shibboleths_lil_helper 1.0.0

data/test/fixtures/dummy1.rb

@@ -0,0 +1,15 @@
+# Slh.define_entity_id :default, 'https://shib-local-vm1.asr.umn.edu/rhel5_sp1'
+# Slh.define_idp_meta_data :default, 'https://idp-test.shib.umn.edu/metadata.xml'
+# Slh.define_error_support_contact :default, 'goggins@umn.edu'
+#
+Slh.define_strategy :dummy1,
+  :sp_entity_id => 'https://shib-local-vm1.asr.umn.edu/rhel5_sp1',
+  :idp_metadata_url => 'https://idp-test.shib.umn.edu/metadata.xml',
+  :error_support_contact => 'goggins@umn.edu' do
+  for_host 'shib-local-vm1.asr.umn.edu' do
+    for_app 'https://shib-local-vm1.asr.umn.edu' do
+      protect_location '/secure'
+      protect_location '/lazy', :with => :lazy_authentication
+    end
+  end
+end

data/test/fixtures/dummy1_output/attribute-map.xml

@@ -0,0 +1,5 @@
+<Attributes xmlns="urn:mace:shibboleth:2.0:attribute-map" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+    <Attribute name="urn:oid:1.3.6.1.4.1.5923.1.1.1.6" id="eppn">
+        <AttributeDecoder xsi:type="ScopedAttributeDecoder"/>
+    </Attribute>
+</Attributes>

data/test/fixtures/dummy1_output/shib_for_vhost.conf

@@ -0,0 +1,15 @@
+# THIS SHOULD BE INCLUDED via an Apache Include statement or copy and
+# pasted in your
+# <VirtualHost AN_IP_ADD:80> and <VirtualHost AN_IP_ADDR:443> sections
+<Location /secure>
+  AuthType shibboleth
+  ShibRequestSetting requireSession 1
+  ShibUseEnvironment On
+  require valid-user
+</Location>
+
+<Location /lazy>
+  AuthType shibboleth
+  require shibboleth
+</Location>
+

data/test/fixtures/dummy1_output/shibboleth2.xml

@@ -0,0 +1,27 @@
+<SPConfig xmlns="urn:mace:shibboleth:2.0:native:sp:config"
+    xmlns:conf="urn:mace:shibboleth:2.0:native:sp:config"
+    xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion"
+    xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"    
+    xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
+    clockSkew="180">
+    <ApplicationDefaults entityID="https://shib-local-vm1.asr.umn.edu/rhel5_sp1">
+        <Sessions lifetime="28800" timeout="3600" checkAddress="false" relayState="ss:mem" handlerSSL="false">
+            <SSO entityID="https://idp-test.shib.umn.edu/idp/shibboleth">
+              SAML2 SAML1
+            </SSO>
+            <Logout>SAML2 Local</Logout>
+            <Handler type="MetadataGenerator" Location="/Metadata" signing="false"/>
+            <Handler type="Status" Location="/Status" />
+            <Handler type="Session" Location="/Session" showAttributeValues="false"/>
+            <Handler type="DiscoveryFeed" Location="/DiscoFeed"/>
+        </Sessions>
+        <Errors supportContact="goggins@umn.edu" logoLocation="/shibboleth-sp/logo.jpg" styleSheet="/shibboleth-sp/main.css"/>
+        <MetadataProvider type="XML" file="idp_metadata.xml"/>
+        <AttributeExtractor type="XML" validate="true" path="attribute-map.xml"/>
+        <AttributeResolver type="Query" subjectMatch="true"/>
+        <AttributeFilter type="XML" validate="true" path="attribute-policy.xml"/>
+        <CredentialResolver type="File" key="sp-key.pem" certificate="sp-cert.pem"/>
+    </ApplicationDefaults>
+    <SecurityPolicyProvider type="XML" validate="true" path="security-policy.xml"/>
+    <ProtocolProvider type="XML" validate="true" reloadChanges="false" path="protocols.xml"/>
+</SPConfig>

data/test/helper.rb

@@ -0,0 +1,18 @@
+require 'rubygems'
+require 'bundler'
+begin
+  Bundler.setup(:default, :development)
+rescue Bundler::BundlerError => e
+  $stderr.puts e.message
+  $stderr.puts "Run `bundle install` to install missing gems"
+  exit e.status_code
+end
+require 'test/unit'
+require 'shoulda'
+
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), '..', 'lib'))
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+require 'shibboleths_lil_helper'
+
+class Test::Unit::TestCase
+end

