Skip Navigation

Validate SSO Token

1.2.0
Session Management
SOAP API
Travel Agency
Airline Carrier

Not Signed In.

Looks like you may not have access to all of the resources and documentation for this page.
Please log-in or contact your support desk team if you believe you should have access.

The Validate SSO Token (SSO_ValidateTokenRQ) service is used to validate tokens (SAML2.0, Siteminder, OpenAM) to provide SSO capabilities.

Target Audience
Travel Agency
Airline Carrier
API Version
1.2.0
Authentication
Session Token
Service Action Code
SSO_ValidateTokenRQ

A token represents user identity. ValidateToken service check if token is valid and returns user attributes stored in this token.

Sample Request
<ValidateTokenRQ xmlns="http://webservices.sabre.com/sabreXML/sso/ssoaas/SSO_ValidateToken/1.2.0" version="1" applicationID="App1">
    <OpenAMToken stickyTokenName="amlbcookie" stickyTokenBody="2268335626.36895" name="iPlanetDirectoryPro">AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*</OpenAMToken>
</ValidateTokenRQ>
Sample Response
<ValidateTokenRS version="1.2.0" xmlns="http://webservices.sabre.com/sabreXML/sso/ssoaas/SSO_ValidateToken/1.2.0">
    <ResponseInfo isValid="true" code="0">Token is valid.</ResponseInfo>
    <OpenAMTokenInfo>
        <User username="ssoaas">
            <Attrs>
                <Attr key="uid">
                    <Val>ssoaasTest</Val>
                </Attr>
                <Attr key="sn">
                    <Val>test</Val>
                </Attr>
                <Attr key="userpassword">
                    <Val>{SSHA}9ZWiwsuWWjNhyAR0TqwB/ox8Q4FBzI58AGE05w==</Val>
                </Attr>
                <Attr key="tokenId">
                    <Val>AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*</Val>
                </Attr>
                <Attr key="cn">
                    <Val>SSO Services</Val>
                </Attr>
                <Attr key="givenname">
                    <Val>ssoaas</Val>
                </Attr>
                <Attr key="inetuserstatus">
                    <Val>Active</Val>
                </Attr>
                <Attr key="dn">
                    <Val>uid=ssoaasTest,ou=people,dc=opensso,dc=sabre.com</Val>
                </Attr>
                <Attr key="objectclass">
                    <Val>person</Val>
                    <Val>sunIdentityServerLibertyPPService</Val>
                    <Val>inetorgperson</Val>
                    <Val>sunFederationManagerDataStore</Val>
                    <Val>iPlanetPreferences</Val>
                    <Val>iplanet-am-auth-configuration-service</Val>
                    <Val>organizationalperson</Val>
                    <Val>sunFMSAML2NameIdentifier</Val>
                    <Val>inetuser</Val>
                    <Val>iplanet-am-managed-person</Val>
                    <Val>iplanet-am-user-service</Val>
                    <Val>sunAMAuthAccountLockout</Val>
                    <Val>top</Val>
                </Attr>
            </Attrs>
        </User>
        <Session id="AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*">
            <Valid/>
            <Duration>0</Duration>
        </Session>
    </OpenAMTokenInfo>
</ValidateTokenRS>