Andrew Stuart

So. This brings up a question that's been working its way into my mind. Namely, how closely should we adhere to the serialization format, versus trying to make the Go...

@fatlotus, by "type extension," I do mean inheritance. There are tons of references in [the spec](https://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf) to "BaseSomething" and "AbstractType" etc. And I'm rather glad that Go doesn't directly support...

@warthog9 I suspect the current issues I'm seeing (same error message as yours) are due to an "Unplanned partial outage." I'm not seeing anything online, but in the Resideo app,...

:+1: from me. Or if my token times out while I'm at some view, I'd prefer to either not have to leave the view I'm in (popup login) or at...

Assuming you have https and http both set up already and running in the same node app, it's as easy as adding: ``` javascript app.use(function(req, res, next) { if(!req.secure) {...

I just fixed this on my own cluster. I had some old APIServer flags setting specific admission plugins, which AFAICT are now unnecessary. I had `PodSecurityPolicy` in that list, though,...

I have the rough beginnings of a [SAML2 client](/andrewstuart/gosaml2) put together, which can decrypt but not yet authenticate (xmldsig and xml-c14n are seriously painful) encrypted SAML assertions from Shibboleth. Thus...

So I'd definitely like to revisit this, as I've made some leaps integrating the separate efforts of @russellhaering (and @phoebesimon) on [their saml2 library](/russellhaering/gosaml2) which did not support decryption but...

Haha so the root of the issue is that SAML is built around the browser, and is asynchronous. Though I'm only familiar with Shibboleth, I think nearly all Identity Providers...

Looks like we're not the first to notice this. This PR should address #40. :smile: