idnio 2.3.2b → 2.3.3b

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a338413e2b8be16c9974354d15d8bc953e54a3378601a62c07e9609d29c63bb9
-  data.tar.gz: e5c86b39c1e50cf90d652c77957065bc4caeaa28531d0527991fdec6d5344680
+  metadata.gz: afc6ee33e894329b2b06bafc2c6faaecd7ecf4e3c02f57e93a28982472393d6d
+  data.tar.gz: f3f30b000a14b49340bb4cec18033ff806c70ef695e4c2c0c4cab06f5e11acff
 SHA512:
-  metadata.gz: e3b13ab5922d07ba762603c50ff6d783eaa88f485dc925ddfe34fa3551d15411505085ed2adbb90de81d4080d4bf1b2e95b8b4264f9ebe1d0198f7879935ec1e
-  data.tar.gz: 2ef7893e6c0fe821d1b198cca854ace82ad5b8c656ad129e026e705cad6d06dd88d6ea094aca05ff3188c156410ab0dcb84c1f97a87160086690c39b8ce7adae
+  metadata.gz: 2747b53f8ccb2839b001e8aaab3b39aba77673d5a08ca0855c92a1c152bc046da0ab2f0d9e1b0bcdc8722e1bde515f4021750cf18f2d346f25427d335b653e07
+  data.tar.gz: 9098412cc2d768cab5a855b10b78b972440c8f6ad4504dc7ac163c95ebb57ffe17a7c23ec5431faba469f89efffa36c1340d302ef27def9f8a07c1cf36ebeabc

data/lib/idnio/markdown.rb

@@ -7,14 +7,6 @@ module Markdown
   @@buffer = ""
   @@file = nil
 
-
-
-  # private_class_method :new
-
-  #def self.open( file )
-  #  open( file )
-  #end
-
   def self.open( file )
     @@file = file
     if File.exist?( @@file )

data/lib/idnio/program.rb

@@ -9,6 +9,21 @@ module Program
 
   end
 
+  def self.humanize( var )
+    case var
+    when true
+      return "Yes"
+    when false
+      return "No"
+    when "true"
+      return "Yes"
+    when "false"
+      return "No"
+    else
+      return var
+    end
+  end
+
   def self.line
     $log.info "--------------------------------------------------------------"
   end

data/lib/idnio/version.rb

@@ -1,4 +1,4 @@
 module Idnio
-  VERSION = "2.3.2b"
-  UPDATE_DATE = "2019-11-11"
+  VERSION = "2.3.3b"
+  UPDATE_DATE = "2019-11-12"
 end

data/lib/idnio.rb

@@ -70,7 +70,6 @@ module IDNIO
       "Generated on **#{Date.today.iso8601}**",
       "Generated for **#{$tenant}**"
     ] )
-    Markdown.toc
     Markdown.write
 
     #

data/lib/objects/account-profiles.rb

@@ -143,7 +143,7 @@ module AccountProfiles
 
               accountProfile["fields"].each do |field|
 
-                Markdown.text "|#{field['name']}|#{field['type']}|#{field['isRequired']}|#{field['multi']}|#{field['transform']}|\n"
+                Markdown.text "|#{field['name']}|#{field['type']}|#{Program.humanize( field['isRequired'] )}|#{Program.humanize( field['multi'] )}|#{field['transform']}|\n"
 
               end # accountProfile["fields"].each do |field|
 

data/lib/objects/account-schemas.rb

@@ -329,7 +329,7 @@ s
             Markdown.text( "| Name | Description | Type | Multi-valued | Entitlement |\n" )
             Markdown.text( "|------|-------------|------|--------------|-------------|\n" )
             accountSchema["attributes"].each do |attribute|
-              Markdown.text( "|#{attribute["name"]}|#{attribute["description"]}|#{attribute["type"]}|#{attribute["entitlement"]}|#{attribute["multi"]}|\n" )
+              Markdown.text( "|#{attribute["name"]}|#{attribute["description"]}|#{attribute["type"]}|#{Program.humanize( attribute["entitlement"] )}|#{Program.humanize( attribute["multi"] )}|\n" )
             end
           end
         end

