I follow this guide , which shows how to create an ASP.NET WebForms compliance-oriented application with a page that "displays claims to the token that was provided to you by the security token service."
Please note that the tutorial βThere are no detailed instructions for creating a security token service (STS)β and it is assumed that you have already configured STS. "
Now I followed the tutorial, but I myself did not configure STS. When I launched the web application, I saw a claim on this page, in particular:
Claim Type: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
Claim value:
Claim Value Type: http://www.w3.org/2001/XMLSchema#string
Name of subject of claim:
Claim Issuer: LOCAL AUTHORITY
Since I did not configure STS, where did this statement come from?
In my web.config, I have:
<system.identityModel> <identityConfiguration> <audienceUris> <add value="http://localhost:28503/" /> </audienceUris> <issuerNameRegistry type="System.IdentityModel.Tokens.ConfigurationBasedIssuerNameRegistry, System.IdentityModel, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"> <trustedIssuers> <add thumbprint="1234567890ABCDEFGHIJKLMNOPQRSTUVWXYZ1234" name="YourSTSName" /> </trustedIssuers> </issuerNameRegistry> <certificateValidation certificateValidationMode="None" /> </identityConfiguration> </system.identityModel> <system.identityModel.services> <federationConfiguration> <cookieHandler requireSsl="false" /> <wsFederation passiveRedirectEnabled="true" issuer="http://localhost:13922/wsFederationSTS/Issue" realm="http://localhost:28503/" reply="http://localhost:28503/" requireHttps="false" /> </federationConfiguration> </system.identityModel.services>
But neither localhost: 13922 nor localhost: 28503 serve anything. (My web application is hosted at http: // localhost: 59392 / )
source share