A change to saml.config has been introduced in v3.5.0 to provide more flexible support for configuring X.509 certificates.
Previously, a local certificate file was specified as follows.
LocalCertificateFile="Certificates\sp.pfx"
LocalCertificatePassword="password"
The new syntax is:
<LocalCertificates>
<Certificate FileName="Certificates\sp.pfx" Password="password"/>
</LocalCertificates>
Similarly, a partner certificate was specified as follows.
PartnerCertificateFile="Certificates\idp.cer"
The new syntax is:
<PartnerCertificates>
<Certificate FileName="Certificates\idp.cer"/>
</PartnerCertificates>
For example:
<SAMLConfiguration xmlns="urn:componentspace:SAML:2.0:configuration">
<ServiceProvider
Name="
https://ExampleServiceProvider" Description="Example Service Provider"
AssertionConsumerServiceUrl="~/SAML/AssertionConsumerService.aspx">
<LocalCertificates>
<Certificate FileName="Certificates\sp.pfx" Password="password"/>
</LocalCertificates>
</ServiceProvider>
<PartnerIdentityProviders>
<PartnerIdentityProvider
Name="
https://ExampleIdentityProvider" Description="Example Identity Provider"
SignAuthnRequest="true"
SingleSignOnServiceUrl="
https://localhost:44390/SAML/SSOService.aspx" SingleLogoutServiceUrl="
https://localhost:44390/SAML/SLOService.aspx"> <PartnerCertificates>
<Certificate FileName="Certificates\idp.cer"/>
</PartnerCertificates>
</PartnerIdentityProvider>
</PartnerIdentityProviders>
</SAMLConfiguration>
For more information, refer to the
ComponentSpace SAML for ASP.NET Configuration Guide