I have a very basic application that correctly redirects my STS back and forth after successful authentication.
There are several areas in which I am not so sure how they work, and hoping that some light may be shed on them.
1) How do you expire claims in the token, for example, you need to amend any claims, but since the token is still valid, the reissue does not occur within 10 minutes.
2) How to log out of the authentication service, as well as from the issuing site. EG you log out in your application, which in turn causes
WSFederationAuthenticationModule.FederatedSignOut(new Uri(s), null);
But when a user clicks on a link to a protected resource, he automatically redirects to STS and writes back the user.
I am sure these are simple questions and I am missing the point somewhere, but any help would be greatly appreciated.
source
share