summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--modules/saml/docs/sp.md7
-rw-r--r--modules/saml/lib/Auth/Source/SP.php7
2 files changed, 14 insertions, 0 deletions
diff --git a/modules/saml/docs/sp.md b/modules/saml/docs/sp.md
index 6d40464..d1a3178 100644
--- a/modules/saml/docs/sp.md
+++ b/modules/saml/docs/sp.md
@@ -52,6 +52,13 @@ All these parameters override the equivalent option from the configuration.
: *Note*: SAML 2 specific.
+`saml:NameID`
+: Add a Subject element with a NameID to the SAML AuthnRequest for the IdP.
+ This is an associative array with the fields for the NameID.
+ Example: `array('Value' => 'user@example.org', 'Format' => SAML2_Const::NAMEID_UNSPECIFIED)`
+
+: *Note*: SAML 2 specific.
+
Authentication data
-------------------
diff --git a/modules/saml/lib/Auth/Source/SP.php b/modules/saml/lib/Auth/Source/SP.php
index 1460940..0d6b509 100644
--- a/modules/saml/lib/Auth/Source/SP.php
+++ b/modules/saml/lib/Auth/Source/SP.php
@@ -205,6 +205,13 @@ class sspmod_saml_Auth_Source_SP extends SimpleSAML_Auth_Source {
$ar->setIsPassive((bool)$state['isPassive']);
}
+ if (isset($state['saml:NameID'])) {
+ if (!is_array($state['saml:NameID'])) {
+ throw new SimpleSAML_Error_Exception('Invalid value of $state[\'saml:NameID\'].');
+ }
+ $ar->setNameId($state['saml:NameID']);
+ }
+
if (isset($state['saml:NameIDPolicy'])) {
if (is_string($state['saml:NameIDPolicy'])) {
$policy = array(
generated by cgit v1.1 at 2025-05-18 10:45:27 +0000