Created
October 15, 2014 11:08
-
-
Save graingert/8340948787eab2a5948c to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
(devpi)graingert@adhominem:~/projects/djangosaml2$ tox | |
GLOB sdist-make: /home/graingert/projects/djangosaml2/setup.py | |
py26-dj13 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip | |
py26-dj13 runtests: PYTHONHASHSEED='1754004049' | |
py26-dj13 runtests: commands[0] | python tests/run_tests.py | |
Creating test database for alias 'default'... | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-13af861fd25381dcc78695697deffc28" IssueInstant="2014-10-15T11:03:52Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-586bd0ce9a4338b8de93b9f3da583593" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-a3c5077e16d671d3ed8f7422b4f32022" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d9eff5f74718563f32efb9a4c4ceddb3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-ec6996e5c3b2df7b5b0c55d99d5ffe8e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-586bd0ce9a4338b8de93b9f3da583593" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-a3c5077e16d671d3ed8f7422b4f32022" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d9eff5f74718563f32efb9a4c4ceddb3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-ec6996e5c3b2df7b5b0c55d99d5ffe8e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-586bd0ce9a4338b8de93b9f3da583593" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-a3c5077e16d671d3ed8f7422b4f32022" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d9eff5f74718563f32efb9a4c4ceddb3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-ec6996e5c3b2df7b5b0c55d99d5ffe8e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-80a9acc85e0724723ea4b494d8c5b966" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-50f4915f83d1258790f9f8982b040673" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-c2bd18db70d4ee8b468e132965db0db6</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-11a12d10f09343d70989e213062e2556" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-80a9acc85e0724723ea4b494d8c5b966" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-50f4915f83d1258790f9f8982b040673" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-c2bd18db70d4ee8b468e132965db0db6</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-11a12d10f09343d70989e213062e2556" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-80a9acc85e0724723ea4b494d8c5b966" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-50f4915f83d1258790f9f8982b040673" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-c2bd18db70d4ee8b468e132965db0db6</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-11a12d10f09343d70989e213062e2556" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a1111111111111111111111111111111': '/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['teacher']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['teacher']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "teacher" exists or create otherwise | |
User updated | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
The RelayState parameter exists but is empty | |
Redirecting to the RelayState: /accounts/profile/ | |
..FLogout service started | |
Receiving a logout request from the IdP | |
The session does not contain the subject id for user AnonymousUser. Performing local logout | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-aae538890dabc9cfc0f57a01e5e45e21" IssueInstant="2014-10-15T11:03:52Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-74e1db9eec342f7be2dbe33fec349652" IssueInstant="2014-10-15T11:03:52Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Login process started | |
A discovery process is needed | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-0cbad3f34b2f36652af839a1e36fa980" IssueInstant="2014-10-15T11:03:52Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cf3e3e027b262541af11e84cff0e34dc" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-3ea2b16066a9cd00ad2af0d883322037" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-57fa2ab943d44e82b413176141da90de</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-0b3b886a5e81d39bcf3bb7859f1c6f19" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cf3e3e027b262541af11e84cff0e34dc" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-3ea2b16066a9cd00ad2af0d883322037" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-57fa2ab943d44e82b413176141da90de</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-0b3b886a5e81d39bcf3bb7859f1c6f19" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cf3e3e027b262541af11e84cff0e34dc" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-3ea2b16066a9cd00ad2af0d883322037" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-57fa2ab943d44e82b413176141da90de</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-0b3b886a5e81d39bcf3bb7859f1c6f19" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-57fa2ab943d44e82b413176141da90de | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-d161fde9563025dc01e1402e99f9c61b" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-57fa2ab943d44e82b413176141da90de</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6707c4fdc34db2aa29fe6bab563919ba" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-b312be1d9b25feff5b965f71fb692ac9" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d883eae72380b37e5b29d1da678c157b</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-00c730ba473f6838328de29daec599dc" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6707c4fdc34db2aa29fe6bab563919ba" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-b312be1d9b25feff5b965f71fb692ac9" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d883eae72380b37e5b29d1da678c157b</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-00c730ba473f6838328de29daec599dc" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6707c4fdc34db2aa29fe6bab563919ba" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-b312be1d9b25feff5b965f71fb692ac9" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-d883eae72380b37e5b29d1da678c157b</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-00c730ba473f6838328de29daec599dc" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout service started | |
Receiving a logout request from the IdP | |
<?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-d883eae72380b37e5b29d1da678c157b</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest> | |
RESPONSE: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-af8a2a160fcd7ff0cccca062fff9fcf7" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-aff009e7e17197dad37df225904b861f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-103204b9cd7ce51b9200509da2d130ff" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2063f94ecea9e10f9f2848897e47e001</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-bd5ef41a4212deacb9640814a58d588b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-aff009e7e17197dad37df225904b861f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-103204b9cd7ce51b9200509da2d130ff" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2063f94ecea9e10f9f2848897e47e001</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-bd5ef41a4212deacb9640814a58d588b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-aff009e7e17197dad37df225904b861f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-103204b9cd7ce51b9200509da2d130ff" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2063f94ecea9e10f9f2848897e47e001</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-bd5ef41a4212deacb9640814a58d588b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-2063f94ecea9e10f9f2848897e47e001 | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-710317f0cf4309d625384b5a408d06bf" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-2063f94ecea9e10f9f2848897e47e001</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
Logout service started | |
Receiving a logout response from the IdP | |
XMLSTR: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-710317f0cf4309d625384b5a408d06bf" IssueInstant="2014-10-15T06:03:52Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-710317f0cf4309d625384b5a408d06bf" IssueInstant="2014-10-15T06:03:52Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-710317f0cf4309d625384b5a408d06bf" IssueInstant="2014-10-15T06:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
<saml2.response.LogoutResponse object at 0x274bbd0> | |
state: {'id-710317f0cf4309d625384b5a408d06bf': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-2063f94ecea9e10f9f2848897e47e001'}} | |
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-2063f94ecea9e10f9f2848897e47e001'} | |
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php | |
Performing django_logout with a next_page of None | |
..Assertion Consumer Service started | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-fbcb523a91f3212a33dace74f99a3e0b" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ad378810e28f65851bd1fce20dda6bbb" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5c97663769d54df038110b58414cc2a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-9df1db3556d2bdff55aa4f7c8d31cb88" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-fbcb523a91f3212a33dace74f99a3e0b" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ad378810e28f65851bd1fce20dda6bbb" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5c97663769d54df038110b58414cc2a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-9df1db3556d2bdff55aa4f7c8d31cb88" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-fbcb523a91f3212a33dace74f99a3e0b" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ad378810e28f65851bd1fce20dda6bbb" IssueInstant="2014-10-15T11:03:52Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5c97663769d54df038110b58414cc2a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:52Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:52Z" SessionIndex="id-9df1db3556d2bdff55aa4f7c8d31cb88" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:52Z" NotOnOrAfter="2014-10-15T11:18:52Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
