none
Adding to roles SAML token

    Question

  • I created STS service for creating SAML tokens with custom authorization policy which goes through roles for windows user and added it to custom principal. How do we add this to SAML tokens to include roles or custom principal.


    ajit
    Friday, December 31, 2010 1:33 PM

Answers

All replies

  • I figured how to do this we can add claim by creating role type with Possess property. But is it possible to add Custom Object to ClaimSet instead of string?
    ajit
    Friday, December 31, 2010 2:37 PM
  • We cannot have resource type other then string in SAML . Is there are work around to have non primitive type in SAML?

     

     

     

    public SamlAttribute(Claim claim)

    {

     

     

    if (claim == null)

     

     

    throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull("claim");

     

     

     

    if (!(claim.Resource is String))

     

     

    throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgument(SR.GetString(SR.SamlAttributeClaimResourceShouldBeAString));

     

    }


    ajit

    Friday, December 31, 2010 2:41 PM
  • Regarding non-string (Complex types). Have you seen
    http://social.msdn.microsoft.com/Forums/en/Geneva/thread/a11365c2-9b44-49db-97f2-50c30adff14d 

    Paul Lemmers

    • Marked as answer by chintapali Tuesday, January 04, 2011 6:52 PM
    Monday, January 03, 2011 10:07 PM