SaaS talks to UbuntuSSO using openid2.0, which is a completely different protocol (not oauth2), so that bug doesn't apply to SaaS.
SaaS talks to UbuntuSSO using openid2.0, which is a completely different protocol (not oauth2), so that bug doesn't apply to SaaS.