IDP SAML Metadata Attribute
I followed the documentation to add an attribute in the SAML assertion when Authentic is IDP ( SAMLResponse ). It seems to work, but do you know if there is a way to update the IDP's metadata ? I want that my IDP's metadata shows that this attribute is supported.
According to the standard this is not required, but I was wondering if there is a way to do that automatically and not by hand.
What do you think about that ?
#1 Updated by Benjamin Dauvergne over 7 years ago
Metadata generation is implemented in source:authentic2/saml/common.py in the function get_saml2_metadata() which using the Saml2Metadata class from source:authentic2/saml/saml2utils.py. It should be possible to extend the generator to support declarations of attributes.
get_saml2_metadata() is called by the metadata endpoint in the file source:idp/saml/saml2_endpoints.py. But currently there is not setting to specify the list of supported attributes, it could be something hardoced in the settings.py. That's a bit hacky but fast to implement so I'm not sure we would welcome the patch.