Révision bdff7b72
Ajouté par Jérôme Schneider il y a plus de 9 ans
| mandaye/auth/saml2.py | ||
|---|---|---|
| 26 | 26 |
|
| 27 | 27 |
Optional options : |
| 28 | 28 |
* saml2_sp_logout_url: the url to logout the service provider |
| 29 |
* saml2_sp_logout_method: GET or POST |
|
| 30 | 29 |
* saml2_authnresp_binding: only post is supported for now |
| 31 | 30 |
* saml2_authnreq_http_method: only http_redirect at the moment |
| 32 | 31 |
* saml2_name_identifier_format: only persistent at the moment |
| ... | ... | |
| 68 | 67 |
'saml2_signature_public_key': public_key, |
| 69 | 68 |
'saml2_signature_private_key': private_key, |
| 70 | 69 |
'saml2_sp_logout_url': self.env['mandaye.config'].get('saml2_sp_logout_url'),
|
| 71 |
'saml2_sp_logout_method': 'GET', |
|
| 72 | 70 |
'saml2_authnresp_binding': lasso.SAML2_METADATA_BINDING_POST, |
| 73 | 71 |
'saml2_authnreq_http_method': lasso.HTTP_METHOD_REDIRECT, |
| 74 | 72 |
'saml2_name_identifier_format': lasso.SAML2_NAME_IDENTIFIER_FORMAT_PERSISTENT |
| ... | ... | |
| 135 | 133 |
return _302(next_url, req_cookies) |
| 136 | 134 |
else: |
| 137 | 135 |
return _302('/', req_cookies)
|
| 138 |
if self.config['saml2_sp_logout_method'] == 'POST': |
|
| 139 |
headers = HTTPHeader({'Content-Type': ['application/x-www-form-urlencoded']})
|
|
| 140 |
else: |
|
| 141 |
headers = HTTPHeader() |
|
| 142 |
request = HTTPRequest(req_cookies, headers, self.config['saml2_sp_logout_method']) |
|
| 143 |
response = get_response(env, request, self.config['saml2_sp_logout_url']) |
|
| 144 |
if next_url: |
|
| 145 |
return _302(next_url, response.cookies) |
|
| 146 |
else: |
|
| 147 |
return response |
|
| 136 |
return _302(self.config['saml2_sp_logout_url'], req_cookies) |
|
| 148 | 137 |
|
| 149 | 138 |
def _get_idp_metadata_file_path(self): |
| 150 | 139 |
metadata_file_path = None |
Formats disponibles : Unified diff
saml2: simplify local logout