shibboleths_lil_helper 1.0.5 → 1.0.6
Sign up to get free protection for your applications and to get access to all the features.
- data/README.markdown +20 -13
- data/TODOS.txt +3 -2
- data/VERSION +1 -1
- data/lib/slh/class_methods.rb +4 -3
- data/lib/slh/templates/config.rb.erb +5 -2
- data/shibboleths_lil_helper.gemspec +2 -2
- metadata +3 -3
data/README.markdown
CHANGED
@@ -11,10 +11,17 @@ Shibboleth's Lil Helper (slh) is a tool that automates the generation of Apache/
|
|
11
11
|
* __Dividing high level auth specs from actual NativeSp configuration__
|
12
12
|
* Programmers can focus on high level goals like "protect files underneath the '/secure' directory on 'somewebsite.com'" rather than grappeling with the bewildering complexity of the NativeSp's interrelated XML files, the Shibboleth protocal, SAML, etc.
|
13
13
|
|
14
|
-
|
15
|
-
|
16
|
-
|
17
|
-
|
14
|
+
Staying up-to-date
|
15
|
+
------------------
|
16
|
+
__This code is under active development__.
|
17
|
+
|
18
|
+
* Create a Github issue to report problems you might be having with the
|
19
|
+
tool.
|
20
|
+
* See CHANGLOG.markdown for the changes associated with each gem release
|
21
|
+
* See TODOS.markdown for changes that we're thinking about
|
22
|
+
incorporating. Send me (Joe) a message on Github (joegoggins) or email
|
23
|
+
if you have other things you are thinking of.
|
24
|
+
* Use `gem update shibboleths_lil_helper` to get the most current version.
|
18
25
|
|
19
26
|
Why another tool?
|
20
27
|
-----------------
|
@@ -27,6 +34,14 @@ configuration consistently with minimal manual work for:
|
|
27
34
|
* each running PHP, Rails 2 + 3, classic ASP, or .NET
|
28
35
|
* each running the Apache/IIS Native Service Provider
|
29
36
|
|
37
|
+
Assumptions
|
38
|
+
-----------
|
39
|
+
* __shibboleth-2.4.3 is installed on your target hosts__. Versions greater than this should
|
40
|
+
work too, but have not been tested.
|
41
|
+
* Each host integrates with a single Identity Provider, not multiple.
|
42
|
+
* (for Apache) The Shibboleth apache module is loaded globally for all
|
43
|
+
vHosts. (This doesn't mean that it requires auth globally--just available).
|
44
|
+
|
30
45
|
Installation
|
31
46
|
------------
|
32
47
|
* Pre-requisites
|
@@ -86,14 +101,6 @@ requirement, slh will help you with this later too)
|
|
86
101
|
You might consider https://YOUR_ORG.umn.edu/shibboleth/dev_default or https://YOUR_ORG.umn.edu/shibboleth/prod_default
|
87
102
|
|
88
103
|
|
89
|
-
Assumptions
|
90
|
-
-----------
|
91
|
-
* Each host integrates with a single Identity Provider, not multiple.
|
92
|
-
* (for Apache) The Shibboleth apache module is loaded globally for all
|
93
|
-
vHosts. (This doesn't mean that it requires auth globally--just available).
|
94
|
-
* shibboleth-2.4.3 is installed on your target hosts. Versions greater than this should
|
95
|
-
work too, but have not been tested.
|
96
|
-
|
97
104
|
Concept
|
98
105
|
-------
|
99
106
|
|
@@ -227,6 +234,6 @@ the tool.
|
|
227
234
|
* Eva Young, Office of Institional Compliance
|
228
235
|
* Josh Buysse, CLA Office of Information Technology
|
229
236
|
* Aaron Zirbes, Environmental Health Sciences
|
230
|
-
|
237
|
+
* Rex Wheeler, University of Minnesota Extension
|
231
238
|
|
232
239
|
Copyright (c) Regents of the University of Minnesota
|
data/TODOS.txt
CHANGED
@@ -1,9 +1,10 @@
|
|
1
1
|
TODOS
|
2
2
|
|
3
|
-
|
4
|
-
|
3
|
+
* Make the remote call to fetch metadata unnecessary--instead, the user
|
4
|
+
will be expected to snag the X509Data and put it into the config somehow.
|
5
5
|
|
6
6
|
DONE
|
7
|
+
* Move the set :site_id to the correct area in the config.rb.erb
|
7
8
|
* Added note in readme: Broke because of libxml2 lacking http://nokogiri.org/tutorials/installing_nokogiri.html
|
8
9
|
* after slh generate, tell the user exactly where they should put the files.
|
9
10
|
* Blowup gracefully when no protect statements
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.0.
|
1
|
+
1.0.6
|
data/lib/slh/class_methods.rb
CHANGED
@@ -28,7 +28,7 @@ module Slh::ClassMethods
|
|
28
28
|
end
|
29
29
|
|
30
30
|
def config_file
|
31
|
-
File.join self.config_dir,'config.rb'
|
31
|
+
File.join '.', self.config_dir,'config.rb'
|
32
32
|
end
|
33
33
|
|
34
34
|
@@is_loaded = false
|
@@ -37,10 +37,11 @@ module Slh::ClassMethods
|
|
37
37
|
Slh.command_line_output "Loading #{Slh.config_file}"
|
38
38
|
begin
|
39
39
|
require Slh.config_file
|
40
|
-
rescue LoadError
|
40
|
+
rescue LoadError => e
|
41
41
|
Slh.command_line_output "No #{Slh.config_file} found, exiting...Are you sure you are running this command from the right working directory?",
|
42
42
|
:highlight => :red,
|
43
|
-
:exit => true
|
43
|
+
:exit => true,
|
44
|
+
:exception => e
|
44
45
|
end
|
45
46
|
if Slh.strategies.empty?
|
46
47
|
Slh.command_line_output "No strategies found in #{Slh.config_file}, you should add some, exiting...",
|
@@ -47,11 +47,14 @@ Slh.for_strategy :test_idp do
|
|
47
47
|
# uncomment if your shib stuff lives in a non-standard location
|
48
48
|
# set :shib_prefix, '/swadm/etc/shibboleth' # OPTIONAL
|
49
49
|
|
50
|
-
# uncomment if and fill-in if you are using IIS
|
51
|
-
# set :site_id, "YOU_MUST_SET_THE_SITE_ID_HERE" # REQUIRED if for_iis_host
|
52
50
|
#
|
53
51
|
# replace with the host name of your server
|
54
52
|
for_site 'SOMESITENAME1.COM' do # REQUIRED
|
53
|
+
|
54
|
+
# uncomment if and fill-in if you are using IIS
|
55
|
+
# set :site_id, "YOU_MUST_SET_THE_SITE_ID_HERE" # REQUIRED if for_iis_host
|
56
|
+
#
|
57
|
+
#
|
55
58
|
# Each strategy must set this for exactly one site
|
56
59
|
# its used as the authoritative source to from which all other
|
57
60
|
# sites metadata's X509Certificate should match
|
@@ -5,11 +5,11 @@
|
|
5
5
|
|
6
6
|
Gem::Specification.new do |s|
|
7
7
|
s.name = %q{shibboleths_lil_helper}
|
8
|
-
s.version = "1.0.
|
8
|
+
s.version = "1.0.6"
|
9
9
|
|
10
10
|
s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
|
11
11
|
s.authors = ["Joe Goggins"]
|
12
|
-
s.date = %q{2011-
|
12
|
+
s.date = %q{2011-12-29}
|
13
13
|
s.default_executable = %q{slh}
|
14
14
|
s.description = %q{See the summary text.}
|
15
15
|
s.email = %q{goggins@umn.edu}
|
metadata
CHANGED
@@ -5,8 +5,8 @@ version: !ruby/object:Gem::Version
|
|
5
5
|
segments:
|
6
6
|
- 1
|
7
7
|
- 0
|
8
|
-
-
|
9
|
-
version: 1.0.
|
8
|
+
- 6
|
9
|
+
version: 1.0.6
|
10
10
|
platform: ruby
|
11
11
|
authors:
|
12
12
|
- Joe Goggins
|
@@ -14,7 +14,7 @@ autorequire:
|
|
14
14
|
bindir: bin
|
15
15
|
cert_chain: []
|
16
16
|
|
17
|
-
date: 2011-
|
17
|
+
date: 2011-12-29 00:00:00 -06:00
|
18
18
|
default_executable: slh
|
19
19
|
dependencies:
|
20
20
|
- !ruby/object:Gem::Dependency
|