Configure Auth0 to Send Encrypted SAML Assertion with Custom Keys

gabriela.pantea · July 9, 2024, 7:06pm

Overview

This article describes how to configure Auth0 to send encrypted SAML assertions with custom keys.

Applies To

Auth0 as SAML IdP

Solution

There are two ways to configure/customize the SAML configuration when Auth0 acts as SAML IdP:

Most of the SAML configurations (e.g., the issuer, the destination, the signing algorithm, etc.) can be configured via either the SAML addon or the actions.

However, it is only supported to use rules/actions to configure custom keys for the SAML assertion encryption:

Rules
Action

NOTE: The below code snippet is for demonstration purposes only. Please adjust for the desired use case and test thoroughly before deploying it to the environment

exports.onExecutePostLogin = async (event, api) => {
  if (event.client.client_id === 'CLIENT_ID_1') {
    api.samlResponse.setEncryptionCert('SAML_SP_CERT');
    api.samlResponse.setEncryptionPublicKey('SAML_SP_PUB_KEY');
  }
}

Topic		Replies	Views
Encrypted SAML Assertions Help saml	4	4962	January 2, 2020
Adding custom SAML attribute when auth0 is IdP Help saml2	2	4933	January 26, 2022
Overview of Signing and Encryption Features for a SAML Service Provider Knowledge Articles	1	673	February 1, 2024
How can I test a SAML SP implementation with Postman? Help saml , auth0-configuration , postman	10	30724	March 2, 2018
Auth0 as IdP: Is it possible to sign both the response and assertion? Help connections , saml-enterprise-connection	2	820	October 26, 2023

Configure Auth0 to Send Encrypted SAML Assertion with Custom Keys

Overview

Applies To

Solution

Related Topics