Any one have suggestion for the below implimentation
1) I Need some STS which should respond to rst from client with a RSTR containing SAML token.The client who communicates has client credentials as windows user and security mode as message (This client is a non-wcf client i.e., .net 2.0 client. Also, i don't want to use Certificate). Also can i generate a saml token with out using certificate in STS.
2) The client After receiving the token from STS, need to build a message request with the token for communicating with the relying party i.e., service.
3) On the Service Side(RP), i use the interceptor to validate the token for claims and authentication. Can i do like this.
Please provide me your suggestions as of how can i do this and to what extent i can use Martin gudge sample and what modifications i need to perform this.