samlr 2.6.0 → 2.6.3

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. checksums.yaml +5 -5
  2. data/lib/samlr/assertion.rb +1 -1
  3. data/lib/samlr/response.rb +4 -0
  4. data/lib/samlr/tools.rb +1 -1
  5. data/lib/samlr/version.rb +1 -1
  6. metadata +3 -4
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
- SHA1:
3
- metadata.gz: 2328bde5dafe2bfb921077ffc67a0d8a3d128661
4
- data.tar.gz: 9404a9447761894ae669268f02522a35291b9ef1
2
+ SHA256:
3
+ metadata.gz: a4d5a3d362753c92d5fa5b9e824cfbe4a5b64433248b2b2e66d95ff24952a2af
4
+ data.tar.gz: 648428ea422b99adc72dfc181d25557c533b7fcfc3053645d331aa03ae0b02e4
5
5
  SHA512:
6
- metadata.gz: 646e89f012b06435feed6f9e698f9789e6bbcec858fe64d4edf8a5dc7ba4d0bda85ce4125e3cb4cf68f619f947cf379f12a1be41adfaf014df160aad7341cea2
7
- data.tar.gz: 4c7a6101fd17cbcf3e3d7487d2db611006aac429fd2384dc8ea996b41a7d31b382bb5097a31a34b9218ff6b10364dc96a15cc254c4bad7459739fb63dd7adff5
6
+ metadata.gz: bf35db8bd85ff9defea4eedcc6938c93d33aa6f5a55445ca06203b0d41ca59c69aae91d94bf67b8931605aa28fd5bbdc1b5a462d973b38bc84ffa4268199e8b5
7
+ data.tar.gz: cb04e884de40e3362010f853a29f77e75f8a67451fc29b968bd92e76cd03b232e02aa6c9d065536d80d690918d099fe9bf31f1214162ed7e44b0623ab48219fa
data/lib/samlr/assertion.rb CHANGED
@@ -35,7 +35,7 @@ module Samlr
35
35
  values = statement.xpath("./saml:AttributeValue", NS_MAP)
36
36
 
37
37
  if values.size == 0
38
- next
38
+ value = nil
39
39
  elsif values.size == 1
40
40
  value = values.first.text
41
41
  else
data/lib/samlr/response.rb CHANGED
@@ -22,6 +22,10 @@ module Samlr
22
22
  raise Samlr::SignatureError.new("Neither response nor assertion signed with a certificate")
23
23
  end
24
24
 
25
+ if document.xpath("//samlp:Response", Samlr::NS_MAP).size > 1
26
+ raise Samlr::FormatError.new("multiple responses")
27
+ end
28
+
25
29
  signature.verify! unless signature.missing?
26
30
  assertion.verify!
27
31
 
data/lib/samlr/tools.rb CHANGED
@@ -46,7 +46,7 @@ module Samlr
46
46
 
47
47
  # Generate an xs:NCName conforming UUID
48
48
  def self.uuid
49
- "samlr-#{UUIDTools::UUID.timestamp_create}"
49
+ "samlr-#{UUIDTools::UUID.random_create}"
50
50
  end
51
51
 
52
52
  # Deflates, Base64 encodes and CGI escapes a string
data/lib/samlr/version.rb CHANGED
@@ -1,3 +1,3 @@
1
1
  module Samlr
2
- VERSION = "2.6.0"
2
+ VERSION = "2.6.3"
3
3
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: samlr
3
3
  version: !ruby/object:Gem::Version
4
- version: 2.6.0
4
+ version: 2.6.3
5
5
  platform: ruby
6
6
  authors:
7
7
  - Morten Primdahl
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2017-06-08 00:00:00.000000000 Z
11
+ date: 2022-03-07 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: nokogiri
@@ -154,8 +154,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
154
154
  - !ruby/object:Gem::Version
155
155
  version: '0'
156
156
  requirements: []
157
- rubyforge_project:
158
- rubygems_version: 2.4.5.1
157
+ rubygems_version: 3.0.3
159
158
  signing_key:
160
159
  specification_version: 4
161
160
  summary: Ruby tools for SAML