RubyGems - spid - Versions diffs - 0.3.0 → 0.3.1 - Mend

spid 0.3.0 → 0.3.1

Files changed (6) hide show

checksums.yaml +4 -4
data/.travis.yml +0 -1
data/CHANGELOG.md +9 -1
data/lib/spid/generate_authn_request.rb +16 -2
data/lib/spid/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 202babbba4b9dae4431cf63d52deea481da1399657cda044e5782893f098b832
-  data.tar.gz: e03e68a394474fb59b7c20a4c7e336a21eff7aab876508cab468dcabd8e24449
+  metadata.gz: 9f94ff48217764f22a3055a10c96d6f95a551ad8c6bd3feb70c7cd13642dc438
+  data.tar.gz: 2e189a0bee7b42c4518a955c856ce641dc5ba0108f9725a907a8ed8505363b40
 SHA512:
-  metadata.gz: 9e5c12ec6d34ea8722bed6101ef27a7a2e754f80f4cd3d932bc7739a6355858603382755765fb57795273107f21cd449edd076f326e7744c59c2c29aa8d9e6bc
-  data.tar.gz: f611115901ccdff48084602cdcba4654452544dc13899da3954906679593f88ef1dd740649c549a6046b64e734c8ff1aa558ee3713e834563302339bfb768827
+  metadata.gz: 893a1e5c15958af449b3d7d2d900bf472c79d44f7b19d4083b0ab80c4b15fea7a46c865b27a2cd7bf7d0bc89d283ce192f9847732418005e687addbfaae6587b
+  data.tar.gz: dc68d4cd16a9b2d088b5e5da333a19b805d3de613102ded4c6d8543748cad7a33692e3373c549d7449d96a68c8ee953456159b5f04bb73ce6fe2a8530c2a33de

data/.travis.yml CHANGED Viewed

@@ -1,5 +1,4 @@
 language: ruby
-cache: bundler
 rvm:
  - 2.3
  - 2.4

data/CHANGELOG.md CHANGED Viewed

@@ -2,11 +2,18 @@
 ## [Unreleased]
+## [0.3.1] - 2018-07-09
+### Added
+- Signature in authn_request
 ## [0.3.0] - 2018-07-06
 ### Added
 - Fetch all identity provider from https://registry.spid.gov.it
 - Parse and store metadata from single Identity Provider
+### Changed
+- Spid::AuthnRequest class inherit from OneLogin::RubySaml::Authrequest in order to override create_xml_document in chain
+- Separate class for saml request generation
 ## [0.2.2] - 2018-07-02
 ### Fixed
@@ -32,7 +39,8 @@
 - Coveralls Integration
 - Rubygems version badge in README
-[Unreleased]: https://github.com/italia/spid-ruby/compare/v0.3.0...HEAD
+[Unreleased]: https://github.com/italia/spid-ruby/compare/v0.3.1...HEAD
+[0.3.1]: https://github.com/italia/spid-ruby/compare/v0.3.0...v0.3.1
 [0.3.0]: https://github.com/italia/spid-ruby/compare/v0.2.2...v0.3.0
 [0.2.2]: https://github.com/italia/spid-ruby/compare/v0.2.1...v0.2.2
 [0.2.1]: https://github.com/italia/spid-ruby/compare/v0.2.0...v0.2.1

data/lib/spid/generate_authn_request.rb CHANGED Viewed

@@ -8,12 +8,17 @@ module Spid
     attr_reader :authn_request_attributes
     # rubocop:disable Metrics/MethodLength
+    # rubocop:disable Metrics/ParameterLists
     def initialize(
           idp_sso_target_url:,
           assertion_consumer_service_url:,
+          private_key_filepath:,
+          certificate_filepath:,
           issuer:,
           authn_context: Spid::L1,
-          authn_context_comparison: Spid::EXACT_COMPARISON
+          authn_context_comparison: Spid::EXACT_COMPARISON,
+          digest_method: Spid::SHA256,
+          signature_method: Spid::RSA_SHA256
         )
       unless AUTHN_CONTEXTS.include?(authn_context)
@@ -33,14 +38,23 @@ module Spid
         assertion_consumer_service_url: assertion_consumer_service_url,
         protocol_binding: "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST",
         issuer: issuer,
+        private_key: File.read(private_key_filepath),
+        certificate: File.read(certificate_filepath),
         name_identifier_format: name_identifier_format,
         authn_context: authn_context,
-        authn_context_comparison: authn_context_comparison
+        authn_context_comparison: authn_context_comparison,
+        security: {
+          authn_requests_signed: true,
+          embed_sign: true,
+          digest_method:             digest_method,
+          signature_method:          signature_method
+        }
       }
       return if authn_context <= Spid::L1
       @authn_request_attributes[:force_authn] = true
     end
+    # rubocop:enable Metrics/ParameterLists
     # rubocop:enable Metrics/MethodLength
     def to_saml

data/lib/spid/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Spid
-  VERSION = "0.3.0"
+  VERSION = "0.3.1"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: spid
 version: !ruby/object:Gem::Version
-  version: 0.3.0
+  version: 0.3.1
 platform: ruby
 authors:
 - David Librera
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-07-06 00:00:00.000000000 Z
+date: 2018-07-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ruby-saml