initial commit

[BroadWorks-OCI.git] / share / OCISchemaAS / OCISchemaLogin.xsd

<?xml version="1.0" encoding="UTF-8"?>\r
\r
<!-- ********************************************************************** -->\r
<!-- Copyright (c) 2000-2012 BroadSoft, Inc.  All rights reserved.          -->\r
<!-- ********************************************************************** -->\r
<!-- O C I   X M L   S C H E M A  :  L O G I N  P A R T                     -->\r
<!--                                                                        -->\r
<!-- This file defines the XML Schema for the BroadSoft Application Server  -->\r
<!-- Open Client Interface (OCI).                                           -->\r
<!-- ********************************************************************** -->\r
\r
<xs:schema xmlns:xs             = "http://www.w3.org/2001/XMLSchema"\r
           xmlns:core           = "C"\r
           xmlns                = ""\r
           attributeFormDefault = "qualified"\r
           elementFormDefault   = "qualified">\r
  \r
  <xs:import namespace      = "C"\r
             schemaLocation = "OCISchemaBASE.xsd"/>\r
  \r
  <xs:include schemaLocation="OCISchemaDataTypes.xsd"/>\r
  \r
  <!-- ********************************************************************************** -->\r
  <!-- L O G I N  P A R T    R E Q U E S T S  A N D  R E S P O N S E S                    -->\r
  <!-- ********************************************************************************** -->\r
  <!--\r
  Requests and responses are listed here in alphabetical order.\r
  The non-primitive attributes inside the commands are defined in another\r
  section of the schema.\r
\r
  Requests in this schema file:\r
    AuthenticationRequest    \r
    AuthenticationVerifyRequest14sp8    \r
    AvailabilityTestRequest    \r
    DeviceManagementFileAuthLocationGetRequest21    \r
    DeviceManagementPutFileRequest    \r
    ExternalAuthenticationAuthorizeTokenRequest    \r
    ExternalAuthenticationCreateLoginTokenRequest    \r
    LoginRequest14sp4    \r
    LogoutRequest    \r
    PasswordModifyRequest    \r
    PrimaryInfoGetRequest    \r
    PublicClusterGetFullyQualifiedDomainNameRequest    \r
    TutorialFlagGetRequest    \r
    TutorialFlagModifyRequest    \r
    UserGetLoginInfoRequest    \r
    UserSingleSignOnCreateDeviceTokenRequest    \r
    VerifySessionIsValidRequest    \r
    \r
  --> \r
  \r
  <xs:complexType name="AuthenticationRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        AuthenticationRequest is 1st stage of the 2 stage OCI login process.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="AuthenticationResponse">\r
    <xs:annotation>\r
      <xs:documentation>\r
        AuthenticationRequest/Response is 1st stage of the 2 stage OCI login process.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="nonce" type="xs:string"/>\r
          <xs:element name="passwordAlgorithm" type="DigitalSignatureAlgorithm"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="AuthenticationVerifyRequest14sp8">\r
    <xs:annotation>\r
      <xs:documentation>\r
        AuthenticationVerifyRequest14sp8 is used to authenticate a user either by userId/password, userId/sip username/sip password,\r
        dn/passcode or a token previously authorized with the ExternalAuthenticationAuthorizeTokenRequest. \r
        The phone number may be any DN associated with a user.\r
        The response is a AuthenticationVerifyResponse14sp8 or an ErrorResponse\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:choice>\r
          <xs:sequence>\r
            <xs:element name="userId" type="UserId"/>\r
            <xs:element name="password" type="Password"/>\r
          </xs:sequence>\r
          <xs:sequence>\r
            <xs:element name="phoneNumber" type="DN"/>\r
            <xs:element name="passcode" type="Passcode"/>\r
          </xs:sequence>\r
          <xs:sequence>\r
            <xs:element name="loginToken" type="LoginToken"/>\r
          </xs:sequence>\r
          <xs:sequence>\r
            <xs:element name="sipAuthenticationUserName" type="SIPAuthenticationUserName"/>\r
            <xs:element name="sipAuthenticationPassword" type="SIPAuthenticationPassword"/>\r
            <xs:element name="userId" type="UserId"/>\r
          </xs:sequence>\r
        </xs:choice>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="AuthenticationVerifyResponse14sp8">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Response to AuthenticationVerifyRequest14sp8\r
        If a phoneNumber is returned, it will be the primay DN of the user\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="loginType" type="LoginType"/>\r
