---
schema-version: v1.2.8
id: OASISXACML-SAML-v2.0-CS02
title:
- content: XACML SAML Profile Version 2.0
  language:
  - en
  script:
  - Latn
  format: text/plain
  type: main
link:
- content: http://docs.oasis-open.org/xacml/xacml-saml-profile/v2.0/cs02/xacml-saml-profile-v2.0-cs02.html
  type: src
- content: http://docs.oasis-open.org/xacml/xacml-saml-profile/v2.0/cs02/xacml-saml-profile-v2.0-cs02.pdf
  type: pdf
- content: http://docs.oasis-open.org/xacml/xacml-saml-profile/v2.0/cs02/xacml-saml-profile-v2.0-cs02.doc
  type: doc
type: standard
docid:
- id: OASIS XACML-SAML-v2.0-CS02
  type: OASIS
  primary: true
docnumber: XACML-SAML-v2.0-CS02
date:
- type: issued
  value: '2014-08-19'
contributor:
- organization:
    name:
    - content: OASIS
    contact:
    - uri: https://www.oasis-open.org/
  role:
  - description:
    - content: Standards Development Organization
    type: authorizer
  - type: publisher
- organization:
    name:
    - content: OASIS eXtensible Access Control Markup Language (XACML) TC
    contact:
    - uri: https://www.oasis-open.org/committees/xacml/
  role:
  - description:
    - content: Committee
    type: authorizer
- person:
    name:
      given:
        forename:
        - content: Bill
          language:
          - en
          script:
          - Latn
      surname:
        content: Parducci
        language:
        - en
        script:
        - Latn
    contact:
    - email: bill@parducci.net
  role:
  - description:
    - content: Chair
    type: editor
- person:
    name:
      given:
        forename:
        - content: Hal
          language:
          - en
          script:
          - Latn
      surname:
        content: Lockhart
        language:
        - en
        script:
        - Latn
    affiliation:
    - organization:
        name:
        - content: Oracle
        contact:
        - uri: http://www.oracle.com/
    contact:
    - email: hal.lockhart@oracle.com
  role:
  - description:
    - content: Chair
    type: editor
- person:
    name:
      given:
        forename:
        - content: Erik
          language:
          - en
          script:
          - Latn
      surname:
        content: Rissanen
        language:
        - en
        script:
        - Latn
    affiliation:
    - organization:
        name:
        - content: Axiomatics
        contact:
        - uri: http://www.axiomatics.com/
    contact:
    - email: erik@axiomatics.com
  role:
  - type: editor
language:
- en
script:
- Latn
abstract:
- content: |-
    Defines a profile for the integration of the OASIS Security Assertion Markup Language (SAML) Version 2.0 with all versions of XACML.  SAML 2.0 complements XACML functionality in many ways, so a number of somewhat independent functions are described in this profile: 1) use of SAML 2.0 Attribute Assertions with XACML, including the use of SAML Attribute Assertions in a SOAP Header to convey Attributes that can be consumed by an XACML PDP 2) use of SAML to carry XACML authorization decisions, authorization decision queries, and authorization decision responses 3) use of SAML to carry XACML policies, policy queries, and policy query responses 4) use of XACML authorization decisions or policies as Advice in SAML Assertions 5) use of XACML responses in SAML Assertions as authorization tokens.
    Particular implementations may provide only a subset of these functions.
  language:
  - en
  script:
  - Latn
  format: text/plain
doctype:
  type: specification
editorialgroup:
- name: OASIS eXtensible Access Control Markup Language (XACML) TC
ext:
  schema-version: v1.0.1
technology_area:
- Privacy/Identity
- Security