diff options
-rw-r--r-- | src/saml2/client_base.py | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/src/saml2/client_base.py b/src/saml2/client_base.py index 94531d77..fdbeadc2 100644 --- a/src/saml2/client_base.py +++ b/src/saml2/client_base.py @@ -126,6 +126,11 @@ class Base(Entity): if v is False or v == 'false': setattr(self, param, False) + if self.entity_type == "sp" and not any(self.want_assertions_signed, + self.want_response_signed): + logger.warning("The SAML service provider accepts unsigned SAML Responses " + + "and Assertions. This configuration is insecure.") + self.artifact2response = {} # |