Stack Overflow
Stack Overflow

Questions tagged [sts-securitytokenservice]

Security Token Service. A web service where a user (or client software) presents some form of credentials (e.g., username/password), and if valid the result is a 'security token' that can be used to access a web application or web service. Often used for implementing single sign-on (SSO).

Security Token Service: A web service where a user (or client software) presents some form of credentials (e.g., username/password), and if valid the result is a 'security token' that can be used to access a web application or web service. Often used for implementing single sign-on (SSO).

167 questions
3
votes
1 answer

How do I cause SecurityTokenServiceConfiguration to load configuration information from the app.config?

I am creating an STS with the WIF framework included in .NET 4.5. I am self-hosting this STS (for now), using the WSTrustServiceHost class. In order to do that, I am doing the following: var conf = new SecurityTokenServiceConfiguration("isser name…
Mark
  • 11,257
  • 11
  • 61
  • 97
3
votes
3 answers

Is a Security Token Service required

We looked at Identity Server and Starter STS seems large to serve a few encrypted claims. So coming to the question Is a STS required or mandatory to Federate with ADFS 2.0 We opted for Identity Server since ADFS 2.0 does not support other data…
Deeptechtons
  • 10,945
  • 27
  • 96
  • 178
3
votes
1 answer

How do I return multiple identities in a token with Thinktecture.IdentityServer.45?

In the Thinktecture.IdentityModel.45 library, I can get a Microsoft.IdentityModel.Claims.ClaimsIdentityCollection by executing something like this: Dim handler = New JsonWebTokenHandler() handler.Configuration = config ' set elsewhere Dim…
John Jelinek
  • 831
  • 9
  • 23
3
votes
2 answers

How to connect to CRM using SDK (claims based authentication and custom STS)

I configured claims based authentication on my CRM instance. I'm using custom STS (Example available here) Now I want to access to web services from some test application. Does anyone have some example for this? I tried with same code for connection…
lazarus
  • 1,997
  • 3
  • 26
  • 44
3
votes
1 answer

Service Stack API and ThinkTecture.IdentityServer

Our team is developing our first web api and using Service Stack to expose our REST services. We know that we need security so these API endpoints are not available to the world. We also know that we need to be able to filter the data returned by…
John Jelinek
  • 831
  • 9
  • 23
2
votes
1 answer

How to configure a JWT STS without IdentityServer or OAuth

I want to build a JWT Security Token Service(.net core 2+) to provide authentication and authorization to many APIs(.net core 2+) without using IdentityServer or OAuth because I want no redirections. The "JWT Authenticator" is working fine and has…
Talles Santana
  • 53
  • 1
  • 7
2
votes
2 answers

WIF STS ID3242: The security token could not be authenticated or authorized

I'm getting the following error in my client application when it tries to authenticate to my service: ID3242: The security token could not be authenticated or authorized Here is the configuration of the client:
Mimere
  • 763
  • 2
  • 10
  • 15
2
votes
3 answers

Configuring Windows Identity Foundation from code

I'm experimenting with "configuration-less WIF", where I want to accept a SAML2 token that is generated by Windows Azure's AppFabric STS. What I'm doing is parsing checking the current request for token information, like so: if…
maartenba
  • 3,344
  • 18
  • 31
2
votes
2 answers

Secure WCF Services using WIF/STS - decorate methods with required claims?

I am looking at securing some WCF services using WIF, and have read within the Identity Training Kit from Microsoft, within exercise 1, "Furthermore, you can expect developers to assign conditions via Code Access Security style calls (i.e.…
hitch
  • 899
  • 1
  • 11
  • 26
2
votes
0 answers

Security in Webservice without login credentials

I'm development a SOAP web service version 1.1 in Java. I have the following situation: there's a secured channel with ssh; customers don't have login credentials (they don't have username and password); when a customer opens an account is…
zarask
  • 21
  • 2
2
votes
1 answer

New-SPTrustedIdentityTokenIssuer throws error

I am trying to add a new trust token issuer to Sharepoint 2010, however New-SPTrustedIdentityTokenIssuer throws: Exception has been thrown by the target of invocation. CategoryInfo: InvalidData.... Any ideas why I may be getting this error? The…
VolkanUzun
  • 188
  • 2
  • 11
2
votes
1 answer

Problems using net.tcp for STS

I keep on getting the following error when I try to access a WCF endpoint with an STS reference... Incoming policy failed validation. No valid claim elements were found in the policy XML. Below are the web configs for the STS and WCF web…
Jonathan
  • 21
  • 3
2
votes
2 answers

Where Federation authentication token is saved [WIF STS]?

While i started to explore WIF, i have a doubt on the following: In the Windows Identification Foundation[WIF],looking on to Security Token Service[STS], i wish to know where the federation authentication token is being saved? I think its in browser…
Googler
  • 525
  • 3
  • 12
  • 30
2
votes
1 answer

Is there a WSO2 IS service to validate a SAML token generated from wso2carbon-sts

I referred to the below link to generate a SAML token from SOAP UI. But there is no service exposed in IS to validate a SAML token. http://charithaka.blogspot.ae/2013/07/broker-trust-relationships-with-wso2.html SAML Sample request in SOAP UI RST…
Deepak D
  • 23
  • 4
2
votes
1 answer

CryptographicException KeySet does not exists

I am using Thinktecture Identity server and running it in azure. The issue I am having is that sometimes when I read the Federation metadata XML file or while signing in I get this Keyset does not exists CryptoGraphic exception . Now i know these…
sp9
  • 755
  • 3
  • 11
  • 22
1 2
3
11 12