Bugfix: enable strict mode for base64_decode

src/SAML2/HTTPArtifact.php

@@ -100,7 +100,7 @@ public function send(Message $message) : void
     public function receive(): Message
     {
         if (array_key_exists('SAMLart', $_REQUEST)) {
-            $artifact = base64_decode($_REQUEST['SAMLart']);
+            $artifact = base64_decode($_REQUEST['SAMLart'], true);
             $endpointIndex = bin2hex(substr($artifact, 2, 2));
             $sourceId = bin2hex(substr($artifact, 4, 20));
         } else {

src/SAML2/HTTPPost.php

@@ -75,7 +75,7 @@ public function receive(): Message
             throw new \Exception('Missing SAMLRequest or SAMLResponse parameter.');
         }
 
-        $msgStr = base64_decode($msgStr);
+        $msgStr = base64_decode($msgStr, true);
 
         $xml = new \DOMDocument();
         $xml->loadXML($msgStr);

src/SAML2/HTTPRedirect.php

@@ -116,7 +116,7 @@ public function receive(): Message
             throw new \Exception('Unknown SAMLEncoding: '.var_export($data['SAMLEncoding'], true));
         }
 
-        $message = base64_decode($message);
+        $message = base64_decode($message, true);
         if ($message === false) {
             throw new \Exception('Error while base64 decoding SAML message.');
         }

tests/SAML2/HTTPRedirectTest.php

@@ -165,7 +165,9 @@ public function testInvalidRequestData() : void
         $qs = 'SAMLRequest=cannotinflate';
         $_SERVER['QUERY_STRING'] = $qs;
 
-        $this->expectException(\Exception::class, 'Error while inflating');
+        $this->expectException(Exception::class);
+        $this->expectExceptionMessage('Error while base64 decoding SAML message.');
+
         $hr = new HTTPRedirect();
         $request = @$hr->receive();
     }