Merge pull request #129 from jkakavas/signing_sane_defaults

Explicitly enable signature checking in example config as a sane default

Author: johanlundberg

example/plugins/backends/saml2_backend.yaml.example

@@ -15,6 +15,7 @@ config:
     entityid: <base_url>/<name>/proxy_saml2_backend.xml
     service:
       sp:
+        want_response_signed: true
         allow_unsolicited: true
         endpoints:
           assertion_consumer_service:
@@ -24,4 +25,4 @@ config:
           - [<base_url>/<name>/disco, 'urn:oasis:names:tc:SAML:profiles:SSO:idp-discovery-protocol']
         name_id_format: 'urn:oasis:names:tc:SAML:2.0:nameid-format:transient'
   # disco_srv must be defined if there is more than one IdP in the metadata specified above
-  disco_srv: http://disco.example.com
+  disco_srv: http://disco.example.com