Make unspecified the default Name ID format, add to enabled list

author Rob Crittenden <rcritten@redhat.com>

Mon, 23 Mar 2015 21:25:55 +0000 (17:25 -0400)

committer Simo Sorce <simo@redhat.com>

Mon, 23 Mar 2015 22:00:34 +0000 (18:00 -0400)
author Rob Crittenden <rcritten@redhat.com>
Mon, 23 Mar 2015 21:25:55 +0000 (17:25 -0400)
committer Simo Sorce <simo@redhat.com>
Mon, 23 Mar 2015 22:00:34 +0000 (18:00 -0400)
diff --git a/ipsilon/providers/saml2idp.py b/ipsilon/providers/saml2idp.py

index 5d8aa03..8ff512c 100644 (file)
--- a/ipsilon/providers/saml2idp.py
+++ b/ipsilon/providers/saml2idp.py
@@ -207,12 +207,13 @@ Provides SAML 2.0 authentication infrastructure. """
                  'default allowed nameids',
                  'Default Allowed NameIDs for Service Providers.',
                  metadata.SAML2_NAMEID_MAP.keys(),
-                ['persistent', 'transient', 'email', 'kerberos', 'x509']),
+                ['unspecified', 'persistent', 'transient', 'email',
+                 'kerberos', 'x509']),
              pconfig.Pick(
                  'default nameid',
                  'Default NameID used by Service Providers.',
                  metadata.SAML2_NAMEID_MAP.keys(),
-                'persistent'),
+                'unspecified'),
              pconfig.String(
                  'default email domain',
                  'Used for users missing the email property.',
author	Rob Crittenden <rcritten@redhat.com>
	Mon, 23 Mar 2015 21:25:55 +0000 (17:25 -0400)
committer	Simo Sorce <simo@redhat.com>
	Mon, 23 Mar 2015 22:00:34 +0000 (18:00 -0400)