Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
(devpi)graingert@adhominem:~/projects/djangosaml2$ tox
GLOB sdist-make: /home/graingert/projects/djangosaml2/setup.py
py26-dj13 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip
py26-dj13 runtests: PYTHONHASHSEED='1754004049'
py26-dj13 runtests: commands[0] | python tests/run_tests.py
Creating test database for alias 'default'...
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-13af861fd25381dcc78695697deffc28" IssueInstant="2014-10-15T11:03:52Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-586bd0ce9a4338b8de93b9f3da583593" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-a3c5077e16d671d3ed8f7422b4f32022" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d9eff5f74718563f32efb9a4c4ceddb3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-ec6996e5c3b2df7b5b0c55d99d5ffe8e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-586bd0ce9a4338b8de93b9f3da583593" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-a3c5077e16d671d3ed8f7422b4f32022" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d9eff5f74718563f32efb9a4c4ceddb3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-ec6996e5c3b2df7b5b0c55d99d5ffe8e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-586bd0ce9a4338b8de93b9f3da583593" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-a3c5077e16d671d3ed8f7422b4f32022" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d9eff5f74718563f32efb9a4c4ceddb3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-ec6996e5c3b2df7b5b0c55d99d5ffe8e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-80a9acc85e0724723ea4b494d8c5b966" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-50f4915f83d1258790f9f8982b040673" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-c2bd18db70d4ee8b468e132965db0db6</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-11a12d10f09343d70989e213062e2556" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-80a9acc85e0724723ea4b494d8c5b966" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-50f4915f83d1258790f9f8982b040673" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-c2bd18db70d4ee8b468e132965db0db6</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-11a12d10f09343d70989e213062e2556" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-80a9acc85e0724723ea4b494d8c5b966" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-50f4915f83d1258790f9f8982b040673" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-c2bd18db70d4ee8b468e132965db0db6</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-11a12d10f09343d70989e213062e2556" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a1111111111111111111111111111111': '/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['teacher']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['teacher']}
attribute_mapping: {'uid': ('username',)}
Check if the user "teacher" exists or create otherwise
User updated
Sending the pre_save signal
Sending the post_authenticated signal
The RelayState parameter exists but is empty
Redirecting to the RelayState: /accounts/profile/
..FLogout service started
Receiving a logout request from the IdP
The session does not contain the subject id for user AnonymousUser. Performing local logout
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-aae538890dabc9cfc0f57a01e5e45e21" IssueInstant="2014-10-15T11:03:52Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-74e1db9eec342f7be2dbe33fec349652" IssueInstant="2014-10-15T11:03:52Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Login process started
A discovery process is needed
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-0cbad3f34b2f36652af839a1e36fa980" IssueInstant="2014-10-15T11:03:52Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cf3e3e027b262541af11e84cff0e34dc" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-3ea2b16066a9cd00ad2af0d883322037" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-57fa2ab943d44e82b413176141da90de</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-0b3b886a5e81d39bcf3bb7859f1c6f19" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cf3e3e027b262541af11e84cff0e34dc" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-3ea2b16066a9cd00ad2af0d883322037" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-57fa2ab943d44e82b413176141da90de</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-0b3b886a5e81d39bcf3bb7859f1c6f19" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cf3e3e027b262541af11e84cff0e34dc" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-3ea2b16066a9cd00ad2af0d883322037" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-57fa2ab943d44e82b413176141da90de</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-0b3b886a5e81d39bcf3bb7859f1c6f19" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-57fa2ab943d44e82b413176141da90de
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-d161fde9563025dc01e1402e99f9c61b" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-57fa2ab943d44e82b413176141da90de</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6707c4fdc34db2aa29fe6bab563919ba" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-b312be1d9b25feff5b965f71fb692ac9" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d883eae72380b37e5b29d1da678c157b</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-00c730ba473f6838328de29daec599dc" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6707c4fdc34db2aa29fe6bab563919ba" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-b312be1d9b25feff5b965f71fb692ac9" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d883eae72380b37e5b29d1da678c157b</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-00c730ba473f6838328de29daec599dc" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6707c4fdc34db2aa29fe6bab563919ba" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-b312be1d9b25feff5b965f71fb692ac9" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d883eae72380b37e5b29d1da678c157b</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-00c730ba473f6838328de29daec599dc" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout service started
Receiving a logout request from the IdP
<?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-d883eae72380b37e5b29d1da678c157b</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest>
RESPONSE: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-af8a2a160fcd7ff0cccca062fff9fcf7" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-aff009e7e17197dad37df225904b861f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-103204b9cd7ce51b9200509da2d130ff" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2063f94ecea9e10f9f2848897e47e001</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-bd5ef41a4212deacb9640814a58d588b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-aff009e7e17197dad37df225904b861f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-103204b9cd7ce51b9200509da2d130ff" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2063f94ecea9e10f9f2848897e47e001</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-bd5ef41a4212deacb9640814a58d588b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-aff009e7e17197dad37df225904b861f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-103204b9cd7ce51b9200509da2d130ff" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2063f94ecea9e10f9f2848897e47e001</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-bd5ef41a4212deacb9640814a58d588b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-2063f94ecea9e10f9f2848897e47e001
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-710317f0cf4309d625384b5a408d06bf" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-2063f94ecea9e10f9f2848897e47e001</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
Logout service started
Receiving a logout response from the IdP
XMLSTR: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-710317f0cf4309d625384b5a408d06bf" IssueInstant="2014-10-15T06:03:52Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-710317f0cf4309d625384b5a408d06bf" IssueInstant="2014-10-15T06:03:52Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-710317f0cf4309d625384b5a408d06bf" IssueInstant="2014-10-15T06:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
<saml2.response.LogoutResponse object at 0x274bbd0>
state: {'id-710317f0cf4309d625384b5a408d06bf': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-2063f94ecea9e10f9f2848897e47e001'}}
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-2063f94ecea9e10f9f2848897e47e001'}
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php
Performing django_logout with a next_page of None
..Assertion Consumer Service started
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-fbcb523a91f3212a33dace74f99a3e0b" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ad378810e28f65851bd1fce20dda6bbb" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5c97663769d54df038110b58414cc2a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-9df1db3556d2bdff55aa4f7c8d31cb88" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-fbcb523a91f3212a33dace74f99a3e0b" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ad378810e28f65851bd1fce20dda6bbb" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5c97663769d54df038110b58414cc2a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-9df1db3556d2bdff55aa4f7c8d31cb88" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-fbcb523a91f3212a33dace74f99a3e0b" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ad378810e28f65851bd1fce20dda6bbb" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5c97663769d54df038110b58414cc2a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-9df1db3556d2bdff55aa4f7c8d31cb88" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
.Sending the pre_save signal
Sending the pre_save signal
.
======================================================================
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests)
----------------------------------------------------------------------
Traceback (most recent call last):
File "/home/graingert/projects/djangosaml2/.tox/py26-dj13/lib/python2.6/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag
self.assertEqual(rendered, expected)
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; '
----------------------------------------------------------------------
Ran 15 tests in 0.208s
FAILED (failures=1)
Destroying test database for alias 'default'...
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py26-dj13/bin/python tests/run_tests.py'
py26-dj14 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip
py26-dj14 runtests: PYTHONHASHSEED='1754004049'
py26-dj14 runtests: commands[0] | python tests/run_tests.py
Creating test database for alias 'default'...
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-c4dd218e7976f690dcca638c4b1911f0" IssueInstant="2014-10-15T11:03:53Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-3074e20bfeb668cb0cc97bb362622a69" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-d1e21c2b1aa5acb3c3445c2adfaf2206" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-b01afb4de792f9b3197b5b9f1548b5dc</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-377948ea0eca68d7e07aee98c8766a0e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-3074e20bfeb668cb0cc97bb362622a69" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-d1e21c2b1aa5acb3c3445c2adfaf2206" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-b01afb4de792f9b3197b5b9f1548b5dc</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-377948ea0eca68d7e07aee98c8766a0e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-3074e20bfeb668cb0cc97bb362622a69" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-d1e21c2b1aa5acb3c3445c2adfaf2206" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-b01afb4de792f9b3197b5b9f1548b5dc</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-377948ea0eca68d7e07aee98c8766a0e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-5893ae0533c970359f881c79ba1710a8" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-920a896fe4b5f264502eee2f1f69459d" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dc0028c50cd409ee00e0cce7328c69af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-ddc36abf584dc1e1ff3fb052ba91261b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-5893ae0533c970359f881c79ba1710a8" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-920a896fe4b5f264502eee2f1f69459d" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dc0028c50cd409ee00e0cce7328c69af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-ddc36abf584dc1e1ff3fb052ba91261b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-5893ae0533c970359f881c79ba1710a8" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-920a896fe4b5f264502eee2f1f69459d" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dc0028c50cd409ee00e0cce7328c69af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-ddc36abf584dc1e1ff3fb052ba91261b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a1111111111111111111111111111111': '/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['teacher']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['teacher']}
attribute_mapping: {'uid': ('username',)}
Check if the user "teacher" exists or create otherwise
User updated
Sending the pre_save signal
Sending the post_authenticated signal
The RelayState parameter exists but is empty
Redirecting to the RelayState: /accounts/profile/
..FLogout service started
Receiving a logout request from the IdP
The session does not contain the subject id for user AnonymousUser. Performing local logout
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-c52237be5c139156fb4a5e0a7275a20d" IssueInstant="2014-10-15T11:03:53Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-4d486a97e597b3062c58cb16d4732e0a" IssueInstant="2014-10-15T11:03:53Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Login process started
A discovery process is needed
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-b3999c4bd9e7f02738747d5c7a2e82ff" IssueInstant="2014-10-15T11:03:53Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-0fc63e966f860faa00622d0b99bd877e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7dfd03ce82b55a5c56be9502037d8b4b" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-61408540d281e025807a051a9d3997e3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-8fe729f3d0a21587060f7d20a5c0a756" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-0fc63e966f860faa00622d0b99bd877e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7dfd03ce82b55a5c56be9502037d8b4b" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-61408540d281e025807a051a9d3997e3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-8fe729f3d0a21587060f7d20a5c0a756" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-0fc63e966f860faa00622d0b99bd877e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7dfd03ce82b55a5c56be9502037d8b4b" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-61408540d281e025807a051a9d3997e3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-8fe729f3d0a21587060f7d20a5c0a756" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-61408540d281e025807a051a9d3997e3
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-4b4ca30ec58c38db2b378500a6cfe94d" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-61408540d281e025807a051a9d3997e3</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-d03f3126f1c60cadb84b159a39761945" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dbcd228e80c8e8edbca27ec9a8b58411" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-28ebd7edf4601896b059225a7c379270</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-dd5f4428b67ac73cd649c4c3f3c58619" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-d03f3126f1c60cadb84b159a39761945" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dbcd228e80c8e8edbca27ec9a8b58411" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-28ebd7edf4601896b059225a7c379270</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-dd5f4428b67ac73cd649c4c3f3c58619" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-d03f3126f1c60cadb84b159a39761945" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dbcd228e80c8e8edbca27ec9a8b58411" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-28ebd7edf4601896b059225a7c379270</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-dd5f4428b67ac73cd649c4c3f3c58619" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout service started
Receiving a logout request from the IdP
<?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-28ebd7edf4601896b059225a7c379270</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest>
RESPONSE: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-f5cd95985e2c3002e6df9261062aaeb5" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-12667e22c3269e6660bcc0feef109cc3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1181f4de98a224fef20da41158ee4750" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-efe4e48d4662a9ca56aaccd5fb1de5cb</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-0fe1dae02ec39bb7ba68241a67cab334" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-12667e22c3269e6660bcc0feef109cc3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1181f4de98a224fef20da41158ee4750" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-efe4e48d4662a9ca56aaccd5fb1de5cb</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-0fe1dae02ec39bb7ba68241a67cab334" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-12667e22c3269e6660bcc0feef109cc3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1181f4de98a224fef20da41158ee4750" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-efe4e48d4662a9ca56aaccd5fb1de5cb</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-0fe1dae02ec39bb7ba68241a67cab334" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-efe4e48d4662a9ca56aaccd5fb1de5cb
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-f06b3ffa03c7420acd779345cb0e3db7" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-efe4e48d4662a9ca56aaccd5fb1de5cb</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
Logout service started
Receiving a logout response from the IdP
XMLSTR: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-f06b3ffa03c7420acd779345cb0e3db7" IssueInstant="2014-10-15T06:03:53Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-f06b3ffa03c7420acd779345cb0e3db7" IssueInstant="2014-10-15T06:03:53Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-f06b3ffa03c7420acd779345cb0e3db7" IssueInstant="2014-10-15T06:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
<saml2.response.LogoutResponse object at 0x2c2fcd0>
state: {'id-f06b3ffa03c7420acd779345cb0e3db7': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-efe4e48d4662a9ca56aaccd5fb1de5cb'}}
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-efe4e48d4662a9ca56aaccd5fb1de5cb'}
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php
Performing django_logout with a next_page of None
..Assertion Consumer Service started
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-1ed9011800ffe58917b4ab72d2c4deda" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcee5d78327c0fc0c1337af5ade32bb8" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0a27a46c08ae195fd24023ec9b936564</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-09562ffbf3d66bc400930cc0ee6bdd24" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-1ed9011800ffe58917b4ab72d2c4deda" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcee5d78327c0fc0c1337af5ade32bb8" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0a27a46c08ae195fd24023ec9b936564</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-09562ffbf3d66bc400930cc0ee6bdd24" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-1ed9011800ffe58917b4ab72d2c4deda" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcee5d78327c0fc0c1337af5ade32bb8" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0a27a46c08ae195fd24023ec9b936564</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-09562ffbf3d66bc400930cc0ee6bdd24" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
.Sending the pre_save signal
Sending the pre_save signal
.
