From 174c1d1f58a5372a97a306ce3563994fed95e6fc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Jaime=20Pe=CC=81rez?= <jaime.perez@uninett.no> Date: Fri, 29 Jul 2016 07:36:22 +0200 Subject: [PATCH] Update the upgrade notes. Mention the change in the way NameIDs are processed inside an eduPersonTargetedID, and offer an example on how to process the value. --- docs/simplesamlphp-upgrade-notes-1.14.md | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/docs/simplesamlphp-upgrade-notes-1.14.md b/docs/simplesamlphp-upgrade-notes-1.14.md index f08b5fdca..dc7eda6b4 100644 --- a/docs/simplesamlphp-upgrade-notes-1.14.md +++ b/docs/simplesamlphp-upgrade-notes-1.14.md @@ -3,7 +3,7 @@ Upgrade notes for SimpleSAMLphp 1.14 The `mcrypt` extension is no longer required by SimpleSAMLphp, so if no signatures or encryption are being used, it can be skipped. It is still a requirement for `xmlseclibs` though, so for those verifying or creating signed -documents, or using encryption, is is still needed. +documents, or using encryption, it is still needed. PHP session cookies are now set to HTTP-only by default. This relates to the `session.phpsession.httponly` configuration option. @@ -14,6 +14,15 @@ insecure redirections. The jQuery version in use has been bumped to the latest 1.8.X version. +Service Providers using the eduPersonTargetedID attribute, will get a DOMNodeList object instead of the NameID value. In +order to process the NameID, a SAML2_XML_saml_NameID object can be used: + +```php +$attributes = $as->getAttributes(); +$eptid = $attributes['eduPersonTargetedID'][0]->item(0); +$nameID = new SAML2_XML_saml_NameID($eptid); +``` + The following deprecated files, directories and endpoints have been removed: * `bin/pack.php` -- GitLab