Updating to new pysaml2 release

[WebSpider]

Pysaml2 tagged a release about a week ago. My tests find it to be compatible, and it solves quite a few bugs.

Let's use it in djangosaml2 as well

[knaperek]

Thanks, I already have a branch open for this; just need to fix some tests on Python 3 first.
Interestingly, Travis did not pick up this PR...

[utek]

Any progress on this PR?

safety (pyup.io) is reporting 2 security issues with version 4.4.0 and it would be great if we could update version used in djangosaml2:

pysaml2                    │ 4.4.0     │ <=4.4.0                  │ 35700    │
pysaml2 version 4.4.0 and older accept any password when run with python optimizations enabled. This allows attackers to log in as any user without knowing their password. 


pysaml2                    │ 4.4.0     │ <=4.4.0                  │ 35699    │
Python package pysaml2 version 4.4.0 and earlier reuses the initialization vector across encryptions in the IDP server, resulting in weak encryption of data.

[knaperek]

Didn't have time to look at this, but this PR breaks the tests on Python3. For some reason this PR was not picked up by Travis, but check my upgrade-pysaml2 branch. Will be happy to accept a patch for this should you figure out how to fix it :-)

[GertBurger]

@knaperek I attempted to run the py3 tests locally and I could not get them to succeed on the master branch so I have a feeling the version bump didn't cause it. No idea why travis tests passed though.

[vkurup]

Hi @knaperek, I've submitted a version that gets tests to pass in #122.

[WebSpider]

Closing this as it is solved in #122