Class: Samlr::Assertion

Inherits:

Object

• Object
• Samlr::Assertion

Defined in:

lib/samlr/assertion.rb

Constant Summary

DEFAULT_LOCATION =

"/samlp:Response/saml:Assertion"

Instance Attribute Summary

• #document ⇒ Object readonly

  Returns the value of attribute document.

• #options ⇒ Object readonly

  Returns the value of attribute options.

Instance Method Summary

• #attributes ⇒ Object
• #conditions ⇒ Object
• #initialize(document, options) ⇒ Assertion constructor

  A new instance of Assertion.

• #location ⇒ Object
• #name_id ⇒ Object
• #name_id_options ⇒ Object
• #signature ⇒ Object
• #verify! ⇒ Object

Constructor Details

#initialize(document, options) ⇒ Assertion

Returns a new instance of Assertion.

# File 'lib/samlr/assertion.rb', line 6

def initialize(document, options)
  @document = document
  @options  = options
end

Instance Attribute Details

#document ⇒ Object (readonly)

Returns the value of attribute document.

# File 'lib/samlr/assertion.rb', line 4

def document
  @document
end

#options ⇒ Object (readonly)

Returns the value of attribute options.

# File 'lib/samlr/assertion.rb', line 4

def options
  @options
end

Instance Method Details

#attributes ⇒ Object

# File 'lib/samlr/assertion.rb', line 31

def attributes
  @attributes ||= {}.tap do |attrs|
    assertion.xpath("./saml:AttributeStatement/saml:Attribute", NS_MAP).each do |statement|
      name   = statement["Name"]
      values = statement.xpath("./saml:AttributeValue", NS_MAP)

      if values.size == 0
        next
      elsif values.size == 1
        value = values.first.text
      else
        value = values.map { |value| value.text }
      end

      attrs[name] = attrs[name.to_sym] = value
    end
  end
end

#conditions ⇒ Object

# File 'lib/samlr/assertion.rb', line 62

def conditions
  @conditions ||= Condition.new(assertion.at("./saml:Conditions", NS_MAP), options)
end

#location ⇒ Object

# File 'lib/samlr/assertion.rb', line 18

def location
  @location ||= if !signature.missing?
    verify_signature!
    "//saml:Assertion[@ID='#{signature.references.first.uri}']"
  else
    DEFAULT_LOCATION
  end
end

#name_id ⇒ Object

# File 'lib/samlr/assertion.rb', line 50

def name_id
  if !name_id_node
    raise Samlr::FormatError.new("Invalid SAML response: name_id missing")
  else
    @name_id ||= name_id_node.text
  end
end

#name_id_options ⇒ Object

# File 'lib/samlr/assertion.rb', line 58

def name_id_options
  @name_id_options ||= Hash[name_id_node.attributes.map{|k,v| [k, v.value]}]
end

#signature ⇒ Object

# File 'lib/samlr/assertion.rb', line 27

def signature
  @signature ||= Samlr::Signature.new(document, DEFAULT_LOCATION, options)
end

#verify! ⇒ Object

# File 'lib/samlr/assertion.rb', line 11

def verify!
  verify_signature!
  verify_conditions! unless skip_conditions?

  true
end