Hello,

It seems that recently there was some changes in Okta - saml2aws no longer works sadly.
It gives an error: Unknown document type error authenticating to IdP

I did check it with --verbose. I cant provide full response publicly (I can in private), but here is the start of response:
`DEBU[0010] Unknown document type doc="<!--[if IE 7]><html clas

I have a rather complex setup using simpleSAMLphp to run a number of service providers. For regionalization reasons (thanks, GDPR), they all respond to the same entityID. My primary SP also includes the regional ACS endpoints so that folks at the various regions can be passed along appropriately.

I would like the ability to be able to configure certain parts of the SP metadata output (ACS endp

Man-in-the-Middle
commons-httpclient:commons-httpclient is a HttpClient component of the Apache HttpComponents project.

Affected versions of this package are vulnerable to Man-in-the-Middle (MitM). due to not verifing the requesting server's hostname agains existing domain names in the SSL Certificate. The AbstractVerifier does not properly verify that the server hostname matches a dom

Would it be possible to make aws-google-auth pop up the standard google auth webpage (Normally lets you pick a google account) instead of asking for username+password in the CLI?

This would be nice as I'm already logged into google and so wouldn't need to re-enter my user+pass, and it would also dodge the annoying captcha challenge.

The Exception 'str' object has no attribute 'c_namespace' throws in the web page, without let the users logout.

Python 3.5.2 (Ubuntu 16.04)

Code Version

master branch

Expected Behavior

Logout without exceptions

Steps to Reproduce

Execute the test in example folder: ./all.sh start
Login as roland dianakra, then logout

Hey, sorry for the bad title
Essentially, the strings provided by Burp's deocder (after url and Base64 decoding) and Raider are different in that the raider XML parser has attempted to "fix" the document and has added elements such as

   <?xml version="1.0" encoding="UTF-8"?>

also it has rearranged the document's elements or the attributes of the elements
That makes raider fail to produc

I wondered if there should be an examples directory that had some different example deployments. It might be "handy" for new implementations? For example. We had an "existing" rails application that uses "devise" for user authentication / management. We just wanted to add the ability for it to be the IdP. It turns out that is super easy, once you have fought it long enough ;)

Devise Example

When Show extra code is checked, the guide's extra code is shown first and then the exercise's extra code is appended to it.

A guide's extra code might be used in many exercises but not all of them, and showing all of it when it's not needed adds confusion to the exercise.

This guide could benefit from this feature; I'

It would be nice to be able to use the federated credentials and launch a new console session directly from the application