debian-mirror-gitlab/lib/gitlab/auth/saml/auth_hash.rb

# frozen_string_literal: true

module Gitlab
  module Auth
    module Saml
      class AuthHash < Gitlab::Auth::OAuth::AuthHash
        def groups
          Array.wrap(get_raw(Gitlab::Auth::Saml::Config.groups))
        end

        def authn_context
          response_object = auth_hash.extra[:response_object]
          return if response_object.blank?

          document = response_object.decrypted_document
          document ||= response_object.document
          return if document.blank?

          extract_authn_context(document)
        end

        private

        def get_raw(key)
          # Needs to call `all` because of https://git.io/vVo4u
          # otherwise just the first value is returned
          auth_hash.extra[:raw_info].all[key]
        end

        def extract_authn_context(document)
          REXML::XPath.first(document, "//*[name()='saml:AuthnStatement' or name()='saml2:AuthnStatement']/*[name()='saml:AuthnContext' or name()='saml2:AuthnContext']/*[name()='saml:AuthnContextClassRef' or name()='saml2:AuthnContextClassRef']/text()").to_s
        end
      end
    end
  end
end
New upstream version 11.5.3+dfsg 2018-12-13 13:39:08 +05:30			`# frozen_string_literal: true`

New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`module Gitlab`
			`module Auth`
			`module Saml`
			`class AuthHash < Gitlab::Auth::OAuth::AuthHash`
			`def groups`
			`Array.wrap(get_raw(Gitlab::Auth::Saml::Config.groups))`
			`end`

New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`def authn_context`
			`response_object = auth_hash.extra[:response_object]`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`return if response_object.blank?`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30
			`document = response_object.decrypted_document`
			`document \|\|= response_object.document`
New upstream version 11.10.8+dfsg 2019-07-07 11:18:12 +05:30			`return if document.blank?`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30
			`extract_authn_context(document)`
			`end`

New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`private`

			`def get_raw(key)`
			# Needs to call `all` because of https://git.io/vVo4u
			`# otherwise just the first value is returned`
			`auth_hash.extra[:raw_info].all[key]`
			`end`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30
			`def extract_authn_context(document)`
New upstream version 11.7.5 2019-02-15 15:39:39 +05:30			`REXML::XPath.first(document, "//[name()='saml:AuthnStatement' or name()='saml2:AuthnStatement']/[name()='saml:AuthnContext' or name()='saml2:AuthnContext']/*[name()='saml:AuthnContextClassRef' or name()='saml2:AuthnContextClassRef']/text()").to_s`
New upstream version 11.1.8+dfsg 2018-11-08 19:23:39 +05:30			`end`
New upstream version 10.6.0+dfsg 2018-03-27 19:54:05 +05:30			`end`
			`end`
			`end`
			`end`