Ability to set custom schema path

Author: pitbulk

lib/Saml2/LogoutRequest.php

@@ -340,7 +340,7 @@ public function isValid($retrieveParametersFromServer = false)
                 $security = $this->_settings->getSecurityData();
 
                 if ($security['wantXMLValidation']) {
-                    $res = OneLogin_Saml2_Utils::validateXML($dom, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive());
+                    $res = OneLogin_Saml2_Utils::validateXML($dom, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive(), $this->_settings->getSchemasPath());
                     if (!$res instanceof DOMDocument) {
                         throw new OneLogin_Saml2_ValidationError(
                             "Invalid SAML Logout Request. Not match the saml-schema-protocol-2.0.xsd",

lib/Saml2/LogoutResponse.php

@@ -127,7 +127,7 @@ public function isValid($requestId = null, $retrieveParametersFromServer = false
                 $security = $this->_settings->getSecurityData();
 
                 if ($security['wantXMLValidation']) {
-                    $res = OneLogin_Saml2_Utils::validateXML($this->document, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive());
+                    $res = OneLogin_Saml2_Utils::validateXML($this->document, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive(), $this->_settings->getSchemasPath());
                     if (!$res instanceof DOMDocument) {
                         throw new OneLogin_Saml2_ValidationError(
                             "Invalid SAML Logout Response. Not match the saml-schema-protocol-2.0.xsd",

lib/Saml2/Response.php

@@ -143,7 +143,7 @@ public function isValid($requestId = null)
 
                 if ($security['wantXMLValidation']) {
                     $errorXmlMsg = "Invalid SAML Response. Not match the saml-schema-protocol-2.0.xsd";
-                    $res = OneLogin_Saml2_Utils::validateXML($this->document, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive());
+                    $res = OneLogin_Saml2_Utils::validateXML($this->document, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive(), $this->_settings->getSchemasPath());
                     if (!$res instanceof DOMDocument) {
                         throw new OneLogin_Saml2_ValidationError(
                             $errorXmlMsg,
@@ -153,7 +153,7 @@ public function isValid($requestId = null)
 
                     # If encrypted, check also the decrypted document
                     if ($this->encrypted) {
-                        $res = OneLogin_Saml2_Utils::validateXML($this->decryptedDocument, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive());
+                        $res = OneLogin_Saml2_Utils::validateXML($this->decryptedDocument, 'saml-schema-protocol-2.0.xsd', $this->_settings->isDebugActive(), $this->_settings->getSchemasPath());
                         if (!$res instanceof DOMDocument) {
                             throw new OneLogin_Saml2_ValidationError(
                                 $errorXmlMsg,

lib/Saml2/Settings.php

@@ -159,7 +159,7 @@ private function _loadPaths()
             'base' => $basePath,
             'config' => $basePath,
             'cert' => $basePath.'certs/',
-            'lib' => $basePath.'lib/',
+            'lib' => $basePath.'lib/Saml2/',
             'extlib' => $basePath.'extlib/'
         );
 
@@ -226,9 +226,23 @@ public function getExtLibPath()
      */
     public function getSchemasPath()
     {
+        if (isset($this->_paths['schemas'])) {
+            return $this->_paths['schemas'];
+        }
         return $this->_paths['lib'].'schemas/';
     }
 
+    /**
+     * Set schemas path
+     *
+     * @param string $path
+     * @return $this
+     */
+    public function setSchemasPath($path)
+    {
+        $this->_paths['schemas'] = $path;
+    }
+
     /**
      * Loads settings info from a settings Array
      *
@@ -934,7 +948,7 @@ public function validateMetadata($xml)
         assert('is_string($xml)');
 
         $errors = array();
-        $res = OneLogin_Saml2_Utils::validateXML($xml, 'saml-schema-metadata-2.0.xsd', $this->_debug);
+        $res = OneLogin_Saml2_Utils::validateXML($xml, 'saml-schema-metadata-2.0.xsd', $this->_debug, $this->getSchemasPath());
         if (!$res instanceof DOMDocument) {
             $errors[] = $res;
         } else {

lib/Saml2/Utils.php

@@ -113,12 +113,13 @@ public static function loadXML($dom, $xml)
      * @param string|DOMDocument $xml The XML string or document which should be validated.
      * @param string $schema The schema filename which should be used.
      * @param bool $debug To disable/enable the debug mode
+     * @param string $schemaPath Change schema path
      *
      * @return string|DOMDocument $dom  string that explains the problem or the DOMDocument
      *
      * @throws Exception
      */
-    public static function validateXML($xml, $schema, $debug = false)
+    public static function validateXML($xml, $schema, $debug = false, $schemaPath = null)
     {
         assert('is_string($xml) || $xml instanceof DOMDocument');
         assert('is_string($schema)');
@@ -136,7 +137,12 @@ public static function validateXML($xml, $schema, $debug = false)
             }
         }
 
-        $schemaFile = __DIR__.'/schemas/' . $schema;
+        if (isset($schemaPath)) {
+            $schemaFile = $schemaPath . $schema;
+        } else {
+            $schemaFile = __DIR__ . '/schemas/' . $schema;
+        }
+
         $oldEntityLoader = libxml_disable_entity_loader(false);
         $res = $dom->schemaValidate($schemaFile);
         libxml_disable_entity_loader($oldEntityLoader);
@@ -626,7 +632,7 @@ public static function getSelfRoutedURLNoQuery()
         if (!empty($_SERVER['REQUEST_URI'])) {
             $route = $_SERVER['REQUEST_URI'];
             if (!empty($_SERVER['QUERY_STRING'])) {
-                $route = self::str_lreplace($_SERVER['QUERY_STRING'], '', $route);
+                $route = self::strLreplace($_SERVER['QUERY_STRING'], '', $route);
                 if (substr($route, -1) == '?') {
                     $route = substr($route, 0, -1);
                 }
@@ -648,7 +654,7 @@ public static function getSelfRoutedURLNoQuery()
         return $selfRoutedURLNoQuery;
     }
 
-    public static function str_lreplace($search, $replace, $subject)
+    public static function strLreplace($search, $replace, $subject)
     {
         $pos = strrpos($subject, $search);
 

tests/src/OneLogin/Saml2/SettingsTest.php

@@ -95,7 +95,7 @@ public function testGetLibPath()
         $settings = new OneLogin_Saml2_Settings();
         $base = $settings->getBasePath();
 
-        $this->assertEquals($base.'lib/', $settings->getLibPath());
+        $this->assertEquals($base.'lib/Saml2/', $settings->getLibPath());
     }
 
     /**
@@ -121,10 +121,24 @@ public function testGetSchemasPath()
         $settings = new OneLogin_Saml2_Settings();
         $base = $settings->getBasePath();
 
-        $this->assertEquals($base.'lib/schemas/', $settings->getSchemasPath());
+        $this->assertEquals($base.'lib/Saml2/schemas/', $settings->getSchemasPath());
 
     }
 
+    /**
+     * Tests getSchemasPath method of the Settings
+     *
+     * @covers OneLogin_Saml2_Settings::setSchemasPath
+     */
+    public function testSetSchemasPath()
+    {
+        $settings = new OneLogin_Saml2_Settings();
+        $base = $settings->getBasePath();
+        $this->assertEquals($base.'lib/Saml2/schemas/', $settings->getSchemasPath());
+        $settings->setSchemasPath('custompath/');
+        $this->assertEquals('custompath/', $settings->getSchemasPath());
+    }
+
     /**
     * Tests shouldCompressRequests method of OneLogin_Saml2_Settings.
     *