search

pennersr / django-allauth

Integrated set of Django applications addressing authentication, registration, account management as well as 3rd party (social) account authentication.
https://allauth.org
MIT License
9k stars 2.97k forks source link

SAML settings #3811

Open zgurea1 opened 2 weeks ago

zgurea1 commented 2 weeks ago

Hello, i am trying to add some security features to SAML auth, but i think the configs are reacting to changes that i made. I need to add the private key and specify the SigAlg to crypt the AuthRequest, and i don't find anywhere in documentation how to do it.

This is what i get image

This is what i need to get(its from another saml integration https://github.com/node-saml/passport-saml) image


{
  "sp": {
    "entity_id": "https://sp"
  },
  "idp": {
    "sso_url": "https://idp/login/saml",
    "entity_id": "urn:sp",
    "x509cert": "***"
  },
  "advanced": {
    "want_name_id": false,
    "metadata_signed": true,
    "digest_algorithm": "http://www.w3.org/2001/04/xmlenc#sha256",
    "name_id_encrypted": false,
    "signature_algorithm": "http://www.w3.org/2001/04/xmldsig-more#rsa-sha256",
    "want_message_signed": false,
    "authn_request_signed": false,
    "logout_request_signed": false,
    "want_assertion_signed": false,
    "logout_response_signed": false,
    "want_name_id_encrypted": false,
    "want_assertion_encrypted": false,
    "want_attribute_statement": true,
    "allow_single_label_domains": true,
    "reject_deprecated_algorithm": true
  },
  "attribute_mapping": {
    "uid": "uid",
    "email": "email",
    "last_name": "last_name",
    "first_name": "first_name",
    "email_verified": "email_verified"
  }
}```