📄️ Upgrade from lightsaml
litesaml/saml is a high-level rewrite of litesaml/lightsaml. The API is not backwards-compatible — this guide covers every breaking change and shows before/after examples for the most common patterns.
📄️ Upgrading to 3.0 from 2.x
3.0.0 fixes an XML Signature Wrapping (XSW) vulnerability in signature validation and removes the API that made it possible to get it wrong. If your code validates signatures at all, you need to make the change below before upgrading.