Stack Overflow
Stack Overflow

Questions tagged [ws-trust]

WS-Trust is a WS-* specification and OASIS standard that provides extensions to WS-Security

WS-Trust is a WS-* specification and OASIS standard that provides extensions to WS-Security, specifically dealing with the issuing, renewing, and validating of security tokens, as well as with ways to establish, assess the presence of, and broker trust relationships between participants in a secure message exchange.

WS-Trust defines a number of new elements, concepts and artifacts in support of that goal, including:

  • the concept of a Security Token Service (STS) - a web service that issues security tokens as defined in the WS-Security specification.
  • the formats of the messages used to request security tokens and the
    responses to those messages.
  • mechanisms for key exchange

http://en.wikipedia.org/wiki/WS-Trust

94 questions
2
votes
0 answers

Specifying the default WS Trust credentials in web.config

I have a custom STS implemented with WIF. My WS-Trust services are using these configurations:
Pedro
  • 1,134
  • 11
  • 26
1
vote
1 answer

WCF Service TLS handshake using message security

I'm trying to implement a custom WCF service client. Server uses wsHttpBinding and message security with no client credentials. I have to programically form a proper soap envelope to begin TLS handshake. I've captured initial request from standard…
marooou
  • 221
  • 2
  • 9
1
vote
0 answers

secondaryparameters in RST to WSO2 Identity Server ignored

I have to write a .NET WCF Service which relies on SAML2 Tokens issued by WSO2 Identity Server. It is afforded that everything from wst:secondaryparameters (eg. Claims) is validated by the WSO2 Security Token Service. I'm not able to do this,…
joker1025
  • 11
  • 1
1
vote
1 answer

SAML authentication with client certificate but without user interaction using ITfoxtec.Identity.Saml2

I need to call a SOAP webservice using SAML authentication. They expect the saml token as part of the SOAP request(This should not be a problem). The actual authentication on the IDP must be done using a client certificate (private key), but…
Manuel
  • 1,985
  • 3
  • 31
  • 51
1
vote
2 answers

What are the security implications of establishSecurityContext="False" and negotiateServiceCredential="False"

We've set establishSecurityContext="False" and negotiateServiceCredential="False" on a wsHttpBinding. In a setup where every single web service call involves connecting and disconnecting, this reduces the number of requests per web service call from…
Nicholas Hill
  • 306
  • 2
  • 18
1
vote
2 answers

Parse and verify a WS Trust XML Token

I have a webservice written in c#/.NET that redirects unauthenticated users to a WS Federation identity provider, which then redirects back to my webservice with a SAML token which has the roles of that user. This is as per the passive WS federation…
Nick
  • 920
  • 1
  • 7
  • 21
1
vote
1 answer

Verify ADFS account active C#

I want to check if my ADFS account is still active in C#. I request an RST token which I wanted to use to issue a new token and if this fails I want to display a message that their account it disabled. The problem is that if I request a…
Joey
  • 152
  • 3
  • 14
1
vote
0 answers

System.IdentityModel.Protocols.WSTrust specify BinarySecurityToken in RequestSecurityToken object

I'm trying to use WStrust built into .NET to make a SOAP request against an STS. The thing is that the STS wants a BinarySecurityToken with an arbitrary string put into the token. Here's the .NET code I'm using: RequestSecurityToken rst = new…
Corez
  • 314
  • 3
  • 18
1
vote
3 answers

Requesting a SAML 2.0 security token from a WS-Trust STS using WIF 4.5

I am able to request a SAML 1.1 token using by specifying TokenType=SecurityTokenTypes.Saml in the RequestSecurityToken message. I am able to convert this to a ClaimsPrincipal and view the claims. However, when I want to request a SAML 2.0 token by…
Jeffrey
  • 509
  • 4
  • 11
1
vote
0 answers

Calling WS-Trust secured service from WSO2 ESB

I'm looking for help on how to call WS-Trust secured SOAP service from WSO2 ESB. The idea is to create a non-secure proxy-service which would call WS-Trust secured back-end service, so our SOAP clients wouldn't have to worry about…
JPDev
  • 11
  • 3
1
vote
0 answers

Requesting JWT from ADFS 2016 using custom attribute

We are looking into a way to request a JWT token from ADFS 2016 via webservice call by sending a user UID, which is stored in a database or in AD LDS. The token should contain the full domain username as a claim. A C# service would request the token…
Thomas U.
  • 41
  • 1
  • 5
1
vote
1 answer

Call WCF service with issued token

I attempt the following: A WCF client calls a STS and gets SAML assertion The client calls a service using the SAML assertion Now I have implemented the scenario above as three LinqPad scripts: client.linq, sts.linq (self hosted WCF service) and…
codeape
  • 97,830
  • 24
  • 159
  • 188
1
vote
1 answer

How to use samel 2 token to authenticate with WEB API 2016 CRM service

I have successfully got a security token (samel2.0) by comply to the ws-trust specification. What I cannot continue how can I use this token to access my service (CRM 2016 web api)? Here's the token I have got:
M.Abulsoud
  • 989
  • 7
  • 23
1
vote
0 answers

How to use issuedtokenmixedasymmetricbasic256sha256 endpoint of ADFS?

I've got 2 Relying Party Trusts (App1, App2) configured in ADFS, after the user's authentication following the SAML Web flow, finally App1 got a SAML Token: SamlToken1. The current situation is, the user's browser cannot visit App2 due to a…
Liu Xingnan
  • 51
  • 6
1
vote
1 answer

Getting a Security Token for Azure Pack in Java Using Apache CXF

I am trying to write code in Java that can obtain a Security Token from the STS for Azure Pack, which I can then use to authenticate calls to the Azure Pack APIs. Here is example code that Microsoft provides (which works) for obtaining this token…
warble
  • 11
  • 2
1 2
3
4 5 6 7