Indication of required / optional claim types in the relying party for passive STS

Question

Indication of required / optional claim types in the relying party for passive STS

I have an asp.net application (relying party) that uses passive STS to authenticate and look up request values. The upstream side uses FederatedAuthenticationModule (FAM) to enable passive redirection on sts. I have found documentation on how to specify the required requirements when using InformationCards, but have yet to find detailed information on how to set this up with FAM.

Does anyone have any examples of this? The closest example I could find is the samples in the Geneva framework, but they are about active STS and WCF that don't apply.

Thanks in advance.

0

asp.net claims-based-identity federated-identity geneva-framework

mwilkes 09 jan. 09 at 19:44

source to share

1 answer

mwilkes · Accepted Answer · 2009-01-12T14:12:33+0000

I also posted this question on the Geneva Framework Forum and got a response. It turns out that in passive model types, claims cannot be specified by a relying party. The passive STS is solely responsible for determining the claims it will receive.

To make this more flexible, I will probably create a datastore with an allowed audience uri and the requirements they require so that passive sts can get the claims the RP needs.

Indication of required / optional claim types in the relying party for passive STS

More articles: