maestrano 0.12.2 → 0.12.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (9) hide show
  1. checksums.yaml +4 -4
  2. data/DEVELOPER.md +1 -1
  3. data/Gemfile.lock +4 -4
  4. data/README.md +7 -0
  5. data/lib/maestrano/sso.rb +3 -2
  6. data/lib/maestrano/version.rb +1 -1
  7. data/test/maestrano/saml/response_test.rb +4 -1
  8. data/test/maestrano/sso_test.rb +6 -4
  9. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: a9d1c9fb5b475f043c192002780684ae88c23799
4
- data.tar.gz: 25f9dc01f76554186b8aa430a072bd5c9a0fedee
3
+ metadata.gz: 027c20721a82e2ffaaa608c140e1145f2474e408
4
+ data.tar.gz: 058be80ac7c4ddceb3a4f786799a0b93120f5a4d
5
5
  SHA512:
6
- metadata.gz: a2213e1418b92942ce9f45104625494fe2027983c1f991f96980b3a1c9c4163018aa4fafb35e6e793eab4d1bcf91a4721c03b0b4ad05c533aeb6a65bae46dec7
7
- data.tar.gz: ee7352efceccc3086502997a674caee54db92656164ae7dace4c98cb0ba7f9561be5feeac8c7780d7db807791a14c14920011ed8513f6a3ef3bfa254a5c7e122
6
+ metadata.gz: 0d650626a4b6959204cffc47955472eb820f23d6bff56b195152b3e7f3f6f50ba627ee95202790070854b9aea7fb883241c657558f71ed80f7f704197523115d
7
+ data.tar.gz: 0dc742db8608cce95ee687eeb7050f8a65ba2f2873ed96caa10ecfd473d22df52a781a15331016e719fbc0377544b673b81549650e75373d87e7a351583dbe84
data/DEVELOPER.md CHANGED
@@ -20,5 +20,5 @@ curl -u maestrano https://rubygems.org/api/v1/api_key.yaml > ~/.gem/credentials;
20
20
 
21
21
  Then push the gem
22
22
  ```bash
23
- gem push maestrano-0.12.0.gem -k maestrano
23
+ gem push maestrano-0.12.3.gem -k maestrano
24
24
  ```
data/Gemfile.lock CHANGED
@@ -1,7 +1,7 @@
1
1
  PATH
2
2
  remote: .
3
3
  specs:
4
- maestrano (0.12.1)
4
+ maestrano (0.12.2)
5
5
  httparty (~> 0.13)
6
6
  json (~> 1.8)
7
7
  mime-types (~> 1.25)
@@ -12,7 +12,7 @@ PATH
12
12
  GEM
13
13
  remote: http://rubygems.org/
14
14
  specs:
15
- domain_name (0.5.25)
15
+ domain_name (0.5.20160128)
16
16
  unf (>= 0.0.5, < 1.0.0)
17
17
  http-cookie (1.0.2)
18
18
  domain_name (~> 0.5)
@@ -29,7 +29,7 @@ GEM
29
29
  metaclass (~> 0.0.1)
30
30
  multi_xml (0.5.5)
31
31
  netrc (0.11.0)
32
- nokogiri (1.6.7.1)
32
+ nokogiri (1.6.7.2)
33
33
  mini_portile2 (~> 2.0.0.rc2)
34
34
  rake (10.5.0)
35
35
  rest-client (1.8.0)
@@ -42,7 +42,7 @@ GEM
42
42
  timecop (0.6.0)
43
43
  unf (0.1.4)
44
44
  unf_ext
45
- unf_ext (0.0.7.1)
45
+ unf_ext (0.0.7.2)
46
46
  uuid (2.3.8)
47
47
  macaddr (~> 1.0)
48
48
 
data/README.md CHANGED
@@ -144,6 +144,13 @@ Maestrano.configure do |config|
144
144
  # used in a controller before filter to check user session - always return true
145
145
  #
146
146
  # config.sso.slo_enabled = true
147
+
148
+ # ==> x509 SSL Certificate
149
+ # During the SSO handshake, the SSL certificate is validated and must match the IDP provider.
150
+ # For multi-tenant integration, the certificates may change per environment.
151
+ #
152
+ # config.sso.x509_fingerprint = '2f:57:71:e4:40:19:57:37:a6:2c:f0:c5:82:52:2f:2e:41:b7:9d:7e'
153
+ # config.sso.x509_certificate = "-----BEGIN CERTIFICATE-----\nCERTIFICATE CONTENT==\n-----END CERTIFICATE-----"
147
154
 
148
155
  # ==> SSO User creation mode
149
156
  # !IMPORTANT
data/lib/maestrano/sso.rb CHANGED
@@ -9,8 +9,9 @@ module Maestrano
9
9
  settings.assertion_consumer_service_url = self.consume_url
10
10
  settings.issuer = Maestrano[preset].param('api.id')
11
11
  settings.idp_sso_target_url = self.idp_url
12
- settings.idp_cert_fingerprint = Maestrano[preset].param('sso_x509_fingerprint')
13
- settings.name_identifier_format = Maestrano[preset].param('sso_name_id_format')
12
+ settings.idp_cert = Maestrano[preset].param('sso.x509_certificate')
13
+ settings.idp_cert_fingerprint = Maestrano[preset].param('sso.x509_fingerprint')
14
+ settings.name_identifier_format = Maestrano[preset].param('sso.name_id_format')
14
15
  settings
15
16
  end
16
17
 
data/lib/maestrano/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Maestrano
2
- VERSION = '0.12.2'
2
+ VERSION = '0.12.3'
3
3
  end
data/test/maestrano/saml/response_test.rb CHANGED
@@ -183,7 +183,8 @@ module Maestrano
183
183
  'sso.consume_path' => '/mno/sso/consume',
184
184
  'sso.creation_mode' => 'real',
185
185
  'sso.idm' => 'http://idp.myotherapp.com',
186
- 'sso.x509_fingerprint' => signature_fingerprint_1
186
+ 'sso.x509_fingerprint' => signature_fingerprint_1,
187
+ 'sso.x509_certificate' => signature_1
187
188
  }
188
189
 
189
190
  Maestrano.configure do |config|
@@ -210,6 +211,7 @@ module Maestrano
210
211
  config.sso.creation_mode = @preset_config['sso.creation_mode']
211
212
 
212
213
  config.sso.x509_fingerprint = @preset_config['sso.x509_fingerprint']
214
+ config.sso.x509_certificate = @preset_config['sso.x509_certificate']
213
215
  end
214
216
  end
215
217
 
@@ -229,6 +231,7 @@ module Maestrano
229
231
  should "support dynamic namespace resolution on signature elements" do
230
232
  Maestrano[@preset].configure do |config|
231
233
  config.sso.x509_fingerprint = "28:74:9B:E8:1F:E8:10:9C:A8:7C:A9:C3:E3:C5:01:6C:92:1C:B4:BA"
234
+ config.sso.x509_certificate = nil
232
235
  end
233
236
 
234
237
  response = Maestrano::Saml::Response[@preset].new(fixture("no_signature_ns.xml"))
data/test/maestrano/sso_test.rb CHANGED
@@ -43,8 +43,9 @@ module Maestrano
43
43
  assert settings.assertion_consumer_service_url == Maestrano::SSO.consume_url
44
44
  assert settings.issuer == Maestrano.param('api.id')
45
45
  assert settings.idp_sso_target_url == Maestrano::SSO.idp_url
46
- assert settings.idp_cert_fingerprint == Maestrano.param('sso_x509_fingerprint')
47
- assert settings.name_identifier_format == Maestrano.param('sso_name_id_format')
46
+ assert settings.idp_cert == Maestrano.param('sso.x509_certificate')
47
+ assert settings.idp_cert_fingerprint == Maestrano.param('sso.x509_fingerprint')
48
+ assert settings.name_identifier_format == Maestrano.param('sso.name_id_format')
48
49
  end
49
50
 
50
51
  should "build the right saml request" do
@@ -202,8 +203,9 @@ module Maestrano
202
203
  assert settings.assertion_consumer_service_url == Maestrano::SSO[@preset].consume_url
203
204
  assert settings.issuer == Maestrano[@preset].param('api.id')
204
205
  assert settings.idp_sso_target_url == Maestrano::SSO[@preset].idp_url
205
- assert settings.idp_cert_fingerprint == Maestrano[@preset].param('sso_x509_fingerprint')
206
- assert settings.name_identifier_format == Maestrano[@preset].param('sso_name_id_format')
206
+ assert settings.idp_cert == Maestrano.param('sso.x509_certificate')
207
+ assert settings.idp_cert_fingerprint == Maestrano[@preset].param('sso.x509_fingerprint')
208
+ assert settings.name_identifier_format == Maestrano[@preset].param('sso.name_id_format')
207
209
  end
208
210
 
209
211
  should "build the right saml request" do
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: maestrano
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.12.2
4
+ version: 0.12.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Arnaud Lachaume
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2016-01-21 00:00:00.000000000 Z
11
+ date: 2016-02-15 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: rest-client