ruby-saml-mod 0.1.30 → 0.2.0

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ruby-saml-mod
 version: !ruby/object:Gem::Version
-  version: 0.1.30
+  version: 0.2.0
 platform: ruby
 authors:
 - OneLogin LLC
@@ -14,7 +14,7 @@ authors:
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-05-05 00:00:00.000000000 Z
+date: 2014-10-31 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: libxml-ruby
@@ -44,20 +44,46 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.14.1
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 2.14.1
 description: 'This is an early fork from https://github.com/onelogin/ruby-saml - I
   plan to "rebase" these changes ontop of their current version eventually. '
 email: 
 executables: []
 extensions: []
-extra_rdoc_files:
-- LICENSE
+extra_rdoc_files: []
 files:
-- LICENSE
-- README
 - lib/onelogin/saml.rb
 - lib/onelogin/saml/auth_request.rb
 - lib/onelogin/saml/authn_contexts.rb
-- lib/onelogin/saml/log_out_request.rb
+- lib/onelogin/saml/base_assertion.rb
+- lib/onelogin/saml/logout_request.rb
 - lib/onelogin/saml/logout_response.rb
 - lib/onelogin/saml/meta_data.rb
 - lib/onelogin/saml/name_identifiers.rb
@@ -65,8 +91,28 @@ files:
 - lib/onelogin/saml/settings.rb
 - lib/onelogin/saml/status_codes.rb
 - lib/xml_sec.rb
-- ruby-saml-mod.gemspec
-homepage: http://github.com/bracken/ruby-saml
+- spec/base_assertion_spec.rb
+- spec/fixtures/logout_request.xml
+- spec/fixtures/logout_response.xml
+- spec/fixtures/test1-cert.pem
+- spec/fixtures/test1-key.pem
+- spec/fixtures/test1-response.xml
+- spec/fixtures/test2-response.xml
+- spec/fixtures/test3-response.xml
+- spec/fixtures/test4-response.xml
+- spec/fixtures/test5-response.xml
+- spec/fixtures/test6-response.xml
+- spec/fixtures/wrong-key.pem
+- spec/fixtures/xml_signature_wrapping_attack_duplicate_ids.xml
+- spec/fixtures/xml_signature_wrapping_attack_response_attributes.xml
+- spec/fixtures/xml_signature_wrapping_attack_response_nameid.xml
+- spec/logout_request_spec.rb
+- spec/logout_response_spec.rb
+- spec/meta_data_spec.rb
+- spec/response_spec.rb
+- spec/spec_helper.rb
+- spec/support/test_server.rb
+homepage: http://github.com/instructure/ruby-saml
 licenses: []
 metadata: {}
 post_install_message: 
@@ -89,5 +135,26 @@ rubygems_version: 2.2.2
 signing_key: 
 specification_version: 4
 summary: Ruby library for SAML service providers
-test_files: []
+test_files:
+- spec/base_assertion_spec.rb
+- spec/fixtures/logout_request.xml
+- spec/fixtures/logout_response.xml
+- spec/fixtures/test1-cert.pem
+- spec/fixtures/test1-key.pem
+- spec/fixtures/test1-response.xml
+- spec/fixtures/test2-response.xml
+- spec/fixtures/test3-response.xml
+- spec/fixtures/test4-response.xml
+- spec/fixtures/test5-response.xml
+- spec/fixtures/test6-response.xml
+- spec/fixtures/wrong-key.pem
+- spec/fixtures/xml_signature_wrapping_attack_duplicate_ids.xml
+- spec/fixtures/xml_signature_wrapping_attack_response_attributes.xml
+- spec/fixtures/xml_signature_wrapping_attack_response_nameid.xml
+- spec/logout_request_spec.rb
+- spec/logout_response_spec.rb
+- spec/meta_data_spec.rb
+- spec/response_spec.rb
+- spec/spec_helper.rb
+- spec/support/test_server.rb
 has_rdoc: 

data/LICENSE

@@ -1,19 +0,0 @@
-Copyright (c) 2010 OneLogin, LLC
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in
-all copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
-THE SOFTWARE.

data/README

@@ -1,7 +0,0 @@
-== SAML toolkit for Ruby on Rails
-
-Documentation from onelogin: http://support.onelogin.com/entries/165434-saml-toolkit-for-ruby-on-rails
-
-The example folder has a rails 2.3.5 example application.
-
-A Gem will eventually be created.

