spid 0.5.0 → 0.6.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: ad2f25b0c8941611175ed84f131a2e25e0dd1d1b05169bbc8fd32b83314429e5
-  data.tar.gz: f4d37ffd19ac1076dfcb1adefee4cd62578a77f17653fd9c416b014726f9cdd7
+  metadata.gz: 56bb160d25e7ec4b209d932f65efc2dbc2f0ce29cb888e9af2f20fbf6ec2b9be
+  data.tar.gz: e754ff7caf5732c27fc79941e48ae978891439e7ddaa8184ad68eea1580e0d5a
 SHA512:
-  metadata.gz: a468176f451c2fdd3fda26b6e23e074d244bbab2976e6ee0dd414d40dfe63925b682a8f9bb059be0a43c53dea3d9d2dc03b4cb61e4bb3dede1b7c4d9991af331
-  data.tar.gz: 2e2bf9a6acf5b7a0dfd4d326b2abd79a72410e5dc520d06bf2e8540882f396c282cdcfd9bbc7980eeea9f3f9b38178f091212ed2f54fe6216f9a72dc86cf00a4
+  metadata.gz: '0818e90142286b6c1b9e8ebdda459707c360a3678a3ed19b9f8c6e84a3252d3a89001aed6bfdb9b4c2176a65ab823a81e2e15be97a12acdd7764f8e086fff863'
+  data.tar.gz: d31f37207e05f2021b12440a64dfa3193704d11ab1f138ae07369bdfc07cf051df215c6c6452569d1c1a509a99f3bafda6162cf0d5f8483e5e47ed819d9b8573

data/CHANGELOG.md

@@ -2,6 +2,10 @@
 
 ## [Unreleased]
 
+## [0.6.0] - 2018-07-18
+### Added
+- Slo Settings and SloRequest class
+
 ## [0.5.0] - 2018-07-13
 ### Added
 - Sso Settings with all saml settings required attributes
@@ -48,7 +52,8 @@
 - Coveralls Integration
 - Rubygems version badge in README
 
-[Unreleased]: https://github.com/italia/spid-ruby/compare/v0.5.0...HEAD
+[Unreleased]: https://github.com/italia/spid-ruby/compare/v0.6.0...HEAD
+[0.6.0]: https://github.com/italia/spid-ruby/compare/v0.5.0...v0.6.0
 [0.5.0]: https://github.com/italia/spid-ruby/compare/v0.4.0...v0.5.0
 [0.4.0]: https://github.com/italia/spid-ruby/compare/v0.3.1...v0.4.0
 [0.3.1]: https://github.com/italia/spid-ruby/compare/v0.3.0...v0.3.1

data/Gemfile

@@ -8,5 +8,5 @@ git_source(:github) { |repo_name| "https://github.com/#{repo_name}" }
 gemspec
 
 gem "ruby-saml",
-    github: "onelogin/ruby-saml",
-    ref: "b0301c9da6c5c1674c29a8544c9e32d153bdbcca"
+    github: "davidlibrera/ruby-saml",
+    ref: "4204afc2439f712db8909bccfd8d6e15f9320c34"

data/README.md

@@ -18,8 +18,8 @@ Add into your Gemfile
 
 ```
 gem "ruby-saml",
-  github: "onelogin/ruby-saml",
-  ref: "b0301c9da6c5c1674c29a8544c9e32d153bdbcca"
+  github: "davidlibrera/ruby-saml",
+  ref: "4204afc2439f712db8909bccfd8d6e15f9320c34"
 gem "spid"
 ```
 

data/lib/spid/identity_provider_configuration.rb

@@ -17,6 +17,10 @@ module Spid
       @sso_target_url ||= idp_metadata_hash[:idp_sso_target_url]
     end
 
+    def slo_target_url
+      @slo_target_url ||= idp_metadata_hash[:idp_slo_target_url]
+    end
+
     def cert_fingerprint
       @cert_fingerprint ||= idp_metadata_hash[:idp_cert_fingerprint]
     end

data/lib/spid/logout_request.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+require "onelogin/ruby-saml/logoutrequest"
+
+module Spid
+  class LogoutRequest < ::OneLogin::RubySaml::Logoutrequest # :nodoc:
+    def create_xml_document(settings)
+      original_document = super(settings)
+      issuer_element = original_document.elements["//saml:Issuer"]
+      issuer_element.attributes["Format"] = format_entity
+      issuer_element.attributes["NameQualifier"] = settings.issuer
+      original_document
+    end
+
+    private
+
+    def format_entity
+      "urn:oasis:names:tc:SAML:2.0:nameid-format:entity"
+    end
+  end
+end

data/lib/spid/slo_request.rb

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+
+require "spid/logout_request"
+require "onelogin/ruby-saml/settings"
+
+module Spid
+  class SloRequest # :nodoc:
+    attr_reader :slo_settings
+
+    def initialize(slo_settings:)
+      @slo_settings = slo_settings
+    end
+
+    def to_saml
+      logout_request.create(slo_settings)
+    end
+
+    private
+
+    def logout_request
+      LogoutRequest.new
+    end
+  end
+end

data/lib/spid/slo_settings.rb

@@ -0,0 +1,58 @@
+# frozen_string_literal: true
+
+require "onelogin/ruby-saml/settings"
+
+module Spid
+  class SloSettings < ::OneLogin::RubySaml::Settings # :nodoc:
+    attr_reader :service_provider_configuration,
+                :identity_provider_configuration,
+                :session_index
+
+    def initialize(
+          service_provider_configuration:,
+          identity_provider_configuration:,
+          session_index:
+        )
+      @service_provider_configuration = service_provider_configuration
+      @identity_provider_configuration = identity_provider_configuration
+      @session_index = session_index
+
+      super(slo_attributes)
+    end
+
+    # rubocop:disable Metrics/MethodLength
+    # rubocop:disable Metrics/AbcSize
+    def slo_attributes
+      return @slo_attributes if @slo_attributes.present?
+      @slo_attributes = {
+        idp_slo_target_url: identity_provider_configuration.slo_target_url,
+        issuer: service_provider_configuration.host,
+        idp_name_qualifier: identity_provider_configuration.entity_id,
+        name_identifier_value: generated_name_identifier_value,
+        name_identifier_format: name_identifier_format_value,
+        private_key: service_provider_configuration.private_key,
+        certificate: service_provider_configuration.certificate,
+        sessionindex: session_index,
+        security: {
+          logout_requests_signed: true,
+          embed_sign: true,
+          digest_method: service_provider_configuration.digest_method,
+          signature_method: service_provider_configuration.signature_method
+        }
+      }
+      @slo_attributes
+    end
+    # rubocop:enable Metrics/AbcSize
+    # rubocop:enable Metrics/MethodLength
+
+    private
+
+    def generated_name_identifier_value
+      ::OneLogin::RubySaml::Utils.uuid
+    end
+
+    def name_identifier_format_value
+      "urn:oasis:names:tc:SAML:2.0:nameid-format:transient"
+    end
+  end
+end

data/lib/spid/sso_response.rb

@@ -22,6 +22,10 @@ module Spid
       end
     end
 
+    def session_index
+      saml_response.sessionindex
+    end
+
     def raw_attributes
       saml_response.attributes.attributes
     end

data/lib/spid/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Spid
-  VERSION = "0.5.0"
+  VERSION = "0.6.0"
 end

data/lib/spid.rb

@@ -1,8 +1,10 @@
 # frozen_string_literal: true
 
 require "spid/authn_request"
+require "spid/logout_request"
 require "spid/sso_request"
 require "spid/sso_response"
+require "spid/slo_request"
 require "spid/identity_providers"
 require "spid/metadata"
 require "spid/idp_metadata"
@@ -10,6 +12,7 @@ require "spid/version"
 require "spid/identity_provider_configuration"
 require "spid/service_provider_configuration"
 require "spid/sso_settings"
+require "spid/slo_settings"
 
 module Spid # :nodoc:
   class UnknownAuthnComparisonMethodError < StandardError; end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: spid
 version: !ruby/object:Gem::Version
-  version: 0.5.0
+  version: 0.6.0
 platform: ruby
 authors:
 - David Librera
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-07-13 00:00:00.000000000 Z
+date: 2018-07-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ruby-saml
@@ -281,8 +281,11 @@ files:
 - lib/spid/identity_provider_configuration.rb
 - lib/spid/identity_providers.rb
 - lib/spid/idp_metadata.rb
+- lib/spid/logout_request.rb
 - lib/spid/metadata.rb
 - lib/spid/service_provider_configuration.rb
+- lib/spid/slo_request.rb
+- lib/spid/slo_settings.rb
 - lib/spid/sso_request.rb
 - lib/spid/sso_response.rb
 - lib/spid/sso_settings.rb