saml_idp: cleanup settings, add was processor

2018-12-26 21:55:37 +01:00
parent 0c9a00acbe
commit aa7e3c2a15
3 changed files with 27 additions and 4 deletions
--- a/passbook/saml_idp/processors/aws.py
+++ b/passbook/saml_idp/processors/aws.py
@ -0,0 +1,26 @@
+"""AWS Processor"""
+
+from passbook.saml_idp.base import Processor, xml_render
+
+
+class AWSProcessor(Processor):
+    """AWS Response Handler Processor for testing against django-saml2-sp."""
+
+    def _determine_audience(self):
+        self._audience = 'urn:amazon:webservices'
+
+    def _format_assertion(self):
+        """Formats _assertion_params as _assertion_xml."""
+        self._assertion_params['ATTRIBUTES'] = [
+            {
+                'Name': 'https://aws.amazon.com/SAML/Attributes/RoleSessionName',
+                'Value': self._django_request.user.username,
+            },
+            {
+                'Name': 'https://aws.amazon.com/SAML/Attributes/Role',
+                # 'Value': 'arn:aws:iam::471432361072:saml-provider/passbook_dev,
+                # arn:aws:iam::471432361072:role/saml_role'
+            }
+        ]
+        self._assertion_xml = xml_render.get_assertion_xml(
+            'saml/xml/assertions/generic.xml', self._assertion_params, signed=True)