present.
- Dennis
On 08/02/2014 04:43 AM, Longsine, Pohl wrote:
> I do have a higher level question I'd like to pose. I'm still fuzzy about
> the
> relationships between all of the various standards under the WS-* umbrella.
>
> If it turns out that the .NET team who exposes this service still wants to
> sign their SOAP responses, should it be possible without involving
> WS-SecureConversation?
> Is that entirely under the auspices of WS-Trust and/or other specs?
>
>
>
> On 8/1/14 11:26 AM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>
>> Great, glad to hear that helped! And thanks for letting me know. :-)
>>
>> - Dennis
>>
>> On 08/02/2014 04:03 AM, Longsine, Pohl wrote:
>>> Dennis,
>>>
>>> I am a colleague of Ramzi's. It turns out that WS-SecureConversation was
>>> not an actual requirement. We were able to ask the .NET team who owns
>>> the
>>> service to turn it off. We also removed the interceptors as you
>>> recommended. We managed to invoke the service after making those two
>>> changes.
>>>
>>> I just wanted to thank you for providing the key insights.
>>>
>>> Pohl Longsine
>>>
>>> On 7/30/14 6:59 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>>>
>>>> Hi Ramzi,
>>>>
>>>> There are issues in combining WS-SecureConversation with
>>>> WS-ReliableMessaging in the 3.0.x release.
>>> All information in this message is confidential and may be legally
>>> privileged. Only intended recipients are authorized to use it.
>>>
> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
>
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
I do have a higher level question I'd like to pose. I'm still fuzzy about
the
relationships between all of the various standards under the WS-* umbrella.
If it turns out that the .NET team who exposes this service still wants to
sign their SOAP responses, should it be possible without involving
WS-SecureConversation?
Is that entirely under the auspices of WS-Trust and/or other specs?
On 8/1/14 11:26 AM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>Great, glad to hear that helped! And thanks for letting me know. :-)
>
> - Dennis
>
>On 08/02/2014 04:03 AM, Longsine, Pohl wrote:
>> Dennis,
>>
>> I am a colleague of Ramzi's. It turns out that WS-SecureConversation was
>> not an actual requirement. We were able to ask the .NET team who owns
>>the
>> service to turn it off. We also removed the interceptors as you
>> recommended. We managed to invoke the service after making those two
>> changes.
>>
>> I just wanted to thank you for providing the key insights.
>>
>> Pohl Longsine
>>
>> On 7/30/14 6:59 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>>
>>> Hi Ramzi,
>>>
>>> There are issues in combining WS-SecureConversation with
>>> WS-ReliableMessaging in the 3.0.x release.
>> All information in this message is confidential and may be legally
>>privileged. Only intended recipients are authorized to use it.
>>
>
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Dennis Sosnoski <dm...@sosnoski.com>.
Great, glad to hear that helped! And thanks for letting me know. :-)
- Dennis
On 08/02/2014 04:03 AM, Longsine, Pohl wrote:
> Dennis,
>
> I am a colleague of Ramzi's. It turns out that WS-SecureConversation was
> not an actual requirement. We were able to ask the .NET team who owns the
> service to turn it off. We also removed the interceptors as you
> recommended. We managed to invoke the service after making those two
> changes.
>
> I just wanted to thank you for providing the key insights.
>
> Pohl Longsine
>
> On 7/30/14 6:59 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>
>> Hi Ramzi,
>>
>> There are issues in combining WS-SecureConversation with
>> WS-ReliableMessaging in the 3.0.x release.
> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
>
Re: Apache CXF with WS-Security
Posted by "Longsine, Pohl" <Po...@gallup.com>.
Dennis,
I am a colleague of Ramzi's. It turns out that WS-SecureConversation was
not an actual requirement. We were able to ask the .NET team who owns the
service to turn it off. We also removed the interceptors as you
recommended. We managed to invoke the service after making those two
changes.
