omniauth-latvija 4.0.0 → 5.0.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/README.md +8 -7
- data/lib/omniauth-latvija/version.rb +1 -1
- data/lib/omniauth/strategies/latvija.rb +26 -4
- data/lib/omniauth/strategies/latvija/response.rb +19 -3
- metadata +3 -3
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
|
-
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
2
|
+
SHA256:
|
3
|
+
metadata.gz: 9bd3dccbc8a7d0c3085a09fdbdfcade5add5a37957b3feb2bfc39db7a645ff6e
|
4
|
+
data.tar.gz: 6ecb7bd1e3a242e1e7fce010e4902c7937953da93abda12b2567c7fd61e1f2e0
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 9ce3aac6b6409192882ea39b190dd77b5e364bc038c7204d6bdaeb76b546529eaf9b60c07cb445b36b57216379b9977257775a94bda4b64eaa5f1e3a2392d9df
|
7
|
+
data.tar.gz: 9a951c691b8314fd084a490cbe528e66901bf77da147f6412eeedd7208b334df9998e966c32accf02002c880524cd3e9b9300b97fb1c0c90907e2e79e0051f43
|
data/README.md
CHANGED
@@ -19,7 +19,7 @@ Provides the following authentication types:
|
|
19
19
|
## Installation
|
20
20
|
|
21
21
|
```ruby
|
22
|
-
gem 'omniauth-latvija'
|
22
|
+
gem 'omniauth-latvija'
|
23
23
|
```
|
24
24
|
|
25
25
|
## Usage
|
@@ -47,7 +47,7 @@ Here's an example hash available in `request.env['omniauth.auth']`
|
|
47
47
|
```ruby
|
48
48
|
{
|
49
49
|
provider: 'latvija',
|
50
|
-
uid: '
|
50
|
+
uid: 'PK:12345612345',
|
51
51
|
info: {
|
52
52
|
name: 'JANIS BERZINS',
|
53
53
|
first_name: 'JANIS',
|
@@ -56,14 +56,15 @@ Here's an example hash available in `request.env['omniauth.auth']`
|
|
56
56
|
},
|
57
57
|
extra: {
|
58
58
|
raw_info: {
|
59
|
-
|
60
|
-
|
61
|
-
|
62
|
-
|
59
|
+
givenname: 'JANIS',
|
60
|
+
surname: 'BERZINS',
|
61
|
+
privatepersonalidentifier: '12345612345',
|
62
|
+
historical_privatepersonalidentifier: [],
|
63
63
|
not_valid_before: '2019-05-09T07:29:41Z',
|
64
64
|
not_valid_on_or_after: '2019-05-09T08:29:41Z'
|
65
65
|
},
|
66
|
-
authentication_method: 'SWEDBANK'
|
66
|
+
authentication_method: 'SWEDBANK',
|
67
|
+
legacy_uids: ['JANIS BERZINS, 12345612345']
|
67
68
|
}
|
68
69
|
}
|
69
70
|
```
|
@@ -34,11 +34,9 @@ module OmniAuth::Strategies
|
|
34
34
|
option :certificate, nil
|
35
35
|
option :private_key, nil
|
36
36
|
|
37
|
-
uid { "#{raw_info['givenname']} #{raw_info['surname']}, #{raw_info["privatepersonalidentifier"]}" }
|
38
|
-
|
39
37
|
info do
|
40
38
|
{
|
41
|
-
name:
|
39
|
+
name: full_name,
|
42
40
|
first_name: raw_info['givenname'],
|
43
41
|
last_name: raw_info['surname'],
|
44
42
|
private_personal_identifier: raw_info['privatepersonalidentifier']
|
@@ -48,7 +46,8 @@ module OmniAuth::Strategies
|
|
48
46
|
extra do
|
49
47
|
{
|
50
48
|
raw_info: raw_info,
|
51
|
-
authentication_method: @response.authentication_method
|
49
|
+
authentication_method: @response.authentication_method,
|
50
|
+
legacy_uids: legacy_uids
|
52
51
|
}
|
53
52
|
end
|
54
53
|
|
@@ -85,5 +84,28 @@ module OmniAuth::Strategies
|
|
85
84
|
def raw_info
|
86
85
|
@response.attributes
|
87
86
|
end
|
87
|
+
|
88
|
+
def uid
|
89
|
+
@response.name_identifier
|
90
|
+
end
|
91
|
+
|
92
|
+
def full_name
|
93
|
+
@full_name ||= "#{raw_info['givenname']} #{raw_info['surname']}"
|
94
|
+
end
|
95
|
+
|
96
|
+
def legacy_uids
|
97
|
+
# UIDs that could have been assigned to this identity by previous versions of the gem, or due to peronal identifier change
|
98
|
+
|
99
|
+
legacy_uids = [
|
100
|
+
"#{full_name}, #{raw_info["privatepersonalidentifier"]}" # generated by gem version <= 4.0
|
101
|
+
]
|
102
|
+
|
103
|
+
raw_info.fetch('historical_privatepersonalidentifier', []).each do |historical_identifier|
|
104
|
+
legacy_uids << "#{full_name}, #{historical_identifier}" # generated by gem version <= 4.0
|
105
|
+
legacy_uids << "PK:#{historical_identifier}" # due to personal identifier change
|
106
|
+
end
|
107
|
+
|
108
|
+
legacy_uids
|
109
|
+
end
|
88
110
|
end
|
89
111
|
end
|
@@ -26,23 +26,39 @@ module OmniAuth::Strategies
|
|
26
26
|
end
|
27
27
|
end
|
28
28
|
|
29
|
+
def name_identifier
|
30
|
+
@name_identifier ||= begin
|
31
|
+
xml.xpath('//saml:AuthenticationStatement/saml:Subject/saml:NameIdentifier', saml: ASSERTION).text()
|
32
|
+
end
|
33
|
+
end
|
34
|
+
|
29
35
|
# A hash of all the attributes with the response.
|
30
36
|
# Assuming there is only one value for each key
|
31
37
|
def attributes
|
32
38
|
@attributes ||= begin
|
33
39
|
attrs = {
|
34
40
|
'not_valid_before' => not_valid_before,
|
35
|
-
'not_valid_on_or_after' => not_valid_on_or_after
|
41
|
+
'not_valid_on_or_after' => not_valid_on_or_after,
|
42
|
+
'historical_privatepersonalidentifier' => []
|
36
43
|
}
|
37
44
|
|
38
45
|
stmt_elements = xml.xpath('//a:Attribute', a: ASSERTION)
|
39
46
|
return attrs if stmt_elements.nil?
|
40
47
|
|
41
48
|
stmt_elements.each_with_object(attrs) do |element, result|
|
42
|
-
name
|
49
|
+
name = element.attribute('AttributeName').value
|
43
50
|
value = element.text
|
44
51
|
|
45
|
-
|
52
|
+
case name
|
53
|
+
when 'privatepersonalidentifier' # person can change their identifier, service will return all the versions
|
54
|
+
if element.attribute('OriginalIssuer') # this is the primary identifier, as returned by third party auth service
|
55
|
+
result[name] = value
|
56
|
+
else
|
57
|
+
result['historical_privatepersonalidentifier'] << value
|
58
|
+
end
|
59
|
+
else
|
60
|
+
result[name] = value
|
61
|
+
end
|
46
62
|
end
|
47
63
|
end
|
48
64
|
end
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: omniauth-latvija
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version:
|
4
|
+
version: 5.0.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Edgars Beigarts
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2019-
|
11
|
+
date: 2019-11-12 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: omniauth
|
@@ -170,7 +170,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
170
170
|
version: '0'
|
171
171
|
requirements: []
|
172
172
|
rubyforge_project:
|
173
|
-
rubygems_version: 2.6
|
173
|
+
rubygems_version: 2.7.6
|
174
174
|
signing_key:
|
175
175
|
specification_version: 4
|
176
176
|
summary: Latvija.lv authentication strategy for OmniAuth
|