akami 1.0.0 → 1.1.0

data/CHANGELOG.md

@@ -1,3 +1,7 @@
+## 1.1.0 (2012-06-06)
+
+* Feature: [#3](https://github.com/rubiii/akami/pull/3) - WSSE signing.
+
 ## 1.0.0 (2011-07-03)
 
 * Initial version extracted from the [Savon](http://rubygems.org/gems/savon) library.

data/README.md

@@ -21,19 +21,19 @@ Getting started
 wsse = Akami.wsse
 ```
 
-Set the credentials for wsse:UsernameToken basic auth:
+Set the credentials for `wsse:UsernameToken` basic auth:
 
 ``` ruby
 wsse.credentials "username", "password"
 ```
 
-Set the credentials for wsse:UsernameToken digest auth:
+Set the credentials for `wsse:UsernameToken` digest auth:
 
 ``` ruby
 wsse.credentials "username", "password", :digest
 ```
 
-Enable wsu:Timestamp headers. `wsu:Created` is automatically set to `Time.now`
+Enable `wsu:Timestamp` headers. `wsu:Created` is automatically set to `Time.now`
 and `wsu:Expires` is set to `Time.now + 60`:
 
 ``` ruby
@@ -45,7 +45,7 @@ Manually specify the values for `wsu:Created` and `wsu:Expires`:
 ``` ruby
 wsse.created_at = Time.now
 wsse.expires_at = Time.now + 60
-``
+```
 
 Akami is based on an autovivificating Hash. So if you need to add custom tags, you can add them.
 
@@ -54,5 +54,9 @@ wsse["wsse:Security"]["wsse:UsernameToken"] = { "Organization" => "ACME" }
 ```
 
 When generating the XML for the request, this Hash will be merged with another Hash containing
-all the default tags and values. This way you might digg into some code, but then you can even
-overwrite the default values.
+all the default tags and values.  
+This way you might digg into some code, but then you can even overwrite the default values.
+
+``` ruby
+wsse.to_xml
+```

data/akami.gemspec

@@ -14,6 +14,7 @@ Gem::Specification.new do |s|
   s.rubyforge_project = s.name
 
   s.add_dependency "gyoku", ">= 0.4.0"
+  s.add_dependency "nokogiri", ">= 1.5.2"
 
   s.add_development_dependency "rake",    "~> 0.8.7"
   s.add_development_dependency "rspec",   "~> 2.5.0"

data/lib/akami/c14n_helper.rb

@@ -0,0 +1,8 @@
+module Akami
+  module C14nHelper
+    def canonicalize(xml)
+      return unless xml
+      xml.canonicalize Nokogiri::XML::XML_C14N_EXCLUSIVE_1_0
+    end
+  end
+end

data/lib/akami/core_ext/hash.rb

@@ -0,0 +1,27 @@
+# NOTE: This could probably be removed, but I don't have the time at the moment
+#       determine that.  It is used by signature.rb, and these methods used to 
+#       be in Savon.
+#
+module Akami
+  module CoreExt
+    module Hash
+
+      # Returns a new hash with +self+ and +other_hash+ merged recursively.
+      def deep_merge(other_hash)
+        dup.deep_merge!(other_hash)
+      end
+
+      # Returns a new Hash with +self+ and +other_hash+ merged recursively.
+      # Modifies the receiver in place.
+      def deep_merge!(other_hash)
+        other_hash.each_pair do |k,v|
+          tv = self[k]
+          self[k] = tv.is_a?(Hash) && v.is_a?(Hash) ? tv.deep_merge(v) : v
+        end
+        self
+      end unless defined? deep_merge!
+    end
+  end
+end
+
+Hash.send :include, Akami::CoreExt::Hash

data/lib/akami/version.rb

@@ -1,5 +1,5 @@
 module Akami
 
-  VERSION = "1.0.0"
+  VERSION = "1.1.0"
 
 end

data/lib/akami/wsse.rb

@@ -1,8 +1,14 @@
 require "base64"
 require "digest/sha1"
-require "akami/core_ext/time"
+require "akami/core_ext/hash"
+require "akami/xpath_helper"
+require "akami/c14n_helper"
+require "time"
 require "gyoku"
 
+require "akami/wsse/verify_signature"
+require "akami/wsse/signature"
+
 module Akami
 
   # = Akami::WSSE
@@ -40,7 +46,15 @@ module Akami
       self.digest = digest
     end
 
-    attr_accessor :username, :password, :created_at, :expires_at
+    attr_accessor :username, :password, :created_at, :expires_at, :signature, :verify_response
+
+    def sign_with=(klass)
+      @signature = klass
+    end
+
+    def signature?
+      !!@signature
+    end
 
     # Returns whether to use WSSE digest. Defaults to +false+.
     def digest?
@@ -64,9 +78,20 @@ module Akami
       @wsu_timestamp = timestamp
     end
 
+    # Hook for Soap::XML that allows us to add attributes to the env:Body tag
+    def body_attributes
+      if signature?
+        signature.body_attributes
+      else
+        {}
+      end
+    end
+
     # Returns the XML for a WSSE header.
     def to_xml
-      if username_token? && timestamp?
+      if signature? and signature.have_document?
+        Gyoku.xml wsse_signature.merge!(hash)
+      elsif username_token? && timestamp?
         Gyoku.xml wsse_username_token.merge!(wsu_timestamp) {
           |key, v1, v2| v1.merge!(v2) {
             |key, v1, v2| v1.merge!(v2)
@@ -100,23 +125,45 @@ module Akami
       end
     end
 
+    def wsse_signature
+      signature_hash = signature.to_token
+
+      # First key/value is tag/hash
+      tag, hash = signature_hash.shift
+
+      security_hash nil, tag, hash, signature_hash
+    end
+
     # Returns a Hash containing wsu:Timestamp details.
     def wsu_timestamp
       security_hash :wsu, "Timestamp",
-        "wsu:Created" => (created_at || Time.now).xs_datetime,
-        "wsu:Expires" => (expires_at || (created_at || Time.now) + 60).xs_datetime
+        "wsu:Created" => (created_at || Time.now).utc.xmlschema,
+        "wsu:Expires" => (expires_at || (created_at || Time.now) + 60).utc.xmlschema
     end
 
     # Returns a Hash containing wsse/wsu Security details for a given
     # +namespace+, +tag+ and +hash+.
-    def security_hash(namespace, tag, hash)
-      {
+    def security_hash(namespace, tag, hash, extra_info = {})
+      key = [namespace, tag].compact.join(":")
+
+      sec_hash = {
         "wsse:Security" => {
-          "#{namespace}:#{tag}" => hash,
-          :attributes! => { "#{namespace}:#{tag}" => { "wsu:Id" => "#{tag}-#{count}", "xmlns:wsu" => WSU_NAMESPACE } }
+          key => hash
         },
         :attributes! => { "wsse:Security" => { "xmlns:wsse" => WSE_NAMESPACE } }
       }
+
+      unless extra_info.empty?
+        sec_hash["wsse:Security"].merge!(extra_info)
+      end
+
+      if signature?
+        sec_hash[:attributes!].merge!("soapenv:mustUnderstand" => "1")
+      else
+        sec_hash["wsse:Security"].merge!(:attributes! => { key => { "wsu:Id" => "#{tag}-#{count}", "xmlns:wsu" => WSU_NAMESPACE } })
+      end
+
+      sec_hash
     end
 
     # Returns the WSSE password, encrypted for digest authentication.
@@ -137,7 +184,7 @@ module Akami
 
     # Returns a WSSE timestamp.
     def timestamp
-      @timestamp ||= Time.now.xs_datetime
+      @timestamp ||= Time.now.xmlschema
     end
 
     # Returns a new number with every call.

data/lib/akami/wsse/certs.rb

@@ -0,0 +1,25 @@
+module Akami
+  class WSSE
+    # Contains certs for WSSE::Signature
+    class Certs
+
+      def initialize(certs = {})
+        certs.each do |key, value|
+          self.send :"#{key}=", value
+        end
+      end
+
+      attr_accessor :cert_file, :private_key_file, :private_key_password
+
+      # Returns an <tt>OpenSSL::X509::Certificate</tt> for the +cert_file+.
+      def cert
+        @cert ||= OpenSSL::X509::Certificate.new File.read(cert_file) if cert_file
+      end
+
+      # Returns an <tt>OpenSSL::PKey::RSA</tt> for the +private_key_file+.
+      def private_key
+        @private_key ||= OpenSSL::PKey::RSA.new(File.read(private_key_file), private_key_password) if private_key_file
+      end
+    end
+  end
+end

data/lib/akami/wsse/signature.rb

@@ -0,0 +1,166 @@
+require "akami/wsse/certs"
+
+module Akami
+  class WSSE
+    class Signature
+      include Akami::XPathHelper
+      include Akami::C14nHelper
+
+      class MissingCertificate < RuntimeError; end
+
+      # For a +Savon::WSSE::Certs+ object. To hold the certs we need to sign.
+      attr_accessor :certs
+
+      # Without a document, the document cannot be signed.
+      # Generate the document once, and then set document and recall #to_token
+      def document
+        @document ? @document.to_s : nil
+      end
+
+      def document=(document)
+        @document = Nokogiri::XML(document)
+      end
+
+      ExclusiveXMLCanonicalizationAlgorithm = 'http://www.w3.org/2001/10/xml-exc-c14n#'.freeze
+      RSASHA1SignatureAlgorithm = 'http://www.w3.org/2000/09/xmldsig#rsa-sha1'.freeze
+      SHA1DigestAlgorithm = 'http://www.w3.org/2000/09/xmldsig#sha1'.freeze
+
+      X509v3ValueType = 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3'.freeze
+      Base64EncodingType = 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary'.freeze
+
+      SignatureNamespace = 'http://www.w3.org/2000/09/xmldsig#'.freeze
+
+      def initialize(certs = Certs.new)
+        @certs = certs
+      end
+
+      def have_document?
+        !!document
+      end
+
+      # Cache "now" so that digests match...
+      # TODO: figure out how we might want to expire this cache...
+      def now
+        @now ||= Time.now
+      end
+
+      def body_id
+        @body_id ||= "Body-#{uid}".freeze
+      end
+
+      def security_token_id
+        @security_token_id ||= "SecurityToken-#{uid}".freeze
+      end
+
+      def body_attributes
+        {
+          "xmlns:wsu" => Akami::WSSE::WSU_NAMESPACE,
+          "wsu:Id" => body_id,
+        }
+      end
+
+      def to_token
+        return {} unless have_document?
+
+        sig = signed_info.merge(key_info).merge(signature_value)
+        sig.merge! :order! => []
+        [ "SignedInfo", "SignatureValue", "KeyInfo" ].each do |key|
+          sig[:order!] << key if sig[key]
+        end
+
+        token = {
+          "Signature" => sig,
+          :attributes! => { "Signature" => { "xmlns" => SignatureNamespace } },
+        }
+
+        token.deep_merge!(binary_security_token) if certs.cert
+
+        token.merge! :order! => []
+        [ "wsse:BinarySecurityToken", "Signature" ].each do |key|
+          token[:order!] << key if token[key]
+        end
+
+        token
+      end
+
+      private
+
+      def binary_security_token
+        {
+          "wsse:BinarySecurityToken" => Base64.encode64(certs.cert.to_der).gsub("\n", ''),
+          :attributes! => { "wsse:BinarySecurityToken" => {
+            "wsu:Id" => security_token_id,
+            'EncodingType' => Base64EncodingType,
+            'ValueType' => X509v3ValueType,
+            "xmlns:wsu" => Akami::WSSE::WSU_NAMESPACE,
+          } }
+        }
+      end
+
+      def key_info
+        {
+          "KeyInfo" => {
+            "wsse:SecurityTokenReference" => {
+              "wsse:Reference/" => nil,
+              :attributes! => { "wsse:Reference/" => {
+                "ValueType" => X509v3ValueType,
+                "URI" => "##{security_token_id}",
+              } }
+            },
+            :attributes! => { "wsse:SecurityTokenReference" => { "xmlns:wsu" => "http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" } },
+          },
+        }
+      end
+
+      def signature_value
+        { "SignatureValue" => the_signature }
+      rescue MissingCertificate
+        {}
+      end
+
+      def signed_info
+        {
+          "SignedInfo" => {
+            "CanonicalizationMethod/" => nil,
+            "SignatureMethod/" => nil,
+            "Reference" => [
+              #signed_info_transforms.merge(signed_info_digest_method).merge({ "DigestValue" => timestamp_digest }),
+              signed_info_transforms.merge(signed_info_digest_method).merge({ "DigestValue" => body_digest }),
+            ],
+            :attributes! => {
+              "CanonicalizationMethod/" => { "Algorithm" => ExclusiveXMLCanonicalizationAlgorithm },
+              "SignatureMethod/" => { "Algorithm" => RSASHA1SignatureAlgorithm },
+              "Reference" => { "URI" => ["##{body_id}"] },
+            },
+            :order! => [ "CanonicalizationMethod/", "SignatureMethod/", "Reference" ],
+          },
+        }
+      end
+
+      def the_signature
+        raise MissingCertificate, "Expected a private_key for signing" unless certs.private_key
+        signed_info = at_xpath(@document, "//Envelope/Header/Security/Signature/SignedInfo")
+        signed_info = signed_info ? canonicalize(signed_info) : ""
+        signature = certs.private_key.sign(OpenSSL::Digest::SHA1.new, signed_info)
+        Base64.encode64(signature).gsub("\n", '') # TODO: DRY calls to Base64.encode64(...).gsub("\n", '')
+      end
+
+      def body_digest
+        body = canonicalize(at_xpath(@document, "//Envelope/Body"))
+        Base64.encode64(OpenSSL::Digest::SHA1.digest(body)).strip
+      end
+
+      def signed_info_digest_method
+        { "DigestMethod/" => nil, :attributes! => { "DigestMethod/" => { "Algorithm" => SHA1DigestAlgorithm } } }
+      end
+
+      def signed_info_transforms
+        { "Transforms" => { "Transform/" => nil, :attributes! => { "Transform/" => { "Algorithm" => ExclusiveXMLCanonicalizationAlgorithm } } } }
+      end
+
+      def uid
+        OpenSSL::Digest::SHA1.hexdigest([Time.now, rand].collect(&:to_s).join('/'))
+      end
+    end
+  end
+end

