Reputation: 430
Which Property should I use when Sending Additional information in a RequestSecurityToken (RST)
There are a couple of properties that seem to allow this:
Properties (which is a Dictionaty) AdditionalContext and Context...
I cannot find any guidelines as to which would be most appropriate to use...
I basically need the requestor of the token to provide me with a "External User Id" and the STS I am building will include that as a claim in the response (RSTR).
Upvotes: 0
Views: 163
Answers (2)
Reputation: 147
You must have noticed that manipulating RequestSecurityToken.Properties requires custom WSTrust13ResponseSerializer and WSTrust13RequestSerializer classes to be implemented.
Afterwards you should assign these custom classes to SecurityTokenServiceConfiguration class.
Upvotes: 0
Reputation: 18492
I would use the .Claims property - this passes in the requested claims.
Add the "external user id" claim here to indicate to the STS that you need this claim in the RSTR.
Upvotes: 1
Related Questions
- Custom attributes in Saml2AuthnRequest and Saml2AuthnResponse using itfoxtec-identity-saml2 library
- RequestSecurityToken from STS and post it to my website
- SAML Request Attributes In AuthnRequest
- Saml Authentication Request Protocol Id
- Add Header to WCF RequestSecurityToken Message
- NameID , Assertion Attributes - Which one should I use and what they mean
- How to get RequestSecurityToken.AppliesTo from a custom SecurityTokenHandler
- SAML token size and REST
- Are attributes allowed in a SAML authentication request?
- Need to pass additional value to UserNameSecurityToken in STS from client application