Skip to content

Update xmlseclibs to version 3.1.4 #134

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
johanib merged 2 commits into from
Dec 15, 2025
Merged

Update xmlseclibs to version 3.1.4 #134

johanib merged 2 commits into from
Dec 15, 2025

Conversation

@johanib
Copy link
Contributor

@johanib johanib commented Dec 15, 2025
edited
Loading

Require xmlseclibs 3.1.4

Prior to this change, it was possible to use a version of xmlseclibs that contained security issues.

Mark bundle as incompatible with SF 8

Saml Bundle is not compatible with symfony/http-foundation yet
Prior to this change, this library could be installed alongside symfony/http-foundation 8.
However, this library will break with http-foundation 8, as the generic get() function from the request method is removed.

Split into issue: #135
See \Surfnet\SamlBundle\SAML2\AuthnRequestFactory::createSignedFromHttpRequest
See \Surfnet\SamlBundle\SAML2\AuthnRequestFactory::createAuthnRequestFromHttpRequest

@johanib
Update xmlseclibs to version 3.1.4
e4fff4f 
Prior to this change, it was possible to use a version of xmlseclibs that contained security issues.
@johanib johanib mentioned this pull request Dec 15, 2025
Open
@johanib
Saml Bundle is not compatible with symfony/http-foundation yet
db168a9 
Prior to this change, this library could be installed alongside symfony/http-foundation 8.
However, this library will break with http-foundation 8, as the generic get() function from the request method is removed.

See \Surfnet\SamlBundle\SAML2\AuthnRequestFactory::createSignedFromHttpRequest

See \Surfnet\SamlBundle\SAML2\AuthnRequestFactory::createAuthnRequestFromHttpRequest
@johanib johanib force-pushed the feature/xmlseclibsupdate branch from 5f22c71 to db168a9 Compare December 15, 2025 10:32
@johanib johanib requested review from MKodde and pmeulen December 15, 2025 10:34
pmeulen
pmeulen approved these changes Dec 15, 2025
View reviewed changes
Copy link
Member

@pmeulen pmeulen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@johanib johanib merged commit d393691 into main Dec 15, 2025
2 checks passed
@johanib johanib deleted the feature/xmlseclibsupdate branch December 15, 2025 10:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@pmeulen pmeulen pmeulen approved these changes

@MKodde MKodde Awaiting requested review from MKodde

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@johanib @pmeulen