<localIssuer>

  • Article

Specifies the address and binding of the local issuer to be used to obtain a security token.

Schema Hierarchy

<system.serviceModel>
  <behaviors>
    <endpointBehaviors>
      <behavior> of <endpointBehaviors>
        <clientCredentials>
          <issuedToken>
            <localIssuer>

Syntax

<localIssuer address="string"
      binding="string"
      bindingConfiguration="string" />

Attributes and Elements

The following sections describe attributes, child elements, and parent elements

Attributes

Attribute Description

address

Required string. Specifies the URI of the local issuer.

binding

Optional string. One of the system-provided bindings. For a list, see System-Provided Bindings.

bindingConfiguration

Optional string. Specifies a binding configuration found in the configuration file.

Child Elements

Element Description

<identity>

Specifies identity information for the local issuer.

<headers> element

A collection of address headers that are required in order to correctly address the local issuer. You can use the add keyword to add a header to this collection.

Parent Elements

Element Description

<issuedToken>

Specifies a custom token used to authenticate a client to a service.

Remarks

When obtaining an issued token from a Security Token Service (STS), the client application must be configured with the address and binding to use to communicate with the STS. When the WSFederationHttpBinding does not supply a URL for the security token service, or when the issuer address of a federated binding is https://schemas.microsoft.com/2005/12/ServiceModel/Addressing/Anonymous or null, the client's Windows Communication Foundation (WCF) channel uses the values specified by address and binding to communicate with the STS to obtain the issued token. For more information on configuring a local issuer, see How To: Configure a Local Issuer.

Example

The following example sets the address, binding, and bindingConfiguration attributes of a localIssuer element.

<system.serviceModel>
 <behaviors>
 <endpointBehaviors>
  <behavior name="MyEndpointBehavior">
   <clientCredentials>
    <issuedToken cacheIssuedTokens="false" 
                 defaultKeyEntropyMode="ClientEntropy">
     <localIssuer address="net.tcp://cohowinery/tokens" 
                  binding="netTcpBinding"
                  bindingConfiguration="myTcpBindingConfig" />
    </issuedToken>
   </clientCredentials>
  </behavior>
  </endpointBehaviors>
  </behaviors>
</system.serviceModel>

See Also

Reference

LocalIssuer
IssuedTokenParametersEndpointAddressElement
IssuedTokenClientCredential

Other Resources

Security Behaviors in WCF
How To: Configure a Local Issuer
Specifying Service Identity
Security Behaviors in Windows Communication Foundation
Federation and SAML
Securing Services and Clients
Securing Clients
How To: Create a Federated Client
Federation and Issued Tokens