![\"Smile\"](\"https:\/\/www.cloudidentity.com\/blog\/wp-content\/uploads\/2013\/04\/wlEmoticon-smile.png\")
<\/p>\nQuite a mouthful, isn\u2019t it <\/p>\n
TL;DR version<\/strong>: we just released an update to the ValidatingIssuerNameRegistry<\/a> which makes it easy for you to write applications that automatically keep up to date the WIF settings containing the keys that should be used to validate incoming tokens. When you run the Identity and Access Tool for VS2012<\/a> (or the ASP.NET Tools for Windows Azure AD<\/a>) you can take advantage of the metadata document describing the authority you want to trust to automatically configure your application to connect to it. In practice, the tool adds various WIF-related sections in your web.config; those are used for driving the authentication flow.
The Identity and Access Tools for Visual Studio 2012<\/a> will pick up the new version automatically, no action required for you.<\/p>\nThe Validation Mechanism in WIF\u2019s Config <\/h2>\n
One of those elements, the <issuerNameRegistry>, is used to keep track of the validation coordinates that must be used to verify incoming tokens; below there\u2019s an example.<\/p>\n<<\/span>issuerNameRegistry<\/span> type<\/span>=\"System.IdentityModel.Tokens.ValidatingIssuerNameRegistry, <\/span><\/pre>\n System.IdentityModel.Tokens.ValidatingIssuerNameRegistry\"<\/span>><\/span>\n <<\/span>authority<\/span> name<\/span>=\"https:\/\/lefederateur.accesscontrol.windows.net\/\"<\/span>><\/span>\n <<\/span>keys<\/span>><\/span>\n <<\/span>add<\/span> thumbprint<\/span>=\"C1677FBE7BDD6B131745E900E3B6764B4895A226\"<\/span> \/><\/span>\n <\/<\/span>keys<\/span>><\/span>\n <<\/span>validIssuers<\/span>><\/span>\n <<\/span>add<\/span> name<\/span>=\"https:\/\/lefederateur.accesscontrol.windows.net\/\"<\/span> \/><\/span>\n <\/<\/span>validIssuers<\/span>><\/span>\n <\/<\/span>authority<\/span>><\/span>\n<\/<\/span>issuerNameRegistry<\/span>><\/span>\n<\/pre>\n