Hello,

I have two questions, if you don't mind:
1. I have a LogoutResponse via redirect (HTTP GET) as follows: /logout?SAMLResponse=...&Signature=...&SigAlg=... . This type of message originates from EntraID (formerly Azure).
This SAMLResponse does not internally contain a signature. How can I check the signature since parse_logout_request_response doesn't accept SigAlg and Signature parameters, unlike parse_logout_request?
2. Secondly, if my LogoutResponse is like /logout?SAMLResponse (without SigAlg or Signature parameters), how can I be sure that it contains a valid signature? Can I rely on want_assertions_or_response_signed, which is used in AuthnResponse, but not in LogoutResponse(StatusResponse)?

Thank you,