======================================================================
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests)
----------------------------------------------------------------------
Traceback (most recent call last):
File "/home/graingert/projects/djangosaml2/.tox/py26-dj14/lib/python2.6/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag
self.assertEqual(rendered, expected)
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; '
----------------------------------------------------------------------
Ran 15 tests in 0.216s
FAILED (failures=1)
Destroying test database for alias 'default'...
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py26-dj14/bin/python tests/run_tests.py'
py26-dj15 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip
py26-dj15 runtests: PYTHONHASHSEED='1754004049'
py26-dj15 runtests: commands[0] | python tests/run_tests.py
Creating test database for alias 'default'...
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-c3694a43a591a7f94c8f6cb2595d8b49" IssueInstant="2014-10-15T11:03:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-a0531e93d2d4e460d07e5ca325dabd2d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-5b51c514b102a4aeb572403ee6210d80" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ef8aa61186bca771ac1462de57b8d005</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-5a9bd7503dfc305779f87459afea7a4b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-a0531e93d2d4e460d07e5ca325dabd2d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-5b51c514b102a4aeb572403ee6210d80" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ef8aa61186bca771ac1462de57b8d005</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-5a9bd7503dfc305779f87459afea7a4b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-a0531e93d2d4e460d07e5ca325dabd2d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-5b51c514b102a4aeb572403ee6210d80" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ef8aa61186bca771ac1462de57b8d005</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-5a9bd7503dfc305779f87459afea7a4b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-56b6b50c00e5878183258b78c64b2448" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcc2e08b08446553a8b3e1a045a64fc3" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2017f6bf1b7314d8122fba55947b2d27</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-108c076d4257c402ecf541f43f4e5fac" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-56b6b50c00e5878183258b78c64b2448" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcc2e08b08446553a8b3e1a045a64fc3" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2017f6bf1b7314d8122fba55947b2d27</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-108c076d4257c402ecf541f43f4e5fac" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-56b6b50c00e5878183258b78c64b2448" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcc2e08b08446553a8b3e1a045a64fc3" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2017f6bf1b7314d8122fba55947b2d27</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-108c076d4257c402ecf541f43f4e5fac" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a1111111111111111111111111111111': '/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['teacher']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['teacher']}
attribute_mapping: {'uid': ('username',)}
Check if the user "teacher" exists or create otherwise
User updated
Sending the pre_save signal
Sending the post_authenticated signal
The RelayState parameter exists but is empty
Redirecting to the RelayState: /accounts/profile/
..FLogout service started
Receiving a logout request from the IdP
The session does not contain the subject id for user AnonymousUser. Performing local logout
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-161cced6a6f0d15b86f5ef4b7cc769a7" IssueInstant="2014-10-15T11:03:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-d401da883fba51c85204c13b2d13016c" IssueInstant="2014-10-15T11:03:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Login process started
A discovery process is needed
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-ac8bb570cee496fc14a5150825406701" IssueInstant="2014-10-15T11:03:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-304cae30ff9433e60fe7d009b77ac433" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-4a967970e1106a8db8fbb35000c77e4c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-700c1865377c0d9c979984590923eef8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-3e66b9f41913ffea9d522bb434cde23b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-304cae30ff9433e60fe7d009b77ac433" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-4a967970e1106a8db8fbb35000c77e4c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-700c1865377c0d9c979984590923eef8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-3e66b9f41913ffea9d522bb434cde23b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-304cae30ff9433e60fe7d009b77ac433" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-4a967970e1106a8db8fbb35000c77e4c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-700c1865377c0d9c979984590923eef8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-3e66b9f41913ffea9d522bb434cde23b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-700c1865377c0d9c979984590923eef8
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-4c45df1ba12227873dba43c49c130ba5" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-700c1865377c0d9c979984590923eef8</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6f7a3736cd98ea137b20fc37d1e4da11" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-9ef13061cc32e93681a5def90474a1a5" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-76404a4decc856930e9c03179a591523</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-b1764e53d02b82fc37e8be10cee45882" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6f7a3736cd98ea137b20fc37d1e4da11" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-9ef13061cc32e93681a5def90474a1a5" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-76404a4decc856930e9c03179a591523</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-b1764e53d02b82fc37e8be10cee45882" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6f7a3736cd98ea137b20fc37d1e4da11" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-9ef13061cc32e93681a5def90474a1a5" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-76404a4decc856930e9c03179a591523</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-b1764e53d02b82fc37e8be10cee45882" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout service started
Receiving a logout request from the IdP
<?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-76404a4decc856930e9c03179a591523</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest>
RESPONSE: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-ad208e274a60034b811bc89b7052c048" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cbad106c69b5915568811d5f85a552c0" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f88ad878462300d8527855130c03117" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-7ff7e6c1bdc58e2f6ee012d5ce63a04a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ad455ffa5da6f34900a6e296509201e6" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cbad106c69b5915568811d5f85a552c0" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f88ad878462300d8527855130c03117" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-7ff7e6c1bdc58e2f6ee012d5ce63a04a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ad455ffa5da6f34900a6e296509201e6" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cbad106c69b5915568811d5f85a552c0" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f88ad878462300d8527855130c03117" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-7ff7e6c1bdc58e2f6ee012d5ce63a04a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ad455ffa5da6f34900a6e296509201e6" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-7ff7e6c1bdc58e2f6ee012d5ce63a04a
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-ef0c7202f09ef160ffb50ce65d0ac7b9" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-7ff7e6c1bdc58e2f6ee012d5ce63a04a</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
