Hi,
We're a service provider. Generally we've been providing out partner Identity Providers a unique URL for our assertion consumer service. That URL route contains a configuration ID that we've been using to set the configuration before we receive the assertion from the IdP.
We now have a requirement that wants us to have the same entityId and acs endpoint for all IdP's. That means no more unique route that tells me the configuration ID to start.
My questions, We need call SetConfigurationIDAsync before we call ReceiveSsoAsync, correct? ReceiveSsoAsync will fail if the correct corresponding configuration is not set, correct? If we don't have an ID to set the configuration, is there a way to set the configuration by the Issuer of the incoming message?
Unless there's something built in I have a feeling I'll have to read the query myself and try to get the issuer out of the saml message. Then I can query our db for the configuration and set it myself.
Thanks!
|