Software in Review

SAML Single Sign On for ASP NET

Developer ComponentPro
Category Software Development
Date Added October 22, 2015
Downloads n/a | 36
License Commercial




Editor's rating + + + + +

If you have found a broken link, please contact us

Get Full Version Home Page


SAML Single Sign On for ASP NET
Reviewed by: Diana on 2018-07-01

.NET SAML Library for ASP.NET, MVC and Core

UltimateSAML is an OASIS SAML v1.x and v2.0 specifications compliant .NET toolkit. It offers an elegant and easy way to add support for Single Sign-On and Single-Logout SAML to your ASP.NET, ASP.NET MVC, ASP.NET Core, Desktop, and Service applications. The lightweight library helps you provide SSO access to cloud and intranet websites using a single credentials entry. Our responsive support team has helped many customers bring interoperability with Salesforce, Office 365, Google Apps, Shibboleth, and ADFS to their systems. We will guide you through the process to set up your SSO applications even if you are not familiar with SAML SSO

.NET SAML Component's Key Features

• Support both SAML1 and SAML2
• Fully documented API and detailed product documentation
• Easily create, modify, sign, verify, and serialize SAML assertions and protocol messages
• Supports all SAML 2.0 Bindings: HTTP POST, HTTP Redirect, HTTP Artifact, SOAP, PAOS, and SAML URI
• Fully supports the SAML 1.x Identity Provider - Service Provider web application model
• Fully supports Identity Provider and Service Provider initiated
• Fully supports Single Logout
• Fully supports SHA-1 and SHA-256 on generatting and verifying SAML XML signatures
• Gets, sets, encrypt and decrypt SAML attributes
• Support for cross-domain Single Sign-On
• Support for ASP.NET ASPX and Model–View–Controller
• Support for ASP.NET Core
• Support for .NET Core and Standard
• Many VB & C# SAML example projects and code snippets
• Royalty free run-time
• Documentation fully integrated into Visual Studio .NET
• Supports VS 2005 (.NET 2.0) to 2017 (.NET 4.7.x), Delphi 8, C# Builder and other compliant development environments.

Cross-domain Single Sign-On, IdP-Initiated and SP-Initiated Web Applications

We have setup three online websites for you to test cross-domain Single Sign-On feature. They are at http://idp.codeultimate.com (Identity Provider), http://sp.codeultimate.com (Service Provider 1), and http://sp2.codeultimate.com (Service Provider 2). The setup package of the .NET SAML Component also includes some other example projects including:

• IdP-Initiated Web Applications
SP-Initiated Web Applications

Salesforce Integration

Configuring Salesforce to work with your Identity Provider is as easy as setting up an IdP Initiated Web Application. Our SAML SSO for ASP.NET solution supports all the Salesforce scenarios:

• Salesforce acting as Service Provider
• Salesforce acting as IdP, IdP-Initiated
• Salesforce acting as IdP, SP-Initiated
• SP-Initiated Web Applications

Google Apps Integration

The library fully supports Google Apps, making it possible to let your web applications work with Google Apps with some simple steps.

Supports Multiple Platforms

The library can be used in ASP.NET Web Forms applications as well as Model-View-Controller and Core. Developers can also integrate it into their Desktop WinForms, Console, WPF, Windows Service or Web Service applications.

Complete and Easy-to-use C# SAML Library

Our SSO and SAML solution is flexible and fully functional which lets you add SSO capapbility to your new or existing applications without hassle. The .NET SAML library has all the SSO and security features needed in a single DLL.

What is SAML?

SAML (security assertion markup language) is a markup language based on the XML language. An open standard for the exchange of authentication and authorization data between participants, in particular between the provider of identity accounts and the service provider. SAML is an OASIS product developed by the Technical Security Services Committee. SAML was established in 2001; The last significant update of SAML was published in 2005, but protocol extensions were constantly released through additional, optional standards.

One of the important problems that SAML tries to solve is the provision of end-to-end authentication (Single Sign On technology) when working through a Web browser. The use of SAML as Single Sign On technology at the network level (intranet) is common (for example, using cookies), but extension beyond the private network (intranet) has been problematic and led to the creation of incompatible patented technologies (another, a more modern approach for securing SSO is the OpenID protocol).

