summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRob Crittenden <rcritten@redhat.com>2015-03-19 15:19:24 -0400
committerSimo Sorce <simo@redhat.com>2015-03-23 18:00:27 -0400
commitcc527bd439314e45dc9f88599f9a3c03eb9b6220 (patch)
treed1356761bd876fa824bfb4bdc9f1b26b3b8ed030
parent704452cfa38a1d880fab920dab25f670f4fbc519 (diff)
downloadipsilon-cc527bd439314e45dc9f88599f9a3c03eb9b6220.zip
ipsilon-cc527bd439314e45dc9f88599f9a3c03eb9b6220.tar.gz
ipsilon-cc527bd439314e45dc9f88599f9a3c03eb9b6220.tar.xz
Allow user to specify Name ID format when configuring SP.
https://fedorahosted.org/ipsilon/ticket/27 Signed-off-by: Rob Crittenden <rcritten@redhat.com> Reviewed-by: Simo Sorce <simo@redhat.com>
-rwxr-xr-xipsilon/install/ipsilon-client-install4
1 files changed, 4 insertions, 0 deletions
diff --git a/ipsilon/install/ipsilon-client-install b/ipsilon/install/ipsilon-client-install
index 2390992..9959cd0 100755
--- a/ipsilon/install/ipsilon-client-install
+++ b/ipsilon/install/ipsilon-client-install
@@ -106,6 +106,7 @@ def saml2():
m.add_certs(c)
m.add_service(SAML2_SERVICE_MAP['logout-redirect'], url_logout)
m.add_service(SAML2_SERVICE_MAP['response-post'], url_post, index="0")
+ m.add_allowed_name_format(SAML2_NAMEID_MAP[args['saml_nameid']])
sp_metafile = os.path.join(path, 'metadata.xml')
m.output(sp_metafile)
@@ -269,6 +270,9 @@ def parse_args():
help="Post response URL")
parser.add_argument('--saml-secure-setup', action='store_true',
default=True, help="Turn on all security checks")
+ parser.add_argument('--saml-nameid', default='unspecified',
+ choices=SAML2_NAMEID_MAP.keys(),
+ help="SAML NameID format to use")
parser.add_argument('--debug', action='store_true', default=False,
help="Turn on script debugging")
parser.add_argument('--config-profile', default=None,