.Sending the pre_save signal | |
Sending the pre_save signal | |
. | |
====================================================================== | |
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests) | |
---------------------------------------------------------------------- | |
Traceback (most recent call last): | |
File "/home/graingert/projects/djangosaml2/.tox/py26-dj13/lib/python2.6/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag | |
self.assertEqual(rendered, expected) | |
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; ' | |
---------------------------------------------------------------------- | |
Ran 15 tests in 0.208s | |
FAILED (failures=1) | |
Destroying test database for alias 'default'... | |
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py26-dj13/bin/python tests/run_tests.py' | |
py26-dj14 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip | |
py26-dj14 runtests: PYTHONHASHSEED='1754004049' | |
py26-dj14 runtests: commands[0] | python tests/run_tests.py | |
Creating test database for alias 'default'... | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-c4dd218e7976f690dcca638c4b1911f0" IssueInstant="2014-10-15T11:03:53Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-3074e20bfeb668cb0cc97bb362622a69" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-d1e21c2b1aa5acb3c3445c2adfaf2206" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-b01afb4de792f9b3197b5b9f1548b5dc</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-377948ea0eca68d7e07aee98c8766a0e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-3074e20bfeb668cb0cc97bb362622a69" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-d1e21c2b1aa5acb3c3445c2adfaf2206" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-b01afb4de792f9b3197b5b9f1548b5dc</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-377948ea0eca68d7e07aee98c8766a0e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-3074e20bfeb668cb0cc97bb362622a69" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-d1e21c2b1aa5acb3c3445c2adfaf2206" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-b01afb4de792f9b3197b5b9f1548b5dc</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-377948ea0eca68d7e07aee98c8766a0e" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-5893ae0533c970359f881c79ba1710a8" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-920a896fe4b5f264502eee2f1f69459d" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dc0028c50cd409ee00e0cce7328c69af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-ddc36abf584dc1e1ff3fb052ba91261b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-5893ae0533c970359f881c79ba1710a8" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-920a896fe4b5f264502eee2f1f69459d" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dc0028c50cd409ee00e0cce7328c69af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-ddc36abf584dc1e1ff3fb052ba91261b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-5893ae0533c970359f881c79ba1710a8" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-920a896fe4b5f264502eee2f1f69459d" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dc0028c50cd409ee00e0cce7328c69af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-ddc36abf584dc1e1ff3fb052ba91261b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a1111111111111111111111111111111': '/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['teacher']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['teacher']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "teacher" exists or create otherwise | |
User updated | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
The RelayState parameter exists but is empty | |
Redirecting to the RelayState: /accounts/profile/ | |
..FLogout service started | |
Receiving a logout request from the IdP | |
The session does not contain the subject id for user AnonymousUser. Performing local logout | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-c52237be5c139156fb4a5e0a7275a20d" IssueInstant="2014-10-15T11:03:53Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-4d486a97e597b3062c58cb16d4732e0a" IssueInstant="2014-10-15T11:03:53Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Login process started | |
A discovery process is needed | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-b3999c4bd9e7f02738747d5c7a2e82ff" IssueInstant="2014-10-15T11:03:53Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-0fc63e966f860faa00622d0b99bd877e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7dfd03ce82b55a5c56be9502037d8b4b" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-61408540d281e025807a051a9d3997e3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-8fe729f3d0a21587060f7d20a5c0a756" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-0fc63e966f860faa00622d0b99bd877e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7dfd03ce82b55a5c56be9502037d8b4b" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-61408540d281e025807a051a9d3997e3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-8fe729f3d0a21587060f7d20a5c0a756" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-0fc63e966f860faa00622d0b99bd877e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7dfd03ce82b55a5c56be9502037d8b4b" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-61408540d281e025807a051a9d3997e3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-8fe729f3d0a21587060f7d20a5c0a756" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-61408540d281e025807a051a9d3997e3 | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-4b4ca30ec58c38db2b378500a6cfe94d" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-61408540d281e025807a051a9d3997e3</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-d03f3126f1c60cadb84b159a39761945" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dbcd228e80c8e8edbca27ec9a8b58411" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-28ebd7edf4601896b059225a7c379270</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-dd5f4428b67ac73cd649c4c3f3c58619" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-d03f3126f1c60cadb84b159a39761945" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dbcd228e80c8e8edbca27ec9a8b58411" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-28ebd7edf4601896b059225a7c379270</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-dd5f4428b67ac73cd649c4c3f3c58619" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-d03f3126f1c60cadb84b159a39761945" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dbcd228e80c8e8edbca27ec9a8b58411" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-28ebd7edf4601896b059225a7c379270</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-dd5f4428b67ac73cd649c4c3f3c58619" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout service started | |
Receiving a logout request from the IdP | |
<?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-28ebd7edf4601896b059225a7c379270</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest> | |
RESPONSE: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-f5cd95985e2c3002e6df9261062aaeb5" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-12667e22c3269e6660bcc0feef109cc3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1181f4de98a224fef20da41158ee4750" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-efe4e48d4662a9ca56aaccd5fb1de5cb</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-0fe1dae02ec39bb7ba68241a67cab334" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-12667e22c3269e6660bcc0feef109cc3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1181f4de98a224fef20da41158ee4750" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-efe4e48d4662a9ca56aaccd5fb1de5cb</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-0fe1dae02ec39bb7ba68241a67cab334" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-12667e22c3269e6660bcc0feef109cc3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1181f4de98a224fef20da41158ee4750" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-efe4e48d4662a9ca56aaccd5fb1de5cb</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-0fe1dae02ec39bb7ba68241a67cab334" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-efe4e48d4662a9ca56aaccd5fb1de5cb | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-f06b3ffa03c7420acd779345cb0e3db7" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-efe4e48d4662a9ca56aaccd5fb1de5cb</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
Logout service started | |
Receiving a logout response from the IdP | |
XMLSTR: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-f06b3ffa03c7420acd779345cb0e3db7" IssueInstant="2014-10-15T06:03:53Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-f06b3ffa03c7420acd779345cb0e3db7" IssueInstant="2014-10-15T06:03:53Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-f06b3ffa03c7420acd779345cb0e3db7" IssueInstant="2014-10-15T06:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
<saml2.response.LogoutResponse object at 0x2c2fcd0> | |
state: {'id-f06b3ffa03c7420acd779345cb0e3db7': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-efe4e48d4662a9ca56aaccd5fb1de5cb'}} | |
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-efe4e48d4662a9ca56aaccd5fb1de5cb'} | |
