Fix ADFS provider and add debug message.

gravitational · Mar 6, 2021 · 66913aa · 66913aa
1 parent 7a1e46f
commit 66913aa
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 1 deletion.
diff --git a/constants.go b/constants.go
@@ -260,6 +260,9 @@ const (
 	// ComponentKube is an Kubernetes API gateway.
 	ComponentKube = "kubernetes"
 
+	// ComponentSAML is a SAML service provider.
+	ComponentSAML = "saml"
+
 	// DebugEnvVar tells tests to use verbose debug output
 	DebugEnvVar = "DEBUG"
 

diff --git a/lib/services/saml.go b/lib/services/saml.go
@@ -181,7 +181,10 @@ func GetSAMLServiceProvider(sc SAMLConnector, clock clockwork.Clock) (*saml2.SAM
 	}
 
 	// adfs specific settings
-	if sc.GetAudience() == teleport.ADFS {
+	if sc.GetProvider() == teleport.ADFS {
+		log.WithFields(log.Fields{
+			trace.Component: teleport.ComponentSAML,
+		}).Debug("Setting ADFS values.")
 		if sp.SignAuthnRequests {
 			// adfs does not support C14N11, we have to use the C14N10 canonicalizer
 			sp.SignAuthnRequestsCanonicalizer = dsig.MakeC14N10ExclusiveCanonicalizerWithPrefixList(dsig.DefaultPrefix)