@@ -456,14 +456,14 @@ In addition to the required settings data (idp, sp), extra settings can be defin
456456 // 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha256'
457457 // 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha384'
458458 // 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha512'
459- " signatureAlgorithm" : " http://www.w3.org/2000/09 /xmldsig#rsa-sha1 "
459+ " signatureAlgorithm" : " http://www.w3.org/2001/04 /xmldsig-more #rsa-sha256 "
460460
461461 // Algorithm that the toolkit will use on digest process. Options:
462462 // 'http://www.w3.org/2000/09/xmldsig#sha1'
463463 // 'http://www.w3.org/2001/04/xmlenc#sha256'
464464 // 'http://www.w3.org/2001/04/xmldsig-more#sha384'
465465 // 'http://www.w3.org/2001/04/xmlenc#sha512'
466- " digestAlgorithm" : " http://www.w3.org/2000/09/xmldsig#sha1 "
466+ " digestAlgorithm" : " http://www.w3.org/2001/04/xmlenc#sha256 "
467467 },
468468
469469 // Contact information template, it is recommended to supply
@@ -787,7 +787,7 @@ else:
787787
788788 security = self .__settings.get_security_data()
789789 if ' logoutResponseSigned' in security and security[' logoutResponseSigned'
790- parameters[' SigAlg' = OneLogin_Saml2_Constants.RSA_SHA1
790+ parameters[' SigAlg' = OneLogin_Saml2_Constants.RSA_SHA256
791791 parameters[' Signature' = self .build_response_signature(logout_response, parameters.get(' RelayState' None ))
792792
793793 return self .redirect_to(self .get_slo_url(), parameters)
0 commit comments