ruby-saml 1.10.0 → 1.10.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Potentially problematic release.
This version of ruby-saml might be problematic. Click here for more details.
- checksums.yaml +7 -7
- data/.travis.yml +13 -0
- data/README.md +1 -0
- data/lib/onelogin/ruby-saml/idp_metadata_parser.rb +4 -1
- data/lib/onelogin/ruby-saml/response.rb +5 -0
- data/lib/onelogin/ruby-saml/utils.rb +5 -1
- data/lib/onelogin/ruby-saml/version.rb +1 -1
- data/test/response_test.rb +1 -0
- metadata +108 -132
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
|
-
---
|
2
|
-
|
3
|
-
|
4
|
-
|
5
|
-
SHA512:
|
6
|
-
|
7
|
-
|
1
|
+
---
|
2
|
+
SHA256:
|
3
|
+
data.tar.gz: 86263fd67d7746f38da8cec765cb629d896969ce7c2200fcb4679c41f8eea29b
|
4
|
+
metadata.gz: 33fa6461088803b5669388641d0ba21a6bb1d5a96e470cd6ae29766b75a541db
|
5
|
+
SHA512:
|
6
|
+
data.tar.gz: b51331bec28c256f8affcb416334bb905e16b6defc4c3e86eb487bed1239e23bb27dc526a269d01ff1b5588475631213a14eaab4efb88a34fe2054b0e2c8b09b
|
7
|
+
metadata.gz: b0ec516728497bf9be7098429beeb370d447b784e5168a517bb0de36e72797d3d730977ba5ed70a5c91c8f3daae89694d3cd9c7323186a0c1b4a8e2f58ba0147
|
data/.travis.yml
CHANGED
@@ -9,6 +9,7 @@ rvm:
|
|
9
9
|
- 2.3.0
|
10
10
|
- 2.4.0
|
11
11
|
- 2.5.0
|
12
|
+
- 2.6.0
|
12
13
|
- ree
|
13
14
|
- jruby-1.7.27
|
14
15
|
- jruby-9.1.17.0
|
@@ -30,5 +31,17 @@ matrix:
|
|
30
31
|
gemfile: gemfiles/nokogiri-1.5.gemfile
|
31
32
|
- rvm: jruby-9.2.0.0
|
32
33
|
gemfile: gemfiles/nokogiri-1.5.gemfile
|
34
|
+
- rvm: 2.1.5
|
35
|
+
gemfile: gemfiles/nokogiri-1.5.gemfile
|
36
|
+
- rvm: 2.2.0
|
37
|
+
gemfile: gemfiles/nokogiri-1.5.gemfile
|
38
|
+
- rvm: 2.3.0
|
39
|
+
gemfile: gemfiles/nokogiri-1.5.gemfile
|
40
|
+
- rvm: 2.4.0
|
41
|
+
gemfile: gemfiles/nokogiri-1.5.gemfile
|
42
|
+
- rvm: 2.5.0
|
43
|
+
gemfile: gemfiles/nokogiri-1.5.gemfile
|
44
|
+
- rvm: 2.6.0
|
45
|
+
gemfile: gemfiles/nokogiri-1.5.gemfile
|
33
46
|
env:
|
34
47
|
- JRUBY_OPTS="--debug"
|
data/README.md
CHANGED
@@ -12,6 +12,7 @@ module OneLogin
|
|
12
12
|
# Auxiliary class to retrieve and parse the Identity Provider Metadata
|
13
13
|
#
|
14
14
|
class IdpMetadataParser
|
15
|
+
|
15
16
|
module SamlMetadata
|
16
17
|
module Vocabulary
|
17
18
|
METADATA = "urn:oasis:names:tc:SAML:2.0:metadata"
|
@@ -385,7 +386,9 @@ module OneLogin
|
|
385
386
|
settings
|
386
387
|
end
|
387
388
|
|
388
|
-
|
389
|
+
if self.respond_to?(:private_constant)
|
390
|
+
private_constant :SamlMetadata, :IdpMetadata
|
391
|
+
end
|
389
392
|
end
|
390
393
|
end
|
391
394
|
end
|
@@ -821,6 +821,11 @@ module OneLogin
|
|
821
821
|
end
|
822
822
|
|
823
823
|
if sig_elements.size != 1
|
824
|
+
if sig_elements.size == 0
|
825
|
+
append_error("Signed element id ##{doc.signed_element_id} is not found")
|
826
|
+
else
|
827
|
+
append_error("Signed element id ##{doc.signed_element_id} is found more than once")
|
828
|
+
end
|
824
829
|
return append_error(error_msg)
|
825
830
|
end
|
826
831
|
|
@@ -22,7 +22,11 @@ module OneLogin
|
|
22
22
|
#
|
23
23
|
def self.format_cert(cert)
|
24
24
|
# don't try to format an encoded certificate or if is empty or nil
|
25
|
-
|
25
|
+
if cert.respond_to?(:ascii_only?)
|
26
|
+
return cert if cert.nil? || cert.empty? || !cert.ascii_only?
|
27
|
+
else
|
28
|
+
return cert if cert.nil? || cert.empty? || cert.match(/\x0d/)
|
29
|
+
end
|
26
30
|
|
27
31
|
if cert.scan(/BEGIN CERTIFICATE/).length > 1
|
28
32
|
formatted_cert = []
|
data/test/response_test.rb
CHANGED
@@ -905,6 +905,7 @@ class RubySamlTest < Minitest::Test
|
|
905
905
|
response_wrapped.settings = settings
|
906
906
|
assert !response_wrapped.send(:validate_signature)
|
907
907
|
assert_includes response_wrapped.errors, "Invalid Signature on SAML Response"
|
908
|
+
assert_includes response_wrapped.errors, "Signed element id #pfxc3d2b542-0f7e-8767-8e87-5b0dc6913375 is not found"
|
908
909
|
end
|
909
910
|
end
|
910
911
|
|
metadata
CHANGED
@@ -1,152 +1,128 @@
|
|
1
|
-
--- !ruby/object:Gem::Specification
|
1
|
+
--- !ruby/object:Gem::Specification
|
2
2
|
name: ruby-saml
|
3
|
-
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.10.
|
3
|
+
version: !ruby/object:Gem::Version
|
4
|
+
version: 1.10.1
|
5
5
|
platform: ruby
|
6
|
-
authors:
|
6
|
+
authors:
|
7
7
|
- OneLogin LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
|
12
|
-
|
13
|
-
|
14
|
-
|
15
|
-
|
16
|
-
|
17
|
-
|
18
|
-
|
19
|
-
|
11
|
+
|
12
|
+
date: 2019-04-08 00:00:00 Z
|
13
|
+
dependencies:
|
14
|
+
- !ruby/object:Gem::Dependency
|
15
|
+
name: uuid
|
16
|
+
prerelease: false
|
17
|
+
requirement: &id001 !ruby/object:Gem::Requirement
|
18
|
+
requirements:
|
19
|
+
- &id007
|
20
|
+
- ">="
|
21
|
+
- !ruby/object:Gem::Version
|
22
|
+
version: "0"
|
20
23
|
type: :runtime
|
24
|
+
version_requirements: *id001
|
25
|
+
- !ruby/object:Gem::Dependency
|
26
|
+
name: nokogiri
|
21
27
|
prerelease: false
|
22
|
-
|
23
|
-
requirements:
|
24
|
-
- -
|
25
|
-
- !ruby/object:Gem::Version
|
26
|
-
version: 1.
|
27
|
-
|
28
|
+
requirement: &id002 !ruby/object:Gem::Requirement
|
29
|
+
requirements:
|
30
|
+
- - <=
|
31
|
+
- !ruby/object:Gem::Version
|
32
|
+
version: 1.5.11
|
33
|
+
type: :runtime
|
34
|
+
version_requirements: *id002
|
35
|
+
- !ruby/object:Gem::Dependency
|
28
36
|
name: minitest
|
29
|
-
requirement: !ruby/object:Gem::Requirement
|
30
|
-
requirements:
|
31
|
-
- - "~>"
|
32
|
-
- !ruby/object:Gem::Version
|
33
|
-
version: '5.5'
|
34
|
-
type: :development
|
35
37
|
prerelease: false
|
36
|
-
|
37
|
-
requirements:
|
38
|
-
- -
|
39
|
-
- !ruby/object:Gem::Version
|
40
|
-
version:
|
41
|
-
- !ruby/object:Gem::Dependency
|
42
|
-
name: mocha
|
43
|
-
requirement: !ruby/object:Gem::Requirement
|
44
|
-
requirements:
|
45
|
-
- - "~>"
|
46
|
-
- !ruby/object:Gem::Version
|
47
|
-
version: '0.14'
|
38
|
+
requirement: &id003 !ruby/object:Gem::Requirement
|
39
|
+
requirements:
|
40
|
+
- - ~>
|
41
|
+
- !ruby/object:Gem::Version
|
42
|
+
version: "5.5"
|
48
43
|
type: :development
|
44
|
+
version_requirements: *id003
|
45
|
+
- !ruby/object:Gem::Dependency
|
46
|
+
name: mocha
|
49
47
|
prerelease: false
|
50
|
-
|
51
|
-
requirements:
|
52
|
-
- -
|
53
|
-
- !ruby/object:Gem::Version
|
54
|
-
version:
|
55
|
-
- !ruby/object:Gem::Dependency
|
56
|
-
name: rake
|
57
|
-
requirement: !ruby/object:Gem::Requirement
|
58
|
-
requirements:
|
59
|
-
- - "~>"
|
60
|
-
- !ruby/object:Gem::Version
|
61
|
-
version: '10'
|
48
|
+
requirement: &id004 !ruby/object:Gem::Requirement
|
49
|
+
requirements:
|
50
|
+
- - ~>
|
51
|
+
- !ruby/object:Gem::Version
|
52
|
+
version: "0.14"
|
62
53
|
type: :development
|
54
|
+
version_requirements: *id004
|
55
|
+
- !ruby/object:Gem::Dependency
|
56
|
+
name: rake
|
63
57
|
prerelease: false
|
64
|
-
|
65
|
-
requirements:
|
66
|
-
- -
|
67
|
-
- !ruby/object:Gem::Version
|
68
|
-
version:
|
69
|
-
- !ruby/object:Gem::Dependency
|
70
|
-
name: shoulda
|
71
|
-
requirement: !ruby/object:Gem::Requirement
|
72
|
-
requirements:
|
73
|
-
- - "~>"
|
74
|
-
- !ruby/object:Gem::Version
|
75
|
-
version: '2.11'
|
58
|
+
requirement: &id005 !ruby/object:Gem::Requirement
|
59
|
+
requirements:
|
60
|
+
- - ~>
|
61
|
+
- !ruby/object:Gem::Version
|
62
|
+
version: "10"
|
76
63
|
type: :development
|
64
|
+
version_requirements: *id005
|
65
|
+
- !ruby/object:Gem::Dependency
|
66
|
+
name: shoulda
|
77
67
|
prerelease: false
|
78
|
-
|
79
|
-
requirements:
|
80
|
-
- -
|
81
|
-
- !ruby/object:Gem::Version
|
82
|
-
version:
|
83
|
-
- !ruby/object:Gem::Dependency
|
84
|
-
name: simplecov
|
85
|
-
requirement: !ruby/object:Gem::Requirement
|
86
|
-
requirements:
|
87
|
-
- - ">="
|
88
|
-
- !ruby/object:Gem::Version
|
89
|
-
version: '0'
|
68
|
+
requirement: &id006 !ruby/object:Gem::Requirement
|
69
|
+
requirements:
|
70
|
+
- - ~>
|
71
|
+
- !ruby/object:Gem::Version
|
72
|
+
version: "2.11"
|
90
73
|
type: :development
|
74
|
+
version_requirements: *id006
|
75
|
+
- !ruby/object:Gem::Dependency
|
76
|
+
name: simplecov
|
91
77
|
prerelease: false
|
92
|
-
|
93
|
-
requirements:
|
94
|
-
-
|
95
|
-
- !ruby/object:Gem::Version
|
96
|
-
version: '0'
|
97
|
-
- !ruby/object:Gem::Dependency
|
98
|
-
name: systemu
|
99
|
-
requirement: !ruby/object:Gem::Requirement
|
100
|
-
requirements:
|
101
|
-
- - "~>"
|
102
|
-
- !ruby/object:Gem::Version
|
103
|
-
version: '2'
|
78
|
+
requirement: &id008 !ruby/object:Gem::Requirement
|
79
|
+
requirements:
|
80
|
+
- *id007
|
104
81
|
type: :development
|
82
|
+
version_requirements: *id008
|
83
|
+
- !ruby/object:Gem::Dependency
|
84
|
+
name: systemu
|
105
85
|
prerelease: false
|
106
|
-
|
107
|
-
requirements:
|
108
|
-
- -
|
109
|
-
- !ruby/object:Gem::Version
|
110
|
-
version:
|
111
|
-
- !ruby/object:Gem::Dependency
|
112
|
-
name: timecop
|
113
|
-
requirement: !ruby/object:Gem::Requirement
|
114
|
-
requirements:
|
115
|
-
- - "<="
|
116
|
-
- !ruby/object:Gem::Version
|
117
|
-
version: 0.6.0
|
86
|
+
requirement: &id009 !ruby/object:Gem::Requirement
|
87
|
+
requirements:
|
88
|
+
- - ~>
|
89
|
+
- !ruby/object:Gem::Version
|
90
|
+
version: "2"
|
118
91
|
type: :development
|
92
|
+
version_requirements: *id009
|
93
|
+
- !ruby/object:Gem::Dependency
