X-Git-Url: http://git.cascardo.info/?p=cascardo%2Fipsilon.git;a=blobdiff_plain;f=ipsilon%2Finstall%2Fipsilon-client-install;h=2b3d2f2f56f6f62ce4f6f3490a3075d88a79b775;hp=d48df1b8bbfff065a6af2be8b409dd8a7719bdf3;hb=ca38224edc22e794c77418d30c2034cdba7ebe67;hpb=5c0898a8e0fa977911fde7c24123f834e4792948 diff --git a/ipsilon/install/ipsilon-client-install b/ipsilon/install/ipsilon-client-install index d48df1b..2b3d2f2 100755 --- a/ipsilon/install/ipsilon-client-install +++ b/ipsilon/install/ipsilon-client-install @@ -84,7 +84,10 @@ def saml2(): else: path = os.getcwd() - url = 'https://' + args['hostname'] + proto = 'https' + if not args['saml_secure_setup']: + proto = 'http' + url = '%s://%s' % (proto, args['hostname']) url_sp = url + args['saml_sp'] url_logout = url + args['saml_sp_logout'] url_post = url + args['saml_sp_post'] @@ -118,6 +121,10 @@ def saml2(): # default location, enable the default page psp = '' + saml_secure = 'Off' + if args['saml_secure_setup']: + saml_secure = 'On' + samlopts = {'saml_base': args['saml_base'], 'saml_protect': saml_protect, 'saml_sp_key': c.key, @@ -125,6 +132,7 @@ def saml2(): 'saml_sp_meta': sp_metafile, 'saml_idp_meta': idp_metafile, 'saml_sp': args['saml_sp'], + 'saml_secure_on': saml_secure, 'saml_auth': saml_auth, 'sp': psp} files.write_from_template(SAML2_CONFFILE, SAML2_TEMPLATE, samlopts) @@ -200,6 +208,8 @@ def parse_args(): help="Single Logout URL") parser.add_argument('--saml-sp-post', default='/saml2/postResponse', help="Post response URL") + parser.add_argument('--saml-secure-setup', action='store_true', + default=True, help="Turn on all security checks") parser.add_argument('--debug', action='store_true', default=False, help="Turn on script debugging") parser.add_argument('--uninstall', action='store_true',