top | item 28085307 (no title) grawity | 4 years ago We do retrieve SAML federation metadata daily, but the metadata feed is signed using a pinned long-term key of the federation manager, so there's no reliance on WebPKI or even TLS. (Not Shibboleth, but it would be SignatureValidationFilter there.) discuss order hn newest No comments yet.
No comments yet.