Added Python files explaining how to create a SP using Lasso.

1 files changed, 26 insertions, 0 deletions

diff --git a/python/doc/tutorial/sp-login-send-authn-request.py b/python/doc/tutorial/sp-login-send-authn-request.py
new file mode 100644
index 00000000..cda934d4
--- /dev/null
+++ b/python/doc/tutorial/sp-login-send-authn-request.py
@@ -0,0 +1,26 @@
+import lasso
+
+
+## Send an authentication request to identity provider.
+##
+## Called when the user press login button on service provider.
+
+server_dump = [...] # Load server_dump from file or database or...
+server = lasso.Server.new_from_dump(server_dump)
+login = lasso.Login.new(server)
+if login.init_authn_request('http://identification.entrouvert.org'):
+    raise Exception('Login error')
+
+# Identity provider will ask user to authenticate himself.
+login.request.set_isPassive(False)
+
+# Identity provider will not ask user to authenticate himself if he has already done it recently.
+# login.request.set_forceAuthn(False)
+
+# Identity provider will create a federation with this service provider and this user, if this was
+# not already done.
+login.request.set_nameIDPolicy(lasso.libNameIDPolicyTypes['federated'])
+
+if login.build_authn_request_msg():
+    raise Exception('Login error')
+[...] # Reply a HTTP redirect to login.msg_url.