|
94
|
+
name: timecop
|
119
95
|
prerelease: false
|
120
|
-
|
121
|
-
requirements:
|
122
|
-
- -
|
123
|
-
- !ruby/object:Gem::Version
|
96
|
+
requirement: &id010 !ruby/object:Gem::Requirement
|
97
|
+
requirements:
|
98
|
+
- - <=
|
99
|
+
- !ruby/object:Gem::Version
|
124
100
|
version: 0.6.0
|
125
|
-
- !ruby/object:Gem::Dependency
|
126
|
-
name: pry-byebug
|
127
|
-
requirement: !ruby/object:Gem::Requirement
|
128
|
-
requirements:
|
129
|
-
- - ">="
|
130
|
-
- !ruby/object:Gem::Version
|
131
|
-
version: '0'
|
132
101
|
type: :development
|
102
|
+
version_requirements: *id010
|
103
|
+
- !ruby/object:Gem::Dependency
|
104
|
+
name: ruby-debug
|
133
105
|
prerelease: false
|
134
|
-
|
135
|
-
requirements:
|
136
|
-
- -
|
137
|
-
- !ruby/object:Gem::Version
|
138
|
-
version:
|
106
|
+
requirement: &id011 !ruby/object:Gem::Requirement
|
107
|
+
requirements:
|
108
|
+
- - ~>
|
109
|
+
- !ruby/object:Gem::Version
|
110
|
+
version: 0.10.4
|
111
|
+
type: :development
|
112
|
+
version_requirements: *id011
|
139
113
|
description: SAML toolkit for Ruby on Rails
|
140
114
|
email: support@onelogin.com
|
141
115
|
executables: []
|
116
|
+
|
142
117
|
extensions: []
|
143
|
-
|
118
|
+
|
119
|
+
extra_rdoc_files:
|
144
120
|
- LICENSE
|
145
121
|
- README.md
|
146
|
-
files:
|
147
|
-
-
|
148
|
-
-
|
149
|
-
-
|
122
|
+
files:
|
123
|
+
- .document
|
124
|
+
- .gitignore
|
125
|
+
- .travis.yml
|
150
126
|
- Gemfile
|
151
127
|
- LICENSE
|
152
128
|
- README.md
|
@@ -325,31 +301,31 @@ files:
|
|
325
301
|
- test/utils_test.rb
|
326
302
|
- test/xml_security_test.rb
|
327
303
|
homepage: http://github.com/onelogin/ruby-saml
|
328
|
-
licenses:
|
304
|
+
licenses:
|
329
305
|
- MIT
|
330
306
|
metadata: {}
|
307
|
+
|
331
308
|
post_install_message:
|
332
|
-
rdoc_options:
|
333
|
-
-
|
334
|
-
require_paths:
|
309
|
+
rdoc_options:
|
310
|
+
- --charset=UTF-8
|
311
|
+
require_paths:
|
335
312
|
- lib
|
336
|
-
required_ruby_version: !ruby/object:Gem::Requirement
|
337
|
-
requirements:
|
313
|
+
required_ruby_version: !ruby/object:Gem::Requirement
|
314
|
+
requirements:
|
338
315
|
- - ">="
|
339
|
-
- !ruby/object:Gem::Version
|
316
|
+
- !ruby/object:Gem::Version
|
340
317
|
version: 1.8.7
|
341
|
-
required_rubygems_version: !ruby/object:Gem::Requirement
|
342
|
-
requirements:
|
343
|
-
-
|
344
|
-
- !ruby/object:Gem::Version
|
345
|
-
version: '0'
|
318
|
+
required_rubygems_version: !ruby/object:Gem::Requirement
|
319
|
+
requirements:
|
320
|
+
- *id007
|
346
321
|
requirements: []
|
322
|
+
|
347
323
|
rubyforge_project: http://www.rubygems.org/gems/ruby-saml
|
348
|
-
rubygems_version: 2.
|
324
|
+
rubygems_version: 2.7.7
|
349
325
|
signing_key:
|
350
326
|
specification_version: 4
|
351
327
|
summary: SAML Ruby Tookit
|
352
|
-
test_files:
|
328
|
+
test_files:
|
353
329
|
- test/certificates/certificate.der
|
354
330
|
- test/certificates/certificate1
|
355
331
|
- test/certificates/certificate_without_head_foot
|