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php | |
Performing django_logout with a next_page of None | |
..Assertion Consumer Service started | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-1ed9011800ffe58917b4ab72d2c4deda" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcee5d78327c0fc0c1337af5ade32bb8" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0a27a46c08ae195fd24023ec9b936564</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-09562ffbf3d66bc400930cc0ee6bdd24" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-1ed9011800ffe58917b4ab72d2c4deda" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcee5d78327c0fc0c1337af5ade32bb8" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0a27a46c08ae195fd24023ec9b936564</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-09562ffbf3d66bc400930cc0ee6bdd24" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-1ed9011800ffe58917b4ab72d2c4deda" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcee5d78327c0fc0c1337af5ade32bb8" IssueInstant="2014-10-15T11:03:53Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0a27a46c08ae195fd24023ec9b936564</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:53Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:53Z" SessionIndex="id-09562ffbf3d66bc400930cc0ee6bdd24" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:53Z" NotOnOrAfter="2014-10-15T11:18:53Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
.Sending the pre_save signal | |
Sending the pre_save signal | |
. | |
====================================================================== | |
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests) | |
---------------------------------------------------------------------- | |
Traceback (most recent call last): | |
File "/home/graingert/projects/djangosaml2/.tox/py26-dj14/lib/python2.6/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag | |
self.assertEqual(rendered, expected) | |
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; ' | |
---------------------------------------------------------------------- | |
Ran 15 tests in 0.216s | |
FAILED (failures=1) | |
Destroying test database for alias 'default'... | |
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py26-dj14/bin/python tests/run_tests.py' | |
py26-dj15 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip | |
py26-dj15 runtests: PYTHONHASHSEED='1754004049' | |
py26-dj15 runtests: commands[0] | python tests/run_tests.py | |
Creating test database for alias 'default'... | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-c3694a43a591a7f94c8f6cb2595d8b49" IssueInstant="2014-10-15T11:03:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-a0531e93d2d4e460d07e5ca325dabd2d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-5b51c514b102a4aeb572403ee6210d80" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ef8aa61186bca771ac1462de57b8d005</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-5a9bd7503dfc305779f87459afea7a4b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-a0531e93d2d4e460d07e5ca325dabd2d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-5b51c514b102a4aeb572403ee6210d80" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ef8aa61186bca771ac1462de57b8d005</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-5a9bd7503dfc305779f87459afea7a4b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-a0531e93d2d4e460d07e5ca325dabd2d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-5b51c514b102a4aeb572403ee6210d80" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ef8aa61186bca771ac1462de57b8d005</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-5a9bd7503dfc305779f87459afea7a4b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-56b6b50c00e5878183258b78c64b2448" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcc2e08b08446553a8b3e1a045a64fc3" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2017f6bf1b7314d8122fba55947b2d27</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-108c076d4257c402ecf541f43f4e5fac" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-56b6b50c00e5878183258b78c64b2448" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcc2e08b08446553a8b3e1a045a64fc3" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2017f6bf1b7314d8122fba55947b2d27</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-108c076d4257c402ecf541f43f4e5fac" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-56b6b50c00e5878183258b78c64b2448" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-dcc2e08b08446553a8b3e1a045a64fc3" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-2017f6bf1b7314d8122fba55947b2d27</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-108c076d4257c402ecf541f43f4e5fac" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a1111111111111111111111111111111': '/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['teacher']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['teacher']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "teacher" exists or create otherwise | |
User updated | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
The RelayState parameter exists but is empty | |
Redirecting to the RelayState: /accounts/profile/ | |
..FLogout service started | |
Receiving a logout request from the IdP | |
The session does not contain the subject id for user AnonymousUser. Performing local logout | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-161cced6a6f0d15b86f5ef4b7cc769a7" IssueInstant="2014-10-15T11:03:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-d401da883fba51c85204c13b2d13016c" IssueInstant="2014-10-15T11:03:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Login process started | |
A discovery process is needed | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-ac8bb570cee496fc14a5150825406701" IssueInstant="2014-10-15T11:03:54Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-304cae30ff9433e60fe7d009b77ac433" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-4a967970e1106a8db8fbb35000c77e4c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-700c1865377c0d9c979984590923eef8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-3e66b9f41913ffea9d522bb434cde23b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-304cae30ff9433e60fe7d009b77ac433" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-4a967970e1106a8db8fbb35000c77e4c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-700c1865377c0d9c979984590923eef8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-3e66b9f41913ffea9d522bb434cde23b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-304cae30ff9433e60fe7d009b77ac433" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-4a967970e1106a8db8fbb35000c77e4c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-700c1865377c0d9c979984590923eef8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-3e66b9f41913ffea9d522bb434cde23b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-700c1865377c0d9c979984590923eef8 | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-4c45df1ba12227873dba43c49c130ba5" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-700c1865377c0d9c979984590923eef8</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6f7a3736cd98ea137b20fc37d1e4da11" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-9ef13061cc32e93681a5def90474a1a5" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-76404a4decc856930e9c03179a591523</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-b1764e53d02b82fc37e8be10cee45882" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6f7a3736cd98ea137b20fc37d1e4da11" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-9ef13061cc32e93681a5def90474a1a5" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-76404a4decc856930e9c03179a591523</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-b1764e53d02b82fc37e8be10cee45882" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-6f7a3736cd98ea137b20fc37d1e4da11" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-9ef13061cc32e93681a5def90474a1a5" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-76404a4decc856930e9c03179a591523</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-b1764e53d02b82fc37e8be10cee45882" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout service started | |
Receiving a logout request from the IdP | |
<?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-76404a4decc856930e9c03179a591523</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest> | |
RESPONSE: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-ad208e274a60034b811bc89b7052c048" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cbad106c69b5915568811d5f85a552c0" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f88ad878462300d8527855130c03117" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-7ff7e6c1bdc58e2f6ee012d5ce63a04a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ad455ffa5da6f34900a6e296509201e6" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cbad106c69b5915568811d5f85a552c0" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f88ad878462300d8527855130c03117" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-7ff7e6c1bdc58e2f6ee012d5ce63a04a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ad455ffa5da6f34900a6e296509201e6" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-cbad106c69b5915568811d5f85a552c0" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f88ad878462300d8527855130c03117" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-7ff7e6c1bdc58e2f6ee012d5ce63a04a</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ad455ffa5da6f34900a6e296509201e6" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-7ff7e6c1bdc58e2f6ee012d5ce63a04a | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-ef0c7202f09ef160ffb50ce65d0ac7b9" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">id-7ff7e6c1bdc58e2f6ee012d5ce63a04a</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
