Redirect URL Questions

Mar 16, 2011 at 6:59 PM
Edited Mar 16, 2011 at 6:59 PM

I want to thank everyone who has had input on this project.  It has proved an invaluable resource for creating my own integration with our Java-based campus portal.  I'm curious about a couple of parameters in the URLs that are shown on the front page.

The value for "au.com.identityconcepts.windowslive.loginURLExchangeLabs" (the ultimate redirect URL) is identified as

https://login.live.com/ppsecure/post.srf?wa=wsignin1.0&rpsnv=10&ct=1217534617&rver=5.5.4177.0&wp=MBI_SSL&wreply=https:%2F%2Fexchangelabs.com%2Fowa%2F&lc=1033&exsvurl=1

Microsoft's documentation for the SSO toolkit identifies this template URL:

https://login.live.com/ppsecure/post.srf?wa=wsignin1.0&ct={0}&wp={1}&wreply=http{2}&lc=1033&id={3}&slt={4}

where the variables represented by integers 0 through 4 are replaced with the following data:

  1. Current time in epoch format 
  2. Destination AuthPolicy
  3. Destination URL (URL Encoded)
  4. Destination site ID
  5. SLT token

My questions are:

  1. How did you know the AuthPolicy was "MBI_SSL"?
  2. Where did you find the "rpsnv=10" parameter/value and what does it do?
  3. Where did you find the "rver=5.5.4177.0" parameter/value and what does it do?

Especially for 2 & 3, I don't notice a difference in behavior whether I include them or not, so it makes me wonder if the receiver is simply ignoring them, of if there is some subtle behavioral difference I'm missing.

Thanks in advance.