Skip to content

OneLogin's SAML Python Toolkit v2.4.0

Choose a tag to compare

View all tags
@pitbulk pitbulk released this 27 Feb 15:38
· 141 commits to master since this release
v2.4.0
27bce00

Changelog:

  • Fix vulnerability CVE-2017-11427. Process text of nodes properly, ignoring comments
  • Improve how fingerprint is calcultated
  • Fix issue with LogoutRequest rejected by ADFS due NameID with unspecified format instead no format attribute
  • Be able to invalidate a SAMLResponse if it contains InResponseTo value but no RequestId parameter provided at the is_valid method. See rejectUnsolicitedResponsesWithInResponseTo security parameter (By default deactivated)
  • Fix signature position in the SP metadata
  • Redefine NSMAP constant
Assets 2
Loading