Skip to content

Commit ad604e7

Browse files
peppelinuxpeppelinux
committed
RTD additional fixes on openssl example
1 parent c0e0d5c commit ad604e7

File tree

1 file changed

+6
-7
lines changed

1 file changed

+6
-7
lines changed

docs/source/contents/setup.rst

Lines changed: 6 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -392,7 +392,7 @@ settings.py file under the SAML_CONFIG option. We will see a typical configurati
392392
# we are just a lonely SP
393393
'sp' : {
394394
'name': 'Federated Django sample SP',
395-
'name_id_format': saml2.saml.NAMEID_FORMAT_PERSISTENT,
395+
'name_id_format': saml2.saml.NAMEID_FORMAT_TRANSIENT,
396396

397397
# For Okta add signed logout requets. Enable this:
398398
# "logout_requests_signed": True,
@@ -428,7 +428,7 @@ settings.py file under the SAML_CONFIG option. We will see a typical configurati
428428
'optional_attributes': ['eduPersonAffiliation'],
429429

430430
# in this section the list of IdPs we talk to are defined
431-
# This is not mandatory! All the IdP available in the metadata will be considered.
431+
# This is not mandatory! All the IdP available in the metadata will be considered instead.
432432
'idp': {
433433
# we do not need a WAYF service since there is
434434
# only an IdP defined here. This IdP should be
@@ -451,11 +451,10 @@ settings.py file under the SAML_CONFIG option. We will see a typical configurati
451451
# One metadatastore or many ...
452452
'metadata': {
453453
'local': [path.join(BASEDIR, 'remote_metadata.xml')],
454-
'remote': [{"url": "https://idp.testunical.it/idp/shibboleth",
455-
"disable_ssl_certificate_validation": True},],
454+
'remote': [{"url": "https://idp.testunical.it/idp/shibboleth"},],
456455
'mdq': [{"url": "https://ds.testunical.it",
457456
"cert": "certficates/others/ds.testunical.it.cert",
458-
"disable_ssl_certificate_validation": True}]
457+
}]
459458
},
460459

461460
# set to 1 to output debugging information
@@ -528,9 +527,9 @@ encryption/decryption support please configure another set of ``key_file`` and
528527

529528
.. Note::
530529

531-
Check your openssl documentation to generate a test certificate.
530+
Check your openssl documentation to generate a certificate suitable for SAML2 operations.
532531

533532

534-
.. Example::
533+
SAML2 certificate creation example::
535534

536535
openssl req -nodes -new -x509 -newkey rsa:2048 -days 3650 -keyout private.key -out public.cert

0 commit comments

Comments
 (0)