Der findes en nyere version af resourcen her

oiosaml.java 2.0.7

OIOSAML for Java release 2.0.7 has been made available. This release contains the following changes

  • Fixed an issue in Development Mode, where a missing return statement would case the flow to continue after attempting to send a response to the client
  • Fixed an issue where oiosaml in combination with 3rd party JCE providers would not correctly validate a SHA-256 based signature on logout.

You only need to update to this version if you are encountering one of the two bugs above, otherwise 2.0.6 will work fine for you.

Code repository

The code is still available through Softwarebørsen SVN, and can be located here


Maven repository

The binary artifacts are distributed as Maven dependencies, and can be located here



Private contact

Bob Rao

Is there anywhere I can privately report a potential security vulnerability?

Hi Bob,

I send you a private message - just send it directly to me, and I'll look into it.