I just wanted to thank you for providing the key insights.
Pohl Longsine
On 7/30/14 6:59 PM, "Dennis Sosnoski" <dm...@sosnoski.com> wrote:
>Hi Ramzi,
>
>There are issues in combining WS-SecureConversation with
>WS-ReliableMessaging in the 3.0.x release.
All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
Re: Apache CXF with WS-Security
Posted by Dennis Sosnoski <dm...@sosnoski.com>.
Hi Ramzi,
There are issues in combining WS-SecureConversation with
WS-ReliableMessaging in the 3.0.x release. I did some work to support
this last year, but it was not a priority for the group I was working
with. Since I didn't have a working endpoint to test with I didn't
pursue it at that time.
The correct way of handling this, according to the WS-I Reliable Secure
Profile
(http://www.ws-i.org/Profiles/ReliableSecureProfile-1.0-2010-11-09.html#sec_reliable_msg),
is for the WS-RM CreateSequence to include a wsrm:UsesSequenceSTR
element that identifies the security context token. That's currently not
supported. There might also be a problem in the ordering of the
interceptors when using WS-RM in combination with WS-SC. If you want to
send me the full message exchange I can take a look at where things are
going wrong.
Also, I see that you're configuring the WSS4JInInterceptor and
WSS4JOutInterceptor manually, which is something you probably don't want
to do if you're using WS-Policy. You should instead be configuring the
security properties in the JAX-WS client element - see
http://cxf.apache.org/docs/ws-secureconversation.html for an example.
- Dennis
Dennis M. Sosnoski
Java Web Services Consulting <http://www.sosnoski.com/consult.html>
CXF and Web Services Security Training
<http://www.sosnoski.com/training.html>
Web Services Jump-Start <http://www.sosnoski.com/jumpstart.html>
On 07/31/2014 09:15 AM, Yassine, Ramzi wrote:
> Hey all,
>
> I am working with .Net web services that need to use the WS-SECURITY standards (WS-Policy, WS-SecureConversation, WS-ReliableMessaging).
>
> My environment
> =======================================
>
> - Oracle JSDK Java 6 Update 16
> - Apache CXF 3.0.1
> - Maven 3.0.4
>
> What is happening?
> =======================================
>
> - Generating the java stubs using wsdl2java (apache cxf).
> - We have a working certificate (PKCS12) that I know it works as we don't have an issue using it with jx-ws metro with wsit (we want to move to apache cxf as the support is lacking in Jx-ws and we have
> had other issues with it)
> - The current problem is I believe in the reliable messaging part (maybe)
> - In calling the .Net service:
>
> We see the create token request
> <soap:Header>
> <Action xmlns="http://www.w3.org/2005/08/addressing">http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT
> </Action>
> <MessageID xmlns="http://www.w3.org/2005/08/addressing">urn:uuid:cc07ca42-8183-4656-a073-98e91642f117
> </MessageID>...... This is the request to create the token
>
> With a successful response
> ....
> <s:Body>
> <t:RequestSecurityTokenResponse xmlns:t="http://schemas.xmlsoap.org/ws/2005/02/trust">
> <t:TokenType>http://schemas.xmlsoap.org/ws/2005/02/sc/sct</t:TokenType>
> <t:RequestedSecurityToken>
> <c:SecurityContextToken u:Id="uuid-7aa72faa-eb08-4fdd-a2d6-8c43fbfdb5d5-5"
> xmlns:c="http://schemas.xmlsoap.org/ws/2005/02/sc">
> <c:Identifier>urn:uuid:07701681-111c-41f7-8cc8-0f9b4211cb36</c:Identifier>
> </c:SecurityContextToken>.... The contains the token
>
>
> and then We send a create sequence
> <soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope">
> <soap:Header>
> <Action xmlns="http://www.w3.org/2005/08/addressing">
> http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence
> </Action>......
