2 files changed, 9 insertions, 2 deletions

diff --git a/lib/web/auth/saml/index.js b/lib/web/auth/saml/index.js
index 3ecbc6f3..b8d98340 100644
--- a/lib/web/auth/saml/index.js
+++ b/lib/web/auth/saml/index.js
@@ -20,14 +20,14 @@ passport.use(new SamlStrategy({
   identifierFormat: config.saml.identifierFormat
 }, function (user, done) {
   // check authorization if needed
-  if (config.saml.externalGroups && config.saml.grouptAttribute) {
+  if (config.saml.externalGroups && config.saml.groupAttribute) {
     var externalGroups = intersection(config.saml.externalGroups, user[config.saml.groupAttribute])
     if (externalGroups.length > 0) {
       logger.error('saml permission denied: ' + externalGroups.join(', '))
       return done('Permission denied', null)
     }
   }
-  if (config.saml.requiredGroups && config.saml.grouptAttribute) {
+  if (config.saml.requiredGroups && config.saml.groupAttribute) {
     if (intersection(config.saml.requiredGroups, user[config.saml.groupAttribute]).length === 0) {
       logger.error('saml permission denied')
       return done('Permission denied', null)
diff --git a/lib/web/userRouter.js b/lib/web/userRouter.js
index ecfbaf8b..963961c7 100644
--- a/lib/web/userRouter.js
+++ b/lib/web/userRouter.js
@@ -5,6 +5,7 @@ const Router = require('express').Router
 const response = require('../response')
 const models = require('../models')
 const logger = require('../logger')
+const {generateAvatar} = require('../letter-avatars')
 
 const UserRouter = module.exports = Router()
 
@@ -34,3 +35,9 @@ UserRouter.get('/me', function (req, res) {
     })
   }
 })
+
+UserRouter.get('/user/:username/avatar.svg', function (req, res, next) {
+  res.setHeader('Content-Type', 'image/svg+xml')
+  res.setHeader('Cache-Control', 'public, max-age=86400')
+  res.send(generateAvatar(req.params.username))
+})