Release 1.6.0

pitbulk · pitbulk · commit 5bb3a7315b92 · 2017-11-27T12:19:59.000+01:00
diff --git a/changelog.md b/changelog.md
@@ -1,4 +1,11 @@
 # RubySaml Changelog
+### 1.6.0 (November 27, 2017)
+# [#418](https://github.com/onelogin/ruby-saml/pull/418) Improve SAML message signature validation using original encoded parameters instead decoded in order to avoid conflicts (URL-encoding is not canonical, reported issues with ADFS)
+# [#420](https://github.com/onelogin/ruby-saml/pull/420) Expose NameID Format on SloLogoutrequest
+# [#423](https://github.com/onelogin/ruby-saml/pull/423) Allow format_cert to work with chained certificates
+# [#422](https://github.com/onelogin/ruby-saml/pull/422) Use to_s for requested attribute value
+
+
 ### 1.5.0 (August 31, 2017)
 * [#400](https://github.com/onelogin/ruby-saml/pull/400) When validating Signature use stored IdP certficate if Signature contains no info about Certificate
 * [#402](https://github.com/onelogin/ruby-saml/pull/402)  Fix validate_response_state method that rejected SAMLResponses when using idp_cert_multi and idp_cert and idp_cert_fingerprint were not provided.
diff --git a/lib/onelogin/ruby-saml/utils.rb b/lib/onelogin/ruby-saml/utils.rb
@@ -93,7 +93,7 @@ def self.build_query_from_raw_parts(params)
       end
 
       # Prepare raw GET parameters (build them from normal parameters
-      # if not provided). 
+      # if not provided).
       #
       # @param rawparams [Hash] Raw GET Parameters
       # @param params [Hash] GET Parameters
diff --git a/lib/onelogin/ruby-saml/version.rb b/lib/onelogin/ruby-saml/version.rb
@@ -1,5 +1,5 @@
 module OneLogin
   module RubySaml
-    VERSION = '1.5.0'
+    VERSION = '1.6.0'
   end
 end
diff --git a/test/logoutresponse_test.rb b/test/logoutresponse_test.rb
@@ -293,10 +293,10 @@ class RubySamlTest < Minitest::Test
           logoutresponse = OneLogin::RubySaml::Logoutresponse.new(params['SAMLResponse'], settings, options)
           # Assemble query string.
           query = OneLogin::RubySaml::Utils.build_query(
-            type: 'SAMLResponse',
-            data: params['SAMLResponse'],
-            relay_state: params['RelayState'],
-            sig_alg: params['SigAlg'],
+            :type => 'SAMLResponse',
+            :data => params['SAMLResponse'],
+            :relay_state => params['RelayState'],
+            :sig_alg => params['SigAlg']
           )
           # Modify the query string so that it encodes the same values,
           # but with different percent-encoding. Sanity-check that they
@@ -329,10 +329,10 @@ class RubySamlTest < Minitest::Test
           logoutresponse = OneLogin::RubySaml::Logoutresponse.new(params['SAMLResponse'], settings, options)
           # Assemble query string.
           query = OneLogin::RubySaml::Utils.build_query(
-            type: 'SAMLResponse',
-            data: params['SAMLResponse'],
-            relay_state: params['RelayState'],
-            sig_alg: params['SigAlg'],
+            :type => 'SAMLResponse',
+            :data => params['SAMLResponse'],
+            :relay_state => params['RelayState'],
+            :sig_alg => params['SigAlg']
           )
           # Modify the query string so that it encodes the same values,
           # but with different percent-encoding. Sanity-check that they
diff --git a/test/slo_logoutrequest_test.rb b/test/slo_logoutrequest_test.rb
@@ -338,10 +338,10 @@ class RubySamlTest < Minitest::Test
         params = OneLogin::RubySaml::Logoutrequest.new.create_params(settings, "RelayState" => "http://example.com")
         # Assemble query string.
         query = OneLogin::RubySaml::Utils.build_query(
-          type: 'SAMLRequest',
-          data: params['SAMLRequest'],
-          relay_state: params['RelayState'],
-          sig_alg: params['SigAlg'],
+          :type => 'SAMLRequest',
+          :data => params['SAMLRequest'],
+          :relay_state => params['RelayState'],
+          :sig_alg => params['SigAlg']
         )
         # Modify the query string so that it encodes the same values,
         # but with different percent-encoding. Sanity-check that they
@@ -373,10 +373,10 @@ class RubySamlTest < Minitest::Test
         params = OneLogin::RubySaml::Logoutrequest.new.create_params(settings, "RelayState" => "http://example.com")
         # Assemble query string.
         query = OneLogin::RubySaml::Utils.build_query(
-          type: 'SAMLRequest',
-          data: params['SAMLRequest'],
-          relay_state: params['RelayState'],
-          sig_alg: params['SigAlg'],
+          :type => 'SAMLRequest',
+          :data => params['SAMLRequest'],
+          :relay_state => params['RelayState'],
+          :sig_alg => params['SigAlg']
         )
         # Modify the query string so that it encodes the same values,
         # but with different percent-encoding. Sanity-check that they

Original file line number	Diff line number	Diff line change
`@@ -93,7 +93,7 @@ def self.build_query_from_raw_parts(params)`
`93`	`93`	`end`
`94`	`94`
`95`	`95`	`# Prepare raw GET parameters (build them from normal parameters`
`96`		`- # if not provided).`
	`96`	`+ # if not provided).`
`97`	`97`	`#`
`98`	`98`	`# @param rawparams [Hash] Raw GET Parameters`
`99`	`99`	`# @param params [Hash] GET Parameters`