Merge pull request #125 from uclahs-cds/aholmes-add-requests-timeout

Resolve Bandit warnings regarding `requests` timeout.
uclahs-cds · Sep 26, 2024 · 229d129 · 229d129
2 parents 42ee6e7 + 710f949
commit 229d129
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/src/identity/Ligare/identity/SAML2/__init__.py b/src/identity/Ligare/identity/SAML2/__init__.py
@@ -11,6 +11,8 @@
 from saml2.client import Saml2Client as PySaml2Client
 from saml2.config import Config as PySaml2Config
 
+_SAML2_REQUESTS_TIMEOUT = 10
+
 
 class SAML2Client:
     """
@@ -38,7 +40,10 @@ def _get_saml_client(self, serialized_settings: bytes):
         override_settings = loads(serialized_settings)
 
         if not self._metadata and self._metadata_url:
-            rv: Response = cast(Response, requests.get(self._metadata_url))  # pyright: ignore[reportUnnecessaryCast] - pyright cli reports this is unnecessary, but vscode extension says otherwise
+            rv: Response = cast(
+                Response,
+                requests.get(self._metadata_url, timeout=_SAML2_REQUESTS_TIMEOUT),
+            )  # pyright: ignore[reportUnnecessaryCast]
             self._metadata = rv.text
 
         if not self._metadata: