misc: disable AuthnRequest eo:next_url Extensions by default (fixes #20229)
This commit is contained in:
parent
a0d3e209c1
commit
ac75dce84f
|
@ -13,6 +13,7 @@ class AppSettings(object):
|
|||
'NAME_ID_POLICY_FORMAT': None,
|
||||
'NAME_ID_POLICY_ALLOW_CREATE': True,
|
||||
'FORCE_AUTHN': False,
|
||||
'ADD_AUTHNREQUEST_NEXT_URL_EXTENSION': False,
|
||||
'ADAPTER': (
|
||||
'mellon.adapters.DefaultAdapter',
|
||||
),
|
||||
|
|
|
@ -363,6 +363,7 @@ class LoginView(ProfileMixin, LogMixin, View):
|
|||
authn_request.requestedAuthnContext = req_authncontext
|
||||
req_authncontext.authnContextClassRef = authn_classref
|
||||
|
||||
if utils.get_setting(idp, 'ADD_AUTHNREQUEST_NEXT_URL_EXTENSION'):
|
||||
authn_request.extensions = lasso.Samlp2Extensions()
|
||||
authn_request.extensions.setOriginalXmlnode(
|
||||
'''<samlp:Extensions
|
||||
|
|
Loading…
Reference in New Issue