Alternatively load the certificate by thumbprint from the machines Certificate Store.

Revsgaard · Revsgaard · commit 11bbe5a54ab1 · 2022-09-16T09:48:05.000+02:00
diff --git a/test/TestWebAppCore/Startup.cs b/test/TestWebAppCore/Startup.cs
@@ -33,6 +33,8 @@ public void ConfigureServices(IServiceCollection services)
             {
                 //saml2Configuration.SignAuthnRequest = true;
                 saml2Configuration.SigningCertificate = CertificateUtil.Load(AppEnvironment.MapToPhysicalFilePath(Configuration["Saml2:SigningCertificateFile"]), Configuration["Saml2:SigningCertificatePassword"], X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.PersistKeySet);
+                //Alternatively load the certificate by thumbprint from the machines Certificate Store.
+                //saml2Configuration.SigningCertificate = CertificateUtil.Load(StoreName.My, StoreLocation.LocalMachine, X509FindType.FindByThumbprint, Configuration["Saml2:SigningCertificateThumbprint"]);
 
                 //saml2Configuration.SignatureValidationCertificates.Add(CertificateUtil.Load(AppEnvironment.MapToPhysicalFilePath(Configuration["Saml2:SignatureValidationCertificateFile"])));
                 saml2Configuration.AllowedAudienceUris.Add(saml2Configuration.Issuer);

Original file line number	Diff line number	Diff line change
`@@ -33,6 +33,8 @@ public void ConfigureServices(IServiceCollection services)`
`33`	`33`	`{`
`34`	`34`	`//saml2Configuration.SignAuthnRequest = true;`
`35`	`35`	`saml2Configuration.SigningCertificate = CertificateUtil.Load(AppEnvironment.MapToPhysicalFilePath(Configuration["Saml2:SigningCertificateFile"]), Configuration["Saml2:SigningCertificatePassword"], X509KeyStorageFlags.MachineKeySet \| X509KeyStorageFlags.PersistKeySet);`
	`36`	`+ //Alternatively load the certificate by thumbprint from the machines Certificate Store.`
	`37`	`+ //saml2Configuration.SigningCertificate = CertificateUtil.Load(StoreName.My, StoreLocation.LocalMachine, X509FindType.FindByThumbprint, Configuration["Saml2:SigningCertificateThumbprint"]);`
`36`	`38`
`37`	`39`	`//saml2Configuration.SignatureValidationCertificates.Add(CertificateUtil.Load(AppEnvironment.MapToPhysicalFilePath(Configuration["Saml2:SignatureValidationCertificateFile"])));`
`38`	`40`	`saml2Configuration.AllowedAudienceUris.Add(saml2Configuration.Issuer);`