How to make Custom STS receive SAML token from client as client credential for authentication?

Asked May 17 '18 at 01:38

Active May 21 '18 at 04:34

Viewed 253 times

I have a custom STS service that receives username/password as client credential and generate token if username/password is valid. I do the username/password check in our own user store.

However now I need to make my custom STS receive SAML 2.0 token (issued from other identity provider) and validate the token, validate claim and generate token for the relying party (WCF service) which only trusts the token from custom STS.

Is there any way we can do it? Any sample out there?

I tried "IssuedToken" as client credential type but not sure how do I go about it. Any help is much appreciated.

I tried this, but it seems outdated.

edited May 21 '18 at 04:34

asked May 17 '18 at 01:38

ANewGuyInTown

5,957
5
33
45

dotnet core or classic dotnet? – hugo May 25 '18 at 21:17
Go back to the website you linked and have a look at their opensource IdentityServer framework. Investigate whether you can use that, as it looks like you are trying to build what they already did. These guys are serious about security. – pfx May 27 '18 at 20:28

How to make Custom STS receive SAML token from client as client credential for authentication?

0 Answers0