Skip to content
Snippets Groups Projects
Commit 4c87d36f authored by Art's avatar Art :lizard:
Browse files

Change NameID format to transient (persistent was never used anyway)

parent e9bd687b
Branches
Tags
No related merge requests found
Show whitespace changes
Inline Side-by-side
ssoauth/app_settings/__init__.py
+ 3
2
View file @ 4c87d36f
from django import conf from django import conf
from datetime import datetime, timedelta from datetime import datetime, timedelta
from onelogin.saml2 import settings as onelogin_settings from onelogin.saml2 import settings as onelogin_settings
from onelogin.saml2.constants import OneLogin_Saml2_Constants as onelogin_constants
import sys import sys
from .defaults import * from .defaults import *
...@@ -37,7 +38,7 @@ ONELOGIN_SETTINGS_TEMPLATE = { ...@@ -37,7 +38,7 @@ ONELOGIN_SETTINGS_TEMPLATE = {
}, },
"x509cert": _SET_ON_RUNTIME, "x509cert": _SET_ON_RUNTIME,
"privateKey": _SET_ON_RUNTIME, "privateKey": _SET_ON_RUNTIME,
"NameIDFormat": onelogin_settings.OneLogin_Saml2_Constants.NAMEID_PERSISTENT, # otherwise Shibboleth shows warnings "NameIDFormat": onelogin_constants.NAMEID_TRANSIENT,
}, },
"idp": { "idp": {
"entityId": IDP_META_URL, "entityId": IDP_META_URL,
...@@ -63,7 +64,7 @@ ONELOGIN_SETTINGS_TEMPLATE = { ...@@ -63,7 +64,7 @@ ONELOGIN_SETTINGS_TEMPLATE = {
"signMetadata": True, "signMetadata": True,
"wantMessagesSigned": True, "wantMessagesSigned": True,
"wantAssertionsSigned": True, "wantAssertionsSigned": True,
"wantNameId": True, "wantNameId": False, # set to True for SLO support (Single Log Out)
"wantNameIdEncrypted": False, "wantNameIdEncrypted": False,
"wantAssertionsEncrypted": True, "wantAssertionsEncrypted": True,
"signatureAlgorithm": "http://www.w3.org/2001/04/xmldsig-more#rsa-sha512", "signatureAlgorithm": "http://www.w3.org/2001/04/xmldsig-more#rsa-sha512",
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment