This project is read-only.

SAML2.Saml20Exception: Unknown identity provider

I am randomly getting this unhandled exception, SAML2.Saml20Exception: Unknown identity provider, when my users try to log out after having previously logged in. Here's the Stack Trace: SAML2.Saml...

Id #17 | Release: None | Updated: Nov 10, 2016 at 2:32 AM by tafs7 | Created: Nov 2, 2016 at 11:34 PM by tafs7

Single Sign On Service endpoint already contains url params. Auth request may not account for this

Per our discussion here: https://saml2.codeplex.com/discussions/657516 It looks like the redirect protocol binding will append a "?" after the single sign on destination even if that destination ...

Id #16 | Release: None | Updated: Sep 1, 2016 at 1:31 PM by MikeSource | Created: Aug 31, 2016 at 7:32 PM by MikeSource

assertion signature verification fails

when omitAssertionSignatureCheck is not set to true, and both the assertion and the saml response are signed, then the signature verification fails due to a .NET bug (see https://support.microsoft....

Id #14 | Release: None | Updated: May 14, 2016 at 3:47 PM by cmconti | Created: May 14, 2016 at 3:47 PM by cmconti

Fix SignatureMethod XmlAttribute

As per https://saml2.codeplex.com/discussions/638453 XmlAttribute should be "Algorithm", not "v". public class SignatureMethod { public const string ElementName = "SignatureMethod"; publ...

Id #13 | Release: None | Updated: Dec 10, 2015 at 1:49 PM by dfdiego | Created: Nov 16, 2015 at 1:46 AM by i8beef

Updates from OIOSAML

I've attached a zip file that contains a port of the changes that were in OIOSAML.NET 1.7.9 to set the XMLResolver to NULL to prevent XML injection. There is also a small change in the test app.co...

Id #12 | Release: None | Updated: Sep 1, 2016 at 12:19 AM by i8beef | Created: Nov 3, 2015 at 2:28 PM by cmconti

Allow for SHA256 based signing

Though the specification only requires SHA1, the optional extension exists to allow for other signing methods, such as SHA256. As a start to supporting arbitrary framework supported hashing algorit...

Id #10 | Release: None | Updated: Fri at 3:41 PM by i8beef | Created: Aug 17, 2014 at 5:13 PM by i8beef

Allow for code based configuration

It would be nice to allow for code based configuration, instead of requiring a web.config / app.config based configuration scheme, especially for further unit testing, etc.

Id #9 | Release: None | Updated: Fri at 3:41 PM by i8beef | Created: Aug 17, 2014 at 5:10 PM by i8beef

  • 1-7 of 7 Work Items
    • Previous
    • 1
    • Next
    • Showing
    • All
    • Work Items