Logout service started
Receiving a logout response from the IdP
XMLSTR: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-ef0c7202f09ef160ffb50ce65d0ac7b9" IssueInstant="2014-10-15T06:03:54Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-ef0c7202f09ef160ffb50ce65d0ac7b9" IssueInstant="2014-10-15T06:03:54Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-ef0c7202f09ef160ffb50ce65d0ac7b9" IssueInstant="2014-10-15T06:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
<saml2.response.LogoutResponse object at 0x2143c10>
state: {'id-ef0c7202f09ef160ffb50ce65d0ac7b9': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-7ff7e6c1bdc58e2f6ee012d5ce63a04a'}}
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-7ff7e6c1bdc58e2f6ee012d5ce63a04a'}
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php
Performing django_logout with a next_page of None
..Assertion Consumer Service started
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-8bb321bb22a0c1f26082b733106057ed" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-68a527b49fb5d9b334cd270485c3309c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-6bcad02c36df00efe8b1f23fa1e40b54</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ea9d5ad48572ed3c835414df3af74f50" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-8bb321bb22a0c1f26082b733106057ed" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-68a527b49fb5d9b334cd270485c3309c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-6bcad02c36df00efe8b1f23fa1e40b54</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ea9d5ad48572ed3c835414df3af74f50" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-8bb321bb22a0c1f26082b733106057ed" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-68a527b49fb5d9b334cd270485c3309c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-6bcad02c36df00efe8b1f23fa1e40b54</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ea9d5ad48572ed3c835414df3af74f50" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
.Sending the pre_save signal
Sending the pre_save signal
.
======================================================================
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests)
----------------------------------------------------------------------
Traceback (most recent call last):
File "/home/graingert/projects/djangosaml2/.tox/py26-dj15/lib/python2.6/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag
self.assertEqual(rendered, expected)
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; '
----------------------------------------------------------------------
Ran 15 tests in 0.222s
FAILED (failures=1)
Destroying test database for alias 'default'...
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py26-dj15/bin/python tests/run_tests.py'
py26-dj16 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip
py26-dj16 runtests: PYTHONHASHSEED='1754004049'
py26-dj16 runtests: commands[0] | python tests/run_tests.py
Creating test database for alias 'default'...
/home/graingert/projects/djangosaml2/.tox/py26-dj16/lib/python2.6/site-packages/djangosaml2/backends.py:145: DeprecationWarning: The use of AUTH_PROFILE_MODULE to define user profiles has been deprecated.
profile = user.get_profile()
Sending the pre_save signal
Sending the pre_save signal
/home/graingert/projects/djangosaml2/tests/testprofiles/tests.py:57: DeprecationWarning: The use of AUTH_PROFILE_MODULE to define user profiles has been deprecated.
self.assertEquals(user.get_profile().age, '22')
.
----------------------------------------------------------------------
Ran 1 test in 0.003s
OK
Destroying test database for alias 'default'...
py27-dj13 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip
py27-dj13 runtests: PYTHONHASHSEED='1754004049'
py27-dj13 runtests: commands[0] | python tests/run_tests.py
Creating test database for alias 'default'...
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-2ee162a4fe635137ca844c29ca33a19a" IssueInstant="2014-10-15T11:03:56Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-19e111fca6a256571c8ede38c5aa145c" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-744aab2cb1eac1d524481164fce6313a" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dccf8789a15a33834682e5034fd6b6af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-84cc650db54bc17fe03ad95d6bcd08ca" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-19e111fca6a256571c8ede38c5aa145c" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-744aab2cb1eac1d524481164fce6313a" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dccf8789a15a33834682e5034fd6b6af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-84cc650db54bc17fe03ad95d6bcd08ca" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-19e111fca6a256571c8ede38c5aa145c" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-744aab2cb1eac1d524481164fce6313a" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dccf8789a15a33834682e5034fd6b6af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-84cc650db54bc17fe03ad95d6bcd08ca" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-3c6229ec2af964e7b44e8c0afe9df1c2" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-74e2502538cf154264be9b771654775f" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-64952233750b162735acdf2bad533450</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-533505765c6ee376ccb183b497c14922" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-3c6229ec2af964e7b44e8c0afe9df1c2" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-74e2502538cf154264be9b771654775f" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-64952233750b162735acdf2bad533450</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-533505765c6ee376ccb183b497c14922" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-3c6229ec2af964e7b44e8c0afe9df1c2" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-74e2502538cf154264be9b771654775f" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-64952233750b162735acdf2bad533450</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-533505765c6ee376ccb183b497c14922" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a1111111111111111111111111111111': '/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['teacher']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['teacher']}
attribute_mapping: {'uid': ('username',)}
Check if the user "teacher" exists or create otherwise
User updated
Sending the pre_save signal
Sending the post_authenticated signal
The RelayState parameter exists but is empty
Redirecting to the RelayState: /accounts/profile/
..FLogout service started
Receiving a logout request from the IdP
The session does not contain the subject id for user AnonymousUser. Performing local logout
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-d2b118a949dad2e2880fff09dca0a05e" IssueInstant="2014-10-15T11:03:56Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-a87a28e81e70430618f7900ce5191328" IssueInstant="2014-10-15T11:03:56Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Login process started
A discovery process is needed
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-00fdb443b4bc9a4f60fb5b498e531388" IssueInstant="2014-10-15T11:03:56Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-56fcf774112f35240c7083858c0de9ff" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-67a11543838221472ddfc4b183659628" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-24f04ea4fe9346e270bc9cbf4d6307b7</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-99b1dcdcbe9bdccf0d0c6192582700d5" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-56fcf774112f35240c7083858c0de9ff" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-67a11543838221472ddfc4b183659628" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-24f04ea4fe9346e270bc9cbf4d6307b7</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-99b1dcdcbe9bdccf0d0c6192582700d5" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-56fcf774112f35240c7083858c0de9ff" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-67a11543838221472ddfc4b183659628" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-24f04ea4fe9346e270bc9cbf4d6307b7</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-99b1dcdcbe9bdccf0d0c6192582700d5" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-24f04ea4fe9346e270bc9cbf4d6307b7
