overleaf/services/web/scripts/ukamf/ukamf-entity.js

'use strict'

const _ = require('lodash')

class UKAMFEntity {
  constructor(data) {
    this.data = data
  }

  getSamlConfig() {
    let hiddenIdP = false
    const idp = this.data.IDPSSODescriptor[0]
    const idpMetaData =
      _.get(this.data, [
        'Extensions',
        0,
        'mdattr:EntityAttributes',
        0,
        'saml:Attribute',
      ]) || []
    idpMetaData.forEach(data => {
      const value = _.get(data, ['saml:AttributeValue', 0])
      if (
        value === 'http://refeds.org/category/hide-from-discovery' ||
        value === 'https://refeds.org/category/hide-from-discovery'
      ) {
        hiddenIdP = true
      }
    })

    const keys = idp.KeyDescriptor

    const signingKey =
      keys.length === 1
        ? keys[0]
        : keys.find(key => _.get(key, ['$', 'use']) === 'signing')
    const entityId = this.data.$.entityID

    let cert = _.get(signingKey, [
      'ds:KeyInfo',
      0,
      'ds:X509Data',
      0,
      'ds:X509Certificate',
      0,
    ])
    if (!cert) {
      throw new Error('no cert')
    }
    cert = cert.replace(/\s/g, '')

    let entryPoint = idp.SingleSignOnService.find(
      sso =>
        _.get(sso, ['$', 'Binding']) ===
        'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect'
    )
    entryPoint = _.get(entryPoint, ['$', 'Location'])
    if (!entryPoint) {
      throw new Error('no entryPoint')
    }

    return {
      cert,
      entityId,
      entryPoint,
      hiddenIdP,
    }
  }
}

module.exports = UKAMFEntity
Merge pull request #2368 from overleaf/ew-ukamf-metadata-processor-cli ukamf metadata processor cli GitOrigin-RevId: f823a1dca231546f3ab67c47f6443e56b50e30d1 2019-11-21 07:42:45 -05:00			`'use strict'`

			`const _ = require('lodash')`

			`class UKAMFEntity {`
			`constructor(data) {`
			`this.data = data`
			`}`

			`getSamlConfig() {`
Merge pull request #3987 from overleaf/jel-ukamf-script Check if IdP metadata to hide set GitOrigin-RevId: 7a30961730b21d512b55faf718e5fe97e15eb6ce 2021-05-11 10:08:42 -04:00			`let hiddenIdP = false`
Merge pull request #2368 from overleaf/ew-ukamf-metadata-processor-cli ukamf metadata processor cli GitOrigin-RevId: f823a1dca231546f3ab67c47f6443e56b50e30d1 2019-11-21 07:42:45 -05:00			`const idp = this.data.IDPSSODescriptor[0]`
Merge pull request #3987 from overleaf/jel-ukamf-script Check if IdP metadata to hide set GitOrigin-RevId: 7a30961730b21d512b55faf718e5fe97e15eb6ce 2021-05-11 10:08:42 -04:00			`const idpMetaData =`
			`_.get(this.data, [`
			`'Extensions',`
			`0,`
			`'mdattr:EntityAttributes',`
			`0,`
			`'saml:Attribute',`
			`]) \|\| []`
			`idpMetaData.forEach(data => {`
			`const value = _.get(data, ['saml:AttributeValue', 0])`
			`if (`
			`value === 'http://refeds.org/category/hide-from-discovery' \|\|`
			`value === 'https://refeds.org/category/hide-from-discovery'`
			`) {`
			`hiddenIdP = true`
			`}`
			`})`

Merge pull request #2368 from overleaf/ew-ukamf-metadata-processor-cli ukamf metadata processor cli GitOrigin-RevId: f823a1dca231546f3ab67c47f6443e56b50e30d1 2019-11-21 07:42:45 -05:00			`const keys = idp.KeyDescriptor`
Merge pull request #3987 from overleaf/jel-ukamf-script Check if IdP metadata to hide set GitOrigin-RevId: 7a30961730b21d512b55faf718e5fe97e15eb6ce 2021-05-11 10:08:42 -04:00
Merge pull request #2442 from overleaf/ew-check-saml-beta-on-login use samlBeta flag to test university with sso_enabled=false GitOrigin-RevId: 3f0dc09b23f5e7814ba78af148685a6a07e30242 2019-12-09 10:09:32 -05:00			`const signingKey =`
			`keys.length === 1`
			`? keys[0]`
			`: keys.find(key => _.get(key, ['$', 'use']) === 'signing')`
extract correct entity id for ukamf metadata GitOrigin-RevId: 4cb1d7f6e5636bbed77c4279d7d7704ab9b9ab77 2019-11-27 10:05:26 -05:00			`const entityId = this.data.$.entityID`
Merge pull request #2368 from overleaf/ew-ukamf-metadata-processor-cli ukamf metadata processor cli GitOrigin-RevId: f823a1dca231546f3ab67c47f6443e56b50e30d1 2019-11-21 07:42:45 -05:00
			`let cert = _.get(signingKey, [`
			`'ds:KeyInfo',`
			`0,`
			`'ds:X509Data',`
			`0,`
			`'ds:X509Certificate',`
Merge pull request #3942 from overleaf/prettier-trailing-comma Set Prettier's "trailingComma" setting to "es5" GitOrigin-RevId: 9f14150511929a855b27467ad17be6ab262fe5d5 2021-04-27 03:52:58 -04:00			`0,`
Merge pull request #2368 from overleaf/ew-ukamf-metadata-processor-cli ukamf metadata processor cli GitOrigin-RevId: f823a1dca231546f3ab67c47f6443e56b50e30d1 2019-11-21 07:42:45 -05:00			`])`
			`if (!cert) {`
			`throw new Error('no cert')`
			`}`
			`cert = cert.replace(/\s/g, '')`

			`let entryPoint = idp.SingleSignOnService.find(`
			`sso =>`
			`_.get(sso, ['$', 'Binding']) ===`
			`'urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect'`
			`)`
			`entryPoint = _.get(entryPoint, ['$', 'Location'])`
			`if (!entryPoint) {`
			`throw new Error('no entryPoint')`
			`}`

			`return {`
			`cert,`
extract correct entity id for ukamf metadata GitOrigin-RevId: 4cb1d7f6e5636bbed77c4279d7d7704ab9b9ab77 2019-11-27 10:05:26 -05:00			`entityId,`
Merge pull request #3942 from overleaf/prettier-trailing-comma Set Prettier's "trailingComma" setting to "es5" GitOrigin-RevId: 9f14150511929a855b27467ad17be6ab262fe5d5 2021-04-27 03:52:58 -04:00			`entryPoint,`
Merge pull request #3987 from overleaf/jel-ukamf-script Check if IdP metadata to hide set GitOrigin-RevId: 7a30961730b21d512b55faf718e5fe97e15eb6ce 2021-05-11 10:08:42 -04:00			`hiddenIdP,`
Merge pull request #2368 from overleaf/ew-ukamf-metadata-processor-cli ukamf metadata processor cli GitOrigin-RevId: f823a1dca231546f3ab67c47f6443e56b50e30d1 2019-11-21 07:42:45 -05:00			`}`
			`}`
			`}`

			`module.exports = UKAMFEntity`