search

jitbit / AspNetSaml

Very simple SAML 2.0 consumer module for ASP.NET/C#
https://www.jitbit.com
Apache License 2.0
355 stars 116 forks source link

SAMLResponse with EncryptedAssertion #35

Open anibale opened 4 years ago

anibale commented 4 years ago

When the SAMLResponse contains an EncryptedAssertion, the attributes are not read.

alex-jitbit commented 4 years ago

Can you provide a response example?

anibale commented 4 years ago

Sure. This example is base64 encoded and contains "EncryptedAssertion" attribute.

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

stricq commented 3 years ago

My company's response also has the EncryptedAssertion. That makes this code useless to me. Sadly, so far, this is the only code I have found that actually shows how to use SAML2.

stricq commented 3 years ago

After further study, it seems the xpathing fails because the prefixes and attributes are different in this case. Just changing the code to match the new paths may be all that is needed. I can't test this yet, but once I am setup on my corporate SSO, I'll give it a try.

QuestionsIHave commented 2 years ago

hello, was this ever fixed to be able to work with encrypted assertions? if yes, are there any samples that can be provided?

diegoclementedev commented 1 year ago

Hi @alex-jitbit Does this problem have a solution?

alex-jitbit commented 1 year ago

I'm not sure how to approach this, any help is appreciated

ruialexrib commented 1 year ago

I know this a bit old, but I have done an AssertionParserUtils class that "DecryptIfNeeded" when an assertion is encrypted... you may have a look and adapt for your code.... I also have other classes to handle the single logout (SP initiated or IDP initiated) Take a look at: https://github.com/ruialexrib/Programatica.Auth.SAML.ServiceProviderUtils/blob/master/src/Utils/AssertionParserUtils.cs