Source of CHANGELOG - Zabbix

* Adjusted acs endpoint to extract NameQualifier and SPNameQualifier from SAMLResponse. Adjusted single logout service to provide NameQualifier and SPNameQualifier to logout method. Add getNameIdNameQualifier to Auth and SamlResponse. Extend logout method from Auth and LogoutRequest constructor to support SPNameQualifier parameter. Align LogoutRequest constructor with SAML specs

CHANGELOG

=========

v3.4.1

* Add setSchemasPath to Auth class and fix backward compatibility

v.3.4.0

* Support rejecting unsolicited SAMLResponses.

* Support stric destination matching.

* Reject SAMLResponse if requestID was provided to the validotr but the InResponseTo attributeof the SAMLResponse is missing

* Check destination against the getSelfURLNoQuery as well on LogoutRequest and LogoutResponse as we do on Response

* Improve getSelfRoutedURLNoQuery method

* Only add responseUrl to the settings if ResponseLocation present in the IdPMetadataParser

* Remove use of $_GET on static method validateBinarySign

* Fix error message when Assertion and NameId are both encrypted (not supported)

v.3.3.1

* Update xmlseclibs to 3.0.4

* Remove Comparison atribute from RequestedAuthnContext when setting has empty value

v.3.3.0

* Set true as the default value for strict setting

* Relax comparision of false on SignMetadata

* Fix CI

v.3.2.1

* Add missed nameIdValueReq parameter to buildAuthnRequest method

v.3.2.0

* Add support for Subjects on AuthNRequests by the new parameter nameIdValueReq

* Support SLO ResponseLocation

* [#344](https://github.com/onelogin/php-saml/issues/344) Raise errors on IdPMetadataParser::parseRemoteXML and IdPMetadataParser::parseFileXML

* [#356](https://github.com/onelogin/php-saml/issues/356) Support 'x509cert' and 'privateKey' on signMetadata security setting

v.3.1.1

* Force to use at least xmlseclibs 3.0.3 for security reasons

* [#367](https://github.com/onelogin/php-saml/pull/367) Move the creation of the AuthnRequest to separate function

* Set strict=true on config examples

* Move phpunit.xml

v.3.1.0

* Security improvement suggested by Nils Engelbertz to prevent DDOS by expansion of internally defined entities (XEE)

* Fix setting_example.php servicename parameter

v.3.0.0

* Remove mcrypt dependency. Compatible with PHP 7.2

* xmlseclibs now is not part of the toolkit and need to be installed from original source

v.2.18.0

* Support rejecting unsolicited SAMLResponses.

* Support stric destination matching.

* Reject SAMLResponse if requestID was provided to the validotr but the InResponseTo attributeof the SAMLResponse is missing

* Check destination against the getSelfURLNoQuery as well on LogoutRequest and LogoutResponse as we do on Response

* Improve getSelfRoutedURLNoQuery method

* Only add responseUrl to the settings if ResponseLocation present in the IdPMetadataParser

* Remove use of $_GET on static method validateBinarySign

* Fix error message when Assertion and NameId are both encrypted (not supported)

v.2.17.1

* Update xmlseclibs to 3.0.4

* Remove Comparison atribute from RequestedAuthnContext when setting has empty value

v.2.17.0

* Set true as the default value for strict setting