From f7f6aef8605b9874ed121d88195d2f6dac5f702e Mon Sep 17 00:00:00 2001
From: Giuseppe De Marco <giuseppe.demarco@unical.it>
Date: Sun, 21 Jul 2019 01:18:18 +0200
Subject: [PATCH] Disabled weak algorithms following Kantara SAML V2.0
 Implementation Profile for Federation Interoperability

---
 src/saml2/algsupport.py | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/saml2/algsupport.py b/src/saml2/algsupport.py
index 5134c0391..b7ae8c0c4 100644
--- a/src/saml2/algsupport.py
+++ b/src/saml2/algsupport.py
@@ -6,7 +6,7 @@
 __author__ = 'roland'
 
 DIGEST_METHODS = {
-    "hmac-md5": 'http://www.w3.org/2001/04/xmldsig-more#md5', # test framework only!
+    #"hmac-md5": 'http://www.w3.org/2001/04/xmldsig-more#md5', # test framework only!
     "hmac-sha1": 'http://www.w3.org/2000/09/xmldsig#sha1',
     "hmac-sha224": 'http://www.w3.org/2001/04/xmldsig-more#sha224',
     "hmac-sha256": 'http://www.w3.org/2001/04/xmlenc#sha256',
@@ -16,7 +16,7 @@
 }
 
 SIGNING_METHODS = {
-    "rsa-md5": 'http://www.w3.org/2001/04/xmldsig-more#rsa-md5',
+    #"rsa-md5": 'http://www.w3.org/2001/04/xmldsig-more#rsa-md5',
     "rsa-ripemd160": 'http://www.w3.org/2001/04/xmldsig-more#rsa-ripemd160',
     "rsa-sha1": 'http://www.w3.org/2000/09/xmldsig#rsa-sha1',
     "rsa-sha224": 'http://www.w3.org/2001/04/xmldsig-more#rsa-sha224',