GitHub · Where software is built

is:issue state:open

is:issue state:open

Labels Milestones New issue

[BUG] unsigned LogoutResponses fail even with <code>wantAuthnResponseSigned</code> set to false

#411

· akanix42 opened

on Nov 19, 2025

validate Recipient on SubjectConfirmationData inside validly signed SAML assertion == SAML.callbackUrl

#405

· ahacker1-securesaml opened

on Aug 16, 2025

[BUG] discrepency between impacted versions between GHSA-4mxg-3p6v-xgq3 and CVE-2025-54419

#404

· simonc6372 opened

on Aug 13, 2025

Add X.509 Certificate Expiration Validation for IdP Certificates

#401

· mishawakerman opened

on Aug 4, 2025

[ENHANCE] <code>host</code> parameter for <code>getAuthorize*()</code> is not used at all

#381

· pomali opened

on Nov 12, 2024

Missing documentation for the getAuthorizeUrlAsync method

#380

· superhero opened

on Nov 4, 2024

[BUG] When the ID of the response is different from the ID of the assertion, no signature node is found

#378

· znewsham opened

on Sep 11, 2024

[ENHANCE] support <code>passive</code> option to <code>getAuthorizeUrlAsync</code> and <code>getAuthorizeFormAsync</code>

#228

· tjenkinson opened

on Nov 25, 2022

[BUG] Empty and Null Attributes are not returned in profile.attributes

#227

· maxwellgerber opened

on Nov 23, 2022

[ENHANCE] Add test coverage for every exception we throw

#70

· cjbarth opened

on Apr 27, 2022

Improve error handling by throwing a custom error class: <code>NodeSamlError</code>.

#57

· cjbarth opened

on Apr 4, 2022

[ENHANCE] Allow generateServiceProviderMetadata to discover the encryption capabilities of the underlying system

#14

· alexstuart opened

on Jul 26, 2021