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-533bba1bba8ae1c73756afc209622834" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-24f04ea4fe9346e270bc9cbf4d6307b7</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-ea5b65cc9f2e1ff9f29d3d056e763a9d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54fd8e77b6485b297114d50512f29a45" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0ca6e01607fc7aec820bc6ae6cbb1684</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-aa9685bcb1468f2ee798f0f3054a77f3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-ea5b65cc9f2e1ff9f29d3d056e763a9d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54fd8e77b6485b297114d50512f29a45" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0ca6e01607fc7aec820bc6ae6cbb1684</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-aa9685bcb1468f2ee798f0f3054a77f3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-ea5b65cc9f2e1ff9f29d3d056e763a9d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54fd8e77b6485b297114d50512f29a45" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0ca6e01607fc7aec820bc6ae6cbb1684</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-aa9685bcb1468f2ee798f0f3054a77f3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout service started
Receiving a logout request from the IdP
<?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:56Z" Version="2.0"><saml:Issuer>https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0ca6e01607fc7aec820bc6ae6cbb1684</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest>
RESPONSE: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-ccefe69d9c4662de1058dfa24f951d1c" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a284bf287668379699fe5e771905372d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54b40ac9376710d443081f22d40dc442" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-45ef3cd0dd5936d311185d0e33b942f3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-307d7894516814e62106b347ae3a0d58" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a284bf287668379699fe5e771905372d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54b40ac9376710d443081f22d40dc442" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-45ef3cd0dd5936d311185d0e33b942f3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-307d7894516814e62106b347ae3a0d58" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a284bf287668379699fe5e771905372d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54b40ac9376710d443081f22d40dc442" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-45ef3cd0dd5936d311185d0e33b942f3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-307d7894516814e62106b347ae3a0d58" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-45ef3cd0dd5936d311185d0e33b942f3
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-823d1b942fb4250b5c52b6c8690c929c" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-45ef3cd0dd5936d311185d0e33b942f3</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
Logout service started
Receiving a logout response from the IdP
XMLSTR: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-823d1b942fb4250b5c52b6c8690c929c" IssueInstant="2014-10-15T06:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-823d1b942fb4250b5c52b6c8690c929c" IssueInstant="2014-10-15T06:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-823d1b942fb4250b5c52b6c8690c929c" IssueInstant="2014-10-15T06:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
<saml2.response.LogoutResponse object at 0x7f3e55b2ff50>
state: {'id-823d1b942fb4250b5c52b6c8690c929c': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-45ef3cd0dd5936d311185d0e33b942f3'}}
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-45ef3cd0dd5936d311185d0e33b942f3'}
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php
Performing django_logout with a next_page of None
..Assertion Consumer Service started
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-eba874e83b82e3623fa1babe19bdbc67" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-164c5fa447ba71f7b84bbd444e1a3f01" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-491a812596a36424dac2ef60c7c45e20</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-431ff0088a9b522fbf4e101b1af165d0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-eba874e83b82e3623fa1babe19bdbc67" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-164c5fa447ba71f7b84bbd444e1a3f01" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-491a812596a36424dac2ef60c7c45e20</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-431ff0088a9b522fbf4e101b1af165d0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-eba874e83b82e3623fa1babe19bdbc67" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-164c5fa447ba71f7b84bbd444e1a3f01" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-491a812596a36424dac2ef60c7c45e20</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-431ff0088a9b522fbf4e101b1af165d0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
.Sending the pre_save signal
Sending the pre_save signal
.
======================================================================
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests)
----------------------------------------------------------------------
Traceback (most recent call last):
File "/home/graingert/projects/djangosaml2/.tox/py27-dj13/local/lib/python2.7/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag
self.assertEqual(rendered, expected)
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; '
----------------------------------------------------------------------
Ran 15 tests in 0.200s
FAILED (failures=1)
Destroying test database for alias 'default'...
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py27-dj13/bin/python tests/run_tests.py'
py27-dj14 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip
py27-dj14 runtests: PYTHONHASHSEED='1754004049'
py27-dj14 runtests: commands[0] | python tests/run_tests.py
Creating test database for alias 'default'...
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-c43f0873736e5b6f07c59d74f25dcc5f" IssueInstant="2014-10-15T11:03:57Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-1fd40b803740425527d10ff7ae461222" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-66b9374814efdf688e81fdcc0c40e56c" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f597ca3eca0c25650c4a05cc7a92a58f</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-7b73f67117009efcd2b53b423caeb73d" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-1fd40b803740425527d10ff7ae461222" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-66b9374814efdf688e81fdcc0c40e56c" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f597ca3eca0c25650c4a05cc7a92a58f</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-7b73f67117009efcd2b53b423caeb73d" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-1fd40b803740425527d10ff7ae461222" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-66b9374814efdf688e81fdcc0c40e56c" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f597ca3eca0c25650c4a05cc7a92a58f</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-7b73f67117009efcd2b53b423caeb73d" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a31759671600e8796de835db3589b80f" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1eb072f4ffd05c48742e46847d29c046" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-85ec66f0c6743fdac8402d56b4788aa0</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-00d7987333ef1c5872097ae475bdbb67" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a31759671600e8796de835db3589b80f" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1eb072f4ffd05c48742e46847d29c046" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-85ec66f0c6743fdac8402d56b4788aa0</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-00d7987333ef1c5872097ae475bdbb67" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a31759671600e8796de835db3589b80f" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1eb072f4ffd05c48742e46847d29c046" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-85ec66f0c6743fdac8402d56b4788aa0</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-00d7987333ef1c5872097ae475bdbb67" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a1111111111111111111111111111111': '/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['teacher']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['teacher']}
