Update README to remove an insecure suggestion (#704)

* Remove insecure suggestion for ADFS federation from README * reflect the mandatory nature of audience
node-saml · Jun 25, 2022 · aef40ff · aef40ff
1 parent b29c243
commit aef40ff
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/docs/adfs/README.md b/docs/adfs/README.md
@@ -51,12 +51,12 @@ passport.use(
       authnContext: [
         "http://schemas.microsoft.com/ws/2008/06/identity/authenticationmethod/password",
       ],
-      // not sure if this is necessary?
-      acceptedClockSkewMs: -1,
       identifierFormat: null,
       // this is configured under the Advanced tab in AD FS relying party
       signatureAlgorithm: "sha256",
       racComparison: "exact", // default to exact RequestedAuthnContext Comparison Type
+      // From the metadata document
+      audience: "https://adfs.acme_tools.com/FederationMetadata/2007-06/FederationMetadata.xml",
     },
     function (profile, done) {
       return done(null, {