saml_idp 0.0.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +15 -0
- data/Gemfile +2 -0
- data/LICENSE +22 -0
- data/README.md +197 -0
- data/app/controllers/saml_idp/idp_controller.rb +42 -0
- data/app/views/saml_idp/idp/new.html.erb +21 -0
- data/app/views/saml_idp/idp/saml_post.html.erb +13 -0
- data/lib/saml_idp.rb +92 -0
- data/lib/saml_idp/algorithmable.rb +19 -0
- data/lib/saml_idp/assertion_builder.rb +144 -0
- data/lib/saml_idp/attribute_decorator.rb +27 -0
- data/lib/saml_idp/attributeable.rb +24 -0
- data/lib/saml_idp/configurator.rb +45 -0
- data/lib/saml_idp/controller.rb +71 -0
- data/lib/saml_idp/default.rb +28 -0
- data/lib/saml_idp/engine.rb +5 -0
- data/lib/saml_idp/hashable.rb +26 -0
- data/lib/saml_idp/incoming_metadata.rb +144 -0
- data/lib/saml_idp/metadata_builder.rb +158 -0
- data/lib/saml_idp/name_id_formatter.rb +68 -0
- data/lib/saml_idp/persisted_metadata.rb +10 -0
- data/lib/saml_idp/request.rb +79 -0
- data/lib/saml_idp/response_builder.rb +60 -0
- data/lib/saml_idp/saml_response.rb +63 -0
- data/lib/saml_idp/service_provider.rb +68 -0
- data/lib/saml_idp/signable.rb +131 -0
- data/lib/saml_idp/signature_builder.rb +42 -0
- data/lib/saml_idp/signed_info_builder.rb +51 -0
- data/lib/saml_idp/version.rb +4 -0
- data/lib/saml_idp/xml_security.rb +168 -0
- data/saml_idp.gemspec +38 -0
- data/spec/acceptance/acceptance_helper.rb +9 -0
- data/spec/acceptance/idp_controller_spec.rb +16 -0
- data/spec/lib/saml_idp/algorithmable_spec.rb +48 -0
- data/spec/lib/saml_idp/assertion_builder_spec.rb +27 -0
- data/spec/lib/saml_idp/attribute_decorator_spec.rb +31 -0
- data/spec/lib/saml_idp/configurator_spec.rb +30 -0
- data/spec/lib/saml_idp/controller_spec.rb +51 -0
- data/spec/lib/saml_idp/metadata_builder_spec.rb +9 -0
- data/spec/lib/saml_idp/name_id_formatter_spec.rb +39 -0
- data/spec/lib/saml_idp/request_spec.rb +14 -0
- data/spec/lib/saml_idp/response_builder_spec.rb +32 -0
- data/spec/lib/saml_idp/saml_response_spec.rb +27 -0
- data/spec/lib/saml_idp/service_provider_spec.rb +21 -0
- data/spec/lib/saml_idp/signable_spec.rb +74 -0
- data/spec/lib/saml_idp/signature_builder_spec.rb +19 -0
- data/spec/lib/saml_idp/signed_info_builder_spec.rb +25 -0
- data/spec/rails_app/.gitignore +15 -0
- data/spec/rails_app/README.rdoc +261 -0
- data/spec/rails_app/Rakefile +7 -0
- data/spec/rails_app/app/assets/images/rails.png +0 -0
- data/spec/rails_app/app/assets/javascripts/application.js +15 -0
- data/spec/rails_app/app/assets/stylesheets/application.css +13 -0
- data/spec/rails_app/app/controllers/application_controller.rb +3 -0
- data/spec/rails_app/app/controllers/saml_controller.rb +8 -0
- data/spec/rails_app/app/controllers/saml_idp_controller.rb +11 -0
- data/spec/rails_app/app/helpers/application_helper.rb +2 -0
- data/spec/rails_app/app/mailers/.gitkeep +0 -0
- data/spec/rails_app/app/models/.gitkeep +0 -0
- data/spec/rails_app/app/views/layouts/application.html.erb +14 -0
- data/spec/rails_app/config.ru +4 -0
- data/spec/rails_app/config/application.rb +60 -0
- data/spec/rails_app/config/boot.rb +6 -0
- data/spec/rails_app/config/database.yml +25 -0
- data/spec/rails_app/config/environment.rb +5 -0
- data/spec/rails_app/config/environments/development.rb +37 -0
- data/spec/rails_app/config/environments/production.rb +67 -0
- data/spec/rails_app/config/environments/test.rb +37 -0
- data/spec/rails_app/config/initializers/backtrace_silencers.rb +7 -0
- data/spec/rails_app/config/initializers/inflections.rb +15 -0
- data/spec/rails_app/config/initializers/mime_types.rb +5 -0
- data/spec/rails_app/config/initializers/secret_token.rb +7 -0
- data/spec/rails_app/config/initializers/session_store.rb +8 -0
- data/spec/rails_app/config/initializers/wrap_parameters.rb +14 -0
- data/spec/rails_app/config/locales/en.yml +5 -0
- data/spec/rails_app/config/routes.rb +6 -0
- data/spec/rails_app/db/seeds.rb +7 -0
- data/spec/rails_app/doc/README_FOR_APP +2 -0
- data/spec/rails_app/lib/assets/.gitkeep +0 -0
- data/spec/rails_app/lib/tasks/.gitkeep +0 -0
- data/spec/rails_app/log/.gitkeep +0 -0
- data/spec/rails_app/public/404.html +26 -0
- data/spec/rails_app/public/422.html +26 -0
- data/spec/rails_app/public/500.html +25 -0
- data/spec/rails_app/public/favicon.ico +0 -0
- data/spec/rails_app/public/index.html +241 -0
- data/spec/rails_app/public/robots.txt +5 -0
- data/spec/rails_app/script/rails +6 -0
- data/spec/rails_app/test/fixtures/.gitkeep +0 -0
- data/spec/rails_app/test/functional/.gitkeep +0 -0
- data/spec/rails_app/test/integration/.gitkeep +0 -0
- data/spec/rails_app/test/performance/browsing_test.rb +12 -0
- data/spec/rails_app/test/test_helper.rb +13 -0
- data/spec/rails_app/test/unit/.gitkeep +0 -0
- data/spec/rails_app/vendor/assets/javascripts/.gitkeep +0 -0
- data/spec/rails_app/vendor/assets/stylesheets/.gitkeep +0 -0
- data/spec/rails_app/vendor/plugins/.gitkeep +0 -0
- data/spec/spec_helper.rb +49 -0
- data/spec/support/certificates/certificate1 +12 -0
- data/spec/support/certificates/r1_certificate2_base64 +1 -0
- data/spec/support/responses/adfs_response_sha1.xml +46 -0
- data/spec/support/responses/adfs_response_sha256.xml +46 -0
- data/spec/support/responses/adfs_response_sha384.xml +46 -0
- data/spec/support/responses/adfs_response_sha512.xml +46 -0
- data/spec/support/responses/logoutresponse_fixtures.rb +67 -0
- data/spec/support/responses/no_signature_ns.xml +48 -0
- data/spec/support/responses/open_saml_response.xml +56 -0
- data/spec/support/responses/r1_response6.xml.base64 +1 -0
- data/spec/support/responses/response1.xml.base64 +1 -0
- data/spec/support/responses/response2.xml.base64 +79 -0
- data/spec/support/responses/response3.xml.base64 +66 -0
- data/spec/support/responses/response4.xml.base64 +93 -0
- data/spec/support/responses/response5.xml.base64 +102 -0
- data/spec/support/responses/response_with_ampersands.xml +139 -0
- data/spec/support/responses/response_with_ampersands.xml.base64 +93 -0
- data/spec/support/responses/simple_saml_php.xml +71 -0
- data/spec/support/responses/starfield_response.xml.base64 +1 -0
- data/spec/support/responses/wrapped_response_2.xml.base64 +150 -0
- data/spec/support/saml_request_macros.rb +19 -0
- data/spec/support/security_helpers.rb +61 -0
- data/spec/xml_security_spec.rb +136 -0
- metadata +407 -0
@@ -0,0 +1,71 @@
|
|
1
|
+
<?xml version="1.0"?>
|
2
|
+
<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="pfxc32aed67-820f-4296-0c20-205a10dd5787" Version="2.0" IssueInstant="2011-06-17T14:54:14Z" Destination="https://example.hello.com/access/saml" InResponseTo="_57bcbf70-7b1f-012e-c821-782bcb13bb38">
|
3
|
+
<saml:Issuer>https://federate.example.net/saml/saml2/idp/metadata.php</saml:Issuer>
|
4
|
+
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
|
5
|
+
<ds:SignedInfo>
|
6
|
+
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
|
7
|
+
<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
|
8
|
+
<ds:Reference URI="#pfxc32aed67-820f-4296-0c20-205a10dd5787">
|
9
|
+
<ds:Transforms>
|
10
|
+
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
|
11
|
+
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
|
12
|
+
</ds:Transforms>
|
13
|
+
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
|
14
|
+
<ds:DigestValue>dVJ592k5xPjCHBCMiJ8eZkPUiT8=</ds:DigestValue>
|
15
|
+
</ds:Reference>
|
16
|
+
</ds:SignedInfo>
|
17
|
+
<ds:SignatureValue>LHNK1FJfcOIUuWVKJmGABQ+W98+pQ==</ds:SignatureValue>
|
18
|
+
<ds:KeyInfo>
|
19
|
+
<ds:X509Data>
|
20
|
+
<ds:X509Certificate>MIIQmS6WmmIht3k=</ds:X509Certificate>
|
21
|
+
</ds:X509Data>
|
22
|
+
</ds:KeyInfo>
|
23
|
+
</ds:Signature>
|
24
|
+
<samlp:Status>
|
25
|
+
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
|
26
|
+
</samlp:Status>
|
27
|
+
<saml:Assertion xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xs="http://www.w3.org/2001/XMLSchema" ID="pfx7841991c-c73f-4035-e2ee-c170c0e1d3e4" Version="2.0" IssueInstant="2011-06-17T14:54:14Z">
|
28
|
+
<saml:Issuer>https://federate.example.net/saml/saml2/idp/metadata.php</saml:Issuer>
|
29
|
+
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
|
30
|
+
<ds:SignedInfo>
|
31
|
+
<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
|
32
|
+
<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
|
33
|
+
<ds:Reference URI="#pfx7841991c-c73f-4035-e2ee-c170c0e1d3e4">
|
34
|
+
<ds:Transforms>
|
35
|
+
<ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
|
36
|
+
<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
|
37
|
+
</ds:Transforms>
|
38
|
+
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
|
39
|
+
<ds:DigestValue>mi0IAultZkpsZa1XxGx9X4iAPQg=</ds:DigestValue>
|
40
|
+
</ds:Reference>
|
41
|
+
</ds:SignedInfo>
|
42
|
+
<ds:SignatureValue>LqkW39SOYbttYxlGhIBw==</ds:SignatureValue>
|
43
|
+
<ds:KeyInfo>
|
44
|
+
<ds:X509Data>
|
45
|
+
<ds:X509Certificate>MIIGmmIht3k=</ds:X509Certificate>
|
46
|
+
</ds:X509Data>
|
47
|
+
</ds:KeyInfo>
|
48
|
+
</ds:Signature>
|
49
|
+
<saml:Subject>
|
50
|
+
<saml:NameID SPNameQualifier="hello.com" Format="urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress">someone@example.com</saml:NameID>
|
51
|
+
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
|
52
|
+
<saml:SubjectConfirmationData NotOnOrAfter="2011-06-17T14:59:14Z" Recipient="https://example.hello.com/access/saml" InResponseTo="_57bcbf70-7b1f-012e-c821-782bcb13bb38"/>
|
53
|
+
</saml:SubjectConfirmation>
|
54
|
+
</saml:Subject>
|
55
|
+
<saml:Conditions NotBefore="2011-06-17T14:53:44Z" NotOnOrAfter="2011-06-17T14:59:14Z">
|
56
|
+
<saml:AudienceRestriction>
|
57
|
+
<saml:Audience>hello.com</saml:Audience>
|
58
|
+
</saml:AudienceRestriction>
|
59
|
+
</saml:Conditions>
|
60
|
+
<saml:AuthnStatement AuthnInstant="2011-06-17T14:54:07Z" SessionNotOnOrAfter="2011-06-17T22:54:14Z" SessionIndex="_51be37965feb5579d803141076936dc2e9d1d98ebf">
|
61
|
+
<saml:AuthnContext>
|
62
|
+
<saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Password</saml:AuthnContextClassRef>
|
63
|
+
</saml:AuthnContext>
|
64
|
+
</saml:AuthnStatement>
|
65
|
+
<saml:AttributeStatement>
|
66
|
+
<saml:Attribute Name="mail" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic">
|
67
|
+
<saml:AttributeValue xsi:type="xs:string">someone@example.com</saml:AttributeValue>
|
68
|
+
</saml:Attribute>
|
69
|
+
</saml:AttributeStatement>
|
70
|
+
</saml:Assertion>
|
71
|
+
</samlp:Response>
|
@@ -0,0 +1 @@
|
|
1
|
+
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
|
@@ -0,0 +1,150 @@
|
|
1
|
+
77u/PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz4NCjxzYW1s
|
2
|
+
cDpSZXNwb25zZSB4bWxuczpzYW1scD0idXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6
|
3
|
+
Mi4wOnByb3RvY29sIiB4bWxuczpzYW1sPSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FN
|
4
|
+
TDoyLjA6YXNzZXJ0aW9uIiBJRD0iXzI2NTAyNGI0NjAyZmM2OGMwMTQ1YzZlOWM1
|
5
|
+
NzFkOGY2MjE5ZTZjZmVlMCIgVmVyc2lvbj0iMi4wIiBJc3N1ZUluc3RhbnQ9IjIw
|
6
|
+
MTEtMDYtMTNUMTY6MDI6MjVaIiBEZXN0aW5hdGlvbj0iaHR0cDovL2xvY2FsaG9z
|
7
|
+
dC9waHAtc2FtbC1maXhlZC9jb25zdW1lLnBocCIgSW5SZXNwb25zZVRvPSJfMzI0
|
8
|
+
NDJhOGMzZDFiYThlYTEzNmMiPg0KICA8c2FtbDpJc3N1ZXI+aHR0cHM6Ly9pZHAv
|
9
|
+
c2ltcGxlc2FtbC9zYW1sMi9pZHAvbWV0YWRhdGEucGhwPC9zYW1sOklzc3Vlcj4N
|
10
|
+
CiAgPHNhbWxwOlN0YXR1cz4NCiAgICA8c2FtbHA6U3RhdHVzQ29kZSBWYWx1ZT0i
|
11
|
+
dXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOnN0YXR1czpTdWNjZXNzIiAvPg0K
|
12
|
+
ICA8L3NhbWxwOlN0YXR1cz4NCiAgPHNhbWw6QXNzZXJ0aW9uIHhtbG5zOnhzaT0i
|
13
|
+
aHR0cDovL3d3dy53My5vcmcvMjAwMS9YTUxTY2hlbWEtaW5zdGFuY2UiIHhtbG5z
|
14
|
+
OnhzPSJodHRwOi8vd3d3LnczLm9yZy8yMDAxL1hNTFNjaGVtYSIgSUQ9Il82M2Iw
|
15
|
+
YWVhZWMyYmJiNDU4ZjcxMTUzZjIxODBjNzJjNDM5MzFkM2M5MjAiIFZlcnNpb249
|
16
|
+
IjIuMCIgSXNzdWVJbnN0YW50PSIyMDExLTA2LTEzVDE2OjAyOjI1WiI+DQogICAg
|
17
|
+
PHNhbWw6SXNzdWVyPmh0dHBzOi8vaWRwL3NpbXBsZXNhbWwvc2FtbDIvaWRwL21l
|
18
|
+
dGFkYXRhLnBocDwvc2FtbDpJc3N1ZXI+DQogICAgPHNhbWw6U3ViamVjdD4NCiAg
|
19
|
+
ICAgIDxzYW1sOk5hbWVJRCBTUE5hbWVRdWFsaWZpZXI9InBocC1zYW1sLWZpeGVk
|
20
|
+
IiBGb3JtYXQ9InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjEuMTpuYW1laWQtZm9y
|
21
|
+
