Skip to content

v3.15.0
Compare
Choose a tag to compare
@github-actions github-actions released this 14 Oct 07:50
· 5 commits to main since this release
v3.15.0
cba317c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

This release introduces a new feature that allows the extraction of custom attributes from the SAML Response during user identity processing. The new hook function, TRIGGER.EXTRACT_USER_IDENTITY, accepts two parameters:

  1. A user dictionary that has been processed by the extract_user_identity function.
  2. A decoded but unvalidated AuthnResponse object, provided as a raw XML string.

If this function is implemented, it MUST return the user dictionary or optionally enrich it with additional attributes extracted from the AuthnResponse.

Warning

This hook function receives an unvalidated and unverified raw XML string. Extreme caution is required to validate the attributes before using them. For example, the Issuer and NameID attributes should at minimum be verified to contain a valid URL and URN, respectively. For further details, refer to this discussion.

What's Changed

Full Changelog: v3.13.0...v3.15.0

Contributors

mostafa
Assets 5
Loading