Jens Langhammer
406f69080b
Revert "*: providers and sources -> channels, PolicyModel to PolicyBindingModel that uses custom M2M through"
...
This reverts commit 7ed3ceb960
.
2020-05-16 16:02:42 +02:00
Jens Langhammer
7ed3ceb960
*: providers and sources -> channels, PolicyModel to PolicyBindingModel that uses custom M2M through
2020-05-16 14:03:57 +02:00
Jens Langhammer
fff05e35ac
providers/saml: optionally verify SAML Signature
2020-05-06 18:03:12 +02:00
Jens Langhammer
a5bfef9b6b
providers/saml: fix leftover data in session, fix IdP initiated login
...
move can_handle calls to binding endpoints (/login/ and /login/initiate/), so that /login/authorize/ works either way, can clean up the session and audit
2020-02-24 17:34:52 +01:00
Jens Langhammer
38a22ddf13
providers/saml: cleanup encoding
2020-02-20 21:33:10 +01:00
Jens Langhammer
027a64fad2
providers/saml: change default NameID Format to emailAddress
2020-02-20 17:37:09 +01:00
Jens Langhammer
8d875cb01d
providers/saml: fix /login/ pointing to wrong view
2020-02-20 16:13:55 +01:00
Jens Langhammer
5b22f9b6c3
providers/saml: transition to dataclass from dict, cleanup unused templates, add missing autosubmit_form
2020-02-18 10:57:30 +01:00
Jens Langhammer
813b2676de
providers/saml: better handle PropertyMapping evaluation errors
2020-02-18 10:12:42 +01:00
Jens Langhammer
3aa2f1e892
*: propertymapping template -> expression
2020-02-17 20:38:14 +01:00
Jens Langhammer
7268afaaf9
providers/saml: update to new PropertyMappings
2020-02-17 17:50:11 +01:00
Jens Langhammer
447e81d0b8
providers/saml: handle uncompressed SAML AuthNRequest
2020-02-16 14:08:35 +01:00
Jens Langhammer
e5b85e8e6a
providers/saml: move default saml properties to DB
2020-02-16 12:29:53 +01:00
Jens Langhammer
571373866e
providers/saml: some more cleanup, fix get_time_string when called without argument
2020-02-14 15:34:24 +01:00
Jens Langhammer
e36d7928e4
providers/saml: big cleanup, simplify base processor
...
add New fields for
- assertion_valid_not_before
- assertion_valid_not_on_or_after
- session_valid_not_on_or_after
allow flexible time durations for these fields
fall back to Provider's ACS if none is specified in AuthNRequest
2020-02-14 15:19:48 +01:00