admin/twenty
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

chore(auth): update SAML strategy configuration (#9829)

Browse Source 
Added `disableRequestedAuthnContext` flag to SAML auth strategy to align
with compatibility requirements. Adjustments ensure seamless integration
with certain Identity Providers. No functional impact on existing flows.
This commit is contained in:
Antoine Moreaux
2025-01-24 14:52:42 +01:00
committed by GitHub
parent edd7212f0b
commit f23de2fa22
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
packages/twenty-server/src/engine/core-modules/auth/strategies/saml.auth.strategy.ts
View File

@ -36,9 +36,10 @@ export class SamlAuthStrategy extends PassportStrategy(
issuer: this.sSOService.buildIssuerURL(identityProvider), issuer: this.sSOService.buildIssuerURL(identityProvider),
callbackUrl: this.sSOService.buildCallbackUrl(identityProvider), callbackUrl: this.sSOService.buildCallbackUrl(identityProvider),
idpCert: identityProvider.certificate, idpCert: identityProvider.certificate,
wantAssertionsSigned: false,
// TODO: Improve the feature by sign the response // TODO: Improve the feature by sign the response
wantAssertionsSigned: false,
wantAuthnResponseSigned: false, wantAuthnResponseSigned: false,
disableRequestedAuthnContext: true,
signatureAlgorithm: 'sha256', signatureAlgorithm: 'sha256',
}; };