How to create a IdP with ITfoxtec - itfoxtec-identity-saml2

i am interested to create a IdP (Identity Provider) with SAML.
It´s possible to create a full IdP funcionalities with ITfoxtec Nuget?
Have any example with ASP.Net, c#?

Yes, it is possible to implement an IdP using the ITfoxtec Identity Saml 2.0 library. You can see an ASP.NET MVC core IdP example at https://github.com/ITfoxtec/ITfoxtec.Identity.Saml2/tree/master/test/TestIdPCore.
I have implemented the SAML 2.0 IdP part of FoxIDs using the ITfoxtec Identity Saml 2.0 library.

Related

Incorporate WebForms Application with Azure AD for SAML based SSO authentication

I am trying to incorporate ITFoxtec SAML with my webforms applications and Azure AD for SAML based SSO authentication. Can anyone please provide me any reference link or guide me regarding this to work?
Target Framework: .NET Framework 4.8(Web forms)
I have gone through the samples given in the github repo but still unable to proceed further.https://github.com/ITfoxtec/ITfoxtec.Identity.Saml2
I'm afraid that there is not a .NET WebForms sample but it is possible to implement ITfoxtec Identity SAML 2.0 in a .NET WebForms application.
Please se the following links:
ITfoxtec SAML 2.0 and .NET ASPX application (not MVC)
itfoxtec-identity-saml2 .net framework 4.6 web forms guidance
ITfoxtec SAML 2.0 and ASP.NET Web Forms (ASPX) HttpRequest
Alternatively, you can connect to Azure AD using OpenID Connect or use FoxIDs as an security broker to concert between the Azure AD SAML 2.0 connection and your application using OpenID Connect.

How to use itfoxtec-identity-saml2with Forgerock SSO

I am trying to use the itfoxtec-identity-saml2 code samples from Github to use as my ASP.NET client app to autenticate with Forgerock. But it seems the are no samples-code-documentation on this. Am I moving the wrong path?
Is itfoxtec-identity-saml2 even compatible with Forgerock SSO server?
ITfoxtec Identity Saml2 support SAML 2.0 and basically supports all IdPs which support SAML 2.0.
It looks like Forgerock SSO support SAML 2.0 in this guide: https://backstage.forgerock.com/docs/am/6.5/saml2-guide/
It looks

ITfoxtec Idp-initiated SSO to SP

I am currently implementing a .NET Framework IdP using ITfoxtec Identity SAML 2.0.
I understand that the AuthController Login API endpoint in the TestIdPCore test project receives a SSO request from the SP for SP-initated SSO.
However, I don't understand how to do a IdP-initiated SSO. Any help would be much appreciated.
You can find the .NET Framework IdP-Initiated SSO sample in the TestWebApp https://github.com/ITfoxtec/ITfoxtec.Identity.Saml2/blob/master/test/TestWebApp/Controllers/IdPInitiatedController.cs
The sample show an SP acting as an IdP.

Can I use ITfoxtec saml2 to add a SAML identity provider to a non-Core website?

I have an OIDC identity provider I want to extend to be a SAML2 identity provider, but it is not a .NET Core site. The test/samples only show how to configure a core app.
Is it possible to use it to make an identity provider for a non-core site?
The ITfoxtec Identity SAML2 component both support implementing a identity provider (IdP) on .NET core and .NET Framework.
Yes, there is only a .NET Core sample TestIdPCore showing how to implement an IdP. But I think you relatively easy can port the sample code to .NET Framework by looking at the .NET Framework sample TestWebApp.

Can I setup SAML IDP without ADFS?

I want to setup a SAML 2.0 Identity Provider, without the overhead of ADFS. Is this possible?
Sure, you can do it using any other SAML IDP implementation.
Examples include:
Shibboleth
SimpleSAMLPHP
OpenAM
SSOCircle
Auth0

Resources