ruby-saml 0.8.10 → 0.8.15

Sign up to get free protection for your applications and to get access to all the features.

Potentially problematic release.

This version of ruby-saml might be problematic. Click here for more details.

Files changed (37) hide show
  1. checksums.yaml +4 -4
  2. data/Gemfile +3 -1
  3. data/Rakefile +0 -14
  4. data/lib/onelogin/ruby-saml/authrequest.rb +3 -2
  5. data/lib/onelogin/ruby-saml/logoutrequest.rb +3 -0
  6. data/lib/onelogin/ruby-saml/logoutresponse.rb +1 -24
  7. data/lib/onelogin/ruby-saml/response.rb +206 -20
  8. data/lib/onelogin/ruby-saml/setting_error.rb +6 -0
  9. data/lib/onelogin/ruby-saml/settings.rb +26 -0
  10. data/lib/onelogin/ruby-saml/slo_logoutresponse.rb +3 -2
  11. data/lib/onelogin/ruby-saml/utils.rb +90 -0
  12. data/lib/onelogin/ruby-saml/version.rb +1 -1
  13. data/lib/xml_security.rb +222 -87
  14. data/test/certificates/ruby-saml-2.crt +15 -0
  15. data/test/logoutrequest_test.rb +124 -126
  16. data/test/logoutresponse_test.rb +22 -28
  17. data/test/response_test.rb +348 -129
  18. data/test/responses/adfs_response_xmlns.xml +45 -0
  19. data/test/responses/encrypted_new_attack.xml.base64 +1 -0
  20. data/test/responses/invalids/multiple_signed.xml.base64 +1 -0
  21. data/test/responses/invalids/no_signature.xml.base64 +1 -0
  22. data/test/responses/invalids/response_with_concealed_signed_assertion.xml +51 -0
  23. data/test/responses/invalids/response_with_doubled_signed_assertion.xml +49 -0
  24. data/test/responses/invalids/signature_wrapping_attack.xml.base64 +1 -0
  25. data/test/responses/response_with_concealed_signed_assertion.xml +51 -0
  26. data/test/responses/response_with_doubled_signed_assertion.xml +49 -0
  27. data/test/responses/response_with_signed_assertion_3.xml +30 -0
  28. data/test/responses/response_with_signed_message_and_assertion.xml +34 -0
  29. data/test/responses/response_with_undefined_recipient.xml.base64 +1 -0
  30. data/test/responses/response_wrapped.xml.base64 +150 -0
  31. data/test/responses/valid_response.xml.base64 +1 -0
  32. data/test/responses/valid_response_without_x509certificate.xml.base64 +1 -0
  33. data/test/settings_test.rb +5 -5
  34. data/test/test_helper.rb +110 -41
  35. data/test/utils_test.rb +10 -10
  36. data/test/xml_security_test.rb +359 -68
  37. metadata +38 -5
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: ruby-saml
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.8.10
4
+ version: 0.8.15
5
5
  platform: ruby
6
6
  authors:
7
7
  - OneLogin LLC
8
- autorequire:
8
+ autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2019-07-25 00:00:00.000000000 Z
11
+ date: 2020-10-27 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: uuid
@@ -61,6 +61,7 @@ files:
61
61
  - lib/onelogin/ruby-saml/logoutresponse.rb
62
62
  - lib/onelogin/ruby-saml/metadata.rb
63
63
  - lib/onelogin/ruby-saml/response.rb
64
+ - lib/onelogin/ruby-saml/setting_error.rb
64
65
  - lib/onelogin/ruby-saml/settings.rb
65
66
  - lib/onelogin/ruby-saml/slo_logoutresponse.rb
66
67
  - lib/onelogin/ruby-saml/utils.rb
@@ -75,6 +76,7 @@ files:
75
76
  - ruby-saml.gemspec
76
77
  - test/certificates/certificate1
77
78
  - test/certificates/r1_certificate2_base64
79
+ - test/certificates/ruby-saml-2.crt
78
80
  - test/certificates/ruby-saml.crt
79
81
  - test/certificates/ruby-saml.key
80
82
  - test/logoutrequest_test.rb
@@ -85,6 +87,13 @@ files:
85
87
  - test/responses/adfs_response_sha256.xml
86
88
  - test/responses/adfs_response_sha384.xml
87
89
  - test/responses/adfs_response_sha512.xml
90
+ - test/responses/adfs_response_xmlns.xml
91
+ - test/responses/encrypted_new_attack.xml.base64
92
+ - test/responses/invalids/multiple_signed.xml.base64
93
+ - test/responses/invalids/no_signature.xml.base64
94
+ - test/responses/invalids/response_with_concealed_signed_assertion.xml
95
+ - test/responses/invalids/response_with_doubled_signed_assertion.xml
96
+ - test/responses/invalids/signature_wrapping_attack.xml.base64
88
97
  - test/responses/logoutresponse_fixtures.rb
89
98
  - test/responses/no_signature_ns.xml
90
99
  - test/responses/open_saml_response.xml
@@ -98,10 +107,18 @@ files:
98
107
  - test/responses/response_node_text_attack.xml.base64
99
108
  - test/responses/response_with_ampersands.xml
100
109
  - test/responses/response_with_ampersands.xml.base64
110
+ - test/responses/response_with_concealed_signed_assertion.xml
111
+ - test/responses/response_with_doubled_signed_assertion.xml
101
112
  - test/responses/response_with_multiple_attribute_statements.xml
102
113
  - test/responses/response_with_multiple_attribute_values.xml
114
+ - test/responses/response_with_signed_assertion_3.xml
115
+ - test/responses/response_with_signed_message_and_assertion.xml
116
+ - test/responses/response_with_undefined_recipient.xml.base64
117
+ - test/responses/response_wrapped.xml.base64
103
118
  - test/responses/simple_saml_php.xml
104
119
  - test/responses/starfield_response.xml.base64
120
+ - test/responses/valid_response.xml.base64
121
+ - test/responses/valid_response_without_x509certificate.xml.base64
105
122
  - test/responses/wrapped_response_2.xml.base64
106
123
  - test/settings_test.rb
107
124
  - test/slo_logoutresponse_test.rb
@@ -111,7 +128,7 @@ files:
111
128
  homepage: http://github.com/onelogin/ruby-saml
112
129
  licenses: []
113
130
  metadata: {}
114
- post_install_message:
131
+ post_install_message:
115
132
  rdoc_options:
116
133
  - "--charset=UTF-8"
117
134
  require_paths:
@@ -128,12 +145,13 @@ required_rubygems_version: !ruby/object:Gem::Requirement
128
145
  version: '0'
129
146
  requirements: []
130
147
  rubygems_version: 3.0.4
131
- signing_key:
148
+ signing_key:
132
149
  specification_version: 4
133
150
  summary: SAML Ruby Tookit
134
151
  test_files:
135
152
  - test/certificates/certificate1
136
153
  - test/certificates/r1_certificate2_base64
154
+ - test/certificates/ruby-saml-2.crt
137
155
  - test/certificates/ruby-saml.crt
138
156
  - test/certificates/ruby-saml.key
139
157
  - test/logoutrequest_test.rb
@@ -144,6 +162,13 @@ test_files:
144
162
  - test/responses/adfs_response_sha256.xml
145
163
  - test/responses/adfs_response_sha384.xml
146
164
  - test/responses/adfs_response_sha512.xml
165
+ - test/responses/adfs_response_xmlns.xml
166
+ - test/responses/encrypted_new_attack.xml.base64
167
+ - test/responses/invalids/multiple_signed.xml.base64
168
+ - test/responses/invalids/no_signature.xml.base64
169
+ - test/responses/invalids/response_with_concealed_signed_assertion.xml
170
+ - test/responses/invalids/response_with_doubled_signed_assertion.xml
171
+ - test/responses/invalids/signature_wrapping_attack.xml.base64
147
172
  - test/responses/logoutresponse_fixtures.rb
148
173
  - test/responses/no_signature_ns.xml
149
174
  - test/responses/open_saml_response.xml
@@ -157,10 +182,18 @@ test_files:
157
182
  - test/responses/response_node_text_attack.xml.base64
158
183
  - test/responses/response_with_ampersands.xml
159
184
  - test/responses/response_with_ampersands.xml.base64
185
+ - test/responses/response_with_concealed_signed_assertion.xml
186
+ - test/responses/response_with_doubled_signed_assertion.xml
160
187
  - test/responses/response_with_multiple_attribute_statements.xml
161
188
  - test/responses/response_with_multiple_attribute_values.xml
189
+ - test/responses/response_with_signed_assertion_3.xml
190
+ - test/responses/response_with_signed_message_and_assertion.xml
191
+ - test/responses/response_with_undefined_recipient.xml.base64
192
+ - test/responses/response_wrapped.xml.base64
162
193
  - test/responses/simple_saml_php.xml
163
194
  - test/responses/starfield_response.xml.base64
195
+ - test/responses/valid_response.xml.base64
196
+ - test/responses/valid_response_without_x509certificate.xml.base64
164
197
  - test/responses/wrapped_response_2.xml.base64
165
198
  - test/settings_test.rb
166
199
  - test/slo_logoutresponse_test.rb