local ACS urls falsefully rejected

[ludwigkraatz]

An URL that is compliant to RFC 3986 (URL/URI RFC) and especially is compliant with RFC 6762 (mDNS) is rejected, even though it should not be.

In Detail:

django URLValidator only excepts Non-FQDN: "localhost".
This is a dirty fix. But actually in many scenarios (intranet, local DNS, mDNS) no FQDN is required or desirable.

When wanting to authenticate a ACS URL that matches that criteria - this is an issue.

I created a pull request for django django/django#19095.

So - maybe one of you can lobby for that change - or knows about a quicker solution in authentik itself?!

Thanks for your work!!

best regard
ludwig

EDIT: created django TRAC ticket: https://code.djangoproject.com/ticket/36131

[ludwigkraatz]

authentik/authentik/providers/saml/models.py

Line 43 in 7d8094d

acs_url = models.URLField(verbose_name=_("ACS URL"))

that reference should have been part of the issue - dont know why github didnt include it..

[authentik-automation]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.