feide 0.1

data/CHANGES

@@ -0,0 +1,3 @@
+2012-06-22: Version 0.1
+
+ - Initial release

data/README.md

@@ -0,0 +1,49 @@
+FEIDE
+=====
+
+Library that aids in making a SAML Service Provider for the FEIDE SAML Identity Provider.
+
+The main part of this library is a Rack middelware, making it easy to
+integrate with Rails, Sinatra, or any other Rack based frameworks.
+
+Install
+-------
+
+    gem install feide
+
+Usage
+-----
+
+See examples/sinatra.rb
+
+Author
+------
+
+Kjell-Magne Øierud (kjellm AT oierud DOT net)
+	
+Bugs
+----
+
+Report bugs to http://github.com/kjellm/feide/issues
+	
+License
+-------
+
+(The MIT License)
+
+Copyright © 2012 Kjell-Magne Øierud
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of this software and
+associated documentation files (the ‘Software’), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be included in all copies or substantial
+portions of the Software.
+
+THE SOFTWARE IS PROVIDED ‘AS IS’, WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT
+LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN
+NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
+WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/examples/sinatra.rb

@@ -0,0 +1,36 @@
+require 'sinatra'
+require 'saml'
+require 'feide_sp'
+
+##### CONFIGURATION
+#
+
+# This need to be set to the same port as the one feide expects to
+# connect to.
+# 
+# (If this happens to be a privileged port and you use RVM, use
+# rvmsudo to start the app.)
+set :port, 80 
+
+# Location of the SAML Metadata document containing an
+# <EntitiesDescriptor> as the root element with both your and feides
+# <EntityDescriptor>s.
+metadata = 'feide.xml'
+
+#
+##### END: CONFIGURATION
+
+meta = SAML::Metadata::Document.new(open(metadata, 'r')).root
+
+use FeideSP, { :meta => meta }
+
+get '/' do
+  <<EOT
+<h1>The Sinatra Example</h1>
+<ul>
+  <li><a href="/feide/signon">Signon</a>
+  <li><a href="/feide/logout">Logout</a>
+EOT
+end
+
+

data/feide.gemspec

@@ -0,0 +1,23 @@
+# encoding: utf-8
+$:.push File.expand_path("../lib", __FILE__)
+require "feide/version"
+
+development_files = %w(Gemfile .gitignore)
+
+Gem::Specification.new do |s|
+  s.name        = "feide"
+  s.version     = Feide::VERSION
+  s.author      = "Kjell-Magne Øierud"
+  s.email       = ["kjellm@oierud.net"]
+  s.homepage    = "https://github.com/kjellm/feide"
+  s.license     = "MIT"
+  s.summary     = %q{Library that aids in making a SAML Service Provider for the FEIDE SAML Identity Provider}
+  s.description = %q{Library that aids in making a SAML Service Provider for the FEIDE SAML Identity Provider}
+  
+  s.files         = `git ls-files`.split("\n") - development_files
+  s.require_paths = ["lib"]
+
+  s.required_ruby_version = '>= 1.8.7'
+
+  s.add_runtime_dependency "saml"
+end

data/lib/feide/version.rb

@@ -0,0 +1,3 @@
+module Feide
+  VERSION = '0.1'
+end

data/lib/feide_sp.rb

@@ -0,0 +1,80 @@
+require 'saml'
+
+class FeideSP
+
+  def initialize(app, opts)
+    @meta = SAML::Metadata::EntitiesDescriptor.from_xml(opts[:meta])
+    @app  = app
+
+    @assertion_consumer_service = @meta.sp.sp_sso_descriptors.first.assertion_consumer_services.first
+    @single_logout_service      = @meta.sp.sp_sso_descriptors.first.single_logout_services.first
+
+    @dispatch = {
+      'GET' => {
+        '/feide/signon' => method(:signon),
+        '/feide/logout' => method(:logout),
+        @single_logout_service.location.path => method(:consume_logout),
+      },
+      'POST' => {
+        @assertion_consumer_service.location.path => method(:consume),
+      },
+    }
+  end
+  
+  def call(env)
+    response = dispatch(env)
+    return response unless response.nil?
+    @app.call(env)
+  end
+
+  def dispatch(env)
+    request = Rack::Request.new(env)
+    return unless %w(GET POST).find(request.request_method)
+    handler = @dispatch[request.request_method][request.path_info]
+    return if handler.nil?
+    handler.call(request)
+  end
+  
+  def signon(request)
+    response = Rack::Response.new
+    saml_req = SAML::Core::AuthnRequest.new
+    saml_req.issuer = @meta.sp.entity_id
+    puts saml_req.to_xml
+    endpoint = @meta.idp.idp_sso_descriptors.first.single_signon_services.first
+    SAML::Bindings.from_endpoint(endpoint).build_request(response, endpoint, saml_req)
+    response
+  end
+
+  def consume(request)
+    response = Rack::Response.new
+    saml_resp = SAML::Bindings.from_endpoint(@assertion_consumer_service).build_response(request)
+    saml_resp.valid?(@meta.idp.idp_sso_descriptors.first.signing_key_descriptor.x509_certificate)
+    str = "<pre>Status success?: #{saml_resp.success?}\n"
+    saml_resp.assertions.first.attribute_statement.attributes.each do |a|
+      str << "  #{a.name} #{a.attribute_values}\n"
+    end
+    response.write(str)
+    response
+  end
+
+  def logout(request)
+    response = Rack::Response.new
+    saml_req = SAML::Core::LogoutRequest.new
+    saml_req.name_id = "test@feide.no"
+    saml_req.issuer = @meta.sp.entity_id
+    endpoint = @meta.idp.idp_sso_descriptors.first.single_logout_services.first
+    SAML::Bindings.from_endpoint(endpoint).build_request(response, endpoint, saml_req)
+    response
+  end
+
+  def consume_logout(request)
+    response = Rack::Response.new
+    saml_resp = SAML::Bindings.from_endpoint(@single_logout_service).build_response(request)
+    str = "<pre>Status success?: #{saml_resp.success?}\n</pre>"
+    response.write(str)
+    response
+  end
+    
+end
+
+

metadata

@@ -0,0 +1,70 @@
+--- !ruby/object:Gem::Specification
+name: feide
+version: !ruby/object:Gem::Version
+  version: '0.1'
+  prerelease: 
+platform: ruby
+authors:
+- Kjell-Magne Øierud
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2012-06-22 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: saml
+  requirement: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    none: false
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: Library that aids in making a SAML Service Provider for the FEIDE SAML
+  Identity Provider
+email:
+- kjellm@oierud.net
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- CHANGES
+- README.md
+- examples/sinatra.rb
+- feide.gemspec
+- lib/feide/version.rb
+- lib/feide_sp.rb
+homepage: https://github.com/kjellm/feide
+licenses:
+- MIT
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: 1.8.7
+required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 1.8.24
+signing_key: 
+specification_version: 3
+summary: Library that aids in making a SAML Service Provider for the FEIDE SAML Identity
+  Provider
+test_files: []