internal protected virtual SecurityToken GetInfoCardSecurityToken(bool requiresInfoCard, CardSpacePolicyElement[] chain, SecurityTokenSerializer tokenSerializer)
{
if (!requiresInfoCard)
{
return(null);
}
return(CardSpaceSelector.GetToken(chain, tokenSerializer));
}
// This sample requires managed card.
// You can get one from e.g. http://itickr.com/index.php/?p=41
// usage: gettoken.exe issuerURI issuerCertificate
// example:
// gettoken.exe https://infocard.pingidentity.com/idpdemo/sts ping.cer
public static void Main(string [] args)
{
XmlDocument doc = new XmlDocument();
doc.AppendChild(doc.CreateElement("root"));
X509Certificate2 cert = new X509Certificate2("test.cer");
using (XmlWriter w = doc.DocumentElement.CreateNavigator().AppendChild()) {
new EndpointAddress(new Uri("http://localhost:8080"),
new X509CertificateEndpointIdentity(cert))
.WriteTo(AddressingVersion.WSAddressing10, w);
}
XmlElement endpoint = doc.DocumentElement.FirstChild as XmlElement;
XmlElement issuer = null;
if (args.Length > 1)
{
using (XmlWriter w = doc.DocumentElement.CreateNavigator().AppendChild()) {
new EndpointAddress(new Uri(args [0]),
new X509CertificateEndpointIdentity(new X509Certificate2(args [1])))
.WriteTo(AddressingVersion.WSAddressing10, w);
}
issuer = doc.DocumentElement.LastChild as XmlElement;
}
string wst = "http://schemas.xmlsoap.org/ws/2005/02/trust";
string infocard = "http://schemas.xmlsoap.org/ws/2005/05/identity";
XmlElement p = doc.CreateElement("Claims", wst);
p.SetAttribute("Dialect", ClaimTypes.Name);
XmlElement ct = doc.CreateElement("ClaimType", infocard);
//ct.SetAttribute ("Uri", ClaimTypes.Email);
ct.SetAttribute("Uri", ClaimTypes.PPID);
p.AppendChild(ct);
GenericXmlSecurityToken token = CardSpaceSelector.GetToken(
//endpoint, new XmlElement [] {p}, issuer, WSSecurityTokenSerializer.DefaultInstance);
new CardSpacePolicyElement [] { new CardSpacePolicyElement(endpoint, issuer, new Collection <XmlElement> (new XmlElement [] { p }), null, 0, false) }, WSSecurityTokenSerializer.DefaultInstance);
XmlWriterSettings s = new XmlWriterSettings();
s.Indent = true;
s.ConformanceLevel = ConformanceLevel.Fragment;
using (XmlWriter xw = XmlWriter.Create(Console.Out, s)) {
// GenericXmlSecurityToken is writable but not readable.
WSSecurityTokenSerializer.DefaultInstance.WriteToken(
xw, token);
// This cannot be serialized.
//WSSecurityTokenSerializer.DefaultInstance.WriteToken (
// xw, token.ProofToken);
WSSecurityTokenSerializer.DefaultInstance.WriteKeyIdentifierClause(xw, token.InternalTokenReference);
}
StringWriter sw = new StringWriter();
using (XmlWriter xw = XmlWriter.Create(sw, s)) {
WSSecurityTokenSerializer.DefaultInstance.WriteKeyIdentifierClause(xw, token.ExternalTokenReference);
}
Console.WriteLine(sw);
using (XmlReader xr = XmlReader.Create(new StringReader(sw.ToString()))) {
object o = WSSecurityTokenSerializer.DefaultInstance.ReadKeyIdentifierClause(xr);
Console.WriteLine(o);
}
}