Debug ports changed.

Use DateTimeOffset instead of DateTime.

Author: Revsgaard

src/ITfoxtec.Identity.Saml2.MvcCore/Extensions/Saml2ResponseExtensions.cs

@@ -44,8 +44,8 @@ await httpContext.SignInAsync(Saml2Constants.AuthenticationScheme, principal,
                 {
                     AllowRefresh = false,
                     IsPersistent = isPersistent,
-                    IssuedUtc = new DateTimeOffset(saml2AuthnResponse.SecurityTokenValidFrom),
-                    ExpiresUtc = lifetime.HasValue ? new DateTimeOffset(DateTime.UtcNow + lifetime.Value) : new DateTimeOffset(saml2AuthnResponse.SecurityTokenValidTo),
+                    IssuedUtc = saml2AuthnResponse.SecurityTokenValidFrom,
+                    ExpiresUtc = lifetime.HasValue ? DateTimeOffset.UtcNow.Add(lifetime.Value) : saml2AuthnResponse.SecurityTokenValidTo,
                 });
 
             return principal;

src/ITfoxtec.Identity.Saml2/Request/Saml2AuthnResponse.cs

@@ -36,12 +36,12 @@ public class Saml2AuthnResponse : Saml2Response
         /// <summary>
         /// Gets the first instant in time at which this security token is valid.
         /// </summary>
-        public DateTime SecurityTokenValidFrom { get { return Saml2SecurityToken.ValidFrom; } }
+        public DateTimeOffset SecurityTokenValidFrom { get { return Saml2SecurityToken.ValidFrom; } }
 
         /// <summary>
         /// Gets the last instant in time at which this security token is valid.
         /// </summary>
-        public DateTime SecurityTokenValidTo { get { return Saml2SecurityToken.ValidTo; } }
+        public DateTimeOffset SecurityTokenValidTo { get { return Saml2SecurityToken.ValidTo; } }
 
         /// <summary>
         /// Saml2 Security Token Handler.
@@ -122,10 +122,11 @@ protected virtual SecurityTokenDescriptor CreateTokenDescriptor(IEnumerable<Clai
         {
             if (Issuer == null) throw new ArgumentNullException("Issuer property");
 
+            var now = DateTimeOffset.UtcNow;
             var tokenDescriptor = new SecurityTokenDescriptor()
             {
                 TokenType = SamlTokenTypes.Saml2TokenProfile11.OriginalString,
-                Lifetime = new Lifetime(DateTime.UtcNow, DateTime.UtcNow.AddMinutes(issuedTokenLifetime)),
+                Lifetime = new Lifetime(now.UtcDateTime, now.AddMinutes(issuedTokenLifetime).UtcDateTime),
                 Subject = new ClaimsIdentity(claims.Where(c => c.Type != ClaimTypes.NameIdentifier)),
                 AppliesToAddress = appliesToAddress.OriginalString,
                 TokenIssuerName = Issuer.OriginalString,
@@ -141,7 +142,7 @@ protected virtual Saml2SubjectConfirmation CreateSubjectConfirmation(int subject
             var subjectConfirmationData = new Saml2SubjectConfirmationData
             {
                 Recipient = Destination,
-                NotOnOrAfter = DateTime.UtcNow.AddMinutes(subjectConfirmationLifetime),
+                NotOnOrAfter = DateTimeOffset.UtcNow.AddMinutes(subjectConfirmationLifetime).UtcDateTime,
             };
 
             if (InResponseTo != null)
@@ -244,8 +245,8 @@ private void ValidateAssertionExpiration(XmlNode assertionElement)
                 throw new Saml2RequestException("SubjectConfirmationData Not Found.");
             }
 
-            var notOnOrAfter = subjectConfirmationData.Attributes[Saml2Constants.Message.NotOnOrAfter].GetValueOrNull<DateTime>();
-            if (notOnOrAfter < DateTime.UtcNow)
+            var notOnOrAfter = subjectConfirmationData.Attributes[Saml2Constants.Message.NotOnOrAfter].GetValueOrNull<DateTimeOffset>();
+            if (notOnOrAfter < DateTimeOffset.UtcNow)
             {
                 throw new Saml2RequestException($"Assertion has expired. Assertion valid NotOnOrAfter {notOnOrAfter}.");
             }

src/ITfoxtec.Identity.Saml2/Request/Saml2LogoutRequest.cs

@@ -23,7 +23,7 @@ public class Saml2LogoutRequest : Saml2Request
         /// The time at which the request expires, after which the recipient may discard the message. The time
         /// value is encoded in UTC, as described in Section 1.3.3.
         /// </summary>
-        public DateTime? NotOnOrAfter { get; set; }
+        public DateTimeOffset? NotOnOrAfter { get; set; }
 
