simpleidserver
diff --git a/‎SimpleIdServer.IdServer.Host.sln‎
Lines changed: 11 additions & 1 deletion b/‎SimpleIdServer.IdServer.Host.sln‎
Lines changed: 11 additions & 1 deletion
diff --git a/‎default.ps1‎
Lines changed: 4 additions & 0 deletions b/‎default.ps1‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Controllers/ProtectedResourcesController.cs‎
Lines changed: 14 additions & 0 deletions b/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Controllers/ProtectedResourcesController.cs‎
Lines changed: 14 additions & 0 deletions
diff --git a/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Program.cs‎
Lines changed: 6 additions & 3 deletions b/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Program.cs‎
Lines changed: 6 additions & 3 deletions
diff --git a/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/SimpleIdServer.FastFed.ApplicationProvider.Startup.csproj‎
Lines changed: 8 additions & 0 deletions b/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/SimpleIdServer.FastFed.ApplicationProvider.Startup.csproj‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Views/Home/Authenticate.cshtml‎
Lines changed: 3 additions & 2 deletions b/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Views/Home/Authenticate.cshtml‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Views/ProtectedResources/Index.cshtml‎
Lines changed: 8 additions & 0 deletions b/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Views/ProtectedResources/Index.cshtml‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Views/Shared/_CommonLayout.cshtml‎
Lines changed: 1 addition & 0 deletions b/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Views/Shared/_CommonLayout.cshtml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Views/Shared/_Layout.cshtml‎
Lines changed: 22 additions & 11 deletions b/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/Views/Shared/_Layout.cshtml‎
Lines changed: 22 additions & 11 deletions
diff --git a/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/wwwroot/styles/website.css‎
Lines changed: 52 additions & 0 deletions b/‎src/FastFed/SimpleIdServer.FastFed.ApplicationProvider.Startup/wwwroot/styles/website.css‎
Lines changed: 52 additions & 0 deletions
@@ -129,6 +129,10 @@ Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "SimpleIdServer.Authority.Fe
 EndProject
 Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "SimpleIdServer.IdServer.IntegrationEvents", "src\IdServer\SimpleIdServer.IdServer.IntegrationEvents\SimpleIdServer.IdServer.IntegrationEvents.csproj", "{7098E926-13C8-4085-9CAA-A27EF72F7520}"
 EndProject
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "01. Scim", "01. Scim", "{0CF45705-7CD6-48B6-B032-D9031BB67F18}"
+EndProject
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "SimpleIdServer.Scim.Parser", "src\Scim\SimpleIdServer.Scim.Parser\SimpleIdServer.Scim.Parser.csproj", "{F5753099-E7C0-406F-B48E-87DAF80F88D5}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -343,6 +347,10 @@ Global
 		{7098E926-13C8-4085-9CAA-A27EF72F7520}.Debug|Any CPU.Build.0 = Debug|Any CPU
 		{7098E926-13C8-4085-9CAA-A27EF72F7520}.Release|Any CPU.ActiveCfg = Release|Any CPU
 		{7098E926-13C8-4085-9CAA-A27EF72F7520}.Release|Any CPU.Build.0 = Release|Any CPU
+		{F5753099-E7C0-406F-B48E-87DAF80F88D5}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{F5753099-E7C0-406F-B48E-87DAF80F88D5}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{F5753099-E7C0-406F-B48E-87DAF80F88D5}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{F5753099-E7C0-406F-B48E-87DAF80F88D5}.Release|Any CPU.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -362,7 +370,7 @@ Global
 		{75CB19CC-AD5A-47B8-8337-FB11B15D660A} = {68306EFF-55D9-497B-9482-FEB81C485914}
 		{CACFC943-091F-4008-8CC4-FC689851DBC0} = {68306EFF-55D9-497B-9482-FEB81C485914}
 		{D8593C20-6BF5-4B84-AD08-590B03407CF3} = {4796A22B-91A9-42AF-87CA-F69392696B0A}
-		{8E4A021B-6525-4326-B290-CFA57FFEFFEA} = {4796A22B-91A9-42AF-87CA-F69392696B0A}
+		{8E4A021B-6525-4326-B290-CFA57FFEFFEA} = {0CF45705-7CD6-48B6-B032-D9031BB67F18}
 		{B188D040-77C3-4C6D-A5CE-A1D65F6935A1} = {DA65BA14-7FA4-4D99-A11D-C67F75F03771}
 		{D2236B28-D0E4-40F3-8865-95EE667FBE4F} = {DA65BA14-7FA4-4D99-A11D-C67F75F03771}
 		{12D662D9-3775-4178-998D-FBB2231612B6} = {4796A22B-91A9-42AF-87CA-F69392696B0A}
@@ -407,6 +415,8 @@ Global
 		{DC1EBA7B-7458-4AC5-80D4-56E20541C4F4} = {0473E3F7-F4CB-4305-A980-174A953CF0DB}
 		{687CFA3C-D027-424A-A15C-B2BF18B58607} = {0473E3F7-F4CB-4305-A980-174A953CF0DB}
 		{7098E926-13C8-4085-9CAA-A27EF72F7520} = {4796A22B-91A9-42AF-87CA-F69392696B0A}
+		{0CF45705-7CD6-48B6-B032-D9031BB67F18} = {4796A22B-91A9-42AF-87CA-F69392696B0A}
+		{F5753099-E7C0-406F-B48E-87DAF80F88D5} = {0CF45705-7CD6-48B6-B032-D9031BB67F18}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {1FE1E2C8-475E-4592-8609-D331B1D01730}
 
@@ -262,10 +262,14 @@ task pack -depends release, compile, buildTemplate {
 
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed\SimpleIdServer.FastFed.csproj -c $config --no-build $versionSuffix --output $result_dir }
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.ApplicationProvider\SimpleIdServer.FastFed.ApplicationProvider.csproj -c $config --no-build $versionSuffix --output $result_dir }
+	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.ApplicationProvider.Authentication.Saml\SimpleIdServer.FastFed.ApplicationProvider.Authentication.Saml.csproj -c $config --no-build $versionSuffix --output $result_dir }
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.ApplicationProvider.Provisioning.Scim\SimpleIdServer.FastFed.ApplicationProvider.Provisioning.Scim.csproj -c $config --no-build $versionSuffix --output $result_dir }
+	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.Authentication.Saml\SimpleIdServer.FastFed.Authentication.Saml.csproj -c $config --no-build $versionSuffix --output $result_dir }	
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.Client\SimpleIdServer.FastFed.Client.csproj -c $config --no-build $versionSuffix --output $result_dir }
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.Domains\SimpleIdServer.FastFed.Domains.csproj -c $config --no-build $versionSuffix --output $result_dir }
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.IdentityProvider\SimpleIdServer.FastFed.IdentityProvider.csproj -c $config --no-build $versionSuffix --output $result_dir }
+	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.IdentityProvider.Authentication.Saml\SimpleIdServer.FastFed.IdentityProvider.Authentication.Saml.csproj -c $config --no-build $versionSuffix --output $result_dir }
+	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.IdentityProvider.Authentication.Saml.Sid\SimpleIdServer.FastFed.IdentityProvider.Authentication.Saml.Sid.csproj -c $config --no-build $versionSuffix --output $result_dir }
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.IdentityProvider.Provisioning.Scim\SimpleIdServer.FastFed.IdentityProvider.Provisioning.Scim.csproj -c $config --no-build $versionSuffix --output $result_dir }
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.IdentityProvider.Provisioning.Scim.Sid\SimpleIdServer.FastFed.IdentityProvider.Provisioning.Scim.Sid.csproj -c $config --no-build $versionSuffix --output $result_dir }
 	exec { dotnet pack $source_dir\FastFed\SimpleIdServer.FastFed.Provisioning.Scim\SimpleIdServer.FastFed.Provisioning.Scim.csproj -c $config --no-build $versionSuffix --output $result_dir }
 
@@ -0,0 +1,14 @@
+// Copyright (c) SimpleIdServer. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See LICENSE in the project root for license information.
+using Microsoft.AspNetCore.Mvc;
+
+namespace SimpleIdServer.FastFed.ApplicationProvider.Startup.Controllers
+{
+    public class ProtectedResourcesController : Controller
+    {
+        public IActionResult Index()
+        {
+            return View();
+        }
+    }
+}
@@ -3,7 +3,6 @@
 using Microsoft.AspNetCore.Builder;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
-using SimpleIdServer.FastFed;
 using SimpleIdServer.FastFed.ApplicationProvider.Authentication.Saml;
 using SimpleIdServer.FastFed.ApplicationProvider.Options;
 using SimpleIdServer.FastFed.ApplicationProvider.Provisioning.Scim;
@@ -12,6 +11,9 @@
 using SimpleIdServer.FastFed.Provisioning.Scim;
 using SimpleIdServer.FastFed.Store.EF;
 using System.Collections.Generic;
+using System.IO;
+using System.Reflection;
+using System.Security.Cryptography.X509Certificates;
 
 var builder = WebApplication.CreateBuilder(args);
 builder.Configuration
@@ -90,9 +92,10 @@
     })
     .AddSamlAppProviderAuthenticationProfile(cb =>
     {
+        var currentPath = Path.GetDirectoryName(Assembly.GetEntryAssembly().Location);
         cb.SpId = "https://localhost:5021";
         cb.SamlMetadataUri = "https://localhost:5021/Metadata";
-        cb.SigningCertificate = KeyGenerator.GenerateSelfSignedCertificate();
+        cb.SigningCertificate = X509Certificate2.CreateFromPemFile(Path.Combine(currentPath, "sidClient.crt"), Path.Combine(currentPath, "sidClient.key"));
         cb.Mappings = new SamlEntrepriseMappingsResult
         {
             SamlSubject = new SamlSubject
@@ -105,7 +108,7 @@
                 {
                     RequiredUserAttributes = new List<string>
                     {
-                        "displayName"
+                        "name.givenName"
                     },
                     OptionalUserAttributes = new List<string>
                     {
 
