Fix response fixture

LauraBeatris · Mar 29, 2024 · 8de9b34 · 8de9b34
1 parent e02e713
commit 8de9b34
Show file tree

Hide file tree

Showing 3 changed files with 108 additions and 109 deletions.
diff --git a/README.md b/README.md
@@ -13,7 +13,7 @@ This package aims to provide lightweight utilities that can be used to ensure th
 
 The package can be installed by adding `shin_auth` to your list of dependencies in `mix.exs`:
 
-```elixir
+```elixir 
 def deps do
   [
     {:shin_auth, "~> 1.1.0"}

diff --git a/test/saml/response_test.exs b/test/saml/response_test.exs
@@ -47,11 +47,11 @@ defmodule ShinAuth.SAML.ResponseTest do
       {:ok,
        %Response{
          common: %{
-           id: "_123",
+           id: "_8f3b2c4d9e7a8b5c6d21",
            version: "2.0",
-           destination: "https://api.example.com/sso/saml/acs/123",
-           issuer: "https://example.com/1234/issuer/1234",
-           issue_instant: "2024-03-23T20:56:56.768Z"
+           destination: "https://app.shin.com/tester/samlp",
+           issuer: "urn:example.shin.name",
+           issue_instant: "2014-10-14T14:32:17Z"
          }
        }} = SAML.decode_saml_response(get_xml("valid_saml_response"))
     end

