From 39978a0ece4dc66f653a161d56b5af4f455ead0d Mon Sep 17 00:00:00 2001
From: Mark Stosberg <mark@rideamigos.com>
Date: Wed, 14 Sep 2016 11:09:22 -0400
Subject: [PATCH] Fixes #170: Clarify that the certificate are looking for is:

1. public, not private
2. a signing certificate and not an encryption certificate
---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 491ad68e3..c4bbae714 100644
--- a/README.md
+++ b/README.md
@@ -117,7 +117,7 @@ Authentication requests sent by Passport-SAML can be signed using RSA-SHA1. To s
     privateCert: fs.readFileSync('./cert.pem', 'utf-8')
 ```
 
-It is a good idea to validate the incoming SAML Responses. For this, you can provide the Identity Provider's certificate using the `cert` confguration key:
+It is a good idea to validate the incoming SAML Responses. For this, you can provide the Identity Provider's pulbic signing certificate using the `cert` confguration key:
 
 ```javascript
     cert: 'MIICizCCAfQCCQCY8tKaMc0BMjANBgkqh ... W=='