2.2.3.2 RequestSecurityTokenResponse Message

The RequestSecurityTokenResponse message is sent to complete the process of authenticating a neighbor connection. The message carries the validation results of the requesting node's PeerHashToken element by the responding node. It also contains the PeerHashToken of the responding node. The schema of this message is specified in [WSTrust] section 5.

Element

Legal value

RequestSecurityTokenResponse/TokenType

MUST contain the URI "http://schemas.microsoft.com/net/2006/05/peer/peerhashtoken".

RequestSecurityTokenResponse/Status

MUST contain an instance of the "http://schemas.xmlsoap.org/ws/2005/02/trust/Code" element.

RequestSecurityTokenResponse/Status/Code

MUST have the URI "http://schemas.xmlsoap.org/ws/2005/02/trust/status/valid" as the text node. In the case when the recipient is not able to validate the token in the incoming message, the connection MUST be aborted.

RequestSecurityTokenResponse/RequestedSecurityToken

MUST contain an instance of PeerHashToken containing the hash of the responding party. For instructions on how to compute the hash, see section 2.2.3.1.1.