Add get_session_index to auth class

pitbulk · pitbulk · commit 602f11314c9d · 2014-10-21T23:44:58.000+02:00
diff --git a/src/onelogin/saml2/auth.py b/src/onelogin/saml2/auth.py
@@ -47,6 +47,7 @@ def __init__(self, request_data, old_settings=None, custom_base_path=None):
         self.__settings = OneLogin_Saml2_Settings(old_settings, custom_base_path)
         self.__attributes = []
         self.__nameid = None
+        self.__session_index = None
         self.__authenticated = False
         self.__errors = []
 
@@ -86,7 +87,9 @@ def process_response(self, request_id=None):
             if response.is_valid(self.__request_data, request_id):
                 self.__attributes = response.get_attributes()
                 self.__nameid = response.get_nameid()
+                self.__session_index = response.get_session_index()
                 self.__authenticated = True
+
             else:
                 self.__errors.append('invalid_response')
 
@@ -192,6 +195,14 @@ def get_nameid(self):
         """
         return self.__nameid
 
+    def get_session_index(self):
+        """
+        Returns the SessionIndex from the AuthnStatement.
+        :returns: The SessionIndex of the assertion
+        :rtype: string
+        """
+        return self.__session_index
+
     def get_errors(self):
         """
         Returns a list with code errors if something went wrong
diff --git a/tests/src/OneLogin/saml2_tests/auth_test.py b/tests/src/OneLogin/saml2_tests/auth_test.py
@@ -43,7 +43,7 @@ def get_request(self):
 
     def testGetSettings(self):
         """
-        Tests the getSettings method of the OneLogin_Saml2_Auth class
+        Tests the get_settings method of the OneLogin_Saml2_Auth class
         Build a OneLogin_Saml2_Settings object with a setting array
         and compare the value returned from the method of the
         auth object
@@ -57,7 +57,7 @@ def testGetSettings(self):
 
     def testGetSSOurl(self):
         """
-        Tests the getSSOurl method of the OneLogin_Saml2_Auth class
+        Tests the get_sso_url method of the OneLogin_Saml2_Auth class
         """
         settings_info = self.loadSettingsJSON()
         auth = OneLogin_Saml2_Auth(self.get_request(), old_settings=settings_info)
@@ -67,14 +67,34 @@ def testGetSSOurl(self):
 
     def testGetSLOurl(self):
         """
-        Tests the getSLOurl method of the OneLogin_Saml2_Auth class
+        Tests the get_slo_url method of the OneLogin_Saml2_Auth class
         """
         settings_info = self.loadSettingsJSON()
         auth = OneLogin_Saml2_Auth(self.get_request(), old_settings=settings_info)
 
         slo_url = settings_info['idp']['singleLogoutService']['url']
         self.assertEqual(auth.get_slo_url(), slo_url)
 
+    def testGetSessionIndex(self):
+        """
+        Tests the get_session_index method of the OneLogin_Saml2_Auth class
+        """
+        settings_info = self.loadSettingsJSON()
+        auth = OneLogin_Saml2_Auth(self.get_request(), old_settings=settings_info)
+        self.assertIsNone(auth.get_session_index())
+
+        request_data = self.get_request()
+        message = self.file_contents(join(self.data_path, 'responses', 'valid_response.xml.base64'))
+        del request_data['get_data']
+        request_data['post_data'] = {
+            'SAMLResponse': message
+        }
+        auth2 = OneLogin_Saml2_Auth(request_data, old_settings=self.loadSettingsJSON())
+        self.assertIsNone(auth2.get_session_index())
+
+        auth2.process_response()
+        self.assertEqual('_6273d77b8cde0c333ec79d22a9fa0003b9fe2d75cb', auth2.get_session_index())
+
     def testProcessNoResponse(self):
         """
         Tests the processResponse method of the OneLogin_Saml2_Auth class
@@ -92,7 +112,7 @@ def testProcessNoResponse(self):
 
     def testProcessResponseInvalid(self):
         """
-        Tests the processResponse method of the OneLogin_Saml2_Auth class
+        Tests the process_response method of the OneLogin_Saml2_Auth class
         Case Invalid Response, After processing the response the user
         is not authenticated, attributes are notreturned, no nameID and
         the error array is not empty, contains 'invalid_response
@@ -114,7 +134,7 @@ def testProcessResponseInvalid(self):
 
     def testProcessResponseInvalidRequestId(self):
         """
-        Tests the processResponse method of the OneLogin_Saml2_Auth class
+        Tests the process_response method of the OneLogin_Saml2_Auth class
         Case Invalid Response, Invalid requestID
         """
         request_data = self.get_request()
@@ -141,7 +161,7 @@ def testProcessResponseInvalidRequestId(self):
 