@@ -4,6 +4,14 @@
 		<OutputType>Exe</OutputType>
 		<ErrorOnDuplicatePublishOutputFiles>false</ErrorOnDuplicatePublishOutputFiles>
 	</PropertyGroup>
+	<ItemGroup>
+	  <None Include="..\..\..\certificates\sidClient.crt" Link="sidClient.crt">
+	    <CopyToOutputDirectory>Always</CopyToOutputDirectory>
+	  </None>
+	  <None Include="..\..\..\certificates\sidClient.key" Link="sidClient.key">
+	    <CopyToOutputDirectory>Always</CopyToOutputDirectory>
+	  </None>
+	</ItemGroup>
 	<ItemGroup>
 		<PackageReference Include="Microsoft.Web.LibraryManager.Build" Version="2.1.175" />
 		<PackageReference Include="Microsoft.AspNetCore.Authentication.OpenIdConnect" Version="8.0.8" />
 
@@ -6,9 +6,10 @@
     Layout = "~/Views/Shared/_Layout.cshtml";
 }
 
-<div>
-    <div class="card">
+<div class="loginContainer">
+    <div class="card login">
         <div class="card-body">
+            <h5 class="card-title">@AuthenticateResource.Authenticate</h5>
             <div>
                 <a class="btn btn-secondary" href="@Url.Action("Login", "Home")">@AuthenticateResource.Authenticate</a>
             </div>
 
@@ -0,0 +1,8 @@
+@using SimpleIdServer.FastFed.ApplicationProvider.Startup.Resources
+
+@{
+    ViewBag.Title = "Protected resource";
+    Layout = "~/Views/Shared/_Layout.cshtml";
+}
+
+<h1>Protected resource</h1>
@@ -10,6 +10,7 @@
     <title>SimpleIdServer - @ViewBag.Title</title>
     <link rel="stylesheet" href="@Url.Content("~/lib/bootstrap/css/bootstrap.css")" />
     <link rel="stylesheet" href="@Url.Content("~/lib/fontawesome/css/all.css")" />
+    <link rel="stylesheet" href="@Url.Content("~/styles/website.css")" />
     <link rel="stylesheet" href="@Url.Content("~/styles/theme.css")" />
     <link rel="icon" href="@Url.Content("~/images/favicon.ico")" />
 </head>
 
@@ -33,18 +33,29 @@
         </button>
         <div class="collapse navbar-collapse" id="navbarSupportedContent">
             <ul class="navbar-nav me-auto">
-                @if (User.Identity.IsAuthenticated && User.Claims.Any(c => c.Type == "role" && c.Value == authOptions.AdministratorRole))
+                @if (User.Identity.IsAuthenticated)
                 {
-                    <li class="nav-item">
-                        <a class="nav-link" href="@Url.Action("Index", "IdentityProviders")">
-                            @LayoutResource.IdentityProviders
-                        </a>
-                    </li>
-                    <li class="nav-item">
-                        <a class="nav-link" href="@Url.Action("Index", "FastFedDiscovery")">
-                            @LayoutResource.ConfigureProvider
-                        </a>
-                    </li>
+                    if(User.Claims.Any(c => c.Type == "role" && c.Value == authOptions.AdministratorRole))
+                    {
+                        <li class="nav-item">
+                            <a class="nav-link" href="@Url.Action("Index", "IdentityProviders")">
+                                @LayoutResource.IdentityProviders
+                            </a>
+                        </li>
+                        <li class="nav-item">
+                            <a class="nav-link" href="@Url.Action("Index", "FastFedDiscovery")">
+                                @LayoutResource.ConfigureProvider
+                            </a>
+                        </li>
+                    }
+                    else
+                    {                        
+                        <li class="nav-item">
+                            <a class="nav-link" href="@Url.Action("Index", "ProtectedResources")">
+                                Protected resources
+                            </a>
+                        </li>
+                    }
                 }
                 @RenderSection("SubMenu", required: false)
             </ul>
 
@@ -0,0 +1,52 @@
+.loginContainer {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    padding-top: 80px;
+}
+
+.login {
+    width: 400px;
+}
+
+@media (max-width: 600px) {
+    .loginContainer {
+        padding-top: 0px;
+        display: block;
+    }
+
+    .login {
+        width: auto;
+    }
+}
+
+.login .divider:before,
+.login .divider:after {
+    content: "";
+    height: 1px;
+    background: var(--sid-separator-bg);
+    flex: 1;
+}
+
+.login .divider .text {
+    margin-right: 1rem;
+    margin-left: 1rem;
+    margin-bottom: 0px;
+    color: var(--bs-gray);
+}
+
+.login .divider {
+    display: flex;
+    align-items: center;
+    margin-top: 1.5rem;
+}
+
+.login .extauth {
+    list-style: none;
+    padding-left: 0px;
+}
+
+.login .extauth > li {
+    margin-top: 5px;
+    margin-bottom: 5px;
+}