diff --git a/test/support/saml/valid_saml_response.xml b/test/support/saml/valid_saml_response.xml
@@ -1,104 +1,103 @@
-<?xml version="1.0"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol"
-    xmlns:xs="http://www.w3.org/2001/XMLSchema"
-    Destination="https://api.example.com/sso/saml/acs/123"
-    ID="_123" IssueInstant="2024-03-23T20:56:56.768Z" Version="2.0">
-    <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-        <ds:SignedInfo>
-            <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
-            <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" />
-            <ds:Reference URI="#_01HSPHMC62R1YR6SCZHEJPF8ZK">
-                <ds:Transforms>
-                    <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
-                    <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
-                </ds:Transforms>
-                <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
-                <ds:DigestValue>
-                    /9nJSSrBIaU916FmShj4B6kX5IT7gMltDHWsSQO7d9I=
-                </ds:DigestValue>
-            </ds:Reference>
-        </ds:SignedInfo>
-        <ds:SignatureValue>
-            CnlmBvd0v+d87qOjyiCMlGMr49Wez0UOY439HXgoJmjBt5Q1KhuO8Akdiu6iimulFpeRvN/IU3A57DIJkCp3lfF+iiiN4UPyiq7ArgXmNEI9eOky/7e7S4Eau41yXOh9Di41yGtyEv+lq32RywkkbHldHU52iWpIMP9R8uleqS/1CSpsSVseP80xzPQaGXmjgWlA+KQhW7gQrUAr159C/pmYz2jQMB3pE8t8NW8futNpBz96ZKwlLcn8rjpOXFE8auRU8WbG+pby/+MzL0qatuJZUC7bHY916ovuKEeCW1Xfdy5O/kyQ+1qISO7kVMm1fBwaVpWk9XFPY9MkFTie+w==
-        </ds:SignatureValue>
-    </ds:Signature>
-    <saml2p:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-        Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">
-        https://example.com/1234/issuer/1234
-    </saml2p:Issuer>
-    <saml2p:Status>
-        <saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" />
-    </saml2p:Status>
-    <saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-        ID="_01HSPHMC63GGBQTV59FH81SZQW" IssueInstant="2024-03-23T20:56:56.768Z" Version="2.0">
-        <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-            <ds:SignedInfo>
-                <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
-                <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" />
-                <ds:Reference URI="#_01HSPHMC63GGBQTV59FH81SZQW">
-                    <ds:Transforms>
-                        <ds:Transform
-                            Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
-                        <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
-                    </ds:Transforms>
-                    <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" />
-                    <ds:DigestValue>
-                        oS6NG0rhC7joVaqNmrgCZq+J8ewXWxuR92ICvfUWWJc=
-                    </ds:DigestValue>
-                </ds:Reference>
-            </ds:SignedInfo>
-            <ds:SignatureValue>
-                bRaFe6yjlyZcTZVdD0++pIvmUXYB54RjU7SK2hNth23e4HjjEzm1CkP03DxcEgkHs2msjLuboVgypC84iB+5t4ntyvIfA1Xt7tSOGJZremF3bWa/1s6LigAYAczvnA2wDUG2ASZiD0IJQPj8Zy0uA0979wmquWCnFVcEIH0typ3P3qzHQimvCjbCChPnW3hwVc0v4zNmjHYn5Geb6khXuZ+dwOta9qF1jjRDpcZ1S4jmbURu6D46trb+xsQ1x983KzzWUNwUnUa0KnAgsenyp/NSGOY4lCagnhusYdh3cv6MCkb0VpWmtlVInWArMxKIyqFi8qKGgMh97MPsDR2Jrg==
-            </ds:SignatureValue>
-        </ds:Signature>
-        <saml2:Subject saml2:NameID="[object Object]" saml2:SubjectConfirmation="[object Object]" />
-        <saml2:Conditions NotBefore="2024-03-23T20:56:56.768Z"
-            NotOnOrAfter="2024-03-23T21:01:56.768Z">
-            <saml2:AudienceRestriction>
-                <saml2:Audience>
-                    https://api.example.com/1234
-                </saml2:Audience>
-            </saml2:AudienceRestriction>
-        </saml2:Conditions>
-        <saml2:AuthnStatement AuthnInstant="2024-03-23T20:56:56.768Z"
-            SessionIndex="01HSPHMC65B90ZPRY1TCQFMPMJ">
-            <saml2:AuthnContext>
-                <saml2:AuthnContextClassRef>
-                    urn:oasis:names:tc:SAML:2.0:ac:classes:PasswordProtectedTransport
-                </saml2:AuthnContextClassRef>
-            </saml2:AuthnContext>
-        </saml2:AuthnStatement>
-        <saml2:AttributeStatement>
-            <saml2:Attribute Name="id"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
-                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-                    xsi:type="xs:string">
-                    209bac63df9962e7ec458951607ae2e8ed00445a
-                </saml2:AttributeValue>
-            </saml2:Attribute>
-            <saml2:Attribute Name="email"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
-                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-                    xsi:type="xs:string">
-                    foo@corp.com
-                </saml2:AttributeValue>
-            </saml2:Attribute>
-            <saml2:Attribute Name="firstName"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
-                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-                    xsi:type="xs:string">
-                    Laura
-                </saml2:AttributeValue>
-            </saml2:Attribute>
-            <saml2:Attribute Name="lastName"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
-                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-                    xsi:type="xs:string">
-                    Beatris
-                </saml2:AttributeValue>
-            </saml2:Attribute>
-            <saml2:Attribute Name="groups"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified" />
-        </saml2:AttributeStatement>
-    </saml2:Assertion>
-</saml2p:Response>
+<samlp:Response xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" ID="_8f3b2c4d9e7a8b5c6d21" Version="2.0" IssueInstant="2014-10-14T14:32:17Z" Destination="https://app.shin.com/tester/samlp">
+    <saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">
+        urn:example.shin.name
+    </saml:Issuer>
+    <samlp:Status>
+        <samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
+    </samlp:Status>
+    <saml:Assertion xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" Version="2.0" ID="_5VK7LT7FliUkkaQuW6r4brF0DG5E3X76" IssueInstant="2014-10-14T14:32:17.251Z">
+        <saml:Issuer>
+            urn:example.shin.com
+        </saml:Issuer>
+        <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
+            <SignedInfo>
+                <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+                <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+                <Reference URI="#_5VK7LT7FliUkkaQuW6r4brF0DG5E3X76">
+                    <Transforms>
+                        <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
+                        <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+                    </Transforms>
+                    <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+                    <DigestValue>
+                        ZDkfGO3H1Tu50hawzQVjsACzJwc=
+                    </DigestValue>
+                </Reference>
+            </SignedInfo>
+            <SignatureValue>
+                1Fgpt7AaHcME2gTA158achvGQVqDwHSHsHF3/a5s7djeO1AaZ84Gz5eiWD+cdIz6hoT1j2v/7Qtfj5bsMNxulBnSzfL4TT4++AK/zFO4ad2mwABFjMMNiogwwT3tzy3aRwjgSfl3VKESoz3Zp8KL/JNm/TRKz95TD7H6WnfKZoLwErGzNw6gVs1y9XYxIEg46GzUb07g23TFmrv3wHlx2TpKUN/ne4Z28KAQzXqVyykJVaKQ/gbBNC/8AQKlol8fLGSheOKQ0vgEE1vFnVVCEmp30YapdKeWW2qcqHb7Oqdm+9b2mOUkqbaxH5ixBbYaqZaQCt5WF4P5BxnMe4Bp8w==
+            </SignatureValue>
+            <KeyInfo>
+                <X509Data>
+                    <X509Certificate>
+                        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
+                    </X509Certificate>
+                </X509Data>
+            </KeyInfo>
+        </Signature>
+        <saml:Subject>
+            <saml:NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified">
+                gitlab|175880
+            </saml:NameID>
+            <saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+                <saml:SubjectConfirmationData NotOnOrAfter="2014-10-14T15:32:17.251Z" Recipient="https://app.shin.com/tester/samlp"/>
+            </saml:SubjectConfirmation>
+        </saml:Subject>
+        <saml:Conditions NotBefore="2014-10-14T14:32:17.251Z" NotOnOrAfter="2014-10-14T15:32:17.251Z">
+            <saml:AudienceRestriction>
+                <saml:Audience>
+                    urn:foo
+                </saml:Audience>
+            </saml:AudienceRestriction>
+        </saml:Conditions>
+        <saml:AttributeStatement xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+            <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier">
+                <saml:AttributeValue xsi:type="xs:anyType">
+                    gitlab|175880
+                </saml:AttributeValue>
+            </saml:Attribute>
+            <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress">
+                <saml:AttributeValue xsi:type="xs:anyType">
+                    laura@foo-corp.com
+                </saml:AttributeValue>
+            </saml:Attribute>
+            <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name">
+                <saml:AttributeValue xsi:type="xs:anyType">
+                    Laura Beatris
+                </saml:AttributeValue>
+            </saml:Attribute>
+            <saml:Attribute Name="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn">
+                <saml:AttributeValue xsi:type="xs:anyType">
+                  laura@foo-corp.com
+                </saml:AttributeValue>
+            </saml:Attribute>
+            <saml:Attribute Name="http://schemas.shin.com/identities/default/access_token">
+                <saml:AttributeValue xsi:type="xs:anyType">
+                    3a7d0dfeffe12812c37112daa830abef570089b4
+                </saml:AttributeValue>
+            </saml:Attribute>
+            <saml:Attribute Name="http://schemas.shin.com/identities/default/provider">
+                <saml:AttributeValue xsi:type="xs:anyType">
+                    gitlab
+                </saml:AttributeValue>
+            </saml:Attribute>
+            <saml:Attribute Name="http://schemas.shin.com/identities/default/connection">
+                <saml:AttributeValue xsi:type="xs:anyType">
+                    gitlab
+                </saml:AttributeValue>
+            </saml:Attribute>
+            <saml:Attribute Name="http://schemas.shin.com/identities/default/isSocial">
+                <saml:AttributeValue xsi:type="xs:anyType">
+                    true
+                </saml:AttributeValue>
+            </saml:Attribute>
+        </saml:AttributeStatement>
+        <saml:AuthnStatement AuthnInstant="2014-10-14T14:32:17.251Z">
+            <saml:AuthnContext>
+                <saml:AuthnContextClassRef>
+                    urn:oasis:names:tc:SAML:2.0:ac:classes:unspecified
+                </saml:AuthnContextClassRef>
+            </saml:AuthnContext>
+        </saml:AuthnStatement>
+    </saml:Assertion>
+</samlp:Response>