Releases: ITfoxtec/ITfoxtec.Identity.Saml2
Version 4.10.3
- Change to only validate the certificate that can verify the signature.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.10.2
- Add support for validating the maximum length of a received SAML 2.0 request/response. The maximum allowed length is 100,000 characters. The validation is enabled in the
ToGenericHttpRequest(validate: true)method by setting thevalidateattribute.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.10.1
- Support certificate rollover for decryption certificate
- Add support for creating and reading the declaration URI reference (
AuthnContext/AuthnContextDeclRef) in the authentication context class. - .NET Core can not read the
AuthnContext/AuthnContextDeclRefelement withoutAuthnContext/AuthnContextClassRefelement bug resolved. - Adding additionally overload to enable separate assertion validation.
- Symbels added in snupkg.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.10.0-beta1
- Add support for creating and reading the declaration URI reference (
AuthnContext/AuthnContextDeclRef) in the authentication context class. - .NET Core can not read the
AuthnContext/AuthnContextDeclRefelement withoutAuthnContext/AuthnContextClassRefelement bug resolved. - Adding additionally overload to enable separate assertion validation.
- Symbels added in snupkg.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.8.8
- Support German ELSTER with the following:
- Support for encrypted Subject.
- Support for key transport RSA-OAEP encryption/decryption.
- Support for AES128-GCM and AES256-GCM decryption.
- Read and write Status Message in SAML 2.0 Authn Response.
- Artifact Response support signature validation in the inner element on assertion level.
- Support for the SHA256-RSA-MGF1 signature method.
- "Not POST binding (HTTP POST)" and "Not redirect binding (HTTP GET)" error messages improved.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.8.7-beta2
- Read and write Status Message in SAML 2. Authn Response.
- Support German ELSTER with the following:
- Support for encrypted Subject.
- Support for key transport RSA-OAEP encryption/decryption.
- Support for AES128-GCM and AES256-GCM decryption.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.8.7-beta1
- Artifact Response support signature validation in the inner element on assertion level.
- Support for the SHA256-RSA-MGF1 signature method.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.8.6
- Resolve the "Signature is invalid" error in .NET 5 and .NET 6. The error occurs if the Authn Response is signed on both the message and assertion level.
- Nuget package updates in .NET 7, .NET 6 and .NET 5.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.8.5
- Add support for
AttributeinIdPSsoDescriptormetadata. - Validate
AuthnRequestsignature in POST bindings ifSaml2Configuration.SignAuthnRequestis true.
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/
Version 4.8.4
Primary:
- Add support for artifact binding both as an Identity Provider (IdP) and Relying Party (RP).
- Simplify XML handling in Saml2SoapEnvelope.
- Signature validation with multiple signatures improved for .NET Core and .NET Framework.
Secondary:
- Add support for
IHttpClientFactory/HttpClient(optional custom http client handler) andCancellationTokeninEntityDescriptor. The old methodsReadIdPSsoDescriptorFromUrlandReadSPSsoDescriptorFromUrlis marked as obsolete. - Change AssertionNamespaceName from saml2 to saml and ProtocolNamespaceName from saml2p to samlp.
- Add AttributeConsumingServiceIndex and AssertionConsumingServiceIndex to Saml2AuthnRequest.
- Add support for
BindConfigin .NET and .NET core. - Metadata
- Improve metadata by adding the
AttributeValuefield inRequesedAttribute. - Add certificate key info name in metadata.
- Improve metadata by adding the
- .NET Framework updates:
- .NET Framework 4.7.2 is updated to 4.8
- .NET Framework 4.6.1 is updated to 4.6.2
NuGet package released:
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.Mvc/
https://www.nuget.org/packages/ITfoxtec.Identity.Saml2.MvcCore/