SuisseID SDK/.NET

Overview

The SuisseID SDK/.NET is an easy to use class library for integrating ASP.NET web applications with the SuisseID core infrastructure. It is designed to be extensible and modifiable. You can use it with ASP.NET WebForms or ASP.NET MVC framework.

The SuisseID SDK/.NET offers functionality for

• Creating SuisseID-specific SAML 2.0 requests, i.e. XML documents. The SAML messages supported by the SDK are:
  • AuthnRequest
  • AttributeQuery
• Signing the SAML requests
• Implementing the SAML POST binding .
• Parsing the SAML response, i.e. XML documents.
• Verifing the signature of the SAML response as well as the signature of the QC signed attributes
• Accessing the authentication information and attributes received from a SuisseID IdP (Identity Provider) or CAS (Claim Assertion Service).

The SuisseID SDK/.NET does not offer any functionality for

• The WS-Trust related part of the SuisseID specification.
• The meta date exchange related part of the SuisseID specification.

The only restriction imposed by the SDK/.NET is the need to access HttpContext and HttpSessionState object. The SDK/.NET uses the HttpContextBase for sending SAML 2.0 samlp:AuthnRequest or samlp:AttributeQuery messages and for receiving samlp:Response messages using the SAML POST binding. Further the SDK/.NET uses the HttpSessionStateBase for storing information between sending and receiving messages. Because the SDK/.NET expects the abstact base classes "HttpContextBase" and "HttpSessionStateBase" you are able to use your own implementation of this classes and to control where the session information is stored.
If you are working with WebForms and don't want to use the standard HttpContext just warp it with the "HttpContextWrapper".

More information is available in the Users guide or in the Microsoft White Paper for the SuisseID SDK/.NET