~fkooman/php-saml-sp#7: 
implement better object serialization

currently, serialize/unserialize is used to flatten objects for storing in session data. This should really not be done, especially when storing sessions not on the local filesystem...

Status
REPORTED
Submitter
~fkooman
Assigned to
No-one
Submitted
7 months ago
Updated
7 months ago
Labels
No labels applied.

~fkooman 7 months ago

fkooman/secookie supports JSON serialization now, which is great, but php-saml-sp itself still does serialization as well for some reason, that is not great!

~fkooman 7 months ago

perhaps fkooman/secookie can also implement a serialize/unserialize with hmac support so we can solve this in the easy way...

Register here or Log in to comment, or comment via email.