Scott Koranda writes:
There is a pull request with the functionality you
need.
I ended up deploying two of Scott's outstanding pull requests:
https://github.com/rohe/pysaml2/pull/483 (Enable signature verification
for MDQ)
https://github.com/rohe/pysaml2/pull/485 (Add
want_assertions_or_response_signed functionality)
For my purposes I needed both of those changes in a single repository,
so I first forked rohe/pysaml2 on GitHub. Next, I navigated to Scott's
fork of pysaml2, selected the mdq_check_signature branch, clicked "New
Pull Request", and changed the base fork from rohe/pysaml2 to mine.
This created a pull request in my fork's master branch that I then
merged via GitHub's web interface. I repeated these steps with Scott's
want_assertions_or_response_signed branch.
Once Scott's changes get accepted into a formal release of pysaml2, I'll
trash my fork and go back to deploying pysaml2 from PyPI.
Best wishes,
Matthew
--
"The lyf so short, the craft so longe to lerne."