Added Response available options list #454
Conversation
mberlanda
force-pushed
the
feat/whitelist-response-options
branch
from
6dc2425
to
1f9cc0a
Compare
|
hi @pitbulk I saw in the travis build that In Thanks |
|
What happens to projects using ruby-saml that extended the SAMLResponse options with more options? Is the whitelist of options really important? Related to jruby, I haven't got an environment to test it. |
|
Thank you for your quick reply! Actually the whitelist of options is a nice workaround to make sure that dependent gems such as This is not the only possible solution but it would prevent several prs on other gems which depends on yours. Would it be suitable to you to rename the |
|
Yes, I think adding ALLOWED_OPTIONS is not bad idea |
This change introduces a OneLogin::RubySaml::Response::AVAILABLE_OPTIONS array to be exploited by the gems depending on this one. This is not filtering the options to not break custom implementation extending this class.
mberlanda
changed the title
mberlanda
force-pushed
the
feat/whitelist-response-options
branch
from
36b710f
to
fb17e8a
Compare
|
Perfect! I changed then to |
|
hi @pitbulk ! Could you please bump a minor version of the gem including this PR changes? |
I recently did a PR in
omniauth-samlgem to allow more options for aOneLogin::RubySaml::Responseobject (omniauth/omniauth-saml#159).After merging it, I was discussing with @md5 about the possibility to source the allowed options from
ruby-samlgem instead of hardcode them in this gem.As of today,
omniauth-samlhad ~2.3 million downloads and I believe that introducing a whitelist of response options will make the dependency onruby-samlstronger and even more reliable.Moreover, it will allow to developers who are using
ruby-samlstandalone to have a better overview on the options they can use.