goauthentik · BeryJu · Jan 22, 2026 · Jan 21, 2026
@@ -26,7 +26,7 @@
 from authentik.sources.saml.models import SAMLSource
 from authentik.sources.saml.processors.constants import (
     NS_MAP,
-    SAML_BINDING_REDIRECT,
+    SAML_BINDING_POST,
     SAML_NAME_ID_FORMAT_EMAIL,
     SAML_NAME_ID_FORMAT_UNSPECIFIED,
 )
@@ -113,7 +113,7 @@ def test_signed_valid(self):
         # First create an AuthNRequest
         request_proc = RequestProcessor(self.source, http_request, "test_state")
         auth_n = request_proc.get_auth_n()
-        self.assertEqual(auth_n.attrib["ProtocolBinding"], SAML_BINDING_REDIRECT)
+        self.assertEqual(auth_n.attrib["ProtocolBinding"], SAML_BINDING_POST)
 
         request = request_proc.build_auth_n()
         # Now we check the ID and signature

@@ -11,12 +11,13 @@
 from authentik.providers.saml.utils import get_random_id
 from authentik.providers.saml.utils.encoding import deflate_and_base64_encode
 from authentik.providers.saml.utils.time import get_time_string
-from authentik.sources.saml.models import SAMLBindingTypes, SAMLSource
+from authentik.sources.saml.models import SAMLSource
 from authentik.sources.saml.processors.constants import (
     DIGEST_ALGORITHM_TRANSLATION_MAP,
     NS_MAP,
     NS_SAML_ASSERTION,
     NS_SAML_PROTOCOL,
+    SAML_BINDING_POST,
     SIGN_ALGORITHM_TRANSFORM_MAP,
 )
 
@@ -63,7 +64,7 @@ def get_auth_n(self) -> Element:
         auth_n_request.attrib["Destination"] = self.source.sso_url
         auth_n_request.attrib["ID"] = self.request_id
         auth_n_request.attrib["IssueInstant"] = self.issue_instant
-        auth_n_request.attrib["ProtocolBinding"] = SAMLBindingTypes(self.source.binding_type).uri
+        auth_n_request.attrib["ProtocolBinding"] = SAML_BINDING_POST
         auth_n_request.attrib["Version"] = "2.0"
         # Create issuer object
         auth_n_request.append(self.get_issuer())