From a0ab47a4aed341fdfec8a819ed2a270e60ee1fbc Mon Sep 17 00:00:00 2001
From: Valentin Samir <valentin.samir@crans.org>
Date: Fri, 24 Jun 2016 21:05:43 +0200
Subject: [PATCH] Allow pgtUrl to be localhost without https

---
 cas_server/views.py | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/cas_server/views.py b/cas_server/views.py
index e431499..149632b 100644
--- a/cas_server/views.py
+++ b/cas_server/views.py
@@ -23,6 +23,7 @@ from django.views.decorators.csrf import csrf_exempt
 
 from django.views.generic import View
 
+import re
 import logging
 import pprint
 import requests
@@ -666,7 +667,10 @@ class ValidateService(View, AttributesMixin):
                     params['username'] = self.ticket.user.attributs.get(
                         self.ticket.service_pattern.user_field
                     )
-                if self.pgt_url and self.pgt_url.startswith("https://"):
+                if self.pgt_url and (
+                    self.pgt_url.startswith("https://") or
+                    re.match("^http://(127\.0\.0\.1|localhost)(:[0-9]+)?(/.*)?$", self.pgt_url)
+                ):
                     return self.process_pgturl(params)
                 else:
                     logger.info(