RubyGems - spid-es - Versions diffs - 0.0.38 → 0.0.43 - Mend

spid-es 0.0.38 → 0.0.43

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml +4 -4
data/lib/spid/ruby-saml/authrequest.rb +5 -5
data/lib/spid/ruby-saml/response.rb +11 -1
data/spid-es.gemspec +1 -1
metadata +2 -2

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 43511d1bfcfa0c3d26ebe86af1b4df7982c8098b1a87c5e88b738a5d3ddd1752
-  data.tar.gz: b7f45ba12ac29fd36c4508801a98d18eede9f83c402eb444a5bc7bc2594fcf3c
+  metadata.gz: eaf5a650af9277b2c8d6e155d7615b0bbf2a68ff496cc847e4994135908f28f0
+  data.tar.gz: 4a94569b9af662ed0ef5c741cef6b8da3d9a164105986e6e8dea0411843b319a
 SHA512:
-  metadata.gz: 9b6d6864298f3d1702420fa900cbd1567d56ea6e20150eec2a8724ce2abf44325fa042a2ffcda49d9273fc67123160700fe861652e84beef33b48d9da2fcba67
-  data.tar.gz: 52a4f51372a3b5ff32adbaa4b69465be54ceeb689c13d5d07e952365b86c86e4b21ee71e8ee9996023ecbf2e4772530e0e695a058efbe0d3eec51deb6123ad8f
+  metadata.gz: 37f5919ca120e1ad9ca46b6848aad7e5ee7fd58af5fdf974d28b44972ce267c0a4dd0f43c63ca53c9ba72d8169c12e64c7615d21b53c86bdbeddb9b77cdc53e1
+  data.tar.gz: 325d9c5bd0b521921014a1571e40b6ebb6f92b49c5ab528c186d61548eefefab7bbce6972d788844db909475b82a1b5972a344dcf620ae73a98e7529f3accb66

data/lib/spid/ruby-saml/authrequest.rb CHANGED

@@ -30,7 +30,7 @@ module Spid::Saml
       request_doc = Spid::XMLSecurityNew::Document.new
       request_doc.context[:attribute_quote] = :quote
       root = request_doc.add_element "saml2p:AuthnRequest", { "xmlns:saml2p" => "urn:oasis:names:tc:SAML:2.0:protocol",
-                                                              "xmlns:saml" => "urn:oasis:names:tc:SAML:2.0:assertion"
+                                                              "xmlns:saml2" => "urn:oasis:names:tc:SAML:2.0:assertion"
                                                              }
       root.attributes['ID'] = uuid
       root.attributes['IssueInstant'] = time
@@ -53,9 +53,9 @@ module Spid::Saml
       end
       unless @settings.issuer.blank?
-        issuer = root.add_element "saml:Issuer"
-        #l'attributo NameQualifier deve essere presente, non rispetta saml...e deve essere uguale al valore dell'issuer
-        issuer.attributes['NameQualifier'] = @settings.issuer
+        issuer = root.add_element "saml2:Issuer", { "xmlns:saml2" => "urn:oasis:names:tc:SAML:2.0:assertion" }
+        #l'attributo NameQualifier deve essere presente, non rispetta saml...
+        issuer.attributes['NameQualifier'] = ( @settings.aggregato ? @settings.sp_name_qualifier : @settings.issuer )
         issuer.attributes['Format'] = "urn:oasis:names:tc:SAML:2.0:nameid-format:entity"
         issuer.text = @settings.issuer #questo valore deve essere uguale al #entityID dei metadata che usa @settings.issuer
       end
@@ -88,7 +88,7 @@ module Spid::Saml
         }
         context_class = []
         @settings.authn_context.each_with_index{ |context, index|
-          context_class[index] = requested_context.add_element "saml:AuthnContextClassRef"
+          context_class[index] = requested_context.add_element "saml2:AuthnContextClassRef"
           context_class[index].text = context
         }

data/lib/spid/ruby-saml/response.rb CHANGED

@@ -248,7 +248,9 @@ module Spid
             if settings
               idp_metadata = Spid::Saml::Metadata.new(settings).get_idp_metadata
             end
+            #verifico se sono stati scaricati i metadati dell'idp
+            return false if validate_metadata_idp(idp_metadata) == false
             #carico nei setting l'idp_entity_id
             entity_descriptor_element = REXML::XPath.first(idp_metadata,"/EntityDescriptor")
             if !entity_descriptor_element.nil?
@@ -334,6 +336,14 @@ module Spid
         end
+        #validate presenza dei metadata per idp
+        def validate_metadata_idp(metadata_idp)
+          if metadata_idp.blank?
+            validation_error("Metadata idp non raggiungibile per #{settings.idp_entity_id}")
+          else
+            return true
+          end
+        end
         # Validates the SAML version (2.0)
         # If fails, the error is added to the errors array.

data/spid-es.gemspec CHANGED

@@ -2,7 +2,7 @@ $LOAD_PATH.push File.expand_path('../lib', __FILE__)
 Gem::Specification.new do |s|
   s.name = 'spid-es'
-  s.version = '0.0.38'
+  s.version = '0.0.43'
   s.required_rubygems_version = Gem::Requirement.new(">= 0") if s.respond_to? :required_rubygems_version=
   s.authors = ["Fabiano Pavan"]

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: spid-es
 version: !ruby/object:Gem::Version
-  version: 0.0.38
+  version: 0.0.43
 platform: ruby
 authors:
 - Fabiano Pavan
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-10-21 00:00:00.000000000 Z
+date: 2020-12-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: canonix