bWF0OmVtYWlsQWRkcmVzcyI+cm9vdEBleGFtcGxlLmNvbTwvc2FtbDpOYW1lSUQ+
|
22
|
+
DQogICAgICA8c2FtbDpTdWJqZWN0Q29uZmlybWF0aW9uIE1ldGhvZD0idXJuOm9h
|
23
|
+
c2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmNtOmJlYXJlciI+DQogICAgICAgIDxzYW1s
|
24
|
+
OlN1YmplY3RDb25maXJtYXRpb25EYXRhIE5vdE9uT3JBZnRlcj0iMjAxMS0wNi0x
|
25
|
+
M1QxNjowNzoyNVoiIFJlY2lwaWVudD0iaHR0cDovL2xvY2FsaG9zdC9waHAtc2Ft
|
26
|
+
bC1maXhlZC9jb25zdW1lLnBocCIgSW5SZXNwb25zZVRvPSJfMzI0NDJhOGMzZDFi
|
27
|
+
YThlYTEzNmMiIC8+DQogICAgICA8L3NhbWw6U3ViamVjdENvbmZpcm1hdGlvbj4N
|
28
|
+
CiAgICA8L3NhbWw6U3ViamVjdD4NCiAgICA8c2FtbDpDb25kaXRpb25zIE5vdEJl
|
29
|
+
Zm9yZT0iMjAxMS0wNi0xM1QxNjowMTo1NVoiIE5vdE9uT3JBZnRlcj0iMjAxMS0w
|
30
|
+
Ni0xM1QxNjowNzoyNVoiPg0KICAgICAgPHNhbWw6QXVkaWVuY2VSZXN0cmljdGlv
|
31
|
+
bj4NCiAgICAgICAgPHNhbWw6QXVkaWVuY2U+cGhwLXNhbWwtZml4ZWQ8L3NhbWw6
|
32
|
+
QXVkaWVuY2U+DQogICAgICA8L3NhbWw6QXVkaWVuY2VSZXN0cmljdGlvbj4NCiAg
|
33
|
+
ICA8L3NhbWw6Q29uZGl0aW9ucz4NCiAgICA8c2FtbDpBdXRoblN0YXRlbWVudCBB
|
34
|
+
dXRobkluc3RhbnQ9IjIwMTEtMDYtMTNUMTI6NDc6MzNaIiBTZXNzaW9uTm90T25P
|
35
|
+
ckFmdGVyPSIyMDExLTA2LTE0VDAwOjAyOjI1WiIgU2Vzc2lvbkluZGV4PSJfNTk5
|
36
|
+
NGFjYjUyODc4MTc4ZjAyYjY2ZTY5M2RlYmUzNDA3MjU3OTZjZDJjIj4NCiAgICAg
|
37
|
+
IDxzYW1sOkF1dGhuQ29udGV4dD4NCiAgICAgICAgPHNhbWw6QXV0aG5Db250ZXh0
|
38
|
+
Q2xhc3NSZWY+dXJuOm9hc2lzOm5hbWVzOnRjOlNBTUw6Mi4wOmFjOmNsYXNzZXM6
|
39
|
+
UGFzc3dvcmQ8L3NhbWw6QXV0aG5Db250ZXh0Q2xhc3NSZWY+DQogICAgICA8L3Nh
|
40
|
+
bWw6QXV0aG5Db250ZXh0Pg0KICAgIDwvc2FtbDpBdXRoblN0YXRlbWVudD4NCiAg
|
41
|
+
PC9zYW1sOkFzc2VydGlvbj4NCiAgPG1kOkVudGl0eURlc2NyaXB0b3IgeG1sbnM6
|
42
|
+
bWQ9InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDptZXRhZGF0YSIgeG1sbnM6
|
43
|
+
ZHM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvMDkveG1sZHNpZyMiIGVudGl0eUlE
|
44
|
+
PSJodHRwczovL2lkcC9zaW1wbGVzYW1sL3NhbWwyL2lkcC9tZXRhZGF0YS5waHAi
|
45
|
+
IElEPSJwZng4YjhmZTFkMC0wZjhmLTJlMDAtYTAwOC1iOThiYmM1ZGExZDAiPg0K
|
46
|
+
ICAgIDxkczpTaWduYXR1cmU+DQogICAgICA8ZHM6U2lnbmVkSW5mbz4NCiAgICAg
|
47
|
+
ICAgPGRzOkNhbm9uaWNhbGl6YXRpb25NZXRob2QgQWxnb3JpdGhtPSJodHRwOi8v
|
48
|
+
d3d3LnczLm9yZy8yMDAxLzEwL3htbC1leGMtYzE0biMiIC8+DQogICAgICAgIDxk
|
49
|
+
czpTaWduYXR1cmVNZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8y
|
50
|
+
MDAwLzA5L3htbGRzaWcjcnNhLXNoYTEiIC8+DQogICAgICAgIDxkczpSZWZlcmVu
|
51
|
+
Y2UgVVJJPSIjcGZ4OGI4ZmUxZDAtMGY4Zi0yZTAwLWEwMDgtYjk4YmJjNWRhMWQw
|
52
|
+
Ij4NCiAgICAgICAgICA8ZHM6VHJhbnNmb3Jtcz4NCiAgICAgICAgICAgIDxkczpU
|
53
|
+
cmFuc2Zvcm0gQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwLzA5L3ht
|
54
|
+
bGRzaWcjZW52ZWxvcGVkLXNpZ25hdHVyZSIgLz4NCiAgICAgICAgICAgIDxkczpU
|
55
|
+
cmFuc2Zvcm0gQWxnb3JpdGhtPSJodHRwOi8vd3d3LnczLm9yZy8yMDAxLzEwL3ht
|
56
|
+
bC1leGMtYzE0biMiIC8+DQogICAgICAgICAgPC9kczpUcmFuc2Zvcm1zPg0KICAg
|
57
|
+
ICAgICAgIDxkczpEaWdlc3RNZXRob2QgQWxnb3JpdGhtPSJodHRwOi8vd3d3Lncz
|
58
|
+
Lm9yZy8yMDAwLzA5L3htbGRzaWcjc2hhMSIgLz4NCiAgICAgICAgICA8ZHM6RGln
|
59
|
+
ZXN0VmFsdWU+NVVmdy9lUlMwVHpIbC9vc2pMVCtJOGxlUDZVPTwvZHM6RGlnZXN0
|
60
|
+
VmFsdWU+DQogICAgICAgIDwvZHM6UmVmZXJlbmNlPg0KICAgICAgPC9kczpTaWdu
|
61
|
+
ZWRJbmZvPg0KICAgICAgPGRzOlNpZ25hdHVyZVZhbHVlPkM0OFpLQ2FwQVdsNHBx
|
62
|
+
WlM1ZFhMTmVmdjZSYS9hMXZGSDlGWDZsd3c3RS94VmxtZXFTbHh1WGEra0JicE4r
|
63
|
+
RWFzWmJaMGE4blYxTE1oNGN5TER2ajVnVURyYkhvMG1aOVNhRDBZaFhxcnBQY21H
|
64
|
+
djVmSGZxZFRtRTVJUUs2MjQ0UkFPdk05MklyYU0vU0hRQ0dROE1hdkhTNSs4Nm11
|
65
|
+
MGdkbjVuNWJrcUU1ND08L2RzOlNpZ25hdHVyZVZhbHVlPg0KICAgICAgPGRzOktl
|
66
|
+
eUluZm8+DQogICAgICAgIDxkczpYNTA5RGF0YT4NCiAgICAgICAgICA8ZHM6WDUw
|
67
|
+
OUNlcnRpZmljYXRlPk1JSUNnVENDQWVvQ0NRQ2JPbHJXRGRYN0ZUQU5CZ2txaGtp
|
68
|
+
Rzl3MEJBUVVGQURDQmhERUxNQWtHQTFVRUJoTUNUazh4R0RBV0JnTlZCQWdURDBG
|
69
|
+
dVpISmxZWE1nVTI5c1ltVnlaekVNTUFvR0ExVUVCeE1EUm05dk1SQXdEZ1lEVlFR
|
70
|
+
S0V3ZFZUa2xPUlZSVU1SZ3dGZ1lEVlFRREV3OW1aV2xrWlM1bGNteGhibWN1Ym04
|
71
|
+
eElUQWZCZ2txaGtpRzl3MEJDUUVXRW1GdVpISmxZWE5BZFc1cGJtVjBkQzV1YnpB
|
72
|
+
ZUZ3MHdOekEyTVRVeE1qQXhNelZhRncwd056QTRNVFF4TWpBeE16VmFNSUdFTVFz
|
73
|
+
d0NRWURWUVFHRXdKT1R6RVlNQllHQTFVRUNCTVBRVzVrY21WaGN5QlRiMnhpWlhK
|
74
|
+
bk1Rd3dDZ1lEVlFRSEV3TkdiMjh4RURBT0JnTlZCQW9UQjFWT1NVNUZWRlF4R0RB
|
75
|
+
V0JnTlZCQU1URDJabGFXUmxMbVZ5YkdGdVp5NXViekVoTUI4R0NTcUdTSWIzRFFF
|
76
|
+
SkFSWVNZVzVrY21WaGMwQjFibWx1WlhSMExtNXZNSUdmTUEwR0NTcUdTSWIzRFFF
|
77
|
+
QkFRVUFBNEdOQURDQmlRS0JnUURpdmJoUjdQNTE2eC9TM0JxS3h1cFFlMExPTm9s
|
78
|
+
aXVwaUJPZXNDTzNTSGJEcmwzK3E5SWJmbmZtRTA0ck51TWNQc0l4QjE2MVRkRHBJ
|
79
|
+
ZXNMQ243YzhhUEhJU0tPdFBsQWVUWlNuYjhRQXU3YVJqWnEzK1BiclA1dVczVGNm
|
80
|
+
Q0dQdEtUeXRIT2dlL09sSmJvMDc4ZFZoWFExNGQxRUR3WEpXMXJSWHVVdDRDOFFJ
|
81
|
+
REFRQUJNQTBHQ1NxR1NJYjNEUUVCQlFVQUE0R0JBQ0RWZnA4NkhPYnFZK2U4QlVv
|
82
|
+
V1E5K1ZNUXgxQVNEb2hCandPc2cyV3lrVXFSWEYrZExmY1VIOWRXUjYzQ3RaSUtG
|
83
|
+
RGJTdE5vbVBuUXo3bmJLK29ueWd3QnNwVkVibkh1VWloWnEzWlVkbXVtUXFDdzRV
|
84
|
+
dnMvMVV2cTNvck9vL1dKVmhUeXZMZ0ZWSzJRYXJRNC82N09aZkhkN1IrUE9CWGhv
|
85
|
+
cGhTTXYxWk9vPC9kczpYNTA5Q2VydGlmaWNhdGU+DQogICAgICAgIDwvZHM6WDUw
|
86
|
+
OURhdGE+DQogICAgICA8L2RzOktleUluZm8+DQogICAgPC9kczpTaWduYXR1cmU+
|
87
|
+
DQogICAgPG1kOklEUFNTT0Rlc2NyaXB0b3IgcHJvdG9jb2xTdXBwb3J0RW51bWVy
|
88
|
+
YXRpb249InVybjpvYXNpczpuYW1lczp0YzpTQU1MOjIuMDpwcm90b2NvbCI+DQog
|
89
|
+
ICAgICA8bWQ6S2V5RGVzY3JpcHRvciB1c2U9InNpZ25pbmciPg0KICAgICAgICA8
|
90
|
+
ZHM6S2V5SW5mbyB4bWxuczpkcz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC8wOS94
|
91
|
+
bWxkc2lnIyI+DQogICAgICAgICAgPGRzOlg1MDlEYXRhPg0KICAgICAgICAgICAg
|
92
|
+
PGRzOlg1MDlDZXJ0aWZpY2F0ZT5NSUlDZ1RDQ0Flb0NDUUNiT2xyV0RkWDdGVEFO
|
93
|
+
QmdrcWhraUc5dzBCQVFVRkFEQ0JoREVMTUFrR0ExVUVCaE1DVGs4eEdEQVdCZ05W
|
94
|
+
QkFnVEQwRnVaSEpsWVhNZ1UyOXNZbVZ5WnpFTU1Bb0dBMVVFQnhNRFJtOXZNUkF3
|
95
|
+
RGdZRFZRUUtFd2RWVGtsT1JWUlVNUmd3RmdZRFZRUURFdzltWldsa1pTNWxjbXho
|
96
|
+
Ym1jdWJtOHhJVEFmQmdrcWhraUc5dzBCQ1FFV0VtRnVaSEpsWVhOQWRXNXBibVYw
|
97
|
+
ZEM1dWJ6QWVGdzB3TnpBMk1UVXhNakF4TXpWYUZ3MHdOekE0TVRReE1qQXhNelZh
|
98
|
+
TUlHRU1Rc3dDUVlEVlFRR0V3Sk9UekVZTUJZR0ExVUVDQk1QUVc1a2NtVmhjeUJU
|
99
|
+
YjJ4aVpYSm5NUXd3Q2dZRFZRUUhFd05HYjI4eEVEQU9CZ05WQkFvVEIxVk9TVTVG
|
100
|
+
VkZReEdEQVdCZ05WQkFNVEQyWmxhV1JsTG1WeWJHRnVaeTV1YnpFaE1COEdDU3FH
|
101
|
+
