openstack/deb-python-pysaml2
Code Issues Proposed changes

checking logout request

Browse Source
This commit is contained in:
Roland Hedberg
2010-09-27 15:32:20 +02:00
parent 44cad90c86
commit d9586a88b9
1 changed files with 20 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
src/saml2/sigver.py
View File

@@ -451,6 +451,26 @@ class SecurityContext(object):
return item return item
def correctly_signed_logout_request(self, decoded_xml, must=False):
""" Check if a request is correctly signed, if we have metadata for
the SP that sent the info use that, if not use the key that are in
the message if any.
:param decode_xml: The SAML message as a XML string
:param must: Whether there must be a signature
:return: None if the signature can not be verified otherwise
request as a samlp.Request instance
"""
request = samlp.logout_response_from_string(decoded_xml)
if not request.signature:
if must:
raise SignatureError("Missing must signature")
else:
return request
return self._check_signature( decoded_xml, request )
def correctly_signed_authn_request(self, decoded_xml, must=False): def correctly_signed_authn_request(self, decoded_xml, must=False):
""" Check if a request is correctly signed, if we have metadata for """ Check if a request is correctly signed, if we have metadata for
the SP that sent the info use that, if not use the key that are in the SP that sent the info use that, if not use the key that are in