Forums, Documentation & Knowledge Base - ComponentSpace

Proxy Example Project


https://www.componentspace.com/forums/Topic11592.aspx

By Eightball - 5/27/2021

Hi, my company recently started using your SAML SSO for ASP.NET Core library.  We were able to successfully integrate it with one of our applications - thank you for providing it!

However, we are working on integrating a second application and would like to set up an IdP proxy application to handle both of them, and we're running into some issues getting it to work.

So first of all, will the SAML Proxy example project included in the examples folder work out of the box, with just changes to the appsettings configuration files for both the service provider application and the proxy?

Secondly, if it will just work out of the box, we're getting this error:
An unhandled exception ocurred while processing the request.
SamlProtocolException: The SAML request destination https://[HOST]/samlproxy/SAML/IDP/SingleSignOnService doesn't match the local provider name or URL.


I *believe* we have the correct request destinations set in the appsettings.json file of the service provider and the proxy - they certainly match as I've copied and pasted from one to the other:

service provider

{
    "Name": "https://[HOST]/samlproxy",
    "Description": "SAML Proxy",
    "SingleSignOnServiceUrl": "https://[HOST]/samlproxy/SAML/IDP/SingleSignOnService",
    "SingleLogoutServiceUrl": "https://[HOST]/samlproxy/SAML/IDP/SingleLogoutService",
    "ArtifactResolutionServiceUrl": "https://[HOST]/samlproxy/SAML/IDP/ArtifactResolutionService",
    "LocalCertificates": [
    {
     "FileName": "certificates/[CERT]"
    }
    ]
   }


proxy

"LocalIdentityProviderConfiguration": {
    "Name": "https://[HOST]/samlproxy",
    "Description": "SAML Proxy",
    "SingleSignOnServiceUrl": "https://[HOST]/samlproxy/SAML/IDP/SingleSignOnService",
    "SingleLogoutServiceUrl": "https://[HOST]/samlproxy/SAML/IDP/SingleLogoutService",
    "ArtifactResolutionServiceUrl": "https://[HOST]/samlproxy/SAML/IDP/ArtifactResolutionService",
    "LocalCertificates": [
    {
     "FileName": "certificates/[CERT]",
     "Password": "[PASSWORD]"
    }
    ]
   },


Basically I took the example URLs and put the actual hostname over the different localhost:port from the example appsettings.  I did have to put the proxy in its own application pool in IIS to get it to run.  Any suggestions?
By ComponentSpace - 6/2/2021

You're welcome. Thanks for the update.