Logout service started | |
Receiving a logout response from the IdP | |
XMLSTR: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-ef0c7202f09ef160ffb50ce65d0ac7b9" IssueInstant="2014-10-15T06:03:54Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-ef0c7202f09ef160ffb50ce65d0ac7b9" IssueInstant="2014-10-15T06:03:54Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-ef0c7202f09ef160ffb50ce65d0ac7b9" IssueInstant="2014-10-15T06:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
<saml2.response.LogoutResponse object at 0x2143c10> | |
state: {'id-ef0c7202f09ef160ffb50ce65d0ac7b9': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-7ff7e6c1bdc58e2f6ee012d5ce63a04a'}} | |
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-7ff7e6c1bdc58e2f6ee012d5ce63a04a'} | |
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php | |
Performing django_logout with a next_page of None | |
..Assertion Consumer Service started | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-8bb321bb22a0c1f26082b733106057ed" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-68a527b49fb5d9b334cd270485c3309c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-6bcad02c36df00efe8b1f23fa1e40b54</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ea9d5ad48572ed3c835414df3af74f50" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-8bb321bb22a0c1f26082b733106057ed" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-68a527b49fb5d9b334cd270485c3309c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-6bcad02c36df00efe8b1f23fa1e40b54</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ea9d5ad48572ed3c835414df3af74f50" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response Destination="http://sp.example.com/saml2/acs/" ID="id-8bb321bb22a0c1f26082b733106057ed" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-68a527b49fb5d9b334cd270485c3309c" IssueInstant="2014-10-15T11:03:54Z" Version="2.0" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-6bcad02c36df00efe8b1f23fa1e40b54</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:54Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:54Z" SessionIndex="id-ea9d5ad48572ed3c835414df3af74f50" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns2:type="xs:string" xmlns:ns2="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions NotBefore="2014-10-15T11:03:54Z" NotOnOrAfter="2014-10-15T11:18:54Z" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue ns1:type="xs:string" xmlns:ns1="http://www.w3.org/2001/XMLSchema-instance">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
.Sending the pre_save signal | |
Sending the pre_save signal | |
. | |
====================================================================== | |
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests) | |
---------------------------------------------------------------------- | |
Traceback (most recent call last): | |
File "/home/graingert/projects/djangosaml2/.tox/py26-dj15/lib/python2.6/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag | |
self.assertEqual(rendered, expected) | |
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; ' | |
---------------------------------------------------------------------- | |
Ran 15 tests in 0.222s | |
FAILED (failures=1) | |
Destroying test database for alias 'default'... | |
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py26-dj15/bin/python tests/run_tests.py' | |
py26-dj16 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip | |
py26-dj16 runtests: PYTHONHASHSEED='1754004049' | |
py26-dj16 runtests: commands[0] | python tests/run_tests.py | |
Creating test database for alias 'default'... | |
/home/graingert/projects/djangosaml2/.tox/py26-dj16/lib/python2.6/site-packages/djangosaml2/backends.py:145: DeprecationWarning: The use of AUTH_PROFILE_MODULE to define user profiles has been deprecated. | |
profile = user.get_profile() | |
Sending the pre_save signal | |
Sending the pre_save signal | |
/home/graingert/projects/djangosaml2/tests/testprofiles/tests.py:57: DeprecationWarning: The use of AUTH_PROFILE_MODULE to define user profiles has been deprecated. | |
self.assertEquals(user.get_profile().age, '22') | |
. | |
---------------------------------------------------------------------- | |
Ran 1 test in 0.003s | |
OK | |
Destroying test database for alias 'default'... | |
py27-dj13 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip | |
py27-dj13 runtests: PYTHONHASHSEED='1754004049' | |
py27-dj13 runtests: commands[0] | python tests/run_tests.py | |
Creating test database for alias 'default'... | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-2ee162a4fe635137ca844c29ca33a19a" IssueInstant="2014-10-15T11:03:56Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-19e111fca6a256571c8ede38c5aa145c" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-744aab2cb1eac1d524481164fce6313a" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dccf8789a15a33834682e5034fd6b6af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-84cc650db54bc17fe03ad95d6bcd08ca" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-19e111fca6a256571c8ede38c5aa145c" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-744aab2cb1eac1d524481164fce6313a" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dccf8789a15a33834682e5034fd6b6af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-84cc650db54bc17fe03ad95d6bcd08ca" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-19e111fca6a256571c8ede38c5aa145c" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-744aab2cb1eac1d524481164fce6313a" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-dccf8789a15a33834682e5034fd6b6af</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-84cc650db54bc17fe03ad95d6bcd08ca" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-3c6229ec2af964e7b44e8c0afe9df1c2" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-74e2502538cf154264be9b771654775f" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-64952233750b162735acdf2bad533450</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-533505765c6ee376ccb183b497c14922" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-3c6229ec2af964e7b44e8c0afe9df1c2" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-74e2502538cf154264be9b771654775f" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-64952233750b162735acdf2bad533450</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-533505765c6ee376ccb183b497c14922" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-3c6229ec2af964e7b44e8c0afe9df1c2" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-74e2502538cf154264be9b771654775f" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-64952233750b162735acdf2bad533450</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-533505765c6ee376ccb183b497c14922" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a1111111111111111111111111111111': '/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['teacher']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['teacher']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "teacher" exists or create otherwise | |
User updated | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
The RelayState parameter exists but is empty | |
Redirecting to the RelayState: /accounts/profile/ | |
..FLogout service started | |
Receiving a logout request from the IdP | |
The session does not contain the subject id for user AnonymousUser. Performing local logout | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-d2b118a949dad2e2880fff09dca0a05e" IssueInstant="2014-10-15T11:03:56Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-a87a28e81e70430618f7900ce5191328" IssueInstant="2014-10-15T11:03:56Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Login process started | |
A discovery process is needed | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-00fdb443b4bc9a4f60fb5b498e531388" IssueInstant="2014-10-15T11:03:56Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-56fcf774112f35240c7083858c0de9ff" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-67a11543838221472ddfc4b183659628" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-24f04ea4fe9346e270bc9cbf4d6307b7</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-99b1dcdcbe9bdccf0d0c6192582700d5" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-56fcf774112f35240c7083858c0de9ff" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-67a11543838221472ddfc4b183659628" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-24f04ea4fe9346e270bc9cbf4d6307b7</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-99b1dcdcbe9bdccf0d0c6192582700d5" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-56fcf774112f35240c7083858c0de9ff" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-67a11543838221472ddfc4b183659628" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-24f04ea4fe9346e270bc9cbf4d6307b7</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-99b1dcdcbe9bdccf0d0c6192582700d5" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-24f04ea4fe9346e270bc9cbf4d6307b7 | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-533bba1bba8ae1c73756afc209622834" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-24f04ea4fe9346e270bc9cbf4d6307b7</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-ea5b65cc9f2e1ff9f29d3d056e763a9d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54fd8e77b6485b297114d50512f29a45" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0ca6e01607fc7aec820bc6ae6cbb1684</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-aa9685bcb1468f2ee798f0f3054a77f3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-ea5b65cc9f2e1ff9f29d3d056e763a9d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54fd8e77b6485b297114d50512f29a45" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0ca6e01607fc7aec820bc6ae6cbb1684</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-aa9685bcb1468f2ee798f0f3054a77f3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-ea5b65cc9f2e1ff9f29d3d056e763a9d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54fd8e77b6485b297114d50512f29a45" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0ca6e01607fc7aec820bc6ae6cbb1684</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-aa9685bcb1468f2ee798f0f3054a77f3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout service started | |
