What all information is there in the federation metadata in claim based authentication? [closed]

Question

It's difficult to tell what is being asked here. This question is ambiguous, vague, incomplete, overly broad, or rhetorical and cannot be reasonably answered in its current form. For help clarifying this question so that it can be reopened, visit the help center.

Closed 8 years ago.

I am trying to learn about the claim based authentication and single sign on. In the meantime when we create a step of creating a trust between application and identity provider then there is a step of selecting a federation metadata. I want to know what is the information there in the same.

Answer 1

Federation Metadata is offered by STSs to automate the trust configuration on an application. It's an unencrypted (but signed) XML document so you can open it up and look at it. At minimum you will see: the STS endpoints (e.g. used to know where to redirect to), the cryptographic information that will be used for signing the token (so it can be evaluated and verified by the application) and the claims offered (e.g. this info might not contain all that they offer).

If you are using WIF and the "Add STS reference" wizard on APS.NET for example, you can see the result of extracting this information in the web.config.