sigle sign-on in classic ASP web site using SimpleSAMLphp service provider?

[Viorel-Petru Abrudan]

Hi Guys,

I'm investigating the possibility to use the service provider from SimpleSAMLphp to authentificate from a classic ASP web site (no .NET).

We need SSO authentification base on the SAML2.0, I've investegated over the internet and I got to this PHP library.

Basically we have an AZURE identity provider based on SAML2.0  and from my undestanting if we use your library we have to configure the service provider(PHP stuff) to work with our AZURE.

Now my web ASP classic hosted on an IIS how can discuss with you service provider SimpleSAMLphp?

Thanks in advance,

Viorel-Petru Abrudan

[Peter Schober]

* Viorel-Petru Abrudan <viorel....@gmail.com> [2021-03-11 13:55]:

> Now my web ASP classic hosted on an IIS how can discuss with you
> service provider SimpleSAMLphp?

Well, obviously (?) you can't protect your ASP application with
middleware written in PHP. The response from the SimpleSAMLphp
developers to this larger topic is to use "something else" to protect
the non-PHP application and then use SimpleSAMLphp to protect that
"something else":
https://simplesamlphp.org/docs/stable/simplesamlphp-advancedfeatures#section_6

That "something else" is a module for the Apache httpd webserver,
though, so won't be of any help to you.
https://github.com/simplesamlphp/simplesamlphp-module-memcookie

I don't know anything about "ASP" (classic or not) so I couldn't say
whether OIOSAML.Net would work in your situation.
The Shibboleth Service Provider software certainly would.

-peter