          <xs:element name="locale" type="OCILocale"/>\r
          <xs:element name="encoding" type="Encoding"/>\r
          <xs:element name="groupId" type="GroupId" minOccurs="0"/>\r
          <xs:element name="serviceProviderId" type="ServiceProviderId" minOccurs="0"/>\r
          <xs:element name="isEnterprise" type="xs:boolean"/>\r
          <xs:element name="passwordExpiresDays" type="xs:int" minOccurs="0"/>\r
          <xs:element name="lastName" type="LastName" minOccurs="0"/>\r
          <xs:element name="firstName" type="FirstName" minOccurs="0"/>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="phoneNumber" type="DN" minOccurs="0"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="AvailabilityTestRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        AvailabilityTestRequest is for high-availability support. Response is either SuccessResponse\r
        or ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence/>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="DeviceManagementFileAuthLocationGetRequest21">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Get the address and credentials of the File Repository hosting the requested access device file. \r
        Also get the file name and path on the File Repository. \r
        The response is either DeviceManagementFileAuthLocationGetResponse21 or ErrorResponse.\r
        The following elements are only used in AS data mode and will fail in HSS data mode:\r
          deviceToken\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="deviceAccessProtocol" type="DeviceAccessProtocol16"/>\r
          <xs:element name="deviceAccessMethod" type="FileRepositoryAccessType"/>\r
          <xs:element name="deviceAccessURI" type="DeviceManagementAccessURI"/>\r
          <xs:element name="accessDeviceUserName" type="UserId" minOccurs="0"/>\r
          <xs:element name="accessDeviceUserPassword" type="Password" minOccurs="0"/>\r
          <xs:element name="deviceToken" type="LoginToken" minOccurs="0"/>\r
          <xs:element name="signedPassword" type="SignedPassword" minOccurs="0"/>\r
          <xs:element name="macAddress" type="AccessDeviceMACAddress" minOccurs="0"/>\r
          <xs:element name="realmName" type="RealmName" minOccurs="0"/>\r
          <xs:element name="digestHa1Complement" type="DigestHa1Complement" minOccurs="0"/>\r
          <xs:element name="digestResponse" type="Md5Hash" minOccurs="0"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="DeviceManagementFileAuthLocationGetResponse21">\r
    <xs:annotation>\r
      <xs:documentation>\r
        This is a response to DeviceManagementFileAuthLocationGetRequest21.\r
        Return the address and credentials of the File Repository hosting the requested access device file. \r
        Also return the file name and path on the File Repository.\r
        Also returns the status of the file authentication.        \r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="status" type="DeviceManagementFileAuthenticationStatus" minOccurs="0"/>\r
          <xs:element name="fileRepositoryUserName" type="FileRepositoryUserName"/>\r
          <xs:element name="fileRepositoryPassword" type="FileRepositoryUserPassword"/>\r
          <xs:element name="netAddress" type="NetAddress"/>\r
          <xs:element name="remoteFileFormat" type="DeviceManagementFileFormat"/>\r
          <xs:element name="portNumber" type="Port" minOccurs="0"/>\r
          <xs:element name="rootDirectory" type="CPEFileDirectory" minOccurs="0"/>\r
          <xs:element name="cpeFileDirectory" type="CPEFileDirectory" minOccurs="0"/>\r
          <xs:element name="secure" type="xs:boolean" minOccurs="0"/>\r
          <xs:element name="macInNonRequestURI" type="xs:boolean" minOccurs="0"/>\r
          <xs:element name="macFormatInNonRequestURI" type="DeviceManagementAccessURI" minOccurs="0"/>\r
          <xs:element name="useHttpDigestAuthentication" type="xs:boolean" minOccurs="0"/>\r
          <xs:element name="macBasedFileAuthentication" type="xs:boolean" minOccurs="0"/>\r
          <xs:element name="userNamePasswordFileAuthentication" type="xs:boolean" minOccurs="0"/>\r
          <xs:element name="completionNotification" type="xs:boolean" minOccurs="0"/>\r
          <xs:element name="fileCategory" type="DeviceManagementFileCategory" minOccurs="0"/>\r
          <xs:element name="enableCaching" type="xs:boolean" minOccurs="0"/>\r
          <xs:element name="notifyFileUpload" type="xs:boolean" minOccurs="0"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="DeviceManagementPutFileRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
