Merge pull request #143 from timlegge/ssl-hostname

testapp: allow SOAP connections to untrusted SSL servers

Author: waterkip

xt/testapp/config.yml

@@ -20,3 +20,4 @@ force_authn: 1
 is_passive: 0
 sign_metadata: 1
 authnreq_signed: 1
+ssl_verify_hostname: 0

xt/testapp/lib/Saml2Test.pm

@@ -128,11 +128,11 @@ get '/logout-soap' => sub {
     )->as_xml;
 
     my $soap = Net::SAML2::Binding::SOAP->new(
-        key	 => 'sign-nopw-cert.pem',
-        cert	 => 'sign-nopw-cert.pem',
-        url	 => $slo_url,
-        idp_cert => $idp_cert,
-        cacert   => config->{cacert},
+        key         => 'sign-nopw-cert.pem',
+        cert        => 'sign-nopw-cert.pem',
+        url         => $slo_url,
+        idp_cert    => $idp_cert,
+        cacert      => config->{cacert},
     );
 
     my $res = $soap->request($logoutreq);
@@ -173,11 +173,16 @@ get '/consumer-artifact' => sub {
     my $sp = _sp();
     my $request = $sp->artifact_request($idp->entityid, $artifact)->as_xml;
 
+    my $ua = LWP::UserAgent->new;
+
+    require LWP::Protocol::https;
+    $ua->ssl_opts( (verify_hostname => config->{ssl_verify_hostname}));
+
     my $soap = Net::SAML2::Binding::SOAP->new(
-        url	 => $art_url,
-        key	 => 'sign-private.pem',
-        cert	 => 'sign-certonly.pem',
-        idp_cert => $idp_cert
+        url         => $art_url,
+        key         => 'sign-private.pem',
+        cert        => 'sign-certonly.pem',
+        idp_cert    => $idp_cert
     );
     my $response = $soap->request($request);