Hi,
I am trying to achieve the following:
1. Client calls an STS.
2. STS returns a saml token
3. The client calls any service providing the token.
For steps 1 and 2, I use regular WCF, nothing special, just serializing the saml token returned from the STS.
For step 3 I use client/service credentials, token manager, token serializer, authorization prolicy etc...
With step 3 I am trying to achieve:
1. The client sends the token he got from the STS
2. The service gets the token via the authorization context
What is the best way to achieve this?
One more thing: How do I apply the token parameter to an existing binding using the config? In other words, how do I make the following code but via the config (I can't use coding):
HttpTransportBindingElement httpTransport = new HttpTransportBindingElement();
SymmetricSecurityBindingElement messageSecurity = new SymmetricSecurityBindingElement();
messageSecurity.EndpointSupportingTokenParameters.SignedEncrypted.Add(new CreditCardTokenParameters());
X509SecurityTokenParameters x509ProtectionParameters = new X509SecurityTokenParameters();
x509ProtectionParameters.InclusionMode = SecurityTokenInclusionMode.Never;
messageSecurity.ProtectionTokenParameters = x509ProtectionParameters;
return new CustomBinding(messageSecurity, httpTransport);
I am using .NET 3.5, cannot use WIF. Unfortunately, I cannot use federation, this is not an option as the service is peer-to-peer and the federation bindings are client server.