From e71ffce51f13db47585c50081de46ff5e791d919 Mon Sep 17 00:00:00 2001 From: Thomas Pfau Date: Mon, 12 Feb 2024 08:49:23 +0200 Subject: [PATCH] Changing to non encrypted nameID format --- .gitignore | 2 ++ app/saml/saml_data/advanced_settings.json | 2 +- app/saml/saml_router.py | 3 +-- 3 files changed, 4 insertions(+), 3 deletions(-) diff --git a/.gitignore b/.gitignore index 60c6517..e8d582c 100644 --- a/.gitignore +++ b/.gitignore @@ -196,3 +196,5 @@ app/saml/saml_data/settings.json # dev databases mongodb/**/* data/**/* + +keyfile.key \ No newline at end of file diff --git a/app/saml/saml_data/advanced_settings.json b/app/saml/saml_data/advanced_settings.json index 3df5707..5a3ce06 100644 --- a/app/saml/saml_data/advanced_settings.json +++ b/app/saml/saml_data/advanced_settings.json @@ -8,7 +8,7 @@ "wantMessagesSigned": true, "wantAssertionsSigned": true, "wantNameId" : true, - "wantNameIdEncrypted": true, + "wantNameIdEncrypted": false, "wantAssertionsEncrypted": true, "allowSingleLabelDomains": false, "signatureAlgorithm": "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256", diff --git a/app/saml/saml_router.py b/app/saml/saml_router.py index 727daab..df1fb6d 100644 --- a/app/saml/saml_router.py +++ b/app/saml/saml_router.py @@ -57,8 +57,7 @@ async def saml_callback(request: Request): else: sessionData = {} sessionData["samlUserdata"] = auth.get_attributes() - logger.info(auth.get_nameid()) - sessionData["samlNameId"] = decrypt_name_id(auth.get_nameid()) + sessionData["samlNameId"] = auth.get_nameid() sessionData["samlNameIdFormat"] = auth.get_nameid_format() sessionData["samlNameIdNameQualifier"] = auth.get_nameid_nq() sessionData["samlNameIdSPNameQualifier"] = auth.get_nameid_spnq()