RubyGems - ruby-saml - Versions diffs - 0.8.9 → 0.8.14 - Mend

ruby-saml 0.8.9 → 0.8.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of ruby-saml might be problematic. Click here for more details.

Files changed (42) hide show

data/Gemfile +11 -1
data/Rakefile +0 -14
data/lib/onelogin/ruby-saml/authrequest.rb +84 -18
data/lib/onelogin/ruby-saml/logoutrequest.rb +93 -18
data/lib/onelogin/ruby-saml/logoutresponse.rb +1 -24
data/lib/onelogin/ruby-saml/response.rb +206 -11
data/lib/onelogin/ruby-saml/setting_error.rb +6 -0
data/lib/onelogin/ruby-saml/settings.rb +73 -12
data/lib/onelogin/ruby-saml/slo_logoutresponse.rb +158 -0
data/lib/onelogin/ruby-saml/utils.rb +169 -0
data/lib/onelogin/ruby-saml/version.rb +1 -1
data/lib/ruby-saml.rb +2 -1
data/lib/xml_security.rb +332 -78
data/test/certificates/ruby-saml-2.crt +15 -0
data/test/certificates/ruby-saml.crt +14 -0
data/test/certificates/ruby-saml.key +15 -0
data/test/logoutrequest_test.rb +177 -44
data/test/logoutresponse_test.rb +23 -28
data/test/request_test.rb +100 -37
data/test/response_test.rb +337 -129
data/test/responses/adfs_response_xmlns.xml +45 -0
data/test/responses/encrypted_new_attack.xml.base64 +1 -0
data/test/responses/invalids/multiple_signed.xml.base64 +1 -0
data/test/responses/invalids/no_signature.xml.base64 +1 -0
data/test/responses/invalids/response_with_concealed_signed_assertion.xml +51 -0
data/test/responses/invalids/response_with_doubled_signed_assertion.xml +49 -0
data/test/responses/invalids/signature_wrapping_attack.xml.base64 +1 -0
data/test/responses/response_with_concealed_signed_assertion.xml +51 -0
data/test/responses/response_with_doubled_signed_assertion.xml +49 -0
data/test/responses/response_with_signed_assertion_3.xml +30 -0
data/test/responses/response_with_signed_message_and_assertion.xml +34 -0
data/test/responses/response_with_undefined_recipient.xml.base64 +1 -0
data/test/responses/response_wrapped.xml.base64 +150 -0
data/test/responses/valid_response.xml.base64 +1 -0
data/test/responses/valid_response_without_x509certificate.xml.base64 +1 -0
data/test/settings_test.rb +5 -5
data/test/slo_logoutresponse_test.rb +226 -0
data/test/test_helper.rb +117 -12
data/test/utils_test.rb +10 -10
data/test/xml_security_test.rb +354 -68
metadata +64 -18
checksums.yaml +0 -7

metadata CHANGED

@@ -1,41 +1,46 @@
 --- !ruby/object:Gem::Specification
 name: ruby-saml
 version: !ruby/object:Gem::Version
-  version: 0.8.9
+  version: 0.8.14
+  prerelease:
 platform: ruby
 authors:
 - OneLogin LLC
-autorequire:
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-05-12 00:00:00.000000000 Z
+date: 2020-10-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: uuid
   requirement: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - "~>"
+    - - ~>
       - !ruby/object:Gem::Version
         version: '2.3'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - "~>"
+    - - ~>
       - !ruby/object:Gem::Version
         version: '2.3'
 - !ruby/object:Gem::Dependency
   name: nokogiri
   requirement: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: 1.5.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
+    none: false
     requirements:
-    - - ">="
+    - - ! '>='
       - !ruby/object:Gem::Version
         version: 1.5.0
 description: SAML toolkit for Ruby on Rails
@@ -46,9 +51,9 @@ extra_rdoc_files:
 - LICENSE
 - README.md
 files:
-- ".document"
-- ".gitignore"
-- ".travis.yml"
+- .document
+- .gitignore
+- .travis.yml
 - Gemfile
 - LICENSE
 - README.md
@@ -61,7 +66,9 @@ files:
 - lib/onelogin/ruby-saml/logoutresponse.rb
 - lib/onelogin/ruby-saml/metadata.rb
 - lib/onelogin/ruby-saml/response.rb
+- lib/onelogin/ruby-saml/setting_error.rb
 - lib/onelogin/ruby-saml/settings.rb
+- lib/onelogin/ruby-saml/slo_logoutresponse.rb
 - lib/onelogin/ruby-saml/utils.rb
 - lib/onelogin/ruby-saml/validation_error.rb
 - lib/onelogin/ruby-saml/version.rb
@@ -74,6 +81,9 @@ files:
 - ruby-saml.gemspec
 - test/certificates/certificate1
 - test/certificates/r1_certificate2_base64
+- test/certificates/ruby-saml-2.crt
+- test/certificates/ruby-saml.crt
+- test/certificates/ruby-saml.key
 - test/logoutrequest_test.rb
 - test/logoutresponse_test.rb
 - test/request_test.rb
@@ -82,6 +92,13 @@ files:
 - test/responses/adfs_response_sha256.xml
 - test/responses/adfs_response_sha384.xml
 - test/responses/adfs_response_sha512.xml
+- test/responses/adfs_response_xmlns.xml
+- test/responses/encrypted_new_attack.xml.base64
+- test/responses/invalids/multiple_signed.xml.base64
+- test/responses/invalids/no_signature.xml.base64
+- test/responses/invalids/response_with_concealed_signed_assertion.xml
+- test/responses/invalids/response_with_doubled_signed_assertion.xml
+- test/responses/invalids/signature_wrapping_attack.xml.base64
 - test/responses/logoutresponse_fixtures.rb
 - test/responses/no_signature_ns.xml
 - test/responses/open_saml_response.xml
@@ -95,42 +112,55 @@ files:
 - test/responses/response_node_text_attack.xml.base64
 - test/responses/response_with_ampersands.xml
 - test/responses/response_with_ampersands.xml.base64
+- test/responses/response_with_concealed_signed_assertion.xml
+- test/responses/response_with_doubled_signed_assertion.xml
 - test/responses/response_with_multiple_attribute_statements.xml
 - test/responses/response_with_multiple_attribute_values.xml
+- test/responses/response_with_signed_assertion_3.xml
+- test/responses/response_with_signed_message_and_assertion.xml
+- test/responses/response_with_undefined_recipient.xml.base64
+- test/responses/response_wrapped.xml.base64
 - test/responses/simple_saml_php.xml
 - test/responses/starfield_response.xml.base64
+- test/responses/valid_response.xml.base64
+- test/responses/valid_response_without_x509certificate.xml.base64
 - test/responses/wrapped_response_2.xml.base64
 - test/settings_test.rb
+- test/slo_logoutresponse_test.rb
 - test/test_helper.rb
 - test/utils_test.rb
 - test/xml_security_test.rb
 homepage: http://github.com/onelogin/ruby-saml
 licenses: []
-metadata: {}
-post_install_message:
+post_install_message:
 rdoc_options:
-- "--charset=UTF-8"
+- --charset=UTF-8
 require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
+  none: false
   requirements:
-  - - ">="
+  - - ! '>='
     - !ruby/object:Gem::Version
       version: '0'
 required_rubygems_version: !ruby/object:Gem::Requirement
+  none: false
   requirements:
-  - - ">="
+  - - ! '>='
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project: http://www.rubygems.org/gems/ruby-saml
-rubygems_version: 2.5.2.1
-signing_key:
-specification_version: 4
+rubygems_version: 1.8.23.2
+signing_key:
+specification_version: 3
 summary: SAML Ruby Tookit
 test_files:
 - test/certificates/certificate1
 - test/certificates/r1_certificate2_base64
+- test/certificates/ruby-saml-2.crt
+- test/certificates/ruby-saml.crt
+- test/certificates/ruby-saml.key
 - test/logoutrequest_test.rb
 - test/logoutresponse_test.rb
 - test/request_test.rb
@@ -139,6 +169,13 @@ test_files:
 - test/responses/adfs_response_sha256.xml
 - test/responses/adfs_response_sha384.xml
 - test/responses/adfs_response_sha512.xml
+- test/responses/adfs_response_xmlns.xml
+- test/responses/encrypted_new_attack.xml.base64
+- test/responses/invalids/multiple_signed.xml.base64
+- test/responses/invalids/no_signature.xml.base64
+- test/responses/invalids/response_with_concealed_signed_assertion.xml
+- test/responses/invalids/response_with_doubled_signed_assertion.xml
+- test/responses/invalids/signature_wrapping_attack.xml.base64
 - test/responses/logoutresponse_fixtures.rb
 - test/responses/no_signature_ns.xml
 - test/responses/open_saml_response.xml
@@ -152,12 +189,21 @@ test_files:
 - test/responses/response_node_text_attack.xml.base64
 - test/responses/response_with_ampersands.xml
 - test/responses/response_with_ampersands.xml.base64
+- test/responses/response_with_concealed_signed_assertion.xml
+- test/responses/response_with_doubled_signed_assertion.xml
 - test/responses/response_with_multiple_attribute_statements.xml
 - test/responses/response_with_multiple_attribute_values.xml
+- test/responses/response_with_signed_assertion_3.xml
+- test/responses/response_with_signed_message_and_assertion.xml
+- test/responses/response_with_undefined_recipient.xml.base64
+- test/responses/response_wrapped.xml.base64
 - test/responses/simple_saml_php.xml
 - test/responses/starfield_response.xml.base64
+- test/responses/valid_response.xml.base64
+- test/responses/valid_response_without_x509certificate.xml.base64
 - test/responses/wrapped_response_2.xml.base64
 - test/settings_test.rb
+- test/slo_logoutresponse_test.rb
 - test/test_helper.rb
 - test/utils_test.rb
 - test/xml_security_test.rb

checksums.yaml DELETED

@@ -1,7 +0,0 @@
----
-SHA1:
-  metadata.gz: 646f99f7f6a7590eb22b51fad5f183cfed8038be
-  data.tar.gz: 008e10e85a4aea26fdf2c067cc8f6112d18f55a7
-SHA512:
-  metadata.gz: 7d239d7038cf7041e4dab1dd27dd92e5bb1f53d777ace0aa0c4ed9f08b4a9b077555e7d1eeed2ed8a8e21767039267747b9194172148e74bac7703205b862a16
-  data.tar.gz: 151df4d9fc610fbef47e5c93c73b8f25f9297b0bd457106e6fcd427933eebbe164c415d807ca9f70749937d5df66a4e49fb5423a7be2de6b1cd24641a077f94e