1.
I am going to host this as a service and dont want to add IssuerNameRegistry in
web.config every time whenever i am adding new organization. I Need to pull the details from DB and set it dynamically (token, url etc). I tried to do that based on the return URL . But this fails because FederationConfiguration can be only updated in Application_Start
Event. I cant do that because i cant access my HTTPContext to know the return url in my App_Start.So
i kept a separate Config file and had all my authorities configured for all Organizations in it. But our client raising a question on security and the performance. Is it advisable to keep the sensitive data in XML for all the organizations and also we are
concerned about performance. if the return token go and read all the keys to validate against it’s token, will the system be Slow
Please advise me with some sample code to achieve this..
2. I tried to implement ValidatingIssuerNameRegistry but unable
to success since it is talking about updating the tenent id based on the Metadata.xml.
All i have is the following info for all the organizations
<authority name="http://test123.login.edu/adfs/services/trust">
<keys> <add thumbprint="{Thumbprit}" />
</keys>
<validIssuers>
<add name="http://test/adfs/services/trust" />
</validIssuers>
</authority>