Add fixes for djangosaml2

local_settings_example.py

@@ -538,6 +538,12 @@
         "service": {
             "sp": {
                 "name": "RELATE SAML2 SP",
+
+                # Django sets SameSite attribute on session cookies,
+                # which causes problems. Work around that, for now.
+                # https://github.com/peppelinux/djangosaml2/issues/143#issuecomment-633694504
+                "allow_unsolicited": True,
+
                 "name_id_format": saml2.saml.NAMEID_FORMAT_TRANSIENT,
                 "endpoints": {
                     # url and binding to the assertion consumer service view

relate/settings.py

@@ -89,6 +89,8 @@
     "relate.utils.MaintenanceMiddleware",
     "social_django.middleware.SocialAuthExceptionMiddleware",
 )
+if local_settings.get("RELATE_SIGN_IN_BY_SAML2_ENABLED"):
+    MIDDLEWARE = MIDDLEWARE + ("djangosaml2.middleware.SamlSessionMiddleware",)
 
 # }}}
 
@@ -333,6 +335,8 @@
 
 SAML_CREATE_UNKNOWN_USER = True
 
+SAML_SESSION_COOKIE_NAME = 'relate_saml_session'
+
 # }}}
 
 # vim: foldmethod=marker