Examples: minor fixes and enhancements for ContactPerson examples for SAML backend and frontend (#430)

vladimir-mencl-eresearch · web-flow · commit 4e8d27c0697f · 2023-01-31T12:36:25.000+02:00
* fix: example: prefix ContactPerson emailAddress with "mailto:" As per SAML 2.0 spec, this should be URIs - so should start with "mailto:" * new: example/saml: add example for REFEDS security contact As per https://refeds.org/metadata/contactType/security
diff --git a/example/plugins/backends/saml2_backend.yaml.example b/example/plugins/backends/saml2_backend.yaml.example
@@ -25,8 +25,9 @@ config:
     cert_file: backend.crt
     organization: {display_name: Example Identities, name: Example Identities Org., url: 'http://www.example.com'}
     contact_person:
-    - {contact_type: technical, email_address: technical@example.com, given_name: Technical}
-    - {contact_type: support, email_address: support@example.com, given_name: Support}
+    - {contact_type: technical, email_address: 'mailto:technical@example.com', given_name: Technical}
+    - {contact_type: support, email_address: 'mailto:support@example.com', given_name: Support}
+    - {contact_type: other, email_address: 'mailto:security@example.com', given_name: Security, extension_attributes: {'xmlns:remd': 'http://refeds.org/metadata', 'remd:contactType': 'http://refeds.org/metadata/contactType/security'}}
 
     metadata:
       local: [idp.xml]
diff --git a/example/plugins/frontends/saml2_frontend.yaml.example b/example/plugins/frontends/saml2_frontend.yaml.example
@@ -24,8 +24,9 @@ config:
   idp_config:
     organization: {display_name: Example Identities, name: Example Identities Org., url: 'http://www.example.com'}
     contact_person:
-    - {contact_type: technical, email_address: technical@example.com, given_name: Technical}
-    - {contact_type: support, email_address: support@example.com, given_name: Support}
+    - {contact_type: technical, email_address: 'mailto:technical@example.com', given_name: Technical}
+    - {contact_type: support, email_address: 'mailto:support@example.com', given_name: Support}
+    - {contact_type: other, email_address: 'mailto:security@example.com', given_name: Security, extension_attributes: {'xmlns:remd': 'http://refeds.org/metadata', 'remd:contactType': 'http://refeds.org/metadata/contactType/security'}}
     key_file: frontend.key
     cert_file: frontend.crt
     metadata:
diff --git a/example/plugins/frontends/saml2_virtualcofrontend.yaml.example b/example/plugins/frontends/saml2_virtualcofrontend.yaml.example
@@ -22,7 +22,7 @@ config:
         url: https://messproject.org
       contact_person:
         - contact_type: technical
-          email_address: help@messproject.org
+          email_address: 'mailto:help@messproject.org'
           given_name: MESS Technical Support
       # SAML attributes and static values about the CO to be asserted for each user.
       # The key is the SATOSA internal attribute name.

-Original file line number
+Diff line change
     cert_file: backend.crt
     organization: {display_name: Example Identities, name: Example Identities Org., url: 'http://www.example.com'}
     contact_person:
 -    - {contact_type: technical, email_address: [email protected], given_name: Technical}
 -    - {contact_type: support, email_address: [email protected], given_name: Support}
 +    - {contact_type: technical, email_address: 'mailto:[email protected]', given_name: Technical}
 +    - {contact_type: support, email_address: 'mailto:[email protected]', given_name: Support}
 +    - {contact_type: other, email_address: 'mailto:[email protected]', given_name: Security, extension_attributes: {'xmlns:remd': 'http://refeds.org/metadata', 'remd:contactType': 'http://refeds.org/metadata/contactType/security'}}
     metadata:
       local: [idp.xml]