Update SAML documentation by maartenba · Pull Request #1084 · DuendeSoftware/docs.duendesoftware.com

maartenba · 2026-05-05T10:10:55Z

No description provided.

…the future release. (#1074)

…pgrade guide (#1080) * Add changes from products repository (PR 255 and 256), optimize for readability in docs site * Reorganize IdentityServer upgrade guide overview for improved clarity and consistency * Add IdentityServer4 to Duende IdentityServer v8.0 upgrade guide detailing migration steps, breaking changes, and schema updates.

khalidabuhakmeh · 2026-05-05T12:58:07Z

@maartenba the SAML 2.0 Concepts page was meant to be a general overview of SAML (with maybe some light linking into our implementation). Not sure if adding code blocks and implementation details is right for that page.

…ards-compat language, add mermaid diagrams for SP-initiated SSO and SLO flows, code-block protocol terms in prose, fix ambiguous pronouns

maartenba · 2026-05-05T14:25:01Z

Addressed review feedback in 21c08bf:

Removed InCommon example from concepts.md
Trimmed IdentityServer-specific content on the concepts page (kept brief cross-links)
Removed all "backwards compatibility" language (this is a new package, no prior version)
Removed "(not an enum)" from SamlEndpointType
Changed "request ages" → "request lifetimes"
Fixed ambiguous "it" in endpoints.md SLO note
Code-blocked AuthnRequest, AuthnContext, and NameID everywhere in extensibility.md prose
Added mermaid sequence diagrams for SP-initiated SSO flow and Single Logout flow
Reviewed "What's Included" section — looks comprehensive, no changes needed

Not addressed (not a docs change): __Host- cookie prefix implementation question (item 11)

… on RequestedClaimTypes interaction

…ed envs, correct reasons are size limits, client exposure, and auditability

…ceProviderAdmin, ServiceProviderEntityId, encryption), fix NameID formats (email+unspecified only), correct ISamlSigninStateStore (in-memory default, EF for prod), rename ISamlSigninInteractionResponseGenerator, update ISamlInteractionService deprecation, add EF Core store docs

maartenba · 2026-05-06T08:13:10Z

Addressed bhazen's review feedback in c9d2d9b:

Removed (platform-only / not in v8):

ISamlServiceProviderAdmin — entire section + all references
ServiceProviderEntityId value object — replaced with plain string
SigninStateCookieName — property being removed from code
Encryption section (not making v1)
EncryptionCertificates, EncryptAssertions properties
RequireConsent (consent doesn't exist in SAML)
ISamlFrontChannelLogout section (going away)
Obsolete AssertionConsumerServiceBinding

Fixed:

ISamlSigninInteractionResponseGenerator → ISaml2SsoInteractionResponseGenerator (no consent)
ISamlInteractionService — added deprecation note, describes GetAuthenticationContextAsync pattern
ISamlSigninStateStore — default is in-memory (not cookie), EF for production
ISamlNameIdGenerator — only email + unspecified (no persistent for v1)
NameID formats — clarified only email/unspecified supported, persistent planned
Login Page Compatibility — removed IAuthenticationContext, describes returnUrl + GetAuthenticationContextAsync
Saml2Options.EntityId — most deployments don't need to set it, default is {host}/saml
AllowedScopes — simplified description per bhazen's note

Added:

EF Core store documentation (Duende.IdentityServer.EntityFramework.Stores) in service-providers.md and index.md

khalidabuhakmeh and others added 4 commits April 28, 2026 20:27

Created distinct /reference/vX folders and ported API changes from …

48f8ef6

…the future release. (#1074)

Additional reference docs updates after cross-checking against product

3c5bd7e

Align SAML with products commit 5777b1ece2af0aa7f2270e08050ffa3a24bbd6da

0e82c76

maartenba requested review from ProgrammerAL, bhazen, khalidabuhakmeh and wcabus May 5, 2026 10:10

maartenba self-assigned this May 5, 2026

maartenba added the documentation Improvements or additions to documentation label May 5, 2026

maartenba changed the base branch from main to release/is-v8.0 May 5, 2026 10:16

maartenba added this to the 2026-Q2 milestone May 5, 2026

maartenba marked this pull request as ready for review May 5, 2026 10:36

khalidabuhakmeh reviewed May 5, 2026

View reviewed changes