udap_security_test_kit 0.9.1 → 0.9.2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/udap_security_test_kit/dynamic_client_registration_group.rb +1 -0
- data/lib/udap_security_test_kit/signed_metadata_contents_test.rb +1 -1
- data/lib/udap_security_test_kit/udap_jwt_builder.rb +1 -1
- data/lib/udap_security_test_kit/udap_jwt_validator.rb +1 -1
- data/lib/udap_security_test_kit/version.rb +1 -1
- metadata +3 -3
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 6434b6856c5921b1846d46d1e705cda99c91f8c9d1cc3e344f8c119fb62c4a22
|
|
4
|
+
data.tar.gz: f54f00f46ba5f61b5e3f8edfb11b87bd1fef67b82a3b91e6f96283ee6e224d51
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 06e9e1a1806f44417881c60b44d0b2c8e85b8cb3bf1b260ed1e1785971572548944dc02c815ccf7978744303792fd28819c988b71f1d4e4cc43d6a1a2d82a982
|
|
7
|
+
data.tar.gz: 971aa818c9122d76204a103cafb53faec868e0cb8f8ac36bb22059ffa195238262bb5845300faaa3ba6c762e1a0de0f6ba62b27a4cf41e2950c686f9878d4657
|
|
@@ -26,7 +26,7 @@ module UDAPSecurityTestKit
|
|
|
26
26
|
assert token_header.key?('x5c'), 'JWT header does not contain `x5c` field'
|
|
27
27
|
assert token_header.key?('alg'), 'JWT header does not contain `alg` field'
|
|
28
28
|
|
|
29
|
-
leaf_cert_der = Base64.
|
|
29
|
+
leaf_cert_der = Base64.decode64(token_header['x5c'].first)
|
|
30
30
|
leaf_cert = OpenSSL::X509::Certificate.new(leaf_cert_der)
|
|
31
31
|
signature_validation_result = UDAPSecurityTestKit::UDAPJWTValidator.validate_signature(
|
|
32
32
|
signed_metadata_jwt,
|
|
@@ -21,7 +21,7 @@ module UDAPSecurityTestKit
|
|
|
21
21
|
|
|
22
22
|
x5c_certs_encoded = x5c_certs_pem_string.map do |cert|
|
|
23
23
|
cert_pem = OpenSSL::X509::Certificate.new(cert)
|
|
24
|
-
Base64.
|
|
24
|
+
Base64.encode64(cert_pem.to_der)
|
|
25
25
|
end
|
|
26
26
|
|
|
27
27
|
JWT.encode payload, private_key, alg, { x5c: x5c_certs_encoded }
|
|
@@ -22,7 +22,7 @@ module UDAPSecurityTestKit
|
|
|
22
22
|
|
|
23
23
|
def self.validate_trust_chain(x5c_header_encoded, trust_anchor_certs)
|
|
24
24
|
cert_chain = x5c_header_encoded.map do |cert|
|
|
25
|
-
cert_der = Base64.
|
|
25
|
+
cert_der = Base64.decode64(cert)
|
|
26
26
|
OpenSSL::X509::Certificate.new(cert_der)
|
|
27
27
|
end
|
|
28
28
|
crl_uris = cert_chain.map(&:crl_uris).compact.flatten
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: udap_security_test_kit
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.9.
|
|
4
|
+
version: 0.9.2
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Stephen MacVicar
|
|
@@ -9,7 +9,7 @@ authors:
|
|
|
9
9
|
autorequire:
|
|
10
10
|
bindir: bin
|
|
11
11
|
cert_chain: []
|
|
12
|
-
date: 2024-
|
|
12
|
+
date: 2024-10-07 00:00:00.000000000 Z
|
|
13
13
|
dependencies:
|
|
14
14
|
- !ruby/object:Gem::Dependency
|
|
15
15
|
name: inferno_core
|
|
@@ -117,7 +117,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
117
117
|
- !ruby/object:Gem::Version
|
|
118
118
|
version: '0'
|
|
119
119
|
requirements: []
|
|
120
|
-
rubygems_version: 3.
|
|
120
|
+
rubygems_version: 3.5.9
|
|
121
121
|
signing_key:
|
|
122
122
|
specification_version: 4
|
|
123
123
|
summary: UDAP Security IG Test Kit
|