          Informs BroadWorks that a file was uploaded to the repository. The response is always a SuccessResponse.\r
        </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="deviceAccessURI" type="DeviceManagementAccessURI"/>\r
          <xs:element name="ipAddress" type="NetAddress"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="ExternalAuthenticationAuthorizeTokenRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        This command is part of the Portal API.\r
        Sent when a Web or CLI user logs in using external authentication.\r
        The password must be hashed. The password hashing algorithm is:\r
        1) The message digest of the user's plain password is calculated using the SHA algorithm.\r
        2) For every four bits in the 160-bit digest, starting from the first bit, it is\r
           converted into a character in ASCII Hex format (0 through 9, a through f).\r
           The result is a 40-character string, for example, f7a9e24777ec23212c54d7a350bc5bea5477fdbb.\r
        3) The above string then is used to populate the password field in the request.\r
        The response is either SuccessResponse or ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="password" type="Password" minOccurs="0"/>\r
          <xs:element name="loginToken" type="LoginToken"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="ExternalAuthenticationCreateLoginTokenRequest">\r
    <xs:annotation>\r
      <xs:appinfo>\r
        <asDataModeSupported>true</asDataModeSupported>\r
        <hssDataModeSupported>false</hssDataModeSupported>\r
      </xs:appinfo>\r
      <xs:documentation>\r
        This command allows a BroadWorks or Third-Party Client Application to\r
        create a Single Sign-On token for a user.\r
        The response is either ExternalAuthenticationCreateLoginTokenResponse\r
        or ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="ExternalAuthenticationCreateLoginTokenResponse">\r
    <xs:annotation>\r
      <xs:appinfo>\r
        <asDataModeSupported>true</asDataModeSupported>\r
        <hssDataModeSupported>false</hssDataModeSupported>\r
      </xs:appinfo>\r
      <xs:documentation>\r
        Response to ExternalAuthenticationCreateLoginTokenRequest.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="loginToken" type="LoginToken"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="LoginRequest14sp4">\r
    <xs:annotation>\r
      <xs:documentation>\r
        LoginRequest14sp4 is 2nd stage of the 2 stage OCI login process.\r
        The signedPassword is not required for external authentication login from a trusted host (ACL).\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="signedPassword" type="SignedPassword" minOccurs="0"/>\r
          <xs:element name="plainTextPassword" type="Password" minOccurs="0"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="LoginResponse14sp4">\r
    <xs:annotation>\r
      <xs:documentation>\r
        LoginRequest14sp4/Response14sp4 is 2nd stage of the 2 stage OCI login process.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="loginType" type="LoginType"/>\r
          <xs:element name="locale" type="OCILocale"/>\r
          <xs:element name="encoding" type="Encoding"/>\r
          <xs:element name="groupId" type="GroupId" minOccurs="0"/>\r
          <xs:element name="serviceProviderId" type="ServiceProviderId" minOccurs="0"/>\r
          <xs:element name="isEnterprise" type="xs:boolean"/>\r
          <xs:element name="passwordExpiresDays" type="xs:int" minOccurs="0"/>\r
          <xs:element name="userDomain" type="NetAddress"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="LogoutRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        LogoutRequest is sent when an OCI user logs out or when connection is lost.\r
        This command can be sent either to the server, or to the client from OCS.\r
        Response is either SuccessResponse or ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="reason" type="LogoutRequestReason" minOccurs="0"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="PasswordModifyRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Modify the password for a user/administrator.\r
        When oldPassword is specified, password rule applies. If oldPassword in not specified,\r
        any password rule related to old password does not apply.        \r
        The response is either a SuccessResponse or an ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="oldPassword" type="Password" minOccurs="0"/>\r