U0liM0RRRUpBUllTWVc1a2NtVmhjMEIxYm1sdVpYUjBMbTV2TUlHZk1BMEdDU3FH
|
102
|
+
U0liM0RRRUJBUVVBQTRHTkFEQ0JpUUtCZ1FEaXZiaFI3UDUxNngvUzNCcUt4dXBR
|
103
|
+
ZTBMT05vbGl1cGlCT2VzQ08zU0hiRHJsMytxOUliZm5mbUUwNHJOdU1jUHNJeEIx
|
104
|
+
NjFUZERwSWVzTENuN2M4YVBISVNLT3RQbEFlVFpTbmI4UUF1N2FSalpxMytQYnJQ
|
105
|
+
NXVXM1RjZkNHUHRLVHl0SE9nZS9PbEpibzA3OGRWaFhRMTRkMUVEd1hKVzFyUlh1
|
106
|
+
VXQ0QzhRSURBUUFCTUEwR0NTcUdTSWIzRFFFQkJRVUFBNEdCQUNEVmZwODZIT2Jx
|
107
|
+
WStlOEJVb1dROStWTVF4MUFTRG9oQmp3T3NnMld5a1VxUlhGK2RMZmNVSDlkV1I2
|
108
|
+
M0N0WklLRkRiU3ROb21QblF6N25iSytvbnlnd0JzcFZFYm5IdVVpaFpxM1pVZG11
|
109
|
+
bVFxQ3c0VXZzLzFVdnEzb3JPby9XSlZoVHl2TGdGVksyUWFyUTQvNjdPWmZIZDdS
|
110
|
+
K1BPQlhob3BoU012MVpPbzwvZHM6WDUwOUNlcnRpZmljYXRlPg0KICAgICAgICAg
|
111
|
+
IDwvZHM6WDUwOURhdGE+DQogICAgICAgIDwvZHM6S2V5SW5mbz4NCiAgICAgIDwv
|
112
|
+
bWQ6S2V5RGVzY3JpcHRvcj4NCiAgICAgIDxtZDpLZXlEZXNjcmlwdG9yIHVzZT0i
|
113
|
+
ZW5jcnlwdGlvbiI+DQogICAgICAgIDxkczpLZXlJbmZvIHhtbG5zOmRzPSJodHRw
|
114
|
+
Oi8vd3d3LnczLm9yZy8yMDAwLzA5L3htbGRzaWcjIj4NCiAgICAgICAgICA8ZHM6
|
115
|
+
WDUwOURhdGE+DQogICAgICAgICAgICA8ZHM6WDUwOUNlcnRpZmljYXRlPk1JSUNn
|
116
|
+
VENDQWVvQ0NRQ2JPbHJXRGRYN0ZUQU5CZ2txaGtpRzl3MEJBUVVGQURDQmhERUxN
|
117
|
+
QWtHQTFVRUJoTUNUazh4R0RBV0JnTlZCQWdURDBGdVpISmxZWE1nVTI5c1ltVnla
|
118
|
+
ekVNTUFvR0ExVUVCeE1EUm05dk1SQXdEZ1lEVlFRS0V3ZFZUa2xPUlZSVU1SZ3dG
|
119
|
+
Z1lEVlFRREV3OW1aV2xrWlM1bGNteGhibWN1Ym04eElUQWZCZ2txaGtpRzl3MEJD
|
120
|
+
UUVXRW1GdVpISmxZWE5BZFc1cGJtVjBkQzV1YnpBZUZ3MHdOekEyTVRVeE1qQXhN
|
121
|
+
elZhRncwd056QTRNVFF4TWpBeE16VmFNSUdFTVFzd0NRWURWUVFHRXdKT1R6RVlN
|
122
|
+
QllHQTFVRUNCTVBRVzVrY21WaGN5QlRiMnhpWlhKbk1Rd3dDZ1lEVlFRSEV3Tkdi
|
123
|
+
Mjh4RURBT0JnTlZCQW9UQjFWT1NVNUZWRlF4R0RBV0JnTlZCQU1URDJabGFXUmxM
|
124
|
+
bVZ5YkdGdVp5NXViekVoTUI4R0NTcUdTSWIzRFFFSkFSWVNZVzVrY21WaGMwQjFi
|
125
|
+
bWx1WlhSMExtNXZNSUdmTUEwR0NTcUdTSWIzRFFFQkFRVUFBNEdOQURDQmlRS0Jn
|
126
|
+
UURpdmJoUjdQNTE2eC9TM0JxS3h1cFFlMExPTm9saXVwaUJPZXNDTzNTSGJEcmwz
|
127
|
+
K3E5SWJmbmZtRTA0ck51TWNQc0l4QjE2MVRkRHBJZXNMQ243YzhhUEhJU0tPdFBs
|
128
|
+
QWVUWlNuYjhRQXU3YVJqWnEzK1BiclA1dVczVGNmQ0dQdEtUeXRIT2dlL09sSmJv
|
129
|
+
MDc4ZFZoWFExNGQxRUR3WEpXMXJSWHVVdDRDOFFJREFRQUJNQTBHQ1NxR1NJYjNE
|
130
|
+
UUVCQlFVQUE0R0JBQ0RWZnA4NkhPYnFZK2U4QlVvV1E5K1ZNUXgxQVNEb2hCandP
|
131
|
+
c2cyV3lrVXFSWEYrZExmY1VIOWRXUjYzQ3RaSUtGRGJTdE5vbVBuUXo3bmJLK29u
|
132
|
+
eWd3QnNwVkVibkh1VWloWnEzWlVkbXVtUXFDdzRVdnMvMVV2cTNvck9vL1dKVmhU
|
133
|
+
eXZMZ0ZWSzJRYXJRNC82N09aZkhkN1IrUE9CWGhvcGhTTXYxWk9vPC9kczpYNTA5
|
134
|
+
Q2VydGlmaWNhdGU+DQogICAgICAgICAgPC9kczpYNTA5RGF0YT4NCiAgICAgICAg
|
135
|
+
PC9kczpLZXlJbmZvPg0KICAgICAgPC9tZDpLZXlEZXNjcmlwdG9yPg0KICAgICAg
|
136
|
+
PG1kOlNpbmdsZUxvZ291dFNlcnZpY2UgQmluZGluZz0idXJuOm9hc2lzOm5hbWVz
|
137
|
+
OnRjOlNBTUw6Mi4wOmJpbmRpbmdzOkhUVFAtUmVkaXJlY3QiIExvY2F0aW9uPSJo
|
138
|
+
dHRwczovL2lkcC9zaW1wbGVzYW1sL3NhbWwyL2lkcC9TaW5nbGVMb2dvdXRTZXJ2
|
139
|
+
aWNlLnBocCIgLz4NCiAgICAgIDxtZDpOYW1lSURGb3JtYXQ+dXJuOm9hc2lzOm5h
|
140
|
+
bWVzOnRjOlNBTUw6Mi4wOm5hbWVpZC1mb3JtYXQ6dHJhbnNpZW50PC9tZDpOYW1l
|
141
|
+
SURGb3JtYXQ+DQogICAgICA8bWQ6U2luZ2xlU2lnbk9uU2VydmljZSBCaW5kaW5n
|
142
|
+
PSJ1cm46b2FzaXM6bmFtZXM6dGM6U0FNTDoyLjA6YmluZGluZ3M6SFRUUC1SZWRp
|
143
|
+
cmVjdCIgTG9jYXRpb249Imh0dHBzOi8vaWRwL3NpbXBsZXNhbWwvc2FtbDIvaWRw
|
144
|
+
L1NTT1NlcnZpY2UucGhwIiAvPg0KICAgIDwvbWQ6SURQU1NPRGVzY3JpcHRvcj4N
|
145
|
+
CiAgICA8bWQ6Q29udGFjdFBlcnNvbiBjb250YWN0VHlwZT0idGVjaG5pY2FsIj4N
|
146
|
+
CiAgICAgIDxtZDpHaXZlbk5hbWU+QW5kcmVhczwvbWQ6R2l2ZW5OYW1lPg0KICAg
|
147
|
+
ICAgPG1kOlN1ck5hbWU+TWF5ZXI8L21kOlN1ck5hbWU+DQogICAgICA8bWQ6RW1h
|
148
|
+
aWxBZGRyZXNzPmFuZHJlYXMubWF5ZXJAd3VlcnRoLmNvbTwvbWQ6RW1haWxBZGRy
|
149
|
+
ZXNzPg0KICAgIDwvbWQ6Q29udGFjdFBlcnNvbj4NCiAgPC9tZDpFbnRpdHlEZXNj
|
150
|
+
cmlwdG9yPg0KPC9zYW1scDpSZXNwb25zZT4=
|
@@ -0,0 +1,19 @@
|
|
1
|
+
module SamlRequestMacros
|
2
|
+
|
3
|
+
def make_saml_request(requested_saml_acs_url = "https://foo.example.com/saml/consume")
|
4
|
+
auth_request = Onelogin::Saml::Authrequest.new
|
5
|
+
auth_url = auth_request.create(saml_settings(requested_saml_acs_url))
|
6
|
+
CGI.unescape(auth_url.split("=").last)
|
7
|
+
end
|
8
|
+
|
9
|
+
def saml_settings(saml_acs_url = "https://foo.example.com/saml/consume")
|
10
|
+
settings = Onelogin::Saml::Settings.new
|
11
|
+
settings.assertion_consumer_service_url = saml_acs_url
|
12
|
+
settings.issuer = "http://example.com/issuer"
|
13
|
+
settings.idp_sso_target_url = "http://idp.com/saml/idp"
|
14
|
+
settings.idp_cert_fingerprint = SamlIdp::Default::FINGERPRINT
|
15
|
+
settings.name_identifier_format = SamlIdp::Default::NAME_ID_FORMAT
|
16
|
+
settings
|
17
|
+
end
|
18
|
+
|
19
|
+
end
|
@@ -0,0 +1,61 @@
|
|
1
|
+
module SecurityHelpers
|
2
|
+
def fixture(document, base64 = true)
|
3
|
+
response = Dir.glob(File.join(File.dirname(__FILE__), "responses", "#{document}*")).first
|
4
|
+
if base64 && response =~ /\.xml$/
|
5
|
+
Base64.encode64(File.read(response))
|
6
|
+
else
|
7
|
+
File.read(response)
|
8
|
+
end
|
9
|
+
end
|
10
|
+
|
11
|
+
def response_document
|
12
|
+
@response_document ||= File.read(File.join(File.dirname(__FILE__), 'responses', 'response1.xml.base64'))
|
13
|
+
end
|
14
|
+
|
15
|
+
def response_document_2
|
16
|
+
@response_document2 ||= File.read(File.join(File.dirname(__FILE__), 'responses', 'response2.xml.base64'))
|
17
|
+
end
|
18
|
+
|
19
|
+
def response_document_3
|
20
|
+
@response_document3 ||= File.read(File.join(File.dirname(__FILE__), 'responses', 'response3.xml.base64'))
|
21
|
+
end
|
22
|
+
|
23
|
+
def response_document_4
|
24
|
+
@response_document4 ||= File.read(File.join(File.dirname(__FILE__), 'responses', 'response4.xml.base64'))
|
25
|
+
end
|
26
|
+
|
27
|
+
def response_document_5
|
28
|
+
@response_document5 ||= File.read(File.join(File.dirname(__FILE__), 'responses', 'response5.xml.base64'))
|
29
|
+
end
|
30
|
+
|
31
|
+
def r1_response_document_6
|
32
|
+
@response_document6 ||= File.read(File.join(File.dirname(__FILE__), 'responses', 'r1_response6.xml.base64'))
|
33
|
+
end
|
34
|
+
|
35
|
+
def ampersands_response
|
36
|
+
@ampersands_resposne ||= File.read(File.join(File.dirname(__FILE__), 'responses', 'response_with_ampersands.xml.base64'))
|
37
|
+
end
|
38
|
+
|
39
|
+
def response_document_6
|
40
|
+
doc = Base64.decode64(response_document)
|
41
|
+
doc.gsub!(/NotBefore=\"(\d{4})-(\d{2})-(\d{2})T(\d{2}):(\d{2}):(\d{2})Z\"/, "NotBefore=\"#{(Time.now-300).getutc.strftime("%Y-%m-%dT%XZ")}\"")
|
42
|
+
doc.gsub!(/NotOnOrAfter=\"(\d{4})-(\d{2})-(\d{2})T(\d{2}):(\d{2}):(\d{2})Z\"/, "NotOnOrAfter=\"#{(Time.now+300).getutc.strftime("%Y-%m-%dT%XZ")}\"")
|
43
|
+
Base64.encode64(doc)
|
44
|
+
end
|
45
|
+
|
46
|
+
def wrapped_response_2
|
47
|
+
@wrapped_response_2 ||= File.read(File.join(File.dirname(__FILE__), 'responses', 'wrapped_response_2.xml.base64'))
|
48
|
+
end
|
49
|
+
|
50
|
+
def signature_fingerprint_1
|
51
|
+
@signature_fingerprint1 ||= "C5:19:85:D9:47:F1:BE:57:08:20:25:05:08:46:EB:27:F6:CA:B7:83"
|
52
|
+
end
|
53
|
+
|
54
|
+
def signature_1
|
55
|
+
@signature1 ||= File.read(File.join(File.dirname(__FILE__), 'certificates', 'certificate1'))
|
56
|
+
end
|
57
|
+
|
58
|
+
def r1_signature_2
|
59
|
+
@signature2 ||= File.read(File.join(File.dirname(__FILE__), 'certificates', 'r1_certificate2_base64'))
|
60
|
+
end
|
61
|
+
end
|
@@ -0,0 +1,136 @@
|
|
1
|
+
require 'spec_helper'
|
2
|
+
require 'xml_security'
|
3
|
+
|
4
|
+
module SamlIdp
|
5
|
+
describe XMLSecurity, security: true do
|
6
|
+
let(:document) { XMLSecurity::SignedDocument.new(Base64.decode64(response_document)) }
|
7
|
+
let(:base64cert) { document.elements["//ds:X509Certificate"].text }
|
8
|
+
|
9
|
+
it "it run validate without throwing NS related exceptions" do
|
10
|
+
document.validate_doc(base64cert, true).should be_false
|
11
|
+
end
|
12
|
+
|
13
|
+
it "it run validate with throwing NS related exceptions" do
|
14
|
+
expect { document.validate_doc(base64cert, false) }.to raise_error(SamlIdp::XMLSecurity::SignedDocument::ValidationError)
|
15
|
+
end
|
16
|
+
|
17
|
+
it "not raise an error when softly validating the document multiple times" do
|
18
|
+
expect { 2.times { document.validate_doc(base64cert, true) } }.to_not raise_error
|
19
|
+
end
|
20
|
+
|
21
|
+
it "it raise Fingerprint mismatch" do
|
22
|
+
expect { document.validate("no:fi:ng:er:pr:in:t", false) }.to(
|
23
|
+
raise_error(SamlIdp::XMLSecurity::SignedDocument::ValidationError, "Fingerprint mismatch")
|
24
|
+
)
|
25
|
+
end
|
26
|
+
|
27
|
+
it "it raise Digest mismatch" do
|
28
|
+
expect { document.validate_doc(base64cert, false) }.to(
|
29
|
+
raise_error(SamlIdp::XMLSecurity::SignedDocument::ValidationError, "Digest mismatch")
|
30
|
+
)
|
31
|
+
end
|
32
|
+
|
33
|
+
it "it raise Key validation error" do
|
34
|
+
response = Base64.decode64(response_document)
|
35
|
+
response.sub!("<ds:DigestValue>pJQ7MS/ek4KRRWGmv/H43ReHYMs=</ds:DigestValue>",
|
36
|
+
"<ds:DigestValue>b9xsAXLsynugg3Wc1CI3kpWku+0=</ds:DigestValue>")
|
37
|
+
document = XMLSecurity::SignedDocument.new(response)
|
38
|
+
base64cert = document.elements["//ds:X509Certificate"].text
|
39
|
+
expect { document.validate_doc(base64cert, false) }.to(
|
40
|
+
raise_error(SamlIdp::XMLSecurity::SignedDocument::ValidationError, "Key validation error")
|
41
|
+
)
|
42
|
+
end
|
43
|
+
|
44
|
+
it "raise validation error when the X509Certificate is missing" do
|
45
|
+
response = Base64.decode64(response_document)
|
46
|
+
response.sub!(/<ds:X509Certificate>.*<\/ds:X509Certificate>/, "")
|
47
|
+
document = XMLSecurity::SignedDocument.new(response)
|
48
|
+
expect { document.validate("a fingerprint", false) }.to(
|
49
|
+
raise_error(
|
50
|
+
SamlIdp::XMLSecurity::SignedDocument::ValidationError,
|
51
|
+
"Certificate element missing in response (ds:X509Certificate)"
|
52
|
+
)
|
53
|
+
)
|
54
|
+
end
|
55
|
+
end
|
56
|
+
|
57
|
+
describe "Algorithms" do
|
58
|
+
it "validate using SHA1" do
|
59
|
+
document = XMLSecurity::SignedDocument.new(fixture(:adfs_response_sha1, false))
|
60
|
+
document.validate("F1:3C:6B:80:90:5A:03:0E:6C:91:3E:5D:15:FA:DD:B0:16:45:48:72").should be_true
|
61
|
+
end
|
62
|
+
|
63
|
+
it "validate using SHA256" do
|
64
|
+
document = XMLSecurity::SignedDocument.new(fixture(:adfs_response_sha256, false))
|
65
|
+
document.validate("28:74:9B:E8:1F:E8:10:9C:A8:7C:A9:C3:E3:C5:01:6C:92:1C:B4:BA").should be_true
|
66
|
+
end
|
67
|
+
|
68
|
+
it "validate using SHA384" do
|
69
|
+
document = XMLSecurity::SignedDocument.new(fixture(:adfs_response_sha384, false))
|
70
|
+
document.validate("F1:3C:6B:80:90:5A:03:0E:6C:91:3E:5D:15:FA:DD:B0:16:45:48:72").should be_true
|
71
|
+
end
|
72
|
+
|
73
|
+
it "validate using SHA512" do
|
74
|
+
document = XMLSecurity::SignedDocument.new(fixture(:adfs_response_sha512, false))
|
75
|
+
document.validate("F1:3C:6B:80:90:5A:03:0E:6C:91:3E:5D:15:FA:DD:B0:16:45:48:72").should be_true
|
76
|
+
end
|
77
|
+
end
|
78
|
+
|
79
|
+
describe "XmlSecurity::SignedDocument" do
|
80
|
+
describe "#extract_inclusive_namespaces" do
|
81
|
+
it "support explicit namespace resolution for exclusive canonicalization" do
|
82
|
+
response = fixture(:open_saml_response, false)
|
83
|
+
document = XMLSecurity::SignedDocument.new(response)
|
84
|
+
inclusive_namespaces = document.send(:extract_inclusive_namespaces)
|
85
|
+
|
86
|
+
inclusive_namespaces.should == %w[xs]
|
87
|
+
end
|
88
|
+
|
89
|
+
it "support implicit namespace resolution for exclusive canonicalization" do
|
90
|
+
response = fixture(:no_signature_ns, false)
|
91
|
+
document = XMLSecurity::SignedDocument.new(response)
|
92
|
+
inclusive_namespaces = document.send(:extract_inclusive_namespaces)
|
93
|
+
|
94
|
+
inclusive_namespaces.should == %w[#default saml ds xs xsi]
|
95
|
+
end
|
96
|
+
|
97
|
+
it "return an empty list when inclusive namespace element is missing" do
|
98
|
+
response = fixture(:no_signature_ns, false)
|
99
|
+
response.slice! %r{<InclusiveNamespaces xmlns="http://www.w3.org/2001/10/xml-exc-c14n#" PrefixList="#default saml ds xs xsi"/>}
|
100
|
+
|
101
|
+
document = XMLSecurity::SignedDocument.new(response)
|
102
|
+
inclusive_namespaces = document.send(:extract_inclusive_namespaces)
