zulip/zproject
Mateusz Mandera 8fb0fe96c6 saml: Save SessionIndex in session and use when making a LogoutRequest.
This is a useful improvement in general for making correct
LogoutRequests to Idps and a necessary one to make SP-initiated logout
fully work properly in the desktop application. During desktop auth
flow, the user goes through the browser, where they log in through their
IdP. This gives them a logged in  browser session at the IdP. However,
SAML SP-initiated logout is fully conducted within the desktop
application. This means that proper information needs to be given to the
the IdP in the LogoutRequest to let it associate the LogoutRequest with
that logged in session that was established in the browser. SessionIndex
is exactly the tool for that in the SAML spec.
2023-05-23 13:01:15 -07:00
..
jinja2 jinja2: Make sure that 500 pages have support_email set. 2023-04-12 16:41:07 -07:00
__init__.py
backends.py saml: Save SessionIndex in session and use when making a LogoutRequest. 2023-05-23 13:01:15 -07:00
computed_settings.py saml: Sign LogoutRequests and LogoutResponses if certs are set up. 2023-05-23 13:01:15 -07:00
config.py config: Remove Django base class from ZulipSettingsError. 2022-09-26 12:42:36 -07:00
configured_settings.py ruff: Fix M001 Unused `noqa` directive. 2022-11-03 12:10:15 -07:00
default_settings.py saml: Rework SP-initiated logout config to support IdP-level config. 2023-05-23 13:01:15 -07:00
dev_settings.py error-bot: Remove ERROR_BOT support. 2023-04-13 14:59:58 -07:00
dev_urls.py settings: Allow customization of STATIC_URL. 2023-02-14 17:17:06 -05:00
email_backends.py email: Replace `uri` with `url` in templates and backend. 2023-04-26 16:37:16 -07:00
legacy_urls.py legacy_urls: Add type annotation to legacy_urls. 2022-08-12 17:08:04 -07:00
prod_settings.pyi lint: Replace pycodestyle and pyflakes with ruff. 2022-11-03 12:10:15 -07:00
prod_settings_template.py saml: Rework SP-initiated logout config to support IdP-level config. 2023-05-23 13:01:15 -07:00
sentry.py puppet: Add a sentry release class. 2023-02-10 15:53:10 -08:00
settings.py ruff: Fix M001 Unused `noqa` directive. 2022-11-03 12:10:15 -07:00
settings_types.py saml: Rework SP-initiated logout config to support IdP-level config. 2023-05-23 13:01:15 -07:00
template_loaders.py template_loaders: Extract TwoFactorLoader to new module. 2022-09-26 12:42:36 -07:00
test_extra_settings.py saml: Rework SP-initiated logout config to support IdP-level config. 2023-05-23 13:01:15 -07:00
test_settings.py ruff: Fix M001 Unused `noqa` directive. 2022-11-03 12:10:15 -07:00
urls.py saml: Implement SP-initiated Logout. 2023-05-23 13:01:15 -07:00
wsgi.py