Edit

Share via


MetadataSerializer.GetMetadataSigningCertificate Method

Definition

Gets the X.509 certificate created from the specified key identifier.

protected:
 virtual System::Security::Cryptography::X509Certificates::X509Certificate2 ^ GetMetadataSigningCertificate(System::IdentityModel::Tokens::SecurityKeyIdentifier ^ ski);
protected virtual System.Security.Cryptography.X509Certificates.X509Certificate2 GetMetadataSigningCertificate (System.IdentityModel.Tokens.SecurityKeyIdentifier ski);
abstract member GetMetadataSigningCertificate : System.IdentityModel.Tokens.SecurityKeyIdentifier -> System.Security.Cryptography.X509Certificates.X509Certificate2
override this.GetMetadataSigningCertificate : System.IdentityModel.Tokens.SecurityKeyIdentifier -> System.Security.Cryptography.X509Certificates.X509Certificate2
Protected Overridable Function GetMetadataSigningCertificate (ski As SecurityKeyIdentifier) As X509Certificate2

Parameters

ski
SecurityKeyIdentifier

The key identifier from which to create the X.509 certificate.

Returns

The X.509 certificate that was created from the specified key identifier.

Exceptions

ski is null.

Cannot find a key identifier clause of type X509RawDataKeyIdentifierClause in ski. Enforces the default behavior, you can override this method to support other key identifier clauses.

Remarks

By default, this method only supports key identifier clauses of type X509RawDataKeyIdentifierClause. You can override this method to support other kinds of key identifier clauses. This method is invoked by the ValidateSigningCredential method.

Applies to