Receiving a logout request from the IdP | |
<?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:56Z" Version="2.0"><saml:Issuer>https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-0ca6e01607fc7aec820bc6ae6cbb1684</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest> | |
RESPONSE: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-ccefe69d9c4662de1058dfa24f951d1c" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a284bf287668379699fe5e771905372d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54b40ac9376710d443081f22d40dc442" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-45ef3cd0dd5936d311185d0e33b942f3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-307d7894516814e62106b347ae3a0d58" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a284bf287668379699fe5e771905372d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54b40ac9376710d443081f22d40dc442" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-45ef3cd0dd5936d311185d0e33b942f3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-307d7894516814e62106b347ae3a0d58" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a284bf287668379699fe5e771905372d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-54b40ac9376710d443081f22d40dc442" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-45ef3cd0dd5936d311185d0e33b942f3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-307d7894516814e62106b347ae3a0d58" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-45ef3cd0dd5936d311185d0e33b942f3 | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-823d1b942fb4250b5c52b6c8690c929c" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-45ef3cd0dd5936d311185d0e33b942f3</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
Logout service started | |
Receiving a logout response from the IdP | |
XMLSTR: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-823d1b942fb4250b5c52b6c8690c929c" IssueInstant="2014-10-15T06:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-823d1b942fb4250b5c52b6c8690c929c" IssueInstant="2014-10-15T06:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-823d1b942fb4250b5c52b6c8690c929c" IssueInstant="2014-10-15T06:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
<saml2.response.LogoutResponse object at 0x7f3e55b2ff50> | |
state: {'id-823d1b942fb4250b5c52b6c8690c929c': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-45ef3cd0dd5936d311185d0e33b942f3'}} | |
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-45ef3cd0dd5936d311185d0e33b942f3'} | |
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php | |
Performing django_logout with a next_page of None | |
..Assertion Consumer Service started | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-eba874e83b82e3623fa1babe19bdbc67" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-164c5fa447ba71f7b84bbd444e1a3f01" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-491a812596a36424dac2ef60c7c45e20</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-431ff0088a9b522fbf4e101b1af165d0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-eba874e83b82e3623fa1babe19bdbc67" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-164c5fa447ba71f7b84bbd444e1a3f01" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-491a812596a36424dac2ef60c7c45e20</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-431ff0088a9b522fbf4e101b1af165d0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-eba874e83b82e3623fa1babe19bdbc67" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-164c5fa447ba71f7b84bbd444e1a3f01" IssueInstant="2014-10-15T11:03:56Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-491a812596a36424dac2ef60c7c45e20</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:56Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:56Z" SessionIndex="id-431ff0088a9b522fbf4e101b1af165d0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:56Z" NotOnOrAfter="2014-10-15T11:18:56Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
.Sending the pre_save signal | |
Sending the pre_save signal | |
. | |
====================================================================== | |
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests) | |
---------------------------------------------------------------------- | |
Traceback (most recent call last): | |
File "/home/graingert/projects/djangosaml2/.tox/py27-dj13/local/lib/python2.7/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag | |
self.assertEqual(rendered, expected) | |
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; ' | |
---------------------------------------------------------------------- | |
Ran 15 tests in 0.200s | |
FAILED (failures=1) | |
Destroying test database for alias 'default'... | |
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py27-dj13/bin/python tests/run_tests.py' | |
py27-dj14 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip | |
py27-dj14 runtests: PYTHONHASHSEED='1754004049' | |
py27-dj14 runtests: commands[0] | python tests/run_tests.py | |
Creating test database for alias 'default'... | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-c43f0873736e5b6f07c59d74f25dcc5f" IssueInstant="2014-10-15T11:03:57Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-1fd40b803740425527d10ff7ae461222" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-66b9374814efdf688e81fdcc0c40e56c" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f597ca3eca0c25650c4a05cc7a92a58f</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-7b73f67117009efcd2b53b423caeb73d" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-1fd40b803740425527d10ff7ae461222" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-66b9374814efdf688e81fdcc0c40e56c" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f597ca3eca0c25650c4a05cc7a92a58f</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-7b73f67117009efcd2b53b423caeb73d" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-1fd40b803740425527d10ff7ae461222" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-66b9374814efdf688e81fdcc0c40e56c" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f597ca3eca0c25650c4a05cc7a92a58f</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-7b73f67117009efcd2b53b423caeb73d" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a31759671600e8796de835db3589b80f" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1eb072f4ffd05c48742e46847d29c046" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-85ec66f0c6743fdac8402d56b4788aa0</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-00d7987333ef1c5872097ae475bdbb67" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a31759671600e8796de835db3589b80f" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1eb072f4ffd05c48742e46847d29c046" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-85ec66f0c6743fdac8402d56b4788aa0</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-00d7987333ef1c5872097ae475bdbb67" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-a31759671600e8796de835db3589b80f" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-1eb072f4ffd05c48742e46847d29c046" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-85ec66f0c6743fdac8402d56b4788aa0</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-00d7987333ef1c5872097ae475bdbb67" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a1111111111111111111111111111111': '/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['teacher']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['teacher']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "teacher" exists or create otherwise | |
User updated | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
The RelayState parameter exists but is empty | |
Redirecting to the RelayState: /accounts/profile/ | |
..FLogout service started | |
Receiving a logout request from the IdP | |
The session does not contain the subject id for user AnonymousUser. Performing local logout | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-8b0e62f04c8a7c6b319fb85876c1a63b" IssueInstant="2014-10-15T11:03:57Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-0934fbae81bc77093b21751cde73784b" IssueInstant="2014-10-15T11:03:57Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Login process started | |
