We need to make our webservice secure(WS-Trust) for which we are planning to implement a Secure token service (STS) which will generate
the token after users authentication (after validating who he claims to be with his certificate or credentials).
The token generate will be SAML(Secure assertion markup language) which will contain the token information and which i need to
pass on to the actual webservice and which will validate the token and then respond to my webservice request.
There is very little on the internet there is more on the behaviorial information of STS rather than actual sample implementation.
Can anybody give me some hint on how should i go for it asap?
Thanks in advance