From 59be72e1c60ad365bd6ac8c3501fcf1db65372e2 Mon Sep 17 00:00:00 2001
From: David Humphrey <david.humphrey@senecacollege.ca>
Date: Thu, 16 Apr 2020 15:55:37 -0400
Subject: [PATCH] Use HTTP-Redirect authentication request binding for SAML

---
 src/backend/web/authentication.js | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/src/backend/web/authentication.js b/src/backend/web/authentication.js
index 4fcf8d95e0..7a452028d4 100644
--- a/src/backend/web/authentication.js
+++ b/src/backend/web/authentication.js
@@ -93,8 +93,7 @@ function init() {
       callbackUrl: SSO_LOGIN_CALLBACK_URL,
       issuer: SAML_ENTITY_ID,
       cert: SSO_IDP_PUBLIC_KEY_CERT,
-      // https://github.com/bergie/passport-saml/issues/226
-      disableRequestedAuthnContext: true,
+      authnRequestBinding: 'HTTP-Redirect',
       signatureAlgorithm: 'sha256',
     },
     function (profile, done) {