This project has moved. For the latest updates, please go here.

Service Provider: Handling saml token

Aug 20, 2014 at 11:03 PM
We have a scenario where SalesForce acts as IDP and we are the service provider. Once user authenticated by SalesForce, get redirected to our website. What we are looking is to make use of Katana/OWIN ws-federation to process incoming request and parse/handle saml token.

Can anyone point to how request is processed and saml token is read using ws-federation with Katana/Owin infrastructure?
Coordinator
Aug 21, 2014 at 12:15 AM
Start here:
https://github.com/AzureADSamples/WebApp-WSFederation-DotNet/blob/master/WebApp-WSFederation-DotNet/App_Start/Startup.Auth.cs

This says where to get the metadata address for Salesforce:
https://developer.salesforce.com/page/Single_Sign-On_with_Force.com_and_Microsoft_Active_Directory_Federation_Services
e.g. https://adfs.testzone.local/FederationMetadata/2007-06/FederationMetadata.xml
You'll need the Wtrealm too, I'm not sure where to get that from Salesforce.

The middleware should parse the SAML token for you and creates a ClaimsIdentity.
Aug 21, 2014 at 7:06 PM
Thank you Tratcher.