Includes updates for latest SAML Profiles specification, plus support for .NET 7.
Features
ComponentSpace SAML v2.0 for ASP.NET v6.2.0 updates:
- Added the DisableClearAllSessionsOnLogout flag to configure how multi-session SLO is handled.
- Defaulted the configuration flags SignLogoutRequest, SignLogoutResponse, WantLogoutRequestSigned and WantLogoutResponseSigned to true as these messages must be signed as per the SAML Profiles specification.
- Defaulted the configuration flag SignAssertion to true as per the SAML Profiles specification.
- Defaulted the configuration flags SignAuthnRequest and WantAuthnRequestSigned to true to encourage best security practices.
ComponentSpace SAML v2.0 for ASP.NET Core v4.7.0 updates:
- Added ClearSessionAsync overload that clears the session for the named partner only.
- Added the DisableClearAllSessionsOnLogout flag to configure how multi-session SLO is handled.
- Added ISamlCachedConfigurationResolver and support explicit clearing of the SAML configuration cache.
- Added ICertificateImporter to make storage of certificates more flexible when importing SAML metadata.
- Defaulted the configuration flags SignLogoutRequest, SignLogoutResponse, WantLogoutRequestSigned and WantLogoutResponseSigned to true as these messages must be signed as per the SAML Profiles specification.
- Defaulted the configuration flag SignAssertion to true as per the SAML Profiles specification.
- Defaulted the configuration flags SignAuthnRequest and WantAuthnRequestSigned to true to encourage best security practices.
- Updated support for .NET Core 3.1 and .NET 6.0, target .NET 7.0.