attribute_mapping: {'uid': ('username',)}
Check if the user "teacher" exists or create otherwise
User updated
Sending the pre_save signal
Sending the post_authenticated signal
The RelayState parameter exists but is empty
Redirecting to the RelayState: /accounts/profile/
..FLogout service started
Receiving a logout request from the IdP
The session does not contain the subject id for user AnonymousUser. Performing local logout
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-8b0e62f04c8a7c6b319fb85876c1a63b" IssueInstant="2014-10-15T11:03:57Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-0934fbae81bc77093b21751cde73784b" IssueInstant="2014-10-15T11:03:57Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Login process started
A discovery process is needed
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-39fdbc9553e8c4cec2102f2f8d15b04d" IssueInstant="2014-10-15T11:03:57Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e21e6d11d7f776d4f3ece67a6b2747d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e9acef53f095ae8a7e3bab14b9018ec5" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-54ba31404a276638c4ebb561ab3e0eb8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5fb717fc560e9d069924e848daabddda" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e21e6d11d7f776d4f3ece67a6b2747d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e9acef53f095ae8a7e3bab14b9018ec5" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-54ba31404a276638c4ebb561ab3e0eb8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5fb717fc560e9d069924e848daabddda" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e21e6d11d7f776d4f3ece67a6b2747d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e9acef53f095ae8a7e3bab14b9018ec5" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-54ba31404a276638c4ebb561ab3e0eb8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5fb717fc560e9d069924e848daabddda" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-54ba31404a276638c4ebb561ab3e0eb8
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-04ce4df8a6de5e4afd85b5257ddade48" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-54ba31404a276638c4ebb561ab3e0eb8</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-b6e05a85154686c8dc7260b627e6d61e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-cf595fd1e1262ab26da1205d882dde29" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-36ce4ff4b23df9fc4a75ee6f0bc4ccda</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-e840b552e7109b04020d370c19140d40" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-b6e05a85154686c8dc7260b627e6d61e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-cf595fd1e1262ab26da1205d882dde29" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-36ce4ff4b23df9fc4a75ee6f0bc4ccda</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-e840b552e7109b04020d370c19140d40" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-b6e05a85154686c8dc7260b627e6d61e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-cf595fd1e1262ab26da1205d882dde29" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-36ce4ff4b23df9fc4a75ee6f0bc4ccda</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-e840b552e7109b04020d370c19140d40" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout service started
Receiving a logout request from the IdP
<?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:57Z" Version="2.0"><saml:Issuer>https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-36ce4ff4b23df9fc4a75ee6f0bc4ccda</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest>
RESPONSE: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-e3387abfb4785d113e7ea222fe03fe08" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-765a5f422f0c13a238e3666bc86b0bad" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-c0f405494a3e88776718ec9ad698d1d8" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f57a96cbe7236bc2fad321e34a59aede</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-b5e6f31964b77d42717c6b17776056ee" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-765a5f422f0c13a238e3666bc86b0bad" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-c0f405494a3e88776718ec9ad698d1d8" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f57a96cbe7236bc2fad321e34a59aede</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-b5e6f31964b77d42717c6b17776056ee" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-765a5f422f0c13a238e3666bc86b0bad" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-c0f405494a3e88776718ec9ad698d1d8" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f57a96cbe7236bc2fad321e34a59aede</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-b5e6f31964b77d42717c6b17776056ee" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-f57a96cbe7236bc2fad321e34a59aede
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-afed419b01fd02c3ba17122e850b6446" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-f57a96cbe7236bc2fad321e34a59aede</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
Logout service started
Receiving a logout response from the IdP
XMLSTR: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-afed419b01fd02c3ba17122e850b6446" IssueInstant="2014-10-15T06:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-afed419b01fd02c3ba17122e850b6446" IssueInstant="2014-10-15T06:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-afed419b01fd02c3ba17122e850b6446" IssueInstant="2014-10-15T06:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
<saml2.response.LogoutResponse object at 0x7f215bcdbe10>
state: {'id-afed419b01fd02c3ba17122e850b6446': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-f57a96cbe7236bc2fad321e34a59aede'}}
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-f57a96cbe7236bc2fad321e34a59aede'}
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php
Performing django_logout with a next_page of None
..Assertion Consumer Service started
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-641b9817f5362188bdd37991f53332d3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f503ee49251e5c299f0deebfa208e3d" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-3b45f7b0fe4c94ff40fae36f155c9ce9</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5527dde06cc194fbefa4e7d9d99a1cf0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-641b9817f5362188bdd37991f53332d3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f503ee49251e5c299f0deebfa208e3d" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-3b45f7b0fe4c94ff40fae36f155c9ce9</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5527dde06cc194fbefa4e7d9d99a1cf0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-641b9817f5362188bdd37991f53332d3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f503ee49251e5c299f0deebfa208e3d" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-3b45f7b0fe4c94ff40fae36f155c9ce9</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5527dde06cc194fbefa4e7d9d99a1cf0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
.Sending the pre_save signal
Sending the pre_save signal
.
======================================================================
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests)
----------------------------------------------------------------------
Traceback (most recent call last):
File "/home/graingert/projects/djangosaml2/.tox/py27-dj14/local/lib/python2.7/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag
self.assertEqual(rendered, expected)
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; '
----------------------------------------------------------------------
Ran 15 tests in 0.210s
FAILED (failures=1)
Destroying test database for alias 'default'...
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py27-dj14/bin/python tests/run_tests.py'
py27-dj15 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip
py27-dj15 runtests: PYTHONHASHSEED='1754004049'
py27-dj15 runtests: commands[0] | python tests/run_tests.py
Creating test database for alias 'default'...
