From 92927db76d2d50233e64566f0dd3f5a773a6b1a9 Mon Sep 17 00:00:00 2001
From: taro1025 <rintaro.sakino@msetsu.com>
Date: Fri, 30 Aug 2024 15:20:15 +0900
Subject: [PATCH] feat: Idp initiated-logging-out

---
 .idea/workspace.xml                    | 53 ++++++++++++++++++++++++++
 lib/saml_idp/logout_request_builder.rb | 27 +++++++------
 2 files changed, 69 insertions(+), 11 deletions(-)
 create mode 100644 .idea/workspace.xml

diff --git a/.idea/workspace.xml b/.idea/workspace.xml
new file mode 100644
index 00000000..7de85a72
--- /dev/null
+++ b/.idea/workspace.xml
@@ -0,0 +1,53 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="AutoImportSettings">
+    <option name="autoReloadType" value="SELECTIVE" />
+  </component>
+  <component name="ChangeListManager">
+    <list default="true" id="f11dde6f-9704-4c93-8559-d63d78750b90" name="Changes" comment="" />
+    <option name="SHOW_DIALOG" value="false" />
+    <option name="HIGHLIGHT_CONFLICTS" value="true" />
+    <option name="HIGHLIGHT_NON_ACTIVE_CHANGELIST" value="false" />
+    <option name="LAST_RESOLUTION" value="IGNORE" />
+  </component>
+  <component name="MarkdownSettingsMigration">
+    <option name="stateVersion" value="1" />
+  </component>
+  <component name="ProjectId" id="2lMjYRfb0Jwk3pNqZjm8OYLm1N6" />
+  <component name="ProjectViewState">
+    <option name="hideEmptyMiddlePackages" value="true" />
+    <option name="showLibraryContents" value="true" />
+  </component>
+  <component name="PropertiesComponent"><![CDATA[{
+  "keyToString": {
+    "RunOnceActivity.OpenProjectViewOnStart": "true",
+    "RunOnceActivity.ShowReadmeOnStart": "true",
+    "WebServerToolWindowFactoryState": "false",
+    "last_opened_file_path": "/Users/rintarosakino/saml_idp",
+    "node.js.detected.package.eslint": "true",
+    "node.js.detected.package.tslint": "true",
+    "node.js.selected.package.eslint": "(autodetect)",
+    "node.js.selected.package.tslint": "(autodetect)",
+    "nodejs_package_manager_path": "npm",
+    "ruby.rails.projectView.checked": "true",
+    "ruby.structure.view.model.defaults.configured": "true",
+    "vue.rearranger.settings.migration": "true"
+  }
+}]]></component>
+  <component name="SpellCheckerSettings" RuntimeDictionaries="0" Folders="0" CustomDictionaries="0" DefaultDictionary="application-level" UseSingleDictionary="true" transferred="true" />
+  <component name="SpringUtil" SPRING_PRE_LOADER_OPTION="true" RAKE_SPRING_PRE_LOADER_OPTION="true" RAILS_SPRING_PRE_LOADER_OPTION="true" />
+  <component name="TaskManager">
+    <task active="true" id="Default" summary="Default task">
+      <changelist id="f11dde6f-9704-4c93-8559-d63d78750b90" name="Changes" comment="" />
+      <created>1724996887307</created>
+      <option name="number" value="Default" />
+      <option name="presentableId" value="Default" />
+      <updated>1724996887307</updated>
+      <workItem from="1724996888927" duration="1888000" />
+    </task>
+    <servers />
+  </component>
+  <component name="TypeScriptGeneratedFilesManager">
+    <option name="version" value="3" />
+  </component>
+</project>
\ No newline at end of file
diff --git a/lib/saml_idp/logout_request_builder.rb b/lib/saml_idp/logout_request_builder.rb
index b75f9315..63c962b5 100644
--- a/lib/saml_idp/logout_request_builder.rb
+++ b/lib/saml_idp/logout_request_builder.rb
@@ -1,7 +1,10 @@
 require 'saml_idp/logout_builder'
 module SamlIdp
   class LogoutRequestBuilder < LogoutBuilder
+    include SamlIdp::Signable
+
     attr_accessor :name_id
+    attr_accessor :reference_id
 
     def initialize(response_id, issuer_uri, saml_slo_url, name_id, algorithm)
       super(response_id, issuer_uri, saml_slo_url, algorithm)
@@ -9,18 +12,20 @@ def initialize(response_id, issuer_uri, saml_slo_url, name_id, algorithm)
     end
 
     def build
+      req_options = {}
+      req_options[:ID] = "_#{reference_id}"
+      req_options[:Version] = "2.0"
+      req_options[:IssueInstant] = now_iso
+      req_options[:Destination] = saml_slo_url
+      req_options["xmlns:samlp"] = Saml::XML::Namespaces::PROTOCOL
+      req_options["xmlns:saml"] = Saml::XML::Namespaces::ASSERTION
+      req_options[:NotOnOrAfter] = (Time.now + 180).utc.iso8601
       builder = Builder::XmlMarkup.new
-      builder.LogoutRequest ID: response_id_string,
-        Version: "2.0",
-        IssueInstant: now_iso,
-        Destination: saml_slo_url,
-        "xmlns" => Saml::XML::Namespaces::PROTOCOL do |request|
-          request.Issuer issuer_uri, xmlns: Saml::XML::Namespaces::ASSERTION
-          sign request
-          request.NameID name_id, xmlns: Saml::XML::Namespaces::ASSERTION,
-            Format: Saml::XML::Namespaces::Formats::NameId::PERSISTENT
-          request.SessionIndex response_id_string
-        end
+      builder.tag! "samlp:LogoutRequest", req_options do |request|
+        request.tag! "saml:Issuer", issuer_uri
+        sign request
+        request.tag! "saml:NameID", name_id, Format: Saml::XML::Namespaces::Formats::NameId::PERSISTENT
+      end
     end
     private :build
   end