Export (0) Print
Expand All
Expand Minimize

Saml2SecurityTokenHandler.CreateConditions Method

.NET Framework 4.5

Creates the conditions for the assertion.

Namespace:  System.IdentityModel.Tokens
Assembly:  System.IdentityModel (in System.IdentityModel.dll)

protected virtual Saml2Conditions CreateConditions(
	Lifetime tokenLifetime,
	string relyingPartyAddress,
	SecurityTokenDescriptor tokenDescriptor
)

Parameters

tokenLifetime
Type: System.IdentityModel.Protocols.WSTrust.Lifetime

The lifetime of the token.

relyingPartyAddress
Type: System.String

The endpoint address for which the token is created. The address is modeled as an AudienceRestriction condition.

tokenDescriptor
Type: System.IdentityModel.Tokens.SecurityTokenDescriptor

The token descriptor.

Return Value

Type: System.IdentityModel.Tokens.Saml2Conditions
A Saml2Conditions object that contains the conditions for the assertion.

Generally, conditions should be included in assertions to limit the impact of misuse of the assertion. Specifying the NotBefore and NotOnOrAfter conditions can limit the period of vulnerability in the case of a compromised assertion. The AudienceRestrictionCondition can be used to explicitly state the intended relying party or parties of the assertion, which coupled with appropriate audience restriction enforcement at relying parties can help to mitigate spoofing attacks between relying parties.

The default implementation creates NotBefore and NotOnOrAfter conditions based on the Lifetime property of the tokenDescriptor. It will also generate an AudienceRestrictionCondition limiting consumption of the assertion to the AppliesToAddress property of the tokenDescriptor.

.NET Framework

Supported in: 4.5

Windows 8.1, Windows Server 2012 R2, Windows 8, Windows Server 2012, Windows 7, Windows Vista SP2, Windows Server 2008 (Server Core Role not supported), Windows Server 2008 R2 (Server Core Role supported with SP1 or later; Itanium not supported)

The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.

Show:
© 2014 Microsoft