How to create Custom SecurityToken on server side RRS feed

  • Question

  • How to create custom security token on server side? provide it to client from method call?
    Monday, January 3, 2011 7:00 PM


  • When using WSTrustChannelFactory from WIF you can include arbitrary information in the RST. There's also a sample in the SDK.

    If you wanna go the custom WCF service way - you have to populate a SecurityTokenDescriptor class and pass that to the SamlxxSecurityTokenHandler's CreateToken method.

    But i can tell you that this is not trivial - when you want to use the token for back-end WCF services you also have to deal with proof keys e.g.

    Dominick Baier | thinktecture | http://www.leastprivilege.com
    • Marked as answer by chintapali Tuesday, January 4, 2011 6:50 PM
    Tuesday, January 4, 2011 1:55 PM

All replies