         /// <summary>
         /// [Optional]
@@ -36,7 +36,7 @@ public Saml2LogoutRequest(Saml2Configuration config) : base(config)
             if (config == null) throw new ArgumentNullException(nameof(config));
 
             Destination = config.SingleLogoutDestination;
-            NotOnOrAfter = DateTime.UtcNow.AddMinutes(10);
+            NotOnOrAfter = DateTimeOffset.UtcNow.AddMinutes(10);
         }
 
         public Saml2LogoutRequest(Saml2Configuration config, ClaimsPrincipal currentPrincipal) : this(config)
@@ -81,7 +81,7 @@ protected override IEnumerable<XObject> GetXContent()
         {
             if (NotOnOrAfter.HasValue)
             {
-                yield return new XAttribute(Saml2Constants.Message.NotOnOrAfter, NotOnOrAfter.Value.ToString("o", CultureInfo.InvariantCulture));
+                yield return new XAttribute(Saml2Constants.Message.NotOnOrAfter, NotOnOrAfter.Value.UtcDateTime.ToString("o", CultureInfo.InvariantCulture));
             }
 
             if (Reason != null)

src/ITfoxtec.Identity.Saml2/Request/Saml2Request.cs

@@ -52,7 +52,7 @@ public string IdAsString
         /// [Required]
         /// The time instant of issue of the request. The time value is encoded in UTC, as described in Section 1.3.3.
         /// </summary>
-        public DateTime IssueInstant { get; set; }
+        public DateTimeOffset IssueInstant { get; set; }
 
         /// <summary>
         /// [Optional]
@@ -119,7 +119,7 @@ public Saml2Request(Saml2Configuration config)
 
             Id = new Saml2Id();
             Version = Saml2Constants.VersionNumber;
-            IssueInstant = DateTime.UtcNow;
+            IssueInstant = DateTimeOffset.UtcNow;
 #if DEBUG
             Debug.WriteLine("Message ID: " + Id);
 #endif
@@ -131,7 +131,7 @@ protected virtual IEnumerable<XObject> GetXContent()
             yield return new XAttribute(Saml2Constants.AssertionNamespaceNameX, Saml2Constants.AssertionNamespace.OriginalString);
             yield return new XAttribute(Saml2Constants.Message.Id, Id);
             yield return new XAttribute(Saml2Constants.Message.Version, Version);
-            yield return new XAttribute(Saml2Constants.Message.IssueInstant, IssueInstant.ToString("o", CultureInfo.InvariantCulture));
+            yield return new XAttribute(Saml2Constants.Message.IssueInstant, IssueInstant.UtcDateTime.ToString("o", CultureInfo.InvariantCulture));
 
             if (!string.IsNullOrWhiteSpace(Consent))
             {
@@ -179,7 +179,7 @@ protected internal virtual void Read(string xml, bool validateXmlSignature)
                 throw new Saml2RequestException("Invalid SAML2 version.");
             }
 
-            IssueInstant = XmlDocument.DocumentElement.Attributes[Saml2Constants.Message.IssueInstant].GetValueOrNull<DateTime>();
+            IssueInstant = XmlDocument.DocumentElement.Attributes[Saml2Constants.Message.IssueInstant].GetValueOrNull<DateTimeOffset>();
 
             Issuer = XmlDocument.DocumentElement[Saml2Constants.Message.Issuer, Saml2Constants.AssertionNamespace.OriginalString].GetValueOrNull<Uri>();
 

src/ITfoxtec.Identity.Saml2/Schemas/Metadata/EntityDescriptor.cs

@@ -115,7 +115,7 @@ protected IEnumerable<XObject> GetXContent()
             yield return new XAttribute(Saml2MetadataConstants.Message.Id, Id);
             if (ValidUntil.HasValue)
             {
-                yield return new XAttribute(Saml2MetadataConstants.Message.ValidUntil, DateTime.UtcNow.AddDays(ValidUntil.Value).ToString("o", CultureInfo.InvariantCulture));
+                yield return new XAttribute(Saml2MetadataConstants.Message.ValidUntil, DateTimeOffset.UtcNow.AddDays(ValidUntil.Value).UtcDateTime.ToString("o", CultureInfo.InvariantCulture));
             }
             yield return new XAttribute(Saml2MetadataConstants.MetadataNamespaceNameX, Saml2MetadataConstants.MetadataNamespace);
 