data/lib/objects/attribute-sync-config.rb

@@ -108,10 +108,10 @@ module AttributeSyncConfig
 
         unless ( syncAttributes.nil? || syncAttributes["syncAttributes"].nil? || syncAttributes["syncAttributes"].empty? )
           Markdown.h3( "#{source["name"]}" )
-          Markdown.text( "| Account Attribute | Identity Attribute | Enabled |\n" )
-          Markdown.text( "|-------------------|--------------------|---------|\n" )
+          Markdown.text( "| Account Attribute | Identity Attribute | Enabled? |\n" )
+          Markdown.text( "|-------------------|--------------------|----------|\n" )
           syncAttributes["syncAttributes"].each do |syncAttribute|
-            Markdown.text( "|#{syncAttribute["targetAttribute"]}|#{syncAttribute["identityAttributeName"]}|#{syncAttribute["enabled"]}|\n" )
+            Markdown.text( "|#{syncAttribute["targetAttribute"]}|#{syncAttribute["identityAttributeName"]}|#{Program.humanize( syncAttribute["enabled"] )}|\n" )
           end
         end
       end

data/lib/objects/connectors.rb

@@ -133,6 +133,45 @@ module Connectors
     "Workday Accounts"
   ]
 
+  #
+  # Gets a connector script, given type
+  #
+  def self.get_script( type )
+    return @@script_type[ type ]
+  end
+
+  #
+  # Gets a connector by the type
+  #
+  def self.get_by_type( type )
+    return Connectors.get_by_attribute( "type", type )
+  end
+
+  #
+  # Gets a connector by an attribute
+  #
+  def self.get_by_attribute( attribute, value )
+
+    response = IDNAPI.get( "#{$url}/cc/api/connector/list", $token )
+
+    unless response.nil?
+
+        connectors = JSON.parse( response.body )
+
+        connectors['items'].each do |connector|
+
+          if ( connector[ attribute ] == value )
+            return connector
+          end
+
+        end # connectors['items'].each do |connector|
+
+    end # unless response.nil?
+
+    return nil
+
+  end # def self.get_by_attribute( attribute, value )
+
   #
   # Exports Connector configurations.
   #
@@ -216,8 +255,6 @@ module Connectors
   #
   def self.doc
 
-    Markdown.h2( "Connectors" )
-
     response = IDNAPI.get( "#{$url}/cc/api/connector/list", $token )
 
     case response
@@ -225,17 +262,18 @@ module Connectors
 
       connectors = JSON.parse( response.body )
 
+      Markdown.h2 "Connectors"
       $log.info "\tDetected #{connectors['total']} connectors."
 
+      Markdown.text "| Connector Name | Connector Class | Direct Connect | Status |\n"
+      Markdown.text "|----------------|-----------------|----------------|--------|\n"
+
       connectors['items'].each do |connector|
 
         if (!@@default_connectors.include? connector["name"] || $config["include-defaults"])
           $log.info "\tConnector: #{connector["name"]}"
-          
-          Markdown.h3( connector["name"] )
-          Markdown.text( "- Class: #{connector["className"]}\n" )
-          Markdown.text( "- Direct Connect: #{connector["directConnect"]}\n" )
-          Markdown.text( "- Status: #{connector["status"]}\n" )
+
+          Markdown.text "| #{connector["name"]} | #{connector["className"]} | #{Program.humanize(connector["directConnect"])} | #{connector["status"]} |\n"
 
         else
           $log.info "\tSkipping Default Connector: #{connector["name"]}"
@@ -249,43 +287,6 @@ module Connectors
 
   end
 
-  #
-  # Gets a connector script, given type
-  #
-  def self.get_script( type )
-    return @@script_type[ type ]
-  end
-
-  #
-  # Gets a connector by the type
-  #
-  def self.get_by_type( type )
-    return Connectors.get_by_attribute( "type", type )
-  end
-
-  #
-  # Gets a connector by an attribute
-  #
-  def self.get_by_attribute( attribute, value )
 
