[Satosa-dev] Re: Configuration of response and attribute signing, and signing and digest algorithms

Thanks for the clear breakdown. You’ve highlighted real issues with overlapping config options and inconsistent behavior. Moving signing logic into pysaml2 and supporting a global `sign_alg` with optional overrides sounds like a solid, maintainable approach.