i have this SAMLIdentityProvider.InitiateSSO(Response, “Yasin”, curLoginInfo, targetUrl, partnerSP) i would like to send a x509certificate signed along with this How can i do it I have already added SAMLAssertionSignature.Generate(assertionElement, privateKey, cert) but i keep getting 405 error on the browser
SAMLIdentityProvider.InitiateSSO
will sign the SAML response, sign the SAML assertion, or sign both. This is driven by the SAML configuration. By default, we sign the SAML assertion only. This can be changed through configuration.
For example:
<PartnerServiceProvider
Name="https://ExampleServiceProvider"
SignSAMLResponse="true"
SignAssertion="false"
The generated XML signature will include the base-64 encoded X.509 certificate.
SAMLAssertionSignature.Generate
is part of the low-level API and we don’t recommend using it unless you have very specific requirements. SAMLIdentityProvider.InitiateSSO
calls SAMLAssertionSignature.Generate
if the SAML assertion is to be signed. SAMLIdentityProvider.InitiateSSO
is part of the high-level API which is what we recommend using.
I’m not sure what’s causing the 405 HTTP error.
I suggest taking a look at the ExampleIdentityProvider
and ExampleServiceProvider
projects under the Examples\SSO\WebForms folder. It’s a good idea to run both these projects in the Visual Studio debugger to see SSO in action. The ExampleIdentityProvider
demonstrates calling SAMLIdentityProvider.InitiateSSO
to support IdP-initiated SSO.
These projects are described in the Examples Guide which you’ll find along with various other guides in the documentation folder.