A discovery process is needed | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-39fdbc9553e8c4cec2102f2f8d15b04d" IssueInstant="2014-10-15T11:03:57Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e21e6d11d7f776d4f3ece67a6b2747d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e9acef53f095ae8a7e3bab14b9018ec5" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-54ba31404a276638c4ebb561ab3e0eb8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5fb717fc560e9d069924e848daabddda" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e21e6d11d7f776d4f3ece67a6b2747d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e9acef53f095ae8a7e3bab14b9018ec5" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-54ba31404a276638c4ebb561ab3e0eb8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5fb717fc560e9d069924e848daabddda" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e21e6d11d7f776d4f3ece67a6b2747d" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e9acef53f095ae8a7e3bab14b9018ec5" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-54ba31404a276638c4ebb561ab3e0eb8</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5fb717fc560e9d069924e848daabddda" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-54ba31404a276638c4ebb561ab3e0eb8 | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-04ce4df8a6de5e4afd85b5257ddade48" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-54ba31404a276638c4ebb561ab3e0eb8</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-b6e05a85154686c8dc7260b627e6d61e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-cf595fd1e1262ab26da1205d882dde29" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-36ce4ff4b23df9fc4a75ee6f0bc4ccda</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-e840b552e7109b04020d370c19140d40" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-b6e05a85154686c8dc7260b627e6d61e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-cf595fd1e1262ab26da1205d882dde29" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-36ce4ff4b23df9fc4a75ee6f0bc4ccda</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-e840b552e7109b04020d370c19140d40" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-b6e05a85154686c8dc7260b627e6d61e" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-cf595fd1e1262ab26da1205d882dde29" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-36ce4ff4b23df9fc4a75ee6f0bc4ccda</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-e840b552e7109b04020d370c19140d40" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout service started | |
Receiving a logout request from the IdP | |
<?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:57Z" Version="2.0"><saml:Issuer>https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-36ce4ff4b23df9fc4a75ee6f0bc4ccda</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest> | |
RESPONSE: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-e3387abfb4785d113e7ea222fe03fe08" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-765a5f422f0c13a238e3666bc86b0bad" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-c0f405494a3e88776718ec9ad698d1d8" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f57a96cbe7236bc2fad321e34a59aede</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-b5e6f31964b77d42717c6b17776056ee" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-765a5f422f0c13a238e3666bc86b0bad" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-c0f405494a3e88776718ec9ad698d1d8" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f57a96cbe7236bc2fad321e34a59aede</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-b5e6f31964b77d42717c6b17776056ee" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-765a5f422f0c13a238e3666bc86b0bad" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-c0f405494a3e88776718ec9ad698d1d8" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f57a96cbe7236bc2fad321e34a59aede</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-b5e6f31964b77d42717c6b17776056ee" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-f57a96cbe7236bc2fad321e34a59aede | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-afed419b01fd02c3ba17122e850b6446" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-f57a96cbe7236bc2fad321e34a59aede</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
Logout service started | |
Receiving a logout response from the IdP | |
XMLSTR: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-afed419b01fd02c3ba17122e850b6446" IssueInstant="2014-10-15T06:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-afed419b01fd02c3ba17122e850b6446" IssueInstant="2014-10-15T06:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-afed419b01fd02c3ba17122e850b6446" IssueInstant="2014-10-15T06:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
<saml2.response.LogoutResponse object at 0x7f215bcdbe10> | |
state: {'id-afed419b01fd02c3ba17122e850b6446': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-f57a96cbe7236bc2fad321e34a59aede'}} | |
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-f57a96cbe7236bc2fad321e34a59aede'} | |
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php | |
Performing django_logout with a next_page of None | |
..Assertion Consumer Service started | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-641b9817f5362188bdd37991f53332d3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f503ee49251e5c299f0deebfa208e3d" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-3b45f7b0fe4c94ff40fae36f155c9ce9</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5527dde06cc194fbefa4e7d9d99a1cf0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-641b9817f5362188bdd37991f53332d3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f503ee49251e5c299f0deebfa208e3d" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-3b45f7b0fe4c94ff40fae36f155c9ce9</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5527dde06cc194fbefa4e7d9d99a1cf0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-641b9817f5362188bdd37991f53332d3" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-7f503ee49251e5c299f0deebfa208e3d" IssueInstant="2014-10-15T11:03:57Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-3b45f7b0fe4c94ff40fae36f155c9ce9</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:57Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:57Z" SessionIndex="id-5527dde06cc194fbefa4e7d9d99a1cf0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:57Z" NotOnOrAfter="2014-10-15T11:18:57Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
.Sending the pre_save signal | |
Sending the pre_save signal | |
. | |
====================================================================== | |
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests) | |
---------------------------------------------------------------------- | |
Traceback (most recent call last): | |
File "/home/graingert/projects/djangosaml2/.tox/py27-dj14/local/lib/python2.7/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag | |
self.assertEqual(rendered, expected) | |
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; ' | |
---------------------------------------------------------------------- | |
Ran 15 tests in 0.210s | |
FAILED (failures=1) | |
Destroying test database for alias 'default'... | |
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py27-dj14/bin/python tests/run_tests.py' | |
py27-dj15 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip | |
py27-dj15 runtests: PYTHONHASHSEED='1754004049' | |
py27-dj15 runtests: commands[0] | python tests/run_tests.py | |
Creating test database for alias 'default'... | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-ea2383e6b419463355f03105cd61d45b" IssueInstant="2014-10-15T11:03:58Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-31af148fe59cda4f6680f919011ebf65" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f8df2e518db0d03e092b09b1974e0bd2" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5ff4015c55cf6b7386d70153d4af42c</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-bb63bff8ad17935f5dbc49a696acef9b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-31af148fe59cda4f6680f919011ebf65" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f8df2e518db0d03e092b09b1974e0bd2" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5ff4015c55cf6b7386d70153d4af42c</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-bb63bff8ad17935f5dbc49a696acef9b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-31af148fe59cda4f6680f919011ebf65" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f8df2e518db0d03e092b09b1974e0bd2" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-a5ff4015c55cf6b7386d70153d4af42c</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-bb63bff8ad17935f5dbc49a696acef9b" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-92a49c1064ec8c4e2d53c67cbfdc230d" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-bea1a384085b9372bdf2b8790c907eaf" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-eb965da334a784723d154f326a2cc80e</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-cd01834cf663b02e88309a7465757c6a" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-92a49c1064ec8c4e2d53c67cbfdc230d" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-bea1a384085b9372bdf2b8790c907eaf" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-eb965da334a784723d154f326a2cc80e</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-cd01834cf663b02e88309a7465757c6a" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-92a49c1064ec8c4e2d53c67cbfdc230d" InResponseTo="a1111111111111111111111111111111" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-bea1a384085b9372bdf2b8790c907eaf" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-eb965da334a784723d154f326a2cc80e</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a1111111111111111111111111111111" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-cd01834cf663b02e88309a7465757c6a" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a1111111111111111111111111111111': '/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">teacher</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['teacher']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['teacher']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "teacher" exists or create otherwise | |
