saml_idp 0.15.0 → 0.16.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4da444f25fd4d8cb2b53d847ee3ffa44adab3b2c4b64be57a6935c0922acf1a8
-  data.tar.gz: ff0beb64e76c37a0bbcb098f0bd5a50b4d15ff124d63d9c01d421f4693f6fa2d
+  metadata.gz: 7cd98d292836070eddac0b7f710dbd15b0d3611cc849de827b999c3a2fa12d86
+  data.tar.gz: f49f1035b63375d5b8aebfd38484c1859d8ac35520f82df92fc698cea00dde1a
 SHA512:
-  metadata.gz: 1fe91e27e817106e66738c73c670ce064c18b18e9528f7aef3c2a4dc87658c9262877b7a62f491c29ff371d39e0306721bc1f97af7ec3fb6fd1d23b8550b32ce
-  data.tar.gz: d6ee196976da4fe1af818bca3183632372ef2e1e3059891e75a13dc39caa9fb86c3d312c384d926877f9e14cfbd751d566d517742e72e0bb77e276e446a88aed
+  metadata.gz: 7ab18f32c643b5c8be43a093349ff5c1c0f3142b8156fb650f749ffde2ce1306e104d4006178f77f27055bc6683a35ffbf8aa1d79331140b9c94ae7a2a1da7ee
+  data.tar.gz: e68e9a8f0dd08f5dd9aa31c8ff8461ca229b97cbc5e9813eed9c3575ee65bafd2c766bcfd19d9081d0956bab62b8819574b8765be692156d10967589a791cda3

data/README.md

@@ -2,7 +2,6 @@
 
 Forked from <https://github.com/lawrencepit/ruby-saml-idp>
 
-[![Build Status](https://travis-ci.org/saml-idp/saml_idp.svg)](https://travis-ci.org/saml-idp/saml_idp)
 [![Gem Version](https://badge.fury.io/rb/saml_idp.svg)](http://badge.fury.io/rb/saml_idp)
 
 The ruby SAML Identity Provider library is for implementing the server side of SAML authentication. It allows

data/lib/saml_idp/controller.rb

@@ -81,8 +81,8 @@ module SamlIdp
         session_expiry,
         name_id_formats_opts,
         asserted_attributes_opts,
-        signed_assertion_opts,
         signed_message_opts,
+        signed_assertion_opts,
         compress_opts
       ).build
     end

data/lib/saml_idp/request.rb

@@ -78,10 +78,10 @@ module SamlIdp
     end
 
     def log(msg)
-      if config.logger.class <= ::Logger
-        config.logger.info msg
-      else
+      if config.logger.respond_to?(:call)
         config.logger.call msg
+      else
+        config.logger.info msg
       end
     end
 

data/lib/saml_idp/version.rb

@@ -1,4 +1,4 @@
 # encoding: utf-8
 module SamlIdp
-  VERSION = '0.15.0'
+  VERSION = '0.16.0'
 end

data/spec/lib/saml_idp/controller_spec.rb

@@ -91,6 +91,12 @@ describe SamlIdp::Controller do
         expect(response.issuer).to eq("http://example.com")
       end
 
+      it "should by default create a SAML Response with a signed assertion" do
+        saml_response = encode_response(principal)
+        response = OneLogin::RubySaml::Response.new(saml_response)
+        response.settings = saml_settings("https://foo.example.com/saml/consume", true)
+        expect(response.is_valid?).to be_truthy
+      end
 
       [:sha1, :sha256, :sha384, :sha512].each do |algorithm_name|
         it "should create a SAML Response using the #{algorithm_name} algorithm" do

data/spec/lib/saml_idp/request_spec.rb

@@ -91,6 +91,23 @@ module SamlIdp
           end
         end
 
+        context 'a Logger-like logger is configured' do
+          let(:logger) do
+            Class.new {
+              def info(msg); end
+            }.new
+          end
+
+          before do
+            allow(logger).to receive(:info)
+          end
+
+          it 'logs an error message' do
+            expect(subject.valid?).to be false
+            expect(logger).to have_received(:info).with('Unable to find service provider for issuer ')
+          end
+        end
+
         context 'a logger lambda is configured' do
           let(:logger) { double }
 

data/spec/support/saml_request_macros.rb

@@ -40,7 +40,8 @@ module SamlRequestMacros
                                     logout_requests_signed: true, 
                                     logout_responses_signed: true,
                                     digest_method: XMLSecurity::Document::SHA256,
-                                    signature_method: XMLSecurity::Document::RSA_SHA256)
+                                    signature_method: XMLSecurity::Document::RSA_SHA256,
+                                    assertions_signed: true)
     # Security section
     settings.idp_cert = SamlIdp::Default::X509_CERTIFICATE
     # Signed embedded singature
@@ -51,6 +52,7 @@ module SamlRequestMacros
     settings.security[:metadata_signed] = digest_method
     settings.security[:digest_method] = digest_method
     settings.security[:signature_method] = signature_method
+    settings.security[:want_assertions_signed] = assertions_signed
     settings.private_key = sp_pv_key
     settings.certificate = sp_x509_cert
   end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: saml_idp
 version: !ruby/object:Gem::Version
-  version: 0.15.0
+  version: 0.16.0
 platform: ruby
 authors:
 - Jon Phenow
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-05-02 00:00:00.000000000 Z
+date: 2024-01-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -365,7 +365,7 @@ metadata:
   homepage_uri: https://github.com/saml-idp/saml_idp
   source_code_uri: https://github.com/saml-idp/saml_idp
   bug_tracker_uri: https://github.com/saml-idp/saml_idp/issues
-  documentation_uri: http://rdoc.info/gems/saml_idp/0.15.0
+  documentation_uri: http://rdoc.info/gems/saml_idp/0.16.0
 post_install_message: |2
       If you're just recently updating saml_idp - please be aware we've changed the default
       certificate. See the PR and a description of why we've done this here: