Docs: Clarify difference between SHA1 thumbprint and SHA SAML setting
The text under Certificate fingerprint
reads:
SHA1 fingerprint of the SAML token signing certificate. Get this from your identity provider, where it can also be called "Thumbprint".
Is SHA1
correct?
For security reasons, it's often recommended that SHA256 is used. For basic SAML at least (not sure about SCIM), this works.
It would probably be best to revise as otherwise people might thing SHA1 is required for our SAML to work. (There's at least one customer/prospect that did.)
If correction is needed, need to edit the locale/gitlab.pot
files.
Proposed resolution
Docs update to clarify terms. See #33390 (comment 227103329)
Edited by Cynthia "Arty" Ng