verify_client, config.SYM_KEY, **kwargs) for authn in ac: authn.srv = OAS if config.USERINFO == "SIMPLE": # User info is a simple dictionary in this case statically defined in # the configuration file OAS.userinfo = UserInfo(config.USERDB) elif config.USERINFO == "SAML": OAS.userinfo = UserInfo(config.SAML) else: raise Exception("Unsupported userinfo source") try: OAS.cookie_ttl = config.COOKIETTL except AttributeError: pass try: OAS.cookie_name = config.COOKIENAME except AttributeError: pass #print URLS if args.debug: OAS.debug = True # All endpoints the OpenID Connect Provider should answer on add_endpoints(ENDPOINTS) OAS.endpoints = ENDPOINTS
# and "the state of the session". There is one entry in the # database per person # # __________ Note __________ # provider.keyjar is an interesting parameter, # currently it uses default values, but # if you have time, it worth investigating. for authnIndexedEndPointWrapper in authnBroker: authnIndexedEndPointWrapper.srv = provider # TODO: this is a point to consider: what if user data in a database? if config.USERINFO == "SIMPLE": provider.userinfo = UserInfo(config.USERDB) provider.cookie_ttl = config.COOKIETTL provider.cookie_name = config.COOKIENAME if args.debug: provider.debug = True try: # JWK: JSON Web Key # JWKS: is a dictionary of JWK # __________ NOTE __________ # JWKS contains private key information. # # keyjar_init configures cryptographic key # based on the provided configuration "keys". jwks = keyjar_init( provider, # server/client instance
for authn in ac: authn.srv = OAS if config.USERINFO == "SIMPLE": # User info is a simple dictionary in this case statically defined in # the configuration file OAS.userinfo = UserInfo(config.USERDB) elif config.USERINFO == "SAML": OAS.userinfo = UserInfo(config.SAML) elif config.USERINFO == "AA": OAS.userinfo = AaUserInfo(config.SP_CONFIG, config.issuer, config.SAML) else: raise Exception("Unsupported userinfo source") try: OAS.cookie_ttl = config.COOKIETTL except AttributeError: pass try: OAS.cookie_name = config.COOKIENAME except AttributeError: pass #print URLS if args.debug: OAS.debug = True # All endpoints the OpenID Connect Provider should answer on add_endpoints(ENDPOINTS) OAS.endpoints = ENDPOINTS