Reputation: 91
Accepting a SAML 1.1 Assertion
I am working on providing a SSO solution to a customer who acts as an identity provider. He already has Siteminder on his side to generate SAML 1.1 assertions with user id and timestamp as parameters. Our task is to accept this assertion which is signed, decrypt it and send it to the authenticator we already have. The authenticator validates the info and gives access to our application. Here we act as the service provider.
I am new to SAML and have no idea how to integrate SAML to our current ASP login pages. Can u help me on how to accept these assertion requests from the Idp. They are using SAML/POST profile.
Thanks, king
Upvotes: 1
Views: 1252
Answers (1)
Reputation: 56540
ASP login? Oh dear, you will have to manually decrypt, validate and accept/decline the token, and then map the user to whatever role based mechanism your application uses.
If you were on ASP.NET then the Windows Identity Framework would help.
Upvotes: 0
Related Questions
- Generate SAML assertion with .NET
- SAML 2.0 Assertion request
- Validate SAML Response
- Check authenticity of SAML assertion message as SP
- Can SAML Assertions Be Modified In Transit?
- How to get an already issued SAML assertion?
- Required signature on a SAML assertion
- Generate SAML 1.1 (and possibly 2.0) assertions
- How to validated Assertion for SAML 2.0 Bearer at SalesForce.com
- Validating SAML Assertion from SalesForce validator