Encrypted response about ruby-saml HOT 19 CLOSED

+1

from ruby-saml.

+1

from ruby-saml.

I used relevance fork as a guide and added support for AES256-CBC encrypted responses. my fork is here: https://github.com/igagnidz/ruby-saml.
All existing tests pass, but I have not added tests for encrypted assertions so I'm hesitant to make a pull request. Any help with tests would be appreciated (I am swamped with work). I tested it with ADFS 2.0 and it works nice.

from ruby-saml.

if anyone is interested, I updated code to support Ping Federate and AES128-CBC encryption. Currently tested on ADFS 2.0 and Ping Federate with AES256 and AES128 CBC encryption.

from ruby-saml.

Duplicated #9

from ruby-saml.

@igagnidz I'm interested in your ADFS 2.0 implementation. Can you point me to it please?

from ruby-saml.

Sure. https://github.com/igagnidz/ruby-saml

from ruby-saml.

@igagnidz do you have any plans for creating a PR with your implementation to support encryption? I have to start supporting Ping Federate encryption in my company's app. Thanks!

from ruby-saml.

Im sorry. what do you mean by PR?

On Mon, Nov 3, 2014 at 7:50 AM, Buffy Miller [email protected]
wrote:

@igagnidz https://github.com/igagnidz do you have any plans for
creating a PR with your implementation to support encryption? I have to
start supporting Ping Federate encryption in my company's app. Thanks!

—
Reply to this email directly or view it on GitHub
#104 (comment).

from ruby-saml.

A pull request to merge your implementation of encrypted requests into the main branch of ruby-saml.

from ruby-saml.

So there is an issue open on github that references my branch as a possible solution. Also I don't have tests so I can't make a pull request yet. I will do it as soon as I have tests for the implementation.

Sent from my iPhone

On Nov 3, 2014, at 8:28 AM, Buffy Miller [email protected] wrote:

A pull request to merge your implementation of encrypted requests into the main branch of ruby-saml.

—
Reply to this email directly or view it on GitHub.

from ruby-saml.

I need to support for and encrypted SAMLResponse as well, with ADFS as the IdP. @igagnidz if you can point us to your latest branch, I'd be happy to take a look and help with adding tests etc

from ruby-saml.

I think you gave me the links earlier so will look at it this week :-) sorry mobile browser not the best for scanning long threads ....

from ruby-saml.

I have to add it for Ping Federated asap - I'm happy to help w/ tests too.

from ruby-saml.

@shyam-habarakada do you have any sample encrypted requests to use in tests?

from ruby-saml.

@buffym not yet, but I will share when I have it. I have a test ADFS in the cloud and can add your relying-party to it, if that helps.

from ruby-saml.

@shyam-habarakada that would helpful - how should I proceed to have you add a relaying party for me? Thanks!

from ruby-saml.

Point me to the metadata XML for starters... I can PM you if I need specific things like certs, etc.

from ruby-saml.

I created this new branch with decrypt functionality based on the code provided by @buffym
https://github.com/onelogin/ruby-saml/tree/decrypt

I will add test, but please review the code and test if works for you.

from ruby-saml.