From a524572f9ab49120505ac2e0046c949027344bea Mon Sep 17 00:00:00 2001
From: kaiyou <pierre@jaury.eu>
Date: Wed, 13 Nov 2019 21:06:39 +0100
Subject: [PATCH] Sign the saml response by default

---
 hiboo/sso/saml.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/hiboo/sso/saml.py b/hiboo/sso/saml.py
index 95c58b5..a7c9dc9 100644
--- a/hiboo/sso/saml.py
+++ b/hiboo/sso/saml.py
@@ -180,6 +180,7 @@ def saml_redirect(service_uuid):
         sp_entity_id=service.config["entityid"],
         userid=picked.username,
         authn={'class_ref': saml2.saml.AUTHN_PASSWORD},
+        sign_response=True,
         sign_assertion=True
     )
     return flask.render_template('sso_redirect.html', target=service.config["acs"], data={
-- 
GitLab