fix: prefer REDIRECT binding for logout

Without this setting, the SP will try SOAP on UU IdP's for no apparent reason
CentreForDigitalHumanities · Jul 3, 2023 · 1028f38 · 1028f38
1 parent e58d7e1
commit 1028f38
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/src/cdh/federated_auth/saml/settings.py b/src/cdh/federated_auth/saml/settings.py
@@ -50,6 +50,8 @@
 }
 
 SAML_DEFAULT_BINDING = saml2.BINDING_HTTP_REDIRECT  # or saml2.BIND_HTTP_POST
+SAML_LOGOUT_REQUEST_PREFERRED_BINDING = saml2.BINDING_HTTP_REDIRECT # or saml2.BIND_HTTP_POST
+
 # Set this to 'False' if your app needs to be paranoid. Generally not needed.
 SAML_IGNORE_LOGOUT_ERRORS = True
 SAML_SESSION_COOKIE_NAME = 'saml_session'