My website is the server provider. I have successfully generated the SP PFX file as the links above outlined. I'm currently making progress and worked with the Identity Provider to resolve a couple of hard-coding issues on their side.
I'm calling SAMLMessageSignature.Generate() for the Authentication request which is working with the new SP PFX file. The user is able to log and the assertion is processing as expected.
For the Logout, I'm calling the following, not using SAMLMessageSignature.Generate() to sign the XML. However, in this implementation, when I call LogOut, SingleLogoutService.ReceiveLogoutMessageByHTTPRedirect() immediately errors with "No SAML message query string parameter in HTTP Redirect". Has the user of this function changed in the new versions? I would like to switch to you
public bool LogOut()
var idpCertificate = GetIdpCertificate();
out XmlElement logoutMessage,
out string relayState,
out bool isRequest,
out bool signed,
private void SendLogoutResponse(string relayState)
XmlElement logoutResponse = CreateLogoutResponse();
X509Certificate2 spCertificate = GetSpCertificate();