Skip to content

Add assertion param to backed.authenticate and backend.is_authorized #260

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
peppelinux merged 5 commits into from
Apr 15, 2021
Merged

Add assertion param to backed.authenticate and backend.is_authorized #260

Changes from 1 commit
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
fedbd28
add assertion param to backed.authenticate and is_authorized functions
lucyeun-alation Mar 30, 2021
774e85d
pass assertion_info dic instead of assertion object
lucyeun-alation Apr 14, 2021
f52eca2
use nooa from subjectConfirmationData instead of Condition
lucyeun-alation Apr 14, 2021
a630f70
only send assertion_info when the method is bearer
lucyeun-alation Apr 14, 2021
45ef435
readme
lucyeun-alation Apr 14, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
only send assertion_info when the method is bearer
  • Loading branch information
@lucyeun-alation
lucyeun-alation committed Apr 14, 2021
commit a630f7000b90d48efc3fcaf0d4d88294ceeedd3a
11 changes: 8 additions & 3 deletions djangosaml2/views.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -42,6 +42,7 @@
StatusNoAuthnContext, StatusRequestDenied,
UnsolicitedResponse)
from saml2.s_utils import UnsupportedBinding
from saml2.saml import SCM_BEARER
from saml2.samlp import AuthnRequest
from saml2.sigver import MissingKey
from saml2.validate import ResponseLifetimeExceed, ToEarly
Expand All @@ -56,6 +57,7 @@
get_idp_sso_supported_bindings, get_location,
validate_referral_url)


logger = logging.getLogger('djangosaml2')


Expand Down Expand Up @@ -422,9 +424,12 @@ def post(self, request, attribute_mapping=None, create_unknown_user=None):

# assertion_info
assertion = response.assertion
subject_confirmation_data = [sc.subject_confirmation_data for sc in assertion.subject.subject_confirmation]
subject_nooa = [scd.not_on_or_after if scd else None for scd in subject_confirmation_data]
assertion_info = {'assertion_id': assertion.id, 'not_on_or_after': subject_nooa}
assertion_info = {}
for sc in assertion.subject.subject_confirmation:
if sc.method == SCM_BEARER:
assertion_not_on_or_after = sc.subject_confirmation_data.not_on_or_after
assertion_info = {'assertion_id': assertion.id, 'not_on_or_after': assertion_not_on_or_after}
break

if callable(attribute_mapping):
attribute_mapping = attribute_mapping()
Expand Down