Commit ba8c44de by Chif Gergő

Update djangosaml dependency

Using version 0.17.1 which depends on pysaml 4.5.0, what doesnt have the vulnerability. Add an option to saml sp, to not require signed response.
parent 69f2f207
Pipeline #695 passed with stage
in 0 seconds
...@@ -495,6 +495,7 @@ if get_env_variable('DJANGO_SAML', 'FALSE') == 'TRUE': ...@@ -495,6 +495,7 @@ if get_env_variable('DJANGO_SAML', 'FALSE') == 'TRUE':
}, },
'required_attributes': required_attrs, 'required_attributes': required_attrs,
'optional_attributes': optional_attrs, 'optional_attributes': optional_attrs,
'want_response_signed': False,
}, },
}, },
'metadata': {'local': [remote_metadata], }, 'metadata': {'local': [remote_metadata], },
......
...@@ -16,7 +16,7 @@ django-sizefield==0.9.1 ...@@ -16,7 +16,7 @@ django-sizefield==0.9.1
django-statici18n==1.4.0 django-statici18n==1.4.0
django-tables2==1.10.0 django-tables2==1.10.0
django-taggit==0.22.1 django-taggit==0.22.1
djangosaml2==0.16.10 djangosaml2==0.17.1
git+https://git.ik.bme.hu/circle/django-sshkey.git git+https://git.ik.bme.hu/circle/django-sshkey.git
docutils==0.12 docutils==0.12
Jinja2==2.7.3 Jinja2==2.7.3
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or sign in to comment