-    response = IDNAPI.get( "#{$url}/cc/api/connector/list", $token )
-
-    unless response.nil?
-
-        connectors = JSON.parse( response.body )
-
-        connectors['items'].each do |connector|
-
-          if ( connector[ attribute ] == value )
-            return connector
-          end
-
-        end # connectors['items'].each do |connector|
-
-    end # unless response.nil?
-
-    return nil
-
-  end # def self.get_by_attribute( attribute, value )
 
 end

data/lib/objects/identity-attributes.rb

@@ -53,7 +53,7 @@ module IdentityAttributes
       'system' => identity_attribute['system'],
       'type' => identity_attribute['type']
     }
-    response = IDNAPI.post_json( "#{$url}/cc/api/identityAttribute/create", $token, create_json )
+    return IDNAPI.post_json( "#{$url}/cc/api/identityAttribute/create", $token, create_json )
   end
 
   #
@@ -70,7 +70,7 @@ module IdentityAttributes
       'system' => identity_attribute['system'],
       'type' => identity_attribute['type']
     }
-    response = IDNAPI.post_json( "#{$url}/cc/api/identityAttribute/update?name=#{identity_attribute['name']}", $token, update_json )
+    return IDNAPI.post_json( "#{$url}/cc/api/identityAttribute/update?name=#{identity_attribute['name']}", $token, update_json )
   end
 
   #
@@ -108,6 +108,8 @@ module IdentityAttributes
 
       JSON.parse( identity_attributes ).each do |identity_attribute|
 
+        $log.debug "\tIdentity attribute: #{identity_attribute["name"]}"
+
         unless ( @@disallowed_identity_attributes.include? identity_attribute["name"] )
 
           existing_identity_attribute = IdentityAttributes.get_by_name( identity_attribute["name"] )
@@ -118,8 +120,15 @@ module IdentityAttributes
             response = IdentityAttributes.update( identity_attribute )
           end
 
+          case response
+          when Net::HTTPSuccess
+            $log.debug "\tIdentity attribute successfully imported."
+          else
+            $log.error "\tCould not import identity attribute #{identity_attribute["name"]}"
+          end
+
         else
-          $log.warn "\t\tSkipping default identity attribute: #{identity_attribute["name"]}."
+          $log.warn "\tSkipping default identity attribute: #{identity_attribute["name"]}."
         end
       end
 
@@ -130,7 +139,37 @@ module IdentityAttributes
   # Documents Identity Attribute configurations.
   #
   def self.doc
-    $log.warn "\tDocumentation for object type identity-attributes is not supported at this time."
+
+    response = IDNAPI.get( "#{$url}/cc/api/identityAttribute/list", $token )
+
+    case response
+    when Net::HTTPSuccess
+
+      identity_attributes = JSON.parse( response.body )
+
+      $log.info "\tRetreived identity attributes."
+
+      unless identity_attributes.nil? || identity_attributes.empty?
+
+        Markdown.h2 "Identity Attributes"
+
+        Markdown.text "| Display Name | Technical Name | Searchable | Details |\n"
+        Markdown.text "|--------------|----------------|------------|---------|\n"
+
+        identity_attributes.each do |identity_attribute|
+
+          details = identity_attribute.select{|k, v| v == true }.keys.join(", ")
+
+          Markdown.text "| #{identity_attribute['displayName']} | #{identity_attribute['name']} | #{Program.humanize( identity_attribute['searchable'] )} | #{details} |\n"
+
+        end # identity_attributes.each do |identity_attribute|
+
+      end # unless identity_attributes.nil? || identity_attributes.empty?
+
+    else
+      $log.error "\tError: Unable to fetch identity attributes."
+    end # case response
+
   end
 
 end

data/lib/objects/identity-profiles.rb

@@ -75,24 +75,36 @@ module IdentityProfiles
 
     response = IDNAPI.get( "#{$url}/cc/api/profile/list", $token )
 
-    unless response.nil?
+    case response
+    when Net::HTTPSuccess
 
-      identityProfiles = JSON.parse( response.body )
+      identity_profiles = JSON.parse( response.body )
 
-      $log.info "\tDetected #{identityProfiles.count} identity profiles."
+      $log.info "\tDetected #{identity_profiles.count} identity profiles."
 