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-ea2383e6b419463355f03105cd61d45b" IssueInstant="2014-10-15T11:03:58Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-31af148fe59cda4f6680f919011ebf65" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f8df2e518db0d03e092b09b1974e0bd2" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5ff4015c55cf6b7386d70153d4af42c</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-bb63bff8ad17935f5dbc49a696acef9b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-31af148fe59cda4f6680f919011ebf65" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f8df2e518db0d03e092b09b1974e0bd2" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5ff4015c55cf6b7386d70153d4af42c</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-bb63bff8ad17935f5dbc49a696acef9b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-31af148fe59cda4f6680f919011ebf65" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f8df2e518db0d03e092b09b1974e0bd2" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5ff4015c55cf6b7386d70153d4af42c</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-bb63bff8ad17935f5dbc49a696acef9b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-92a49c1064ec8c4e2d53c67cbfdc230d" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-bea1a384085b9372bdf2b8790c907eaf" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-eb965da334a784723d154f326a2cc80e</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-cd01834cf663b02e88309a7465757c6a" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-92a49c1064ec8c4e2d53c67cbfdc230d" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-bea1a384085b9372bdf2b8790c907eaf" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-eb965da334a784723d154f326a2cc80e</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-cd01834cf663b02e88309a7465757c6a" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-92a49c1064ec8c4e2d53c67cbfdc230d" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-bea1a384085b9372bdf2b8790c907eaf" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-eb965da334a784723d154f326a2cc80e</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-cd01834cf663b02e88309a7465757c6a" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a1111111111111111111111111111111': '/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['teacher']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['teacher']}
attribute_mapping: {'uid': ('username',)}
Check if the user "teacher" exists or create otherwise
User updated
Sending the pre_save signal
Sending the post_authenticated signal
The RelayState parameter exists but is empty
Redirecting to the RelayState: /accounts/profile/
..FLogout service started
Receiving a logout request from the IdP
The session does not contain the subject id for user AnonymousUser. Performing local logout
.Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-fad88f52c4ff6f2ac6c6bbedb1d1258f" IssueInstant="2014-10-15T11:03:58Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-3f5f2efe36ba14a203bf09db5bad450a" IssueInstant="2014-10-15T11:03:58Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Login process started
A discovery process is needed
Login process started
spentityid: http://sp.example.com/saml2/metadata/
service_url: http://sp.example.com/saml2/acs/
my_name: Test SP
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-3c3666ec7a3880c8fe9d161ea1053ce6" IssueInstant="2014-10-15T11:03:58Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest>
Saving the session_id in the OutstandingQueries cache
Redirecting the user to the IdP
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-76028052f24795bcd3bc42b0034658f6" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ffcea776f38607607669ee15d216092a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ee05ade359e419d654b5e52d2aaa1927</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-78d28cc68238c97c351f4be8a824c7d3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-76028052f24795bcd3bc42b0034658f6" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ffcea776f38607607669ee15d216092a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ee05ade359e419d654b5e52d2aaa1927</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-78d28cc68238c97c351f4be8a824c7d3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-76028052f24795bcd3bc42b0034658f6" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ffcea776f38607607669ee15d216092a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ee05ade359e419d654b5e52d2aaa1927</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-78d28cc68238c97c351f4be8a824c7d3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-ee05ade359e419d654b5e52d2aaa1927
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-5efb5e6a6db073aa781ae6ec5de06e7f" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-ee05ade359e419d654b5e52d2aaa1927</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-da6165aa44e2443b9feb22dc03e19449" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-adc002ad86a3855225e3984ca472985a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f22d7e89c34b0dd56d0175fc9e11ccd3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-dda873709adda04da4ea2153e5278b4f" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-da6165aa44e2443b9feb22dc03e19449" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-adc002ad86a3855225e3984ca472985a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f22d7e89c34b0dd56d0175fc9e11ccd3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-dda873709adda04da4ea2153e5278b4f" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-da6165aa44e2443b9feb22dc03e19449" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-adc002ad86a3855225e3984ca472985a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f22d7e89c34b0dd56d0175fc9e11ccd3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-dda873709adda04da4ea2153e5278b4f" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout service started
Receiving a logout request from the IdP
<?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:58Z" Version="2.0"><saml:Issuer>https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f22d7e89c34b0dd56d0175fc9e11ccd3</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest>
RESPONSE: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-cc2b4e13e4ab57bbbffe96360173bdd1" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e2c6849d95d43645a614d72f35731a4" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e5d197c717680dbc9250ce6fef139e07" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-68f0ca5ad04ccea81895d2b53bc71389</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-1e6f4d2cb6f7191caf55f70c405b52c0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e2c6849d95d43645a614d72f35731a4" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e5d197c717680dbc9250ce6fef139e07" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-68f0ca5ad04ccea81895d2b53bc71389</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-1e6f4d2cb6f7191caf55f70c405b52c0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e2c6849d95d43645a614d72f35731a4" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e5d197c717680dbc9250ce6fef139e07" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-68f0ca5ad04ccea81895d2b53bc71389</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-1e6f4d2cb6f7191caf55f70c405b52c0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
Logout process started
logout request for: id-68f0ca5ad04ccea81895d2b53bc71389
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php
REQUEST: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-b1fe4ee8e92a44da24eafd0b0770d74d" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-68f0ca5ad04ccea81895d2b53bc71389</saml:NameID></samlp:LogoutRequest>
Redirecting to the IdP to continue the logout process
Logout service started
Receiving a logout response from the IdP
XMLSTR: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-b1fe4ee8e92a44da24eafd0b0770d74d" IssueInstant="2014-10-15T06:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-b1fe4ee8e92a44da24eafd0b0770d74d" IssueInstant="2014-10-15T06:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-b1fe4ee8e92a44da24eafd0b0770d74d" IssueInstant="2014-10-15T06:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
<saml2.response.LogoutResponse object at 0x7f16750c6890>
state: {'id-b1fe4ee8e92a44da24eafd0b0770d74d': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-68f0ca5ad04ccea81895d2b53bc71389'}}
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-68f0ca5ad04ccea81895d2b53bc71389'}
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php
Performing django_logout with a next_page of None
.FAssertion Consumer Service started
.Assertion Consumer Service started
xmlstr: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-8ef0799464d41c69ea1ea3421dda2b2f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f4c20e765bc116fe13e2fc446d06819a" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-598687d84ded222c7ee132051d113006</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:59Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:59Z" NotOnOrAfter="2014-10-15T11:18:59Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:59Z" SessionIndex="id-b9178767732427af14225f9c392f28c8" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
response: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-8ef0799464d41c69ea1ea3421dda2b2f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f4c20e765bc116fe13e2fc446d06819a" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-598687d84ded222c7ee132051d113006</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:59Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:59Z" NotOnOrAfter="2014-10-15T11:18:59Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:59Z" SessionIndex="id-b9178767732427af14225f9c392f28c8" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
>> <?xml version='1.0' encoding='UTF-8'?>
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-8ef0799464d41c69ea1ea3421dda2b2f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f4c20e765bc116fe13e2fc446d06819a" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-598687d84ded222c7ee132051d113006</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:59Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:59Z" NotOnOrAfter="2014-10-15T11:18:59Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:59Z" SessionIndex="id-b9178767732427af14225f9c392f28c8" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response>
status: <?xml version='1.0' encoding='UTF-8'?>
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status>
***Unencrypted response***
assertion context: AuthnReq
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant']
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'}
condition: <?xml version='1.0' encoding='UTF-8'?>
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:59Z" NotOnOrAfter="2014-10-15T11:18:59Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions>
--- Getting Identity ---
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?>
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement>
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri
--- AVA: {'uid': ['student']}
--- ADDED person info ----
Trying to authenticate the user
attributes: {'uid': ['student']}
attribute_mapping: {'uid': ('username',)}
Check if the user "student" exists or create otherwise
New user created
Sending the pre_save signal
Sending the post_authenticated signal
Redirecting to the RelayState: /another-view/
.Sending the pre_save signal
Sending the pre_save signal
.
======================================================================
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests)
----------------------------------------------------------------------
Traceback (most recent call last):
File "/home/graingert/projects/djangosaml2/.tox/py27-dj15/local/lib/python2.7/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag
self.assertEqual(rendered, expected)
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; '
======================================================================
FAIL: test_metadata (djangosaml2.tests.SAML2Tests)
----------------------------------------------------------------------
Traceback (most recent call last):
File "/home/graingert/projects/djangosaml2/.tox/py27-dj15/local/lib/python2.7/site-packages/djangosaml2/tests/__init__.py", line 446, in test_metadata
self.assertEquals(response.content, expected_metadata)
AssertionError: '<?xml version=\'1.0\' encoding=\'UTF-8\'?>\n<md:EntityDescriptor xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://sp.example.com/saml2/metadata/" validUntil="2014-10-16T11:03:59Z"><md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><md:KeyDescriptor><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDPjCCAiYCCQCkHjPQlll+mzANBgkqhkiG9w0BAQUFADBhMQswCQYDVQQGEwJF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\nID4zT0FcZASGuthM56rRJJSx\n</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://sp.example.com/saml2/ls/" /><md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://sp.example.com/saml2/acs/" index="1" /><md:AttributeConsumingService index="1"><md:ServiceName xml:lang="en">Test SP</md:ServiceName><md:RequestedAttribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true" /><md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false" /></md:AttributeConsumingService></md:SPSSODescriptor><md:Organization><md:OrganizationName xml:lang="es">Ejemplo S.A.</md:OrganizationName><md:OrganizationName xml:lang="en">Example Inc.</md:OrganizationName><md:OrganizationDisplayName xml:lang="es">Ejemplo</md:OrganizationDisplayName><md:OrganizationDisplayName xml:lang="en">Example</md:OrganizationDisplayName><md:OrganizationURL xml:lang="es">http://www.example.es</md:OrganizationURL><md:OrganizationURL xml:lang="en">http://www.example.com</md:OrganizationURL></md:Organization><md:ContactPerson contactType="technical"><md:Company>Example Inc.</md:Company><md:GivenName>Technical givenname</md:GivenName><md:SurName>Technical surname</md:SurName><md:EmailAddress>technical@sp.example.com</md:EmailAddress></md:ContactPerson><md:ContactPerson contactType="administrative"><md:Company>Example Inc.</md:Company><md:GivenName>Administrative givenname</md:GivenName><md:SurName>Administrative surname</md:SurName><md:EmailAddress>administrative@sp.example.ccom</md:EmailAddress></md:ContactPerson></md:EntityDescriptor>' != '<?xml version=\'1.0\' encoding=\'UTF-8\'?>\n<md:EntityDescriptor xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://sp.example.com/saml2/metadata/" validUntil="2014-10-16T11:03:58Z"><md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><md:KeyDescriptor><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDPjCCAiYCCQCkHjPQlll+mzANBgkqhkiG9w0BAQUFADBhMQswCQYDVQQGEwJF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\nID4zT0FcZASGuthM56rRJJSx\n</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://sp.example.com/saml2/ls/" /><md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://sp.example.com/saml2/acs/" index="1" /><md:AttributeConsumingService index="1"><md:ServiceName xml:lang="en">Test SP</md:ServiceName><md:RequestedAttribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true" /><md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false" /></md:AttributeConsumingService></md:SPSSODescriptor><md:Organization><md:OrganizationName xml:lang="es">Ejemplo S.A.</md:OrganizationName><md:OrganizationName xml:lang="en">Example Inc.</md:OrganizationName><md:OrganizationDisplayName xml:lang="es">Ejemplo</md:OrganizationDisplayName><md:OrganizationDisplayName xml:lang="en">Example</md:OrganizationDisplayName><md:OrganizationURL xml:lang="es">http://www.example.es</md:OrganizationURL><md:OrganizationURL xml:lang="en">http://www.example.com</md:OrganizationURL></md:Organization><md:ContactPerson contactType="technical"><md:Company>Example Inc.</md:Company><md:GivenName>Technical givenname</md:GivenName><md:SurName>Technical surname</md:SurName><md:EmailAddress>technical@sp.example.com</md:EmailAddress></md:ContactPerson><md:ContactPerson contactType="administrative"><md:Company>Example Inc.</md:Company><md:GivenName>Administrative givenname</md:GivenName><md:SurName>Administrative surname</md:SurName><md:EmailAddress>administrative@sp.example.ccom</md:EmailAddress></md:ContactPerson></md:EntityDescriptor>'
----------------------------------------------------------------------
Ran 15 tests in 0.208s
FAILED (failures=2)
Destroying test database for alias 'default'...
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py27-dj15/bin/python tests/run_tests.py'
py27-dj16 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip
py27-dj16 runtests: PYTHONHASHSEED='1754004049'
py27-dj16 runtests: commands[0] | python tests/run_tests.py
Creating test database for alias 'default'...
/home/graingert/projects/djangosaml2/.tox/py27-dj16/local/lib/python2.7/site-packages/djangosaml2/backends.py:145: DeprecationWarning: The use of AUTH_PROFILE_MODULE to define user profiles has been deprecated.
profile = user.get_profile()
Sending the pre_save signal
Sending the pre_save signal
/home/graingert/projects/djangosaml2/tests/testprofiles/tests.py:57: DeprecationWarning: The use of AUTH_PROFILE_MODULE to define user profiles has been deprecated.
self.assertEquals(user.get_profile().age, '22')
.
----------------------------------------------------------------------
Ran 1 test in 0.003s
OK
Destroying test database for alias 'default'...
_____________________________________________________________________ summary _____________________________________________________________________
ERROR: py26-dj13: commands failed
ERROR: py26-dj14: commands failed
ERROR: py26-dj15: commands failed
py26-dj16: commands succeeded
ERROR: py27-dj13: commands failed
ERROR: py27-dj14: commands failed
ERROR: py27-dj15: commands failed
py27-dj16: commands succeeded
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment