WIF use of Private WCF Methods
WIF uses reflection to access private WCF members in the following methods:
FederatedSecurityTokenManager.SetWrappedTokenCache. WCF lets a
developer replace the
SecurityContextTokencache by returning the cache as an out of band token resolver from
CreateSecurityTokenAuthenticator. However, this cache does not correctly replace the inner cache in the
Authenticatorsinternal property, so WIF adds the cache using reflection.
SecurityTokenVersionfor the two
MessageSecurityVersions"WSSecurity10WSTrust13WSSecureConversation13BasicSecurityProfile10" and "WSSecurity11WSTrust13WSSecureConversation13" indicates the wrong Security version specification in the Security Specification collection. WIF uses reflection to access the correct
SecurityVersionby casting the given
SecurityTokenVersionto the internal
implements its claims model through token validation. However, due
to the strict internal implementation in WCF regarding
SecurityContextTokenauthentication and creation, WIF allows WCF to create the
SecurityContextTokenand then uses reflection replace the internal
AuthorizationPoliciesin the token.
The WIF methods listed previously are themselves private and should not be called.