Hello,
I'm wondering whether the Component Space library does any validation/verification of the scope of SAML attributes that are sent from an IDP or whether this is intended to be done separately?
I'm referring to the scopes that are mentioned in an IDP's shibmd:Scope tags in the metadata.
As part of registering our SP for Open Athens they have asked us to whitelist some scopes for one of their test IDPs and it wasn't clear how to achieve this with Component Space.
|