data/lib/onelogin/saml/log_out_request.rb

@@ -1,54 +0,0 @@
-module Onelogin::Saml
-  class LogOutRequest
-    attr_reader :settings, :id, :request_xml, :forward_url
-
-    def initialize(settings, session)
-      @settings = settings
-      @session = session
-    end
-
-    def self.create(settings, session)
-      ar = LogOutRequest.new(settings, session)
-      ar.generate_request
-    end
-
-    def generate_request
-      @id = Onelogin::Saml::AuthRequest.generate_unique_id(42)
-      issue_instant = Onelogin::Saml::AuthRequest.get_timestamp
-
-      @request_xml = <<-REQUEST_XML
-<samlp:LogoutRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" ID="#{@id}" Version="2.0" IssueInstant="#{issue_instant}" Destination="#{@settings.idp_slo_target_url}">
-  <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">#{@settings.issuer}</saml:Issuer>
-  <saml:NameID xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" NameQualifier="#{@session[:name_qualifier]}" SPNameQualifier="#{@settings.issuer}" Format="#{@settings.name_identifier_format}">#{@session[:name_id]}</saml:NameID>
-  <samlp:SessionIndex xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">#{@session[:session_index]}</samlp:SessionIndex>
-</samlp:LogoutRequest>
-      REQUEST_XML
-
-      deflated_logout_request = Zlib::Deflate.deflate(@request_xml, 9)[2..-5]
-      base64_logout_request = Base64.strict_encode64(deflated_logout_request)
-
-      url, existing_query_string = @settings.idp_slo_target_url.split('?')
-      query_string = _query_string_append(existing_query_string, 'SAMLRequest', base64_logout_request)
-
-      if settings.sign?
-        query_string = _query_string_append(query_string, "SigAlg", "http://www.w3.org/2000/09/xmldsig#rsa-sha1")
-        signature =  _generate_signature(query_string, @settings.xmlsec_privatekey)
-        query_string = _query_string_append(query_string, "Signature", signature)
-      end
-
-      @forward_url = [url, query_string].join("?")
-
-      @forward_url
-    end
-
-    def _generate_signature(string, private_key)
-      pkey = OpenSSL::PKey::RSA.new(File.read(private_key))
-      sign = pkey.sign(OpenSSL::Digest::SHA1.new, string)
-      Base64.encode64(sign).gsub(/\s/, '')
-    end
-
-    def _query_string_append(query_string, key, value)
-      [query_string, "#{CGI.escape(key)}=#{CGI.escape(value)}"].compact.join('&')
-    end
-  end
-end

data/ruby-saml-mod.gemspec

@@ -1,33 +0,0 @@
-Gem::Specification.new do |s|
-  s.name = %q{ruby-saml-mod}
-  s.version = "0.1.30"
-
-  s.authors = ["OneLogin LLC", "Bracken", "Zach", "Cody", "Jeremy", "Paul", "Nick"]
-  s.date = %q{2014-05-05}
-  s.extra_rdoc_files = [
-    "LICENSE"
-  ]
-  s.files = [
-    "LICENSE",
-    "README",
-    "lib/onelogin/saml.rb",
-    "lib/onelogin/saml/auth_request.rb",
-    "lib/onelogin/saml/authn_contexts.rb",
-    "lib/onelogin/saml/log_out_request.rb",
-    "lib/onelogin/saml/logout_response.rb",
-    "lib/onelogin/saml/meta_data.rb",
-    "lib/onelogin/saml/name_identifiers.rb",
-    "lib/onelogin/saml/response.rb",
-    "lib/onelogin/saml/settings.rb",
-    "lib/onelogin/saml/status_codes.rb",
-    "lib/xml_sec.rb",
-    "ruby-saml-mod.gemspec"
-  ]
-  s.add_dependency('libxml-ruby', '>= 2.3.0')
-  s.add_dependency('ffi')
-
-  s.homepage = %q{http://github.com/bracken/ruby-saml}
-  s.require_paths = ["lib"]
-  s.summary = %q{Ruby library for SAML service providers}
-  s.description = %q{This is an early fork from https://github.com/onelogin/ruby-saml - I plan to "rebase" these changes ontop of their current version eventually. }
-end