The whole thing is not only for Waffle a black box, but for me too ;-)
I have to admit, I don't exactly know what I want to accomplish. The background is related to my other question consuming a web service with the users credentials http://waffle.codeplex.com/discussions/250240
I thought the first step would be to get the Kerberos token. According to this
How To: Use Impersonation and Delegation in ASP.NET 2.0 it says that the WindowsIdentity is created by using a logon token returned from the Win32 LogonUser API. The NegotiateSecurityFilterProvider returns a IWindowsIdentity created from a WindowsSecurityContext
which is initialized by a token, so I thought that this could be the token, but maybe the WindowsIdentity contains the real resulting token.
After having this token, the next step would be to call the web service. An api from Microsoft for calling the web service uses a class TokenCredentials which accepts a String securityToken. I wanted to give it a try and thought that maybe this is the token
which Waffle uses in the NegotiateSecurityFilterProvider. But maybe I'm at a dead end.