Allow requested_authn_context to be an object

Signed-off-by: Ivan Kanakarakis <ivan.kanak@gmail.com>
author: Ivan Kanakarakis <ivan.kanak@gmail.com> 2021-12-14 15:30:35 +0200
committer: Ivan Kanakarakis <ivan.kanak@gmail.com> 2021-12-14 15:32:21 +0200
commit: ff667e83324a9cbe551d3d096e91d59e6b71ae59 (patch)
tree: c4ef0d3f1cf57c52c41160737779d5d7b97424ec
parent: 5d311643ba6a507681a4dfd64886736ca0e33c51 (diff)
download: pysaml2-ff667e83324a9cbe551d3d096e91d59e6b71ae59.tar.gz
1 files changed, 23 insertions, 13 deletions
diff --git a/src/saml2/client_base.py b/src/saml2/client_base.py
index 77b52ce0..cf88dee9 100644
--- a/src/saml2/client_base.py
+++ b/src/saml2/client_base.py
@@ -9,6 +9,7 @@ import threading
 import six
 import time
 import logging
+from typing import Mapping
 from warnings import warn as _warn
 
 from saml2.entity import Entity
@@ -365,20 +366,29 @@ class Base(Entity):
             or self.config.getattr("requested_authn_context", "sp")
             or {}
         )
-        requested_authn_context_accrs = requested_authn_context.get(
-            "authn_context_class_ref", []
-        )
-        requested_authn_context_comparison = requested_authn_context.get(
-            "comparison", "exact"
-        )
-        if requested_authn_context_accrs:
-            args["requested_authn_context"] = RequestedAuthnContext(
-                authn_context_class_ref=[
-                    AuthnContextClassRef(accr)
-                    for accr in requested_authn_context_accrs
-                ],
-                comparison=requested_authn_context_comparison,
+        if isinstance(requested_authn_context, RequestedAuthnContext):
+            args["requested_authn_context"] = requested_authn_context
+        elif isinstance(requested_authn_context, Mapping):
+            requested_authn_context_accrs = requested_authn_context.get(
+                "authn_context_class_ref", []
             )
+            requested_authn_context_comparison = requested_authn_context.get(
+                "comparison", "exact"
+            )
+            if requested_authn_context_accrs:
+                args["requested_authn_context"] = RequestedAuthnContext(
+                    authn_context_class_ref=[
+                        AuthnContextClassRef(accr)
+                        for accr in requested_authn_context_accrs
+                    ],
+                    comparison=requested_authn_context_comparison,
+                )
+        else:
+            logger.warning({
+                "message": "Cannot process requested_authn_context",
+                "requested_authn_context": requested_authn_context,
+                "type_of_requested_authn_context": type(requested_authn_context),
+            })
 
         # Allow argument values either as class instances or as dictionaries
         # all of these have cardinality 0..1
author	Ivan Kanakarakis <ivan.kanak@gmail.com>	2021-12-14 15:30:35 +0200
committer	Ivan Kanakarakis <ivan.kanak@gmail.com>	2021-12-14 15:32:21 +0200
commit	ff667e83324a9cbe551d3d096e91d59e6b71ae59 (patch)
tree	c4ef0d3f1cf57c52c41160737779d5d7b97424ec
parent	5d311643ba6a507681a4dfd64886736ca0e33c51 (diff)
download	pysaml2-ff667e83324a9cbe551d3d096e91d59e6b71ae59.tar.gz