I have a a ASP.NET web site which uses a ADFS 2.0 to provide claims. On the ADFS I have implemented a Custom Attribute Store. This store goes and gets some particular claims from an old legacy system which can take some time (20 -30sec)
What I would like to know is how to do I only get this claim when required. I don't want to get this claim when clients first logon. Its not always required. How do I go back to the ADFS server and get it to reissue the users claims and add one extra claim?
Thanks in advance for any help. Darrin
Updated: Is it possible to send something from the client (ASP.NET page using WSTrustChannel as an active client) to the ADFS server that I can then test for in one of my claim rule conditions?
