97
98
99
100
101
102
103
104
105
106
107
108
109
|
# File 'lib/saml/util.rb', line 97
def verify_xml(message, raw_body)
document = Xmldsig::SignedDocument.new(raw_body)
signature_valid = document.validate do |signature, data, signature_algorithm|
message.provider.verify(signature_algorithm, signature, data, message.signature.key_name)
end
fail Saml::Errors::SignatureInvalid unless signature_valid
signed_node = document.signed_nodes.find { |node| node['ID'] == message._id }
message.class.parse(signed_node.to_xml, single: true)
end
|