djangosaml2

Release notes

• added setting variables for custom templates @mdavino (#306)
• Add ModifiedSaml2Backend & _update_user example to perform authorization @pauldekkers (#303)
• Documentation @peppelinux (#301)
• feat: added settings.SAML2_CUSTOM_WAYF_TEMPLATE
• feat: added settings.SAML2_CUSTOM_AUTHORIZATION_ERROR_TEMPLATE
• feat: added settings.SAML2_CUSTOM_POST_BINDING_FORM_TEMPLATE

Release notes

• v1.3.2 @peppelinux (#298)
• feat: Unsupported Binding exception in SLO - a workaround to go ahead when SLO is absent in IdP
• custom sso POST template: changed from error to debug when theresn't any custom template to load (fallback to pysaml2 default)

Release notes

• fix: requested_authn_context config @pandafy (#293)
• fix: POST SSO - missing custom template -> changed from error to debug (#294)

Release notes

• fix: Documentation for developers, unit tests
• feat: sso_kwargs now handled with some custom methods ... that can be inherited :)
• feat: authn context support, with or without this IdentityPython/pysaml2#807 (better with!)
• feat: authn context documentation

Release notes

• Fix #245: Don't update user_main_attribute @jaap3 (#283)
• Fix #278: Allow ACS_DEFAULT_REDIRECT_URL to override LOGIN_REDIRECT_URL in more places @jaap3 (#285)
• Add release notes for previous and upcomming releases @jaap3 (#284)
• Add default_auto_field setting, strongly recommended in Django 3.2 @jaap3 (#282)
• SPConfig loader instead of global django settings @peppelinux (#281)
• Fix #277: Resolve LOGIN_REDIRECT_URL @jaap3 (#279)

Release notes

• Documentation improved
• unit tests and coverage improved
• better handling of unknown idps

Release notes

• Implement IdP Scoping parameter for SPs suggesting an entityID to a proxy @pauldekkers (#272)

Release notes

• Cast major/minor django VERSION number into float before comparing @lgarvey (#269)
• Add note to SameSite cookie docs section recommending upgrade to Django >= 3.1 @m6312 (#267)

Release notes

• fix: samesite cookie configuration fix for django version <3.1

Release notes

• Add assertion param to backed.authenticate and backend.is_authorized @lucyeun-alation (#128)
• feat: CI - added django 3.1 and 3.2
• fix: Samesite cookie value - fixed https://github.com/peppelinux/djangosaml2/issues/266
• fix: Docs small changes in setup - pysaml2 example conf improved

• fix: idp hinting invalid import

• Read the docs
• Information exposure mitigation on SSO login view

• feature: Idp Hinting
• params: SAML_DEFAULT_BINDING for SSO
• code cleanup in SSO

• typo error in Exception message
• fix(discovery_service): add missing imports and replace non existing variable came_from with next_path (#258)

• Fix default relay state bug (#253)
• Add backend.user_can_authenticate() to allow for additional checks (#254)
• ACS custom_validation method for additional checks

• code linting, cleanup. Not enough but better than before
• Documentation: Replace signal with hooks (#251)
• Better saml_attribute handling in backend - more resilient
• Add session_info to user auth failed template (#248)
• Fix SAML_ACS_FAILURE_RESPONSE_FUNCTION override
• Update Custom Error Handler docs

• logger.debug('Login process started') cleaned up
• fixed echo_Attributes template and null lenght of saml_attributes

• logout improved
• wayf improved

• RequestVersionTooLow exception handled in ACS
• Better exception handling for Malformed SAML Response
• pySAML2 dep up to v6.5.1

v1.0.1 (2020-01-20)

• PySAML2 dependency, security update
  https://github.com/IdentityPython/pysaml2/commit/12ec4a70c5aaf4c144f6b30a158193ca99bc76cd