Sha256: 06a00300965eb0de2713f1afb1becb30ebca1ed1a60e38ef0f9e79bea46b61de
Contents?: true
Size: 1.72 KB
Versions: 2
Compression:
Stored size: 1.72 KB
Contents
require "xml_security"
require "time"
module Onelogin::Saml
class Response
include Codeing
attr_accessor :response, :document, :logger, :settings
def initialize(response)
raise ArgumentError.new("Response cannot be nil") if response.nil?
self.response = response
self.document = XMLSecurity::SignedDocument.new(decode(response))
end
def is_valid?
return false if response.empty?
return false if settings.nil?
return false if settings.idp_cert_fingerprint.nil?
document.validate(settings.idp_cert_fingerprint, logger)
end
# The value of the user identifier as designated by the initialization request response
def name_id
@name_id ||= document.elements["/samlp:Response/saml:Assertion/saml:Subject/saml:NameID"].text
end
# A hash of alle the attributes with the response. Assuming there is onlye one value for each key
def attributes
saml_attribute_statements = document.elements["/samlp:Response/saml:Assertion/saml:AttributeStatement"].elements
statements = saml_attribute_statements.map do |child|
child.attributes.map do |key, attribute|
[attribute, child.elements.first.text]
end
end
hash = Hash[statements.flatten(1)]
@attributes ||= make_hash_access_indiferent(hash)
end
# When this user session should expire at latest
def session_expires_at
@expires_at ||= Time.parse(document.elements["/samlp:Response/saml:Assertion/saml:AuthnStatement"].attributes["SessionNotOnOrAfter"])
end
private
def make_hash_access_indiferent(hash)
sym_hash = {}
hash.each do |key, value|
sym_hash[key.intern] = value
end
sym_hash.merge(hash)
end
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| ruby-saml-bekk-0.3.2 | lib/onelogin/saml/response.rb |
| ruby-saml-bekk-0.3.1 | lib/onelogin/saml/response.rb |