From df53f465c0238e9a6a306df21cd7e04731056dd6 Mon Sep 17 00:00:00 2001 From: Emmanuel Ormancey Date: Wed, 12 Dec 2018 10:40:24 +0100 Subject: Added a configuration option for passport-saml: disableRequestedAuthnContext: true|false By default only Password authmethod is accepted, this option allows any other method. Issue and option described here: https://github.com/bergie/passport-saml/issues/226 Signed-off-by: Emmanuel Ormancey --- lib/web/auth/saml/index.js | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) (limited to 'lib/web/auth/saml') diff --git a/lib/web/auth/saml/index.js b/lib/web/auth/saml/index.js index b8d98340..3cdb7fe2 100644 --- a/lib/web/auth/saml/index.js +++ b/lib/web/auth/saml/index.js @@ -17,7 +17,8 @@ passport.use(new SamlStrategy({ entryPoint: config.saml.idpSsoUrl, issuer: config.saml.issuer || config.serverURL, cert: fs.readFileSync(config.saml.idpCert, 'utf-8'), - identifierFormat: config.saml.identifierFormat + identifierFormat: config.saml.identifierFormat, + disableRequestedAuthnContext: config.saml.disableRequestedAuthnContext }, function (user, done) { // check authorization if needed if (config.saml.externalGroups && config.saml.groupAttribute) { -- cgit v1.2.3