tags:

views:

295

answers:

2
+1  Q: 

AudienceRestriction in SAML Assertion

Can someone please point me in the direction of an example creating a SamlAssertion that includes an AudienceRestriction in the Conditions node?

below is an example of my code where I would want to put it:

//Create the SAML Assertion
SamlAssertion samlAssert = new SamlAssertion();
samlAssert.AssertionId = Convert.ToBase64String(encoding.GetBytes(System.Guid.NewGuid().ToString()));
samlAssert.Issuer = "http://www.example.com/";

// Set up the conditions of the assertion - Not Before and Not After
samlAssert.Conditions = new SamlConditions(DateTime.Now, DateTime.Now.AddMinutes(5));

The desired XML looks something like this:

<Assertion xmlns="urn:oasis:names:tc:SAML:1.0:assertion" AssertionID="_e835eca079133299b2f8a2a63ad72fe8" IssueInstant="2007-02-07T20:22:58.165Z" Issuer="http://www.example.com/" MajorVersion="1" MinorVersion="1">
 <Conditions NotBefore="2007-02-07T20:22:58.162Z" NotOnOrAfter="2007-02-07T20:24:58.162Z">
  <AudienceRestrictionCondition>
   <Audience>http://www.example2.com&lt;/Audience&gt; 
  </AudienceRestrictionCondition>
 </Conditions>

I see that there's a constructor for SamlConditions class that allows for a 3rd parameter, the conditions, and that there's a SamlAudienceRestriction class, but I can't seem to figure out how to connect the two. I think if I were to see a bit of code, it would become painfully obvious to me, but unfortunately, my google-foo is failing me today.

+2  A: 

I swear I spent several hours trying to figure this one out before posting...but apparently posting was exactly what I needed to see the answer. Below is the code I did to create the audience restriction for the SAML:

//Create the SAML Assertion
SamlAssertion samlAssert = new SamlAssertion();
samlAssert.AssertionId = Convert.ToBase64String(encoding.GetBytes(System.Guid.NewGuid().ToString()));samlAssert.Issuer = "http://www.example.com/";

// Set up fthe conditions of the assertion - Not Before and Not After
Uri[] approvedAudiences = {new Uri("http://www.example2.com")};
List<SamlCondition> conditions = new List<SamlCondition>();
conditions.Add(new SamlAudienceRestrictionCondition(approvedAudiences));
samlAssert.Conditions = new SamlConditions(DateTime.Now, DateTime.Now.AddMinutes(5), conditions);

If anyone sees anything wrong, or knows of a better/more efficient way, please let me know.

mjmcinto  2009-08-28 21:19:15
A: 

Hey what are the technologies, platform you have used? like opensaml, php,......

satya  2009-10-17 19:18:29
This looks like .NET 3.0 code.
Andrew Strong  2010-02-23 04:15:29

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?