I'm implementing NemLog-in3 / OIOSAML 3 authentication in my .NET Core web application. With great success so far. I have a question though, about the logging requirements for OIOSAML integrations. There is a list of things that must be validated and logged for all assertions. For example assertion ID, certificate validation results, user session id etc.
I have implemented a new event listener for the static EventSource logger from Microsoft, since i can see that you're emitting log events to that logger, in your NuGet package.
See ing the log messages, made me wonder if there is a bug or if it's intensional to log the type instead of the actual value? See picture below.
It looks like a bug, it is not intended to log the type information.
The default logging in the library do not support the OIOSAML logging requirements at all. Connected to OIOSAML logging requirements