RubyGems - saml_idp - Versions diffs - 0.8.0 → 0.15.0 - Mend

saml_idp 0.8.0 → 0.15.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (43) hide show

checksums.yaml +4 -4
data/README.md +49 -47
data/lib/saml_idp/assertion_builder.rb +28 -3
data/lib/saml_idp/configurator.rb +6 -1
data/lib/saml_idp/controller.rb +19 -11
data/lib/saml_idp/encryptor.rb +0 -1
data/lib/saml_idp/fingerprint.rb +19 -0
data/lib/saml_idp/incoming_metadata.rb +18 -0
data/lib/saml_idp/metadata_builder.rb +23 -8
data/lib/saml_idp/persisted_metadata.rb +4 -0
data/lib/saml_idp/request.rb +13 -6
data/lib/saml_idp/response_builder.rb +26 -6
data/lib/saml_idp/saml_response.rb +62 -28
data/lib/saml_idp/service_provider.rb +1 -6
data/lib/saml_idp/signable.rb +1 -2
data/lib/saml_idp/version.rb +1 -1
data/lib/saml_idp/xml_security.rb +1 -1
data/lib/saml_idp.rb +2 -1
data/saml_idp.gemspec +31 -31
data/spec/lib/saml_idp/assertion_builder_spec.rb +143 -0
data/spec/lib/saml_idp/configurator_spec.rb +2 -0
data/spec/lib/saml_idp/controller_spec.rb +24 -0
data/spec/lib/saml_idp/fingerprint_spec.rb +14 -0
data/spec/lib/saml_idp/incoming_metadata_spec.rb +20 -1
data/spec/lib/saml_idp/metadata_builder_spec.rb +23 -0
data/spec/lib/saml_idp/request_spec.rb +43 -9
data/spec/lib/saml_idp/response_builder_spec.rb +3 -1
data/spec/lib/saml_idp/saml_response_spec.rb +122 -7
data/spec/rails_app/app/controllers/saml_controller.rb +1 -5
data/spec/rails_app/app/controllers/saml_idp_controller.rb +55 -3
data/{app → spec/rails_app/app}/views/saml_idp/idp/new.html.erb +1 -5
data/{app → spec/rails_app/app}/views/saml_idp/idp/saml_post.html.erb +1 -1
data/spec/rails_app/config/application.rb +1 -0
data/spec/rails_app/config/boot.rb +1 -1
data/spec/rails_app/config/environments/development.rb +2 -0
data/spec/spec_helper.rb +20 -1
data/spec/support/certificates/sp_cert_req.csr +12 -0
data/spec/support/certificates/sp_private_key.pem +16 -0
data/spec/support/certificates/sp_x509_cert.crt +18 -0
data/spec/support/saml_request_macros.rb +62 -3
data/spec/support/security_helpers.rb +10 -0
metadata +83 -61
data/app/controllers/saml_idp/idp_controller.rb +0 -59

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: saml_idp
 version: !ruby/object:Gem::Version
-  version: 0.8.0
+  version: 0.15.0
 platform: ruby
 authors:
 - Jon Phenow
-autorequire:
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-11-09 00:00:00.000000000 Z
+date: 2023-05-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -16,72 +16,86 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '5.2'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '5.2'
 - !ruby/object:Gem::Dependency
-  name: uuid
+  name: builder
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '2.3'
+        version: '3.0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '2.3'
+        version: '3.0'
 - !ruby/object:Gem::Dependency
-  name: builder
+  name: nokogiri
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: 1.6.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: 1.6.2
 - !ruby/object:Gem::Dependency
-  name: nokogiri
+  name: rexml
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.6.2
+        version: '0'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 1.6.2
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: rake
+  name: xmlenc
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 0.7.1
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.7.1
+- !ruby/object:Gem::Dependency
+  name: activeresource
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '5.1'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '5.1'
 - !ruby/object:Gem::Dependency
-  name: simplecov
+  name: appraisal
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -95,117 +109,117 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: rspec
+  name: byebug
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.7.0
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 3.7.0
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: ruby-saml
+  name: capybara
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.5'
+        version: '2.16'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '1.5'
+        version: '2.16'
 - !ruby/object:Gem::Dependency
   name: rails
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '5.2'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '5.2'
 - !ruby/object:Gem::Dependency
-  name: activeresource
+  name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '3.2'
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: capybara
+  name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '2.16'
+        version: 3.7.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '2.16'
+        version: 3.7.0
 - !ruby/object:Gem::Dependency
-  name: timecop
+  name: ruby-saml
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0.8'
+        version: 1.7.2
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0.8'
+        version: 1.7.2
 - !ruby/object:Gem::Dependency
-  name: xmlenc
+  name: simplecov
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.6.4
+        version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.6.4
+        version: '0'
 - !ruby/object:Gem::Dependency
-  name: appraisal
+  name: timecop
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '0.8'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '0.8'
 description: SAML IdP (Identity Provider) Library for Ruby
 email: jon.phenow@sportngin.com
 executables: []
@@ -215,9 +229,6 @@ files:
 - Gemfile
 - LICENSE
 - README.md
-- app/controllers/saml_idp/idp_controller.rb
-- app/views/saml_idp/idp/new.html.erb
-- app/views/saml_idp/idp/saml_post.html.erb
 - lib/saml_idp.rb
 - lib/saml_idp/algorithmable.rb
 - lib/saml_idp/assertion_builder.rb
@@ -228,6 +239,7 @@ files:
 - lib/saml_idp/default.rb
 - lib/saml_idp/encryptor.rb
 - lib/saml_idp/engine.rb
+- lib/saml_idp/fingerprint.rb
 - lib/saml_idp/hashable.rb
 - lib/saml_idp/incoming_metadata.rb
 - lib/saml_idp/logout_builder.rb
@@ -254,6 +266,7 @@ files:
 - spec/lib/saml_idp/configurator_spec.rb
 - spec/lib/saml_idp/controller_spec.rb
 - spec/lib/saml_idp/encryptor_spec.rb
+- spec/lib/saml_idp/fingerprint_spec.rb
 - spec/lib/saml_idp/incoming_metadata_spec.rb
 - spec/lib/saml_idp/logout_request_builder_spec.rb
 - spec/lib/saml_idp/logout_response_builder_spec.rb
@@ -279,6 +292,8 @@ files:
 - spec/rails_app/app/mailers/.gitkeep
 - spec/rails_app/app/models/.gitkeep
 - spec/rails_app/app/views/layouts/application.html.erb
+- spec/rails_app/app/views/saml_idp/idp/new.html.erb
+- spec/rails_app/app/views/saml_idp/idp/saml_post.html.erb
 - spec/rails_app/config.ru
 - spec/rails_app/config/application.rb
 - spec/rails_app/config/boot.rb
@@ -319,6 +334,9 @@ files:
 - spec/spec_helper.rb
 - spec/support/certificates/certificate1
 - spec/support/certificates/r1_certificate2_base64
+- spec/support/certificates/sp_cert_req.csr
+- spec/support/certificates/sp_private_key.pem
+- spec/support/certificates/sp_x509_cert.crt
 - spec/support/responses/adfs_response_sha1.xml
 - spec/support/responses/adfs_response_sha256.xml
 - spec/support/responses/adfs_response_sha384.xml
@@ -347,22 +365,21 @@ metadata:
   homepage_uri: https://github.com/saml-idp/saml_idp
   source_code_uri: https://github.com/saml-idp/saml_idp
   bug_tracker_uri: https://github.com/saml-idp/saml_idp/issues
-  documentation_uri: http://rdoc.info/gems/saml_idp/0.8.0
-post_install_message: |
-  If you're just recently updating saml_idp - please be aware we've changed the default
-  certificate. See the PR and a description of why we've done this here:
-  https://github.com/saml-idp/saml_idp/pull/29
-  If you just need to see the certificate `bundle open saml_idp` and go to
-  `lib/saml_idp/default.rb`
+  documentation_uri: http://rdoc.info/gems/saml_idp/0.15.0
+post_install_message: |2
+      If you're just recently updating saml_idp - please be aware we've changed the default
+      certificate. See the PR and a description of why we've done this here:
+      https://github.com/saml-idp/saml_idp/pull/29
-  Similarly, please see the README about certificates - you should avoid using the
-  defaults in a Production environment. Post any issues you to github.
+      If you just need to see the certificate `bundle open saml_idp` and go to
+      `lib/saml_idp/default.rb`
-  ** New in Version 0.3.0 **
+      Similarly, please see the README about certificates - you should avoid using the
+      defaults in a Production environment. Post any issues you to github.
-  Encrypted Assertions require the xmlenc gem. See the example in the Controller
-  section of the README.
+      ** New in Version 0.3.0 **
+      Encrypted Assertions require the xmlenc gem. See the example in the Controller
+      section of the README.
 rdoc_options:
 - "--charset=UTF-8"
 require_paths:
@@ -371,16 +388,15 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '2.2'
+      version: '2.5'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project:
-rubygems_version: 2.7.6
-signing_key:
+rubygems_version: 3.3.7
+signing_key:
 specification_version: 4
 summary: SAML Indentity Provider for Ruby
 test_files:
@@ -392,6 +408,7 @@ test_files:
 - spec/lib/saml_idp/configurator_spec.rb
 - spec/lib/saml_idp/controller_spec.rb
 - spec/lib/saml_idp/encryptor_spec.rb
+- spec/lib/saml_idp/fingerprint_spec.rb
 - spec/lib/saml_idp/incoming_metadata_spec.rb
 - spec/lib/saml_idp/logout_request_builder_spec.rb
 - spec/lib/saml_idp/logout_response_builder_spec.rb
@@ -417,6 +434,8 @@ test_files:
 - spec/rails_app/app/mailers/.gitkeep
 - spec/rails_app/app/models/.gitkeep
 - spec/rails_app/app/views/layouts/application.html.erb
+- spec/rails_app/app/views/saml_idp/idp/new.html.erb
+- spec/rails_app/app/views/saml_idp/idp/saml_post.html.erb
 - spec/rails_app/config.ru
 - spec/rails_app/config/application.rb
 - spec/rails_app/config/boot.rb
@@ -457,6 +476,9 @@ test_files:
 - spec/spec_helper.rb
 - spec/support/certificates/certificate1
 - spec/support/certificates/r1_certificate2_base64
+- spec/support/certificates/sp_cert_req.csr
+- spec/support/certificates/sp_private_key.pem
+- spec/support/certificates/sp_x509_cert.crt
 - spec/support/responses/adfs_response_sha1.xml
 - spec/support/responses/adfs_response_sha256.xml
 - spec/support/responses/adfs_response_sha384.xml