User updated | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
The RelayState parameter exists but is empty | |
Redirecting to the RelayState: /accounts/profile/ | |
..FLogout service started | |
Receiving a logout request from the IdP | |
The session does not contain the subject id for user AnonymousUser. Performing local logout | |
.Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-fad88f52c4ff6f2ac6c6bbedb1d1258f" IssueInstant="2014-10-15T11:03:58Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-3f5f2efe36ba14a203bf09db5bad450a" IssueInstant="2014-10-15T11:03:58Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Login process started | |
A discovery process is needed | |
Login process started | |
spentityid: http://sp.example.com/saml2/metadata/ | |
service_url: http://sp.example.com/saml2/acs/ | |
my_name: Test SP | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:AuthnRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" AssertionConsumerServiceURL="http://sp.example.com/saml2/acs/" Destination="https://idp2.example.com/simplesaml/saml2/idp/SSOService.php" ID="id-3c3666ec7a3880c8fe9d161ea1053ce6" IssueInstant="2014-10-15T11:03:58Z" ProtocolBinding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" ProviderName="Test SP" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:NameIDPolicy AllowCreate="true" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" /></samlp:AuthnRequest> | |
Saving the session_id in the OutstandingQueries cache | |
Redirecting the user to the IdP | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-76028052f24795bcd3bc42b0034658f6" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ffcea776f38607607669ee15d216092a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ee05ade359e419d654b5e52d2aaa1927</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-78d28cc68238c97c351f4be8a824c7d3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-76028052f24795bcd3bc42b0034658f6" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ffcea776f38607607669ee15d216092a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ee05ade359e419d654b5e52d2aaa1927</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-78d28cc68238c97c351f4be8a824c7d3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-76028052f24795bcd3bc42b0034658f6" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-ffcea776f38607607669ee15d216092a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-ee05ade359e419d654b5e52d2aaa1927</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-78d28cc68238c97c351f4be8a824c7d3" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-ee05ade359e419d654b5e52d2aaa1927 | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-5efb5e6a6db073aa781ae6ec5de06e7f" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-ee05ade359e419d654b5e52d2aaa1927</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-da6165aa44e2443b9feb22dc03e19449" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-adc002ad86a3855225e3984ca472985a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f22d7e89c34b0dd56d0175fc9e11ccd3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-dda873709adda04da4ea2153e5278b4f" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-da6165aa44e2443b9feb22dc03e19449" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-adc002ad86a3855225e3984ca472985a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f22d7e89c34b0dd56d0175fc9e11ccd3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-dda873709adda04da4ea2153e5278b4f" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-da6165aa44e2443b9feb22dc03e19449" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-adc002ad86a3855225e3984ca472985a" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f22d7e89c34b0dd56d0175fc9e11ccd3</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-dda873709adda04da4ea2153e5278b4f" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout service started | |
Receiving a logout request from the IdP | |
<?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T06:03:58Z" Version="2.0"><saml:Issuer>https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-f22d7e89c34b0dd56d0175fc9e11ccd3</saml:NameID><samlp:SessionIndex>_1837687b7bc9faad85839dbeb319627889f3021757</samlp:SessionIndex></samlp:LogoutRequest> | |
RESPONSE: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-cc2b4e13e4ab57bbbffe96360173bdd1" InResponseTo="_9961abbaae6d06d251226cb25e38bf8f468036e57e" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e2c6849d95d43645a614d72f35731a4" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e5d197c717680dbc9250ce6fef139e07" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-68f0ca5ad04ccea81895d2b53bc71389</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-1e6f4d2cb6f7191caf55f70c405b52c0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e2c6849d95d43645a614d72f35731a4" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e5d197c717680dbc9250ce6fef139e07" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-68f0ca5ad04ccea81895d2b53bc71389</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-1e6f4d2cb6f7191caf55f70c405b52c0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-2e2c6849d95d43645a614d72f35731a4" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-e5d197c717680dbc9250ce6fef139e07" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-68f0ca5ad04ccea81895d2b53bc71389</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:58Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:58Z" SessionIndex="id-1e6f4d2cb6f7191caf55f70c405b52c0" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:58Z" NotOnOrAfter="2014-10-15T11:18:58Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
Logout process started | |
logout request for: id-68f0ca5ad04ccea81895d2b53bc71389 | |
destination to provider: https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php | |
REQUEST: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutRequest xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://idp.example.com/simplesaml/saml2/idp/SingleLogoutService.php" ID="id-b1fe4ee8e92a44da24eafd0b0770d74d" IssueInstant="2014-10-15T11:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://sp.example.com/saml2/metadata/</saml:Issuer><saml:NameID>id-68f0ca5ad04ccea81895d2b53bc71389</saml:NameID></samlp:LogoutRequest> | |
Redirecting to the IdP to continue the logout process | |
Logout service started | |
Receiving a logout response from the IdP | |
XMLSTR: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-b1fe4ee8e92a44da24eafd0b0770d74d" IssueInstant="2014-10-15T06:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-b1fe4ee8e92a44da24eafd0b0770d74d" IssueInstant="2014-10-15T06:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:LogoutResponse xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://sp.example.com/saml2/ls/" ID="a140848e7ce2bce834d7264ecdde0151" InResponseTo="id-b1fe4ee8e92a44da24eafd0b0770d74d" IssueInstant="2014-10-15T06:03:58Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status></samlp:LogoutResponse> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
<saml2.response.LogoutResponse object at 0x7f16750c6890> | |
state: {'id-b1fe4ee8e92a44da24eafd0b0770d74d': {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-68f0ca5ad04ccea81895d2b53bc71389'}} | |
status: {'entity_id': 'https://idp.example.com/simplesaml/saml2/idp/metadata.php', 'return_to': '/', 'entity_ids': ['https://idp.example.com/simplesaml/saml2/idp/metadata.php'], 'not_on_of_after': None, 'sign': False, 'reason': '', 'operation': 'SLO', 'subject_id': 'id-68f0ca5ad04ccea81895d2b53bc71389'} | |
issuer: https://idp.example.com/simplesaml/saml2/idp/metadata.php | |
Performing django_logout with a next_page of None | |
.FAssertion Consumer Service started | |
.Assertion Consumer Service started | |
xmlstr: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-8ef0799464d41c69ea1ea3421dda2b2f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f4c20e765bc116fe13e2fc446d06819a" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-598687d84ded222c7ee132051d113006</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:59Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:59Z" NotOnOrAfter="2014-10-15T11:18:59Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:59Z" SessionIndex="id-b9178767732427af14225f9c392f28c8" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
response: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-8ef0799464d41c69ea1ea3421dda2b2f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f4c20e765bc116fe13e2fc446d06819a" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-598687d84ded222c7ee132051d113006</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:59Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:59Z" NotOnOrAfter="2014-10-15T11:18:59Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:59Z" SessionIndex="id-b9178767732427af14225f9c392f28c8" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
>> <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Destination="http://sp.example.com/saml2/acs/" ID="id-8ef0799464d41c69ea1ea3421dda2b2f" InResponseTo="a0123456789abcdef0123456789abcdef" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><samlp:Status><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status><saml:Assertion ID="id-f4c20e765bc116fe13e2fc446d06819a" IssueInstant="2014-10-15T11:03:59Z" Version="2.0"><saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://idp.example.com/simplesaml/saml2/idp/metadata.php</saml:Issuer><saml:Subject><saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:transient" SPNameQualifier="http://sp.example.com/saml2/metadata/">id-598687d84ded222c7ee132051d113006</saml:NameID><saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer"><saml:SubjectConfirmationData InResponseTo="a0123456789abcdef0123456789abcdef" NotOnOrAfter="2014-10-15T11:18:59Z" Recipient="http://sp.example.com/saml2/acs/" /></saml:SubjectConfirmation></saml:Subject><saml:Conditions NotBefore="2014-10-15T11:03:59Z" NotOnOrAfter="2014-10-15T11:18:59Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions><saml:AuthnStatement AuthnInstant="2014-10-15T11:03:59Z" SessionIndex="id-b9178767732427af14225f9c392f28c8" /><saml:AttributeStatement><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement></saml:Assertion></samlp:Response> | |
