From 7052b23efc40bef86b6303ff3830ca63ecf7352c Mon Sep 17 00:00:00 2001
From: Art Lukyanchyk <artiom.lukyanchyk@hs-hannover.de>
Date: Mon, 18 Mar 2024 16:27:17 +0100
Subject: [PATCH] Add a workaround where entityID is not a valid metadata URL

---
 ssoauth/app_settings/__init__.py | 2 +-
 ssoauth/app_settings/defaults.py | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/ssoauth/app_settings/__init__.py b/ssoauth/app_settings/__init__.py
index 301e69e..215c2ce 100644
--- a/ssoauth/app_settings/__init__.py
+++ b/ssoauth/app_settings/__init__.py
@@ -40,7 +40,7 @@ ONELOGIN_SETTINGS_TEMPLATE = {
         "NameIDFormat": onelogin_constants.NAMEID_TRANSIENT,
     },
     "idp": {
-        "entityId": IDP_META_URL,
+        "entityId": IDP_ENTITY_ID or IDP_META_URL,
         "x509certMulti": {
             "signing": _SET_ON_RUNTIME or dict(),
             "encryption": _SET_ON_RUNTIME or dict(),
diff --git a/ssoauth/app_settings/defaults.py b/ssoauth/app_settings/defaults.py
index 890acbd..080784c 100644
--- a/ssoauth/app_settings/defaults.py
+++ b/ssoauth/app_settings/defaults.py
@@ -20,6 +20,7 @@ SP_PORT = 443
 SP_SSL = True
 
 IDP_META_URL = None  # e.g. "https://idp-test.hs-hannover.de/idp/shibboleth"
+IDP_ENTITY_ID = IDP_META_URL  # these must normally be the same, but a workaround is required as of 18.03.2024
 IDP_LOGOUT_URL = None  # e.g. "https://idp-test.it.hs-hannover.de/idp/profile/Logout"
 
 SP_KEY = "{project_settings}/cert/sp.key"
-- 
GitLab