OneLogin's SAML PHP Toolkit v3.2.1

• Add missed nameIdValueReq parameter to buildAuthnRequest method

OneLogin's SAML PHP Toolkit v3.2.0

• Add support for Subjects on AuthNRequests by the new parameter nameIdValueReq
• Support SLO ResponseLocation
• #344 Raise errors on IdPMetadataParser::parseRemoteXML and IdPMetadataParser::parseFileXML
• #356 Support 'x509cert' and 'privateKey' on signMetadata security setting

OneLogin's SAML PHP Toolkit v2.16.0

• Support SLO ResponseLocation
• #344 Raise errors on IdPMetadataParser::parseRemoteXML and IdPMetadataParser::parseFileXML
• Adjusted acs endpoint to extract NameQualifier and SPNameQualifier from SAMLResponse. Adjusted single logout service to provide NameQualifier and SPNameQualifier to logout method. Add getNameIdNameQualifier to Auth and SamlResponse. Extend logout method from Auth and LogoutRequest constructor to support SPNameQualifier parameter. Align LogoutRequest constructor with SAML specs
• Add support for Subjects on AuthNRequests by the new parameter
• Set strict=true on config examples

OneLogin's SAML PHP Toolkit v3.1.1

• Force to use at least xmlseclibs 3.0.3 for security reasons
• #367 Move the creation of the AuthnRequest to separate function
• Set strict=true on config examples
• Move phpunit.xml

OneLogin's SAML PHP Toolkit v3.1.0

• Security improvement suggested by Nils Engelbertz to prevent DDOS by expansion of internally defined entities (XEE)
• Fix bug on settings_example.php

OneLogin's SAML PHP Toolkit v2.15.0

• Security improvement suggested by Nils Engelbertz to prevent DDOS by expansion of internally defined entities (XEE)
• Fix bug on settings_example.php

OneLogin's SAML PHP Toolkit v3.0.0

• Compatible with PHP 5.X and 7.X.
• Commits from master updated to 02 October 2018.

OneLogin's SAML PHP Toolkit v2.14.0

• Add parameter to the decryptElement method to make optional the formatting
• #283 New method of importing a decrypted assertion into the XML document to replace the EncryptedAssertion. Fix signature issues on Signed Encrypted Assertions with default namespace
• Allow the getSPMetadata() method to always include the encryption Key Descriptor
• Change some Fatal Error to Exceptions
• #265 Support parameters at getSPMetadata method
• Avoid calling static method using this

OneLogin's SAML PHP Toolkit v2.13.0

Changelog v.2.13.0:

• Update xmlseclibs with some fixes.
• Add extra protection verifying the Signature algorithm used on SignedInfo element, not only rely on the xmlseclibs verify / verifySignature methods.
• Add getAttributesWithFriendlyName method which returns the set of SAML attributes indexed by FriendlyName
• Fix bug on parseRemoteXML and parseFileXML. Internal calls to parseXML missed the desiredNameIdFormat parameter

OneLogin's SAML PHP Toolkit v2.12.0

Changelog v.2.12.0:

• Improve Time management. Use DateTime/DateTimeZone classes.

• Escape error messages in debug mode

• Improve phpdoc

• Add an extra filter to the url to be used on redirection

• #242 Document that SHA-1 must not be used

• #250 Fixed issue with IdPMetadataParser only keeping 1 certificate when multiple certificates of a single type were provided.

• #263 Fix incompatibility with ADFS on SLO. When on php saml settings NameID Format is set as unspecified but the SAMLResponse has no NameID Format, no NameID Format should be specified on LogoutRequest.