|
103
|
+
|
104
|
+
inclusive_namespaces.should be_empty
|
105
|
+
end
|
106
|
+
end
|
107
|
+
|
108
|
+
describe "StarfieldTMS" do
|
109
|
+
let(:response) { Onelogin::Saml::Response.new(fixture(:starfield_response)) }
|
110
|
+
|
111
|
+
before do
|
112
|
+
response.settings = Onelogin::Saml::Settings.new(
|
113
|
+
:idp_cert_fingerprint => "8D:BA:53:8E:A3:B6:F9:F1:69:6C:BB:D9:D8:BD:41:B3:AC:4F:9D:4D"
|
114
|
+
)
|
115
|
+
end
|
116
|
+
|
117
|
+
it "be able to validate a good response" do
|
118
|
+
Timecop.freeze Time.parse('2012-11-28 17:55:00 UTC') do
|
119
|
+
response.validate!.should be_true
|
120
|
+
end
|
121
|
+
end
|
122
|
+
|
123
|
+
it "fail before response is valid" do
|
124
|
+
Timecop.freeze Time.parse('2012-11-20 17:55:00 UTC') do
|
125
|
+
response.should_not be_is_valid
|
126
|
+
end
|
127
|
+
end
|
128
|
+
|
129
|
+
it "fail after response expires" do
|
130
|
+
Timecop.freeze Time.parse('2012-11-30 17:55:00 UTC') do
|
131
|
+
response.should_not be_is_valid
|
132
|
+
end
|
133
|
+
end
|
134
|
+
end
|
135
|
+
end
|
136
|
+
end
|
metadata
ADDED
@@ -0,0 +1,407 @@
|
|
1
|
+
--- !ruby/object:Gem::Specification
|
2
|
+
name: saml_idp
|
3
|
+
version: !ruby/object:Gem::Version
|
4
|
+
version: 0.0.1
|
5
|
+
platform: ruby
|
6
|
+
authors:
|
7
|
+
- Jon Phenow
|
8
|
+
autorequire:
|
9
|
+
bindir: bin
|
10
|
+
cert_chain: []
|
11
|
+
date: 2013-08-13 00:00:00.000000000 Z
|
12
|
+
dependencies:
|
13
|
+
- !ruby/object:Gem::Dependency
|
14
|
+
name: activesupport
|
15
|
+
requirement: !ruby/object:Gem::Requirement
|
16
|
+
requirements:
|
17
|
+
- - ! '>='
|
18
|
+
- !ruby/object:Gem::Version
|
19
|
+
version: '0'
|
20
|
+
type: :runtime
|
21
|
+
prerelease: false
|
22
|
+
version_requirements: !ruby/object:Gem::Requirement
|
23
|
+
requirements:
|
24
|
+
- - ! '>='
|
25
|
+
- !ruby/object:Gem::Version
|
26
|
+
version: '0'
|
27
|
+
- !ruby/object:Gem::Dependency
|
28
|
+
name: uuid
|
29
|
+
requirement: !ruby/object:Gem::Requirement
|
30
|
+
requirements:
|
31
|
+
- - ! '>='
|
32
|
+
- !ruby/object:Gem::Version
|
33
|
+
version: '0'
|
34
|
+
type: :runtime
|
35
|
+
prerelease: false
|
36
|
+
version_requirements: !ruby/object:Gem::Requirement
|
37
|
+
requirements:
|
38
|
+
- - ! '>='
|
39
|
+
- !ruby/object:Gem::Version
|
40
|
+
version: '0'
|
41
|
+
- !ruby/object:Gem::Dependency
|
42
|
+
name: builder
|
43
|
+
requirement: !ruby/object:Gem::Requirement
|
44
|
+
requirements:
|
45
|
+
- - ! '>='
|
46
|
+
- !ruby/object:Gem::Version
|
47
|
+
version: '0'
|
48
|
+
type: :runtime
|
49
|
+
prerelease: false
|
50
|
+
version_requirements: !ruby/object:Gem::Requirement
|
51
|
+
requirements:
|
52
|
+
- - ! '>='
|
53
|
+
- !ruby/object:Gem::Version
|
54
|
+
version: '0'
|
55
|
+
- !ruby/object:Gem::Dependency
|
56
|
+
name: httparty
|
57
|
+
requirement: !ruby/object:Gem::Requirement
|
58
|
+
requirements:
|
59
|
+
- - ! '>='
|
60
|
+
- !ruby/object:Gem::Version
|
61
|
+
version: '0'
|
62
|
+
type: :runtime
|
63
|
+
prerelease: false
|
64
|
+
version_requirements: !ruby/object:Gem::Requirement
|
65
|
+
requirements:
|
66
|
+
- - ! '>='
|
67
|
+
- !ruby/object:Gem::Version
|
68
|
+
version: '0'
|
69
|
+
- !ruby/object:Gem::Dependency
|
70
|
+
name: rake
|
71
|
+
requirement: !ruby/object:Gem::Requirement
|
72
|
+
requirements:
|
73
|
+
- - ! '>='
|
74
|
+
- !ruby/object:Gem::Version
|
75
|
+
version: '0'
|
76
|
+
type: :development
|
77
|
+
prerelease: false
|
78
|
+
version_requirements: !ruby/object:Gem::Requirement
|
79
|
+
requirements:
|
80
|
+
- - ! '>='
|
81
|
+
- !ruby/object:Gem::Version
|
82
|
+
version: '0'
|
83
|
+
- !ruby/object:Gem::Dependency
|
84
|
+
name: simplecov
|
85
|
+
requirement: !ruby/object:Gem::Requirement
|
86
|
+
requirements:
|
87
|
+
- - ! '>='
|
88
|
+
- !ruby/object:Gem::Version
|
89
|
+
version: '0'
|
90
|
+
type: :development
|
91
|
+
prerelease: false
|
92
|
+
version_requirements: !ruby/object:Gem::Requirement
|
93
|
+
requirements:
|
94
|
+
- - ! '>='
|
95
|
+
- !ruby/object:Gem::Version
|
96
|
+
version: '0'
|
97
|
+
- !ruby/object:Gem::Dependency
|
98
|
+
name: rspec
|
99
|
+
requirement: !ruby/object:Gem::Requirement
|
100
|
+
requirements:
|
101
|
+
- - ! '>='
|
102
|
+
- !ruby/object:Gem::Version
|
103
|
+
version: '0'
|
104
|
+
type: :development
|
105
|
+
prerelease: false
|
106
|
+
version_requirements: !ruby/object:Gem::Requirement
|
107
|
+
requirements:
|
108
|
+
- - ! '>='
|
109
|
+
- !ruby/object:Gem::Version
|
110
|
+
version: '0'
|
111
|
+
- !ruby/object:Gem::Dependency
|
112
|
+
name: ruby-saml
|
113
|
+
requirement: !ruby/object:Gem::Requirement
|
114
|
+
requirements:
|
115
|
+
- - ! '>='
|
116
|
+
- !ruby/object:Gem::Version
|
117
|
+
version: '0'
|
118
|
+
type: :development
|
119
|
+
prerelease: false
|
120
|
+
version_requirements: !ruby/object:Gem::Requirement
|
121
|
+
requirements:
|
122
|
+
- - ! '>='
|
123
|
+
- !ruby/object:Gem::Version
|
124
|
+
version: '0'
|
125
|
+
- !ruby/object:Gem::Dependency
|
126
|
+
name: rails
|
127
|
+
requirement: !ruby/object:Gem::Requirement
|
128
|
+
requirements:
|
129
|
+
- - ~>
|
130
|
+
- !ruby/object:Gem::Version
|
131
|
+
version: '3.2'
|
132
|
+
type: :development
|
133
|
+
prerelease: false
|
134
|
+
version_requirements: !ruby/object:Gem::Requirement
|
135
|
+
requirements:
|
136
|
+
- - ~>
|
137
|
+
- !ruby/object:Gem::Version
|
138
|
+
version: '3.2'
|
139
|
+
- !ruby/object:Gem::Dependency
|
140
|
+
name: capybara
|
141
|
+
requirement: !ruby/object:Gem::Requirement
|
142
|
+
requirements:
|
143
|
+
- - ! '>='
|
144
|
+
- !ruby/object:Gem::Version
|
145
|
+
version: '0'
|
146
|
+
type: :development
|
147
|
+
prerelease: false
|
148
|
+
version_requirements: !ruby/object:Gem::Requirement
|
149
|
+
requirements:
|
150
|
+
- - ! '>='
|
151
|
+
- !ruby/object:Gem::Version
|
152
|
+
version: '0'
|
153
|
+
- !ruby/object:Gem::Dependency
|
154
|
+
name: timecop
|
155
|
+
requirement: !ruby/object:Gem::Requirement
|
156
|
+
requirements:
|
157
|
+
- - ! '>='
|
158
|
+