Creating a project using the SAML component

Let's create a simple WPF application using the SAML component
 
 

Creating a project using the SAML component

We’ll need to add the necessary links to our project. Therefore, click on "Links" and select "Add link"
 
 

Creating a project using the SAML component

We’ll need to select such links - ComponentPro.Ftp.dll, ComponentPro.Common.dll, ComponentPro.FileSystem.dll, and ComponentPro.Network.dll. Which, I remind, are in the Extensions.
 
 

Working with the code

It is necessary to connect namespaces


          SAML v1.x                                                           SAML v2.0
 
 

Configuring Google Apps to work with your Identity Provider

To enable and configure single sign-on in Google Apps, you can follow the following steps:

1. Login to Google Apps.
2. Select "Advanced tools".
 
 

3. Then select "Set up single sign-on (SSO)".
 
 

4. Upload certificate, such as the SP_X509Certificate_ForGoogleSP.cer in the Idp web application.

5. Set Sign-in page URL, Sign-out page URL, and Change password URL. For example, when you deploy the test application on your server with domain name mydomain.com, the following URLs should be specified:

1. Sign-in page URL: http://www.mydomain.com/service.aspx
2. Sign-out page URL: http://www.mydomain.com/UserLogout.aspx
3. Change password URL: http://www.mydomain.com/changepassword.aspx
 
 


6. Add a user in Google Apps that is known to the IdP web application

Interdomain Single Sign-On

The cross-domain SSO live demo applications are at http://idp.codeultimate.com (Identity Provider), http://sp.codeultimate.com (Service Provider 1), and http://sp2.codeultimate.com (Service Provider 2).

The following steps illustrate how these cross-domain applications work:

1. Open http://sp.codeultimate.com
2. Click on the Next button; you will be redirected to IdP site to login
3. At the IdP's login page, type iuser and password
4. You are now redirected back to the SP's homepage
5. On the address bar of the browser, type http://sp2.codeultimate.com and press Enter
6. You will be represented with the homepage of the SP2
7. Click on the Next button; you will see that you are logged in at the SP2 with user id iuser
8. Now you see how to log into a single IdP and let users use other Service Providers without asking users to log in multiple times

Conclusions and recommendations
 
You can create, modify, and send SSO SAML queries with multiple lines of code, using the intuitive Ultimate SAML API. Using 100% managed code written in C #, the component uses the numerous built-in functions of the .NET Framework to improve performance, moreover, the library is CLS-compliant and doesn’t use any unsafe blocks for minimal requirements for resolution of the environment. Another plus that seemed to me important is the ability of the library to create web applications with different types of input (IsP, SP) and everything within the same library, as different editions do just one thing, a maximum of a couple of variations immediately all together.

Classes are fully documented with a detailed example of the code, which helps cut your way to learn. In online documentation, there are several articles on SOML SSO and ASP.NET that will help you understand OASIS SAML concepts and configurations to quickly create Web applications that support single sign-on. If your development environment is Visual Studio, use the full integration of online documentation. Just mark or select a keyword and press F1 in the Visual Studio IDE and the online documentation will be presented instantly.

If you have found a broken link, please contact us

Get Full Version Home Page


Write your comment
Your Name:
Rating:
Comment:
Control:
Please enter the word above
into the Control box.
Featured Product
Mobile Device Lockdown. With SureLock, you can allow only desired applications to run on the device and only admin can access the password protected settings to either modify lockdown configurations or exit the lockdown.
Search

Categories Tree
Operating Systems
Recently Added Developers
Products Archive
«        November 2018        »
MonTueWedThuFriSatSun
 1234
567891011
12131415161718
19202122232425
2627282930 

Copyright © 2008-2017 TheDownloadPlanet, Inc. All Rights Reserved Terms of Use »  Disclaimer »  Privacy Policy »  Our Partners Free software - Pages in the main Google index, Pages in the supplemental Google index and Supplemental Ratio(!less is better!). Click image for more detailed information.