ITfoxtec
diff --git a/‎src/ITfoxtec.Identity.Saml2.Mvc/ITfoxtec.Identity.Saml2.Mvc.csproj‎
Lines changed: 1 addition & 1 deletion b/‎src/ITfoxtec.Identity.Saml2.Mvc/ITfoxtec.Identity.Saml2.Mvc.csproj‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/ITfoxtec.Identity.Saml2.MvcCore/ITfoxtec.Identity.Saml2.MvcCore.csproj‎
Lines changed: 1 addition & 1 deletion b/‎src/ITfoxtec.Identity.Saml2.MvcCore/ITfoxtec.Identity.Saml2.MvcCore.csproj‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/ITfoxtec.Identity.Saml2/ITfoxtec.Identity.Saml2.csproj‎
Lines changed: 1 addition & 1 deletion b/‎src/ITfoxtec.Identity.Saml2/ITfoxtec.Identity.Saml2.csproj‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/ITfoxtec.Identity.Saml2/Schemas/Metadata/EntityDescriptor.cs‎
Lines changed: 35 additions & 0 deletions b/‎src/ITfoxtec.Identity.Saml2/Schemas/Metadata/EntityDescriptor.cs‎
Lines changed: 35 additions & 0 deletions
diff --git a/‎src/ITfoxtec.Identity.Saml2/Schemas/Metadata/IdPSsoDescriptor.cs‎
Lines changed: 4 additions & 73 deletions b/‎src/ITfoxtec.Identity.Saml2/Schemas/Metadata/IdPSsoDescriptor.cs‎
Lines changed: 4 additions & 73 deletions
diff --git a/‎src/ITfoxtec.Identity.Saml2/Schemas/Metadata/SPSsoDescriptor.cs‎
Lines changed: 35 additions & 2 deletions b/‎src/ITfoxtec.Identity.Saml2/Schemas/Metadata/SPSsoDescriptor.cs‎
Lines changed: 35 additions & 2 deletions
diff --git a/‎src/ITfoxtec.Identity.Saml2/Schemas/Metadata/SsoDescriptorType.cs‎
Lines changed: 83 additions & 0 deletions b/‎src/ITfoxtec.Identity.Saml2/Schemas/Metadata/SsoDescriptorType.cs‎
Lines changed: 83 additions & 0 deletions
@@ -17,7 +17,7 @@ Support .NET Framework 4.6.2 and 4.7.2</Description>
     <AssemblyVersion>4.0.3.0</AssemblyVersion>
     <FileVersion>4.0.3.0</FileVersion>
     <Copyright>Copyright © 2019</Copyright>
-    <Version>4.0.3.0</Version>
+    <Version>4.0.3.0-beta1</Version>
     <SignAssembly>true</SignAssembly>
     <AssemblyOriginatorKeyFile>ITfoxtec.SAML2.snk</AssemblyOriginatorKeyFile>
     <DelaySign>false</DelaySign>
 
@@ -19,7 +19,7 @@
     <AssemblyVersion>4.0.3.0</AssemblyVersion>
     <FileVersion>4.0.3.0</FileVersion>
     <Copyright>Copyright © 2019</Copyright>
-    <Version>4.0.3.0</Version>
+    <Version>4.0.3.0-beta1</Version>
     <SignAssembly>true</SignAssembly>
     <AssemblyOriginatorKeyFile>ITfoxtec.SAML2.snk</AssemblyOriginatorKeyFile>
     <DelaySign>false</DelaySign>
 
@@ -24,7 +24,7 @@ Tested for compliance with AD FS, Azure AD and Azure AD B2C. Furthermore, the Da
     <AssemblyVersion>4.0.3.0</AssemblyVersion>
     <FileVersion>4.0.3.0</FileVersion>
     <Copyright>Copyright © 2019</Copyright>
-    <Version>4.0.3.0</Version>
+    <Version>4.0.3.0-beta1</Version>
     <SignAssembly>true</SignAssembly>
     <AssemblyOriginatorKeyFile>ITfoxtec.SAML2.snk</AssemblyOriginatorKeyFile>
     <DelaySign>false</DelaySign>
 
@@ -161,6 +161,28 @@ public virtual EntityDescriptor ReadIdPSsoDescriptor(string idPMetadataXml)
             return this;
         }
 
