Set form-action for SAML Discovery Protocol URL (#1478)

2018-10-12 10:11:51 +02:00 · 2018-10-12 10:11:51 +02:00 · 13320e64a9
commit 13320e64a9
parent c5f9a7f95b
1 changed files with 11 additions and 0 deletions
--- a/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Main/Run.pm
+++ b/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Main/Run.pm
@ -754,6 +754,17 @@ sub sendHtml {
            "Set CSP form-action with request URL: " . $req->{cspFormAction} );
        $csp .= " " . $req->{cspFormAction};
    }
+
+    # Set SAML Discovery Protocol in form-action
+    # See https://github.com/w3c/webappsec-csp/issues/8
+    if ( $self->conf->{samlDiscoveryProtocolActivation}
+        and defined $self->conf->{samlDiscoveryProtocolURL} )
+    {
+        $self->logger->debug(
+            "Add SAML Discovery Protocol URL in CSP form-action");
+
+        $csp .= " " . $self->conf->{samlDiscoveryProtocolURL};
+    }
    $csp .= ';';

    # Deny using portal in frame except if it is required