[jarym]

This is excellent and much needed. SAML is indeed a pain.

Now my question is how safe/secure is your XML parsing? Because that’s been a source of vulnerabilities in other libraries.

[sbauch]

Frankly we're using existing open source to handle this - we use ruby-saml which is maintained by OneLogin for the SAML parsing, but we also wrote a little ts parser for federated metadata files - https://github.com/enterprise-oss/osso-react/blob/main/src/u...

[bawolff]

Well, guess its a good thing for you that ruby-saml is under a real open source license instead of your BS license.