Skip to main content

Validate SSO Token

1.2.0
Session Management
SOAP API

The Validate SSO Token (SSO_ValidateTokenRQ) service is used to validate tokens (SAML2.0, Siteminder, OpenAM) to provide SSO capabilities.

Target Audience
Travel Agency
Airline Carrier
Current Version
1.2.0
Authentication
Session Token
Service Action Code
SSO_ValidateTokenRQ

A token represents user identity. ValidateToken service check if token is valid and returns user attributes stored in this token.

Sample Request
<ValidateTokenRQ xmlns="http://webservices.sabre.com/sabreXML/sso/ssoaas/SSO_ValidateToken/1.2.0" version="1" applicationID="App1">
	<OpenAMToken stickyTokenName="amlbcookie" stickyTokenBody="2268335626.36895" name="iPlanetDirectoryPro">AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*</OpenAMToken>
</ValidateTokenRQ>
Sample Response
<ValidateTokenRS version="1.2.0" xmlns="http://webservices.sabre.com/sabreXML/sso/ssoaas/SSO_ValidateToken/1.2.0">
	<ResponseInfo isValid="true" code="0">Token is valid.</ResponseInfo>
	<OpenAMTokenInfo>
		<User username="ssoaas">
			<Attrs>
				<Attr key="uid">
					<Val>ssoaasTest</Val>
				</Attr>
				<Attr key="sn">
					<Val>test</Val>
				</Attr>
				<Attr key="userpassword">
					<Val>{SSHA}9ZWiwsuWWjNhyAR0TqwB/ox8Q4FBzI58AGE05w==</Val>
				</Attr>
				<Attr key="tokenId">
					<Val>AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*</Val>
				</Attr>
				<Attr key="cn">
					<Val>SSO Services</Val>
				</Attr>
				<Attr key="givenname">
					<Val>ssoaas</Val>
				</Attr>
				<Attr key="inetuserstatus">
					<Val>Active</Val>
				</Attr>
				<Attr key="dn">
					<Val>uid=ssoaasTest,ou=people,dc=opensso,dc=sabre.com</Val>
				</Attr>
				<Attr key="objectclass">
					<Val>person</Val>
					<Val>sunIdentityServerLibertyPPService</Val>
					<Val>inetorgperson</Val>
					<Val>sunFederationManagerDataStore</Val>
					<Val>iPlanetPreferences</Val>
					<Val>iplanet-am-auth-configuration-service</Val>
					<Val>organizationalperson</Val>
					<Val>sunFMSAML2NameIdentifier</Val>
					<Val>inetuser</Val>
					<Val>iplanet-am-managed-person</Val>
					<Val>iplanet-am-user-service</Val>
					<Val>sunAMAuthAccountLockout</Val>
					<Val>top</Val>
				</Attr>
			</Attrs>
		</User>
		<Session id="AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*">
			<Valid/>
			<Duration>0</Duration>
		</Session>
	</OpenAMTokenInfo>
</ValidateTokenRS>