-      identityProfiles.each do |identityProfile|
+      identity_profiles.each do |identity_profile|
 
-        response = IDNAPI.get( "#{$url}/cc/api/profile/get/#{identityProfile["id"]}", $token )
+        response = IDNAPI.get( "#{$url}/cc/api/profile/get/#{identity_profile["id"]}", $token )
 
-        identityProfileObject = JSON.parse( response.body )
+        case response
+        when Net::HTTPSuccess
 
-        $log.info "\tIdentity Profile: #{identityProfileObject["name"]}"
+          idp_details = JSON.parse( response.body )
 
-        Program.write_file( "#{directory}/identity-profiles/", "Identity Profile - #{identityProfileObject["name"]}.json", JSON.pretty_generate( identityProfileObject ) )
+          $log.info "\tIdentity Profile: #{idp_details["name"]}"
+
+          Program.write_file( "#{directory}/identity-profiles/", "Identity Profile - #{idp_details["name"]}.json", JSON.pretty_generate( idp_details ) )
+
+        else
+          $log.error "\tError: Unable to fetch identity profile details."
+        end # case response
+
+      end # identity_profiles.each do |identity_profile|
+
+    else
+      $log.error "\tError: Unable to fetch identity profiles."
+    end # case response
 
-      end
-    end
   end
 
   #
@@ -182,24 +194,131 @@ module IdentityProfiles
   # Documents Identity Profile configurations.
   #
   def self.doc
-    Markdown.h2( "Identity Profiles" )
 
     response = IDNAPI.get( "#{$url}/cc/api/profile/list", $token )
-    unless response.nil?
-      identityProfiles = JSON.parse( response.body )
 
-      $log.info "\tDetected #{identityProfiles.count} identity profiles."
+    case response
+    when Net::HTTPSuccess
+
+      identity_profiles = JSON.parse( response.body )
 
-      identityProfiles.each do |identityProfile|
+      Markdown.h2 "Identity Profiles"
+      $log.info "\tDetected #{identity_profiles.count} identity profiles."
 
-        response = IDNAPI.get( "#{$url}/cc/api/profile/get/#{identityProfile["id"]}", $token )
+      identity_profiles.each do |identity_profile|
 
-        identityProfile_object = JSON.parse( response.body )
+        response = IDNAPI.get( "#{$url}/cc/api/profile/get/#{identity_profile["id"]}", $token )
 
-        $log.info "\tIdentity Profile: #{identityProfile_object["name"]}"
+        case response
+        when Net::HTTPSuccess
 
