Bump onelogin/php-saml from 4.0.0 to 4.0.1 in /3rdparty

[dependabot]

Bumps onelogin/php-saml from 3.4.1 to 4.0.1.

Release notes

Sourced from onelogin/php-saml's releases.

OneLogin's SAML PHP Toolkit v4.0.1

• Add compatibility with PHP 8.1
  • If null param are provided to trim or preg_match, when PHP 8.1 has deprecation errors enabled, php-saml will raise errors.

OneLogin's SAML PHP Toolkit v4.0.0

• Supports PHP 8.X, drop support PHP < 7.3

OneLogin's SAML PHP Toolkit v3.6.1

• #467 Fix bug on getSelfRoutedURLNoQuery method

OneLogin's SAML PHP Toolkit v3.6.0

• Add AES128_GCM encryption on generateNameId method. New setting parameter encryption_algorithm. If you set a encryption method different than AES128_CBC then the algorithm RSA_OAEP_MGF1P will be used as well instead RSA_1_5
• PHP 8.0 support

OneLogin's SAML PHP Toolkit v3.5.1

• 3.5.0 packagist/github release due a confusion were using the master (2.X branch). I'm releasing 3.5.1 to fix this issue and go back to 3.X branch

3.5.0

• #412 Empty instead of unset the $_SESSION variable
• #433 Fix Incorrect Destination in LogoutResponse when using responseUrl #443
• Update xmlseclibs to 3.1.1
• Add support for SMARTCARD_PKI and RSA_TOKEN Auth Contexts
• Get lib path dinamically
• Check for x509Cert of the IdP when loading settings, even if the security index was not provided
• Support Statements with Attribute elements with the same name enabling the allowRepeatAttributeName setting

Commits

• 247a45c Merge pull request #525 from pitbulk/4.x-dev
• 12fc7b8 Fix typo
• a64dce9 Compatibility with PHP 8.1
• 2130bac Merge pull request #494 from TimWolla/csprng
• 6c6b6b3 Use randomness from a CSPRNG to generate unique IDs for assertions
• ca87a2a Warn about Open Redirect and Reply attacks
• b8214b7 Fix #487. Enable strict check on in_array method
• 83b5529 Add warning about the use of IdpMetadataParser class. If Metadata URLs are pr...
• 1405be2 Add Github Actions support
• f30f506 Release 4.0.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[blizzz]

@dependabot recreate

[Mte90]

Seems that also this PR is require to get a full php8 support for this app?

[blizzz]

the title is misleading, it is an update from 4.0.0 to 4.0.1 in fact.

[Mte90]

Cool so we have just to wait like for santa claus for the new release :-D