Single Sign On (SSO) Web Samples in Ultimate SAML Component

After successfully installing the UltimateSaml for SAML setup package you will see two SAML v1.1 web sample projects in the folder WebFormsC# for C# and WebFormsVB.NET for VB.NET (By default UltimateSaml is installed in folder C:\ComponentPro with Vista, 2008 and above, C:\Program files\ComponentPro with XP, 2003, 2000). To run these web sample projects, open the solution file Saml1_IdpInitiated_WebDemo.XXXX.sln for C# or Saml1_IdpInitiated_WebDemoVB.XXXX.sln for VB.NET.

Identity Provider Web Application (Saml1SsoIdentityProviderWebDemo or Saml1SsoIdentityProviderWebDemoVB)

This sample is configured to run at port 16471 (you can easily change the port number in the project property page). The identity provider web application demonstrates some basic operation of an identity provider. Firstly, you need to login to the system with the user name iuser and a password of password,

IdP

and choose a SAML Single Sign On method from a drop down list, and then click on a link to access the Service Provider site which runs at port 16475.

IdP

Once logged in at the identity provider, any access to the service provider is made through the identity provider’s inter-site transfer page (SamlRedirect.aspx) which handles both the Browser/POST and Browser/Artifact profile for the identity provider.

  • If using the browser/artifact profile, the identity provider‘s SAML responder page (SamlRequestProcess.aspx) handles SAML protocol requests from service providers. It uses the received artifact to look up the previously generated SAML assertion, creates a SAML protocol response containing this SAML assertion, and returns it to the service provider.

How to configure?

You can easily configure the ID Provider web application by modifying the settings within its web.config file’s <appSettings> section:

  • SamlArtifactUrlFormat: The target URL format of the service provider’s consumer service for Browser/Artifact SSO method.
  • SamlAssertionConsumerUrl: The target URL of the service provider’s consumer service for Browser/Post SSO method.

Service Provider Web Application (Saml1SsoServiceProviderWebDemo or Saml1SsoServiceProviderWebDemoVB)

This sample is configured to run at port 16475 (you can easily change the port number in the project property page). The service provider web application demonstrates some basic operation of a service provider.

  • If using browser/post, the assertion consumer page (SamlAssertionProcess.aspx) receives the form posted by the identity provider, reconstructs the SAML protocol response, retrieves the SAML assertion from the response, and uses the subject contained within the SAML assertion to perform an automatic login at the service provider. It then redirects to the target service provider page.
  • If using browser/artifact, the artifact receiver page (SamlArtifactProcess.aspx) receives the artifact from the identity provider. It then sends the identity provider a SAML protocol request containing the artifact, receives the SAML protocol response, retrieves the SAML assertion from the response, and uses the subject contained within the SAML assertion to perform an automatic login at the service provider. It then redirects to the target service provider page.

You can login to the local system with the user name suser and a password of password.

SP

How to configure?

You can easily configure the Service Provider web application by modifying the settings within its web.config file’s <appSettings> section:

  • SamlRequestHandlerUrl: The IdP’s SAML request handler url.