Reputation: 373
How can I receive and verify WS-Federation tokens in python/django?
I am trying to implement an assertion consumer for signed WS-Federation tokens as part of a SSO system. I know that simplesamlphp has (undocumented) ws-fed support, but I'm using a Django stack. It looks like djangosaml2 pysaml2 doesn't support the WS-Federation specification as they expect XML with a 'Response' root node, and not a 'RequestSecurityTokenResponseCollection' root node.
Has anyone run into this before? Is there a python library out there that can help me? I'm tempted just to roll my own consumer, but I'm afraid I might slip up and create a security vulnerability due to my lack of X509 and xml knowledge.
Thanks!
Upvotes: 9
Views: 1120
Answers (1)
Reputation: 1646
I use django-auth-adfs for adfs authentication. I'm not sure how WS-Federation fits in the mix in a Python application, however, if you are authenticating to ADFS, this library does a decent job.
Upvotes: 0
Related Questions
- Django Rest Framework Token Authentication
- Integrate Django authentication with Enterprise Identity Provider PingFederate
- Central Authentication and authorization service
- Token based authentication with Django REST Framework
- Token Authentication Implementation in Django Rest Framework
- JWT integration with django
- URL token authentication in Django
- Getting tokens with Django REST framework
- How to validate WS-Federation SAML tokens with Java Service Provider
- Decentralized authentication against Windows domain