Subject and NameId considered mandatory

https://github.com/spring-projects/spring-security/blob/515e8216b18a6b7757f69a949014ede74c9676aa/saml2/saml2-service-provider/src/main/java/org/springframework/security/saml2/provider/service/authentication/OpenSaml4AuthenticationProvider.java#L649

As per the implementation Subject and NameId in subject are considered mandatory and library do not provide any means to override it

But according to SAML2 spec subject and NameId are optional, can we update the validation to have as optional 
![image](https://github.com/spring-projects/spring-security/assets/55949790/f96c54fe-ce2d-4c3a-bbfc-83f829a2355d)
![image](https://github.com/spring-projects/spring-security/assets/55949790/b3bf7ada-696a-4f5c-9f2b-37c07ce0394f)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Subject and NameId considered mandatory #14199

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Subject and NameId considered mandatory #14199

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions