A generic SAML strategy for OmniAuth
ruby-saml
to 1.4.0 to address security fixes. (638212)With this release ruby-saml
was updated to 1.1.1, which most notably brings support for a SAMLResponse
without a ds:x509certificate
. It is now possible to define the certificate within the settings and use that certificate to validate the responses.