ruby-saml 0.9 → 0.9.1

data/test/request_test.rb

@@ -1,9 +1,9 @@
 require File.expand_path(File.join(File.dirname(__FILE__), "test_helper"))
 
-class RequestTest < Test::Unit::TestCase
+class RequestTest < Minitest::Test
 
-  context "Authrequest" do
-    should "create the deflated SAMLRequest URL parameter" do
+  describe "Authrequest" do
+    it "create the deflated SAMLRequest URL parameter" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       auth_url = OneLogin::RubySaml::Authrequest.new.create(settings)
@@ -19,7 +19,7 @@ class RequestTest < Test::Unit::TestCase
       assert_match /^<samlp:AuthnRequest/, inflated
     end
 
-    should "create the deflated SAMLRequest URL parameter including the Destination" do
+    it "create the deflated SAMLRequest URL parameter including the Destination" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       auth_url = OneLogin::RubySaml::Authrequest.new.create(settings)
@@ -34,7 +34,7 @@ class RequestTest < Test::Unit::TestCase
       assert_match /<samlp:AuthnRequest[^<]* Destination='http:\/\/example.com'/, inflated
     end
 
-    should "create the SAMLRequest URL parameter without deflating" do
+    it "create the SAMLRequest URL parameter without deflating" do
       settings = OneLogin::RubySaml::Settings.new
       settings.compress_request = false
       settings.idp_sso_target_url = "http://example.com"
@@ -46,7 +46,7 @@ class RequestTest < Test::Unit::TestCase
       assert_match /^<samlp:AuthnRequest/, decoded
     end
 
-    should "create the SAMLRequest URL parameter with IsPassive" do
+    it "create the SAMLRequest URL parameter with IsPassive" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       settings.passive = true
@@ -63,7 +63,7 @@ class RequestTest < Test::Unit::TestCase
       assert_match /<samlp:AuthnRequest[^<]* IsPassive='true'/, inflated
     end
 
-    should "create the SAMLRequest URL parameter with ProtocolBinding" do
+    it "create the SAMLRequest URL parameter with ProtocolBinding" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       settings.protocol_binding = 'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST'
@@ -80,7 +80,7 @@ class RequestTest < Test::Unit::TestCase
       assert_match /<samlp:AuthnRequest[^<]* ProtocolBinding='urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST'/, inflated
     end
 
-    should "create the SAMLRequest URL parameter with AttributeConsumingServiceIndex" do
+    it "create the SAMLRequest URL parameter with AttributeConsumingServiceIndex" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       settings.attributes_index = 30
@@ -96,7 +96,7 @@ class RequestTest < Test::Unit::TestCase
       assert_match /<samlp:AuthnRequest[^<]* AttributeConsumingServiceIndex='30'/, inflated
     end
 
-    should "create the SAMLRequest URL parameter with ForceAuthn" do
+    it "create the SAMLRequest URL parameter with ForceAuthn" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       settings.force_authn = true
@@ -112,7 +112,7 @@ class RequestTest < Test::Unit::TestCase
       assert_match /<samlp:AuthnRequest[^<]* ForceAuthn='true'/, inflated
     end
 
-    should "accept extra parameters" do
+    it "accept extra parameters" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
 
@@ -123,8 +123,8 @@ class RequestTest < Test::Unit::TestCase
       assert auth_url =~ /&hello=$/
     end
 
-    context "when the target url doesn't contain a query string" do
-      should "create the SAMLRequest parameter correctly" do
+    describe "when the target url doesn't contain a query string" do
+      it "create the SAMLRequest parameter correctly" do
         settings = OneLogin::RubySaml::Settings.new
         settings.idp_sso_target_url = "http://example.com"
 
@@ -133,8 +133,8 @@ class RequestTest < Test::Unit::TestCase
       end
     end
 
-    context "when the target url contains a query string" do
-      should "create the SAMLRequest parameter correctly" do
+    describe "when the target url contains a query string" do
+      it "create the SAMLRequest parameter correctly" do
         settings = OneLogin::RubySaml::Settings.new
         settings.idp_sso_target_url = "http://example.com?field=value"
 
