RubyGems - saml-kit - Versions diffs - 1.0.24 → 1.0.25 - Mend

saml-kit 1.0.24 → 1.0.25

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (18) hide show

checksums.yaml +4 -4
data/lib/saml/kit/assertion.rb +5 -0
data/lib/saml/kit/bindings/binding.rb +1 -0
data/lib/saml/kit/bindings/http_redirect.rb +2 -0
data/lib/saml/kit/builders/assertion.rb +1 -0
data/lib/saml/kit/builders/templates/assertion.builder +7 -1
data/lib/saml/kit/concerns/trustable.rb +3 -0
data/lib/saml/kit/concerns/xml_parseable.rb +1 -0
data/lib/saml/kit/concerns/xml_templatable.rb +1 -0
data/lib/saml/kit/document.rb +1 -0
data/lib/saml/kit/identity_provider_metadata.rb +1 -0
data/lib/saml/kit/logout_request.rb +1 -0
data/lib/saml/kit/metadata.rb +1 -0
data/lib/saml/kit/response.rb +1 -0
data/lib/saml/kit/service_provider_metadata.rb +1 -0
data/lib/saml/kit/signature.rb +3 -0
data/lib/saml/kit/version.rb +1 -1
metadata +3 -3

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 3ff0dd35ecb05542b7f21d3ead4c22f232a337eaa41c9ddfa56b6d82b8f8873b
-  data.tar.gz: 4d189291119912edfc23847cffa213fb5c53eca8f95a27810d40f8c111ff533e
+  metadata.gz: 0132eba52685773a829377a13a8a7dae40319e8cbd70b1359107c0f5790c6c26
+  data.tar.gz: 390adce2967ee14b748259cb46d9f0d41d5de5fdaeb5f04fecd1d4feb7099cc7
 SHA512:
-  metadata.gz: 8354776fdbb5c0ae66ed2e4a18baa38c3073e2e99f49117638419e01d111c012b0cdbe862654798bf285d9e0d5bbe78fab3f0d66e7ce79ee5c6a8ca95c58e676
-  data.tar.gz: da11bf9e0f5d4f9fec869b7908f0249d63454ba2edefe40e3b0080037d02615d1129ad6b9cd9c72ed1794d64da25eb789e1412ad4db35070d1a28f5e00829f76
+  metadata.gz: 7d12c7fd8d1d2ae2d851bb3d1f016ca56e9b1ad6f951c08ba5875bb51fa15f13fcf1dcd779283898d1ad46eff748ec3a15013272beb69fb2f11231786ca11cd1
+  data.tar.gz: c97f7e3f0acfbbbc4f21608b411b4785fe19cfae3c8f37c0b1ab41ba74c2aaa6bb46f67d39b989bd3d55558f92e3bb46084b7511fb04018d81317a86df8c5e56

data/lib/saml/kit/assertion.rb CHANGED

@@ -90,6 +90,7 @@ module Saml
       def decryptable?
         return true unless encrypted?
         !@cannot_decrypt
       end
@@ -103,6 +104,7 @@ module Saml
         encrypted_assertion = at_xpath('./xmlenc:EncryptedData')
         @encrypted = encrypted_assertion.present?
         return unless @encrypted
         @to_nokogiri = decryptor.decrypt_node(encrypted_assertion)
       rescue Xml::Kit::DecryptionError => error
         @cannot_decrypt = true
@@ -111,16 +113,19 @@ module Saml
       def must_match_issuer
         return if audiences.empty? || audiences.include?(configuration.entity_id)
         errors[:audience] << error_message(:must_match_issuer)
       end
       def must_be_active_session
         return if active?
         errors[:base] << error_message(:expired)
       end
       def must_have_valid_signature
         return if !signed? || signature.valid?
         signature.errors.each do |attribute, message|
           errors.add(attribute, message)
         end

data/lib/saml/kit/bindings/binding.rb CHANGED

@@ -58,6 +58,7 @@ module Saml
           }
           return parameters[:SAMLRequest] if parameters[:SAMLRequest].present?
           return parameters[:SAMLResponse] if parameters[:SAMLResponse].present?
           message = 'SAMLRequest or SAMLResponse parameter is required.'
           raise ArgumentError, message
         end

data/lib/saml/kit/bindings/http_redirect.rb CHANGED

@@ -52,6 +52,7 @@ module Saml
             decode(signature),
             canonicalize(params)
           )
           raise ArgumentError, 'Invalid Signature'
         end
@@ -87,6 +88,7 @@ module Saml
         def params_to_hash(value)
           return value unless value.is_a?(String)
           Hash[URI.parse(value).query.split('&').map { |xx| xx.split('=', 2) }]
         end
       end

data/lib/saml/kit/builders/assertion.rb CHANGED

@@ -35,6 +35,7 @@ module Saml
         def assertion_attributes
           return {} unless user.respond_to?(:assertion_attributes_for)
           user.assertion_attributes_for(request)
         end

data/lib/saml/kit/builders/templates/assertion.builder CHANGED

@@ -25,7 +25,13 @@ xml.Assertion(assertion_options) do
     xml.AttributeStatement do
       assertion_attributes.each do |key, value|
         xml.Attribute Name: key do
-          xml.AttributeValue value.to_s
+          if value.respond_to?(:each)
+            value.each do |x|
+              xml.AttributeValue x.to_s
+            end
+          else
+            xml.AttributeValue value.to_s
+          end
         end
       end
     end

data/lib/saml/kit/concerns/trustable.rb CHANGED

@@ -30,6 +30,7 @@ module Saml
       def trusted?
         return true if signature_verified
         return false unless signed?
         signature.trusted?(provider)
       end
@@ -60,12 +61,14 @@ module Saml
       def must_be_registered
         return unless expected_type?
         return if provider.present?
         errors[:provider] << error_message(:unregistered)
       end
       def must_be_trusted
         return if trusted?
         return if provider.present? && !signed?
         errors[:fingerprint] << error_message(:invalid_fingerprint)
       end
     end

data/lib/saml/kit/concerns/xml_parseable.rb CHANGED

@@ -45,6 +45,7 @@ module Saml
       # @!visibility private
       def at_xpath(xpath)
         return unless present?
         to_nokogiri.at_xpath(xpath, NAMESPACES)
       end

data/lib/saml/kit/concerns/xml_templatable.rb CHANGED

@@ -20,6 +20,7 @@ module Saml
       # signing certificate is available via the configuration.
       def sign?
         return configuration.sign? if embed_signature.nil?
         (embed_signature && configuration.sign?) ||
           (embed_signature && signing_key_pair.present?)
       end

data/lib/saml/kit/document.rb CHANGED

@@ -111,6 +111,7 @@ module Saml
       def must_be_valid_version
         return unless expected_type?
         return if version == '2.0'
         errors[:version] << error_message(:invalid_version)
       end
     end

data/lib/saml/kit/identity_provider_metadata.rb CHANGED

@@ -57,6 +57,7 @@ module Saml
         xpath = "/md:EntityDescriptor/md:#{name}"
         attribute = at_xpath(xpath).attribute('WantAuthnRequestsSigned')
         return true if attribute.nil?
         attribute.text.casecmp('true').zero?
       end

data/lib/saml/kit/logout_request.rb CHANGED

@@ -67,6 +67,7 @@ module Saml
       def single_logout_service
         return if provider.nil?
         urls = provider.single_logout_services
         urls.first
       end

data/lib/saml/kit/metadata.rb CHANGED

@@ -191,6 +191,7 @@ module Saml
       def must_have_valid_signature
         return if !signature.present? || signature.valid?
         signature.errors.each do |attribute, error|
           errors[attribute] << error
         end

data/lib/saml/kit/response.rb CHANGED

@@ -51,6 +51,7 @@ module Saml
       def must_contain_single_assertion
         return if assertion_nodes.count <= 1
         errors[:base] << error_message(:must_contain_single_assertion)
       end

data/lib/saml/kit/service_provider_metadata.rb CHANGED

@@ -28,6 +28,7 @@ module Saml
         element = at_xpath("/md:EntityDescriptor/md:#{name}")
         attribute = element.attribute('WantAssertionsSigned')
         return true if attribute.nil?
         attribute.text.casecmp('true').zero?
       end

data/lib/saml/kit/signature.rb CHANGED

@@ -24,6 +24,7 @@ module Saml
         xpath = './ds:KeyInfo/ds:X509Data/ds:X509Certificate'
         value = at_xpath(xpath).try(:text)
         return if value.nil?
         ::Xml::Kit::Certificate.new(value, use: :signing)
       end
@@ -31,6 +32,7 @@ module Saml
       # the certificates registered in the metadata.
       def trusted?(metadata)
         return false if metadata.nil?
         metadata.matches?(certificate.fingerprint, use: :signing).present?
       end
@@ -121,6 +123,7 @@ module Saml
       def at_xpath(xpath)
         return nil unless node
         node.at_xpath(xpath, Saml::Kit::Document::NAMESPACES)
       end

data/lib/saml/kit/version.rb CHANGED

@@ -2,6 +2,6 @@
 module Saml
   module Kit
-    VERSION = '1.0.24'.freeze
+    VERSION = '1.0.25'.freeze
   end
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: saml-kit
 version: !ruby/object:Gem::Version
-  version: 1.0.24
+  version: 1.0.25
 platform: ruby
 authors:
 - mo khan
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2018-09-18 00:00:00.000000000 Z
+date: 2018-10-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activemodel
@@ -342,7 +342,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.7.7
+rubygems_version: 2.7.6
 signing_key:
 specification_version: 4
 summary: A simple toolkit for working with SAML.