Comment on Why?
bacon_pdp@lemmy.world 3 weeks ago
A SAML token verification can be implemented correctly in under 50 lines of code. (Without needing anything beyond a basic crypto library for decryption and signature checks ) then you just have a SAML identity to user account mapping table (so that they can have multiple SAML providers and retain access or switch between different accounts).
But yeah, some shady sites use it to get your name and other information. (Which SAML providers should properly inform you about, as they are the ones packing that data based on what the receiving has registered)
bort@sopuli.xyz 3 weeks ago
I have seen multiple implementations of SAML logins, and I have never seen one with less than 500 LoC, and mutliple layers of complexity.
On the other hand I have migrated some (1 i did myself, 2 i just witnessed) of these SAML logins to oauth, and then it became actually 50 LoC.
bacon_pdp@lemmy.world 3 weeks ago
Were they generated by chatGPT?
bort@sopuli.xyz 2 weeks ago
no.