Announcing the WIF Extension for SAML 2.0 Protocol Community Technology Preview!

  • Article

It is our pleasure to announce the availability of the first CTP release of the WIF (Windows Identity Foundation) Extension for the SAML 2.0 Protocol ! We heard your feedback about the necessity to have support for the SAML 2.0 protocol in WIF. Today, we announce an extension to WIF that delivers on that feedback.

This WIF extension allows .NET developers to easily create claims-based SP-Lite compliant Service Provider applications that use SAML 2.0 conformant identity providers such as AD FS 2.0.

This CTP release includes a set of samples that illustrate how to use the extension. You can download the package that includes the WIF Extension for SAML 2.0 Protocol and samples from here.

Key features of this extension include:

  • Service Provider initiated and Identity Provider initiated Web Single Sign-on (SSO) and Single Logout (SLO)
  • Support for the Redirect, POST, and Artifact bindings
  • All of the necessary components to create a SP-lite compliant service provider application

We’ll be looking for your questions, comments, and other feedback on the claims based identity forum here.  Watch this blog for future posts about the roadmap of this WIF extension. 

Happy coding!

The WIF Team

Comments

  • Anonymous
    May 16, 2011
    Finally! This makes me so happy!www.idmcrisis.com/.../Finally!!!-SAML2-for-WIF.aspx
  • Anonymous
    May 16, 2011
    The comment has been removed
  • Anonymous
    May 18, 2011
    ID4338: SAML Message has wrong signature
  • Anonymous
    June 06, 2011
    Where can I find code samples for this? Specfically, for processing the SAML request from the IDp by the Service Provider.
  • Anonymous
    June 20, 2011
    This great news! We were struck with WS-Federation 1.1 (2005 version) with our vendor who had Shibolleth enabled jsp application as RP. This SAML extension is right in time. I am going to try and post my comments.
  • Anonymous
    June 21, 2011
    So, with this extension we can create only the SP application? not SAML 2.0 complaint STS?
  • Anonymous
    June 24, 2011
    I was getting the SAML message has wrong signature until I noticed that some of the projects were targeting the .NET 3.5 framework and some were targeting .NET 4.0.  Once they were all 4.0, it ran successfully.
  • Anonymous
    July 21, 2011
    Hello WIF Team,Could you provide some roadmap, when you plan to release WIF Extensions for OAuth?Bacause it published with  Pre-release license which prevents us to use it in production.
  • Anonymous
    August 26, 2011
    I have been using the extension since day 1 and while generally it has worked well , I find one major issue. That of being able to have certs outside of the xml file. We need to be Fibs complaint , which means the XML or even same machine will not fly. I have replaced the ServiceTokenResolver (through the service configuration and that works. The issue is with IDP  initiated logout or SP initiated login. In both cases the module tries to get the cert ( which there is none from the config) and fails. While I have been able to take care of that from the sp initiated login, created my own method . I cannot do that in the IDP Initiated logout.  In that case the logout request is handled properly and a logout response is trying to be sent, however there is no cert associated and there is no way to hook into this.  The issue arises from the message decoder  (which is unfortunately a privet member with no accessory  ,_messageDecorator in saml2authentication module ) the value for this decoder is only created once , in the constructor, where the cert  is read from the config file.  Thus if nothing in the config it does not work, no matter what you do with the servicetokenresolver,.  Any way of getting this fixed.Thank you
  • Anonymous
    October 03, 2011
    Regarding the document "AD FS 2.0 as the SAML 2.0 Identity Provider for the Service Provider Sample".Step 1: Using the SamlConfigToolEnter your entity IDThe example entry from the program is contoso.com -- indicating the domain of the Idp.But the example entry in this document is https://myIISserver/ServiceProviderWhich is correct?
  • Anonymous
    October 05, 2011
    Any news when this might be available as part of Azure ACS v2?Sincerely,Adam
  • Anonymous
    October 17, 2011
    We are trying to use this extension in our application, this works fine if we used web app, but we have problem when we put our web app in a Azure Web Role, apparently it can’t redirect to our default page in azure emulator. Any help will be very appreciated
  • Anonymous
    November 07, 2011
    Can this CTP version be deployed to production? Would there be an RTM version later? if so, when do you plan on releasing the RTM version?
  • Anonymous
    November 16, 2011
    Can the current WIF SDK be used to create a RP application that receives SAMLv2 tokens?The IdP/STS is most like an OpenAm server. The RP is an ASP.NET MVC3 project.
  • Anonymous
    December 31, 2011
    It looks like this extension does not work on Windows Server 2008 R2 64-bit (WIF runtime 64-bit), the Saml2AuthenticationModule module does not seem to intercept the virtual path /saml/, however, everything works fine under Win2k8 32-bit (WIF 32-bit runtime)
  • Anonymous
    January 13, 2012
    The comment has been removed
  • Anonymous
    January 22, 2012
    When will the release version of this be available?  Or at least a go-live license?
  • Anonymous
    February 14, 2012
    Can anyone tell me whether this extension works for IIS6? I tried on II7 and it works great!It is failing on IIS6..please advice.
  • Anonymous
    March 02, 2012
    OK guys, it has been 10 months.  Is this live yet?
  • Anonymous
    March 13, 2012
    Helooo, Echooo, Echoooooo, Echoooooooo?Any news yet? It's been a long time since last update. Specifically when will this RTM?
  • Anonymous
    March 15, 2012
    Tomorrow will mark the 1 year mark since the CTP release. Can we PLEASE have a final so we can move forward? Please? Give us an ADFS Roadmap while you are at it. :)
  • Anonymous
    March 17, 2012
    When will you roll out the WIF Extension for SAML v2.0 RTM?
  • Anonymous
    April 17, 2012
    When we'll have the WIF Extension for SAML v2.0 RTM. We need dates, please!!
  • Anonymous
    May 06, 2012
    I'm wondering aswell when the RTM will be released.Can someone please make a statement here?
  • Anonymous
    May 15, 2012
    Today it is exact one year since the CTP Release. What about a final?
  • Anonymous
    June 10, 2012
    Is this extension dead? The lack of communication about a release plan seems to indicate it is. Does anyone have up-to-date information on this?
  • Anonymous
    June 11, 2012
    I'm required to build a SAML 2.0 endpoint to my production STS. Can I count on this extention soon?
  • Anonymous
    October 24, 2012
    A guy just jumped out of space and Microsoft still doesn't have full SAML 2.0 protocol support. Will we ever get support for www.w3.org/.../xml-exc-c14n
  • Anonymous
    December 13, 2012
    Is the RTM version available now? Please let us know.
  • Anonymous
    January 24, 2013
    The comment has been removed
  • Anonymous
    February 17, 2013
    Any updates on when will RC version be available?
  • Anonymous
    March 18, 2013
    Microsoft, please respond... Is this project dead?
  • Anonymous
    August 25, 2014
    This download link is not working. Can someone fix it please.
  • Anonymous
    August 31, 2014
    Is the SAML2-P now release or not? Very unclear. Go JAVA :-).
  • Anonymous
    January 04, 2015
    The comment has been removed
  • Anonymous
    January 21, 2015
    I'm sad that this seems dead.  Not having saml2-p integrated in .net is a huge PIA.