-      end
-    end
+          idp_details = JSON.parse( response.body )
+
+          Markdown.h3 "#{idp_details["name"]}"
+          $log.info "\tIdentity Profile: #{idp_details["name"]}"
+
+          Markdown.h4 "Settings"
+
+          Markdown.text " - Account Source: #{idp_details['source']['name']}\n"
+          Markdown.text " - Description: #{idp_details["description"]}\n"
+          Markdown.text " - Priority: #{idp_details["priority"]}\n"
+          Markdown.text " - Needs Update: #{idp_details["dirtyFlag"]}\n"
+          Markdown.text " - Error Message: #{idp_details["authErrorText"]}\n"
+
+          Markdown.h4 "Authentication"
+
+          case idp_details['enablePassthroughAuthn']
+          when "false"
+            Markdown.text " - Authentication: IdentityNow Login\n"
+          when "true"
+            Markdown.text " - Authentication: Pass-through Authentication to Source '#{idp_details['credentialService']['name']}'\n"
+          end
+
+          Markdown.text " - Block Access From: \n"
+          Markdown.text "\t - Off Network: #{idp_details["blockOffNetwork"]}\n"
+          Markdown.text "\t - Untrusted Geographies: #{idp_details["blockUntrustedGeographies"]}\n"
+
+          Markdown.text " - Strong Authentication to Sign In: \n"
+          Markdown.text "\t - All Users: #{idp_details["strongAuthLogin"]}\n"
+          Markdown.text "\t - Off Network: #{idp_details["strongAuthLoginOffNetwork"]}\n"
+          Markdown.text "\t - Untrusted Geographies: #{idp_details["strongAuthLoginUntrustedGeographies"]}\n"
+
+          Markdown.text " - Strong Authentication Methods: \n"
+          Markdown.text "\t - Verification Code to alternate phone: #{idp_details["pwdResetPersonalPhone"]}\n"
+          Markdown.text "\t - Verification Code to work phone: #{idp_details["pwdResetWorkPhone"]}\n"
+          Markdown.text "\t - Verification Code to alternate email: #{idp_details["pwdResetPersonalEmailCode"]}\n"
+          Markdown.text "\t - Verification Code to work email: #{idp_details["pwdResetWorkEmailCode"]}\n"
+          Markdown.text "\t - Verification via security questions: #{idp_details["pwdResetKba"]}\n"
+          Markdown.text "\t - Verification via Duo Integration: #{idp_details["pwdResetDuo"]}\n"
+          Markdown.text "\t - Verification via RSA Integration: #{idp_details["pwdResetRsa"]}\n"
+          Markdown.text "\t - Verification via Symantec VIP Integration: #{idp_details["pwdResetSymantecVip"]}\n"
+          Markdown.text "\t - Verification via SafeNet Integration: #{idp_details["pwdResetSafenet"]}\n"
+
+          Markdown.h4 "Password Reset"
+
+          Markdown.text " - Password Reset and User Unlock Settings: \n"
+          Markdown.text "\t - Enable Two-Factor Authentication: \n"
+          Markdown.text "\t - Mask Phone Numbers: #{idp_details['pwdResetPhoneMask']}\n"
+
+          Markdown.text " - Password Reset and User Unlock Methods: \n"
+          Markdown.text "\t - Verification Code to alternate phone: #{idp_details["strongAuthPersonalPhone"]}\n"
+          Markdown.text "\t - Verification Code to work phone: #{idp_details["strongAuthWorkPhone"]}\n"
+          Markdown.text "\t - Verification Code to alternate email: #{idp_details["strongAuthPersonalEmail"]}\n"
+          Markdown.text "\t - Verification Code to work email: #{idp_details["strongAuthWorkEmail"]}\n"
+          Markdown.text "\t - Verification via security questions: #{idp_details["strongAuthKba"]}\n"
+          Markdown.text "\t - Verification by re-entering password: #{idp_details["strongAuthPassword"]}\n"
+          Markdown.text "\t - Verification via Duo Integration: #{idp_details["strongAuthDuo"]}\n"
+          Markdown.text "\t - Verification via RSA Integration: #{idp_details["strongAuthRsa"]}\n"
+          Markdown.text "\t - Verification via Symantec VIP Integration: #{idp_details["strongAuthSymantecVip"]}\n"
+          Markdown.text "\t - Verification via SafeNet Integration: #{idp_details["strongAuthSafenet"]}\n"
+
+          unless idp_details["attributeConfig"].nil? || idp_details['attributeConfig']['attributeTransforms'].nil? || idp_details['attributeConfig']['attributeTransforms'].empty?
+
+            Markdown.h4 "Attribute Mappings"
+
+            Markdown.text "| Attribute Name | Attribute Value |\n"
+            Markdown.text "|----------------|-----------------|\n"
+
+            idp_details['attributeConfig']['attributeTransforms'].each do |attribute|
+
+              case attribute['type']
+              when "accountAttribute"
+                Markdown.text "| #{attribute['attributeName']} | Attribute '#{attribute['attributes']['attributeName']}' from source '#{attribute['attributes']['sourceName']}' |\n"
+              when "reference"
+                Markdown.text "| #{attribute['attributeName']} | Transform '#{attribute['attributes']['id']}' |\n"
+              else
+                $log.warn "\tWarning: Cannot document identity attribute #{attribute['name']} with type #{attribute['type']}"
+              end
+
+            end # idp_details['attributeConfig']['attributeTransforms'].each do |attribute|
+
+          end #unless idp_details["configuredStates"].nil? || idp_details["configuredStates"].empty?
+
+          unless idp_details["configuredStates"].nil? || idp_details["configuredStates"].empty?
+
+            Markdown.h4 "Lifecycle States"
+
+            Markdown.text "| DisplayName | Technical Name | Enabled? | Identity Count |\n"
+            Markdown.text "|-------------|----------------|----------|----------------|\n"
+
+            idp_details["configuredStates"].each do |lcs|
+
+              Markdown.text "| #{lcs['displayName']} | #{lcs['name']} | #{Program.humanize( lcs['enabled'] )} | #{lcs['identityCount']} |\n"
+
+            end
+
+          end # unless idp_details["configuredStates"].nil? || idp_details["configuredStates"].empty?
+
+
+        else
+          $log.error "\tError: Unable to fetch identity profile details."
+        end # case response
+
+      end # identity_profiles.each do |identity_profile|
+
+    else
+      $log.error "\tError: Unable to fetch identity profiles."
+    end # case response
 
