Popularity
7.2
Stable
Activity
8.5
-
806
82
563

Description

The Kentor Authentication services is a library that adds SAML2P support to ASP.NET and IIS web sites, allowing the web site to act as a SAML2 Service Provider (SP).

Kentor.AuthServices is open sourced and contributions are welcome, please see contributing guidelines for info on coding standards etc.

Programming language: C#
License: GNU General Public License v3.0 or later
Tags: Authentication     Asp.net     IIS     Application Frameworks     SAML2     SAML     SSO    
Latest version: v2.7.0

Kentor Authentication Services alternatives and similar packages

Based on the "Application Frameworks" category.
Alternatively, view Kentor Authentication Services alternatives based on common mentions on social networks and blogs.

Do you think we are missing an alternative of Kentor Authentication Services or a related project?

Add another 'Application Frameworks' Package

README

.NET Core Join the chat at https://gitter.im/Susatinsys/Saml2

Sustainsys.Saml2

The Sustainsys.Saml2 library adds SAML2P support to ASP.NET web sites, allowing the web site to act as a SAML2 Service Provider (SP). The library was previously named Kentor.AuthServices.

Documentation

Usage documentation is available at our documentation site.

Commercial Options and Sustainable model for Open Source

When I started the Sustainsys company, the idea was to try to find a sustainable model for open source work. Maintaining an open source library takes time. The issue and PR list and constantly requires work to keep it clean (I've not always succeeded, I know). Bug reports by e-mail of possible security vulnerabilities need to be evaluated and handled - even if they often turn out to be incorrect. Any pull request - especially for a security library - need to be carefully evaluated to make sure it works and doesn't break any existing behaviour. All of this takes time and my idea was to create commercial options that were attractive enough to fund actual working time on the library. It has partly succeeded, but not to the extent that I can spend the time I want on the library. If you are using the Sustainsys.Saml2 package in a larger organisation, please sign up for a commercial support package (mail to [email protected] for options). That will give your organisation support - and also support maintenance and development of the library.

Branches

There are three active branches in the repo.

  • develop is development for a new version (will be released as v3 eventually) that only supports Asp.Net Core.
  • v1 is a supported version that uses the System.IdentityModel library for token handling and supports HttpModule, Mvc, Owin and AspNetCore2 (only on full. Net Framework). This branch will only receive security fixes or critical compatibility fixes for major browsers.
  • v2 is a currently supported version that uses the Microsoft.IdentityModel nuget packages for toking handling, multi-targets and supports HttpModule, Mvc, Owin and AspNetCore2. This branch will only receive security fixes or critical compatibility fixes for major browsers. Exceptions for new features can also be done for paying customers with support contracts.
  • maste is deprecated and only kept around to ensure all old links pointing to it works.

Development

The current development goals are to get a new, more flexible architecture.

  • The metadata handling has been broken out to a library that can be reused seprately. The metadata library contains tools to work with XML Documents and XML Signatures.
  • Use the Asp.Net Core RemoteAuthenticationHandler as a base class.
  • Better support for the AspNet Core configuration system.
  • Federations will be an own Authentication handler type (builder.AddSaml2 vs builder.AddSaml2Federation). Sustainsys.Saml2 is open sourced and contributions are welcome, please see [contribution guidelines](CONTRIBUTING.md) for info on coding standards etc.