status: <?xml version='1.0' encoding='UTF-8'?> | |
<samlp:Status xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"><samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" /></samlp:Status> | |
***Unencrypted response*** | |
assertion context: AuthnReq | |
assertion keys: ['conditions', 'subject', 'issuer', 'id', 'attribute_statement', 'version', 'authn_statement', 'issue_instant'] | |
outstanding_queries: {'a0123456789abcdef0123456789abcdef': '/another-view/'} | |
condition: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:Conditions xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NotBefore="2014-10-15T11:03:59Z" NotOnOrAfter="2014-10-15T11:18:59Z"><saml:AudienceRestriction><saml:Audience>http://sp.example.com/saml2/metadata/</saml:Audience></saml:AudienceRestriction></saml:Conditions> | |
--- Getting Identity --- | |
Attribute Statement: <?xml version='1.0' encoding='UTF-8'?> | |
<saml:AttributeStatement xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"><saml:Attribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"><saml:AttributeValue xsi:type="xs:string">student</saml:AttributeValue></saml:Attribute></saml:AttributeStatement> | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:basic | |
Converts name format: urn:oasis:names:tc:SAML:2.0:attrname-format:uri | |
Converts name format: urn:mace:shibboleth:1.0:attributeNamespace:uri | |
--- AVA: {'uid': ['student']} | |
--- ADDED person info ---- | |
Trying to authenticate the user | |
attributes: {'uid': ['student']} | |
attribute_mapping: {'uid': ('username',)} | |
Check if the user "student" exists or create otherwise | |
New user created | |
Sending the pre_save signal | |
Sending the post_authenticated signal | |
Redirecting to the RelayState: /another-view/ | |
.Sending the pre_save signal | |
Sending the pre_save signal | |
. | |
====================================================================== | |
FAIL: test_idplist_templatetag (djangosaml2.tests.SAML2Tests) | |
---------------------------------------------------------------------- | |
Traceback (most recent call last): | |
File "/home/graingert/projects/djangosaml2/.tox/py27-dj15/local/lib/python2.7/site-packages/djangosaml2/tests/__init__.py", line 474, in test_idplist_templatetag | |
self.assertEqual(rendered, expected) | |
AssertionError: u'https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; ' != u'https://idp2.example.com/simplesaml/saml2/idp/metadata.php - idp2.example.com IdP; https://idp3.example.com/simplesaml/saml2/idp/metadata.php - idp3.example.com IdP; https://idp1.example.com/simplesaml/saml2/idp/metadata.php - idp1.example.com IdP; ' | |
====================================================================== | |
FAIL: test_metadata (djangosaml2.tests.SAML2Tests) | |
---------------------------------------------------------------------- | |
Traceback (most recent call last): | |
File "/home/graingert/projects/djangosaml2/.tox/py27-dj15/local/lib/python2.7/site-packages/djangosaml2/tests/__init__.py", line 446, in test_metadata | |
self.assertEquals(response.content, expected_metadata) | |
AssertionError: '<?xml version=\'1.0\' encoding=\'UTF-8\'?>\n<md:EntityDescriptor xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://sp.example.com/saml2/metadata/" validUntil="2014-10-16T11:03:59Z"><md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><md:KeyDescriptor><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDPjCCAiYCCQCkHjPQlll+mzANBgkqhkiG9w0BAQUFADBhMQswCQYDVQQGEwJF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\nID4zT0FcZASGuthM56rRJJSx\n</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://sp.example.com/saml2/ls/" /><md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://sp.example.com/saml2/acs/" index="1" /><md:AttributeConsumingService index="1"><md:ServiceName xml:lang="en">Test SP</md:ServiceName><md:RequestedAttribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true" /><md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false" /></md:AttributeConsumingService></md:SPSSODescriptor><md:Organization><md:OrganizationName xml:lang="es">Ejemplo S.A.</md:OrganizationName><md:OrganizationName xml:lang="en">Example Inc.</md:OrganizationName><md:OrganizationDisplayName xml:lang="es">Ejemplo</md:OrganizationDisplayName><md:OrganizationDisplayName xml:lang="en">Example</md:OrganizationDisplayName><md:OrganizationURL xml:lang="es">http://www.example.es</md:OrganizationURL><md:OrganizationURL xml:lang="en">http://www.example.com</md:OrganizationURL></md:Organization><md:ContactPerson contactType="technical"><md:Company>Example Inc.</md:Company><md:GivenName>Technical givenname</md:GivenName><md:SurName>Technical surname</md:SurName><md:EmailAddress>technical@sp.example.com</md:EmailAddress></md:ContactPerson><md:ContactPerson contactType="administrative"><md:Company>Example Inc.</md:Company><md:GivenName>Administrative givenname</md:GivenName><md:SurName>Administrative surname</md:SurName><md:EmailAddress>administrative@sp.example.ccom</md:EmailAddress></md:ContactPerson></md:EntityDescriptor>' != '<?xml version=\'1.0\' encoding=\'UTF-8\'?>\n<md:EntityDescriptor xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="http://sp.example.com/saml2/metadata/" validUntil="2014-10-16T11:03:58Z"><md:SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"><md:KeyDescriptor><ds:KeyInfo><ds:X509Data><ds:X509Certificate>MIIDPjCCAiYCCQCkHjPQlll+mzANBgkqhkiG9w0BAQUFADBhMQswCQYDVQQGEwJF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\nID4zT0FcZASGuthM56rRJJSx\n</ds:X509Certificate></ds:X509Data></ds:KeyInfo></md:KeyDescriptor><md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="http://sp.example.com/saml2/ls/" /><md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="http://sp.example.com/saml2/acs/" index="1" /><md:AttributeConsumingService index="1"><md:ServiceName xml:lang="en">Test SP</md:ServiceName><md:RequestedAttribute FriendlyName="uid" Name="urn:oid:0.9.2342.19200300.100.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true" /><md:RequestedAttribute FriendlyName="eduPersonAffiliation" Name="urn:oid:1.3.6.1.4.1.5923.1.1.1.1" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false" /></md:AttributeConsumingService></md:SPSSODescriptor><md:Organization><md:OrganizationName xml:lang="es">Ejemplo S.A.</md:OrganizationName><md:OrganizationName xml:lang="en">Example Inc.</md:OrganizationName><md:OrganizationDisplayName xml:lang="es">Ejemplo</md:OrganizationDisplayName><md:OrganizationDisplayName xml:lang="en">Example</md:OrganizationDisplayName><md:OrganizationURL xml:lang="es">http://www.example.es</md:OrganizationURL><md:OrganizationURL xml:lang="en">http://www.example.com</md:OrganizationURL></md:Organization><md:ContactPerson contactType="technical"><md:Company>Example Inc.</md:Company><md:GivenName>Technical givenname</md:GivenName><md:SurName>Technical surname</md:SurName><md:EmailAddress>technical@sp.example.com</md:EmailAddress></md:ContactPerson><md:ContactPerson contactType="administrative"><md:Company>Example Inc.</md:Company><md:GivenName>Administrative givenname</md:GivenName><md:SurName>Administrative surname</md:SurName><md:EmailAddress>administrative@sp.example.ccom</md:EmailAddress></md:ContactPerson></md:EntityDescriptor>' | |
---------------------------------------------------------------------- | |
Ran 15 tests in 0.208s | |
FAILED (failures=2) | |
Destroying test database for alias 'default'... | |
ERROR: InvocationError: '/home/graingert/projects/djangosaml2/.tox/py27-dj15/bin/python tests/run_tests.py' | |
py27-dj16 inst-nodeps: /home/graingert/projects/djangosaml2/.tox/dist/djangosaml2-0.11.0.zip | |
py27-dj16 runtests: PYTHONHASHSEED='1754004049' | |
py27-dj16 runtests: commands[0] | python tests/run_tests.py | |
Creating test database for alias 'default'... | |
/home/graingert/projects/djangosaml2/.tox/py27-dj16/local/lib/python2.7/site-packages/djangosaml2/backends.py:145: DeprecationWarning: The use of AUTH_PROFILE_MODULE to define user profiles has been deprecated. | |
profile = user.get_profile() | |
Sending the pre_save signal | |
Sending the pre_save signal | |
/home/graingert/projects/djangosaml2/tests/testprofiles/tests.py:57: DeprecationWarning: The use of AUTH_PROFILE_MODULE to define user profiles has been deprecated. | |
self.assertEquals(user.get_profile().age, '22') | |
. | |
---------------------------------------------------------------------- | |
Ran 1 test in 0.003s | |
OK | |
Destroying test database for alias 'default'... | |
_____________________________________________________________________ summary _____________________________________________________________________ | |
ERROR: py26-dj13: commands failed | |
ERROR: py26-dj14: commands failed | |
ERROR: py26-dj15: commands failed | |
py26-dj16: commands succeeded | |
ERROR: py27-dj13: commands failed | |
ERROR: py27-dj14: commands failed | |
ERROR: py27-dj15: commands failed | |
py27-dj16: commands succeeded |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment