Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SAMLResponse with EncryptedAssertion #35

Open
anibale opened this issue Jun 8, 2020 · 8 comments
Open

SAMLResponse with EncryptedAssertion #35

anibale opened this issue Jun 8, 2020 · 8 comments
Labels
help wanted

Comments

@anibale
Copy link

anibale commented Jun 8, 2020

When the SAMLResponse contains an EncryptedAssertion, the attributes are not read.
@alex-jitbit
Copy link
Member

Can you provide a response example?

@anibale
Copy link
Author

anibale commented Jul 15, 2020

Sure. This example is base64 encoded and contains "EncryptedAssertion" attribute.

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

@stricq
Copy link

stricq commented Oct 8, 2020
edited

My company's response also has the EncryptedAssertion. That makes this code useless to me. Sadly, so far, this is the only code I have found that actually shows how to use SAML2.

@stricq
Copy link

stricq commented Oct 12, 2020

After further study, it seems the xpathing fails because the prefixes and attributes are different in this case. Just changing the code to match the new paths may be all that is needed. I can't test this yet, but once I am setup on my corporate SSO, I'll give it a try.

@QuestionsIHave
Copy link

hello, was this ever fixed to be able to work with encrypted assertions? if yes, are there any samples that can be provided?

@diegoclementedev
Copy link

Hi @alex-jitbit
Does this problem have a solution?

@alex-jitbit
Copy link
Member

I'm not sure how to approach this, any help is appreciated

@ruialexrib
Copy link

I know this a bit old, but I have done an AssertionParserUtils class that "DecryptIfNeeded" when an assertion is encrypted... you may have a look and adapt for your code.... I also have other classes to handle the single logout (SP initiated or IDP initiated)
Take a look at: https://github.com/ruialexrib/Programatica.Auth.SAML.ServiceProviderUtils/blob/master/src/Utils/AssertionParserUtils.cs

Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 26, 2023
@Havagan
jitbit#35 - Added support for encrypted assertions.
25cf07b
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 27, 2023
@Havagan
jitbit#35 - Added support for encrypted assertions.
b1c0f45
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 27, 2023
@Havagan
jitbit#35 - Added support for encrypted assertions.
3cb2a61
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 30, 2023
@Havagan
jitbit#35 - Added editorconfig to enforce using Western European Wind…
0c6890e 
…ows file encoding.
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 30, 2023
@Havagan
jitbit#35 - Added editorconfig to enforce using Western European Wind…
b101c87 
…ows file encoding.

jitbit#35 - Added support for encrypted assertions.
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 30, 2023
@Havagan
jitbit#35 - Changed line endings to LF from CRLF.
34f345d
Havagan added a commit to Havagan/AspNetSaml that referenced this issue Aug 30, 2023
@Havagan
jitbit#35 - Changed line endings to LF from CRLF.
2f0a7c0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@stricq @ruialexrib @anibale @alex-jitbit @diegoclementedev @QuestionsIHave