canonix 0.1.1 → 0.1.2

data/.rvmrc

@@ -0,0 +1,2 @@
+rvm_gemset_create_on_use_flag=1
+rvm gemset use canonix

data/VERSION

@@ -1 +1 @@
-0.1.1
+0.1.2

data/canonix.gemspec

@@ -5,11 +5,11 @@
 
 Gem::Specification.new do |s|
   s.name = %q{canonix}
-  s.version = "0.1.1"
+  s.version = "0.1.2"
 
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
-  s.authors = [%q{Brendon Muir}]
-  s.date = %q{2011-06-16}
+  s.authors = ["Brendon Muir"]
+  s.date = %q{2011-07-03}
   s.description = %q{This is based on andrewferk's rewrite for Ruby 1.9 compatibility, but applies 
       relevance's fix to ensure proper canonicalisation. It is intended that this be the new official 
       Ruby Canonicaliser as the other project seems to be abandoned.}
@@ -20,6 +20,7 @@ Gem::Specification.new do |s|
   ]
   s.files = [
     ".document",
+    ".rvmrc",
     "LICENSE",
     "README.rdoc",
     "Rakefile",
@@ -32,12 +33,14 @@ Gem::Specification.new do |s|
     "test/helper.rb",
     "test/saml_assertion.xml",
     "test/saml_expected_canonical_form.xml",
+    "test/saml_with_inclusive_ns_assertion.xml",
+    "test/saml_with_inclusive_ns_expected_canonical_form.xml",
     "test/test_xmlcanonicalizer.rb",
     "tests.watchr"
   ]
   s.homepage = %q{http://github.com/brendon/canonix}
-  s.require_paths = [%q{lib}]
-  s.rubygems_version = %q{1.8.5}
+  s.require_paths = ["lib"]
+  s.rubygems_version = %q{1.5.0}
   s.summary = %q{XML Canonicalizer for Ruby >= 1.92}
 
   if s.respond_to? :specification_version then

data/lib/xml/util/xmlcanonicalizer.rb

@@ -86,7 +86,7 @@ module XML
       end
       
       class XmlCanonicalizer
-        attr_accessor :prefix_list, :logger
+        attr_accessor :prefix_list, :logger, :inclusive_namespaces
         
         BEFORE_DOC_ELEMENT = 0
         INSIDE_DOC_ELEMENT = 1
@@ -108,8 +108,6 @@ module XML
           @prevVisibleNamespacesStart = 0
           @prevVisibleNamespacesEnd = 0
           @visibleNamespaces = Array.new()
-			 @inclusive_namespaces = Array.new()
-          @prefix_list = nil
         end
         
         def add_inclusive_namespaces(prefix_list, element, visible_namespaces)
@@ -132,7 +130,6 @@ module XML
         end
         
         def canonicalize_element(element, logging = true)
-          @inclusive_namespaces = add_inclusive_namespaces(@prefix_list, element, @inclusive_namespaces) if (@prefix_list)
           @preserve_document = element.document()
           tmp_parent = element.parent()
           body_string = remove_whitespace(element.to_s().gsub("\n","").gsub("\t","").gsub("\r",""))
@@ -176,7 +173,7 @@ module XML
           end		
           if (node.node_type() == :element)
             write_element_node(node, visible) if (!node.rendered?())
-				node.rendered=(true)
+				    node.rendered=(true)
           end
           if (node.node_type() == :processing_instruction)
           end
@@ -195,8 +192,8 @@ module XML
           write_attribute_axis(node)
           @res = @res + ">" if (visible)
           node.each_child{|child|
-			 	write_node(child)
-			 }
+    			 	write_node(child)
+    			}
           @res = @res + "</" +node.expanded_name() + ">" if (visible)
           @state = AFTER_DOC_ELEMENT if (visible && state == BEFORE_DOC_ELEMENT)
           @prevVisibleNamespacesStart = savedPrevVisibleNamespacesStart
@@ -228,17 +225,14 @@ module XML
           if (visible && !has_empty_namespace && !is_namespace_rendered(nil, nil)) 
             @res = @res + ' xmlns=""'
           end
-          #TODO: ns of inclusive_list
-#=begin
-          if ((@prefix_list) && (node.to_s() == node.parent().to_s()))
-            #list.push(node.prefix())
-            @inclusive_namespaces.each{|ns|
-              prefix = ns.prefix().split(":")[1]
-              list.push(prefix) if (!list.include?(prefix) && (!node.attributes.prefixes.include?(prefix))) 
+          
+          #: ns of inclusive_list
+          if self.inclusive_namespaces && !self.inclusive_namespaces.empty?
+            self.inclusive_namespaces.each{|prefix|
+              list.push(prefix) if (!list.include?(prefix) && (node.attributes.prefixes.include?(prefix))) 
             }
-				@prefix_list = nil
           end
-#=end
+          
           list.sort!()
           list.each{|prefix|
             next if (prefix == "")
@@ -412,15 +406,15 @@ if __FILE__ == $0
       puts("-----")
       puts(result)
       puts("-----")
-      puts(result.size())			
+      puts(result.size())            
       puts("-----")
       puts(CryptHash.new().digest_b64(result))
     end
   else 
     result = c.canonicalize(document)
   end
-  
+    
   file = File.new(ARGV[1], "wb")
   file.write(result)
   file.close()
-end
+end

data/test/saml_with_inclusive_ns_assertion.xml

@@ -0,0 +1,39 @@
+<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Version="2.0" Destination="http://dev.example.com:8080/sessions/saml" ID="_400c66cfbb96b81e87d6bc96fefdb9b01308849650183" InResponseTo="_107c07d0-7feb-012e-8cc0-001ec2c1cafd" IssueInstant="2011-06-23T17:20:50.183Z">
+  <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://dev.example.com:8080/sessions/saml</saml:Issuer>
+  <samlp:Status>
+    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
+  </samlp:Status>
+  <saml:Assertion xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Version="2.0" ID="_b197baba4544550444357b2b18de57961308849650183" IssueInstant="2011-06-23T17:20:50.183Z">
+    <saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://dev.example.com:8080/sessions/saml</saml:Issuer>
+    <saml:Subject>
+      <saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">mail@example.com</saml:NameID>
+      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+        <saml:SubjectConfirmationData InResponseTo="_107c07d0-7feb-012e-8cc0-001ec2c1cafd" NotOnOrAfter="2011-06-23T17:25:50.183Z" Recipient="http://bmls.screenstepslive.dev/sessions/saml"/>
+      </saml:SubjectConfirmation>
+    </saml:Subject>
+    <saml:Conditions NotOnOrAfter="2011-06-23T17:25:50.183Z" NotBefore="2011-06-23T17:20:50.183Z">
+      <saml:AudienceRestriction>
+        <saml:Audience>Audience</saml:Audience>
+      </saml:AudienceRestriction>
+    </saml:Conditions>
+    <saml:AuthnStatement AuthnInstant="2011-06-23T17:20:50.183Z">
+      <saml:AuthnContext>
+        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml:AuthnContextClassRef>
+      </saml:AuthnContext>
+    </saml:AuthnStatement>
+    <saml:AttributeStatement>
+      <saml:Attribute Name="userId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
+        <saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:anyType">00550000001b7Kf</saml:AttributeValue>
+      </saml:Attribute>
+      <saml:Attribute Name="username" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
+        <saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:anyType">mail@example.com</saml:AttributeValue>
+      </saml:Attribute>
+      <saml:Attribute Name="email" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
+        <saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:anyType">mail@example.com</saml:AttributeValue>
+      </saml:Attribute>
+      <saml:Attribute Name="is_portal_user" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
+        <saml:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" xsi:type="xs:anyType">false</saml:AttributeValue>
+      </saml:Attribute>
+    </saml:AttributeStatement>
+  </saml:Assertion>
+</samlp:Response>

data/test/saml_with_inclusive_ns_expected_canonical_form.xml

@@ -0,0 +1,39 @@
+<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Destination="http://dev.example.com:8080/sessions/saml" ID="_400c66cfbb96b81e87d6bc96fefdb9b01308849650183" InResponseTo="_107c07d0-7feb-012e-8cc0-001ec2c1cafd" IssueInstant="2011-06-23T17:20:50.183Z" Version="2.0">
+  <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://dev.example.com:8080/sessions/saml</saml:Issuer>
+  <samlp:Status>
+    <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"></samlp:StatusCode>
+  </samlp:Status>
+  <saml:Assertion xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_b197baba4544550444357b2b18de57961308849650183" IssueInstant="2011-06-23T17:20:50.183Z" Version="2.0">
+    <saml:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">http://dev.example.com:8080/sessions/saml</saml:Issuer>
+    <saml:Subject>
+      <saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">mail@example.com</saml:NameID>
+      <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+        <saml:SubjectConfirmationData InResponseTo="_107c07d0-7feb-012e-8cc0-001ec2c1cafd" NotOnOrAfter="2011-06-23T17:25:50.183Z" Recipient="http://bmls.screenstepslive.dev/sessions/saml"></saml:SubjectConfirmationData>
+      </saml:SubjectConfirmation>
+    </saml:Subject>
+    <saml:Conditions NotBefore="2011-06-23T17:20:50.183Z" NotOnOrAfter="2011-06-23T17:25:50.183Z">
+      <saml:AudienceRestriction>
+        <saml:Audience>Audience</saml:Audience>
+      </saml:AudienceRestriction>
+    </saml:Conditions>
+    <saml:AuthnStatement AuthnInstant="2011-06-23T17:20:50.183Z">
+      <saml:AuthnContext>
+        <saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified</saml:AuthnContextClassRef>
+      </saml:AuthnContext>
+    </saml:AuthnStatement>
+    <saml:AttributeStatement>
+      <saml:Attribute Name="userId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
+        <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">00550000001b7Kf</saml:AttributeValue>
+      </saml:Attribute>
+      <saml:Attribute Name="username" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
+        <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">mail@example.com</saml:AttributeValue>
+      </saml:Attribute>
+      <saml:Attribute Name="email" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
+        <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">mail@example.com</saml:AttributeValue>
+      </saml:Attribute>
+      <saml:Attribute Name="is_portal_user" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
+        <saml:AttributeValue xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:anyType">false</saml:AttributeValue>
+      </saml:Attribute>
+    </saml:AttributeStatement>
+  </saml:Assertion>
+</samlp:Response>

data/test/test_xmlcanonicalizer.rb

@@ -54,5 +54,27 @@ class TestXmlcanonicalizer < Test::Unit::TestCase
     
     assert_equal xml_expect, xml_canonicalized
   end
+  
+  should "canonicalize a saml file with inclusive namespaces" do
+    fp = File.new(File.dirname(File.expand_path(__FILE__))+'/saml_with_inclusive_ns_assertion.xml','r')
+    xml = ''
+    while (l = fp.gets)
+      xml += l
+    end
+    fp.close
+    
+    xml_canonicalizer = XML::Util::XmlCanonicalizer.new(false,true)
+    rexml = REXML::Document.new(xml);
+    xml_canonicalizer.inclusive_namespaces = %w(ds saml samlp xs)
+    xml_canonicalized = xml_canonicalizer.canonicalize(rexml);
+    
+    fp = File.new(File.dirname(File.expand_path(__FILE__))+'/saml_with_inclusive_ns_expected_canonical_form.xml','r')
+    xml_expect = ''
+    while (l = fp.gets)
+      xml_expect += l
+    end
+    fp.close
+    assert_equal xml_expect, xml_canonicalized #, (xml_canonicalized.to_s + "\n\n" + xml_expect)
+  end
 
 end

metadata

@@ -1,13 +1,8 @@
 --- !ruby/object:Gem::Specification 
 name: canonix
 version: !ruby/object:Gem::Version 
-  hash: 25
   prerelease: 
-  segments: 
-  - 0
-  - 1
-  - 1
-  version: 0.1.1
+  version: 0.1.2
 platform: ruby
 authors: 
 - Brendon Muir
@@ -15,7 +10,8 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2011-06-16 00:00:00 Z
+date: 2011-07-03 00:00:00 +12:00
+default_executable: 
 dependencies: 
 - !ruby/object:Gem::Dependency 
   name: thoughtbot-shoulda
@@ -25,9 +21,6 @@ dependencies:
     requirements: 
     - - ">="
       - !ruby/object:Gem::Version 
-        hash: 3
-        segments: 
-        - 0
         version: "0"
   type: :development
   version_requirements: *id001
@@ -45,6 +38,7 @@ extra_rdoc_files:
 - README.rdoc
 files: 
 - .document
+- .rvmrc
 - LICENSE
 - README.rdoc
 - Rakefile
@@ -57,8 +51,11 @@ files:
 - test/helper.rb
 - test/saml_assertion.xml
 - test/saml_expected_canonical_form.xml
+- test/saml_with_inclusive_ns_assertion.xml
+- test/saml_with_inclusive_ns_expected_canonical_form.xml
 - test/test_xmlcanonicalizer.rb
 - tests.watchr
+has_rdoc: true
 homepage: http://github.com/brendon/canonix
 licenses: []
 
@@ -72,23 +69,17 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
-      hash: 3
-      segments: 
-      - 0
       version: "0"
 required_rubygems_version: !ruby/object:Gem::Requirement 
   none: false
   requirements: 
   - - ">="
     - !ruby/object:Gem::Version 
-      hash: 3
-      segments: 
-      - 0
       version: "0"
 requirements: []
 
 rubyforge_project: 
-rubygems_version: 1.8.5
+rubygems_version: 1.5.0
 signing_key: 
 specification_version: 3
 summary: XML Canonicalizer for Ruby >= 1.92