I'm using ITFoxtec SAML 2.0 where I have started multiple projects; TestIdpCore and TestWebAppCore. Once I click on the TestWebAppCore login link, I face the error "The SSL connection could not be established"
The problem is the TLS/SSL certificate you are using on the TestIdpCore, which is apparently not accepted by .NET Core.
TestIdpCore espose a SAML 2.0 metadata endpoint which is read by TestWebAppCore as the first step in the login sequence.
Related
im trying to use saml for our sites login(react front-end and .net api backend) using ITFoxtec package. After logging in on SSO site, the assertion url is getting success message but throwing exception because the XML is empty.
I'm not sure what the problem is in your situation. The SAML 2.0 login and logout has to be handled by the backend .NET server and your React and API security is therefor handled by .NET.
Some info on the topic:
Nuget ITfoxtec SAML & Angular
How to redirect on backend for Angular application using Itfoxtec to access app through Azure Active Directory
Getting error Cannot POST in angular when redirected to call back url with SAML response
Nuget ITfoxtec SAML & Angular
AssertionUrl for AngularJS Application
We are facing a SSL certificate issue while executing Token create Interface from SAP side.
For that while troubleshooting we got new 3 SSL certificates from SAP chain verifier, for this please find attached screenshot.
We downloaded those certificates and found out that the Root certificate is not trusted, also the intermediate certificate is different as per chain verifier. We are attaching all certificates in the zip file, please check.
If possible can you please provide a valid SSL certificate for Google token create API. So we can resolve this issue.
I need to call a SOAP webservice using SAML authentication.
They expect the saml token as part of the SOAP request(This should not be a problem).
The actual authentication on the IDP must be done using a client certificate (private key), but without any user interaction.
As far as i understand are the samples on https://www.itfoxtec.com/IdentitySaml2 are based on browser based redirection authentication.
Question: Is it possible to authenticate on an IDP via client certificate without user interaction using the ITfoxtec.Identity.Saml2 library?
If yes, could you point me in the direction of how to do this, or is there even a sample for such a use case?
No it is not possible to authenticate on an IdP via a client certificate without user interaction using the ITfoxtec.Identity.Saml2 library. The library support SAML 2.0 and SAML 2.0 profile (browser based redirect/post login and logout).
Inested you need to use WS-Trust and SAML 2.0 which is supported by .NET.
I have a custom MVC solution based on user login through database based user validation. Now I want to send a SAML token by doing a IDP initiated SSO which will send my user data to service provider using X.509 based encryption.
I don't want to use any external Identity Provider for that. Is there any open source Java library through which I can generate a SAML token from my custom JEE application?
There are a number detailed here: SAML : SAML connectivity / toolkit.
Does Google supports SAML 2.0 Enhanced Client Proxy profile as an Identity Provider?
If so, what is the endpoint to be used to send messages?
No - they don't. For application authentication, Google's path is OAuth and OpenID Connect. See their Identity Developer page.