Layer7 API Management

  • 1.  Sample Security Token Issue & Validate

    Posted Feb 09, 2017 04:15 AM

    Hi All, we are trying to build up a STS Issue and Validate services by using Internal Security Token service. First we have published the the Security Token Service. We can get a token by calling STS Service. However We could not find the right combination to validate the Token. Is there any built-in policy to validate the issued token ? 

     

    Best regards

    Onur Fenar

    onur@t5-systems.com

    T5-Systems 

    CA Partner / Turkey

    Attachment(s)



  • 2.  Re: Sample Security Token Issue & Validate
    Best Answer

    Posted May 17, 2017 01:55 PM

    Hello Onur Fenar,

     

    I see from the TokenResponseMsgSample attached that you are obtaining a SAML v2 token from the STS.
    Please look into Require SAML Token Profile Assertion - CA API Gateway - 9.2 - CA Technologies Documentation  - this assertion can be used to validate a SAML token.

     

    Thank you,

    Alina Muresan