Merge pull request #135 from jkakavas/enhance_alservice

johanlundberg · web-flow · commit cbb6d4ab14c1 · 2017-09-07T13:04:22.000+02:00
Allow AL internal UniqueID to be used as attribute
diff --git a/example/plugins/microservices/account_linking.yaml.example b/example/plugins/microservices/account_linking.yaml.example
@@ -3,4 +3,5 @@ name: AccountLinking
 config:
   api_url: "https://localhost:8167"
   redirect_url: "https://localhost:8167/approve"
-  sign_key: "pki/account_linking.key"
+  sign_key: "pki/account_linking.key"
+  id_to_attr: "uniqueid"
diff --git a/src/satosa/micro_services/account_linking.py b/src/satosa/micro_services/account_linking.py
@@ -32,6 +32,7 @@ def __init__(self, config, *args, **kwargs):
         self.redirect_url = config["redirect_url"]
         self.signing_key = RSAKey(key=rsa_load(config["sign_key"]), use="sig", alg="RS256")
         self.endpoint = "/handle_account_linking"
+        self.id_to_attr = config.get("id_to_attr", None)
         logger.info("Account linking is active")
 
     def _handle_al_response(self, context):
@@ -52,6 +53,9 @@ def _handle_al_response(self, context):
             satosa_logging(logger, logging.INFO, "issuer/id pair is linked in AL service",
                            context.state)
             internal_response.user_id = message
+            if self.id_to_attr:
+                internal_response.attributes[id_to_attr] = [message]
+
             del context.state[self.name]
             return super().process(context, internal_response)
         else:
@@ -76,6 +80,8 @@ def process(self, context, internal_response):
             satosa_logging(logger, logging.INFO, "issuer/id pair is linked in AL service",
                            context.state)
             internal_response.user_id = message
+            if self.id_to_attr:
+                internal_response.attributes[id_to_attr] = [message]
             try:
                 del context.state[self.name]
             except KeyError:
