Postman is violating the SAML 2 specs

Postman requires a URL on the SAML SSO configuration page for entityID. This is a clear violation of the SAML 2 specifications, since the standard states clearly that an enityID is a URI, not a URL.

Can anyone tell me why this is, or what source SAML library/vendor is causing this?

For reference, the part of the SAML 2 spec I am referring to in regard to our EntityID is 8.3.6 of the OASIS SAML 2 core spec. Which can be found here:

 8.3.6 Entity Identifier

 ...The syntax of such an identifier is a URI of not more than 1024 characters in length...

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.