Added a configuration option for passport-saml:

disableRequestedAuthnContext: true|false By default only Password authmethod is accepted, this option allows any other method. Issue and option described here: https://github.com/bergie/passport-saml/issues/226 Signed-off-by: Emmanuel Ormancey <emmanuel.ormancey@cern.ch>
author: Emmanuel Ormancey 2018-12-12 10:40:24 +0100
committer: Sheogorath 2019-04-06 17:54:58 +0200
commit: df53f465c0238e9a6a306df21cd7e04731056dd6 (patch)
tree: bd7ed2541fd1f233ac74b4dbd7953e1bb975c73e /lib/web/auth
parent: 5379d65edc8edfb6135f43e4e021ee2d7907d957 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/lib/web/auth/saml/index.js b/lib/web/auth/saml/index.js
index b8d98340..3cdb7fe2 100644
--- a/lib/web/auth/saml/index.js
+++ b/lib/web/auth/saml/index.js
@@ -17,7 +17,8 @@ passport.use(new SamlStrategy({
   entryPoint: config.saml.idpSsoUrl,
   issuer: config.saml.issuer || config.serverURL,
   cert: fs.readFileSync(config.saml.idpCert, 'utf-8'),
-  identifierFormat: config.saml.identifierFormat
+  identifierFormat: config.saml.identifierFormat,
+  disableRequestedAuthnContext: config.saml.disableRequestedAuthnContext
 }, function (user, done) {
   // check authorization if needed
   if (config.saml.externalGroups && config.saml.groupAttribute) {
author	Emmanuel Ormancey	2018-12-12 10:40:24 +0100
committer	Sheogorath	2019-04-06 17:54:58 +0200
commit	df53f465c0238e9a6a306df21cd7e04731056dd6 (patch)
tree	bd7ed2541fd1f233ac74b4dbd7953e1bb975c73e /lib/web/auth
parent	5379d65edc8edfb6135f43e4e021ee2d7907d957 (diff)