osso 0.0.3.4 → 0.0.3.9

data/lib/osso/models/saml_provider.rb

@@ -1,52 +0,0 @@
-# frozen_string_literal: true
-
-module Osso
-  module Models
-    # Base class for SAML Providers
-    class SamlProvider < ActiveRecord::Base
-      NAME_FORMAT = 'urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress'
-      self.inheritance_column = :provider
-      belongs_to :enterprise_account
-      belongs_to :oauth_client
-      has_many :users
-
-      before_create :create_enterprise_account
-
-      def name
-        raise(
-          NoMethodError,
-          '#name must be defined on each provider specific subclass',
-        )
-      end
-
-      def saml_options
-        raise(
-          NoMethodError,
-          '#saml_options must be defined on each provider specific subclass',
-        )
-      end
-
-      def assertion_consumer_service_url
-        [
-          ENV.fetch('BASE_URL'),
-          'auth',
-          'saml',
-          id,
-          'callback',
-        ].join('/')
-      end
-
-      alias acs_url assertion_consumer_service_url
-
-      def create_enterprise_account
-        return if enterprise_account_id
-
-        self.enterprise_account = Models::EnterpriseAccount.create(
-          domain: domain,
-        )
-      end
-    end
-  end
-end
-require_relative 'saml_providers/azure_saml_provider'
-require_relative 'saml_providers/okta_saml_provider'

data/lib/osso/models/saml_providers/azure_saml_provider.rb

@@ -1,22 +0,0 @@
-# frozen_string_literal: true
-
-module Osso
-  module Models
-    # Subclass for Azure / ADFS IDP instances
-    class AzureSamlProvider < Models::SamlProvider
-      def name
-        'Azure'
-      end
-
-      def saml_options
-        attributes.slice(
-          'domain',
-          'idp_cert',
-          'idp_sso_target_url',
-        ).merge(
-          issuer: "id:#{id}",
-        ).symbolize_keys
-      end
-    end
-  end
-end

data/lib/osso/models/saml_providers/okta_saml_provider.rb

@@ -1,23 +0,0 @@
-# frozen_string_literal: true
-
-module Osso
-  module Models
-    # Subclass for Okta IDP instances
-    class OktaSamlProvider < Models::SamlProvider
-      def name
-        'Okta'
-      end
-
-      def saml_options
-        attributes.slice(
-          'domain',
-          'idp_cert',
-          'idp_sso_target_url',
-        ).merge(
-          issuer: id,
-          name_identifier_format: NAME_FORMAT,
-        ).symbolize_keys
-      end
-    end
-  end
-end

data/spec/factories/saml_providers.rb

@@ -1,46 +0,0 @@
-# frozen_string_literal: true
-
-FactoryBot.define do
-  factory :saml_provider, class: Osso::Models::SamlProvider do
-    id { SecureRandom.uuid }
-    domain { Faker::Internet.domain_name }
-    oauth_client
-    idp_cert do
-      <<~CERT
-        -----BEGIN CERTIFICATE-----
-        MIIDpDCCAoygAwIBAgIGAXEiD4LlMA0GCSqGSIb3DQEBCwUAMIGSMQswCQYDVQQGEwJVUzETMBEG
-        A1UECAwKQ2FsaWZvcm5pYTEWMBQGA1UEBwwNU2FuIEZyYW5jaXNjbzENMAsGA1UECgwET2t0YTEU
-        MBIGA1UECwwLU1NPUHJvdmlkZXIxEzARBgNVBAMMCmRldi0xNjIwMjQxHDAaBgkqhkiG9w0BCQEW
-        DWluZm9Ab2t0YS5jb20wHhcNMjAwMzI4MTY1MTU0WhcNMzAwMzI4MTY1MjU0WjCBkjELMAkGA1UE
-        BhMCVVMxEzARBgNVBAgMCkNhbGlmb3JuaWExFjAUBgNVBAcMDVNhbiBGcmFuY2lzY28xDTALBgNV
-        BAoMBE9rdGExFDASBgNVBAsMC1NTT1Byb3ZpZGVyMRMwEQYDVQQDDApkZXYtMTYyMDI0MRwwGgYJ
-        KoZIhvcNAQkBFg1pbmZvQG9rdGEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA
-        wsnP4UTfv3bxR5Jh0at51Dqjj+fKxFznzFW3XA5NbF2SlRLjeYcvj3+47TC0eP6xOsLWfnvdnx4v
-        dd9Ufn7jDCo5pL3JykMVEh2I0szF3RLC+a532ArcwgU9Px48+rWVwPkASS7l4NHAM4+gOBHJMQt2
-        AMohPT0kU41P8BEPzfwhNyiEXR66JNZIJUE8fM3Vpgnxm/VSwYzJf0NfOyfxv8JczF0zkDbpE7Tk
-        3Ww/PFFLoMxWzanWGJQ+blnhv6UV6H4fcfAbcwAplOdIVHjS2ghYBvYNGahuFxjia0+6csyZGrt8
-        H4XmR5Dr+jXY5K1b1VOA0k19/FCnHHN/smn25wIDAQABMA0GCSqGSIb3DQEBCwUAA4IBAQBgD9NE
-        4OCuR1+vucV8S1T6XXIL2hB7bXBAZEVHZ1aErRzktgXAMgVwG267vIkD5VOXBiTy9yNU5LK6G3k2
-        zewU190sL1dMfyPnoVZyn94nvwe9A+on0tmZdmk00xirKk3FJdacnZNE9Dl/afIrcNf6xAm0WsU9
-        kbMiRwwvjO4TAiygDQzbrRC8ZfmT3hpBa3aTUzAccrvEQcgarLk4r7UjXP7a2mCN3UIIh+snN2Ms
-        vXHL0r6fM3xbniz+5lleWtPFw73yySBc8znkWZ4Tn8Lh0r6o5nCRYbr2REUB7ZIfiIyBbZxIp4kv
-        a+habbnQDFiNVzEd8OPXHh4EqLxOPDRW
-        -----END CERTIFICATE-----
-      CERT
-    end
-
-    factory :okta_saml_provider, parent: :saml_provider, class: Osso::Models::OktaSamlProvider do
-      provider { 'Osso::Models::OktaSamlProvider' }
-      idp_sso_target_url do
-        'https://dev-162024.okta.com/app/vcardmedev162024_rubydemo2_1/exk51326b3U1941Hf4x6/sso/saml'
-      end
-    end
-
-    factory :azure_saml_provider, parent: :saml_provider, class: Osso::Models::AzureSamlProvider do
-      provider { 'Osso::Models::AzureSamlProvider' }
-      idp_sso_target_url do
-        'https://login.microsoftonline.com/0af6c610-c40c-4683-9ea4-f25e509b8172/saml2'
-      end
-    end
-  end
-end

data/spec/models/saml_provider_spec.rb

@@ -1,31 +0,0 @@
-# frozen_string_literal: true
-
-require 'spec_helper'
-
-describe Osso::Models::SamlProvider do
-  subject { create(:okta_saml_provider) }
-
-  describe '.create' do
-    it 'creates an enterprise account' do
-      domain = Faker::Internet.domain_name
-
-      provider = described_class.create(
-        domain: domain,
-        provider: 'Osso::Models::OktaSamlProvider',
-      )
-
-      expect(provider.enterprise_account).to be_a(Osso::Models::EnterpriseAccount)
-      expect(provider.enterprise_account.domain).to eq(domain)
-    end
-  end
-
-  describe '#assertion_consumer_service_url' do
-    it 'returns the expected URI' do
-      ENV['BASE_URL'] = 'https://example.com'
-
-      expect(subject.assertion_consumer_service_url).to eq(
-        "https://example.com/auth/saml/#{subject.id}/callback",
-      )
-    end
-  end
-end