From dada4e824281441a3ffa000b991aa96c7e225232 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Fr=C3=A9d=C3=A9ric=20P=C3=A9ters?= Date: Wed, 23 Nov 2016 13:09:01 +0100 Subject: [PATCH] add logging of IdP SAML responses and looked up users (#14056) --- mellon/adapters.py | 2 ++ mellon/views.py | 2 ++ 2 files changed, 4 insertions(+) diff --git a/mellon/adapters.py b/mellon/adapters.py index ab79521..060a54c 100644 --- a/mellon/adapters.py +++ b/mellon/adapters.py @@ -145,6 +145,8 @@ class DefaultAdapter(object): else: user.delete() user = saml_id.user + self.logger.info('looked up user %s with name_id %s from issuer %s', + user, name_id, issuer) return user def provision(self, user, idp, saml_attributes): diff --git a/mellon/views.py b/mellon/views.py index bac222c..9879364 100644 --- a/mellon/views.py +++ b/mellon/views.py @@ -102,6 +102,7 @@ class LoginView(ProfileMixin, LogMixin, View): return self.get(request, *args, **kwargs) if not utils.is_nonnull(request.POST['SAMLResponse']): return HttpResponseBadRequest('SAMLResponse contains a null character') + self.log.info('Got SAML Response', extra={'saml_response': request.POST['SAMLResponse']}) self.profile = login = utils.create_login(request) idp_message = None status_codes = [] @@ -268,6 +269,7 @@ class LoginView(ProfileMixin, LogMixin, View): result.status_code, result.content) return self.sso_failure(request, login, idp_message, status_codes) + self.log.info('Got SAML Artifact Response', extra={'saml_response': result.content}) try: login.processResponseMsg(result.content) login.acceptSso() -- 2.10.2