def __init__(self, *args, **kwargs):
super(SAML2, self).__init__(*args, **kwargs)
self.metadata = Metadata(*args, **kwargs)
-
- # Init IDP data
- try:
- self.cfg.idp = IdentityProvider(self.cfg)
- except Exception, e: # pylint: disable=broad-except
- self._debug('Failed to init SAML2 provider: %r' % e)
- return
-
- # Import all known applications
- data = self.cfg.get_data()
- for idval in data:
- sp = data[idval]
- if 'type' not in sp or sp['type'] != 'SP':
- continue
- if 'name' not in sp or 'metadata' not in sp:
- continue
- try:
- self.cfg.idp.add_provider(sp)
- except Exception, e: # pylint: disable=broad-except
- self._debug('Failed to add SP %s: %r' % (sp['name'], e))
-
self.SSO = SSO(*args, **kwargs)
def __init__(self):
super(IdpProvider, self).__init__('saml2', 'saml2')
+ self.admin = None
self.page = None
self.idp = None
self.description = """
return self.get_config_value('default email domain')
def get_tree(self, site):
+ self.idp = self.init_idp()
self.page = SAML2(site, self)
self.admin = AdminPage(site, self)
return self.page
+ def init_idp(self):
+ idp = None
+ # Init IDP data
+ try:
+ idp = IdentityProvider(self)
+ except Exception, e: # pylint: disable=broad-except
+ self._debug('Failed to init SAML2 provider: %r' % e)
+ return None
+
+ # Import all known applications
+ data = self.get_data()
+ for idval in data:
+ sp = data[idval]
+ if 'type' not in sp or sp['type'] != 'SP':
+ continue
+ if 'name' not in sp or 'metadata' not in sp:
+ continue
+ try:
+ idp.add_provider(sp)
+ except Exception, e: # pylint: disable=broad-except
+ self._debug('Failed to add SP %s: %r' % (sp['name'], e))
+
+ return idp
+
+ def on_enable(self):
+ self.init_idp()
+ if hasattr(self, 'admin'):
+ if self.admin:
+ self.admin.add_sps()
+
class Installer(object):
def install_args(self, group):
group.add_argument('--saml2', choices=['yes', 'no'], default='yes',
help='Configure SAML2 Provider')
- group.add_argument('--saml2-secure',
- choices=['yes', 'no'], default='yes',
- help='Configure SAML2 Provider')
def configure(self, opts):
if opts['saml2'] != 'yes':
# Generate Idp Metadata
proto = 'https'
- if opts['saml2_secure'].lower() == 'no':
+ if opts['secure'].lower() == 'no':
proto = 'http'
url = '%s://%s/%s/saml2' % (proto, opts['hostname'], opts['instance'])
meta = metadata.Metadata(metadata.IDP_ROLE)