Support setting the SessionNotOnOrAfter in an authn response

author: Ashima Athri <ashimaathri@gmail.com> 2016-08-18 14:37:11 -0400
committer: Ashima Athri <ashimaathri@gmail.com> 2016-08-18 14:37:11 -0400
commit: 40c01d645f36b47d0436d4459452995b1a334108 (patch)
tree: 2e9de29e2e043825501b83cef9e31af114a427d1 /src/saml2/assertion.py
parent: cbe36044c1f495270a8c67126c9c30984eb25938 (diff)
download: pysaml2-40c01d645f36b47d0436d4459452995b1a334108.tar.gz
1 files changed, 9 insertions, 4 deletions
diff --git a/src/saml2/assertion.py b/src/saml2/assertion.py
index adfeecd7..64944d11 100644
--- a/src/saml2/assertion.py
+++ b/src/saml2/assertion.py
@@ -615,7 +615,7 @@ def _authn_context_decl_ref(decl_ref, authn_auth=None):
 
 def authn_statement(authn_class=None, authn_auth=None,
                     authn_decl=None, authn_decl_ref=None, authn_instant="",
-                    subject_locality=""):
+                    subject_locality="", session_not_on_or_after=None):
     """
     Construct the AuthnStatement
     :param authn_class: Authentication Context Class reference
@@ -639,6 +639,7 @@ def authn_statement(authn_class=None, authn_auth=None,
             saml.AuthnStatement,
             authn_instant=_instant,
             session_index=sid(),
+            session_not_on_or_after=session_not_on_or_after,
             authn_context=_authn_context_class_ref(
                 authn_class, authn_auth))
     elif authn_decl:
@@ -646,19 +647,22 @@ def authn_statement(authn_class=None, authn_auth=None,
             saml.AuthnStatement,
             authn_instant=_instant,
             session_index=sid(),
+            session_not_on_or_after=session_not_on_or_after,
             authn_context=_authn_context_decl(authn_decl, authn_auth))
     elif authn_decl_ref:
         res = factory(
             saml.AuthnStatement,
             authn_instant=_instant,
             session_index=sid(),
+            session_not_on_or_after=session_not_on_or_after,
             authn_context=_authn_context_decl_ref(authn_decl_ref,
                                                   authn_auth))
     else:
         res = factory(
             saml.AuthnStatement,
             authn_instant=_instant,
-            session_index=sid())
+            session_index=sid(),
+            session_not_on_or_after=session_not_on_or_after)
 
     if subject_locality:
         res.subject_locality = saml.SubjectLocality(text=subject_locality)
@@ -719,7 +723,7 @@ class Assertion(dict):
                   authn_class=None, authn_auth=None, authn_decl=None,
                   encrypt=None, sec_context=None, authn_decl_ref=None,
                   authn_instant="", subject_locality="", authn_statem=None,
-                  name_id=None):
+                  name_id=None, session_not_on_or_after=None):
         """ Construct the Assertion
 
         :param sp_entity_id: The entityid of the SP
@@ -770,7 +774,8 @@ class Assertion(dict):
             _authn_statement = authn_statement(authn_class, authn_auth,
                                                authn_decl, authn_decl_ref,
                                                authn_instant,
-                                               subject_locality)
+                                               subject_locality,
+                                               session_not_on_or_after=session_not_on_or_after)
         else:
             _authn_statement = None
author	Ashima Athri <ashimaathri@gmail.com>	2016-08-18 14:37:11 -0400
committer	Ashima Athri <ashimaathri@gmail.com>	2016-08-18 14:37:11 -0400
commit	40c01d645f36b47d0436d4459452995b1a334108 (patch)
tree	2e9de29e2e043825501b83cef9e31af114a427d1 /src/saml2/assertion.py
parent	cbe36044c1f495270a8c67126c9c30984eb25938 (diff)
download	pysaml2-40c01d645f36b47d0436d4459452995b1a334108.tar.gz