No, this is a change introduced some time ago in the SAML2 library:
https://github.com/simplesamlphp/saml2/blob/master/src/SAML2/Assertion.php#L553-L569
Any value for eduPersonTargetedID that’s not a NameID is essentially illegal. When we introduced NameID objects that could be easily managed by end users, we started parsing ePTID values to create those objects, and then that means if a string is received, you get that exception. The right fix is to send eduPersonTargetedID as the standard mandates: as a NameID.
> PS. BTW, I've been unable to get SAML Tracer to run with Firefox 60.0.1
> on Mac Sierra OS.
It’s a known Firefox issue, previously only on Windows platforms, now unfortunately replicated to other platforms (it would be funny that they are spreading the bug instead of fixing it, if it weren’t for all the trouble that’s creating). Just right click inside the window and its contents will appear:
https://github.com/UNINETT/SAML-tracer/issues/48
—
Jaime Pérez
Uninett / Feide
jaime...@uninett.no
jaime...@protonmail.com
9A08 EA20 E062 70B4 616B 43E3 562A FE3A 6293 62C2
"Two roads diverged in a wood, and I, I took the one less traveled by, and that has made all the difference."
- Robert Frost