Update Assertion audience in mock Gateway

When rollover is enabled, let the mock gateway update the assertion audience to the new entity id. That way, the engineblock is able to receive the assertion from the new entity
OpenConext · Mar 13, 2024 · 1382d17 · 1382d17
1 parent 11578ad
commit 1382d17
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 2 deletions.
diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Mock/MockStepupGateway.php b/src/OpenConext/EngineBlockFunctionalTestingBundle/Mock/MockStepupGateway.php
@@ -57,15 +57,22 @@ class MockStepupGateway
      */
     private $gatewayConfiguration;
 
+    /**
+     * @var string
+     */
+    private $sfoRolloverEntityId;
+
     /**
      * @param FunctionalTestingStepupGatewayMockConfiguration $gatewayConfiguration
      * @throws \Exception
      */
     public function __construct(
-        FunctionalTestingStepupGatewayMockConfiguration $gatewayConfiguration
+        FunctionalTestingStepupGatewayMockConfiguration $gatewayConfiguration,
+        $sfoRolloverEntityId
     ) {
         $this->gatewayConfiguration = $gatewayConfiguration;
         $this->currentTime = new DateTime();
+        $this->sfoRolloverEntityId = $sfoRolloverEntityId;
     }
 
     /**
@@ -337,7 +344,12 @@ private function createNewAssertion($nameId, $authnContextClassRef, $destination
         $newNameId->setValue($nameId);
         $newNameId->setFormat(Constants::NAMEID_UNSPECIFIED);
         $newAssertion->setNameId($newNameId);
-        $newAssertion->setValidAudiences([$this->gatewayConfiguration->getServiceProviderEntityId()]);
+        $audiences = [$this->gatewayConfiguration->getServiceProviderEntityId()];
+        // If the entity id being updated, then set that new EntityId as the audience for this assertion
+        if ($this->sfoRolloverEntityId !== '') {
+            $audiences = [$this->sfoRolloverEntityId];
+        }
+        $newAssertion->setValidAudiences($audiences);
         $this->addAuthenticationStatementTo($newAssertion, $authnContextClassRef);
 
         return $newAssertion;

diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Resources/config/mocks.yml b/src/OpenConext/EngineBlockFunctionalTestingBundle/Resources/config/mocks.yml
@@ -30,3 +30,4 @@ services:
         class: OpenConext\EngineBlockFunctionalTestingBundle\Mock\MockStepupGateway
         arguments:
             - "@engineblock.functional_testing.fixture.stepup_gateway_mock"
+            - '%stepup.sfo.override_engine_entityid%'