RubyGems - saml-kit - Versions diffs - 0.2.13 → 0.2.14 - Mend

saml-kit 0.2.13 → 0.2.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

checksums.yaml +4 -4
data/lib/saml/kit/authentication_request.rb +3 -2
data/lib/saml/kit/builders/templates/xml_signature.builder +1 -1
data/lib/saml/kit/builders/xml_signature.rb +3 -3
data/lib/saml/kit/certificate.rb +2 -2
data/lib/saml/kit/key_pair.rb +7 -2
data/lib/saml/kit/self_signed_certificate.rb +3 -3
data/lib/saml/kit/signatures.rb +8 -2
data/lib/saml/kit/templatable.rb +4 -0
data/lib/saml/kit/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 70dbb0e0364cd23b3f1afd8b02fb38cbe7b0b6fd
-  data.tar.gz: 6f3644f902897ca75eb959b621cd42db9dc9436d
+  metadata.gz: 8c247888ce2d9b7ca65605a7169e275f60094185
+  data.tar.gz: 666425c5224ece36334d9fee1c0b8c249fabc7e1
 SHA512:
-  metadata.gz: fecaa317d931cf2e07c0b32e34b1787cd85b7b0b8f8b65322abab157f5886b712b0122832e36ce529fc3adfc803c84dd90dc380d02d3d204985eecc71f0d2b79
-  data.tar.gz: 07b68fcbcfd29c2777565c63ac66ad3d9a4fa3cac3e4d007986ea6b79fa197f8fc829680345b949aaf9182f05f2019f1c74d4fb540ee3412a757baea6c98f6ef
+  metadata.gz: 6dffef3e1532ceef9178bace64ffae38caf0a4580e0926ea5a1524d15242efc29148b47164aadaabcc14808ef2e62c7ae618c4dfd42954346a556081750161d6
+  data.tar.gz: db069d1133acf615608f846d86d46d9ba38cddc4670ea5c45899266a25a465247e0a809f6308c98f011896de3a8f1753485ac83a801f88359ef6c7ab492201d5

data/lib/saml/kit/authentication_request.rb CHANGED Viewed

@@ -41,9 +41,10 @@ module Saml
       # Generate a Response for a specific user.
       # @param user [Object] this is a custom user object that can be used for generating a nameid and assertion attributes.
       # @param binding [Symbol] the SAML binding to use `:http_post` or `:http_redirect`.
-      def response_for(user, binding:, relay_state: nil)
+      # @param configuration [Saml::Kit::Configuration] the configuration to use to build the response.
+      def response_for(user, binding:, relay_state: nil, configuration: Saml::Kit.configuration)
         response_binding = provider.assertion_consumer_service_for(binding: binding)
-        builder = Saml::Kit::Response.builder(user, self) do |x|
+        builder = Saml::Kit::Response.builder(user, self, configuration: configuration) do |x|
           x.embed_signature = provider.want_assertions_signed
           yield x if block_given?
         end

data/lib/saml/kit/builders/templates/xml_signature.builder CHANGED Viewed

@@ -14,7 +14,7 @@ xml.Signature "xmlns" => Saml::Kit::Namespaces::XMLDSIG do
   xml.SignatureValue ""
   xml.KeyInfo do
     xml.X509Data do
-      xml.X509Certificate x509_certificate
+      xml.X509Certificate certificate.stripped
     end
   end
 end

data/lib/saml/kit/builders/xml_signature.rb CHANGED Viewed

@@ -19,12 +19,12 @@ module Saml
         attr_reader :embed_signature, :configuration
         attr_reader :reference_id
-        attr_reader :x509_certificate
+        attr_reader :certificate
-        def initialize(reference_id, configuration:)
+        def initialize(reference_id, configuration:, certificate: )
           @configuration = configuration
           @reference_id = reference_id
-          @x509_certificate = configuration.certificates(use: :signing).last.stripped
+          @certificate = certificate
         end
         def signature_method

data/lib/saml/kit/certificate.rb CHANGED Viewed

@@ -35,7 +35,7 @@ module Saml
       end
       def ==(other)
-        self.to_s == other.to_s
+        self.fingerprint == other.fingerprint
       end
       def eql?(other)
@@ -51,7 +51,7 @@ module Saml
       end
       def to_h
-        { use: @use, x509: @value }
+        { use: @use, fingerprint: fingerprint.to_s }
       end
       def inspect

data/lib/saml/kit/key_pair.rb CHANGED Viewed

@@ -3,15 +3,20 @@ module Saml
     class KeyPair # :nodoc:
       attr_reader :certificate, :private_key, :use
-      def initialize(certificate, private_key, password, use)
+      def initialize(certificate, private_key, passphrase, use)
         @use = use
         @certificate = Saml::Kit::Certificate.new(certificate, use: use)
-        @private_key = OpenSSL::PKey::RSA.new(private_key, password)
+        @private_key = OpenSSL::PKey::RSA.new(private_key, passphrase)
       end
       def for?(use)
         @use == use
       end
+      def self.generate(use:, passphrase: SecureRandom.uuid)
+        certificate, private_key = SelfSignedCertificate.new(passphrase).create
+        new(certificate, private_key, passphrase, use)
+      end
     end
   end
 end

data/lib/saml/kit/self_signed_certificate.rb CHANGED Viewed

@@ -3,8 +3,8 @@ module Saml
     class SelfSignedCertificate
       SUBJECT="/C=CA/ST=Alberta/L=Calgary/O=SamlKit/OU=SamlKit/CN=SamlKit"
-      def initialize(password)
-        @password = password
+      def initialize(passphrase)
+        @passphrase = passphrase
       end
       def create
@@ -20,7 +20,7 @@ module Saml
         certificate.sign(rsa_key, OpenSSL::Digest::SHA256.new)
         [
           certificate.to_pem,
-          rsa_key.to_pem(OpenSSL::Cipher.new('AES-256-CBC'), @password)
+          rsa_key.to_pem(OpenSSL::Cipher.new('AES-256-CBC'), @passphrase)
         ]
       end
     end

data/lib/saml/kit/signatures.rb CHANGED Viewed

@@ -7,18 +7,24 @@ module Saml
       # @!visibility private
       def initialize(configuration:)
         @configuration = configuration
+        @key_pair = configuration.key_pairs(use: :signing).last
+      end
+      def sign_with(key_pair)
+        @key_pair = key_pair
       end
       # @!visibility private
       def build(reference_id)
         return nil unless configuration.sign?
-        Saml::Kit::Builders::XmlSignature.new(reference_id, configuration: configuration)
+        certificate = @key_pair.certificate
+        Saml::Kit::Builders::XmlSignature.new(reference_id, configuration: configuration, certificate: certificate)
       end
       # @!visibility private
       def complete(raw_xml)
         return raw_xml unless configuration.sign?
-        private_key = configuration.private_keys(use: :signing).last
+        private_key = @key_pair.private_key
         Xmldsig::SignedDocument.new(raw_xml).sign(private_key)
       end

data/lib/saml/kit/templatable.rb CHANGED Viewed

@@ -17,6 +17,10 @@ module Saml
         render(signatures.build(reference_id), xml: xml)
       end
+      def sign_with(key_pair)
+        signatures.sign_with(key_pair)
+      end
       def sign?
         embed_signature.nil? ? configuration.sign? : embed_signature && configuration.sign?
       end

data/lib/saml/kit/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Saml
   module Kit
-    VERSION = "0.2.13"
+    VERSION = "0.2.14"
   end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: saml-kit
 version: !ruby/object:Gem::Version
-  version: 0.2.13
+  version: 0.2.14
 platform: ruby
 authors:
 - mo khan
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2017-12-19 00:00:00.000000000 Z
+date: 2017-12-21 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activemodel