TLDR This post shows how to achieve a full authentication bypass in the Ruby and PHP SAML ecosystem by exploiting several parser-level inconsistencies: including attribute pollution, namespace confusi
This post is a pretty good overview of why oauth2/openid are more popular.
Not to say that oauth/openid have never ever had vulnerabilities of their own, but there is a big difference between “accept these configurations” and what saml is, which is “parse this xml”.
This post is a pretty good overview of why oauth2/openid are more popular.
Not to say that oauth/openid have never ever had vulnerabilities of their own, but there is a big difference between “accept these configurations” and what saml is, which is “parse this xml”.