     Markdown.write
   end

data/lib/objects/lifecycle-states.rb

@@ -50,36 +50,50 @@ module LifecycleStates
   # Documents Lifecycle State configurations.
   #
   def self.doc
-    Markdown.h2( "Lifecycle States" )
 
     response = IDNAPI.get( "#{$url}/cc/api/profile/list", $token )
 
-    unless response.nil?
+    case response
+    when Net::HTTPSuccess
 
       identity_profiles = JSON.parse( response.body )
 
+      Markdown.h2 "Lifecycle States"
+
       identity_profiles.each do |identity_profile|
 
         response = IDNAPI.get( "#{$url}/cc/api/profile/get/#{identity_profile["id"]}", $token )
 
-        unless response.nil?
+        case response
+        when Net::HTTPSuccess
 
-          JSON.parse( response.body )["configuredStates"].each do |lifecycle_state|
+          idp_details = JSON.parse( response.body )
 
-              response = IDNAPI.get( "#{$url}/cc/api/lifecycleState/get/#{lifecycle_state["externalId"]}", $token )
+          unless idp_details["configuredStates"].nil? || idp_details["configuredStates"].empty?
 
-              lifecycle_state = JSON.parse( response.body )
+            Markdown.h3 "#{idp_details["name"]} Lifecycle States"
+
+            Markdown.text "| DisplayName | Technical Name | Enabled? | Identity Count |\n"
+            Markdown.text "|-------------|----------------|----------|----------------|\n"
+
+            idp_details["configuredStates"].each do |lcs|
+
+              Markdown.text "| #{lcs['displayName']} | #{lcs['name']} | #{Program.humanize( lcs['enabled'] )} | #{lcs['identityCount']} |\n"
+
+            end # idp_details["configuredStates"].each do |lcs|
+
+          end # unless idp_details["configuredStates"].nil? || idp_details["configuredStates"].empty?
+
+        else
+          $log.error "\tError: Unable to fetch identity profile details."
+        end # case response
+
+      end # identity_profiles.each do |identity_profile|
+
+    else
+      $log.error "\tError: Unable to fetch identity profile details."
+    end # case response
 
-              $log.info "\tLifecycle State: #{identity_profile["name"]} - #{lifecycle_state["displayName"]}"
-              Markdown.h3( "#{identity_profile["name"]} - #{lifecycle_state["name"]}" )
-              Markdown.text( "- **Display Name** - #{lifecycle_state["displayName"]}\n" )
-              Markdown.text( "- **Name** - #{lifecycle_state["name"]}\n" )
-              Markdown.text( "- **Enabled** - #{lifecycle_state["enabled"]}\n" )
-              Markdown.text( "- **Description** - #{lifecycle_state["description"]}\n" )
-          end
-        end
-      end
-    end
     Markdown.write
   end
 

data/lib/objects/public-identities-config.rb

@@ -13,7 +13,7 @@ module PublicIdentitiesConfig
   def self.export( directory )
 
     response = IDNAPI.get( "#{$url}/beta/public-identities-config/", $token )
-    
+
     case response
     when Net::HTTPSuccess
       $log.info "\tRetreived configuration."
@@ -65,8 +65,15 @@ module PublicIdentitiesConfig
       config = JSON.parse( response.body )
 
       Markdown.text "Attributes:\n"
-      config['attributes'].each do |attribute|
-        Markdown.text "- #{attribute['name']}\n"
+
+      unless config['attributes'].empty?
+
+        config['attributes'].each do |attribute|
+          Markdown.text "- #{attribute['name']}\n"
+        end
+
+      else
+        Markdown.text "Note: There are no attributes configured.\n"
       end
 
     else

data/lib/objects/system-settings.rb

@@ -41,7 +41,7 @@ module SystemSettings
   def self.export( directory )
 
     response = IDNAPI.get( "#{$url}/cc/api/org/get", $token )
-    
+
     case response
     when Net::HTTPSuccess
       $log.info "\tRetreived configuration."
@@ -105,30 +105,40 @@ module SystemSettings
 
       Markdown.h2 "System Settings"
 
-      Markdown.h3 "Usage Agreement"
+      Markdown.h3 "View Configurations"
 
