0002-misc-add-support-for-IDP-initiated-SOAP-SLO-41949.patch

Benjamin Dauvergne, 22 avril 2020 04:27

Voir les différences: en ligne côte à côte

Subject: [PATCH 2/4] misc: add support for IDP-initiated SOAP SLO (#41949)

 mellon/templates/mellon/metadata.xml |  3 +++
 mellon/views.py                      | 18 ++++++++++++------
 2 files changed, 15 insertions(+), 6 deletions(-)

        <SingleLogoutService
          Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
          Location="{{ logout_url }}" />
        <SingleLogoutService
          Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP"
          Location="{{ logout_url }}" />
        {% for name_id_format in name_id_formats %}
            <NameIDFormat>{{ name_id_format }}</NameIDFormat>
        {% endfor %}

     from django.urls import reverse
     from django.utils.http import urlencode
     from django.utils import six
     from django.utils.encoding import force_text
     from django.utils.encoding import force_text, force_str
     from django.contrib.auth import REDIRECT_FIELD_NAME
     from django.db import transaction
     from django.utils.translation import ugettext as _
-...
     class LogoutView(ProfileMixin, LogMixin, View):
         def get(self, request, *args, **kwargs):
             if 'SAMLRequest' in request.GET:
                 return self.idp_logout(request)
                 return self.idp_logout(request, request.META['QUERY_STRING'])
             elif 'SAMLResponse' in request.GET:
                 return self.sp_logout_response(request)
             else:
                 return self.sp_logout_request(request)
         def idp_logout(self, request):
         def post(self, request, *args, **kwargs):
             return self.idp_logout(request, force_str(request.body))
         def idp_logout(self, request, msg):
             '''Handle logout request emitted by the IdP'''
             self.profile = logout = utils.create_logout(request)
             try:
                 logout.processRequestMsg(request.META['QUERY_STRING'])
                 logout.processRequestMsg(msg)
             except lasso.Error as e:
                 return HttpResponseBadRequest('error processing logout request: %r' % e)
             try:
-...
                 logout.buildResponseMsg()
             except lasso.Error as e:
                 return HttpResponseBadRequest('error processing logout request: %r' % e)
             return HttpResponseRedirect(logout.msgUrl)
             if logout.msgBody:
                 return HttpResponse(force_text(logout.msgBody), content_type='text/xml')
             else:
                 return HttpResponseRedirect(logout.msgUrl)
         def sp_logout_request(self, request):
             '''Launch a logout request to the identity provider'''
-...
             return HttpResponseRedirect(next_url)
     logout = LogoutView.as_view()
     logout = csrf_exempt(LogoutView.as_view())
     def metadata(request, **kwargs):
+    -

Projet

Général

Profil

Produits Entr'ouvert » django-mellon

0002-misc-add-support-for-IDP-initiated-SOAP-SLO-41949.patch