SAML in progress (#595)

bfc52541 · Yadd · 47f9865e · bfc52541 · bfc52541
Commit bfc52541 authored Dec 23, 2016 by Yadd
2 changed files
--- a/lemonldap-ng-portal/t/30-Auth-and-issuer-SAML-POST.t
+++ b/lemonldap-ng-portal/t/30-Auth-and-issuer-SAML-POST.t
@@ -253,11 +253,11 @@ SKIP: {
        $res->[2]->[0] =~
          /<input type="hidden".+?name="SAMLRequest".+?value="(.+?)"/s,
        'Found SAML request'
+      )
+      or explain(
+        $res->[2],
+        ' <input type="hidden" name="SAMLRequest" id="SAMLRequest" value="...'
      );
-      #or explain(
-      #  $res->[2],
-      #  ' <input type="hidden" name="SAMLRequest" id="SAMLRequest" value="...'
-      #);

    #print STDERR Dumper($res);
 }

--- a/lemonldap-ng-portal/t/30-Auth-and-issuer-SAML-Redirect.t
+++ b/lemonldap-ng-portal/t/30-Auth-and-issuer-SAML-Redirect.t
@@ -7,7 +7,7 @@ BEGIN {
    require 't/test-lib.pm';
 }

-my $maintests = 16;
+my $maintests = 18;
 my $debug     = 'error';
 my ( $issuer, $sp, $res );
 my %handlerOR = ( issuer => [], sp => [] );
@@ -175,6 +175,29 @@ qr#^http://auth.sp.com(/saml/proxySingleLogoutReturn)\?(SAMLResponse=.+)#
    );
    expectOK($res);

+    # Test if logout is done
+    switch ('issuer');
+    ok(
+        $res = $sp->_get(
+            '/', cookie => "lemonldap=$idpId",
+        ),
+        'Test if user is reject on IdP'
+    );
+    expectReject($res);
+
+    switch ('sp');
+    ok(
+        $res = $sp->_get(
+            '/',
+            accept => 'text/html',
+            cookie =>
+              "lemonldapidp=http://auth.idp.com/saml/metadata; lemonldap=$spId"
+        ),
+        'Test if user is reject on SP'
+    );
+    ( $url, $query ) = expectRedirection( $res,
+        qr#^http://auth.idp.com(/saml/singleSignOn)\?(SAMLRequest=.+)# );
+
    #print STDERR Dumper($res);
 }