How to "post configure" SAML SSO identity providers after ASP.NET Core app startup

SAML for ASP.NET Core
1

I want to be able to add or edit the configs of our SAML SSO identity providers after the ASP.NET Core app starts up. ASP.NET Core provides the ability to do this for OAuth2 and OIDC identity providers via their “PostConfigure” classes, see this code for an example: https://gist.github.com/justintoth/4f5cc4238d7a942369aef12209769004

I’m wondering how I achieve the same for our SAML SSO identity providers?

2

We support dynamic SAML configuration through the ISamlConfigurationResolver interface.

We call into this interface whenever configuration is required for SSO or SLO which means we should always have the latest configuration. Typically, the SAML configuration is stored in a database and the ISamlConfigurationResolver reads from this database. However, you may implement this interface however you wish.

The ExampleIdentityProvider and ExampleServiceProvider projects under the Examples\SSO folder include example implementations using hard-coded configuration.

The Configuration Guide in the documentation folder has more information.

3
[quote]
ComponentSpace - 1/13/2022
We support dynamic SAML configuration through the ISamlConfigurationResolver interface.

We call into this interface whenever configuration is required for SSO or SLO which means we should always have the latest configuration. Typically, the SAML configuration is stored in a database and the ISamlConfigurationResolver reads from this database. However, you may implement this interface however you wish.

The ExampleIdentityProvider and ExampleServiceProvider projects under the Examples\SSO folder include example implementations using hard-coded configuration.

The Configuration Guide in the documentation folder has more information.
[/quote]

That worked great, thanks!
4

You’re welcome!