- !ruby/object:Gem::Version
|
159
|
+
version: '0'
|
160
|
+
type: :development
|
161
|
+
prerelease: false
|
162
|
+
version_requirements: !ruby/object:Gem::Requirement
|
163
|
+
requirements:
|
164
|
+
- - ! '>='
|
165
|
+
- !ruby/object:Gem::Version
|
166
|
+
version: '0'
|
167
|
+
description: SAML IdP (Identity Provider) library in ruby
|
168
|
+
email: jon.phenow@sportngin.com
|
169
|
+
executables: []
|
170
|
+
extensions: []
|
171
|
+
extra_rdoc_files: []
|
172
|
+
files:
|
173
|
+
- app/controllers/saml_idp/idp_controller.rb
|
174
|
+
- app/views/saml_idp/idp/new.html.erb
|
175
|
+
- app/views/saml_idp/idp/saml_post.html.erb
|
176
|
+
- lib/saml_idp/algorithmable.rb
|
177
|
+
- lib/saml_idp/assertion_builder.rb
|
178
|
+
- lib/saml_idp/attribute_decorator.rb
|
179
|
+
- lib/saml_idp/attributeable.rb
|
180
|
+
- lib/saml_idp/configurator.rb
|
181
|
+
- lib/saml_idp/controller.rb
|
182
|
+
- lib/saml_idp/default.rb
|
183
|
+
- lib/saml_idp/engine.rb
|
184
|
+
- lib/saml_idp/hashable.rb
|
185
|
+
- lib/saml_idp/incoming_metadata.rb
|
186
|
+
- lib/saml_idp/metadata_builder.rb
|
187
|
+
- lib/saml_idp/name_id_formatter.rb
|
188
|
+
- lib/saml_idp/persisted_metadata.rb
|
189
|
+
- lib/saml_idp/request.rb
|
190
|
+
- lib/saml_idp/response_builder.rb
|
191
|
+
- lib/saml_idp/saml_response.rb
|
192
|
+
- lib/saml_idp/service_provider.rb
|
193
|
+
- lib/saml_idp/signable.rb
|
194
|
+
- lib/saml_idp/signature_builder.rb
|
195
|
+
- lib/saml_idp/signed_info_builder.rb
|
196
|
+
- lib/saml_idp/version.rb
|
197
|
+
- lib/saml_idp/xml_security.rb
|
198
|
+
- lib/saml_idp.rb
|
199
|
+
- LICENSE
|
200
|
+
- README.md
|
201
|
+
- Gemfile
|
202
|
+
- saml_idp.gemspec
|
203
|
+
- spec/acceptance/acceptance_helper.rb
|
204
|
+
- spec/acceptance/idp_controller_spec.rb
|
205
|
+
- spec/lib/saml_idp/algorithmable_spec.rb
|
206
|
+
- spec/lib/saml_idp/assertion_builder_spec.rb
|
207
|
+
- spec/lib/saml_idp/attribute_decorator_spec.rb
|
208
|
+
- spec/lib/saml_idp/configurator_spec.rb
|
209
|
+
- spec/lib/saml_idp/controller_spec.rb
|
210
|
+
- spec/lib/saml_idp/metadata_builder_spec.rb
|
211
|
+
- spec/lib/saml_idp/name_id_formatter_spec.rb
|
212
|
+
- spec/lib/saml_idp/request_spec.rb
|
213
|
+
- spec/lib/saml_idp/response_builder_spec.rb
|
214
|
+
- spec/lib/saml_idp/saml_response_spec.rb
|
215
|
+
- spec/lib/saml_idp/service_provider_spec.rb
|
216
|
+
- spec/lib/saml_idp/signable_spec.rb
|
217
|
+
- spec/lib/saml_idp/signature_builder_spec.rb
|
218
|
+
- spec/lib/saml_idp/signed_info_builder_spec.rb
|
219
|
+
- spec/rails_app/.gitignore
|
220
|
+
- spec/rails_app/README.rdoc
|
221
|
+
- spec/rails_app/Rakefile
|
222
|
+
- spec/rails_app/app/assets/images/rails.png
|
223
|
+
- spec/rails_app/app/assets/javascripts/application.js
|
224
|
+
- spec/rails_app/app/assets/stylesheets/application.css
|
225
|
+
- spec/rails_app/app/controllers/application_controller.rb
|
226
|
+
- spec/rails_app/app/controllers/saml_controller.rb
|
227
|
+
- spec/rails_app/app/controllers/saml_idp_controller.rb
|
228
|
+
- spec/rails_app/app/helpers/application_helper.rb
|
229
|
+
- spec/rails_app/app/mailers/.gitkeep
|
230
|
+
- spec/rails_app/app/models/.gitkeep
|
231
|
+
- spec/rails_app/app/views/layouts/application.html.erb
|
232
|
+
- spec/rails_app/config.ru
|
233
|
+
- spec/rails_app/config/application.rb
|
234
|
+
- spec/rails_app/config/boot.rb
|
235
|
+
- spec/rails_app/config/database.yml
|
236
|
+
- spec/rails_app/config/environment.rb
|
237
|
+
- spec/rails_app/config/environments/development.rb
|
238
|
+
- spec/rails_app/config/environments/production.rb
|
239
|
+
- spec/rails_app/config/environments/test.rb
|
240
|
+
- spec/rails_app/config/initializers/backtrace_silencers.rb
|
241
|
+
- spec/rails_app/config/initializers/inflections.rb
|
242
|
+
- spec/rails_app/config/initializers/mime_types.rb
|
243
|
+
- spec/rails_app/config/initializers/secret_token.rb
|
244
|
+
- spec/rails_app/config/initializers/session_store.rb
|
245
|
+
- spec/rails_app/config/initializers/wrap_parameters.rb
|
246
|
+
- spec/rails_app/config/locales/en.yml
|
247
|
+
- spec/rails_app/config/routes.rb
|
248
|
+
- spec/rails_app/db/seeds.rb
|
249
|
+
- spec/rails_app/doc/README_FOR_APP
|
250
|
+
- spec/rails_app/lib/assets/.gitkeep
|
251
|
+
- spec/rails_app/lib/tasks/.gitkeep
|
252
|
+
- spec/rails_app/log/.gitkeep
|
253
|
+
- spec/rails_app/public/404.html
|
254
|
+
- spec/rails_app/public/422.html
|
255
|
+
- spec/rails_app/public/500.html
|
256
|
+
- spec/rails_app/public/favicon.ico
|
257
|
+
- spec/rails_app/public/index.html
|
258
|
+
- spec/rails_app/public/robots.txt
|
259
|
+
- spec/rails_app/script/rails
|
260
|
+
- spec/rails_app/test/fixtures/.gitkeep
|
261
|
+
- spec/rails_app/test/functional/.gitkeep
|
262
|
+
- spec/rails_app/test/integration/.gitkeep
|
263
|
+
- spec/rails_app/test/performance/browsing_test.rb
|
264
|
+
- spec/rails_app/test/test_helper.rb
|
265
|
+
- spec/rails_app/test/unit/.gitkeep
|
266
|
+
- spec/rails_app/vendor/assets/javascripts/.gitkeep
|
267
|
+
- spec/rails_app/vendor/assets/stylesheets/.gitkeep
|
268
|
+
- spec/rails_app/vendor/plugins/.gitkeep
|
269
|
+
- spec/spec_helper.rb
|
270
|
+
- spec/support/certificates/certificate1
|
271
|
+
- spec/support/certificates/r1_certificate2_base64
|
272
|
+
- spec/support/responses/adfs_response_sha1.xml
|
273
|
+
- spec/support/responses/adfs_response_sha256.xml
|
274
|
+
- spec/support/responses/adfs_response_sha384.xml
|
275
|
+
- spec/support/responses/adfs_response_sha512.xml
|
276
|
+
- spec/support/responses/logoutresponse_fixtures.rb
|
277
|
+
- spec/support/responses/no_signature_ns.xml
|
278
|
+
- spec/support/responses/open_saml_response.xml
|
279
|
+
- spec/support/responses/r1_response6.xml.base64
|
280
|
+
- spec/support/responses/response1.xml.base64
|
281
|
+
- spec/support/responses/response2.xml.base64
|
282
|
+
- spec/support/responses/response3.xml.base64
|
283
|
+
- spec/support/responses/response4.xml.base64
|
284
|
+
- spec/support/responses/response5.xml.base64
|
285
|
+
