SamlSecurityTokenAuthenticator.AllowedAudienceUris Property
Definition
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Gets the set of target URIs for which the SamlSecurityToken security token can be targeted for to be considered valid by this SamlSecurityTokenAuthenticator instance.
public:
property System::Collections::Generic::IList<System::String ^> ^ AllowedAudienceUris { System::Collections::Generic::IList<System::String ^> ^ get(); };public System.Collections.Generic.IList<string> AllowedAudienceUris { get; }member this.AllowedAudienceUris : System.Collections.Generic.IList<string>Public ReadOnly Property AllowedAudienceUris As IList(Of String)Property Value
An IList<T> of type String that contains the target URIs for which the SamlSecurityToken security token can be targeted for to be considered valid by this security token authenticator.
Remarks
Use the AllowedAudienceUris property in a federated application that utilizes a security token service (STS) that issues SamlSecurityToken security tokens. When the STS issues the security token, it can specify the URI of the Web services for which the security token is intended by adding a SamlAudienceRestrictionCondition to the security token. That allows the SamlSecurityTokenAuthenticator for the recipient Web service to verify that the issued security token is intended for this Web service by specifying that this check should happen by doing the following:
Set the AudienceUriMode property to Always or BearerKeyOnly.
Specify the set of valid URIs, by adding the URIs to the AllowedAudienceUris collection.
Optionally, override the ValidateAudienceRestriction method to specify the validation algorithm to use for the allowed URI.
