This documentation is for WSO2 Identity Server 5.4.0 . View documentation for the latest release.

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


You can run the STS client without setting the relying party in IS in order to grant a security token. It is not necessary to have a relying party to grant the security token from the STS.

titleBefore you begin!

Download the


samples directory.

  1. Navigate to <IS_SAMPLES>/modules/samples/sts/sts-client directory. 
    The client code is written to send RSTs to a given endpoint defined in the the <IS_SAMPLES>/modules/samples/sts/sts-client/src/main/resources/ file file.
  2. The following is the service URL of the STS if you have started the IS on default port: https://localhost:9443/services/wso2carbon-sts
  3. Without changing other any of the properties you can safely run the client via the shell script located at that is inside the <IS_SAMPLES>/modules/samples/sts/sts-client folder via the following command directory.

    Code Block

    It prints the received SAML assertion on the terminal. You can also can view the RST and RSTR on the the SOAP tracer of  of the Management Console in the Identity Server.