Set default SAML signatureAlgorithm value to SHA256

- For the bean. - As suggested in review comments in #2794.
cloudfoundry · Mar 28, 2024 · e0d99bd · e0d99bd
1 parent e652367
commit e0d99bd
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/uaa/src/main/webapp/WEB-INF/spring/saml-providers.xml b/uaa/src/main/webapp/WEB-INF/spring/saml-providers.xml
@@ -302,7 +302,7 @@
     <bean id="fixedHttpMetaDataProvider" class="org.cloudfoundry.identity.uaa.provider.saml.FixedHttpMetaDataProvider" />
 
     <bean id="defaultSamlConfig" class="org.cloudfoundry.identity.uaa.provider.saml.SamlConfigurationBean">
-        <property name="signatureAlgorithm" value="${login.saml.signatureAlgorithm:SHA1}"/>
+        <property name="signatureAlgorithm" value="${login.saml.signatureAlgorithm:SHA256}"/>
     </bean>
 
     <beans profile="fileMetadata">