ClientCredentialsSecurityTokenManager.CreateSecurityTokenProvider 方法
定义
重要
一些信息与预发行产品相关,相应产品在发行之前可能会进行重大修改。 对于此处提供的信息,Microsoft 不作任何明示或暗示的担保。
创建安全令牌提供程序。
public:
override System::IdentityModel::Selectors::SecurityTokenProvider ^ CreateSecurityTokenProvider(System::IdentityModel::Selectors::SecurityTokenRequirement ^ tokenRequirement);public override System.IdentityModel.Selectors.SecurityTokenProvider CreateSecurityTokenProvider (System.IdentityModel.Selectors.SecurityTokenRequirement tokenRequirement);override this.CreateSecurityTokenProvider : System.IdentityModel.Selectors.SecurityTokenRequirement -> System.IdentityModel.Selectors.SecurityTokenProviderPublic Overrides Function CreateSecurityTokenProvider (tokenRequirement As SecurityTokenRequirement) As SecurityTokenProvider参数
- tokenRequirement
- SecurityTokenRequirement
返回
例外
tokenRequirement 为 null。
示例
下面的代码演示如何重写此方法。
internal class MyClientCredentialsSecurityTokenManager :
ClientCredentialsSecurityTokenManager
{
MyClientCredentials credentials;
public MyClientCredentialsSecurityTokenManager(
MyClientCredentials credentials): base(credentials)
{
this.credentials = credentials;
}
public override SecurityTokenProvider CreateSecurityTokenProvider(
SecurityTokenRequirement requirement)
{
SecurityTokenProvider result = null;
if (requirement.TokenType == SecurityTokenTypes.X509Certificate)
{
MessageDirection direction = requirement.GetProperty
<MessageDirection>(ServiceModelSecurityTokenRequirement.
MessageDirectionProperty);
if (direction == MessageDirection.Output)
{
if (requirement.KeyUsage == SecurityKeyUsage.Signature)
{
result = new X509SecurityTokenProvider(
this.credentials.ClientSigningCertificate);
}
else
{
result = new X509SecurityTokenProvider(this.credentials.
ServiceEncryptingCertificate);
}
}
else
{
if (requirement.KeyUsage == SecurityKeyUsage.Signature)
{
result = new X509SecurityTokenProvider(this.
credentials.ServiceSigningCertificate);
}
else
{
result = new X509SecurityTokenProvider(credentials.
ClientEncryptingCertificate);
}
}
}
else
{
result = base.CreateSecurityTokenProvider(requirement);
}
return result;
}
public override SecurityTokenAuthenticator
CreateSecurityTokenAuthenticator(SecurityTokenRequirement
tokenRequirement, out SecurityTokenResolver outOfBandTokenResolver)
{
return base.CreateSecurityTokenAuthenticator(tokenRequirement,
out outOfBandTokenResolver);
}
}
Friend Class MyClientCredentialsSecurityTokenManager
Inherits ClientCredentialsSecurityTokenManager
Private credentials As MyClientCredentials
Public Sub New(ByVal credentials As MyClientCredentials)
MyBase.New(credentials)
Me.credentials = credentials
End Sub
Public Overrides Function CreateSecurityTokenProvider(ByVal requirement As SecurityTokenRequirement) As SecurityTokenProvider
Dim result As SecurityTokenProvider = Nothing
If requirement.TokenType = SecurityTokenTypes.X509Certificate Then
Dim direction As MessageDirection = requirement.GetProperty (Of MessageDirection)(ServiceModelSecurityTokenRequirement. MessageDirectionProperty)
If direction = MessageDirection.Output Then
If requirement.KeyUsage = SecurityKeyUsage.Signature Then
result = New X509SecurityTokenProvider(Me.credentials.ClientSigningCertificate)
Else
result = New X509SecurityTokenProvider(Me.credentials. ServiceEncryptingCertificate)
End If
Else
If requirement.KeyUsage = SecurityKeyUsage.Signature Then
result = New X509SecurityTokenProvider(Me. credentials.ServiceSigningCertificate)
Else
result = New X509SecurityTokenProvider(credentials. ClientEncryptingCertificate)
End If
End If
Else
result = MyBase.CreateSecurityTokenProvider(requirement)
End If
Return result
End Function
Public Overrides Function CreateSecurityTokenAuthenticator(ByVal tokenRequirement As SecurityTokenRequirement, <System.Runtime.InteropServices.Out()> ByRef outOfBandTokenResolver As SecurityTokenResolver) As SecurityTokenAuthenticator
Return MyBase.CreateSecurityTokenAuthenticator(tokenRequirement, outOfBandTokenResolver)
End Function
End Class
注解
SecurityTokenProvider 类负责获取给定的 ServiceModelSecurityTokenRequirement 的令牌。 令牌提供程序还可以支持续订和取消令牌。