Show SignAuthnRequest in test applications

Revsgaard · Revsgaard · commit 206ad133e6f0 · 2023-03-23T12:20:09.000+01:00
diff --git a/test/TestIdPCore/Controllers/AuthController.cs b/test/TestIdPCore/Controllers/AuthController.cs
@@ -45,7 +45,7 @@ public async Task<IActionResult> Login()
             var requestBinding = new Saml2RedirectBinding();
             var relyingParty = await ValidateRelyingParty(ReadRelyingPartyFromLoginRequest(requestBinding));
 
-            var saml2AuthnRequest = new Saml2AuthnRequest(GetRpSaml2Configuration());
+            var saml2AuthnRequest = new Saml2AuthnRequest(GetRpSaml2Configuration(relyingParty));
             try
             {
                 requestBinding.Unbind(Request.ToGenericHttpRequest(), saml2AuthnRequest);
@@ -230,6 +230,7 @@ private Saml2Configuration GetRpSaml2Configuration(RelyingParty relyingParty = n
             var rpConfig = new Saml2Configuration()
             {
                 Issuer = config.Issuer,
+                SignAuthnRequest = config.SignAuthnRequest,
                 SingleSignOnDestination = config.SingleSignOnDestination,
                 SingleLogoutDestination = config.SingleLogoutDestination,
                 ArtifactResolutionService = config.ArtifactResolutionService,
diff --git a/test/TestIdPCore/Controllers/MetadataController.cs b/test/TestIdPCore/Controllers/MetadataController.cs
@@ -26,6 +26,7 @@ public IActionResult Index()
             entityDescriptor.ValidUntil = 365;
             entityDescriptor.IdPSsoDescriptor = new IdPSsoDescriptor
             {
+                WantAuthnRequestsSigned = config.SignAuthnRequest,
                 SigningCertificates = new X509Certificate2[]
                 {
                     config.SigningCertificate
diff --git a/test/TestIdPCore/Startup.cs b/test/TestIdPCore/Startup.cs
@@ -31,6 +31,7 @@ public void ConfigureServices(IServiceCollection services)
             services.BindConfig<Settings>(Configuration, "Settings");
             services.BindConfig<Saml2Configuration>(Configuration, "Saml2", (serviceProvider, saml2Configuration) =>
             {
+                saml2Configuration.SignAuthnRequest = true;
                 saml2Configuration.SigningCertificate = CertificateUtil.Load(AppEnvironment.MapToPhysicalFilePath(Configuration["Saml2:SigningCertificateFile"]), Configuration["Saml2:SigningCertificatePassword"], X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.PersistKeySet);
                 if (!saml2Configuration.SigningCertificate.IsValidLocalTime())
                 {
diff --git a/test/TestWebAppCore/Startup.cs b/test/TestWebAppCore/Startup.cs
@@ -31,7 +31,6 @@ public void ConfigureServices(IServiceCollection services)
         {
             services.BindConfig<Saml2Configuration>(Configuration, "Saml2", (serviceProvider, saml2Configuration) =>
             {
-                //saml2Configuration.SignAuthnRequest = true;
                 saml2Configuration.SigningCertificate = CertificateUtil.Load(AppEnvironment.MapToPhysicalFilePath(Configuration["Saml2:SigningCertificateFile"]), Configuration["Saml2:SigningCertificatePassword"], X509KeyStorageFlags.MachineKeySet | X509KeyStorageFlags.PersistKeySet);
                 //Alternatively load the certificate by thumbprint from the machines Certificate Store.
                 //saml2Configuration.SigningCertificate = CertificateUtil.Load(StoreName.My, StoreLocation.LocalMachine, X509FindType.FindByThumbprint, Configuration["Saml2:SigningCertificateThumbprint"]);

Original file line number	Diff line number	Diff line change
`@@ -26,6 +26,7 @@ public IActionResult Index()`
`26`	`26`	`entityDescriptor.ValidUntil = 365;`
`27`	`27`	`entityDescriptor.IdPSsoDescriptor = new IdPSsoDescriptor`
`28`	`28`	`{`
	`29`	`+ WantAuthnRequestsSigned = config.SignAuthnRequest,`
`29`	`30`	`SigningCertificates = new X509Certificate2[]`
`30`	`31`	`{`
`31`	`32`	`config.SigningCertificate`
Original file line number	Diff line number	Diff line change
`@@ -31,6 +31,7 @@ public void ConfigureServices(IServiceCollection services)`
`31`	`31`	`services.BindConfig<Settings>(Configuration, "Settings");`
`32`	`32`	`services.BindConfig<Saml2Configuration>(Configuration, "Saml2", (serviceProvider, saml2Configuration) =>`
`33`	`33`	`{`
	`34`	`+ saml2Configuration.SignAuthnRequest = true;`
`34`	`35`	`saml2Configuration.SigningCertificate = CertificateUtil.Load(AppEnvironment.MapToPhysicalFilePath(Configuration["Saml2:SigningCertificateFile"]), Configuration["Saml2:SigningCertificatePassword"], X509KeyStorageFlags.MachineKeySet \| X509KeyStorageFlags.PersistKeySet);`
`35`	`36`	`if (!saml2Configuration.SigningCertificate.IsValidLocalTime())`
`36`	`37`	`{`
Original file line number	Diff line number	Diff line change
`@@ -31,7 +31,6 @@ public void ConfigureServices(IServiceCollection services)`
`31`	`31`	`{`
`32`	`32`	`services.BindConfig<Saml2Configuration>(Configuration, "Saml2", (serviceProvider, saml2Configuration) =>`
`33`	`33`	`{`
`34`		`- //saml2Configuration.SignAuthnRequest = true;`
`35`	`34`	`saml2Configuration.SigningCertificate = CertificateUtil.Load(AppEnvironment.MapToPhysicalFilePath(Configuration["Saml2:SigningCertificateFile"]), Configuration["Saml2:SigningCertificatePassword"], X509KeyStorageFlags.MachineKeySet \| X509KeyStorageFlags.PersistKeySet);`
`36`	`35`	`//Alternatively load the certificate by thumbprint from the machines Certificate Store.`
`37`	`36`	`//saml2Configuration.SigningCertificate = CertificateUtil.Load(StoreName.My, StoreLocation.LocalMachine, X509FindType.FindByThumbprint, Configuration["Saml2:SigningCertificateThumbprint"]);`