ITfoxtec -SAML2 - read configuration values from a DB

Question

We are using the ITfoxtec SAML2 library for Single Sign On with SAML2 authentication for some of our external Clients.

So far we only have one client that wants SSO, but we anticipate that we will get more clients that want to use SSO, so my question is that can we store the setting in a Database rather than read from a Configuration file. We would like to look up the values for each client from a data store and then build the SAML2 Configuration and then do the binding.

var binding = new Saml2RedirectBinding();
        binding.SetRelayStateQuery(new Dictionary<string, string> { { "RelayState", relayStateReturnUrl ?? Url.Content("~/") } });

        //The bindingResult is a SAML2 redirectBinding - this create a browser redirect to the IDP.
        var bindingResult =  binding.Bind(new Saml2AuthnRequest(_samlConfig));  

So we would build out the Saml2Configuration our selves (Or perhaps store those in a Database table and look it up based on the client. The idea is to pass in a custom SAMLConfiguration rather than reading it from the App settings. Would this approach work, would the ITfoxtec have a sample for this approach ?

Answer 1

Multible IdP and RP support is implemented in FoxIDs in the SamlConfigurationLogic.cs class. You can either implement you own version of the SAML config logic or user FoxIDs to handle the multible IdP connections for your application.

Related questions and answers:

• ITfoxtec SAML 2.0: Dynamic configuration
• Load SAML2 configuration on the runtime instead of loading it on the Startup