>
> Response: (FAIL)
> <s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:a="http://www.w3.org/2005/08/addressing">
> <s:Header>
> <a:Action s:mustUnderstand="1">http://www.w3.org/2005/08/addressing/soap/fault</a:Action>
> <a:RelatesTo>urn:uuid:4ff03c67-1b06-4b2c-8248-c0fa9ecaf6fd</a:RelatesTo>
> </s:Header>
> <s:Body>
> <s:Fault>
> <s:Code>
> <s:Value>s:Sender</s:Value>
> <s:Subcode>
> <s:Value xmlns:a="http://schemas.xmlsoap.org/ws/2005/02/sc">a:BadContextToken</s:Value>
> </s:Subcode>
> </s:Code>
> <s:Reason>
> <s:Text xml:lang="en-US">The message could not be processed. This is most likely because the action
> 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message
> contains an invalid or expired security context token or because there is a mismatch between
> bindings. The security context token would be invalid if the service aborted the channel due to
> inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive
> timeout on the service endpoint's binding.
> </s:Text>
> </s:Reason>
> </s:Fault>
> </s:Body>
> </s:Envelope>
>
>
>
> All Soap requests are signed, and we are OK in getting the token however the second call FAILS. Any help on this is highly appreciated
>
>
>
>
> Here is the client code
> =======================================
>
> System.setProperty("com.sun.xml.ws.transport.http.client.HttpTransportPipe.dump", "true");
> SpringBusFactory bf = new SpringBusFactory();
> try {
> File file = new File(this.getClass().getResource("/cxf.xml").toURI());
> URI busFile = file.toURI();
> Bus bus = bf.createBus(busFile.toString());
> BusFactory.setDefaultBus(bus);
>
> Authentication authentication = new Authentication();
> service = authentication.getAuthenticationEndpoint();
> ((BindingProvider) service).getRequestContext().put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, "https://someUrl/Authentication.svc"); //removed for privacy
>
> } catch (URISyntaxException e) {
> // TODO handle error
> e.printStackTrace();
> }
>
>
> The configuration
> =======================================
>
> The client properties file
> --------------------------
> org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin
> org.apache.ws.security.crypto.merlin.keystore.file=/keys/ourpkcs12_store
> org.apache.ws.security.crypto.merlin.keystore.password=somePasswrord
> org.apache.ws.security.crypto.merlin.keystore.type=PKCS12
> org.apache.ws.security.crypto.merlin.keystore.alias=someAlias
>
> The CXF file
> -------------
> <beans xmlns="http://www.springframework.org/schema/beans"
> xmlns:jaxws="http://cxf.apache.org/jaxws" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
> xmlns:http="http://cxf.apache.org/transports/http/configuration"
> xmlns:wsrm-policy="http://schemas.xmlsoap.org/ws/2005/02/rm/policy"
> xmlns:wsrm-mgr="http://cxf.apache.org/ws/rm/manager"
> xmlns:wsa="http://cxf.apache.org/ws/addressing"
> xmlns:cxf="http://cxf.apache.org/core"
>
> xsi:schemaLocation="http://cxf.apache.org/core
> http://cxf.apache.org/schemas/core.xsd
> http://www.springframework.org/schema/beans
> http://www.springframework.org/schema/beans/spring-beans.xsd
> http://cxf.apache.org/jaxws
> http://cxf.apache.org/schemas/jaxws.xsd
> http://cxf.apache.org/transports/http/configuration
> http://cxf.apache.org/schemas/configuration/http-conf.xsd
> http://schemas.xmlsoap.org/ws/2005/02/rm/policy
> http://schemas.xmlsoap.org/ws/2005/02/rm/wsrm-policy.xsd
> http://cxf.apache.org/ws/rm/manager
> http://cxf.apache.org/schemas/configuration/wsrm-manager.xsd">
