puiterwijk / ipsilon

Forked from ipsilon 7 years ago
Clone
Source Code
GIT

a8994fb Add support for IdP-initiated login

3 files Authored by rcritten 8 years ago, Committed by puiterwijk 8 years ago,
raw patch tree parent
3 files changed. 60 lines added. 15 lines removed.
ipsilon/providers/saml2/auth.py
file modified
+55 -13
ipsilon/providers/saml2idp.py
file modified
+4 -1
templates/index.html
file modified
+1 -1 
    Add support for IdP-initiated login
    
    This uses the Redirect SSO endpoint and two new optional
    arguments: SPIdentifier and RelayState.
    
    SPIdentifier is the provider ID of the SP.
    RelayState is where on the SP the user should be sent.
    
    If the user is already authenticted then a SAMLResponse is generated
    and the existing HTML page is generated and sent to the user including
    this response and the value of RelayState (if any). This will then POST
    to the SP and the user will be show the page on the SP.
    
    If the user is not authenticated then they will be given the login page
    after which they will be sent to the SP.
    
    The link to the SP on the IdP Portal has changed to be and IdP-initiated
    login. If a user bookmarks this link then they will always go to that
    SP and be authenticated first, if needed.
    
    https://fedorahosted.org/ipsilon/ticket/138
    
    Signed-off-by: Rob Crittenden <rcritten@redhat.com>
    Reviewed-by: John Dennis <jdennis@redhat.com>
file modified
+55 -13
file modified
+4 -1
file modified
+1 -1
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.