+        public virtual EntityDescriptor ReadSPSsoDescriptor(string spMetadataXml)
+        {
+            var metadataXmlDocument = spMetadataXml.ToXmlDocument();
+
+            if (metadataXmlDocument.DocumentElement.NamespaceURI != Saml2MetadataConstants.MetadataNamespace.OriginalString)
+            {
+                throw new Saml2RequestException("Not Metadata.");
+            }
+
+            EntityId = metadataXmlDocument.DocumentElement.Attributes[Saml2MetadataConstants.Message.EntityId].GetValueOrNull<string>();
+
+            Id = metadataXmlDocument.DocumentElement.Attributes[Saml2MetadataConstants.Message.Id].GetValueOrNull<Saml2Id>();
+
+            var spSsoDescriptorElement = metadataXmlDocument.DocumentElement[Saml2MetadataConstants.Message.SPSsoDescriptor, Saml2MetadataConstants.MetadataNamespace.OriginalString];
+            if (spSsoDescriptorElement != null)
+            {
+                SPSsoDescriptor = new SPSsoDescriptor().Read(spSsoDescriptorElement);
+            }
+
+            return this;
+        }
+
         public virtual EntityDescriptor ReadIdPSsoDescriptorFromFile(string idPMetadataFile)
         {
             return ReadIdPSsoDescriptor(File.ReadAllText(idPMetadataFile));
@@ -173,5 +195,18 @@ public virtual EntityDescriptor ReadIdPSsoDescriptorFromUrl(Uri idPMetadataUrl)
                 return ReadIdPSsoDescriptor(webClient.DownloadString(idPMetadataUrl));
             }
         }
+
+        public virtual EntityDescriptor ReadSPSsoDescriptorFromFile(string spMetadataFile)
+        {
+            return ReadSPSsoDescriptor(File.ReadAllText(spMetadataFile));
+        }
+
+        public virtual EntityDescriptor ReadSPSsoDescriptorFromUrl(Uri spMetadataUrl)
+        {
+            using (var webClient = new WebClient())
+            {
+                return ReadSPSsoDescriptor(webClient.DownloadString(spMetadataUrl));
+            }
+        }
     }
 }
@@ -1,7 +1,5 @@
 using System;
 using System.Collections.Generic;
-using System.Security.Cryptography.X509Certificates;
-using System.Security.Cryptography.Xml;
 using System.Xml;
 using System.Xml.Linq;
 
@@ -93,86 +91,19 @@ protected internal IdPSsoDescriptor Read(XmlElement xmlElement)
         {
             WantAuthnRequestsSigned = xmlElement.Attributes[Saml2MetadataConstants.Message.WantAuthnRequestsSigned]?.Value.Equals(true.ToString(), StringComparison.InvariantCultureIgnoreCase);
 
-            var signingKeyDescriptorElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.KeyDescriptor}'][contains(@use,'{Saml2MetadataConstants.KeyTypes.Signing}') or not(@use)]");
-            if (signingKeyDescriptorElements != null)
-            {
-                SigningCertificates = ReadKeyDescriptorElements(signingKeyDescriptorElements);
-            }
-
-            var encryptionKeyDescriptorElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.KeyDescriptor}'][contains(@use,'{Saml2MetadataConstants.KeyTypes.Encryption}') or not(@use)]");
-            if (encryptionKeyDescriptorElements != null)
-            {
-                EncryptionCertificates = ReadKeyDescriptorElements(encryptionKeyDescriptorElements);
-            }
+            ReadKeyDescriptors(xmlElement);
 
             var singleSignOnServiceElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.SingleSignOnService}']");
             if (singleSignOnServiceElements != null)
             {
                 SingleSignOnServices = ReadServices<SingleSignOnService>(singleSignOnServiceElements);
             }
 
-            var singleLogoutServiceElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.SingleLogoutService}']");
-            if (singleLogoutServiceElements != null)
-            {
-                SingleLogoutServices = ReadServices<SingleLogoutService>(singleLogoutServiceElements);
-            }
+            ReadSingleLogoutService(xmlElement);
 
