The Validate SSO Token (SSO_ValidateTokenRQ) service is used to validate tokens (SAML2.0, Siteminder, OpenAM) to provide SSO capabilities.
Target Audience
Travel Agency
Airline Carrier
API Version
1.2.0
Authentication
Session Token
Service Action Code
SSO_ValidateTokenRQ
A token represents user identity. ValidateToken service check if token is valid and returns user attributes stored in this token.
Sample Request
<ValidateTokenRQ xmlns="http://webservices.sabre.com/sabreXML/sso/ssoaas/SSO_ValidateToken/1.2.0" version="1" applicationID="App1">
<OpenAMToken stickyTokenName="amlbcookie" stickyTokenBody="2268335626.36895" name="iPlanetDirectoryPro">AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*</OpenAMToken>
</ValidateTokenRQ>
<OpenAMToken stickyTokenName="amlbcookie" stickyTokenBody="2268335626.36895" name="iPlanetDirectoryPro">AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*</OpenAMToken>
</ValidateTokenRQ>
Sample Response
<ValidateTokenRS version="1.2.0" xmlns="http://webservices.sabre.com/sabreXML/sso/ssoaas/SSO_ValidateToken/1.2.0">
<ResponseInfo isValid="true" code="0">Token is valid.</ResponseInfo>
<OpenAMTokenInfo>
<User username="ssoaas">
<Attrs>
<Attr key="uid">
<Val>ssoaasTest</Val>
</Attr>
<Attr key="sn">
<Val>test</Val>
</Attr>
<Attr key="userpassword">
<Val>{SSHA}9ZWiwsuWWjNhyAR0TqwB/ox8Q4FBzI58AGE05w==</Val>
</Attr>
<Attr key="tokenId">
<Val>AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*</Val>
</Attr>
<Attr key="cn">
<Val>SSO Services</Val>
</Attr>
<Attr key="givenname">
<Val>ssoaas</Val>
</Attr>
<Attr key="inetuserstatus">
<Val>Active</Val>
</Attr>
<Attr key="dn">
<Val>uid=ssoaasTest,ou=people,dc=opensso,dc=sabre.com</Val>
</Attr>
<Attr key="objectclass">
<Val>person</Val>
<Val>sunIdentityServerLibertyPPService</Val>
<Val>inetorgperson</Val>
<Val>sunFederationManagerDataStore</Val>
<Val>iPlanetPreferences</Val>
<Val>iplanet-am-auth-configuration-service</Val>
<Val>organizationalperson</Val>
<Val>sunFMSAML2NameIdentifier</Val>
<Val>inetuser</Val>
<Val>iplanet-am-managed-person</Val>
<Val>iplanet-am-user-service</Val>
<Val>sunAMAuthAccountLockout</Val>
<Val>top</Val>
</Attr>
</Attrs>
</User>
<Session id="AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*">
<Valid/>
<Duration>0</Duration>
</Session>
</OpenAMTokenInfo>
</ValidateTokenRS>
<ResponseInfo isValid="true" code="0">Token is valid.</ResponseInfo>
<OpenAMTokenInfo>
<User username="ssoaas">
<Attrs>
<Attr key="uid">
<Val>ssoaasTest</Val>
</Attr>
<Attr key="sn">
<Val>test</Val>
</Attr>
<Attr key="userpassword">
<Val>{SSHA}9ZWiwsuWWjNhyAR0TqwB/ox8Q4FBzI58AGE05w==</Val>
</Attr>
<Attr key="tokenId">
<Val>AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*</Val>
</Attr>
<Attr key="cn">
<Val>SSO Services</Val>
</Attr>
<Attr key="givenname">
<Val>ssoaas</Val>
</Attr>
<Attr key="inetuserstatus">
<Val>Active</Val>
</Attr>
<Attr key="dn">
<Val>uid=ssoaasTest,ou=people,dc=opensso,dc=sabre.com</Val>
</Attr>
<Attr key="objectclass">
<Val>person</Val>
<Val>sunIdentityServerLibertyPPService</Val>
<Val>inetorgperson</Val>
<Val>sunFederationManagerDataStore</Val>
<Val>iPlanetPreferences</Val>
<Val>iplanet-am-auth-configuration-service</Val>
<Val>organizationalperson</Val>
<Val>sunFMSAML2NameIdentifier</Val>
<Val>inetuser</Val>
<Val>iplanet-am-managed-person</Val>
<Val>iplanet-am-user-service</Val>
<Val>sunAMAuthAccountLockout</Val>
<Val>top</Val>
</Attr>
</Attrs>
</User>
<Session id="AQIC5wM2LY4Sfcy5DIxo7chFcBlgB8rS_tM0jAj7P0nSaf4.*AAJTSQACMDQAAlMxAAIwMw..*">
<Valid/>
<Duration>0</Duration>
</Session>
</OpenAMTokenInfo>
</ValidateTokenRS>