X509SecurityTokenHandler Members

  • Article

[Starting with the .NET Framework 4.5, Windows Identity Foundation (WIF) has been fully integrated into the .NET Framework. The version of WIF addressed by this topic, WIF 3.5, is deprecated and should only be used when developing against the .NET Framework 3.5 SP1 or the .NET Framework 4. For more information about WIF in the .NET Framework 4.5, also known as WIF 4.5, see the Windows Identity Foundation documentation in the .NET Framework 4.5 Development Guide.]

SecurityTokenHandler for X509SecurityToken. By default, the handler will do chain-trust validation of the Certificate.

The following tables list the members exposed by the X509SecurityTokenHandler type.

Public Constructors

  Name Description
  X509SecurityTokenHandler Overloaded. Initizlizes a new instance of the X509SecurityTokenHandler class.

Top

Public Properties

  Name Description
public property CanValidateToken Overridden. Gets a boolean indicating if the handler can validate tokens. Returns true by default.
public property CanWriteToken Overridden. Gets a boolean indicating if the handler can write tokens. Returns true by default.
public property CertificateValidator Gets or sets the X509CeritificateValidator that is used by the current instance.
public property Configuration  Gets or sets the SecurityTokenHandlerConfiguration (Inherited from SecurityTokenHandler)
public property ContainingCollection  Gets or sets the SecurityTokenHandlerCollection that this SecurityTokenHandler is part of. This property should never be set directly. When the SecurityTokenHandler is added to a collection this property is automatically set. (Inherited from SecurityTokenHandler)
public property MapToWindows Gets/Sets a boolean indicating if the validating token should be mapped to a Windows account.
public property TokenType Overridden. Gets X509SecurityToken type.
public property UseWindowsTokenService Determines if the token handler will use the Windows Token Service (WTS) when performing S4U-based logon calls.
public property WriteXmlDSigDefinedClauseTypes Gets or Sets the value that defines if XmlDsig defined clause types are preferred. Supported XmlDSig defined SecurityKeyIdentifierClause types are, 1. X509IssuerSerial 2. X509SKI 3. X509Certificate

Top

Public Methods

(see also Protected Methods)

  Name Description
public method CanReadKeyIdentifierClause Overridden. Checks if the given reader is referring to a <ds:X509Data> element.
public method CanReadToken Overridden. Checks if the reader points to a X.509 Security Token as defined in WS-Security.
public method CanWriteKeyIdentifierClause Overridden. Checks if the given SecurityKeyIdentifierClause can be serialized by this handler. The supported SecurityKeyIdentifierClause are, 1. X509IssuerSerialKeyIdentifierClause 2. X509RawDataKeyIdentifierClause 3. X509SubjectKeyIdentifierClause
public method CreateSecurityTokenReference  Create the security token reference for tokens handled by this instance. (Inherited from SecurityTokenHandler)
public method CreateToken  Called by the STS to create a token given a token descriptor. (Inherited from SecurityTokenHandler)
public method Equals  (Inherited from Object)
public method GetHashCode  (Inherited from Object)
public method GetTokenTypeIdentifiers Overridden. Gets the X.509 Security Token Type defined in WS-Security X.509 Token profile.
public method GetType  (Inherited from Object)
public method ReadKeyIdentifierClause Overridden. Deserializes a SecurityKeyIdentifierClause referenced by the XmlReader.
public method ReadToken  Overloaded. (Inherited from SecurityTokenHandler)
public method ReadToken Overridden. Reads the X.509 Security token referenced by the XmlReader.
public method ToString  (Inherited from Object)
public method ValidateToken Overridden. Validates the given X509SecurityToken.
public method WriteKeyIdentifierClause Overridden. Serializes a given SecurityKeyIdentifierClause to the XmlWriter.
public method WriteToken Overridden. Writes the X509SecurityToken to the given XmlWriter.

Top

Protected Methods

  Name Description
protected method DetectReplayedTokens  Throws if a token is detected as being replayed. Override this method in your derived class to detect replays. (Inherited from SecurityTokenHandler)
protected method Finalize  (Inherited from Object)
protected method MemberwiseClone  (Inherited from Object)

Top

See Also

Reference

X509SecurityTokenHandler Class
Microsoft.IdentityModel.Tokens Namespace

Copyright © 2008 by Microsoft Corporation. All rights reserved.