Lacking support for nested StatusCode

When ADFS sends a Responder with StatusDenied, the payload looks like this:

```
<samlp:Status>
    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
        <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:RequestDenied" />
    </samlp:StatusCode>
</samlp:Status>
```

Note that there is a nested StatusCode within a parent StatusCode per [MS-SAMLPR 3.1.4.7.2 Element \<StatusCode\>](https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-samlpr/96b92662-9bf7-4910-ab16-e1c28bce962b).

It seems that right now python-saml lacks support for this nesting ability. It seems that it's [commented out here](https://github.com/mehcode/python-saml/blame/33ed62018efa9ec15b551f309429de510fa44321/saml/schema/samlp.py#L253) -- perhaps because there is no self-referencing ability at the current time? 

Is there any plan to support nested StatusCodes? Alternatively, is there a suggested workaround?

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Lacking support for nested StatusCode #13

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Lacking support for nested StatusCode #13

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions