RubyGems - spid-es - Versions diffs - 0.0.38 → 0.0.43 - Mend

spid-es 0.0.38 → 0.0.43

Files changed (5) hide show

checksums.yaml +4 -4
data/lib/spid/ruby-saml/authrequest.rb +5 -5
data/lib/spid/ruby-saml/response.rb +11 -1
data/spid-es.gemspec +1 -1
metadata +2 -2

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 43511d1bfcfa0c3d26ebe86af1b4df7982c8098b1a87c5e88b738a5d3ddd1752
-  data.tar.gz: b7f45ba12ac29fd36c4508801a98d18eede9f83c402eb444a5bc7bc2594fcf3c
+  metadata.gz: eaf5a650af9277b2c8d6e155d7615b0bbf2a68ff496cc847e4994135908f28f0
+  data.tar.gz: 4a94569b9af662ed0ef5c741cef6b8da3d9a164105986e6e8dea0411843b319a
 SHA512:
-  metadata.gz: 9b6d6864298f3d1702420fa900cbd1567d56ea6e20150eec2a8724ce2abf44325fa042a2ffcda49d9273fc67123160700fe861652e84beef33b48d9da2fcba67
-  data.tar.gz: 52a4f51372a3b5ff32adbaa4b69465be54ceeb689c13d5d07e952365b86c86e4b21ee71e8ee9996023ecbf2e4772530e0e695a058efbe0d3eec51deb6123ad8f
+  metadata.gz: 37f5919ca120e1ad9ca46b6848aad7e5ee7fd58af5fdf974d28b44972ce267c0a4dd0f43c63ca53c9ba72d8169c12e64c7615d21b53c86bdbeddb9b77cdc53e1
+  data.tar.gz: 325d9c5bd0b521921014a1571e40b6ebb6f92b49c5ab528c186d61548eefefab7bbce6972d788844db909475b82a1b5972a344dcf620ae73a98e7529f3accb66

data/lib/spid/ruby-saml/authrequest.rb CHANGED

@@ -30,7 +30,7 @@ module Spid::Saml
       request_doc = Spid::XMLSecurityNew::Document.new
       request_doc.context[:attribute_quote] = :quote
       root = request_doc.add_element "saml2p:AuthnRequest", { "xmlns:saml2p" => "urn:oasis:names:tc:SAML:2.0:protocol",
-                                                              "xmlns:saml" => "urn:oasis:names:tc:SAML:2.0:assertion"
+                                                              "xmlns:saml2" => "urn:oasis:names:tc:SAML:2.0:assertion"
                                                              }
       root.attributes['ID'] = uuid
       root.attributes['IssueInstant'] = time
@@ -53,9 +53,9 @@ module Spid::Saml
       end
       unless @settings.issuer.blank?
-        issuer = root.add_element "saml:Issuer"
-        #l'attributo NameQualifier deve essere presente, non rispetta saml...e deve essere uguale al valore dell'issuer
-        issuer.attributes['NameQualifier'] = @settings.issuer
+        issuer = root.add_element "saml2:Issuer", { "xmlns:saml2" => "urn:oasis:names:tc:SAML:2.0:assertion" }
+        #l'attributo NameQualifier deve essere presente, non rispetta saml...
+        issuer.attributes['NameQualifier'] = ( @settings.aggregato ? @settings.sp_name_qualifier : @settings.issuer )
         issuer.attributes['Format'] = "urn:oasis:names:tc:SAML:2.0:nameid-format:entity"
         issuer.text = @settings.issuer #questo valore deve essere uguale al #entityID dei metadata che usa @settings.issuer
       end
@@ -88,7 +88,7 @@ module Spid::Saml
         }
         context_class = []
         @settings.authn_context.each_with_index{ |context, index|
-          context_class[index] = requested_context.add_element "saml:AuthnContextClassRef"
+          context_class[index] = requested_context.add_element "saml2:AuthnContextClassRef"
           context_class[index].text = context
         }

data/lib/spid/ruby-saml/response.rb CHANGED

@@ -248,7 +248,9 @@ module Spid
             if settings
               idp_metadata = Spid::Saml::Metadata.new(settings).get_idp_metadata
             end
+            #verifico se sono stati scaricati i metadati dell'idp
+            return false if validate_metadata_idp(idp_metadata) == false
             #carico nei setting l'idp_entity_id
             entity_descriptor_element = REXML::XPath.first(idp_metadata,"/EntityDescriptor")
             if !entity_descriptor_element.nil?
@@ -334,6 +336,14 @@ module Spid
         end
+        #validate presenza dei metadata per idp
+        def validate_metadata_idp(metadata_idp)
+          if metadata_idp.blank?
+            validation_error("Metadata idp non raggiungibile per #{settings.idp_entity_id}")
+          else
+            return true
+          end
+        end
         # Validates the SAML version (2.0)
         # If fails, the error is added to the errors array.

data/spid-es.gemspec CHANGED

@@ -2,7 +2,7 @@ $LOAD_PATH.push File.expand_path('../lib', __FILE__)
 Gem::Specification.new do |s|
   s.name = 'spid-es'
-  s.version = '0.0.38'
+  s.version = '0.0.43'
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
   s.authors = ["Fabiano Pavan"]

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: spid-es
 version: !ruby/object:Gem::Version
-  version: 0.0.38
+  version: 0.0.43
 platform: ruby
 authors:
 - Fabiano Pavan
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-10-21 00:00:00.000000000 Z
+date: 2020-12-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: canonix