samlr 2.0.3 → 2.0.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: ff0c127da7d3901b26a715c4a9466d08ff82af1c
-  data.tar.gz: 3f8fdb9e448341a7b1128569e456dccf1e44d552
+  metadata.gz: 80b04360348dfd9ce7a8962cf47500b5c25654e6
+  data.tar.gz: 4a02064f3e0d57fd26877778a3f9f954dd0be6fd
 SHA512:
-  metadata.gz: 4705d104543371a3c61a72ac723f136c7d7cdb00c8aa51f5fd6d6b2909a9942ef03bf6f0388e3407e6c035c777fd5b02414cb81529b3219af652e838a3cb17b4
-  data.tar.gz: 7a4e6fadb9d14f2691d6008ab82e78427d6d1b6c71d64904bf5913aa23163083f9d837a081cf7c5699e1178238a2a60b4f53d62e14fd90bcd7e80870d8f4f39d
+  metadata.gz: c73af6bf4ff4a50b7fb8a5906e50752d3288666c39ab6eea174a739b50b85d7b40387c355bd9b1d240d6597e259145cd03170cd1a60606f5d850ee04e0760c31
+  data.tar.gz: c201e8a43db90a944b533d65d2b84dc500e97878044105bb5e334c6bde5b8189c83b8663c66c2e7af1aa1db720877749bb583d24a9f670683ebc52cece05c8ba

data/lib/samlr/assertion.rb

@@ -48,7 +48,11 @@ module Samlr
     end
 
     def name_id
-      @name_id ||= assertion.at("./saml:Subject/saml:NameID", NS_MAP).text
+      @name_id ||= name_id_node.text
+    end
+
+    def name_id_options
+      @name_id_options ||= Hash[name_id_node.attributes.map{|k,v| [k, v.value]}]
     end
 
     def conditions
@@ -57,6 +61,10 @@ module Samlr
 
     private
 
+    def name_id_node
+      @name_id_node ||= assertion.at("./saml:Subject/saml:NameID", NS_MAP)
+    end
+
     def assertion
       @assertion ||= document.at(location, NS_MAP)
     end

data/lib/samlr/response.rb

@@ -7,7 +7,7 @@ module Samlr
   class Response
     extend Forwardable
 
-    def_delegators :assertion, :name_id, :attributes
+    def_delegators :assertion, :name_id, :attributes, :name_id_options
     attr_reader :document, :options
 
     def initialize(data, options)

data/lib/samlr/tools/response_builder.rb

@@ -9,16 +9,18 @@ module Samlr
     module ResponseBuilder
 
       def self.build(options = {})
-        issue_instant   = options[:issue_instant]  || Samlr::Tools::Timestamp.stamp
-        response_id     = options[:response_id]    || Samlr::Tools.uuid
-        assertion_id    = options[:assertion_id]   || Samlr::Tools.uuid
-        status_code     = options[:status_code]    || "urn:oasis:names:tc:SAML:2.0:status:Success"
-        name_id_format  = options[:name_id_format] || EMAIL_FORMAT
-        subject_conf_m  = options[:subject_conf_m] || "urn:oasis:names:tc:SAML:2.0:cm:bearer"
-        version         = options[:version]        || "2.0"
-        auth_context    = options[:auth_context]   || "urn:oasis:names:tc:SAML:2.0:ac:classes:Password"
-        issuer          = options[:issuer]         || "ResponseBuilder IdP"
-        attributes      = options[:attributes]     || {}
+        issue_instant     = options[:issue_instant]  || Samlr::Tools::Timestamp.stamp
+        response_id       = options[:response_id]    || Samlr::Tools.uuid
+        assertion_id      = options[:assertion_id]   || Samlr::Tools.uuid
+        status_code       = options[:status_code]    || "urn:oasis:names:tc:SAML:2.0:status:Success"
+        name_id_format    = options[:name_id_format] || EMAIL_FORMAT
+        subject_conf_m    = options[:subject_conf_m] || "urn:oasis:names:tc:SAML:2.0:cm:bearer"
+        version           = options[:version]        || "2.0"
+        auth_context      = options[:auth_context]   || "urn:oasis:names:tc:SAML:2.0:ac:classes:Password"
+        issuer            = options[:issuer]         || "ResponseBuilder IdP"
+        attributes        = options[:attributes]     || {}
+        name_qualifier    = options[:name_qualifier]
+        sp_name_qualifier = options[:sp_name_qualifier]
 
         # Mandatory for responses
         destination     = options.fetch(:destination)
@@ -49,7 +51,11 @@ module Samlr
                 xml["saml"].Issuer(issuer)
 
                 xml["saml"].Subject do
-                  xml["saml"].NameID(name_id, "Format" => name_id_format)
+                  name_id_options = { "Format" => name_id_format}
+                  name_id_options.merge!("NameQualifier" => name_qualifier) unless name_qualifier.nil?
+                  name_id_options.merge!("SPNameQualifier" => sp_name_qualifier) unless sp_name_qualifier.nil?
+
+                  xml["saml"].NameID(name_id, name_id_options)
 
                   xml["saml"].SubjectConfirmation("Method" => subject_conf_m) do
                     xml["saml"].SubjectConfirmationData("InResponseTo" => in_response_to, "NotOnOrAfter" => not_on_or_after, "Recipient" => destination)

data/samlr.gemspec

@@ -1,4 +1,4 @@
-Gem::Specification.new "samlr", "2.0.3" do |s|
+Gem::Specification.new "samlr", "2.0.4" do |s|
   s.summary     = "Ruby tools for SAML"
   s.description = "Helps you implement a SAML SP"
   s.authors     = ["Morten Primdahl"]

data/test/unit/test_assertion.rb

@@ -28,6 +28,15 @@ describe Samlr::Assertion do
     end
   end
 
+  describe "#name_id_options" do
+    subject { fixed_saml_response(:name_qualifier => 'portal-happyservice-idp', :sp_name_qualifier => 'happyservice.zendesk.com').assertion }
+
+    it "returns the options for the NameID element" do
+      expected = {"Format"=>"urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress", "NameQualifier"=>"portal-happyservice-idp", "SPNameQualifier"=>"happyservice.zendesk.com"}
+      assert_equal expected, subject.name_id_options
+    end
+  end
+
   describe "#verify!" do
     let(:condition) do
       Class.new do

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: samlr
 version: !ruby/object:Gem::Version
-  version: 2.0.3
+  version: 2.0.4
 platform: ruby
 authors:
 - Morten Primdahl
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2014-08-22 00:00:00.000000000 Z
+date: 2014-09-02 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: nokogiri