SecurityTokenAuthenticator.ValidateTokenCore(SecurityToken) Method
Definition
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
When overridden in a derived class, authenticates the specified security token and returns the set of authorization policies for the security token.
protected:
abstract System::Collections::ObjectModel::ReadOnlyCollection<System::IdentityModel::Policy::IAuthorizationPolicy ^> ^ ValidateTokenCore(System::IdentityModel::Tokens::SecurityToken ^ token);
protected abstract System.Collections.ObjectModel.ReadOnlyCollection<System.IdentityModel.Policy.IAuthorizationPolicy> ValidateTokenCore (System.IdentityModel.Tokens.SecurityToken token);
abstract member ValidateTokenCore : System.IdentityModel.Tokens.SecurityToken -> System.Collections.ObjectModel.ReadOnlyCollection<System.IdentityModel.Policy.IAuthorizationPolicy>
Protected MustOverride Function ValidateTokenCore (token As SecurityToken) As ReadOnlyCollection(Of IAuthorizationPolicy)
Parameters
- token
- SecurityToken
The SecurityToken to be validated.
Returns
A ReadOnlyCollection<T> of type IAuthorizationPolicy that contains the set of authorization policies in effect for this application.
Remarks
Override the ValidateTokenCore method to authenticate a specific security token type.
When the ValidateTokenCore method is overridden, follow these guidelines:
When the security token passed into the
token
parameter cannot be validated, throw a SecurityTokenValidationException exception.When there are no authorization policies in effect for this application, return an empty ReadOnlyCollection<T> of type IAuthorizationPolicy.
When this method returns null
, Windows Communication Foundation throws a SecurityTokenValidationException exception.
The ValidateTokenCore method is called by the ValidateToken method.
Applies to
.NET