data/app/controllers/saml_idp/idp_controller.rb DELETED Viewed

@@ -1,59 +0,0 @@
-# encoding: utf-8
-module SamlIdp
-  class IdpController < ActionController::Base
-    include SamlIdp::Controller
-    unloadable unless Rails::VERSION::MAJOR >= 4
-    protect_from_forgery
-    if Rails::VERSION::MAJOR >= 4
-      before_action :validate_saml_request, only: [:new, :create]
-    else
-      before_filter :validate_saml_request, only: [:new, :create]
-    end
-    def new
-      render template: "saml_idp/idp/new"
-    end
-    def show
-      render xml: SamlIdp.metadata.signed
-    end
-    def create
-      unless params[:email].blank? && params[:password].blank?
-        person = idp_authenticate(params[:email], params[:password])
-        if person.nil?
-          @saml_idp_fail_msg = "Incorrect email or password."
-        else
-          @saml_response = idp_make_saml_response(person)
-          render :template => "saml_idp/idp/saml_post", :layout => false
-          return
-        end
-      end
-      render :template => "saml_idp/idp/new"
-    end
-    def logout
-      idp_logout
-      @saml_response = idp_make_saml_response(nil)
-      render :template => "saml_idp/idp/saml_post", :layout => false
-    end
-    def idp_logout
-      raise NotImplementedError
-    end
-    private :idp_logout
-    def idp_authenticate(email, password)
-      raise NotImplementedError
-    end
-    protected :idp_authenticate
-    def idp_make_saml_response(person)
-      raise NotImplementedError
-    end
-    protected :idp_make_saml_response
-  end
-end