internal void AddAlgorithmParameters(SecurityAlgorithmSuite algorithmSuite, SecurityStandardsManager standardsManager, SecurityKeyType issuedKeyType)
{
AdditionalRequestParameters.Insert(0, standardsManager.TrustDriver.CreateEncryptionAlgorithmElement(algorithmSuite.DefaultEncryptionAlgorithm));
AdditionalRequestParameters.Insert(0, standardsManager.TrustDriver.CreateCanonicalizationAlgorithmElement(algorithmSuite.DefaultCanonicalizationAlgorithm));
if (_keyType == SecurityKeyType.BearerKey)
{
// As the client does not have a proof token in the Bearer case
// we don't have any specific algorithms to request for.
return;
}
string signWithAlgorithm = (_keyType == SecurityKeyType.SymmetricKey) ? algorithmSuite.DefaultSymmetricSignatureAlgorithm : algorithmSuite.DefaultAsymmetricSignatureAlgorithm;
AdditionalRequestParameters.Insert(0, standardsManager.TrustDriver.CreateSignWithElement(signWithAlgorithm));
string encryptWithAlgorithm;
if (issuedKeyType == SecurityKeyType.SymmetricKey)
{
encryptWithAlgorithm = algorithmSuite.DefaultEncryptionAlgorithm;
}
else
{
encryptWithAlgorithm = algorithmSuite.DefaultAsymmetricKeyWrapAlgorithm;
}
AdditionalRequestParameters.Insert(0, standardsManager.TrustDriver.CreateEncryptWithElement(encryptWithAlgorithm));
if (standardsManager.TrustVersion != TrustVersion.WSTrustFeb2005)
{
AdditionalRequestParameters.Insert(0, ((WSTrustDec2005.DriverDec2005)standardsManager.TrustDriver).CreateKeyWrapAlgorithmElement(algorithmSuite.DefaultAsymmetricKeyWrapAlgorithm));
}
return;
}
/// <summary>
/// Creates a shallow copy of 'other'.
/// </summary>
/// <param name="other">The WSTrustTokenParameters to copy.</param>
protected WSTrustTokenParameters(WSTrustTokenParameters other)
: base(other)
{
foreach (var parameter in other.AdditionalRequestParameters)
{
AdditionalRequestParameters.Add(parameter);
}
CacheIssuedTokens = other.CacheIssuedTokens;
foreach (var claimType in ClaimTypes)
{
ClaimTypes.Add(claimType);
}
_issuedTokenRenewalThresholdPercentage = other.IssuedTokenRenewalThresholdPercentage;
KeySize = other.KeySize;
_maxIssuedTokenCachingTime = other.MaxIssuedTokenCachingTime;
_messageSecurityVersion = other.MessageSecurityVersion;
}
protected IssuedSecurityTokenParameters(IssuedSecurityTokenParameters other)
: base(other)
{
DefaultMessageSecurityVersion = other.DefaultMessageSecurityVersion;
IssuerAddress = other.IssuerAddress;
_keyType = other._keyType;
TokenType = other.TokenType;
_keySize = other._keySize;
UseStrTransform = other.UseStrTransform;
foreach (XmlElement parameter in other.AdditionalRequestParameters)
{
AdditionalRequestParameters.Add((XmlElement)parameter.Clone());
}
foreach (ClaimTypeRequirement c in other.ClaimTypeRequirements)
{
ClaimTypeRequirements.Add(c);
}
if (other.IssuerBinding != null)
{
IssuerBinding = new CustomBinding(other.IssuerBinding);
}
IssuerMetadataAddress = other.IssuerMetadataAddress;
}
internal void SetRequestParameters(Collection <XmlElement> requestParameters, TrustDriver trustDriver)
{
if (requestParameters == null)
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull(nameof(requestParameters));
}
if (trustDriver == null)
{
throw DiagnosticUtility.ExceptionUtility.ThrowHelperArgumentNull(nameof(trustDriver));
}
Collection <XmlElement> unknownRequestParameters = new Collection <XmlElement>();
foreach (XmlElement element in requestParameters)
{
if (trustDriver.TryParseKeySizeElement(element, out int keySize))
{
_keySize = keySize;
}
else if (trustDriver.TryParseKeyTypeElement(element, out SecurityKeyType keyType))
{
KeyType = keyType;
}
else if (trustDriver.TryParseTokenTypeElement(element, out string tokenType))
{
TokenType = tokenType;
}
// Only copy RP policy to client policy for TrustFeb2005
else if (trustDriver.StandardsManager.TrustVersion == TrustVersion.WSTrustFeb2005)
{
if (trustDriver.TryParseRequiredClaimsElement(element, out Collection <XmlElement> requiredClaims))
{
Collection <XmlElement> unrecognizedRequiredClaims = new Collection <XmlElement>();
foreach (XmlElement claimRequirement in requiredClaims)
{
if (claimRequirement.LocalName == "ClaimType" && claimRequirement.NamespaceURI == wsidNamespace)
{
string claimValue = claimRequirement.GetAttribute("Uri", string.Empty);
if (!string.IsNullOrEmpty(claimValue))
{
ClaimTypeRequirement claimTypeRequirement;
string optional = claimRequirement.GetAttribute("Optional", string.Empty);
if (string.IsNullOrEmpty(optional))
{
claimTypeRequirement = new ClaimTypeRequirement(claimValue);
}
else
{
claimTypeRequirement = new ClaimTypeRequirement(claimValue, XmlConvert.ToBoolean(optional));
}
ClaimTypeRequirements.Add(claimTypeRequirement);
}
}
else
{
unrecognizedRequiredClaims.Add(claimRequirement);
}
}
if (unrecognizedRequiredClaims.Count > 0)
{
unknownRequestParameters.Add(trustDriver.CreateRequiredClaimsElement(unrecognizedRequiredClaims));
}
}
else
{
unknownRequestParameters.Add(element);
}
}
}
unknownRequestParameters = trustDriver.ProcessUnknownRequestParameters(unknownRequestParameters, requestParameters);
if (unknownRequestParameters.Count > 0)
{
for (int i = 0; i < unknownRequestParameters.Count; ++i)
{
AdditionalRequestParameters.Add(unknownRequestParameters[i]);
}
}
}
