I am using LowLevelAPI (I know HighLevel is recommended but this is a older app and the code is there). Using the following code -
XmlElement samlResponseXml = samlResponse.ToXml(); ... SAMLMessageSignature.Generate(samlResponseXml, x509CertificateIdp.PrivateKey, x509CertificateIdp); IdentityProvider.SendSAMLResponseByHTTPPost(Response, ssoState.assertionConsumerServiceURL, samlResponseXml, ssoState.relayState);
The <saml:signature> is nested inside <saml:Issuer> and not the <saml:Assertion> tag. One of the Service Provider is saying that <saml:Signature> should be inside <saml:Assertion>. All the samples I can find on google also have <saml:Signature> nested in <saml:Assertion>. Is there a way to change this?
|