Ioannis Kakavas

> If the operator mounts elasticsearch.yml, I assume they don't want elasticsearch.yml autoconfiguration. I'd just like to add that this is not always the case. Whether, we should accept that...

Nice find @marcpare ! I took a look at opensaml for this and they're not vulnerable since they have [explicit validation](https://git.shibboleth.net/view/?p=java-opensaml.git;a=blob;f=opensaml-saml-impl/src/main/java/org/opensaml/saml/security/impl/SAMLSignatureProfileValidator.java;hb=bf1390bc8e4116f12ae5d965c221d0c5fb0aa482#l129) for (among other things) signatures. I was wondering if...

What fails, how and under which circumstances ?

Where does this timestr comes from ?Is it an `IssueInstant`, a `NotBeforeOrAfter` ? Can we get the stacktrace ? I think this is a valid bug and we probably need...

That'd be great Scott, thanks!

This only happens when SAMLMirrorFrontend is used. What actually happens is that metadata are read again because the configuration is reloaded every time the SAMLMirrorFrontend has to handle an Authentication...

I only use setup.py in order to build the executable for windows. It is not distributed and is not to be run on user systems. As such, I don't see...

Ok, I see your point. I ll check your patch and will find a way to have it working for both.

Please, don't talk like that. Apart from being plain wrong, this is no way to converse on a public forum. On Mar 19, 2017 11:22 AM, "AxRealGG" wrote: > @petterreinholdtsen...

I'll close all related issues and keep track of the problem here .I just submitted cree.py for validation, I'm not very optimistic that it will fit any of the -...