Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SAMLResponse with EncryptedAssertion #35

Open
anibale opened this issue Jun 8, 2020 · 8 comments
Open

SAMLResponse with EncryptedAssertion #35

anibale opened this issue Jun 8, 2020 · 8 comments

Comments

@anibale
Copy link

anibale commented Jun 8, 2020

When the SAMLResponse contains an EncryptedAssertion, the attributes are not read.

@alex-jitbit
Copy link
Member

Can you provide a response example?

@anibale
Copy link
Author

anibale commented Jul 15, 2020

Sure. This example is base64 encoded and contains "EncryptedAssertion" attribute.

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

@stricq
Copy link

stricq commented Oct 8, 2020

My company's response also has the EncryptedAssertion. That makes this code useless to me. Sadly, so far, this is the only code I have found that actually shows how to use SAML2.

@stricq
Copy link

stricq commented Oct 12, 2020

After further study, it seems the xpathing fails because the prefixes and attributes are different in this case. Just changing the code to match the new paths may be all that is needed. I can't test this yet, but once I am setup on my corporate SSO, I'll give it a try.

@QuestionsIHave
Copy link

hello, was this ever fixed to be able to work with encrypted assertions? if yes, are there any samples that can be provided?

@diegoclementedev
Copy link

Hi @alex-jitbit
Does this problem have a solution?

@alex-jitbit
Copy link
Member

I'm not sure how to approach this, any help is appreciated

@ruialexrib
Copy link

I know this a bit old, but I have done an AssertionParserUtils class that "DecryptIfNeeded" when an assertion is encrypted... you may have a look and adapt for your code.... I also have other classes to handle the single logout (SP initiated or IDP initiated)
Take a look at: https://github.com/ruialexrib/Programatica.Auth.SAML.ServiceProviderUtils/blob/master/src/Utils/AssertionParserUtils.cs

Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 26, 2023
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 27, 2023
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 27, 2023
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 30, 2023
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 30, 2023
…ows file encoding.

jitbit#35 - Added support for encrypted assertions.
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 30, 2023
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 30, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

6 participants