I have a application build with .NET Core. This application is very simple, but the problem is that I have to integrate a 2FA app (PingId) for double security instead of one simple Login. I am guided to use SAML, for building bridges between Service Provider and Identity Provider. I have found some solutions online, and one of them that is open source is itfoxtec.identity.saml2.
What I want to know is that, is there anyone who can clear the way how this works? I mean I cannot understand some url in appsetting.json file.
Here is a demo of this file:
https://github.com/ITfoxtec/ITfoxtec.Identity.Saml2/blob/master/test/TestWebAppCore/appsettings.json
For example IdPMetadata key is a xml file that has to be provided by Identity Provider administrator?
SigningCertificateFile is a generated certificate by my Service Provider app or is something builded inside the application, if that is how to generate it?
Yes, the identity provider (IdP) should expose a SAML 2.0 metadata endpoint, the URL is added in the IdPMetadata.
The TestIdPCore sample is for testing the samples and to show how to implement a SAML 2.0 based IdP.
Your application (relaying party RP) needs a certificate, which is e.g., added as a file in SigningCertificateFile.