matty/peertube-theme-nctv-dark
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Handle assertion of HTTP-redirect for a LogoutResponse in auth-saml2

Browse Source
This commit is contained in:
Louis 2021-01-11 16:29:13 +01:00 committed by Chocobozzz
parent 38a730a386
commit 7fff53e0cc
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
peertube-plugin-auth-saml2/main.js
View File

@ -114,6 +114,7 @@ async function register ({
store.assertUrl = peertubeHelpers.config.getWebserverUrl() + '/plugins/auth-saml2/router/assert' store.assertUrl = peertubeHelpers.config.getWebserverUrl() + '/plugins/auth-saml2/router/assert'
router.post('/assert', (req, res) => handleAssert(peertubeHelpers, settingsManager, req, res)) router.post('/assert', (req, res) => handleAssert(peertubeHelpers, settingsManager, req, res))
router.get('/assert', (req, res) => handleAssert(peertubeHelpers, settingsManager, req, res))
router.get('/metadata.xml', (req, res) => { router.get('/metadata.xml', (req, res) => {
if (!store.serviceProvider) { if (!store.serviceProvider) {
@ -262,6 +263,12 @@ async function loadSettingsAndCreateProviders (
function handleAssert(peertubeHelpers, settingsManager, req, res) { function handleAssert(peertubeHelpers, settingsManager, req, res) {
const { logger } = peertubeHelpers const { logger } = peertubeHelpers
if (req.query.SAMLResponse) {
// This is a HTTP-redirect for a LogoutResponse and not a SamlResponse after a login request.
// So we do not want to assert it with post_assert as it will throw an error.
return res.redirect(peertubeHelpers.config.getWebserverUrl())
}
const options = { request_body: req.body } const options = { request_body: req.body }
store.serviceProvider.post_assert(store.identityProvider, options, async (err, samlResponse) => { store.serviceProvider.post_assert(store.identityProvider, options, async (err, samlResponse) => {