Pin default AssertionConsumerService to index 0

Mellon documentation mentions the following:
https://github.com/Uninett/mod_auth_mellon/blob/master/doc/user_guide/mellon_user_guide.adoc#4132-service-provider-metadata

"For indexed endpoints if isDefault is true then this is the default
endpoint to select. If no endpoint claims to be the default then the
first endpoint in the list is the default."

While isDefault element is optional and there is only one element
currently, let's make it more deterministic and specify that the element
with index 0 is also the default one.
This commit is contained in:
Dmitrii Shcherbakov 2019-02-08 22:37:14 +03:00
parent 2d0f3a9ed0
commit 7f882e9438
1 changed files with 1 additions and 1 deletions

View File

@ -15,7 +15,7 @@
</KeyDescriptor>
{% endif %}
<SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="{{ options.sp_logout_url }}"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="{{ options.sp_post_response_url }}" index="0"/>
<AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="{{ options.sp_post_response_url }}" isDefault="true" index="0"/>
{% for format in options.supported_nameid_formats -%}
<NameIDFormat>{{ format }}</NameIDFormat>
{% endfor -%}