341
341
if not (is_secure and is_valid_domain):
342
342
msg = "AssertionConsumerService is not a {} URL."
343
343
raise CannotHandleAssertion(msg.format(acs_domain))
344
354
# Check for team allowance/restriction.
345
355
user = self._django_request.user
346
356
allow_team_list = sp_config.get_allowed_teams_list()
347
357
if allow_team_list and not user.person_in_any_team(allow_team_list):
348
358
msg = "User not allowed to access ACS URL {}."
354
361
# internal implementation