@@ -143,8 +143,8 @@ class RequestTest < Test::Unit::TestCase
       end
     end
 
-    context "when the settings indicate to sign (embebed) the request" do
-      should "create a signed request" do
+    describe "when the settings indicate to sign (embebed) the request" do
+      it "create a signed request" do
         settings = OneLogin::RubySaml::Settings.new
         settings.compress_request = false
         settings.idp_sso_target_url = "http://example.com?field=value"
@@ -160,7 +160,7 @@ class RequestTest < Test::Unit::TestCase
         request_xml =~ /<ds:DigestMethod Algorithm='http:\/\/www.w3.org\/2000\/09\/xmldsig#rsa-sha1'\/>/
       end
 
-      should "create a signed request with 256 digest and signature methods" do
+      it "create a signed request with 256 digest and signature methods" do
         settings = OneLogin::RubySaml::Settings.new
         settings.compress_request = false
         settings.idp_sso_target_url = "http://example.com?field=value"
@@ -180,8 +180,8 @@ class RequestTest < Test::Unit::TestCase
     end
 
 
-    context "when the settings indicate to sign the request" do
-      should "create a signature parameter" do
+    describe "when the settings indicate to sign the request" do
+      it "create a signature parameter" do
         settings = OneLogin::RubySaml::Settings.new
         settings.compress_request = false
         settings.idp_sso_target_url = "http://example.com?field=value"
@@ -204,7 +204,7 @@ class RequestTest < Test::Unit::TestCase
       end
     end
 
-    should "create the saml:AuthnContextClassRef element correctly" do
+    it "create the saml:AuthnContextClassRef element correctly" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       settings.authn_context = 'secure/name/password/uri'
@@ -212,7 +212,7 @@ class RequestTest < Test::Unit::TestCase
       assert auth_doc.to_s =~ /<saml:AuthnContextClassRef>secure\/name\/password\/uri<\/saml:AuthnContextClassRef>/
     end
 
-    should "create the saml:AuthnContextClassRef with comparison exact" do
+    it "create the saml:AuthnContextClassRef with comparison exact" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       settings.authn_context = 'secure/name/password/uri'
@@ -221,7 +221,7 @@ class RequestTest < Test::Unit::TestCase
       assert auth_doc.to_s =~ /<saml:AuthnContextClassRef>secure\/name\/password\/uri<\/saml:AuthnContextClassRef>/
     end
 
-    should "create the saml:AuthnContextClassRef with comparison minimun" do
+    it "create the saml:AuthnContextClassRef with comparison minimun" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       settings.authn_context = 'secure/name/password/uri'
@@ -231,7 +231,7 @@ class RequestTest < Test::Unit::TestCase
       assert auth_doc.to_s =~ /<saml:AuthnContextClassRef>secure\/name\/password\/uri<\/saml:AuthnContextClassRef>/
     end
 
-    should "create the saml:AuthnContextDeclRef element correctly" do
+    it "create the saml:AuthnContextDeclRef element correctly" do
       settings = OneLogin::RubySaml::Settings.new
       settings.idp_sso_target_url = "http://example.com"
       settings.authn_context_decl_ref = 'urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport'

data/test/response_test.rb

@@ -1,13 +1,13 @@
 require File.expand_path(File.join(File.dirname(__FILE__), "test_helper"))
 
-class RubySamlTest < Test::Unit::TestCase
+class RubySamlTest < Minitest::Test
 
-  context "Response" do
-    should "raise an exception when response is initialized with nil" do
+  describe "Response" do
+    it "raise an exception when response is initialized with nil" do
       assert_raises(ArgumentError) { OneLogin::RubySaml::Response.new(nil) }
     end
 