          <xs:element name="newPassword" type="Password"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="PrimaryInfoGetRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Requests information about the primary server for high-availability support.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="isPrivate" type="xs:boolean">\r
            <xs:annotation>\r
              <xs:documentation>\r
                Dual homed side is private?\r
              </xs:documentation>\r
            </xs:annotation>\r
          </xs:element>\r
          <xs:element name="isAddressInfoRequested" type="xs:boolean">\r
            <xs:annotation>\r
              <xs:documentation>\r
                For optimization, we only get the hostname and addresses for primary if\r
                they are explicitly requested or if the current server is not the primary.\r
                So you might get back the list of server addresses even if you did not\r
                ask for the list if the request is not serviced by the primary server.\r
              </xs:documentation>\r
            </xs:annotation>\r
          </xs:element>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="PrimaryInfoGetResponse">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Information about the primary server in the high-availablity cluster.\r
        For optimization, we only get the hostname and addresses for primary if they are\r
        explicitly requested or if the current server is not the primary.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="isPrimary" type="xs:boolean">\r
            <xs:annotation>\r
              <xs:documentation>Is the server that processed this request the primary in the cluster?</xs:documentation>\r
            </xs:annotation>\r
          </xs:element>\r
          <xs:element name="hostnameForPrimary" type="NetAddress" minOccurs="0">\r
            <xs:annotation>\r
              <xs:documentation>Primary server's hostname.</xs:documentation>\r
            </xs:annotation>\r
          </xs:element>\r
          <xs:element name="addressForPrimary" type="NetAddress" minOccurs="0" maxOccurs="unbounded">\r
            <xs:annotation>\r
              <xs:documentation>List of addresses for primary server in cluster.</xs:documentation>\r
            </xs:annotation>\r
          </xs:element>\r
          <xs:element name="privateAddressForPrimary" type="NetAddress" minOccurs="0" maxOccurs="unbounded">\r
            <xs:annotation>\r
              <xs:documentation>List of private addresses for primary server in cluster.</xs:documentation>\r
            </xs:annotation>\r
          </xs:element>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="PublicClusterGetFullyQualifiedDomainNameRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Get the public cluster fully qualified domain name (FQDN).\r
        The response is either a PublicClusterGetFullyQualifiedDomainNameResponse\r
        or an ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence/>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="PublicClusterGetFullyQualifiedDomainNameResponse">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Response to PublicClusterGetFullyQualifiedDomainNameRequest.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="publicClusterFQDN" type="DomainName" minOccurs="0"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="TutorialFlagGetRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Get the tutorial flag setting for a user or admin.\r
        The response is either a TutorialFlagGetResponse or an ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="TutorialFlagGetResponse">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Response to the TutorialFlagGetRequest.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="enableTutorial" type="xs:boolean"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="TutorialFlagModifyRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Modify the tutorial flag setting for a user or admin.\r
        The response is either a SuccessResponse or an ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="enableTutorial" type="xs:boolean" minOccurs="0"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="UserGetLoginInfoRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        UserGetLoginInfoRequest is used to access login information for a user\r
        either by a userId or dn.  The phone number may be any\r
        DN associated with a user.\r
        The response is a UserGetLoginInfoResponse or an ErrorResponse\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:choice>\r
            <xs:element name="userId" type="UserId"/>\r