-      Markdown.text " - XXX : #{config['usageCertRequired']}\n"
-      Markdown.text " - XXX : #{config['usernameLabel']}\n"
-      Markdown.text " - XXX : #{config['usernameEmptyText']}\n"
+      Markdown.text " - Usage Agreement Required: #{Program.humanize( config['usageCertRequired'] )}\n"
+      Markdown.text " - Username Label: #{config['usernameLabel']}\n"
+      Markdown.text " - Username Validation: #{config['usernameEmptyText']}\n"
 
       Markdown.h3 "Network Settings"
 
-      Markdown.text " - XXX : #{config['netmasks']}\n"
-      Markdown.text " - XXX : #{config['whiteList']}\n"
-      Markdown.text " - XXX : #{config['countryCodes']}\n"
+      Markdown.text " - Netmasks : #{config['netmasks']}\n"
+      Markdown.text " - Country Whitelist : #{config['whiteList']}\n"
+      Markdown.text " - Country Codes : #{config['countryCodes']}\n"
 
       Markdown.h3 "System Features"
 
-      Markdown.text " - XXX : #{config['features']}\n"
+      config['features'].each do |feature|
+        case feature
+        when "ACCESS_REQUEST"
+          Markdown.text " - Access Request\n"
+        when "PASSWORD_MANAGEMENT"
+          Markdown.text " - Password Management\n"
+        when "PROVISIONING"
+          Markdown.text " - Provisioning\n"
+        when "CERTIFICATION"
+          Markdown.text " - Certification\n"
+        when "SOD"
+          Markdown.text " - Separation of Duties\n"
+        end
+      end
 
       Markdown.h3 "Notifications"
 
       Markdown.text " - Email 'from' Address: #{config['emailFromAddress']}\n"
-
-      Markdown.text " - XXX : #{config['emailTestMode']}\n"
-
-
-      Markdown.text " - XXX : #{config['emailTestAddress']}\n"
+      Markdown.text " - Email Test Mode Enabled: #{config['emailTestMode']}\n"
+      Markdown.text " - Email Test Address : #{config['emailTestAddress']}\n"
 
       Markdown.h3 "Security Settings"
 
@@ -140,11 +150,11 @@ module SystemSettings
 
       ### Minutes until attempt count resets
 
-      Markdown.text " - XXX : #{config['lockoutAttemptThreshold']}\n"
+      Markdown.text " - Lockout Attempt Threshold : #{config['lockoutAttemptThreshold']}\n"
 
       ### Minutes until user locked out
 
-      Markdown.text " - XXX : #{config['lockoutTimeMinutes']}\n"
+      Markdown.text " - Lockout Time (minutes) : #{config['lockoutTimeMinutes']}\n"
 
       ## Password Reset Lockout Settings
 
@@ -162,18 +172,10 @@ module SystemSettings
 
       ### X hours
 
-      Markdown.text " - XXX : #{config['iframeWhitelist']}\n"
-      Markdown.text " - XXX : #{config['kbaReqAnswers']}\n"
-      Markdown.text " - XXX : #{config['kbaReqForAuthn']}\n"
-
-      Markdown.text " - KBA Attributes Required for Authentication: #{config['kbaReqForAuthn']}\n"
-
-      #
-      #
-      # Markdown.text "Attributes:\n"
-      # config['attributes'].each do |attribute|
-      #   Markdown.text "- #{attribute['name']}\n"
-      # end
+      Markdown.text " - iFrame Whitelist: #{config['iframeWhitelist']}\n"
+      Markdown.text " - Security Questions\n"
+      Markdown.text "\t - Required Answers: #{config['kbaReqAnswers']}\n"
+      Markdown.text "\t - Required for Authentication: #{config['kbaReqForAuthn']}\n"
 
     else
       $log.error "\tUnable to retreive configuration."

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: idnio
 version: !ruby/object:Gem::Version
-  version: 2.3.2b
+  version: 2.3.3b
 platform: ruby
 authors:
 - neil-mcglennon-sp
@@ -31,7 +31,7 @@ cert_chain:
   80azxZfuZm4FunGL6GShaDghT24HpxRCz7dpM7TZP9MiQ1D0W2bp0ir6uo8cxGlU
   QQ63knon4BERaw==
   -----END CERTIFICATE-----
-date: 2019-11-11 00:00:00.000000000 Z
+date: 2019-11-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler