Defines the base implementation for a claims authentication manager.
Assembly: Microsoft.IdentityModel (in Microsoft.IdentityModel.dll)
The claims authentication manager provides an extensibility point in the RP processing pipeline that you can use to filter, modify, or inject new claims into the set of claims presented by an IClaimsPrincipal before the RP application is called. You can even return a custom implementation of IClaimsPrincipal if your RP application requires it. The default implementation provided by the ClaimsAuthenticationManager class returns the claims in the IClaimsPrincipal unmodified; however, you can derive from this class and override the Authenticate method to modify the claims presented by the claims principal (or to return a custom IClaimsPrincipal).
You can configure your application to use a claims authentication manager either programmatically by using the ServiceConfiguration class or in configuration with the <claimsAuthenticationManager> element (which is a subelement of the <applicationService> element). Configuring your application to use a claims authentication manager ensures that it will be invoked by Windows® Identity Foundation (WIF) from the request pipeline.
For more information, see ClaimsAuthenticationManager, ClaimsAuthorizationManager, and OriginalIssuer. The Using Claims in IsInRole SDK sample in the <Installation Directory>\Windows Identity Foundation SDK\<Version>\Samples\Extensibility directory provides an implementation of a custom claims authentication manager.
Target PlatformsWindows 7, Windows Server 2008 R2, Windows Vista SP2, Windows Server 2008 SP2, Windows Server 2003 SP2 (32-bit or 64-bit)
Other ResourcesBuilding Relying Party Applications
ClaimsAuthenticationManager, ClaimsAuthorizationManager, and OriginalIssuer
WCF Application Compatibility
Frequently Asked Questions
WS-Federated Authentication Module Overview
Copyright © 2008 by Microsoft Corporation. All rights reserved.