Commit b819f75f authored by Clément OUDOT's avatar Clément OUDOT
Browse files

Remove HTTP-Redirect binding for SAML authentication response because not...

Remove HTTP-Redirect binding for SAML authentication response because not supported in SAML 2.0 conformance document (#144)
parent 04ede0a9
...@@ -232,7 +232,6 @@ sub serviceToXML { ...@@ -232,7 +232,6 @@ sub serviceToXML {
my @param_assertion = qw( my @param_assertion = qw(
samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact
samlSPSSODescriptorAssertionConsumerServiceHTTPPost samlSPSSODescriptorAssertionConsumerServiceHTTPPost
samlSPSSODescriptorAssertionConsumerServiceHTTPRedirect
samlSPSSODescriptorArtifactResolutionServiceArtifact samlSPSSODescriptorArtifactResolutionServiceArtifact
samlIDPSSODescriptorArtifactResolutionServiceArtifact samlIDPSSODescriptorArtifactResolutionServiceArtifact
); );
......
...@@ -803,16 +803,13 @@ sub struct { ...@@ -803,16 +803,13 @@ sub struct {
samlSPSSODescriptorAssertionConsumerService => { samlSPSSODescriptorAssertionConsumerService => {
_nodes => [ _nodes => [
qw(samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact qw(samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact
samlSPSSODescriptorAssertionConsumerServiceHTTPPost samlSPSSODescriptorAssertionConsumerServiceHTTPPost)
samlSPSSODescriptorAssertionConsumerServiceHTTPRedirect)
], ],
_help => 'default', _help => 'default',
samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact => samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact =>
'samlAssertion:/samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact', 'samlAssertion:/samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact',
samlSPSSODescriptorAssertionConsumerServiceHTTPPost => samlSPSSODescriptorAssertionConsumerServiceHTTPPost =>
'samlAssertion:/samlSPSSODescriptorAssertionConsumerServiceHTTPPost', 'samlAssertion:/samlSPSSODescriptorAssertionConsumerServiceHTTPPost',
samlSPSSODescriptorAssertionConsumerServiceHTTPRedirect =>
'samlAssertion:/samlSPSSODescriptorAssertionConsumerServiceHTTPRedirect',
}, },
samlSPSSODescriptorArtifactResolutionService => { samlSPSSODescriptorArtifactResolutionService => {
...@@ -1262,8 +1259,6 @@ sub testStruct { ...@@ -1262,8 +1259,6 @@ sub testStruct {
samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact => samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact =>
$testNotDefined, $testNotDefined,
samlSPSSODescriptorAssertionConsumerServiceHTTPPost => $testNotDefined, samlSPSSODescriptorAssertionConsumerServiceHTTPPost => $testNotDefined,
samlSPSSODescriptorAssertionConsumerServiceHTTPRedirect =>
$testNotDefined,
samlSPSSODescriptorArtifactResolutionServiceArtifact => $testNotDefined, samlSPSSODescriptorArtifactResolutionServiceArtifact => $testNotDefined,
samlIDPSSODescriptorWantAuthnRequestsSigned => $boolean, samlIDPSSODescriptorWantAuthnRequestsSigned => $boolean,
samlIDPSSODescriptorSingleSignOnServiceHTTPRedirect => $testNotDefined, samlIDPSSODescriptorSingleSignOnServiceHTTPRedirect => $testNotDefined,
...@@ -1466,10 +1461,6 @@ sub defaultConf { ...@@ -1466,10 +1461,6 @@ sub defaultConf {
'0;1;urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST;' '0;1;urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST;'
. '#PORTAL#' . '#PORTAL#'
. '/saml/proxySingleSignOnPost', . '/saml/proxySingleSignOnPost',
samlSPSSODescriptorAssertionConsumerServiceHTTPRedirect =>
'0;2;urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect;'
. '#PORTAL#'
. '/saml/proxySingleSignOnRedirect',
samlSPSSODescriptorArtifactResolutionServiceArtifact => samlSPSSODescriptorArtifactResolutionServiceArtifact =>
'1;0;urn:oasis:names:tc:SAML:2.0:bindings:SOAP;' '1;0;urn:oasis:names:tc:SAML:2.0:bindings:SOAP;'
. '#PORTAL#' . '#PORTAL#'
......
...@@ -296,8 +296,6 @@ sub en { ...@@ -296,8 +296,6 @@ sub en {
samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact => samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact =>
'HTTP Artifact', 'HTTP Artifact',
samlSPSSODescriptorAssertionConsumerServiceHTTPPost => 'HTTP POST', samlSPSSODescriptorAssertionConsumerServiceHTTPPost => 'HTTP POST',
samlSPSSODescriptorAssertionConsumerServiceHTTPRedirect =>
'HTTP Redirect',
samlSPSSODescriptorArtifactResolutionService => 'Artifact Resolution', samlSPSSODescriptorArtifactResolutionService => 'Artifact Resolution',
samlSPSSODescriptorArtifactResolutionServiceArtifact => samlSPSSODescriptorArtifactResolutionServiceArtifact =>
'Artifact Service', 'Artifact Service',
...@@ -595,8 +593,6 @@ sub fr { ...@@ -595,8 +593,6 @@ sub fr {
samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact => samlSPSSODescriptorAssertionConsumerServiceHTTPArtifact =>
'HTTP Artifact', 'HTTP Artifact',
samlSPSSODescriptorAssertionConsumerServiceHTTPPost => 'POST HTTP', samlSPSSODescriptorAssertionConsumerServiceHTTPPost => 'POST HTTP',
samlSPSSODescriptorAssertionConsumerServiceHTTPRedirect =>
'Redirection HTTP',
samlSPSSODescriptorArtifactResolutionService => samlSPSSODescriptorArtifactResolutionService =>
'Résolution d\'Artifact', 'Résolution d\'Artifact',
samlSPSSODescriptorArtifactResolutionServiceArtifact => samlSPSSODescriptorArtifactResolutionServiceArtifact =>
......
...@@ -110,11 +110,6 @@ ...@@ -110,11 +110,6 @@
index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostIndex">" index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostIndex">"
Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostBinding">" Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostBinding">"
Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostLocation">" /> Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPPostLocation">" />
<AssertionConsumerService
isDefault="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectDefault">"
index="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectIndex">"
Binding="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectBinding">"
Location="<TMPL_VAR NAME="samlSPSSODescriptorAssertionConsumerServiceHTTPRedirectLocation">" />
<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat> <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat> <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:X509SubjectName</NameIDFormat>
<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat> <NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:WindowsDomainQualifiedName</NameIDFormat>
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment