ruby-saml-idp
ruby-saml-idp copied to clipboard
lawrencepit
SAML Identity Provider library in ruby
The provided HTML form auto-POSTs the SAMLResponse on page load (triggered by Javascript). I wonder why this was preferred over a redirect? References: https://github.com/lawrencepit/ruby-saml-idp/blob/master/app/controllers/saml_idp/idp_controller.rb#L26 https://github.com/lawrencepit/ruby-saml-idp/blob/master/app/views/saml_idp/idp/saml_post.html.erb
The Gemfile file downloads files via an unencrypted HTTP connection, help prevent Man-in-the-Middle attacks.
Help with generating the saml_response Hey all - What does the syntax look like to send additional attributes, I want to specify groups/name/etc in here: ``` encode_SAMLResponse(user.email) ``` I tried...
Where to specify type for an attribute value.For eg: 1 Where do we specify "xsi:string" in ruby-saml-idp
SAML request containing special characters in the could be validated, and would create invalid SAML response
Getting this in Rails 4 on every change to my controller that inherits from SamlIdp::IdpController. Removing `unloadable` statement solves this.
I've picked up an issue when validating SAML responses when using `SHA256` for the signing algorithm. In the [SamlIdp::Controller#encode_SAMLResponse](https://github.com/lawrencepit/ruby-saml-idp/blob/master/lib/saml_idp/controller.rb#L73) method, the code to produce the identifier is string interpolated as...
Added the feature for user to logout from one instance and send single logout request to idp for log out the session. I was able to single sign in and...
The canonicalization doesn't seem to be performed. The XML Signature for the current assertion message validates properly, however - when attribute orders change the validation fails. Passes Validation: ``` xml...
https://github.com/calh/ruby-saml-rails3-example supports IdP initiated logout (via an unmerged patch to ruby-saml, ugh, https://github.com/onelogin/ruby-saml/pull/26). It'd be nice for this canonical IdP written in ruby to speak the SLO sequence. I created...
