SecurityTokenService.ValidateRequest(RequestSecurityToken) Method
Definition
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Validates the security token request (RST) encapsulated by this instance.
protected:
virtual void ValidateRequest(System::IdentityModel::Protocols::WSTrust::RequestSecurityToken ^ request);
protected virtual void ValidateRequest (System.IdentityModel.Protocols.WSTrust.RequestSecurityToken request);
abstract member ValidateRequest : System.IdentityModel.Protocols.WSTrust.RequestSecurityToken -> unit
override this.ValidateRequest : System.IdentityModel.Protocols.WSTrust.RequestSecurityToken -> unit
Protected Overridable Sub ValidateRequest (request As RequestSecurityToken)
Parameters
- request
- RequestSecurityToken
A RequestSecurityToken that represents the request.
Exceptions
request
is null
.
-or-
The RequestType property of the request is not set to Issue.
-or-
The KeyType property of the request is not null
or one of the constants defined in the KeyTypes class.
-or-
The KeyType of the request is Bearer and the KeySize
element is present, but its value is not equal to zero.
The STS does not support the request token type (based on the value of the TokenType property of the request).
Remarks
The ValidateRequest method is called from the token issuance pipeline (the Issue method) to validate the incoming RST. The RST is validated against the requirements (policy) of the STS and an appropriate exception is thrown if it is not valid.
The default implementation of the SecurityTokenService class supports only the RST-RSTR pattern and only the Issue binding of the WS-Trust specification (the RequestType property of the request must be set to RequestTypes.Issue). The default implementation of this method enforces these requirements (and others noted in the exceptions section). You can override this method if you must enforce different validation requirements for your custom STS.