public static SamlSpOptionsLite Create(SamlSpOptions opts)
{
return(new SamlSpOptionsLite
{
SPId = opts.SPId,
SPName = opts.SPName,
IdpMetadataUrl = opts.IdpMetadataUrl
});
}
private static void ConfigureKeycloackSamlId(SamlSpOptions opts, X509Certificate2 certificate)
{
opts.SignInScheme = "ExternalAuthentication";
opts.SPId = "urn:keycloacksp";
opts.SigningCertificate = certificate;
opts.AuthnRequestSigned = true;
opts.WantsResponseSigned = true;
opts.WantAssertionSigned = true;
opts.SignatureAlg = SignatureAlgorithms.RSASHA256;
opts.CanonicalizationMethod = CanonicalizationMethods.C14;
opts.IdpMetadataUrl = "http://localhost:8080/auth/realms/master/protocol/saml/descriptor";
}
private static void ConfigureLocalSamlIdp(SamlSpOptions opts, X509Certificate2 certificate)
{
opts.SignInScheme = "ExternalAuthentication";
opts.SPId = "urn:sp";
opts.SigningCertificate = certificate;
opts.AuthnRequestSigned = true;
opts.WantsResponseSigned = true;
opts.WantAssertionSigned = true;
opts.SignatureAlg = SignatureAlgorithms.RSASHA256;
opts.CanonicalizationMethod = CanonicalizationMethods.C14;
opts.IdpMetadataUrl = "http://localhost:7000/saml/metadata";
opts.BaseUrl = "http://localhost:7001";
}