data/test/test_shibboleths_lil_helper.rb

@@ -0,0 +1,105 @@
+require 'helper'
+
+class TestShibbolethsLilHelper < Test::Unit::TestCase
+  # should "have a Slh namespace that will contain all classes contained" do
+  #   assert Slh.class == Module
+  # end
+  # should "provides class representing core shibboleth model-ish ideas" do
+  #   assert Slh::Models::App.class == Class
+  #   assert Slh::Models::Host.class == Class
+  #   # TODO add more
+  # end
+  # should "provide some top level methods for using the tool" do
+  #   # TODO add more
+  # end
+
+  # context "with :dummy1 strategy" do
+  #   setup do
+  #     require 'fixtures/dummy1.rb'
+  #     @strategy = Slh.with(:dummy1)
+  #   end
+  #   teardown do
+  #     FileUtils.rm_rf(@strategy.config_dir)
+  #   end
+  #   should "have an entity id" do
+  #     assert_equal "https://shib-local-vm1.asr.umn.edu/rhel5_sp1", @strategy.sp_entity_id
+  #     assert_raises RuntimeError do
+  #       Slh::Models::Strategy.new(:poo) # Must specify a :sp_entity_id and idp_entity_id
+  #     end
+  #   end
+  #   should "have an idp_metadata_url" do
+  #     assert_equal "https://idp-test.shib.umn.edu/metadata.xml", @strategy.idp_metadata_url
+  #   end
+  #   should "have an idp_entity_id extracted from the idp_metadata_url contents" do
+  #     # WARNING: THIS CODE IS BRITTLE AND CODED AGAINST an XML format returned from https://idp-test.shib.umn.edu/metadata.xml
+  #     assert_equal "https://idp-test.shib.umn.edu/idp/shibboleth", @strategy.idp_entity_id
+  #   end
+  #   should "have an error_support_contact" do
+  #     assert_equal "goggins@umn.edu", @strategy.error_support_contact
+  #   end
+  #   should "load up a strategy" do
+  #     assert_kind_of Slh::Models::Strategy, @strategy
+  #     assert_raises RuntimeError do 
+  #       Slh.with(:asldfjlaksdjflk)
+  #     end
+  #   end
+  #   should "have a non-empty hosts array" do
+  #     assert_kind_of Array, @strategy.hosts
+  #     assert @strategy.hosts.length > 0, 'more than 1 host in the array'
+  #     assert @strategy.hosts.first.name == 'shib-local-vm1.asr.umn.edu'
+  #   end
+  #   should "have a non-empty apps array for the first host" do
+  #     assert_kind_of Array, @strategy.hosts.first.apps
+  #     assert @strategy.hosts.first.apps.length > 0
+  #     assert @strategy.hosts.first.apps.first.url == 'https://shib-local-vm1.asr.umn.edu'
+  #   end
+  #   should "have non-empty app_auth_rules array for first host and first app" do
+  #     assert_kind_of Array, @strategy.hosts.first.apps.first.auth_rules
+
+  #     # First auth rule
+  #     assert @strategy.hosts.first.apps.first.auth_rules.first.url_path == '/secure'
+  #     assert @strategy.hosts.first.apps.first.auth_rules.first.rule_type == :location
+  #     assert @strategy.hosts.first.apps.first.auth_rules.first.flavor == :mandatory_authentication
+
+  #     # Second auth rule
+  #     assert @strategy.hosts.first.apps.first.auth_rules[1].url_path == '/lazy'
+  #     assert @strategy.hosts.first.apps.first.auth_rules[1].rule_type == :location
+  #     assert @strategy.hosts.first.apps.first.auth_rules[1].flavor == :lazy_authentication
+  #   end
+
+  #   should "generate a config dir" do
+  #     @strategy.generate_config
+  #     assert File.directory?(@strategy.config_dir)
+  #   end
+
+  #   should "generate a shibboleth2.xml" do
+  #     @strategy.generate_config
+  #     assert File.exists?(@strategy.config_file_path('shibboleth2.xml'))
+  #     expected_content = File.read(File.join(File.dirname(__FILE__),'fixtures','dummy1_output/shibboleth2.xml'))
+  #     actual_content = File.read(@strategy.config_file_path('shibboleth2.xml'))
+  #     assert_equal expected_content, actual_content
+  #   end
+
+  #   should "write the idp_metadata gathered from the idp_metadata_url to a file" do
+  #     @strategy.generate_config
+  #     assert File.exists?(@strategy.config_file_path('idp_metadata.xml'))
+  #     assert_equal @strategy.idp_metadata, File.read(@strategy.config_file_path('idp_metadata.xml'))
+  #   end
+
+  #   should "generate the attribute-map.xml" do
+  #     @strategy.generate_config
+  #     assert File.exists?(@strategy.config_file_path('attribute-map.xml'))
+  #     expected_content = File.read(File.join(File.dirname(__FILE__),'fixtures','dummy1_output/attribute-map.xml'))
+  #     actual_content = File.read(@strategy.config_file_path('attribute-map.xml'))
+  #     assert_equal expected_content, actual_content
+  #   end
+
+  #   should "generate shib_for_vhost.conf for each host and app" do
+  #     @strategy.generate_config
+  #     assert File.exists?(@strategy.config_file_path('shib_for_vhost.conf'))
+  #     expected_content = File.read(File.join(File.dirname(__FILE__),'fixtures','dummy1_output/shib_for_vhost.conf'))
+  #     actual_content = File.read(@strategy.config_file_path('shib_for_vhost.conf'))
+  #     assert_equal expected_content, actual_content
+  #   end
+  # end
+end

metadata

@@ -0,0 +1,211 @@
+--- !ruby/object:Gem::Specification 
+name: shibboleths_lil_helper
+version: !ruby/object:Gem::Version 
+  prerelease: false
+  segments: 
+  - 1
+  - 0
+  - 0
+  version: 1.0.0
+platform: ruby
+authors: 
+- Joe Goggins
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-11-01 00:00:00 -05:00
+default_executable: slh
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  type: :runtime
+  name: activesupport
+  version_requirements: &id001 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 3
+        - 0
+        - 9
+        version: 3.0.9
+  requirement: *id001
+  prerelease: false
+- !ruby/object:Gem::Dependency 
+  type: :runtime
+  name: nokogiri
+  version_requirements: &id002 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id002
+  prerelease: false
+- !ruby/object:Gem::Dependency 
+  type: :runtime
+  name: i18n
+  version_requirements: &id003 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id003
+  prerelease: false
+- !ruby/object:Gem::Dependency 
+  type: :development
+  name: shoulda
+  version_requirements: &id004 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id004
+  prerelease: false
+- !ruby/object:Gem::Dependency 
+  type: :development
+  name: bundler
+  version_requirements: &id005 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 1
+        - 0
+        - 0
+        version: 1.0.0
+  requirement: *id005
+  prerelease: false
+- !ruby/object:Gem::Dependency 
+  type: :development
+  name: jeweler
+  version_requirements: &id006 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ~>
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 1
+        - 6
+        - 4
+        version: 1.6.4
+  requirement: *id006
+  prerelease: false
+- !ruby/object:Gem::Dependency 
+  type: :development
+  name: rcov
+  version_requirements: &id007 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id007
+  prerelease: false
+- !ruby/object:Gem::Dependency 
+  type: :development
+  name: ruby-debug
+  version_requirements: &id008 !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        segments: 
+        - 0
+        version: "0"
+  requirement: *id008
+  prerelease: false
+description: See the summary text.
+email: goggins@umn.edu
+executables: 
+- slh
+extensions: []
+
+extra_rdoc_files: 
+- LICENSE.txt
+- README.markdown
+files: 
+- Gemfile
+- Gemfile.lock
+- LICENSE.txt
+- README.markdown
+- Rakefile
+- TODOS.txt
+- VERSION
+- bin/slh
+- doc/debugging_shibboleth.markdown
+- doc/deprecated_code_that_could_be_useful.rb
+- doc/for_slh_developers.markdown
+- doc/nuances.markdown
+- doc/technical_question_and_answer.markdown
+- lib/shibboleths_lil_helper.rb
+- lib/slh.rb
+- lib/slh/class_methods.rb
+- lib/slh/cli.rb
+- lib/slh/cli/command_base.rb
+- lib/slh/cli/compare_metadata.rb
+- lib/slh/cli/copy_templates_to_override.rb
+- lib/slh/cli/describe_config.rb
+- lib/slh/cli/fetch_metadata.rb
+- lib/slh/cli/generate.rb
+- lib/slh/cli/generate_capistrano_deploy.rb
+- lib/slh/cli/generate_metadata.rb
+- lib/slh/cli/host_filterable_base.rb
+- lib/slh/cli/initialize.rb
+- lib/slh/cli/verify_metadata_encryption.rb
+- lib/slh/models/base.rb
+- lib/slh/models/host.rb
+- lib/slh/models/site.rb
+- lib/slh/models/site_path.rb
+- lib/slh/models/strategy.rb
+- lib/slh/models/version.rb
+- lib/slh/templates/_application_details.erb
+- lib/slh/templates/config.rb.erb
+- lib/slh/templates/deploy.rb.erb
+- lib/slh/templates/shib_apache.conf.erb
+- lib/slh/templates/shibboleth2.xml.erb
+- lib/slh/templates/sp_metadata_for_entity_id_to_give_to_idp.xml.erb
+- lib/slh/templates/sp_metadata_for_host_to_give_to_idp.xml.erb
+- shibboleths_lil_helper.gemspec
+- test/fixtures/dummy1.rb
+- test/fixtures/dummy1_output/attribute-map.xml
+- test/fixtures/dummy1_output/shib_for_vhost.conf
+- test/fixtures/dummy1_output/shibboleth2.xml
+- test/helper.rb
+- test/test_shibboleths_lil_helper.rb
+has_rdoc: true
+homepage: http://github.com/joegoggins/shibboleths_lil_helper
+licenses: 
+- MIT
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.6
+signing_key: 
+specification_version: 3
+summary: A ruby gem to streamline the setup, deployment, and ongoing management of Apache & IIS web-servers running the Shibboleth Native Service Provider implementations.
+test_files: []
+