public override SecurityTokenSerializer CreateSecurityTokenSerializer (SecurityTokenVersion version)
{
bool bsp = version.GetSecuritySpecifications ().Contains (Constants.WSBasicSecurityProfileCore1);
SecurityVersion ver =
version.GetSecuritySpecifications ().Contains (Constants.Wss11Namespace) ?
SecurityVersion.WSSecurity11 :
SecurityVersion.WSSecurity10;
// FIXME: pass correct arguments.
return new WSSecurityTokenSerializer (ver, bsp, null,
ServiceCredentials.SecureConversationAuthentication.SecurityStateEncoder,
Type.EmptyTypes,
int.MaxValue, int.MaxValue, int.MaxValue);
}
/// <summary>
/// There is a bug in WCF where the version obtained from the public SecurityTokenVersion strings is wrong.
/// The internal MessageSecurityTokenVersion has the right version.
/// </summary>
internal static SecurityVersion GetSecurityVersion( SecurityTokenVersion tokenVersion )
{
if ( tokenVersion == null )
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull( "tokenVersion" );
}
//
// Workaround for WCF bug.
// In .NET 3.5 WCF returns the wrong Token Specification. We need to reflect on the
// internal code so we can access the SecurityVersion directly instead of depending
// on the security specification.
//
if ( tokenVersion is MessageSecurityTokenVersion )
{
SecurityVersion sv = ( tokenVersion as MessageSecurityTokenVersion ).SecurityVersion;
if ( sv != null )
{
return sv;
}
}
else
{
if ( tokenVersion.GetSecuritySpecifications().Contains( WSSecurity11Constants.Namespace ) )
{
return SecurityVersion.WSSecurity11;
}
else if ( tokenVersion.GetSecuritySpecifications().Contains( WSSecurity10Constants.Namespace ) )
{
return SecurityVersion.WSSecurity10;
}
}
return SecurityVersion.WSSecurity11;
}
/// <summary>
/// Overriden from the base class. Creates the requested Token Serializer.
/// Returns a Security Token Serializer that is wraps the list of token
/// hanlders registerd and also the serializers from the inner token manager.
/// </summary>
/// <param name="version">SecurityTokenVersion of the serializer to be created.</param>
/// <returns>Instance of SecurityTokenSerializer.</returns>
/// <exception cref="ArgumentNullException">Input parameter is null.</exception>
public override SecurityTokenSerializer CreateSecurityTokenSerializer( SecurityTokenVersion version )
{
if ( version == null )
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull( "version" );
}
TrustVersion trustVersion = null;
SecureConversationVersion scVersion = null;
foreach ( string securitySpecification in version.GetSecuritySpecifications() )
{
if ( StringComparer.Ordinal.Equals( securitySpecification, WSTrustFeb2005Constants.NamespaceURI ) )
{
trustVersion = TrustVersion.WSTrustFeb2005;
}
else if ( StringComparer.Ordinal.Equals( securitySpecification, WSTrust13Constants.NamespaceURI ) )
{
trustVersion = TrustVersion.WSTrust13;
}
else if ( StringComparer.Ordinal.Equals( securitySpecification, WSSecureConversationFeb2005Constants.Namespace ) )
{
scVersion = SecureConversationVersion.WSSecureConversationFeb2005;
}
else if ( StringComparer.Ordinal.Equals( securitySpecification, WSSecureConversation13Constants.Namespace ) )
{
scVersion = SecureConversationVersion.WSSecureConversation13;
}
if ( trustVersion != null && scVersion != null )
{
break;
}
}
if ( trustVersion == null )
{
trustVersion = TrustVersion.WSTrust13;
}
if ( scVersion == null )
{
scVersion = SecureConversationVersion.WSSecureConversation13;
}
WsSecurityTokenSerializerAdapter adapter = new WsSecurityTokenSerializerAdapter( _securityTokenHandlerCollection,
GetSecurityVersion( version ), trustVersion, scVersion, false, this.ServiceCredentials.IssuedTokenAuthentication.SamlSerializer,
this.ServiceCredentials.SecureConversationAuthentication.SecurityStateEncoder,
this.ServiceCredentials.SecureConversationAuthentication.SecurityContextClaimTypes );
adapter.MapExceptionsToSoapFaults = true;
adapter.ExceptionMapper = _exceptionMapper;
return adapter;
}
private SecurityTokenSerializer WrapTokenHandlersAsSecurityTokenSerializer(SecurityTokenVersion version)
{
TrustVersion trustVersion = TrustVersion.WSTrust13;
SecureConversationVersion scVersion = SecureConversationVersion.WSSecureConversation13;
SecurityVersion securityVersion = SecurityVersion.WSSecurity11;
foreach (string securitySpecification in version.GetSecuritySpecifications())
{
if (StringComparer.Ordinal.Equals(securitySpecification, WSTrustFeb2005Constants.NamespaceURI))
{
trustVersion = TrustVersion.WSTrustFeb2005;
}
else if (StringComparer.Ordinal.Equals(securitySpecification, WSTrust13Constants.NamespaceURI))
{
trustVersion = TrustVersion.WSTrust13;
}
else if (StringComparer.Ordinal.Equals(securitySpecification, System.IdentityModel.WSSecureConversationFeb2005Constants.Namespace))
{
scVersion = SecureConversationVersion.WSSecureConversationFeb2005;
}
else if (StringComparer.Ordinal.Equals(securitySpecification, System.IdentityModel.WSSecureConversation13Constants.Namespace))
{
scVersion = SecureConversationVersion.WSSecureConversation13;
}
}
securityVersion = FederatedSecurityTokenManager.GetSecurityVersion(version);
//
//
SecurityTokenHandlerCollectionManager sthcm = this.parent.SecurityTokenHandlerCollectionManager;
WsSecurityTokenSerializerAdapter adapter = new WsSecurityTokenSerializerAdapter(sthcm[SecurityTokenHandlerCollectionManager.Usage.Default], securityVersion, trustVersion, scVersion, false, null, null, null);
return adapter;
}
/// <summary>
/// There is a
internal static SecurityVersion GetSecurityVersion( SecurityTokenVersion tokenVersion )
{
if ( tokenVersion == null )
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull( "tokenVersion" );
}
//
// Workaround for WCF
if ( tokenVersion is MessageSecurityTokenVersion )
{
SecurityVersion sv = ( tokenVersion as MessageSecurityTokenVersion ).SecurityVersion;
if ( sv != null )
{
return sv;
}
}
else
{
if ( tokenVersion.GetSecuritySpecifications().Contains( WSSecurity11Constants.Namespace ) )
{
return SecurityVersion.WSSecurity11;
}
else if ( tokenVersion.GetSecuritySpecifications().Contains( WSSecurity10Constants.Namespace ) )
{
return SecurityVersion.WSSecurity10;
}
}
return SecurityVersion.WSSecurity11;
}
public override SecurityTokenSerializer CreateSecurityTokenSerializer (SecurityTokenVersion version)
{
bool bsp = version.GetSecuritySpecifications ().Contains (Constants.WSBasicSecurityProfileCore1);
SecurityVersion ver =
version.GetSecuritySpecifications ().Contains (Constants.Wss11Namespace) ?
SecurityVersion.WSSecurity11 :
SecurityVersion.WSSecurity10;
return new WSSecurityTokenSerializer (ver, bsp);
}