     def testProcessResponseValid(self):
         """
-        Tests the processResponse method of the OneLogin_Saml2_Auth class
+        Tests the process_response method of the OneLogin_Saml2_Auth class
         Case Valid Response, After processing the response the user
         is authenticated, attributes are returned, also has a nameID and
         the error array is empty
@@ -172,7 +192,7 @@ def testProcessResponseValid(self):
 
     def testRedirectTo(self):
         """
-        Tests the redirectTo method of the OneLogin_Saml2_Auth class
+        Tests the redirect_to method of the OneLogin_Saml2_Auth class
         (phpunit raises an exception when a redirect is executed, the
         exception is catched and we check that the targetURL is correct)
         Case redirect without url parameter
@@ -186,7 +206,7 @@ def testRedirectTo(self):
 
     def testRedirectTowithUrl(self):
         """
-        Tests the redirectTo method of the OneLogin_Saml2_Auth class
+        Tests the redirect_to method of the OneLogin_Saml2_Auth class
         (phpunit raises an exception when a redirect is executed, the
         exception is catched and we check that the targetURL is correct)
         Case redirect with url parameter
@@ -201,7 +221,7 @@ def testRedirectTowithUrl(self):
 
     def testProcessNoSLO(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case No Message, An exception is throw
         """
         auth = OneLogin_Saml2_Auth(self.get_request(), old_settings=self.loadSettingsJSON())
@@ -213,7 +233,7 @@ def testProcessNoSLO(self):
 
     def testProcessSLOResponseInvalid(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Invalid Logout Response
         """
         request_data = self.get_request()
@@ -235,7 +255,7 @@ def testProcessSLOResponseInvalid(self):
 
     def testProcessSLOResponseNoSucess(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Logout Response not sucess
         """
         request_data = self.get_request()
@@ -254,7 +274,7 @@ def testProcessSLOResponseNoSucess(self):
 
     def testProcessSLOResponseRequestId(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Logout Response with valid and invalid Request ID
         """
         request_data = self.get_request()
@@ -278,7 +298,7 @@ def testProcessSLOResponseRequestId(self):
 
     def testProcessSLOResponseValid(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Valid Logout Response
         """
         request_data = self.get_request()
@@ -308,7 +328,7 @@ def testProcessSLOResponseValid(self):
 
     def testProcessSLOResponseValidDeletingSession(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Valid Logout Response, validating deleting the local session
         """
         request_data = self.get_request()
@@ -338,7 +358,7 @@ def testProcessSLOResponseValidDeletingSession(self):
 
     def testProcessSLORequestInvalidValid(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Invalid Logout Request
         """
         settings_info = self.loadSettingsJSON()
@@ -370,7 +390,7 @@ def testProcessSLORequestInvalidValid(self):
 
     def testProcessSLORequestNotOnOrAfterFailed(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Logout Request NotOnOrAfter failed
         """
         request_data = self.get_request()
@@ -389,7 +409,7 @@ def testProcessSLORequestNotOnOrAfterFailed(self):
 
     def testProcessSLORequestDeletingSession(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Valid Logout Request, validating that the local session is deleted,
         a LogoutResponse is created and a redirection executed
         """
@@ -437,7 +457,7 @@ def testProcessSLORequestDeletingSession(self):
 
     def testProcessSLORequestRelayState(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Valid Logout Request, validating the relayState,
         a LogoutResponse is created and a redirection executed
         """
@@ -464,7 +484,7 @@ def testProcessSLORequestRelayState(self):
 
     def testProcessSLORequestSignedResponse(self):
         """
-        Tests the processSLO method of the OneLogin_Saml2_Auth class
+        Tests the process_slo method of the OneLogin_Saml2_Auth class
         Case Valid Logout Request, validating the relayState,
         a signed LogoutResponse is created and a redirection executed
         """
@@ -627,7 +647,7 @@ def testLogoutNoSLO(self):
 
     def testSetStrict(self):
         """
-        Tests the setStrict method of the OneLogin_Saml2_Auth
+        Tests the set_strict method of the OneLogin_Saml2_Auth
         """
         settings_info = self.loadSettingsJSON()
         settings_info['strict'] = False
@@ -652,7 +672,7 @@ def testSetStrict(self):
 
     def testBuildRequestSignature(self):
         """
-        Tests the buildRequestSignature method of the OneLogin_Saml2_Auth
+        Tests the build_request_signature method of the OneLogin_Saml2_Auth
         """
         settings = self.loadSettingsJSON()
         message = self.file_contents(join(self.data_path, 'logout_requests', 'logout_request_deflated.xml.base64'))
@@ -673,7 +693,7 @@ def testBuildRequestSignature(self):
 
     def testBuildResponseSignature(self):
         """
-        Tests the buildResponseSignature method of the OneLogin_Saml2_Auth
+        Tests the build_response_signature method of the OneLogin_Saml2_Auth
         """
         settings = self.loadSettingsJSON()
         message = self.file_contents(join(self.data_path, 'logout_responses', 'logout_response_deflated.xml.base64'))
