summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorBenjamin Dauvergne <bdauvergne@entrouvert.com>2016-05-31 12:56:42 (GMT)
committerBenjamin Dauvergne <bdauvergne@entrouvert.com>2016-05-31 12:58:26 (GMT)
commit0cb99dc97f4ac14d9e18f88a144add5f5dc27972 (patch)
treee5637e941f4c2ec20f1d9fee0e081abbdfe67e41
parent9424128af8cba49ea6ded354b3c0ce850b81c511 (diff)
downloadauthentic2-supann-0cb99dc97f4ac14d9e18f88a144add5f5dc27972.zip
authentic2-supann-0cb99dc97f4ac14d9e18f88a144add5f5dc27972.tar.gz
authentic2-supann-0cb99dc97f4ac14d9e18f88a144add5f5dc27972.tar.bz2
allow choosing to support SLO or not
-rw-r--r--supann.conf6
-rwxr-xr-xupdate-renater-meta.sh9
2 files changed, 14 insertions, 1 deletions
diff --git a/supann.conf b/supann.conf
index b0aa95f..58c67c7 100644
--- a/supann.conf
+++ b/supann.conf
@@ -76,3 +76,9 @@ export BIND=127.0.0.1:8080
# /etc/ldap/ldap.conf avec la ligne
# TLS_CAPATH /chemin/du/certificat_ou_du_certificat_racine
export USE_TLS=0
+
+
+# Allow SLO
+#
+# Is SLO supported ?
+export ALLOW_SLO=0
diff --git a/update-renater-meta.sh b/update-renater-meta.sh
index 9c1c9b9..8b6c052 100755
--- a/update-renater-meta.sh
+++ b/update-renater-meta.sh
@@ -52,6 +52,13 @@ if ! xmlsec1 --verify --id-attr:ID EntitiesDescriptor --pubkey-cert-pem $CERTIFI
exit 1
fi
+if [ "$ALLOW_SLO" = "0" ]; then
+ IDP_INITIATED_SLO=false
+else
+ IDP_INITIATED_SLO=true
+fi
+
+
# Build fixture
cat <<EOF >$FIXTURE_TMP
[
@@ -69,7 +76,7 @@ cat <<EOF >$FIXTURE_TMP
"federation_mode" : 0,
"forward_slo" : true,
"http_method_for_slo_request" : 4,
- "idp_initiated_sso" : false,
+ "idp_initiated_sso" : $IDP_INITIATED_SLO,
"iframe_logout_timeout" : 300,
"name" : "Default",
"needs_iframe_logout" : false,