Provide support for professional Spid #72

AleDore · 2021-04-26T08:46:30Z

This PR provides support for professional SPID saml extension

codecov · 2021-04-26T08:48:32Z

Codecov Report

Merging #72 (de65c91) into master (56e2e28) will increase coverage by 2.09%.
The diff coverage is 90.47%.

@@            Coverage Diff             @@
##           master      #72      +/-   ##
==========================================
+ Coverage   66.26%   68.36%   +2.09%     
==========================================
  Files          11       11              
  Lines         750      765      +15     
  Branches      117      124       +7     
==========================================
+ Hits          497      523      +26     
+ Misses        252      241      -11     
  Partials        1        1

Impacted Files	Coverage Δ
src/config.ts	`100.00% <ø> (ø)`
src/strategy/spid.ts	`37.20% <0.00%> (+0.25%)`	⬆️
src/index.ts	`64.19% <92.85%> (+4.77%)`	⬆️
src/utils/middleware.ts	`92.85% <100.00%> (+0.54%)`	⬆️
src/utils/saml.ts	`61.01% <100.00%> (+2.23%)`	⬆️
src/utils/response.ts	`45.45% <0.00%> (+9.09%)`	⬆️

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update a29a77c...de65c91. Read the comment docs.

balanza · 2021-04-26T08:53:04Z

src/utils/middleware.ts

+export enum ProfessionalPurpose {
+  P = "P",
+  PX = "PX",
+  LP = "LP",
+  PG = "PG",
+  PF = "PF"
+}
+
+const ProfessionalSpidExtension = t.union([
+  t.interface({
+    professionalSpidEnabled: t.literal(false)
+  }),
+  t.interface({
+    professionalSpidEnabled: t.literal(true),
+    purpose: t.union([
+      t.literal(ProfessionalPurpose.P),
+      t.literal(ProfessionalPurpose.PX),
+      t.literal(ProfessionalPurpose.LP),
+      t.literal(ProfessionalPurpose.PG),
+      t.literal(ProfessionalPurpose.PF)
+    ])
+  })
+]);


If you need to consider every occurrence of ProfessionalPurpose in ProfessionalSpidExtension codec, you can link them by trasforming the first into a string literal union:

Suggested change

export enum ProfessionalPurpose {

P = "P",

PX = "PX",

LP = "LP",

PG = "PG",

PF = "PF"

}

const ProfessionalSpidExtension = t.union([

t.interface({

professionalSpidEnabled: t.literal(false)

}),

t.interface({

professionalSpidEnabled: t.literal(true),

purpose: t.union([

t.literal(ProfessionalPurpose.P),

t.literal(ProfessionalPurpose.PX),

t.literal(ProfessionalPurpose.LP),

t.literal(ProfessionalPurpose.PG),

t.literal(ProfessionalPurpose.PF)

])

})

]);

type ProfessionalPurpose = t.TypeOf<typeof ProfessionalPurpose>;

export const ProfessionalPurpose = t.keyof({

P: null,

PX: null,

LP: null,

PG: null,

PF: null,

});

const ProfessionalSpidExtension = t.union([

t.interface({

professionalSpidEnabled: t.literal(false)

}),

t.interface({

professionalSpidEnabled: t.literal(true),

purpose: ProfessionalPurpose

})

]);

balanza · 2021-04-26T08:58:38Z

src/utils/__tests__/saml.test.ts

+    )(samlRequest)
+      .fold(
+        err => fail(err),
+        _ => expect(_).not.toContain("<spid:Purpose>P</spid:Purpose>")


I'd test on a less restrictive pattern, like <spid:Purpose, does it have sense?

BurnedMarshal

LGTM

BurnedMarshal · 2021-04-26T11:31:20Z

src/utils/saml.ts

@@ -68,6 +68,8 @@ export const SAML_NAMESPACE = {
  XMLDSIG: "http://www.w3.org/2000/09/xmldsig#"
 };

+const SAML_EXTENSION = "https://spid.gov.it/saml‐extensions";
