Early Preview
This is currently very much a preview. Please feel free to try things out,
but don't be upset if anything is not yet working. Feedback is welcome over on our
GitHub Dicussions page.
interface Duende.IdentityServer.Saml.Services.ISamlSigningService
Assembly: Duende.IdentityServer
Service for obtaining signing credentials for SAML operations.
Methods
GetSigningCertificateAsync(System.Threading.CancellationToken ct)
Gets the X509 certificate used for signing SAML messages.
Returns The signing certificate with private key.
ct
The cancellation token.
System.Threading.Tasks.Task<string>
GetSigningCertificateBase64Async(System.Threading.CancellationToken ct)
Gets the X509 certificate as a base64-encoded string for inclusion in SAML metadata.
Returns Base64-encoded certificate bytes.
ct
The cancellation token.
System.Threading.Tasks.Task<System.Collections.Generic.IReadOnlyList<System.Security.Cryptography.X509Certificates.X509Certificate2>>
GetAllSigningCertificatesAsync(System.Threading.CancellationToken ct)
Gets all current and recently rotated X509 certificates used for signing SAML messages.
Non-X509 keys (e.g., RSA keys from automatic key management) are wrapped in
generated certificates.
Returns Signing certificates suitable for inclusion in SAML metadata.
ct
The cancellation token.