Allow RedirectResponse in SAML response handler

Allow custom SAML handlers to redirect after processing an auth response. Fixes #7149 Signed-off-by: Jason Robinson <jasonr@matrix.org>
2024-10-01 01:36:05 -04:00 · 2020-03-26 19:02:35 +02:00 · 2020-03-26 19:02:35 +02:00 · 060e7dce09
commit 060e7dce09
parent 1c1242acba
2 changed files with 5 additions and 0 deletions
--- a/changelog.d/7151.bugfix
+++ b/changelog.d/7151.bugfix
@ -0,0 +1 @@
+Allow custom SAML handlers to redirect after processing an auth response.
--- a/synapse/handlers/saml_handler.py
+++ b/synapse/handlers/saml_handler.py
@ -26,6 +26,7 @@ from synapse.config import ConfigError
 from synapse.http.server import finish_request
 from synapse.http.servlet import parse_string
 from synapse.module_api import ModuleApi
+from synapse.module_api.errors import RedirectException
 from synapse.types import (
    UserID,
    map_username_to_mxid_localpart,
@ -119,6 +120,9 @@ class SamlHandler:

        try:
            user_id = await self._map_saml_response_to_user(resp_bytes, relay_state)
+        except RedirectException:
+            # Raise the exception as per the wishes of the SAML module response
+            raise
        except Exception as e:
            # If decoding the response or mapping it to a user failed, then log the
            # error and tell the user that something went wrong.
				`@ -0,0 +1 @@`
				`Allow custom SAML handlers to redirect after processing an auth response.`