Fang Li
Fang Li
Before we go deeper, could you try set STAFF_STATUS and SUPERUSER_STATUS to True? If this doesn't help, you need to change the code and add some logs so we know...
Good catch! but I'm afraid this is not the nature way we should use to get username, since SAML itself provides attributes for authentication. For your usecase, you may just...
Good catch! Since this method has backward compatibility issues for old django version, could you get a chance to add try-catch for this method? So we try *get_by_natural_key* first, then...
Please make sure your have the per-defined groups in your database. The groups in USER_GROUPS must be created manually. And the warning when redirecting to your local http server is...
Oh probably you need to disable CSRF in SSO urls. I'm using okta as well it works well.
Sounds great, let me think about it.
After reviewed these comments, it's more like a pysaml2 issue, right?
Hi @all, if you are using a proxy behind django app, you may forget to set https/http forward headers on proxy properly.(just like X_FORWARD balabala) So django will get incorrect...
Placing user/password separated is really a good feature, but I will not merge the base_path because it's not so necessary in most common cases. just want to keep it simple....