passport-saml - npm Package Compare versions

Comparing version 0.33.0 to 0.34.0

lib/passport-saml/saml.js

@@ -586,3 +586,3 @@ var zlib = require('zlib');
       //   potential risk vector for signature scope issues, so treat this as an invalid signature
-      throw new Error('Invalid signature');
+      throw new Error('Invalid signature: multiple assertions');
     }
@@ -616,3 +616,3 @@
               !self.validateSignature(decryptedXml, decryptedAssertions[0], certs))
-            throw new Error('Invalid signature');
+            throw new Error('Invalid signature from encrypted assertion');
 
@@ -645,3 +645,3 @@ self.processValidlySignedAssertion(decryptedAssertions[0].toString(), inResponseTo, callback);
                   if (self.options.cert && !validSignature) {
-                    throw new Error('Invalid signature');
+                    throw new Error('Invalid signature: NoPassive');
                   }
@@ -678,3 +678,3 @@ return callback(null, null, false);
           if (self.options.cert && !validSignature) {
-            throw new Error('Invalid signature');
+            throw new Error('Invalid signature: No response found');
           }
@@ -923,3 +923,3 @@ var logoutResponse = doc.LogoutResponse;
       if (self.options.cert && !self.validateSignature(xml, dom.documentElement, certs)) {
-        return callback(new Error('Invalid signature'));
+        return callback(new Error('Invalid signature on documentElement'));
       }
@@ -926,0 +926,0 @@

package.json

 {
   "name": "passport-saml",
-  "version": "0.33.0",
+  "version": "0.34.0",
   "license" : "MIT",
@@ -5,0 +5,0 @@ "keywords": [

README.md

@@ -242,6 +242,19 @@ Passport-SAML
 
-A single instance of passport-saml will only authenticate users against a single identity provider.  If you have a use case where different logins need to be routed to different identity providers, you can create multiple instances of passport-saml, and either dispatch to them with your own routing code, or use a library like https://www.npmjs.org/package/passports.
+A single instance of passport-saml will only authenticate users against a
+single identity provider.  If you have a use case where different logins need
+to be routed to different identity providers, you can create multiple instances
+of passport-saml, and either dispatch to them with your own routing code, or
+use a library like https://www.npmjs.org/package/passports.
 
+To create multiple instances of `passport-saml` yourself, you'll end use calling
+`passport.use()` multiple times with a unique name for each strategy. You
+either need to pass the custom strategy name as the first argument to
+`passport.use`, or use the `name` option described above.
+
+Each instance will need its own callbackUrl as well it's own set of routes
+to handle the outbound redirection, the inbound callback URL and displaying
+the metadata.
+
 ### Is there an example I can look at?
 
 Gerard Braad has provided an example app at https://github.com/gbraad/passport-saml-example/

New alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Fixed alerts

License Policy Violation

License

This package is not allowed per your license policy. Review the package's license to ensure compliance.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

372487

increased by0.14%

Number of lines in readme file

260

increased by5.26%

Worsened metrics

Number of package files

28

decreased by-3.45%

No dependency changes