RubyGems - maestrano - Versions diffs - 1.0.0 → 1.0.1 - Mend

maestrano 1.0.0 → 1.0.1

Files changed (8) hide show

checksums.yaml +4 -4
data/README.md +9 -256
data/lib/maestrano.rb +2 -59
data/lib/maestrano/version.rb +1 -1
data/test/maestrano/connec/client_test.rb +45 -45
data/test/maestrano/maestrano_test.rb +0 -45
metadata +3 -4
data/lib/maestrano/saml/metadata.rb +0 -64

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: da42c6caf2df53cba319e638cec31b0ce33a22f7
-  data.tar.gz: db175d78fcd0f238cc6cc014d0464277dd289886
+  metadata.gz: 5063dee60d6bee868a778911f5fed4c2a1f7424b
+  data.tar.gz: 02d58e8248cb14e24d3229d200faa44cffe8eda6
 SHA512:
-  metadata.gz: fe781d6375ef3e2c942397b078b433e2aab2fd06c1fa9a6d82622c9b908a9d47451125b146f3168302d643f38b44dd9f120123821a0d3a8acc6ec92b114775b2
-  data.tar.gz: d47fcef45b8347d50c0b7280267b914be4ddd38204eb9be43b36c71acd6fb6aa6dd659ab82cdb6dad300cf8f08f05d0b01f2c829509fb0f221371353f3dc37f7
+  metadata.gz: 4ee520a1049d6241d78fb7884f854309d017c89228f54497559b7f95ffdd5ae76f9544199c2ef661b67f7d1b38a0b44184247756a7d8c1ff687bfeb9995c40d0
+  data.tar.gz: b49742db34b47127d100479dfb5ab6f06ccfc4df0bb693a9f413880caccd21ac49da60d08bbe23099093ac5da74b56359de11a03827f68c6aff19bb67d193f19

data/README.md CHANGED Viewed

@@ -16,7 +16,6 @@ Maestrano Cloud Integration is currently in closed beta. Want to know more? Send
 3. [Getting Started](#getting-started)
   * [Installation](#installation)
   * [Configuration](#configuration)
-  * [Metadata Endpoint](#metadata-endpoint)
 4. [Single Sign-On Setup](#single-sign-on-setup)
   * [User Setup](#user-setup)
   * [Group Setup](#group-setup)
@@ -39,11 +38,8 @@ Maestrano Cloud Integration is currently in closed beta. Want to know more? Send
 - - -
 ## Getting Setup
-Before integrating with us you will need an App ID and API Key. Maestrano Cloud Integration being still in closed beta you will need to contact us beforehand to gain production access.
-For testing purpose we provide an API Sandbox where you can freely obtain an App ID and API Key. The sandbox is great to test single sign-on and API integration (e.g: billing API).
-To get started just go to: http://api-sandbox.maestrano.io
+To start the integration of your application with the Maestrano platform, you first need to register your application on our Developer Platform. You can find [more information here](https://maestrano.atlassian.net/wiki/x/NYA3Ag)
+Once your application is registered, you will be provided with API keys that are used to configure your application on the different marketplaces powered by Maestrano.
 ## Getting Started with Rails
@@ -65,12 +61,10 @@ Or add it to your Gemfile
 gem 'maestrano'
 ```
 ### Configuration
 Once installed the first step is to create an initializer to configure the behaviour of the Maestrano gem
-#### Configuration based of the Developer Platform
-The [developer platform](https://dev-platform.maestrano.com) is the easiest way to configure Maestrano. The only actions needed from your part is to create your application and environments on the developer platform and to create a config file. The framework will then contact the developer platform and retrieve the marketplaces configuration for your app environment.
+Use the [developer platform](https://dev-platform.maestrano.com) to create your application and your environments. The framework will then contact the developer platform and retrieve the marketplaces configuration for your application environments. This way your application can be automatically added to new environment without having to update the configuration on your side.
 In your initializer add the following configuration:
@@ -86,9 +80,9 @@ dev_platform:
   api_path: '/api/config/v1/marketplaces'
 environment:
-  name: 'my-environment'
-  api_key: 'your-environment-api-key'
-  api_secret: 'your-environment-api-secret'
+  name: 'my-environment' # Any arbitrary name you want to use
+  api_key: 'your-environment-api-key' # Provided by the developer platform
+  api_secret: 'your-environment-api-secret' # Provided by the developer platform
 ```
 The API keys can be found under your Environment settings on the developer platform.
@@ -105,242 +99,7 @@ export MNO_DEVPL_ENV_SECRET=<your environment secret>
 `config/initializers/maestrano.rb`
 ```ruby
-Maestrano.auto_configure
-```
-#### Deprecated - Configure environments manually
-Environments configuration should be driven from the developer platform configuration. For backward compatibility purpose, environments can still be defined manually.
-You can add configuration presets by putting additional configuration blocks in your maestrano.rb initializer. These additional presets can then be specified when doing particular action, such as initializing a Connec!™ client or triggering a SSO handshake. These presets are particularly useful if you are dealing with multiple Maestrano-style marketplaces (multi-enterprise integration).
-If this is the first time you integrate with Maestrano, we recommend adopting a multi-tenant approach. All code samples in this documentation provide examples on how to handle multi-tenancy by scoping method calls to a specific configuration preset.
-More information about multi-tenant integration can be found on [Our Multi-Tenant Integration Guide](https://maestrano.atlassian.net/wiki/display/CONNECAPIV2/Multi-Tenant+Integration)
-The initializer should look like this:
-```ruby
-# Use this block to configure the behaviour of Maestrano
-# in your app
-Maestrano.configure do |config|
-  # ==> Environment configuration
-  # The environment to connect to.
-  # If set to 'production' then all Single Sign-On (SSO) and API requests
-  # will be made to maestrano.com
-  # If set to 'test' then requests will be made to api-sandbox.maestrano.io
-  # The api-sandbox allows you to easily test integration scenarios.
-  # More details on http://api-sandbox.maestrano.io
-  #
-  config.environment = 'test' # or 'production'
-  # ==> Application host
-  # This is your application host (e.g: my-app.com) which is ultimately
-  # used to redirect users to the right SAML url during SSO handshake.
-  #
-  config.app.host = (config.environment == 'production' ? 'https://my-app.com' : 'http://localhost:3000')
-  # ==> App ID & API key
-  # Your application App ID and API key which you can retrieve on http://maestrano.com
-  # via your cloud partner dashboard.
-  # For testing you can retrieve/generate an api.id and api.key from the API Sandbox directly
-  # on http://api-sandbox.maestrano.io
-  #
-  config.api.id = (config.environment == 'production' ? 'prod_app_id' : 'sandbox_app_id')
-  config.api.key = (config.environment == 'production' ? 'prod_api_key' : 'sandbox_api_key')
-  # ==> Single Sign-On activation
-  # Enable/Disable single sign-on. When troubleshooting authentication issues
-  # you might want to disable SSO temporarily
-  #
-  # config.sso.enabled = true
-  # ==> Single Sign-On Identity Manager
-  # By default we consider that the domain managing user identification
-  # is the same as your application host (see above config.app.host parameter)
-  # If you have a dedicated domain managing user identification and therefore
-  # responsible for the single sign-on handshake (e.g: https://idp.my-app.com)
-  # then you can specify it below
-  #
-  # config.sso.idm = (config.environment == 'production' ? 'https://idp.my-app.com' : 'http://localhost:3000')
-  # ==> SSO Initialization endpoint
-  # This is your application path to the SAML endpoint that allows users to
-  # initialize SSO authentication. Upon reaching this endpoint users your
-  # application will automatically create a SAML request and redirect the user
-  # to Maestrano. Maestrano will then authenticate and authorize the user. Upon
-  # authorization the user gets redirected to your application consumer endpoint
-  # (see below) for initial setup and/or login.
-  #
-  # config.sso.init_path = '/maestrano/auth/saml/init'
-  # ==> SSO Consumer endpoint
-  # This is your application path to the SAML endpoint that allows users to
-  # finalize SSO authentication. During the 'consume' action your application
-  # sets users (and associated group) up and/or log them in.
-  #
-  # config.sso.consume_path = '/maestrano/auth/saml/consume'
-  # ==> Single Logout activation
-  # Enable/Disable single logout. When troubleshooting authentication issues
-  # you might want to disable SLO temporarily.
-  # If set to false then Maestrano::SSO::Session#valid? - which should be
-  # used in a controller before filter to check user session - always return true
-  #
-  # config.sso.slo_enabled = true
-  # ==> x509 SSL Certificate
-  # During the SSO handshake, the SSL certificate is validated and must match the IDP provider.
-  # For multi-tenant integration, the certificates may change per environment.
-  #
-  # config.sso.x509_fingerprint = '2f:57:71:e4:40:19:57:37:a6:2c:f0:c5:82:52:2f:2e:41:b7:9d:7e'
-  # config.sso.x509_certificate = "-----BEGIN CERTIFICATE-----\nCERTIFICATE CONTENT==\n-----END CERTIFICATE-----"
-  # ==> SSO User creation mode
-  # !IMPORTANT
-  # On Maestrano users can take several "instances" of your service. You can consider
-  # each "instance" as 1) a billing entity and 2) a collaboration group (this is
-  # equivalent to a 'customer account' in a commercial world). When users login to
-  # your application via single sign-on they actually login via a specific group which
-  # is then supposed to determine which data they have access to inside your application.
-  #
-  # E.g: John and Jack are part of group 1. They should see the same data when they login to
-  # your application (employee info, analytics, sales etc..). John is also part of group 2
-  # but not Jack. Therefore only John should be able to see the data belonging to group 2.
-  #
-  # In most application this is done via collaboration/sharing/permission groups which is
-  # why a group is required to be created when a new user logs in via a new group (and
-  # also for billing purpose - you charge a group, not a user directly).
-  #
-  # == mode: 'real'
-  # In an ideal world a user should be able to belong to several groups in your application.
-  # In this case you would set the 'sso.creation_mode' to 'real' which means that the uid
-  # and email we pass to you are the actual user email and maestrano universal id.
-  #
-  # == mode: 'virtual'
-  # Now let's say that due to technical constraints your application cannot authorize a user
-  # to belong to several groups. Well next time John logs in via a different group there will
-  # be a problem: the user already exists (based on uid or email) and cannot be assigned
-  # to a second group. To fix this you can set the 'sso.creation_mode' to 'virtual'. In this
-  # mode users get assigned a truly unique uid and email across groups. So next time John logs
-  # in a whole new user account can be created for him without any validation problem. In this
-  # mode the email we assign to him looks like "usr-sdf54.cld-45aa2@mail.maestrano.com". But don't
-  # worry we take care of forwarding any email you would send to this address
-  #
-  # config.sso.creation_mode = 'real' # or 'virtual'
-  # ==> Account Webhooks
-  # Single sign on has been setup into your app and Maestrano users are now able
-  # to use your service. Great! Wait what happens when a business (group) decides to
-  # stop using your service? Also what happens when a user gets removed from a business?
-  # Well the endpoints below are for Maestrano to be able to notify you of such
-  # events.
-  #
-  # Even if the routes look restful we issue only issue DELETE requests for the moment
-  # to notify you of any service cancellation (group deletion) or any user being
-  # removed from a group.
-  #
-  # config.webhook.account.groups_path = '/maestrano/account/groups/:id',
-  # config.webhook.account.group_users_path = '/maestrano/account/groups/:group_id/users/:id',
-  # ==> Connec Subscriptions/Webhook
-  # The following section is used to configure the Connec!™ webhooks and which entities
-  # you should receive via webhook.
-  #
-  # == Notification Path
-  # This is the path of your application where notifications (created/updated entities) will
-  # be POSTed to.
-  # You should have a controller matching this path handling the update of your internal entities
-  # based on the Connec!™ entities you receive
-  #
-  # config.webhook.connec.notifications_path = '/maestrano/connec/notifications'
-  #
-  # == Subscriptions
-  # This is the list of entities (organizations,people,invoices etc.) for which you want to be
-  # notified upon creation/update in Connec!™
-  #
-  # config.webhook.connec.subscriptions = {
-  #   accounts: true,
-  #   company: true,
-  #   employees: false,
-  #   events: false,
-  #   event_orders: false,
-  #   invoices: true,
-  #   items: true,
-  #   journals: false,
-  #   opportunities: true,
-  #   organizations: true,
-  #   payments: false,
-  #   pay_items: false,
-  #   pay_schedules: false,
-  #   pay_stubs: false,
-  #   pay_runs: false,
-  #   people: true,
-  #   projects: false,
-  #   purchase_orders: false,
-  #   quotes: false,
-  #   sales_orders: false,
-  #   tax_codes: true,
-  #   tax_rates: false,
-  #   time_activities: false,
-  #   time_sheets: false,
-  #   venues: false,
-  #   warehouses: false,
-  #   work_locations: false
-  # }
-end
-```
-If you need to support multiple marketplace providers, you can define configuration presets and switch between these at runtime:
-```ruby
-Maestrano['my-preset1'].configure do |config|
-  config.environment = 'production'
-  config.app.host = 'https://my-custom-provider1.com'
-  ...
-end
-Maestrano['my-preset2'].configure do |config|
-  config.environment = 'production'
-  config.app.host = 'https://my-custom-provider2.com'
-  ...
-end
-```
-### Deprecated - Metadata Endpoint
-Your configuration initializer is now all setup and shiny. Great! But need to know about it. Of course
-we could propose a long and boring form on maestrano.com for you to fill all these details (especially the webhooks) but we thought it would be more convenient to fetch that automatically.
-For that we expect you to create a metadata endpoint that we can fetch regularly (or when you press 'refresh metadata' in your maestrano cloud partner dashboard). By default we assume that it will be located at
-YOUR_WEBSITE/maestrano/metadata(.json)
-Of course if you prefer a different url you can always change that endpoint in your maestrano cloud partner dashboard.
-What would the controller action look like? First let's talk about authentication. You don't want that endpoint to be visible to anyone. Maestrano always uses http basic authentication to contact your service remotely. The login/password used for this authentication are your actual api.id and api.key.
-So here is an example of controller action for Rails to adapt depending on the framework you're using:
-```ruby
-class MaestranoMetaDataController < ApplicationController
-  before_filter :authenticate_maestrano!
-  def metadata
-    render json: Maestrano.to_metadata
-    # Or using presets
-    # render json: Maestrano['my-preset'].to_metadata
-  end
-  private
-    def authenticate_maestrano!
-      authorized = false
-      authenticate_with_http_basic do |app_id, api_token|
-        authorized = Maestrano.authenticate(app_id,api_token)
-      end
-      unless authorized
-        render json: {error: 'Invalid credentials' }, status: :unauthorized
-      end
-      return true
-    end
-end
+Maestrano.auto_configure # Uses environment variables
 ```
 ## Single Sign-On Setup
@@ -364,7 +123,7 @@ class User
   ...
   def self.find_or_create_for_maestrano(sso_hash)
-    user = self.where(provider:'maestrano', uid: sso_hash[:uid]).first
+    user = self.where(provider: 'maestrano', uid: sso_hash[:uid]).first
     unless user
       user = self.new
@@ -495,8 +254,6 @@ Sad as it is a business might decide to stop using your service at some point. O
 Maestrano only uses this controller for service cancellation so there is no need to implement any other type of action - ie: GET, PUT/PATCH or POST. The use of other http verbs might come in the future to improve the communication between Maestrano and your service but as of now it is not required.
-The controller example below reimplements the authenticate_maestrano! method seen in the [metadata section](#metadata) for completeness. Utimately you should move this method to a helper if you can.
 The example below is for Rails and need to be adapted depending on the framework you're using:
 ```ruby
 class MaestranoAccountGroupsController < ApplicationController
@@ -555,8 +312,6 @@ A business might decide at some point to revoke access to your services for one
 Maestrano only uses this controller for user membership cancellation so there is no need to implement any other type of action - ie: GET, PUT/PATCH or POST. The use of other http verbs might come in the future to improve the communication between Maestrano and your service but as of now it is not required.
-The controller example below reimplements the authenticate_maestrano! method seen in the [metadata section](#metadata) for completeness. Utimately you should move this method to a helper if you can.
 The example below is for Rails and need to be adapted depending on the framework you're using:
 ```ruby
 class MaestranoAccountGroupUsersController < ApplicationController
@@ -1234,8 +989,6 @@ client_presets = Maestrano::Connec::Client['my-preset'].new("cld-f7f5g4")
 client_presets.get('/organizations')
 ```
 ### Webhook Notifications
 If you have configured the Maestrano API to receive update notifications (see 'subscriptions' configuration at the top) from Connec!™ then you can expect to receive regular POST requests on the notification_path you have configured.
@@ -1263,6 +1016,6 @@ So if you have any question or need help integrating with us just let us know at
 ## License
-MIT License. Copyright 2015 Maestrano Pty Ltd. https://maestrano.com
+MIT License. Copyright 2017 Maestrano Pty Ltd. https://maestrano.com
 You are not granted rights or licenses to the trademarks of Maestrano.

data/lib/maestrano.rb CHANGED Viewed

@@ -21,7 +21,6 @@ require 'maestrano/saml/attribute_value'
 require 'maestrano/saml/response'
 require 'maestrano/saml/settings'
 require 'maestrano/saml/validation_error'
-require 'maestrano/saml/metadata'
 # SSO
 require 'maestrano/sso'
@@ -122,48 +121,6 @@ module Maestrano
     (self.configs[preset] || Configuration.new).param(parameter)
   end
-  # Return a hash describing the current
-  # Maestrano configuration. The metadata
-  # will be remotely fetched by Maestrano
-  # Exclude any info containing an api key
-  def self.to_metadata
-    hash = {}
-    hash['environment'] = self.param('environment')
-    config_groups = ['app','api','sso','webhook']
-    blacklist = ['api.key','api.token']
-    config_groups.each do |cgroup_name|
-      cgroup = self.configs[preset].send(cgroup_name)
-      attr_list = cgroup.attributes.map(&:to_s)
-      attr_list += Configuration::EVT_CONFIG[hash['environment']].keys.select { |k| k =~ Regexp.new("^#{cgroup_name}\.") }.map { |k| k.gsub(Regexp.new("^#{cgroup_name}\."),'') }
-      attr_list.uniq!
-      attr_list.each do |first_lvl|
-        if cgroup.send(first_lvl).is_a?(OpenStruct)
-          c2group = cgroup.send(first_lvl)
-          c2group.attributes.each do |secnd_lvl|
-            full_param = [cgroup_name,first_lvl,secnd_lvl].join('.')
-            unless blacklist.include?(full_param)
-              hash[cgroup_name.to_s] ||= {}
-              hash[cgroup_name.to_s][first_lvl.to_s] ||= {}
-              hash[cgroup_name.to_s][first_lvl.to_s][secnd_lvl.to_s] = self.param(full_param)
-            end
-          end
-        else
-          full_param = [cgroup_name,first_lvl].join('.')
-          unless blacklist.include?(full_param)
-            hash[cgroup_name.to_s] ||= {}
-            hash[cgroup_name.to_s][first_lvl.to_s] = self.param(full_param)
-          end
-        end
-      end
-    end
-    return hash
-  end
   def self.auto_configure(config_file_path = nil)
     AutoConfigure.get_marketplace_configurations(config_file_path)
   rescue => e
@@ -291,7 +248,7 @@ module Maestrano
     EVT_CONFIG ||= {
       'local' => {
-        'api.host'             => 'http://application.maestrano.io',
+        'api.host'             => 'http://localhost:3001',
         'api.base'             => '/api/v1/',
         'connec.enabled'       => true,
         'connec.host'          => 'http://connec.maestrano.io',
@@ -299,25 +256,11 @@ module Maestrano
         'connec.v2_path'       => '/v2',
         'connec.reports_path'  => '/reports',
         'connec.timeout'       => 60,
-        'sso.idp'              => 'http://application.maestrano.io',
+        'sso.idp'              => 'http://localhost:3001',
         'sso.name_id_format'   => Maestrano::Saml::Settings::NAMEID_PERSISTENT,
         'sso.x509_fingerprint' => '01:06:15:89:25:7d:78:12:28:a6:69:c7:de:63:ed:74:21:f9:f5:36',
         'sso.x509_certificate' => "-----BEGIN CERTIFICATE-----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\nRkjkjqy+H7vir/MOF3rlFjiv5twAbDKYHXDT7v1YCg==\n-----END CERTIFICATE-----"
       },
-      'test' => {
-        'api.host'             => 'http://api-sandbox.maestrano.io',
-        'api.base'             => '/api/v1/',
-        'connec.enabled'       => true,
-        'connec.host'          => 'http://api-sandbox.maestrano.io',
-        'connec.base_path'     => '/connec/api/v2',
-        'connec.v2_path'       => '/v2',
-        'connec.reports_path'  => '/reports',
-        'connec.timeout'       => 60,
-        'sso.idp'              => 'https://maestrano.com',
-        'sso.name_id_format'   => Maestrano::Saml::Settings::NAMEID_PERSISTENT,
-        'sso.x509_fingerprint' => '01:06:15:89:25:7d:78:12:28:a6:69:c7:de:63:ed:74:21:f9:f5:36',
-        'sso.x509_certificate' => "-----BEGIN CERTIFICATE-----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\nRkjkjqy+H7vir/MOF3rlFjiv5twAbDKYHXDT7v1YCg==\n-----END CERTIFICATE-----",
-      },
       'uat' => {
         'api.host'             => 'https://uat.maestrano.io',
         'api.base'             => '/api/v1/',

data/lib/maestrano/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Maestrano
-  VERSION = '1.0.0'
+  VERSION = '1.0.1'
 end

data/test/maestrano/connec/client_test.rb CHANGED Viewed

@@ -3,49 +3,49 @@ require File.expand_path('../../../test_helper', __FILE__)
 module Maestrano
   module Connec
     class ClientTest < Test::Unit::TestCase
       context 'without preset' do
         context 'initializer' do
           context '.base_uri' do
-            context 'in test' do
-              setup { Maestrano.configs = {}; Maestrano.configure { |config| config.environment = 'test' } }
+            context 'in local' do
+              setup { Maestrano.configs = {}; Maestrano.configure { |config| config.environment = 'local' } }
               setup { @client = Maestrano::Connec::Client.new("cld-123") }
               should "return the right uri" do
-                assert_equal "http://api-sandbox.maestrano.io/connec/api/v2", Maestrano::Connec::Client.base_uri
+                assert_equal "http://connec.maestrano.io/api/v2", Maestrano::Connec::Client.base_uri
               end
             end
             context 'in production' do
               setup { Maestrano.configs = {}; Maestrano.configure { |config| config.environment = 'production' } }
               setup { @client = Maestrano::Connec::Client.new("cld-123") }
               should "return the right uri" do
                 assert_equal "https://api-connec.maestrano.com/api/v2", Maestrano::Connec::Client.base_uri
               end
             end
           end
         end
         context 'scoped_path' do
           setup { @client = Maestrano::Connec::Client.new("cld-123") }
           should "return the right scoped path" do
             assert_equal "/cld-123/people", @client.scoped_path('/people')
           end
           should "remove any leading or trailing slash" do
             assert_equal "/cld-123/people", @client.scoped_path('/people/')
           end
         end
         context 'default_options' do
           setup { @client = Maestrano::Connec::Client.new("cld-123") }
           should "return the right authentication options" do
             expected_opts = {
-              basic_auth: {
-                username: Maestrano.param('api.id'),
+              basic_auth: {
+                username: Maestrano.param('api.id'),
                 password: Maestrano.param('api.key')
               },
               timeout: Maestrano.param('connec.timeout')
@@ -53,10 +53,10 @@ module Maestrano
             assert_equal expected_opts, @client.default_options
           end
         end
         context 'get' do
           setup { @client = Maestrano::Connec::Client.new("cld-123") }
           should "perform the right query" do
             path = '/people'
             opts = { foo: 'bar' }
@@ -65,10 +65,10 @@ module Maestrano
             assert_equal resp, @client.get(path,opts)
           end
         end
         context 'post' do
           setup { @client = Maestrano::Connec::Client.new("cld-123") }
           should "perform the right query" do
             path = '/people'
             body = { some: 'data'}
@@ -78,10 +78,10 @@ module Maestrano
             assert_equal resp, @client.post(path,body,opts)
           end
         end
         context 'put' do
           setup { @client = Maestrano::Connec::Client.new("cld-123") }
           should "perform the right query" do
             path = '/people/123'
             body = { some: 'data'}
@@ -94,7 +94,7 @@ module Maestrano
         context 'batch' do
           setup { @client = Maestrano::Connec::Client.new("cld-123") }
           should "perform the right query" do
             body = { some: 'data'}
             opts = { foo: 'bar' }
@@ -112,7 +112,7 @@ module Maestrano
           @config = {
             'environment'       => 'production',
             'app.host'          => 'http://mysuperapp.com',
             'api.id'            => 'app-f54ds4f8',
             'api.key'           => 'someapikey',
@@ -124,7 +124,7 @@ module Maestrano
           @preset_config = {
             'environment'       => 'production',
             'app.host'          => 'http://myotherapp.com',
             'api.id'            => 'app-553941',
             'api.key'           => 'otherapikey',
@@ -136,7 +136,7 @@ module Maestrano
           Maestrano.configure do |config|
             config.environment = @config['environment']
             config.app.host = @config['app.host']
             config.api.id = @config['api.id']
             config.api.key = @config['api.key']
@@ -144,11 +144,11 @@ module Maestrano
             config.connec.host = @config['connec.host']
             config.connec.base_path = @config['connec.base_path']
           end
           Maestrano[@preset].configure do |config|
             config.environment = @preset_config['environment']
             config.app.host = @preset_config['app.host']
             config.api.id = @preset_config['api.id']
             config.api.key = @preset_config['api.key']
@@ -160,45 +160,45 @@ module Maestrano
         context 'initializer' do
           context '.base_uri' do
-            context 'in test' do
-              setup { Maestrano[@preset].configure { |config| config.environment = 'test' } }
+            context 'in local' do
+              setup { Maestrano[@preset].configure { |config| config.environment = 'local' } }
               setup { @client = Maestrano::Connec::Client[@preset].new("cld-123") }
               should "return the right uri" do
                 assert_equal "https://other-provider.com/data", Maestrano::Connec::Client[@preset].base_uri
               end
             end
             context 'in production' do
               setup { Maestrano[@preset].configure { |config| config.environment = 'production' } }
               setup { @client = Maestrano::Connec::Client[@preset].new("cld-123") }
               should "return the right uri" do
                 assert_equal "https://other-provider.com/data", Maestrano::Connec::Client[@preset].base_uri
               end
             end
           end
         end
         context 'scoped_path' do
           setup { @client = Maestrano::Connec::Client[@preset].new("cld-123") }
           should "return the right scoped path" do
             assert_equal "/cld-123/people", @client.scoped_path('/people')
           end
           should "remove any leading or trailing slash" do
             assert_equal "/cld-123/people", @client.scoped_path('/people/')
           end
         end
         context 'default_options' do
           setup { @client = Maestrano::Connec::Client[@preset].new("cld-123") }
           should "return the right authentication options" do
             expected_opts = {
-              basic_auth: {
-                username: Maestrano[@preset].param('api.id'),
+              basic_auth: {
+                username: Maestrano[@preset].param('api.id'),
                 password: Maestrano[@preset].param('api.key')
               },
               timeout: Maestrano[@preset].param('connec.timeout')
@@ -206,10 +206,10 @@ module Maestrano
             assert_equal expected_opts, @client.default_options
           end
         end
         context 'get' do
           setup { @client = Maestrano::Connec::Client[@preset].new("cld-123") }
           should "perform the right query" do
             path = '/people'
             opts = { foo: 'bar' }
@@ -218,10 +218,10 @@ module Maestrano
             assert_equal resp, @client.get(path,opts)
           end
         end
         context 'post' do
           setup { @client = Maestrano::Connec::Client[@preset].new("cld-123") }
           should "perform the right query" do
             path = '/people'
             body = { some: 'data'}
@@ -231,10 +231,10 @@ module Maestrano
             assert_equal resp, @client.post(path,body,opts)
           end
         end
         context 'put' do
           setup { @client = Maestrano::Connec::Client[@preset].new("cld-123") }
           should "perform the right query" do
             path = '/people/123'
             body = { some: 'data'}
@@ -247,4 +247,4 @@ module Maestrano
       end
     end
   end
-end
+end

data/test/maestrano/maestrano_test.rb CHANGED Viewed

@@ -466,49 +466,4 @@ class MaestranoTest < Test::Unit::TestCase
       assert_equal 'usr-1', Maestrano.unmask_user('usr-1')
     end
   end
-  context "to_metadata" do
-    should "should return the right hash" do
-      expected = {
-        'environment'        => @config['environment'],
-        'app' => {
-          'host'             => @config['app.host']
-        },
-        'api' => {
-          'id'               => @config['api.id'],
-          'version'          => Maestrano::VERSION,
-          'verify_ssl_certs' => false,
-          'lang'             => 'ruby',
-          'lang_version'     => "#{RUBY_VERSION} p#{RUBY_PATCHLEVEL} (#{RUBY_RELEASE_DATE})",
-          'host'             => Maestrano::Configuration::EVT_CONFIG[@config['environment']]['api.host'],
-          'base'             => Maestrano::Configuration::EVT_CONFIG[@config['environment']]['api.base'],
-        },
-        'sso' => {
-          'enabled'          => @config['sso.enabled'],
-          'slo_enabled'      => @config['sso.slo_enabled'],
-          'init_path'        => @config['sso.init_path'],
-          'consume_path'     => @config['sso.consume_path'],
-          'creation_mode'    => @config['sso.creation_mode'],
-          'idm'              => @config['sso.idm'],
-          'idp'              => Maestrano::Configuration::EVT_CONFIG[@config['environment']]['sso.idp'],
-          'name_id_format'   => Maestrano::Configuration::EVT_CONFIG[@config['environment']]['sso.name_id_format'],
-          'x509_fingerprint' => Maestrano::Configuration::EVT_CONFIG[@config['environment']]['sso.x509_fingerprint'],
-          'x509_certificate' => Maestrano::Configuration::EVT_CONFIG[@config['environment']]['sso.x509_certificate'],
-        },
-        'webhook' => {
-          'account' => {
-            'groups_path' => @config['webhook.account.groups_path'],
-            'group_users_path' => @config['webhook.account.group_users_path'],
-          },
-          'connec' => {
-            'notifications_path' => 'mno/receive',
-            'subscriptions'      => { organizations: true, people: true }
-          }
-        }
-      }
-      assert_equal expected, Maestrano.to_metadata
-    end
-  end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: maestrano
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.0.1
 platform: ruby
 authors:
 - Maestrano
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-11-25 00:00:00.000000000 Z
+date: 2017-01-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rest-client
@@ -218,7 +218,6 @@ files:
 - lib/maestrano/open_struct.rb
 - lib/maestrano/preset.rb
 - lib/maestrano/saml/attribute_value.rb
-- lib/maestrano/saml/metadata.rb
 - lib/maestrano/saml/request.rb
 - lib/maestrano/saml/response.rb
 - lib/maestrano/saml/schemas/saml20assertion_schema.xsd
@@ -305,7 +304,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.5.1
+rubygems_version: 2.4.8
 signing_key:
 specification_version: 4
 summary: Ruby bindings for the Maestrano API

data/lib/maestrano/saml/metadata.rb DELETED Viewed

@@ -1,64 +0,0 @@
-require "rexml/document"
-require "rexml/xpath"
-require "uri"
-# Class to return SP metadata based on the settings requested.
-# Return this XML in a controller, then give that URL to the the
-# IdP administrator.  The IdP will poll the URL and your settings
-# will be updated automatically
-module Maestrano
-  module Saml
-    include REXML
-    class Metadata
-      def generate(settings)
-        meta_doc = REXML::Document.new
-        root = meta_doc.add_element "md:EntityDescriptor", {
-            "xmlns:md" => "urn:oasis:names:tc:SAML:2.0:metadata"
-        }
-        sp_sso = root.add_element "md:SPSSODescriptor", {
-            "protocolSupportEnumeration" => "urn:oasis:names:tc:SAML:2.0:protocol",
-            # Metadata request need not be signed (as we don't publish our cert)
-            "AuthnRequestsSigned" => false,
-            # However we would like assertions signed if idp_cert_fingerprint or idp_cert is set
-            "WantAssertionsSigned" => (!settings.idp_cert_fingerprint.nil? || !settings.idp_cert.nil?)
-        }
-        if settings.issuer != nil
-          root.attributes["entityID"] = settings.issuer
-        end
-        if settings.assertion_consumer_logout_service_url != nil
-          sp_sso.add_element "md:SingleLogoutService", {
-              # Add this as a setting to create different bindings?
-              "Binding" => "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect",
-              "Location" => settings.assertion_consumer_logout_service_url,
-              "ResponseLocation" => settings.assertion_consumer_logout_service_url,
-              "isDefault" => true,
-              "index" => 0
-          }
-        end
-        if settings.name_identifier_format != nil
-          name_id = sp_sso.add_element "md:NameIDFormat"
-          name_id.text = settings.name_identifier_format
-        end
-        if settings.assertion_consumer_service_url != nil
-          sp_sso.add_element "md:AssertionConsumerService", {
-              # Add this as a setting to create different bindings?
-              "Binding" => "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
-              "Location" => settings.assertion_consumer_service_url,
-              "isDefault" => true,
-              "index" => 0
-          }
-        end
-        # With OpenSSO, it might be required to also include
-        #  <md:RoleDescriptor xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:query="urn:oasis:names:tc:SAML:metadata:ext:query" xsi:type="query:AttributeQueryDescriptorType" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"/>
-        #  <md:XACMLAuthzDecisionQueryDescriptor WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol"/>
-        meta_doc << REXML::XMLDecl.new
-        ret = ""
-        # pretty print the XML so IdP administrators can easily see what the SP supports
-        meta_doc.write(ret, 1)
-        ret
-      end
-    end
-  end
-end