OneLogin's SAML PHP Toolkit v2.9.0

pitbulk released this 27 Jun 09:27

· 395 commits to master since this release

This 2.9.0 version:

Change the decrypt assertion process.
Add 2 extra validations to prevent Signature wrapping attacks.
Remove reference to wrong NameIDFormat: urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified should be urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
128 Test php7 and upgrade phpunit
Update Readme with more descriptive requestedAuthnContext description and Security Guidelines

Assets 2

Provide feedback