ruby-saml 0.8.12 → 0.8.17
Sign up to get free protection for your applications and to get access to all the features.
Potentially problematic release.
This version of ruby-saml might be problematic. Click here for more details.
- checksums.yaml +7 -7
- data/lib/onelogin/ruby-saml/logoutrequest.rb +2 -1
- data/lib/onelogin/ruby-saml/logoutresponse.rb +9 -51
- data/lib/onelogin/ruby-saml/response.rb +133 -21
- data/lib/onelogin/ruby-saml/settings.rb +28 -10
- data/lib/onelogin/ruby-saml/slo_logoutrequest.rb +101 -0
- data/lib/onelogin/ruby-saml/slo_logoutresponse.rb +12 -9
- data/lib/onelogin/ruby-saml/utils.rb +92 -0
- data/lib/onelogin/ruby-saml/version.rb +1 -1
- data/lib/ruby-saml.rb +1 -0
- data/lib/xml_security.rb +222 -86
- data/test/certificates/certificate.der +0 -0
- data/test/certificates/formatted_certificate +14 -0
- data/test/certificates/formatted_chained_certificate +42 -0
- data/test/certificates/formatted_private_key +12 -0
- data/test/certificates/formatted_rsa_private_key +12 -0
- data/test/certificates/invalid_certificate1 +1 -0
- data/test/certificates/invalid_certificate2 +1 -0
- data/test/certificates/invalid_certificate3 +12 -0
- data/test/certificates/invalid_chained_certificate1 +1 -0
- data/test/certificates/invalid_private_key1 +1 -0
- data/test/certificates/invalid_private_key2 +1 -0
- data/test/certificates/invalid_private_key3 +10 -0
- data/test/certificates/invalid_rsa_private_key1 +1 -0
- data/test/certificates/invalid_rsa_private_key2 +1 -0
- data/test/certificates/invalid_rsa_private_key3 +10 -0
- data/test/certificates/ruby-saml-2.crt +15 -0
- data/test/logoutresponse_test.rb +2 -16
- data/test/requests/logoutrequest_fixtures.rb +47 -0
- data/test/response_test.rb +227 -15
- data/test/responses/adfs_response_xmlns.xml +45 -0
- data/test/responses/invalids/invalid_issuer_assertion.xml.base64 +1 -0
- data/test/responses/invalids/invalid_issuer_message.xml.base64 +1 -0
- data/test/responses/invalids/multiple_signed.xml.base64 +1 -0
- data/test/responses/invalids/no_signature.xml.base64 +1 -0
- data/test/responses/invalids/response_with_concealed_signed_assertion.xml +51 -0
- data/test/responses/invalids/response_with_doubled_signed_assertion.xml +49 -0
- data/test/responses/invalids/signature_wrapping_attack.xml.base64 +1 -0
- data/test/responses/logoutresponse_fixtures.rb +4 -4
- data/test/responses/response_with_signed_assertion_3.xml +30 -0
- data/test/responses/response_with_signed_message_and_assertion.xml +34 -0
- data/test/responses/response_with_undefined_recipient.xml.base64 +1 -0
- data/test/responses/valid_response_without_x509certificate.xml.base64 +1 -0
- data/test/settings_test.rb +106 -0
- data/test/slo_logoutrequest_test.rb +66 -0
- data/test/slo_logoutresponse_test.rb +8 -0
- data/test/test_helper.rb +62 -30
- data/test/utils_test.rb +191 -1
- data/test/xml_security_test.rb +329 -36
- metadata +109 -45
metadata
CHANGED
|
@@ -1,49 +1,54 @@
|
|
|
1
|
-
--- !ruby/object:Gem::Specification
|
|
1
|
+
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: ruby-saml
|
|
3
|
-
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.8.
|
|
3
|
+
version: !ruby/object:Gem::Version
|
|
4
|
+
version: 0.8.17
|
|
5
5
|
platform: ruby
|
|
6
|
-
authors:
|
|
6
|
+
authors:
|
|
7
7
|
- OneLogin LLC
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
- !ruby/object:Gem::Dependency
|
|
11
|
+
date: 2021-02-03 00:00:00.000000000 Z
|
|
12
|
+
dependencies:
|
|
13
|
+
- !ruby/object:Gem::Dependency
|
|
15
14
|
name: uuid
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
version: "2.3"
|
|
15
|
+
requirement: !ruby/object:Gem::Requirement
|
|
16
|
+
requirements:
|
|
17
|
+
- - "~>"
|
|
18
|
+
- !ruby/object:Gem::Version
|
|
19
|
+
version: '2.3'
|
|
22
20
|
type: :runtime
|
|
23
|
-
version_requirements: *id001
|
|
24
|
-
- !ruby/object:Gem::Dependency
|
|
25
|
-
name: nokogiri
|
|
26
21
|
prerelease: false
|
|
27
|
-
|
|
28
|
-
requirements:
|
|
22
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
23
|
+
requirements:
|
|
24
|
+
- - "~>"
|
|
25
|
+
- !ruby/object:Gem::Version
|
|
26
|
+
version: '2.3'
|
|
27
|
+
- !ruby/object:Gem::Dependency
|
|
28
|
+
name: nokogiri
|
|
29
|
+
requirement: !ruby/object:Gem::Requirement
|
|
30
|
+
requirements:
|
|
29
31
|
- - ">="
|
|
30
|
-
- !ruby/object:Gem::Version
|
|
32
|
+
- !ruby/object:Gem::Version
|
|
31
33
|
version: 1.5.0
|
|
32
34
|
type: :runtime
|
|
33
|
-
|
|
35
|
+
prerelease: false
|
|
36
|
+
version_requirements: !ruby/object:Gem::Requirement
|
|
37
|
+
requirements:
|
|
38
|
+
- - ">="
|
|
39
|
+
- !ruby/object:Gem::Version
|
|
40
|
+
version: 1.5.0
|
|
34
41
|
description: SAML toolkit for Ruby on Rails
|
|
35
42
|
email: support@onelogin.com
|
|
36
43
|
executables: []
|
|
37
|
-
|
|
38
44
|
extensions: []
|
|
39
|
-
|
|
40
|
-
extra_rdoc_files:
|
|
45
|
+
extra_rdoc_files:
|
|
41
46
|
- LICENSE
|
|
42
47
|
- README.md
|
|
43
|
-
files:
|
|
44
|
-
- .document
|
|
45
|
-
- .gitignore
|
|
46
|
-
- .travis.yml
|
|
48
|
+
files:
|
|
49
|
+
- ".document"
|
|
50
|
+
- ".gitignore"
|
|
51
|
+
- ".travis.yml"
|
|
47
52
|
- Gemfile
|
|
48
53
|
- LICENSE
|
|
49
54
|
- README.md
|
|
@@ -58,6 +63,7 @@ files:
|
|
|
58
63
|
- lib/onelogin/ruby-saml/response.rb
|
|
59
64
|
- lib/onelogin/ruby-saml/setting_error.rb
|
|
60
65
|
- lib/onelogin/ruby-saml/settings.rb
|
|
66
|
+
- lib/onelogin/ruby-saml/slo_logoutrequest.rb
|
|
61
67
|
- lib/onelogin/ruby-saml/slo_logoutresponse.rb
|
|
62
68
|
- lib/onelogin/ruby-saml/utils.rb
|
|
63
69
|
- lib/onelogin/ruby-saml/validation_error.rb
|
|
@@ -69,19 +75,44 @@ files:
|
|
|
69
75
|
- lib/schemas/xmldsig_schema.xsd
|
|
70
76
|
- lib/xml_security.rb
|
|
71
77
|
- ruby-saml.gemspec
|
|
78
|
+
- test/certificates/certificate.der
|
|
72
79
|
- test/certificates/certificate1
|
|
80
|
+
- test/certificates/formatted_certificate
|
|
81
|
+
- test/certificates/formatted_chained_certificate
|
|
82
|
+
- test/certificates/formatted_private_key
|
|
83
|
+
- test/certificates/formatted_rsa_private_key
|
|
84
|
+
- test/certificates/invalid_certificate1
|
|
85
|
+
- test/certificates/invalid_certificate2
|
|
86
|
+
- test/certificates/invalid_certificate3
|
|
87
|
+
- test/certificates/invalid_chained_certificate1
|
|
88
|
+
- test/certificates/invalid_private_key1
|
|
89
|
+
- test/certificates/invalid_private_key2
|
|
90
|
+
- test/certificates/invalid_private_key3
|
|
91
|
+
- test/certificates/invalid_rsa_private_key1
|
|
92
|
+
- test/certificates/invalid_rsa_private_key2
|
|
93
|
+
- test/certificates/invalid_rsa_private_key3
|
|
73
94
|
- test/certificates/r1_certificate2_base64
|
|
95
|
+
- test/certificates/ruby-saml-2.crt
|
|
74
96
|
- test/certificates/ruby-saml.crt
|
|
75
97
|
- test/certificates/ruby-saml.key
|
|
76
98
|
- test/logoutrequest_test.rb
|
|
77
99
|
- test/logoutresponse_test.rb
|
|
78
100
|
- test/request_test.rb
|
|
101
|
+
- test/requests/logoutrequest_fixtures.rb
|
|
79
102
|
- test/response_test.rb
|
|
80
103
|
- test/responses/adfs_response_sha1.xml
|
|
81
104
|
- test/responses/adfs_response_sha256.xml
|
|
82
105
|
- test/responses/adfs_response_sha384.xml
|
|
83
106
|
- test/responses/adfs_response_sha512.xml
|
|
107
|
+
- test/responses/adfs_response_xmlns.xml
|
|
84
108
|
- test/responses/encrypted_new_attack.xml.base64
|
|
109
|
+
- test/responses/invalids/invalid_issuer_assertion.xml.base64
|
|
110
|
+
- test/responses/invalids/invalid_issuer_message.xml.base64
|
|
111
|
+
- test/responses/invalids/multiple_signed.xml.base64
|
|
112
|
+
- test/responses/invalids/no_signature.xml.base64
|
|
113
|
+
- test/responses/invalids/response_with_concealed_signed_assertion.xml
|
|
114
|
+
- test/responses/invalids/response_with_doubled_signed_assertion.xml
|
|
115
|
+
- test/responses/invalids/signature_wrapping_attack.xml.base64
|
|
85
116
|
- test/responses/logoutresponse_fixtures.rb
|
|
86
117
|
- test/responses/no_signature_ns.xml
|
|
87
118
|
- test/responses/open_saml_response.xml
|
|
@@ -99,56 +130,84 @@ files:
|
|
|
99
130
|
- test/responses/response_with_doubled_signed_assertion.xml
|
|
100
131
|
- test/responses/response_with_multiple_attribute_statements.xml
|
|
101
132
|
- test/responses/response_with_multiple_attribute_values.xml
|
|
133
|
+
- test/responses/response_with_signed_assertion_3.xml
|
|
134
|
+
- test/responses/response_with_signed_message_and_assertion.xml
|
|
135
|
+
- test/responses/response_with_undefined_recipient.xml.base64
|
|
102
136
|
- test/responses/response_wrapped.xml.base64
|
|
103
137
|
- test/responses/simple_saml_php.xml
|
|
104
138
|
- test/responses/starfield_response.xml.base64
|
|
105
139
|
- test/responses/valid_response.xml.base64
|
|
140
|
+
- test/responses/valid_response_without_x509certificate.xml.base64
|
|
106
141
|
- test/responses/wrapped_response_2.xml.base64
|
|
107
142
|
- test/settings_test.rb
|
|
143
|
+
- test/slo_logoutrequest_test.rb
|
|
108
144
|
- test/slo_logoutresponse_test.rb
|
|
109
145
|
- test/test_helper.rb
|
|
110
146
|
- test/utils_test.rb
|
|
111
147
|
- test/xml_security_test.rb
|
|
112
148
|
homepage: http://github.com/onelogin/ruby-saml
|
|
113
149
|
licenses: []
|
|
114
|
-
|
|
115
150
|
metadata: {}
|
|
116
|
-
|
|
117
151
|
post_install_message:
|
|
118
|
-
rdoc_options:
|
|
119
|
-
- --charset=UTF-8
|
|
120
|
-
require_paths:
|
|
152
|
+
rdoc_options:
|
|
153
|
+
- "--charset=UTF-8"
|
|
154
|
+
require_paths:
|
|
121
155
|
- lib
|
|
122
|
-
required_ruby_version: !ruby/object:Gem::Requirement
|
|
123
|
-
requirements:
|
|
124
|
-
-
|
|
125
|
-
-
|
|
126
|
-
|
|
127
|
-
|
|
128
|
-
|
|
129
|
-
|
|
130
|
-
|
|
156
|
+
required_ruby_version: !ruby/object:Gem::Requirement
|
|
157
|
+
requirements:
|
|
158
|
+
- - ">="
|
|
159
|
+
- !ruby/object:Gem::Version
|
|
160
|
+
version: '0'
|
|
161
|
+
required_rubygems_version: !ruby/object:Gem::Requirement
|
|
162
|
+
requirements:
|
|
163
|
+
- - ">="
|
|
164
|
+
- !ruby/object:Gem::Version
|
|
165
|
+
version: '0'
|
|
131
166
|
requirements: []
|
|
132
|
-
|
|
133
167
|
rubyforge_project: http://www.rubygems.org/gems/ruby-saml
|
|
134
|
-
rubygems_version: 2.
|
|
168
|
+
rubygems_version: 2.6.8
|
|
135
169
|
signing_key:
|
|
136
170
|
specification_version: 4
|
|
137
171
|
summary: SAML Ruby Tookit
|
|
138
|
-
test_files:
|
|
172
|
+
test_files:
|
|
173
|
+
- test/certificates/certificate.der
|
|
139
174
|
- test/certificates/certificate1
|
|
175
|
+
- test/certificates/formatted_certificate
|
|
176
|
+
- test/certificates/formatted_chained_certificate
|
|
177
|
+
- test/certificates/formatted_private_key
|
|
178
|
+
- test/certificates/formatted_rsa_private_key
|
|
179
|
+
- test/certificates/invalid_certificate1
|
|
180
|
+
- test/certificates/invalid_certificate2
|
|
181
|
+
- test/certificates/invalid_certificate3
|
|
182
|
+
- test/certificates/invalid_chained_certificate1
|
|
183
|
+
- test/certificates/invalid_private_key1
|
|
184
|
+
- test/certificates/invalid_private_key2
|
|
185
|
+
- test/certificates/invalid_private_key3
|
|
186
|
+
- test/certificates/invalid_rsa_private_key1
|
|
187
|
+
- test/certificates/invalid_rsa_private_key2
|
|
188
|
+
- test/certificates/invalid_rsa_private_key3
|
|
140
189
|
- test/certificates/r1_certificate2_base64
|
|
190
|
+
- test/certificates/ruby-saml-2.crt
|
|
141
191
|
- test/certificates/ruby-saml.crt
|
|
142
192
|
- test/certificates/ruby-saml.key
|
|
143
193
|
- test/logoutrequest_test.rb
|
|
144
194
|
- test/logoutresponse_test.rb
|
|
145
195
|
- test/request_test.rb
|
|
196
|
+
- test/requests/logoutrequest_fixtures.rb
|
|
146
197
|
- test/response_test.rb
|
|
147
198
|
- test/responses/adfs_response_sha1.xml
|
|
148
199
|
- test/responses/adfs_response_sha256.xml
|
|
149
200
|
- test/responses/adfs_response_sha384.xml
|
|
150
201
|
- test/responses/adfs_response_sha512.xml
|
|
202
|
+
- test/responses/adfs_response_xmlns.xml
|
|
151
203
|
- test/responses/encrypted_new_attack.xml.base64
|
|
204
|
+
- test/responses/invalids/invalid_issuer_assertion.xml.base64
|
|
205
|
+
- test/responses/invalids/invalid_issuer_message.xml.base64
|
|
206
|
+
- test/responses/invalids/multiple_signed.xml.base64
|
|
207
|
+
- test/responses/invalids/no_signature.xml.base64
|
|
208
|
+
- test/responses/invalids/response_with_concealed_signed_assertion.xml
|
|
209
|
+
- test/responses/invalids/response_with_doubled_signed_assertion.xml
|
|
210
|
+
- test/responses/invalids/signature_wrapping_attack.xml.base64
|
|
152
211
|
- test/responses/logoutresponse_fixtures.rb
|
|
153
212
|
- test/responses/no_signature_ns.xml
|
|
154
213
|
- test/responses/open_saml_response.xml
|
|
@@ -166,12 +225,17 @@ test_files:
|
|
|
166
225
|
- test/responses/response_with_doubled_signed_assertion.xml
|
|
167
226
|
- test/responses/response_with_multiple_attribute_statements.xml
|
|
168
227
|
- test/responses/response_with_multiple_attribute_values.xml
|
|
228
|
+
- test/responses/response_with_signed_assertion_3.xml
|
|
229
|
+
- test/responses/response_with_signed_message_and_assertion.xml
|
|
230
|
+
- test/responses/response_with_undefined_recipient.xml.base64
|
|
169
231
|
- test/responses/response_wrapped.xml.base64
|
|
170
232
|
- test/responses/simple_saml_php.xml
|
|
171
233
|
- test/responses/starfield_response.xml.base64
|
|
172
234
|
- test/responses/valid_response.xml.base64
|
|
235
|
+
- test/responses/valid_response_without_x509certificate.xml.base64
|
|
173
236
|
- test/responses/wrapped_response_2.xml.base64
|
|
174
237
|
- test/settings_test.rb
|
|
238
|
+
- test/slo_logoutrequest_test.rb
|
|
175
239
|
- test/slo_logoutresponse_test.rb
|
|
176
240
|
- test/test_helper.rb
|
|
177
241
|
- test/utils_test.rb
|