-    should "be able to parse a document which contains ampersands" do
+    it "be able to parse a document which contains ampersands" do
       XMLSecurity::SignedDocument.any_instance.stubs(:digests_match?).returns(true)
       OneLogin::RubySaml::Response.any_instance.stubs(:validate_conditions).returns(true)
 
@@ -18,23 +18,23 @@ class RubySamlTest < Test::Unit::TestCase
       response.validate!
     end
 
-    should "adapt namespace" do
+    it "adapt namespace" do
       response = OneLogin::RubySaml::Response.new(response_document)
-      assert_not_nil response.name_id
+      refute_nil response.name_id
       response = OneLogin::RubySaml::Response.new(response_document_2)
-      assert_not_nil response.name_id
+      refute_nil response.name_id
       response = OneLogin::RubySaml::Response.new(response_document_3)
-      assert_not_nil response.name_id
+      refute_nil response.name_id
     end
 
-    should "default to raw input when a response is not Base64 encoded" do
+    it "default to raw input when a response is not Base64 encoded" do
       decoded  = Base64.decode64(response_document_2)
       response = OneLogin::RubySaml::Response.new(decoded)
       assert response.document
     end
 
-    context "Assertion" do
-      should "only retreive an assertion with an ID that matches the signature's reference URI" do
+    describe "Assertion" do
+      it "only retreive an assertion with an ID that matches the signature's reference URI" do
         response = OneLogin::RubySaml::Response.new(wrapped_response_2)
         response.stubs(:conditions).returns(nil)
         settings = OneLogin::RubySaml::Settings.new
@@ -44,35 +44,35 @@ class RubySamlTest < Test::Unit::TestCase
       end
     end
 
-    context "#validate!" do
-      should "raise when encountering a condition that prevents the document from being valid" do
+    describe "#validate!" do
+      it "raise when encountering a condition that prevents the document from being valid" do
         response = OneLogin::RubySaml::Response.new(response_document)
-        assert_raise(OneLogin::RubySaml::ValidationError) do
+        assert_raises(OneLogin::RubySaml::ValidationError) do
           response.validate!
         end
       end
     end
 
-    context "#validate_structure" do
-      should "raise when encountering a condition that prevents the document from being valid" do
+    describe "#validate_structure" do
+      it "raise when encountering a condition that prevents the document from being valid" do
         response = OneLogin::RubySaml::Response.new(response_document_2)
         response.send(:validate_structure)
         assert response.errors.include? "Schema validation failed"
       end
     end
 
-    context "#is_valid?" do
-      should "return false when response is initialized with blank data" do
+    describe "#is_valid?" do
+      it "return false when response is initialized with blank data" do
         response = OneLogin::RubySaml::Response.new('')
         assert !response.is_valid?
       end
 
-      should "return false if settings have not been set" do
+      it "return false if settings have not been set" do
         response = OneLogin::RubySaml::Response.new(response_document)
         assert !response.is_valid?
       end
 
-      should "return true when the response is initialized with valid data" do
+      it "return true when the response is initialized with valid data" do
         response = OneLogin::RubySaml::Response.new(response_document_4)
         response.stubs(:conditions).returns(nil)
         assert !response.is_valid?
@@ -84,7 +84,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert response.is_valid?
       end
 
-      should "should be idempotent when the response is initialized with invalid data" do
+      it "should be idempotent when the response is initialized with invalid data" do
         response = OneLogin::RubySaml::Response.new(response_document_4)
         response.stubs(:conditions).returns(nil)
         settings = OneLogin::RubySaml::Settings.new
@@ -93,7 +93,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert !response.is_valid?
       end
 
-      should "should be idempotent when the response is initialized with valid data" do
+      it "should be idempotent when the response is initialized with valid data" do
         response = OneLogin::RubySaml::Response.new(response_document_4)
         response.stubs(:conditions).returns(nil)
         settings = OneLogin::RubySaml::Settings.new
@@ -103,7 +103,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert response.is_valid?
       end
 
-      should "return true when using certificate instead of fingerprint" do
+      it "return true when using certificate instead of fingerprint" do
         response = OneLogin::RubySaml::Response.new(response_document_4)
         response.stubs(:conditions).returns(nil)
         settings = OneLogin::RubySaml::Settings.new
@@ -112,7 +112,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert response.is_valid?
       end
 
-      should "not allow signature wrapping attack" do
+      it "not allow signature wrapping attack" do
         response = OneLogin::RubySaml::Response.new(response_document_4)
         response.stubs(:conditions).returns(nil)
         settings = OneLogin::RubySaml::Settings.new
@@ -122,7 +122,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert response.name_id == "test@onelogin.com"
       end
 
-      should "support dynamic namespace resolution on signature elements" do
+      it "support dynamic namespace resolution on signature elements" do
         response = OneLogin::RubySaml::Response.new(fixture("no_signature_ns.xml"))
         response.stubs(:conditions).returns(nil)
         settings = OneLogin::RubySaml::Settings.new
@@ -132,7 +132,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert response.validate!
       end
 
-      should "validate ADFS assertions" do
+      it "validate ADFS assertions" do
         response = OneLogin::RubySaml::Response.new(fixture(:adfs_response_sha256))
         response.stubs(:conditions).returns(nil)
         settings = OneLogin::RubySaml::Settings.new
@@ -141,7 +141,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert response.validate!
       end
 
-      should "validate the digest" do
+      it "validate the digest" do
         response = OneLogin::RubySaml::Response.new(r1_response_document_6)
         response.stubs(:conditions).returns(nil)
         settings = OneLogin::RubySaml::Settings.new
@@ -150,7 +150,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert response.validate!
       end
 
-      should "validate SAML 2.0 XML structure" do
+      it "validate SAML 2.0 XML structure" do
         resp_xml = Base64.decode64(response_document_4).gsub(/emailAddress/,'test')
         response = OneLogin::RubySaml::Response.new(Base64.encode64(resp_xml))
         response.stubs(:conditions).returns(nil)
@@ -161,8 +161,8 @@ class RubySamlTest < Test::Unit::TestCase
       end
     end
 
-    context "#name_id" do
-      should "extract the value of the name id element" do
+    describe "#name_id" do
+      it "extract the value of the name id element" do
         response = OneLogin::RubySaml::Response.new(response_document)
         assert_equal "support@onelogin.com", response.name_id
 
@@ -170,19 +170,19 @@ class RubySamlTest < Test::Unit::TestCase
         assert_equal "someone@example.com", response.name_id
       end
 
-      should "be extractable from an OpenSAML response" do
+      it "be extractable from an OpenSAML response" do
         response = OneLogin::RubySaml::Response.new(fixture(:open_saml))
         assert_equal "someone@example.org", response.name_id
       end
 
-      should "be extractable from a Simple SAML PHP response" do
+      it "be extractable from a Simple SAML PHP response" do
         response = OneLogin::RubySaml::Response.new(fixture(:simple_saml_php))
         assert_equal "someone@example.com", response.name_id
       end
     end
 
-    context "#check_conditions" do
-      should "check time conditions" do
+    describe "#check_conditions" do
+      it "check time conditions" do
         response = OneLogin::RubySaml::Response.new(response_document)
         assert !response.send(:validate_conditions, true)
         response = OneLogin::RubySaml::Response.new(response_document_6)
@@ -193,7 +193,7 @@ class RubySamlTest < Test::Unit::TestCase
         assert response.send(:validate_conditions, true)
       end
 
-      should "optionally allow for clock drift" do
+      it "optionally allow for clock drift" do
         # The NotBefore condition in the document is 2011-06-14T18:21:01.516Z
         Time.stubs(:now).returns(Time.parse("2011-06-14T18:21:01Z"))
         response = OneLogin::RubySaml::Response.new(response_document_5, :allowed_clock_drift => 0.515)
@@ -205,45 +205,45 @@ class RubySamlTest < Test::Unit::TestCase
       end
     end
 
-    context "#attributes" do
-      should "extract the first attribute in a hash accessed via its symbol" do
+    describe "#attributes" do
+      it "extract the first attribute in a hash accessed via its symbol" do
         response = OneLogin::RubySaml::Response.new(response_document)
         assert_equal "demo", response.attributes[:uid]
       end
 
-      should "extract the first attribute in a hash accessed via its name" do
+      it "extract the first attribute in a hash accessed via its name" do
         response = OneLogin::RubySaml::Response.new(response_document)
         assert_equal "demo", response.attributes["uid"]
       end
 
-      should "extract all attributes" do
+      it "extract all attributes" do
         response = OneLogin::RubySaml::Response.new(response_document)
         assert_equal "demo", response.attributes[:uid]
         assert_equal "value", response.attributes[:another_value]
       end
 
-      should "work for implicit namespaces" do
+      it "work for implicit namespaces" do
         response = OneLogin::RubySaml::Response.new(response_document_3)
         assert_equal "someone@example.com", response.attributes["http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"]
       end
 
-      should "not raise errors about nil/empty attributes for EncryptedAttributes" do
+      it "not raise errors about nil/empty attributes for EncryptedAttributes" do
         response = OneLogin::RubySaml::Response.new(response_document_7)
         assert_equal 'Demo', response.attributes["first_name"]
       end
 
-      should "not raise on responses without attributes" do
+      it "not raise on responses without attributes" do
         response = OneLogin::RubySaml::Response.new(response_document_4)
         assert_equal OneLogin::RubySaml::Attributes.new, response.attributes
       end
 
-      context "#multiple values" do
-        should "extract single value as string" do
+      describe "#multiple values" do
+        it "extract single value as string" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           assert_equal "demo", response.attributes[:uid]
         end
 
-        should "extract single value as string in compatibility mode off" do
+        it "extract single value as string in compatibility mode off" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           OneLogin::RubySaml::Attributes.single_value_compatibility = false
           assert_equal ["demo"], response.attributes[:uid]
@@ -251,79 +251,79 @@ class RubySamlTest < Test::Unit::TestCase
           OneLogin::RubySaml::Attributes.single_value_compatibility = true
         end
 
-        should "extract first of multiple values as string for b/w compatibility" do
+        it "extract first of multiple values as string for b/w compatibility" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           assert_equal 'value1', response.attributes[:another_value]
         end
 
-        should "extract first of multiple values as string for b/w compatibility in compatibility mode off" do
+        it "extract first of multiple values as string for b/w compatibility in compatibility mode off" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           OneLogin::RubySaml::Attributes.single_value_compatibility = false
           assert_equal ['value1', 'value2'], response.attributes[:another_value]
           OneLogin::RubySaml::Attributes.single_value_compatibility = true
         end
 
-        should "return array with all attributes when asked in XML order" do
+        it "return array with all attributes when asked in XML order" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           assert_equal ['value1', 'value2'], response.attributes.multi(:another_value)
         end
 
-        should "return array with all attributes when asked in XML order in compatibility mode off" do
+        it "return array with all attributes when asked in XML order in compatibility mode off" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           OneLogin::RubySaml::Attributes.single_value_compatibility = false
           assert_equal ['value1', 'value2'], response.attributes.multi(:another_value)
           OneLogin::RubySaml::Attributes.single_value_compatibility = true
         end
 
-        should "return first of multiple values when multiple Attribute tags in XML" do
+        it "return first of multiple values when multiple Attribute tags in XML" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           assert_equal 'role1', response.attributes[:role]
         end
 
-        should "return first of multiple values when multiple Attribute tags in XML in compatibility mode off" do
+        it "return first of multiple values when multiple Attribute tags in XML in compatibility mode off" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           OneLogin::RubySaml::Attributes.single_value_compatibility = false
           assert_equal ['role1', 'role2', 'role3'], response.attributes[:role]
           OneLogin::RubySaml::Attributes.single_value_compatibility = true
         end
 
-        should "return all of multiple values in reverse order when multiple Attribute tags in XML" do
+        it "return all of multiple values in reverse order when multiple Attribute tags in XML" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           assert_equal ['role1', 'role2', 'role3'], response.attributes.multi(:role)
         end
 
-        should "return all of multiple values in reverse order when multiple Attribute tags in XML in compatibility mode off" do
+        it "return all of multiple values in reverse order when multiple Attribute tags in XML in compatibility mode off" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           OneLogin::RubySaml::Attributes.single_value_compatibility = false
           assert_equal ['role1', 'role2', 'role3'], response.attributes.multi(:role)
           OneLogin::RubySaml::Attributes.single_value_compatibility = true
         end
 
-        should "return nil value correctly" do
+        it "return nil value correctly" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           assert_nil response.attributes[:attribute_with_nil_value]
         end
 
-        should "return nil value correctly when not in compatibility mode off" do
+        it "return nil value correctly when not in compatibility mode off" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           OneLogin::RubySaml::Attributes.single_value_compatibility = false
           assert_equal [nil], response.attributes[:attribute_with_nil_value]
           OneLogin::RubySaml::Attributes.single_value_compatibility = true
         end
 
-        should "return multiple values including nil and empty string" do
+        it "return multiple values including nil and empty string" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           assert_equal ["", "valuePresent", nil, nil], response.attributes.multi(:attribute_with_nils_and_empty_strings)
         end
 
-        should "return multiple values from [] when not in compatibility mode off" do
+        it "return multiple values from [] when not in compatibility mode off" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           OneLogin::RubySaml::Attributes.single_value_compatibility = false
           assert_equal ["", "valuePresent", nil, nil], response.attributes[:attribute_with_nils_and_empty_strings]
           OneLogin::RubySaml::Attributes.single_value_compatibility = true
         end
 
-        should "check what happens when trying retrieve attribute that does not exists" do
+        it "check what happens when trying retrieve attribute that does not exists" do
           response = OneLogin::RubySaml::Response.new(fixture(:response_with_multiple_attribute_values))
           assert_equal nil, response.attributes[:attribute_not_exists]
           assert_equal nil, response.attributes.single(:attribute_not_exists)
@@ -339,8 +339,8 @@ class RubySamlTest < Test::Unit::TestCase
       end
     end
 
-    context "#session_expires_at" do
-      should "extract the value of the SessionNotOnOrAfter attribute" do
+    describe "#session_expires_at" do
+      it "extract the value of the SessionNotOnOrAfter attribute" do
         response = OneLogin::RubySaml::Response.new(response_document)
         assert response.session_expires_at.is_a?(Time)
 
@@ -349,27 +349,27 @@ class RubySamlTest < Test::Unit::TestCase
       end
     end
 
-    context "#issuer" do
-      should "return the issuer inside the response assertion" do
+    describe "#issuer" do
+      it "return the issuer inside the response assertion" do
         response = OneLogin::RubySaml::Response.new(response_document)
         assert_equal "https://app.onelogin.com/saml/metadata/13590", response.issuer
       end
 
-      should "return the issuer inside the response" do
+      it "return the issuer inside the response" do
         response = OneLogin::RubySaml::Response.new(response_document_2)
         assert_equal "wibble", response.issuer
       end
     end
 
-    context "#success" do
-      should "find a status code that says success" do
+    describe "#success" do
+      it "find a status code that says success" do
         response = OneLogin::RubySaml::Response.new(response_document)
         response.success?
       end
     end
 
-    context '#xpath_first_from_signed_assertion' do
-      should 'not allow arbitrary code execution' do
+    describe '#xpath_first_from_signed_assertion' do
+      it 'not allow arbitrary code execution' do
         malicious_response_document = fixture('response_eval', false)
         response = OneLogin::RubySaml::Response.new(malicious_response_document)
         response.send(:xpath_first_from_signed_assertion)