45 lines
1.4 KiB
Python
45 lines
1.4 KiB
Python
from saml2 import BINDING_SOAP, BINDING_HTTP_REDIRECT
|
|
from saml2.saml import NAME_FORMAT_URI
|
|
|
|
BASE = "http://localhost:8089/"
|
|
|
|
from pathutils import full_path
|
|
|
|
CONFIG = {
|
|
"entityid" : "urn:mace:example.com:saml:roland:idpr",
|
|
"name" : "Rolands restrictied IdP",
|
|
"service": {
|
|
"idp": {
|
|
"endpoints" : {
|
|
"single_sign_on_service" : [
|
|
(BASE+"sso", BINDING_HTTP_REDIRECT)],
|
|
"attribute_service" : [
|
|
(BASE+"aa", BINDING_SOAP)],
|
|
},
|
|
"policy": {
|
|
"default": {
|
|
"lifetime": {"minutes":15},
|
|
"name_form": NAME_FORMAT_URI
|
|
},
|
|
"urn:mace:example.com:saml:roland:sp": {
|
|
"lifetime": {"minutes": 5},
|
|
"attribute_restrictions":{
|
|
"givenName": None,
|
|
"surName": None,
|
|
"mail": [".*@example.com"],
|
|
"eduPersonAffiliation": ["(employee|staff|faculty)"],
|
|
}
|
|
}
|
|
},
|
|
"subject_data": full_path("subject_data.db"),
|
|
}
|
|
},
|
|
"key_file" : full_path("test.key"),
|
|
"cert_file" : full_path("test.pem"),
|
|
"xmlsec_binary" : None,
|
|
"metadata": {
|
|
"local": [full_path("sp_0.metadata")],
|
|
},
|
|
"attribute_map_dir" : full_path("attributemaps"),
|
|
}
|