Compare revisions

Johana Supíková · Pavel Břoušek · semantic-release-bot · 7adcf9ea · 7adcf9ea · 7adcf9ea
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
+# [1.6.0](https://gitlab.ics.muni.cz/perun-proxy-aai/python/perun-proxy-utils/compare/v1.5.0...v1.6.0) (2023-06-15)
+
+
+### Features
+
+* extend check_saml with logout ([aa218b5](https://gitlab.ics.muni.cz/perun-proxy-aai/python/perun-proxy-utils/commit/aa218b581ad6c35319617a3479b49863c6c385e0))
+
 # [1.5.0](https://gitlab.ics.muni.cz/perun-proxy-aai/python/perun-proxy-utils/compare/v1.4.0...v1.5.0) (2023-06-14)



--- a/perun/proxy/utils/nagios/check_saml.py
+++ b/perun/proxy/utils/nagios/check_saml.py
@@ -114,28 +114,29 @@ def get_args():
        help="string to expect after successful authentication",
        default="OSCIS",
    )
-    parser.add_argument("--idp-host", help="hostname of IdP", default="id.muni.cz")
    parser.add_argument(
-        "--hosts",
-        nargs="*",
-        default=[],
-        help="space separated list of hostname:ip or hostname:hostname pairs "
-        + "for replacing in all URLs",
+        "--logout-url",
+        help="URL to trigger logout",
+        default="https://inet.muni.cz/pub/appctl/logout",
    )
-    """
    parser.add_argument(
-        "--other-urls",
-        nargs="*",
-        default=[],
-        help="list of more services for testing single sign-on",
+        "--postlogout-string",
+        help="String to expect after successful logout",
+        default="successfully signed out",
+    )
+    parser.add_argument(
+        "--skip-logout-check",
+        action="store_true",
+        help="skip logout check",
    )
+    parser.add_argument("--idp-host", help="hostname of IdP", default="id.muni.cz")
    parser.add_argument(
-        "--other-urls-final",
+        "--hosts",
        nargs="*",
        default=[],
-        help="list of final URLs of the other services for testing single sign-on",
+        help="space separated list of hostname:ip or hostname:hostname pairs "
+        + "for replacing in all URLs",
    )
-    """
    parser.add_argument(
        "--warn-time",
        type=int,
@@ -507,11 +508,24 @@ class SAMLChecker:
                    "WARNING",
                )

-        self.finish(
-            "Authentication took {:.2f} seconds".format(elapsed_seconds),
-            status,
-            auth_time=elapsed_seconds,
-        )
+        if not self.args.skip_logout_check:
+            # test logout
+            logout_html, logout_url = self.initial_request(self.args.logout_url)
+            if self.args.verbose >= 3:
+                print(logout_html)
+            if self.args.postlogout_string not in logout_html:
+                self.finish(
+                    "Missing the testing string {} in the logout response.".format(
+                        self.args.postlogout_string
+                    ),
+                    "CRITICAL",
+                )
+
+            self.finish(
+                "Authentication took {:.2f} seconds".format(elapsed_seconds),
+                status,
+                auth_time=elapsed_seconds,
+            )

    def __init__(self, args):
        self.args = args

--- a/setup.cfg
+++ b/setup.cfg
 [metadata]
-version = 1.5.0
+version = 1.6.0
 license_files = LICENSE
No results found