Add CO attribute scope to state for SAMLVirtualCoFrontend

skoranda · skoranda · commit b8c55455ceb7 · 2019-09-16T12:45:24.000-05:00
Add logic to store the configured CO attribute scope for an instance of
SAMLVirtualCoFrontend in the state so that microservices can easily
access it.
diff --git a/src/satosa/frontends/saml2.py b/src/satosa/frontends/saml2.py
@@ -702,6 +702,7 @@ class SAMLVirtualCoFrontend(SAMLFrontend):
     KEY_CO_NAME = 'co_name'
     KEY_CO_ENTITY_ID = 'co_entity_id'
     KEY_CO_ATTRIBUTES = 'co_static_saml_attributes'
+    KEY_CO_ATTRIBUTE_SCOPE = 'co_attribute_scope'
     KEY_CONTACT_PERSON = 'contact_person'
     KEY_ENCODEABLE_NAME = 'encodeable_name'
     KEY_ORGANIZATION = 'organization'
@@ -774,6 +775,11 @@ def _create_state_data(self, context, resp_args, relay_state):
         state[self.KEY_CO_ENTITY_ID] = context.get_decoration(
                                                          self.KEY_CO_ENTITY_ID)
 
+        co_config = self._get_co_config(context)
+        state[self.KEY_CO_ATTRIBUTE_SCOPE] = co_config.get(
+                                                self.KEY_CO_ATTRIBUTE_SCOPE,
+                                                None)
+
         return state
 
     def _get_co_config(self, context):
diff --git a/tests/satosa/frontends/test_saml2.py b/tests/satosa/frontends/test_saml2.py
@@ -412,6 +412,7 @@ class TestSAMLVirtualCoFrontend(TestSAMLFrontend):
     CO_C = "countryname"
     CO_CO = "friendlycountryname"
     CO_NOREDUORGACRONYM = "noreduorgacronym"
+    CO_SCOPE = "messproject.org"
     CO_STATIC_SAML_ATTRIBUTES = {
         CO_O: ["Medium Energy Synchrotron Source"],
         CO_C: ["US"],
@@ -438,7 +439,8 @@ def frontend(self, idp_conf, sp_conf):
         # SAML attributes so their presence in a SAML Response can be tested.
         collab_org = {
             "encodeable_name": self.CO,
-            "co_static_saml_attributes": self.CO_STATIC_SAML_ATTRIBUTES
+            "co_static_saml_attributes": self.CO_STATIC_SAML_ATTRIBUTES,
+            "co_attribute_scope": self.CO_SCOPE
         }
 
         # Use the dynamically updated idp_conf fixture, the configured
@@ -491,6 +493,8 @@ def test_create_state_data(self, frontend, context, idp_conf):
         expected_entityid = "{}/{}".format(idp_conf['entityid'], self.CO)
         assert state[frontend.KEY_CO_ENTITY_ID] == expected_entityid
 
+        assert state[frontend.KEY_CO_ATTRIBUTE_SCOPE] == self.CO_SCOPE
+
     def test_get_co_name(self, frontend, context):
         co_name = frontend._get_co_name(context)
         assert co_name == self.CO
