Merge

Author: pitbulk

src/Saml2/LogoutRequest.php

@@ -368,7 +368,7 @@ public function isValid($retrieveParametersFromServer = false)
                 $security = $this->_settings->getSecurityData();
 
                 if ($security['wantXMLValidation']) {
-                    $res = Utils::validateXML($dom, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive());
+                    $res = Utils::validateXML($dom, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive(), $this->_settings->getSchemasPath());
                     if (!$res instanceof DOMDocument) {
                         throw new ValidationError(
                             "Invalid SAML Logout Request. Not match the saml-schema-protocol-2.0.xsd",

src/Saml2/LogoutResponse.php

@@ -68,7 +68,6 @@ class LogoutResponse
      *
      * @throws Error
      * @throws Exception
-     *
      */
     public function __construct(\OneLogin\Saml2\Settings $settings, $response = null)
     {
@@ -154,7 +153,7 @@ public function isValid($requestId = null, $retrieveParametersFromServer = false
                 $security = $this->_settings->getSecurityData();
 
                 if ($security['wantXMLValidation']) {
-                    $res = Utils::validateXML($this->document, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive());
+                    $res = Utils::validateXML($this->document, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive(), $this->_settings->getSchemasPath());
                     if (!$res instanceof DOMDocument) {
                         throw new ValidationError(
                             "Invalid SAML Logout Response. Not match the saml-schema-protocol-2.0.xsd",

src/Saml2/Response.php

@@ -172,7 +172,7 @@ public function isValid($requestId = null)
 
                 if ($security['wantXMLValidation']) {
                     $errorXmlMsg = "Invalid SAML Response. Not match the saml-schema-protocol-2.0.xsd";
-                    $res = Utils::validateXML($this->document, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive());
+                    $res = Utils::validateXML($this->document, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive(), $this->_settings->getSchemasPath());
                     if (!$res instanceof DOMDocument) {
                         throw new ValidationError(
                             $errorXmlMsg,
@@ -182,7 +182,7 @@ public function isValid($requestId = null)
 
                     // If encrypted, check also the decrypted document
                     if ($this->encrypted) {
-                        $res = Utils::validateXML($this->decryptedDocument, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive());
+                        $res = Utils::validateXML($this->decryptedDocument, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive(), $this->_settings->getSchemasPath());
                         if (!$res instanceof DOMDocument) {
                             throw new ValidationError(
                                 $errorXmlMsg,

src/Saml2/Settings.php

@@ -164,7 +164,7 @@ private function _loadPaths()
             'base' => $basePath,
             'config' => $basePath,
             'cert' => $basePath.'certs/',
-            'lib' => $basePath.'src/'
+            'lib' => $basePath.'src/Saml2/'
         );
 
         if (defined('ONELOGIN_CUSTOMPATH')) {
@@ -220,9 +220,23 @@ public function getLibPath()
      */
     public function getSchemasPath()
     {
+        if (isset($this->_paths['schemas'])) {
+            return $this->_paths['schemas'];
+        }
         return $this->_paths['lib'].'schemas/';
     }
 
+    /**
+     * Set schemas path
+     *
+     * @param string $path
+     * @return $this
+     */
+    public function setSchemasPath($path)
+    {
+        $this->_paths['schemas'] = $path;
+    }
+
     /**
      * Loads settings info from a settings Array
      *
@@ -934,7 +948,7 @@ public function validateMetadata($xml)
         assert(is_string($xml));
 
         $errors = array();
-        $res = Utils::validateXML($xml, 'saml-schema-metadata-2.0.xsd', $this->_debug);
+        $res = Utils::validateXML($xml, 'saml-schema-metadata-2.0.xsd', $this->_debug, $this->getSchemasPath());
         if (!$res instanceof DOMDocument) {
             $errors[] = $res;
         } else {

src/Saml2/Utils.php

@@ -111,12 +111,13 @@ public static function loadXML(DOMDocument $dom, $xml)
      * @param string|DOMDocument $xml    The XML string or document which should be validated.
      * @param string             $schema The schema filename which should be used.
      * @param bool               $debug  To disable/enable the debug mode
+     * @param string             $schemaPath Change schema path
      *
      * @return string|DOMDocument $dom  string that explains the problem or the DOMDocument
      *
      * @throws Exception
      */
-    public static function validateXML($xml, $schema, $debug = false)
+    public static function validateXML($xml, $schema, $debug = false, $schemaPath = null)
     {
         assert(is_string($xml) || $xml instanceof DOMDocument);
         assert(is_string($schema));
@@ -134,7 +135,12 @@ public static function validateXML($xml, $schema, $debug = false)
             }
         }
 
-        $schemaFile = __DIR__ . '/schemas/' . $schema;
+        if (isset($schemaPath)) {
+            $schemaFile = $schemaPath . $schema;
+        } else {
+            $schemaFile = __DIR__ . '/schemas/' . $schema;
+        }
+
         $oldEntityLoader = libxml_disable_entity_loader(false);
         $res = $dom->schemaValidate($schemaFile);
         libxml_disable_entity_loader($oldEntityLoader);
@@ -622,7 +628,7 @@ public static function getSelfRoutedURLNoQuery()
         if (!empty($_SERVER['REQUEST_URI'])) {
             $route = $_SERVER['REQUEST_URI'];
             if (!empty($_SERVER['QUERY_STRING'])) {
-                $route = self::str_lreplace($_SERVER['QUERY_STRING'], '', $route);
+                $route = self::strLreplace($_SERVER['QUERY_STRING'], '', $route);
                 if (substr($route, -1) == '?') {
                     $route = substr($route, 0, -1);
                 }
@@ -644,7 +650,7 @@ public static function getSelfRoutedURLNoQuery()
         return $selfRoutedURLNoQuery;
     }
 
-    public static function str_lreplace($search, $replace, $subject)
+    public static function strLreplace($search, $replace, $subject)
     {
         $pos = strrpos($subject, $search);
 

tests/src/OneLogin/Saml2/SettingsTest.php

@@ -87,7 +87,7 @@ public function testGetLibPath()
         $settings = new Settings();
         $base = $settings->getBasePath();
 
-        $this->assertEquals($base.'src/', $settings->getLibPath());
+        $this->assertEquals($base.'src/Saml2/', $settings->getLibPath());
     }
 
     /**
@@ -100,10 +100,26 @@ public function testGetSchemasPath()
         $settings = new Settings();
         $base = $settings->getBasePath();
 
-        $this->assertEquals($base.'src/schemas/', $settings->getSchemasPath());
+        $this->assertEquals($base.'src/Saml2/schemas/', $settings->getSchemasPath());
 
     }
 
+    /**
+     * Tests getSchemasPath method of the Settings
+     *
+     * @covers OneLogin\Saml2\Settings::setSchemasPath
+     */
+    public function testSetSchemasPath()
+    {
+        $settings = new Settings();
+        $base = $settings->getBasePath();
+
+        $this->assertEquals($base.'src/Saml2/schemas/', $settings->getSchemasPath());
+
+        $settings->setSchemasPath('custompath/');
+        $this->assertEquals('custompath/', $settings->getSchemasPath());
+    }
+
     /**
      * Tests shouldCompressRequests method of Settings.
      *