fix #280: better using pysaml2 SPConfig loader instead of global django settings!

Author: peppelinux

djangosaml2/middleware.py

@@ -65,6 +65,7 @@ def process_response(self, request, response):
                             "request completed. The user may have logged "
                             "out in a concurrent request, for example."
                         )
+
                     response.set_cookie(
                         self.cookie_name,
                         request.saml_session.session_key,

djangosaml2/views.py

@@ -240,14 +240,14 @@ def get(self, request, *args, **kwargs):
 
         # SSO options
         sign_requests = getattr(conf, '_sp_authn_requests_signed', False)
-
         if sign_requests:
-            csc = settings.SAML_CONFIG['service']['sp']
-            sso_kwargs["sigalg"] = csc.get('signing_algorithm',
-                                           saml2.xmldsig.SIG_RSA_SHA256)
-            sso_kwargs["digest_alg"] = csc.get('digest_algorithm',
-                                               saml2.xmldsig.DIGEST_SHA256)
-
+            sso_kwargs["sigalg"] = getattr(conf, '_sp_signing_algorithm',
+                                           saml2.xmldsig.SIG_RSA_SHA256
+            )
+            sso_kwargs["digest_alg"] = getattr(conf,
+                                               '_sp_digest_algorithm',
+                                               saml2.xmldsig.DIGEST_SHA256
+            )
         # pysaml needs a string otherwise: "cannot serialize True (type bool)"
         if getattr(conf, '_sp_force_authn', False):
             sso_kwargs['force_authn'] = "true"