You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hi, I am looking to implement SSO login using djangosaml2.
The login process is as follows:
The user first inputs their email on our website, and then calls the SP server API.
The SP server API then instructs the browser to redirect to the IdP.
The user logs in on the IdP.
The IdP POSTs ACS with email attributes in the SAML response.
In the ACS, I have implemented a class called ModifiedSaml2Backend which inherits from Saml2Backend.
Login is successful.
I need to verify whether the email that the user inputted (in step 1) is the same as the email in the SAML response (in step 4).
Is it possible to include the email in the SAML request (in step 2) and retrieve it in the ACS (in step 5)?
The text was updated successfully, but these errors were encountered:
you can just have the email attribute in your SP metadata as isRequired=True, then your ACS will receive this
otherwise the subject name id instead of transient or persistent could be set to email, but I suggest to you the first solution because is more flexible with different idp configurations, since not all the idp supports the email as subject id
Hi, I am looking to implement SSO login using djangosaml2.
The login process is as follows:
I need to verify whether the email that the user inputted (in step 1) is the same as the email in the SAML response (in step 4).
Is it possible to include the email in the SAML request (in step 2) and retrieve it in the ACS (in step 5)?
The text was updated successfully, but these errors were encountered: