python3_saml_auth_init_and_login_redirect_flask.py

1import os
2from onelogin.saml2.auth import OneLogin_Saml2_Auth
3from onelogin.saml2.utils import OneLogin_Saml2_Utils
4
5def prepare_flask_request(request):
6    # If server is behind proxys or is under HTTPS, the schema
7    # and port need to be set or the logic may fail.
8    return {
9        'https': 'on' if request.scheme == 'https' else 'off',
10        'http_host': request.host,
11        'script_name': request.path,
12        'get_data': request.args.copy(),
13        'post_data': request.form.copy()
14    }
15
16def init_saml_auth(req):
17    # The 'settings.json' and 'advanced_settings.json' files must 
18    # be located in the 'saml' folder of your project root.
19    auth = OneLogin_Saml2_Auth(req, custom_base_path=os.path.join(os.getcwd(), 'saml'))
20    return auth
21
22# Example usage in a web route (e.g., Flask)
23# request_data = prepare_flask_request(request)
24# auth = init_saml_auth(request_data)
25
26# To initiate Login:
27# return redirect(auth.login())
28
29# To process the Response (ACS):
30# auth.process_response()
31# errors = auth.get_errors()
32# if not errors:
33#     if auth.is_authenticated():
34#         user_data = auth.get_attributes()
35#         print("User logged in with attributes: %s" % user_data)