>
> <bean id="logInBound" class="org.apache.cxf.interceptor.LoggingInInterceptor"/>
> <bean id="logOutBound" class="org.apache.cxf.interceptor.LoggingOutInterceptor"/>
> <jaxws:client name="{http://tempuri.org/}AuthenticationEndpoint" createdFromAPI="true"
> address="https://someWsdlUrl">
> <jaxws:properties>
> <entry key="ws-security.signature.properties" value="/client.properties"/>
> <entry key="ws-security.callback-handler" value="OurOwnPasswordCallBackForTheKeyStore"/>
> </jaxws:properties>
> <jaxws:inInterceptors>
> <ref bean="logInBound"/>
> <ref bean="inbound-security"/>
> </jaxws:inInterceptors>
> <jaxws:outInterceptors>
> <ref bean="logOutBound"/>
> <ref bean="outbound-security"/>
> </jaxws:outInterceptors>
> <jaxws:features>
> <wsa:addressing xmlns:wsa="http://cxf.apache.org/ws/addressing"/>
> <wsrm-mgr:reliableMessaging>
> <wsrm-policy:RMAssertion>
> <wsrm-policy:BaseRetransmissionInterval Milliseconds="10000"/>
> <wsrm-policy:AcknowledgementInterval Milliseconds="2000"/>
> </wsrm-policy:RMAssertion>
> <wsrm-mgr:destinationPolicy>
> <wsrm-mgr:acksPolicy intraMessageThreshold="0" />
> </wsrm-mgr:destinationPolicy>
> </wsrm-mgr:reliableMessaging>
> </jaxws:features>
> </jaxws:client>
> <!-- WSS4JOutInterceptor for signing outbound SOAP -->
> <bean class="org.apache.cxf.ws.security.wss4j.WSS4JOutInterceptor" id="outbound-security">
> <constructor-arg>
> <map>
> <entry key="action" value="Timestamp Signature"/>
> <entry key="user" value="someUser"/>
> <entry key="signatureUser" value="someUser"/>
> <entry key="signaturePropFile" value="/client.properties"/>
> <entry key="signatureKeyIdentifier" value="X509KeyIdentifier" />
> <entry key="passwordCallbackClass" value="OurOwnPasswordCallBackForTheKeyStore.java"/>
> <entry key="signatureParts"
> value="{Element}{http://schemas.xmlsoap.org/soap/envelope/}Body;{Element}{http://www.w3.org/2005/08/addressing}To;{Element}{http://www.w3.org/2005/08/addressing}From;;{Element}{http://www.w3.org/2005/08/addressing}FaultTo;{Element}{http://www.w3.org/2005/08/addressing}ReplyTo;{Element}{http://www.w3.org/2005/08/addressing}MessageID;{Element}{http://www.w3.org/2005/08/addressing}RelatesTo;{Element}{http://www.w3.org/2005/08/addressing}Action"/>
> </map>
> </constructor-arg>
> </bean>
>
> <!-- WSS4JInInterceptor for validating the signature of inbound
> SOAP -->
> <bean class="org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor"
> id="inbound-security">
> <constructor-arg>
> <map>
> <entry key="action" value="Timestamp Signature"/>
> <entry key="signaturePropFile" value="/client.properties"/>
> <entry key="passwordCallbackClass" value="OurOwnPasswordCallBackForTheKeyStore.java"/>
> </map>
> </constructor-arg>
> </bean>
> </beans>
>
>
> Trace logs on the .net side
> ===========================
> An error occurred while processing a message. The RM Destination requires the WS-SecureConversation protocol in the binding. This is likely caused by a binding mismatch.
>
>
> The logs and exception
> =======================
>
>
> Jul 30, 2014 2:04:39 PM org.apache.cxf.ws.security.wss4j.WSS4JInInterceptor handleMessage
> WARNING: Request does not contain Security header, but it's a fault.
> Jul 30, 2014 2:04:39 PM org.apache.cxf.ws.rm.Proxy invoke
> SEVERE: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
> org.apache.cxf.binding.soap.SoapFault: The message could not be processed. This is most likely because the action 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding.
> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.unmarshalFault(Soap12FaultInInterceptor.java:155)
> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:66)
> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:52)
> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
> at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:140)
> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:71)
> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
> at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1636)
> ......
> Jul 30, 2014 2:04:39 PM org.apache.cxf.phase.PhaseInterceptorChain doDefaultLogging
> org.apache.cxf.interceptor.Fault: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
> at org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMInterceptor.java:104)
> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
> .....
> at com.intellij.rt.execution.junit.JUnitStarter.main(JUnitStarter.java:65)
> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
> at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
> at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
> at java.lang.reflect.Method.invoke(Method.java:597)
> at com.intellij.rt.execution.application.AppMain.main(AppMain.java:120)
> Caused by: org.apache.cxf.ws.rm.RMException: Failed to send RM protocol message {http://docs.oasis-open.org/ws-rx/wsrm/200702}CreateSequence.
> at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:323)
> at org.apache.cxf.ws.rm.Proxy.createSequence(Proxy.java:199)
> at org.apache.cxf.ws.rm.RMManager.getSequence(RMManager.java:472)
> at org.apache.cxf.ws.rm.RMCaptureOutInterceptor.handle(RMCaptureOutInterceptor.java:156)
> at org.apache.cxf.ws.rm.AbstractRMInterceptor.handleMessage(AbstractRMInterceptor.java:83)
> ... 33 more
> Caused by: org.apache.cxf.binding.soap.SoapFault: The message could not be processed. This is most likely because the action 'http://docs.oasis-open.org/ws-rx/wsrm/200702/CreateSequence' is incorrect or because the message contains an invalid or expired security context token or because there is a mismatch between bindings. The security context token would be invalid if the service aborted the channel due to inactivity. To prevent the service from aborting idle sessions prematurely increase the Receive timeout on the service endpoint's binding.
> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.unmarshalFault(Soap12FaultInInterceptor.java:155)
> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:66)
> at org.apache.cxf.binding.soap.interceptor.Soap12FaultInInterceptor.handleMessage(Soap12FaultInInterceptor.java:52)
> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
> at org.apache.cxf.interceptor.AbstractFaultChainInitiatorObserver.onMessage(AbstractFaultChainInitiatorObserver.java:113)
> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:140)
> at org.apache.cxf.jaxws.handler.soap.SOAPHandlerInterceptor.handleMessage(SOAPHandlerInterceptor.java:71)
> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
> at org.apache.cxf.endpoint.ClientImpl.onMessage(ClientImpl.java:798)
> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponseInternal(HTTPConduit.java:1636)
> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.handleResponse(HTTPConduit.java:1525)
> at org.apache.cxf.transport.http.HTTPConduit$WrappedOutputStream.close(HTTPConduit.java:1330)
> at org.apache.cxf.io.CacheAndWriteOutputStream.postClose(CacheAndWriteOutputStream.java:56)
> at org.apache.cxf.io.CachedOutputStream.close(CachedOutputStream.java:215)
> at org.apache.cxf.transport.AbstractConduit.close(AbstractConduit.java:56)
> at org.apache.cxf.transport.http.HTTPConduit.close(HTTPConduit.java:638)
> at org.apache.cxf.interceptor.MessageSenderInterceptor$MessageSenderEndingInterceptor.handleMessage(MessageSenderInterceptor.java:62)
> at org.apache.cxf.phase.PhaseInterceptorChain.doIntercept(PhaseInterceptorChain.java:307)
> at org.apache.cxf.endpoint.ClientImpl.doInvoke(ClientImpl.java:514)
> at org.apache.cxf.endpoint.ClientImpl.invoke(ClientImpl.java:423)
> at org.apache.cxf.ws.rm.Proxy.invoke(Proxy.java:313)
> All information in this message is confidential and may be legally privileged. Only intended recipients are authorized to use it.
>