RTD minor changes

peppelinux · peppelinux · commit 4f96f37f22a1 · 2021-04-05T11:15:25.000+02:00
diff --git a/docs/source/contents/setup.rst b/docs/source/contents/setup.rst
@@ -220,8 +220,8 @@ setting::
   SAML_CONFIG_LOADER = 'python.path.to.your.callable'
 
 
-User attributes
----------------
+Users, attributes and account linking
+-------------------------------------
 
 In the SAML 2.0 authentication process the Identity Provider (IdP) will
 send a security assertion to the Service Provider (SP) upon a successful
@@ -516,15 +516,19 @@ metadata for remote entities. Usually the easiest type is the ``local`` where
 you just put the name of a local XML file with the contents of the remote
 entities metadata. This XML file should be in the SAML2 metadata format.
 
+.. Note::
+
+  Don't use ``remote`` option for fetching metadata in production.
+  Try to use ``mdq`` and introduce a MDQ server instead, it's more efficient.
+
 The ``key_file`` and ``cert_file`` options reference the two parts of a
 standard x509 certificate. You need it to sign your metadata. For assertion
 encryption/decryption support please configure another set of ``key_file`` and
 ``cert_file``, but as inner attributes of ``encryption_keypairs`` option.
 
 .. Note::
 
-  Check your openssl documentation to generate a test certificate but don't
-  forget to order a real one when you go into production.
+  Check your openssl documentation to generate a test certificate.
 
 ..
-  openssl req -nodes -new -x509 -days 3650 -keyout private.key -out public.cert
+  openssl req -nodes -new -x509 -newkey rsa:2048 -days 3650 -keyout private.key -out public.cert
diff --git a/docs/source/contents/usage.md b/docs/source/contents/usage.md
@@ -16,12 +16,10 @@ Now you need to send the entity id and the metadata of this new SP to the
  IdP administrators so they can add it to their list of trusted services.
 
 You can get this information starting your Django development server and
- going to the http://localhost:8000/saml2/metadata url. If you have included
+ going to the **http://localhost:8000/saml2/metadata/** url. If you have included
  the djangosaml2 urls under a different url prefix you need to correct this
  url.
 
 There are many saml2 idps suitable for testing, such as [samltest.id](https://samltest.id/).
- If you are looking for a django idp, try one of these:
-
-- [uniAuth](https://github.com/UniversitaDellaCalabria/uniAuth)
-- [djangosaml2idp](https://github.com/OTA-Insight/djangosaml2idp/)
+ If you are looking for a django IdP, you can try [uniAuth](https://github.com/UniversitaDellaCalabria/uniAuth) or
+ [djangosaml2idp](https://github.com/OTA-Insight/djangosaml2idp/).
diff --git a/docs/source/index.rst b/docs/source/index.rst
@@ -6,7 +6,7 @@ A Django application that builds a fully compliant SAML2 Service Provider on top
 Djangosaml2 protects your project with a SAML2 SSO Authentication, supporting features like
 **HTTP-REDIRECT** and **HTTP-POST SSO Binding**, **Single logout**,
 **Discovery Service**, **Wayf page** with customizable html template,
-**IdP Hinting**, **Samesite cookie** SSO workaround.
+**IdP Hinting** and **Samesite cookie** SSO workaround.
 
 The entire project code is open sourced and therefore licensed
 under the `Apache 2.0 <https://en.wikipedia.org/wiki/Apache_License>`_.
