ValidatingIssuerNameRegistry.IsThumbprintValid Method

Can be called as part of a security token validating sequence where it is necessary to validate that the signer of a security token and the issuer of a security token are as expected.

Namespace:  System.IdentityModel.Tokens
Assembly:  System.IdentityModel.Tokens.ValidatingIssuerNameRegistry (in System.IdentityModel.Tokens.ValidatingIssuerNameRegistry.dll)

protected virtual bool IsThumbprintValid(
	string thumbprint,
	string issuer
)

Parameters

thumbprint
Type: System.String

string represententing the thumbprint. Normally this is case insensitive.

issuer
Type: System.String

string represententing the issuer.

Return Value

Type: System.Boolean
true if the pair is valid, false otherwise

Any IssuingAuthority in [IssuingAuthorities] that contains both the thumbprint in [Thumbprints] and issuer in [Issuers] will be considered a valid pair.

This method returns when the first valid pair is found.

If you choose to override this method please be aware of the need to use the appropriate case when comparing keys. X509Thumbprints are case insensitive. Comparing keys using as case sensitive could lead to security issues.

Show: