OIOSAML for Java release 2.0.7 has been made available. This release
contains the following changes
- Fixed an issue in Development Mode, where a missing return
statement would case the flow to continue after attempting to send a
response to the client
- Fixed an issue where oiosaml in combination with 3rd party JCE
providers would not correctly validate a SHA-256 based signature on logout.
You only need to update to this version if you are encountering one
of the two bugs above, otherwise 2.0.6 will work fine for you.
The code is still available through Softwarebørsen SVN, and can be
The binary artifacts are distributed as Maven dependencies, and can
be located here