src/ITfoxtec.Identity.Saml2/Util/GenericTypeConverter.cs

@@ -24,9 +24,9 @@ internal static T ConvertValue<T>(string value, XmlNode xmlNode)
             {
                 return GenericConvertValue<T, Saml2Id>(new Saml2Id(value));
             }
-            if (genericType == typeof(DateTime))
+            if (genericType == typeof(DateTimeOffset))
             {
-                return GenericConvertValue<T, DateTime>(DateTime.Parse(value, CultureInfo.InvariantCulture, DateTimeStyles.AdjustToUniversal));
+                return GenericConvertValue<T, DateTimeOffset>(DateTimeOffset.Parse(value, CultureInfo.InvariantCulture, DateTimeStyles.AdjustToUniversal));
             }
             if(genericType == typeof(Saml2NameIdentifier))
             {

test/TestIdPCore/Properties/launchSettings.json

@@ -3,23 +3,14 @@
     "windowsAuthentication": false,
     "anonymousAuthentication": true,
     "iisExpress": {
-      "applicationUrl": "http://localhost:2907/",
-      "sslPort": 44341
+      "applicationUrl": "http://localhost:3111/",
+      "sslPort": 44305
     }
   },
   "profiles": {
     "IIS Express": {
       "commandName": "IISExpress",
       "launchBrowser": true,
-      "launchUrl": "https://localhost:44341/",
-      "environmentVariables": {
-        "ASPNETCORE_ENVIRONMENT": "Development"
-      }
-    },
-    "TestIdPCore": {
-      "commandName": "Project",
-      "launchBrowser": true,
-      "launchUrl": "http://localhost:5000",
       "environmentVariables": {
         "ASPNETCORE_ENVIRONMENT": "Development"
       }

test/TestIdPCore/appsettings.json

@@ -9,8 +9,8 @@
   },
   "Saml2": {
     "Issuer": "urn:itfoxtec:identity:saml2:testidpcore",
-    "SingleSignOnDestination": "https://localhost:44341/Auth/Login",
-    "SingleLogoutDestination": "https://localhost:44341/Auth/Logout",
+    "SingleSignOnDestination": "https://localhost:44305/Auth/Login",
+    "SingleLogoutDestination": "https://localhost:44305/Auth/Logout",
     "SignatureAlgorithm": "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256",
     "SigningCertificateFile": "itfoxtec.identity.saml2.testidpcore_Certificate.pfx",
     "SigningCertificatePassword": "!QAZ2wsx",

test/TestWebApp/Web.config

@@ -13,7 +13,7 @@
     <add key="webpages:Enabled" value="false" />
     <add key="ClientValidationEnabled" value="true" />
     <add key="UnobtrusiveJavaScriptEnabled" value="true" />
-    <add key="Saml2:IdPMetadata" value="https://localhost:44341/metadata" />
+    <add key="Saml2:IdPMetadata" value="https://localhost:44305/metadata" />
     <add key="Saml2:Issuer" value="urn:itfoxtec:identity:saml2:testwebapp" />
     <add key="Saml2:SingleSignOnDestination" value="https://test-adfs.itfoxtec.com/adfs/ls/" />
     <add key="Saml2:SingleLogoutDestination" value="https://test-adfs.itfoxtec.com/adfs/ls/" />

test/TestWebAppCore/Properties/launchSettings.json

@@ -3,23 +3,14 @@
     "windowsAuthentication": false,
     "anonymousAuthentication": true,
     "iisExpress": {
-      "applicationUrl": "http://localhost:2574/",
+      "applicationUrl": "http://localhost:3113/",
       "sslPort": 44306
     }
   },
   "profiles": {
     "IIS Express": {
       "commandName": "IISExpress",
       "launchBrowser": true,
-      "launchUrl": "https://localhost:44306/",
-      "environmentVariables": {
-        "ASPNETCORE_ENVIRONMENT": "Development"
-      }
-    },
-    "TestWebAppCore": {
-      "commandName": "Project",
-      "launchBrowser": true,
-      "launchUrl": "http://localhost:5000",
       "environmentVariables": {
         "ASPNETCORE_ENVIRONMENT": "Development"
       }