Hello,
We built our own IDP to communicate with Azure AD which use ComponentSpace SAML v2.0 for .Net in version 2.6.0.13.
We have to upgrade our IDP with the last version of ComponentSpace SAML for .Net and made some change in our C# code.
The first test return the following error “The SAML response isn’t signed” and we don’t know how to solve it.
The setting of the SAML Configuration
SAMLConfiguration samlConfiguration = new SAMLConfiguration() { Id = i++, Name = “LDAP” };
samlConfiguration.LocalServiceProviderConfiguration = new LocalServiceProviderConfiguration()
{
Name = “”,
Description = “Havas IT ID Provider for INTERNAL + GUEST”,
AssertionConsumerServiceUrl = $“https://idp-dev.xxxxxxxxx.com/LDAP/AssertionConsumerService”,
LocalCertificates = new List()
{
new CertificateConfiguration()
{
FileName = “App_Data\Certificates\file.pfx”,
Password = “xxxxxxxxxxxxxxxxxxxxxxxx”
}
}
};
samlConfiguration.AddPartnerIdentityProvider(new PartnerIdentityProviderConfiguration()
{
Name = “xttps://sts.windows.net/c7ed5556-xxxx/”,
Description = “INTERNAL + GUEST”,
SignAuthnRequest = true,
SignLogoutRequest = true,
WantAssertionOrResponseSigned = true,
WantSAMLResponseSigned = true,
WantAssertionSigned = false, //true,
WantAssertionEncrypted = false,
WantLogoutRequestSigned = true,
DigestMethod = “xttp://www.w3.org/2001/04/xmlenc#sha256”,
SignatureMethod = “xttp://www.w3.org/2001/04/xmldsig-more#rsa-sha256”,
SingleSignOnServiceBinding = “urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST”,
SingleSignOnServiceUrl = “xhttps://login.microsoftonline.com/c7ed5556-xxxx/saml2”,
SingleLogoutServiceUrl = “xhttps://login.microsoftonline.com/c7ed5556-xxxx/saml2”,
PartnerCertificates = new List()
{
new CertificateConfiguration()
{
FileName = @“App_Data\Certificates\azurefile.cer”
}
}
});
SAMLController.Configurations.Configurations.Add(samlConfiguration);
We made tests changing value of WantSAMLResponseSigned or WantAssertionSigned, without success.
Regards,