passport-saml
Advanced tools
Comparing version 0.13.0 to 0.14.0
@@ -796,11 +796,5 @@ var zlib = require('zlib'); | ||
'@entityID': this.options.issuer, | ||
'@ID': this.options.issuer.replace(/\W/g, '_'), | ||
'SPSSODescriptor' : { | ||
'@protocolSupportEnumeration': 'urn:oasis:names:tc:SAML:2.0:protocol', | ||
'NameIDFormat' : this.options.identifierFormat, | ||
'AssertionConsumerService' : { | ||
'@index': '1', | ||
'@isDefault': 'true', | ||
'@Binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', | ||
'@Location': this.getCallbackUrl({}) | ||
} | ||
}, | ||
@@ -837,2 +831,17 @@ } | ||
if (this.options.logoutCallbackUrl) { | ||
metadata.EntityDescriptor.SPSSODescriptor.SingleLogoutService = { | ||
'@Binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', | ||
'@Location': this.options.logoutCallbackUrl | ||
}; | ||
} | ||
metadata.EntityDescriptor.SPSSODescriptor.NameIDFormat = this.options.identifierFormat; | ||
metadata.EntityDescriptor.SPSSODescriptor.AssertionConsumerService = { | ||
'@index': '1', | ||
'@isDefault': 'true', | ||
'@Binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST', | ||
'@Location': this.getCallbackUrl({}) | ||
}; | ||
return xmlbuilder.create(metadata).end({ pretty: true, indent: ' ', newline: '\n' }); | ||
@@ -839,0 +848,0 @@ }; |
{ | ||
"name": "passport-saml", | ||
"version": "0.13.0", | ||
"version": "0.14.0", | ||
"licenses": [ | ||
@@ -5,0 +5,0 @@ { |
@@ -64,2 +64,3 @@ Passport-SAML | ||
* `forceAuthn`: if set to true, the initial SAML request from the service provider specifies that the IdP should force re-authentication of the user, even if they possess a valid session. | ||
* `skipRequestCompression`: if set to true, the SAML request from the service provider won't be compressed. | ||
* InResponseTo Validation | ||
@@ -74,2 +75,3 @@ * `validateInResponseTo`: if truthy, then InResponseTo will be validated from incoming SAML responses | ||
* `additionalLogoutParams`: dictionary of additional query params to add to 'logout' requests | ||
* `logoutCallbackUrl`: The value with which to populate the `Location` attribute in the `SingleLogoutService` elements in the generated service provider metadata. | ||
@@ -76,0 +78,0 @@ ### Provide the authentication callback |
Sorry, the diff of this file is not supported yet
Sorry, the diff of this file is not supported yet
Sorry, the diff of this file is not supported yet
Sorry, the diff of this file is too big to display
276184
2633
210