providers/saml: add WantAssertionsSigned
Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org>
This commit is contained in:
parent
9d392931df
commit
36b346662c
|
@ -124,8 +124,13 @@ class ServiceProviderMetadataParser:
|
||||||
# For now we'll only look at the first descriptor.
|
# For now we'll only look at the first descriptor.
|
||||||
# Even if multiple descriptors exist, we can only configure one
|
# Even if multiple descriptors exist, we can only configure one
|
||||||
descriptor = sp_sso_descriptors[0]
|
descriptor = sp_sso_descriptors[0]
|
||||||
auth_n_request_signed = descriptor.attrib["AuthnRequestsSigned"].lower() == "true"
|
auth_n_request_signed = False
|
||||||
assertion_signed = descriptor.attrib["WantAssertionsSigned"].lower() == "true"
|
if "AuthnRequestsSigned" in descriptor.attrib:
|
||||||
|
auth_n_request_signed = descriptor.attrib["AuthnRequestsSigned"].lower() == "true"
|
||||||
|
|
||||||
|
assertion_signed = False
|
||||||
|
if "WantAssertionsSigned" in descriptor.attrib:
|
||||||
|
assertion_signed = descriptor.attrib["WantAssertionsSigned"].lower() == "true"
|
||||||
|
|
||||||
acs_services = descriptor.findall(f"{{{NS_SAML_METADATA}}}AssertionConsumerService")
|
acs_services = descriptor.findall(f"{{{NS_SAML_METADATA}}}AssertionConsumerService")
|
||||||
if len(acs_services) < 1:
|
if len(acs_services) < 1:
|
||||||
|
|
Reference in New Issue