(CVE-2025-25291, CVE-2025-25292) allow SAML authentication bypass (CVSS 8.8). Update to versions 1.12.4 or 1.18.0 now.
SAML is an open standard written in XML and the foundation of single sign-on capabilities. It eliminates the need for users to sign in and out with unique credentials for every application they are ...
Security Assertion Markup Language streamlines authentication by letting users access multiple applications with one set of ...
Traditional password-based authentication fails at enterprise scale. Enterprise SSO protocols address these issues through standardized authentication flows and centralized identity governance.
idp-ca-path path Optional path to a CA certificate PEM file for the IdP (env SAML_PROXY_IDP_CA_PATH) -idp-metadata-url URL URL of the IdP's metadata XML, can be a local file by specifying the file:// ...
SAML (Security Assertion Markup Language ... Generally the problem is in formatting of the xml or missing information expected by one of the parties (EntityID or Attribute Consume Service Endpoint).
What was considered best practice yesterday does not hold true today and this is especially relevant when it comes to XML sitemaps, which are almost as old as SEO itself. The problem is ...
As of 2021 there are only few SAML libraries, written in Go ... also has an implementation of the XML signing which is used in this library. The full functionality of this library is and stays open ...