            <xs:element name="phoneNumber" type="DN"/>\r
          </xs:choice>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="UserGetLoginInfoResponse">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Response to UserGetLoginInfoRequest\r
        If a phoneNumber is returned, it will be the primay DN of the user\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="loginType" type="LoginType"/>\r
          <xs:element name="locale" type="OCILocale"/>\r
          <xs:element name="encoding" type="Encoding"/>\r
          <xs:element name="groupId" type="GroupId" minOccurs="0"/>\r
          <xs:element name="serviceProviderId" type="ServiceProviderId" minOccurs="0"/>\r
          <xs:element name="isEnterprise" type="xs:boolean"/>\r
          <xs:element name="passwordExpiresDays" type="xs:int" minOccurs="0"/>\r
          <xs:element name="lastName" type="LastName" minOccurs="0"/>\r
          <xs:element name="firstName" type="FirstName" minOccurs="0"/>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="phoneNumber" type="DN" minOccurs="0"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="UserSingleSignOnCreateDeviceTokenRequest">\r
    <xs:annotation>\r
      <xs:appinfo>\r
        <asDataModeSupported>true</asDataModeSupported>\r
        <hssDataModeSupported>false</hssDataModeSupported>\r
      </xs:appinfo>\r
      <xs:documentation>\r
        This command allows a BroadWorks or Third-Party Client Application to\r
        create a Single Sign-On token for a device of a user.\r
        The token is created only if:\r
        1. the specified user is the owner of a lineport on the specified device\r
           (including a trunk user on a trunk device).\r
        2. and, the specified device is not in locked state.\r
        3. and, the device type of the device does support Device Management.\r
        The response is either UserSingleSignOnCreateDeviceTokenResponse\r
        or ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence>\r
          <xs:element name="userId" type="UserId"/>\r
          <xs:element name="deviceLevel" type="AccessDeviceLevel"/>\r
          <xs:element name="deviceName" type="AccessDeviceName"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="UserSingleSignOnCreateDeviceTokenResponse">\r
    <xs:annotation>\r
      <xs:appinfo>\r
        <asDataModeSupported>true</asDataModeSupported>\r
        <hssDataModeSupported>false</hssDataModeSupported>\r
      </xs:appinfo>\r
      <xs:documentation>\r
        Response to UserSingleSignOnCreateDeviceTokenRequest.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIDataResponse">\r
        <xs:sequence>\r
          <xs:element name="deviceToken" type="LoginToken"/>\r
        </xs:sequence>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:complexType name="VerifySessionIsValidRequest">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Query the provisioning server to verify the session is authorized. Most\r
        applications should not need this command, because the provisioning server\r
        verifies the session is authorized for all commands.\r
        The response is either a SuccessResponse or an ErrorResponse.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:complexContent>\r
      <xs:extension base="core:OCIRequest">\r
        <xs:sequence/>\r
      </xs:extension>\r
    </xs:complexContent>\r
  </xs:complexType>    \r
    \r
  <xs:simpleType name="LogoutRequestReason">\r
    <xs:annotation>\r
      <xs:documentation>\r
        Logout request reason.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:restriction base="xs:token">\r
      <xs:enumeration value="Client Logout"/>\r
      <xs:enumeration value="Server Connection Failure"/>\r
      <xs:enumeration value="Open Client Server Forced Logout"/>\r
    </xs:restriction>\r
  </xs:simpleType>    \r
    \r
  <xs:simpleType name="DeviceManagementFileAuthenticationStatus">\r
    <xs:annotation>\r
      <xs:documentation>\r
        The status of a Device Management File Authentication.\r
        The possible values are:\r
          "Challenge" : authentication is required.\r
          "Need Digest Authntication" : client needs to use digest authentication.\r
          "Need User Password Authntication" : client needs to use user/pass authentication.\r
      </xs:documentation>\r
    </xs:annotation>\r
    <xs:restriction base="xs:token">\r
      <xs:enumeration value="Challenge"/>\r
      <xs:enumeration value="Need Digest Authentication"/>\r
      <xs:enumeration value="Need User Password Authentication"/>\r
    </xs:restriction>\r
  </xs:simpleType>    \r
    \r
</xs:schema>\r