-            var nameIDFormatElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.NameIDFormat}']");
-            if (nameIDFormatElements != null)
-            {
-                NameIDFormats = ReadNameIDFormatElements(nameIDFormatElements);
-            }
+            ReadNameIDFormat(xmlElement);
 
             return this;
-        }
-
-        private IEnumerable<X509Certificate2> ReadKeyDescriptorElements(XmlNodeList keyDescriptorElements)
-        {
-            foreach (XmlElement keyDescriptorElement in keyDescriptorElements)
-            {
-                var keyInfoElement = keyDescriptorElement.SelectSingleNode($"*[local-name()='{Saml2MetadataConstants.Message.KeyInfo}']") as XmlElement;
-                if (keyInfoElement != null)
-                {
-                    var keyInfo = new KeyInfo();
-                    keyInfo.LoadXml(keyInfoElement);
-                    var keyInfoEnumerator = keyInfo.GetEnumerator();
-                    while (keyInfoEnumerator.MoveNext())
-                    {
-                        var keyInfoX509Data = keyInfoEnumerator.Current as KeyInfoX509Data;
-                        if (keyInfoX509Data != null)
-                        {
-                            foreach (var certificate in keyInfoX509Data.Certificates)
-                            {
-                                if (certificate is X509Certificate2)
-                                {
-                                    yield return certificate as X509Certificate2;
-                                }
-                            }
-                        }
-                    }
-                }
-            }
-        }
-
-        private IEnumerable<Uri> ReadNameIDFormatElements(XmlNodeList nameIDFormatElements)
-        {
-            foreach (XmlNode nameIDFormatElement in nameIDFormatElements)
-            {
-                yield return new Uri(nameIDFormatElement.InnerText);
-            }
-        }
-
-        private IEnumerable<T> ReadServices<T>(XmlNodeList singleLogoutServiceElements) where T : EndpointType, new()
-        {
-            foreach (XmlNode singleLogoutServiceElement in singleLogoutServiceElements)
-            {
-                yield return new T
-                {
-                    Binding = singleLogoutServiceElement.Attributes[Saml2MetadataConstants.Message.Binding].GetValueOrNull<Uri>(),
-                    Location = singleLogoutServiceElement.Attributes[Saml2MetadataConstants.Message.Location].GetValueOrNull<Uri>(),
-                    ResponseLocation = singleLogoutServiceElement.Attributes[Saml2MetadataConstants.Message.ResponseLocation].GetValueOrNull<Uri>()
-                };
-            }
-        }
+        }      
     }
 }
@@ -1,7 +1,6 @@
 using System;
 using System.Collections.Generic;
-using System.Security.Cryptography.X509Certificates;
-using System.Security.Cryptography.Xml;
+using System.Xml;
 using System.Xml.Linq;
 
 namespace ITfoxtec.Identity.Saml2.Schemas.Metadata
@@ -118,5 +117,39 @@ protected IEnumerable<XObject> GetXContent()
                 }                
             }
         }
+
+
+        protected internal SPSsoDescriptor Read(XmlElement xmlElement)
+        {
+            AuthnRequestsSigned = xmlElement.Attributes[Saml2MetadataConstants.Message.AuthnRequestsSigned]?.Value.Equals(true.ToString(), StringComparison.InvariantCultureIgnoreCase);
+
+            WantAssertionsSigned = xmlElement.Attributes[Saml2MetadataConstants.Message.WantAssertionsSigned]?.Value.Equals(true.ToString(), StringComparison.InvariantCultureIgnoreCase);
+
+            ReadKeyDescriptors(xmlElement);
+
+            var assertionConsumerServicesElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.AssertionConsumerService}']");
+            if (assertionConsumerServicesElements != null)
+            {
+                AssertionConsumerServices = ReadAcsService(assertionConsumerServicesElements);
+            }
+
+            ReadSingleLogoutService(xmlElement); 
+
+            ReadNameIDFormat(xmlElement);
+
+            return this;
+        }
+
+        protected IEnumerable<AssertionConsumerService> ReadAcsService(XmlNodeList acsElements) 
+        {
+            foreach (XmlNode singleLogoutServiceElement in acsElements)
+            {
+                yield return new AssertionConsumerService
+                {
+                    Binding = singleLogoutServiceElement.Attributes[Saml2MetadataConstants.Message.Binding].GetValueOrNull<Uri>(),
+                    Location = singleLogoutServiceElement.Attributes[Saml2MetadataConstants.Message.Location].GetValueOrNull<Uri>(),
+                };
+            }
+        }
     }
 }
@@ -2,6 +2,7 @@
 using System.Collections.Generic;
 using System.Security.Cryptography.X509Certificates;
 using System.Security.Cryptography.Xml;
+using System.Xml;
 using System.Xml.Linq;
 
