passport-saml - npm Package Compare versions

Comparing version 0.13.0 to 0.14.0

lib/passport-saml/saml.js

@@ -796,11 +796,5 @@ var zlib = require('zlib');
       '@entityID': this.options.issuer,
+      '@ID': this.options.issuer.replace(/\W/g, '_'),
       'SPSSODescriptor' : {
         '@protocolSupportEnumeration': 'urn:oasis:names:tc:SAML:2.0:protocol',
-        'NameIDFormat' : this.options.identifierFormat,
-        'AssertionConsumerService' : {
-          '@index': '1',
-          '@isDefault': 'true',
-          '@Binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST',
-          '@Location': this.getCallbackUrl({})
-        }
       },
@@ -837,2 +831,17 @@ }
 
+  if (this.options.logoutCallbackUrl) {
+    metadata.EntityDescriptor.SPSSODescriptor.SingleLogoutService = {
+      '@Binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST',
+      '@Location': this.options.logoutCallbackUrl
+    };
+  }
+
+  metadata.EntityDescriptor.SPSSODescriptor.NameIDFormat = this.options.identifierFormat;
+  metadata.EntityDescriptor.SPSSODescriptor.AssertionConsumerService = {
+    '@index': '1',
+    '@isDefault': 'true',
+    '@Binding': 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST',
+    '@Location': this.getCallbackUrl({})
+  };
+
   return xmlbuilder.create(metadata).end({ pretty: true, indent: '  ', newline: '\n' });
@@ -839,0 +848,0 @@ };

package.json

 {
   "name": "passport-saml",
-  "version": "0.13.0",
+  "version": "0.14.0",
   "licenses": [
@@ -5,0 +5,0 @@ {

README.md

@@ -64,2 +64,3 @@ Passport-SAML
  * `forceAuthn`: if set to true, the initial SAML request from the service provider specifies that the IdP should force re-authentication of the user, even if they possess a valid session.
+ * `skipRequestCompression`: if set to true, the SAML request from the service provider won't be compressed.
 * InResponseTo Validation
@@ -74,2 +75,3 @@ * `validateInResponseTo`: if truthy, then InResponseTo will be validated from incoming SAML responses
  * `additionalLogoutParams`: dictionary of additional query params to add to 'logout' requests
+ * `logoutCallbackUrl`: The value with which to populate the `Location` attribute in the `SingleLogoutService` elements in the generated service provider metadata.
 
@@ -76,0 +78,0 @@ ### Provide the authentication callback

No alert changes

Improved metrics

Total package byte prevSize

276184

increased by0.56%

Lines of code

2633

increased by0.84%

Number of lines in readme file

210

increased by0.96%

No dependency changes