Comment

Comment on Why?

A SAML token verification can be implemented correctly in under 50 lines of code. (Without needing anything beyond a basic crypto library for decryption and signature checks ) then you just have a SAML identity to user account mapping table (so that they can have multiple SAML providers and retain access or switch between different accounts).

But yeah, some shady sites use it to get your name and other information. (Which SAML providers should properly inform you about, as they are the ones packing that data based on what the receiving has registered)

source

Sort:hotnew top

bort@sopuli.xyz ⁨1⁩ ⁨day⁩ ago

A SAML token verification can be implemented correctly in under 50 lines of code

I have seen multiple implementations of SAML logins, and I have never seen one with less than 500 LoC, and mutliple layers of complexity.

On the other hand I have migrated some (1 i did myself, 2 i just witnessed) of these SAML logins to oauth, and then it became actually 50 LoC.

source
- bacon_pdp@lemmy.world ⁨17⁩ ⁨hours⁩ ago
  Were they generated by chatGPT?
  
  source
  - bort@sopuli.xyz ⁨11⁩ ⁨hours⁩ ago
    no.
    
    source