 namespace ITfoxtec.Identity.Saml2.Schemas.Metadata
@@ -63,5 +64,87 @@ protected XObject KeyDescriptor(X509Certificate2 certificate, string keyType)
                 new XAttribute(Saml2MetadataConstants.Message.Use, keyType),
                 XElement.Parse(keyinfo.GetXml().OuterXml));
         }
+
+        protected void ReadKeyDescriptors(XmlElement xmlElement)
+        {
+            var signingKeyDescriptorElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.KeyDescriptor}'][contains(@use,'{Saml2MetadataConstants.KeyTypes.Signing}') or not(@use)]");
+            if (signingKeyDescriptorElements != null)
+            {
+                SigningCertificates = ReadKeyDescriptorElements(signingKeyDescriptorElements);
+            }
+
+            var encryptionKeyDescriptorElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.KeyDescriptor}'][contains(@use,'{Saml2MetadataConstants.KeyTypes.Encryption}') or not(@use)]");
+            if (encryptionKeyDescriptorElements != null)
+            {
+                EncryptionCertificates = ReadKeyDescriptorElements(encryptionKeyDescriptorElements);
+            }
+        }
+
+        protected void ReadSingleLogoutService(XmlElement xmlElement)
+        {
+            var singleLogoutServiceElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.SingleLogoutService}']");
+            if (singleLogoutServiceElements != null)
+            {
+                SingleLogoutServices = ReadServices<SingleLogoutService>(singleLogoutServiceElements);
+            }
+        }
+
+        protected void ReadNameIDFormat(XmlElement xmlElement)
+        {
+            var nameIDFormatElements = xmlElement.SelectNodes($"*[local-name()='{Saml2MetadataConstants.Message.NameIDFormat}']");
+            if (nameIDFormatElements != null)
+            {
+                NameIDFormats = ReadNameIDFormatElements(nameIDFormatElements);
+            }
+        }
+
+        protected IEnumerable<Uri> ReadNameIDFormatElements(XmlNodeList nameIDFormatElements)
+        {
+            foreach (XmlNode nameIDFormatElement in nameIDFormatElements)
+            {
+                yield return new Uri(nameIDFormatElement.InnerText);
+            }
+        }
+
+        protected IEnumerable<X509Certificate2> ReadKeyDescriptorElements(XmlNodeList keyDescriptorElements)
+        {
+            foreach (XmlElement keyDescriptorElement in keyDescriptorElements)
+            {
+                var keyInfoElement = keyDescriptorElement.SelectSingleNode($"*[local-name()='{Saml2MetadataConstants.Message.KeyInfo}']") as XmlElement;
+                if (keyInfoElement != null)
+                {
+                    var keyInfo = new KeyInfo();
+                    keyInfo.LoadXml(keyInfoElement);
+                    var keyInfoEnumerator = keyInfo.GetEnumerator();
+                    while (keyInfoEnumerator.MoveNext())
+                    {
+                        var keyInfoX509Data = keyInfoEnumerator.Current as KeyInfoX509Data;
+                        if (keyInfoX509Data != null)
+                        {
+                            foreach (var certificate in keyInfoX509Data.Certificates)
+                            {
+                                if (certificate is X509Certificate2)
+                                {
+                                    yield return certificate as X509Certificate2;
+                                }
+                            }
+                        }
+                    }
+                }
+            }
+        }
+
+        protected IEnumerable<T> ReadServices<T>(XmlNodeList serviceElements) where T : EndpointType, new()
+        {
+            foreach (XmlNode serviceElement in serviceElements)
+            {
+                yield return new T
+                {
+                    Binding = serviceElement.Attributes[Saml2MetadataConstants.Message.Binding].GetValueOrNull<Uri>(),
+                    Location = serviceElement.Attributes[Saml2MetadataConstants.Message.Location].GetValueOrNull<Uri>(),
+                    ResponseLocation = serviceElement.Attributes[Saml2MetadataConstants.Message.ResponseLocation].GetValueOrNull<Uri>()
+                };
+            }
+        }
     }
 }