From b4c557203cf1741de49506207e1502595f531007 Mon Sep 17 00:00:00 2001
From: yunszhang <2516626946@qq.com>
Date: Mon, 27 Jun 2022 11:44:13 +0800
Subject: [PATCH] add nameid format

---
 identity_provider.go | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/identity_provider.go b/identity_provider.go
index 4c7282ae..e2a1c7e2 100644
--- a/identity_provider.go
+++ b/identity_provider.go
@@ -37,6 +37,7 @@ type Session struct {
 	Index      string
 
 	NameID                string
+	NameIDFormat          string
 	Groups                []string
 	UserName              string
 	UserEmail             string
@@ -743,6 +744,10 @@ func (DefaultAssertionMaker) MakeAssertion(req *IdpAuthnRequest, session *Sessio
 		notOnOrAfterAfter = notBefore.Add(MaxIssueDelay)
 	}
 
+	if session.NameIDFormat == "" {
+		session.NameIDFormat = "urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
+	}
+
 	req.Assertion = &Assertion{
 		ID:           fmt.Sprintf("id-%x", randomBytes(20)),
 		IssueInstant: TimeNow(),
@@ -753,7 +758,7 @@ func (DefaultAssertionMaker) MakeAssertion(req *IdpAuthnRequest, session *Sessio
 		},
 		Subject: &Subject{
 			NameID: &NameID{
-				Format:          "urn:oasis:names:tc:SAML:2.0:nameid-format:transient",
+				Format:          session.NameIDFormat,
 				NameQualifier:   req.IDP.Metadata().EntityID,
 				SPNameQualifier: req.ServiceProviderMetadata.EntityID,
 				Value:           session.NameID,