- spec/support/responses/response_with_ampersands.xml
|
286
|
+
- spec/support/responses/response_with_ampersands.xml.base64
|
287
|
+
- spec/support/responses/simple_saml_php.xml
|
288
|
+
- spec/support/responses/starfield_response.xml.base64
|
289
|
+
- spec/support/responses/wrapped_response_2.xml.base64
|
290
|
+
- spec/support/saml_request_macros.rb
|
291
|
+
- spec/support/security_helpers.rb
|
292
|
+
- spec/xml_security_spec.rb
|
293
|
+
homepage: http://github.com/sportngin/saml_idp
|
294
|
+
licenses: []
|
295
|
+
metadata: {}
|
296
|
+
post_install_message:
|
297
|
+
rdoc_options:
|
298
|
+
- --charset=UTF-8
|
299
|
+
require_paths:
|
300
|
+
- lib
|
301
|
+
required_ruby_version: !ruby/object:Gem::Requirement
|
302
|
+
requirements:
|
303
|
+
- - ! '>='
|
304
|
+
- !ruby/object:Gem::Version
|
305
|
+
version: '0'
|
306
|
+
required_rubygems_version: !ruby/object:Gem::Requirement
|
307
|
+
requirements:
|
308
|
+
- - ! '>='
|
309
|
+
- !ruby/object:Gem::Version
|
310
|
+
version: '0'
|
311
|
+
requirements: []
|
312
|
+
rubyforge_project:
|
313
|
+
rubygems_version: 2.0.6
|
314
|
+
signing_key:
|
315
|
+
specification_version: 4
|
316
|
+
summary: SAML Indentity Provider in ruby
|
317
|
+
test_files:
|
318
|
+
- spec/acceptance/acceptance_helper.rb
|
319
|
+
- spec/acceptance/idp_controller_spec.rb
|
320
|
+
- spec/lib/saml_idp/algorithmable_spec.rb
|
321
|
+
- spec/lib/saml_idp/assertion_builder_spec.rb
|
322
|
+
- spec/lib/saml_idp/attribute_decorator_spec.rb
|
323
|
+
- spec/lib/saml_idp/configurator_spec.rb
|
324
|
+
- spec/lib/saml_idp/controller_spec.rb
|
325
|
+
- spec/lib/saml_idp/metadata_builder_spec.rb
|
326
|
+
- spec/lib/saml_idp/name_id_formatter_spec.rb
|
327
|
+
- spec/lib/saml_idp/request_spec.rb
|
328
|
+
- spec/lib/saml_idp/response_builder_spec.rb
|
329
|
+
- spec/lib/saml_idp/saml_response_spec.rb
|
330
|
+
- spec/lib/saml_idp/service_provider_spec.rb
|
331
|
+
- spec/lib/saml_idp/signable_spec.rb
|
332
|
+
- spec/lib/saml_idp/signature_builder_spec.rb
|
333
|
+
- spec/lib/saml_idp/signed_info_builder_spec.rb
|
334
|
+
- spec/rails_app/.gitignore
|
335
|
+
- spec/rails_app/README.rdoc
|
336
|
+
- spec/rails_app/Rakefile
|
337
|
+
- spec/rails_app/app/assets/images/rails.png
|
338
|
+
- spec/rails_app/app/assets/javascripts/application.js
|
339
|
+
- spec/rails_app/app/assets/stylesheets/application.css
|
340
|
+
- spec/rails_app/app/controllers/application_controller.rb
|
341
|
+
- spec/rails_app/app/controllers/saml_controller.rb
|
342
|
+
- spec/rails_app/app/controllers/saml_idp_controller.rb
|
343
|
+
- spec/rails_app/app/helpers/application_helper.rb
|
344
|
+
- spec/rails_app/app/mailers/.gitkeep
|
345
|
+
- spec/rails_app/app/models/.gitkeep
|
346
|
+
- spec/rails_app/app/views/layouts/application.html.erb
|
347
|
+
- spec/rails_app/config.ru
|
348
|
+
- spec/rails_app/config/application.rb
|
349
|
+
- spec/rails_app/config/boot.rb
|
350
|
+
- spec/rails_app/config/database.yml
|
351
|
+
- spec/rails_app/config/environment.rb
|
352
|
+
- spec/rails_app/config/environments/development.rb
|
353
|
+
- spec/rails_app/config/environments/production.rb
|
354
|
+
- spec/rails_app/config/environments/test.rb
|
355
|
+
- spec/rails_app/config/initializers/backtrace_silencers.rb
|
356
|
+
- spec/rails_app/config/initializers/inflections.rb
|
357
|
+
- spec/rails_app/config/initializers/mime_types.rb
|
358
|
+
- spec/rails_app/config/initializers/secret_token.rb
|
359
|
+
- spec/rails_app/config/initializers/session_store.rb
|
360
|
+
- spec/rails_app/config/initializers/wrap_parameters.rb
|
361
|
+
- spec/rails_app/config/locales/en.yml
|
362
|
+
- spec/rails_app/config/routes.rb
|
363
|
+
- spec/rails_app/db/seeds.rb
|
364
|
+
- spec/rails_app/doc/README_FOR_APP
|
365
|
+
- spec/rails_app/lib/assets/.gitkeep
|
366
|
+
- spec/rails_app/lib/tasks/.gitkeep
|
367
|
+
- spec/rails_app/log/.gitkeep
|
368
|
+
- spec/rails_app/public/404.html
|
369
|
+
- spec/rails_app/public/422.html
|
370
|
+
- spec/rails_app/public/500.html
|
371
|
+
- spec/rails_app/public/favicon.ico
|
372
|
+
- spec/rails_app/public/index.html
|
373
|
+
- spec/rails_app/public/robots.txt
|
374
|
+
- spec/rails_app/script/rails
|
375
|
+
- spec/rails_app/test/fixtures/.gitkeep
|
376
|
+
- spec/rails_app/test/functional/.gitkeep
|
377
|
+
- spec/rails_app/test/integration/.gitkeep
|
378
|
+
- spec/rails_app/test/performance/browsing_test.rb
|
379
|
+
- spec/rails_app/test/test_helper.rb
|
380
|
+
- spec/rails_app/test/unit/.gitkeep
|
381
|
+
- spec/rails_app/vendor/assets/javascripts/.gitkeep
|
382
|
+
- spec/rails_app/vendor/assets/stylesheets/.gitkeep
|
383
|
+
- spec/rails_app/vendor/plugins/.gitkeep
|
384
|
+
- spec/spec_helper.rb
|
385
|
+
- spec/support/certificates/certificate1
|
386
|
+
- spec/support/certificates/r1_certificate2_base64
|
387
|
+
- spec/support/responses/adfs_response_sha1.xml
|
388
|
+
- spec/support/responses/adfs_response_sha256.xml
|
389
|
+
- spec/support/responses/adfs_response_sha384.xml
|
390
|
+
- spec/support/responses/adfs_response_sha512.xml
|
391
|
+
- spec/support/responses/logoutresponse_fixtures.rb
|
392
|
+
- spec/support/responses/no_signature_ns.xml
|
393
|
+
- spec/support/responses/open_saml_response.xml
|
394
|
+
- spec/support/responses/r1_response6.xml.base64
|
395
|
+
- spec/support/responses/response1.xml.base64
|
396
|
+
- spec/support/responses/response2.xml.base64
|
397
|
+
- spec/support/responses/response3.xml.base64
|
398
|
+
- spec/support/responses/response4.xml.base64
|
399
|
+
- spec/support/responses/response5.xml.base64
|
400
|
+
- spec/support/responses/response_with_ampersands.xml
|
401
|
+
- spec/support/responses/response_with_ampersands.xml.base64
|
402
|
+
- spec/support/responses/simple_saml_php.xml
|
403
|
+
- spec/support/responses/starfield_response.xml.base64
|
404
|
+
- spec/support/responses/wrapped_response_2.xml.base64
|
405
|
+
- spec/support/saml_request_macros.rb
|
406
|
+
- spec/support/security_helpers.rb
|
407
|
+
- spec/xml_security_spec.rb
|