data/lib/akami/wsse/verify_signature.rb

@@ -0,0 +1,88 @@
+module Akami
+  class WSSE
+    class InvalidSignature < RuntimeError; end
+
+    class VerifySignature
+      include Akami::XPathHelper
+      include Akami::C14nHelper
+
+      class InvalidDigest < RuntimeError; end
+      class InvalidSignedValue < RuntimeError; end
+
+      attr_reader :response_body, :document
+
+      def initialize(response_body)
+        @response_body = response_body
+        @document = create_document
+      end
+
+      def generate_digest(element)
+        element = element_for_xpath(element) if element.is_a? String
+        xml = canonicalize(element)
+        digest(xml).strip
+      end
+
+      def supplied_digest(element)
+        element = element_for_xpath(element) if element.is_a? String
+        find_digest_value element.attributes["Id"]
+      end
+
+      def signature_value
+        element = element_for_xpath("//Security/Signature/SignatureValue")
+        element ? element.text : ""
+      end
+
+      def certificate
+        certificate_value = element_for_xpath("//Security/BinarySecurityToken").text.strip
+        OpenSSL::X509::Certificate.new Base64.decode64(certificate_value)
+      end
+
+      def valid?
+        verify
+      rescue InvalidDigest, InvalidSignedValue
+        return false
+      end
+
+      def verify!
+        verify
+      rescue InvalidDigest, InvalidSignedValue => e
+        raise InvalidSignature, e.message
+      end
+
+      private
+
+      def verify
+        xpath(document, "//Security/Signature/SignedInfo/Reference").each do |ref|
+          element_id = ref.attributes["URI"][1..-1] # strip leading '#'
+          element = element_for_xpath(%(//*[@wsu:Id="#{element_id}"]))
+          raise InvalidDigest, "Invalid Digest for #{element_id}" unless supplied_digest(element) == generate_digest(element)
+        end
+
+        data = canonicalize(signed_info)
+        signature = Base64.decode64(signature_value)
+
+        certificate.public_key.verify(OpenSSL::Digest::SHA1.new, signature, data) or raise InvalidSignedValue, "Could not verify the signature value"
+      end
+
+      def create_document
+        Nokogiri::XML response_body
+      end
+
+      def element_for_xpath(xpath)
+        document.at_xpath xpath
+      end
+
+      def signed_info
+        at_xpath document, "//Security/Signature/SignedInfo"
+      end
+
+      def find_digest_value(id)
+        at_xpath(document, %(//Security/Signature/SignedInfo/Reference[@URI="##{id}"]/DigestValue)).text
+      end
+
+      def digest(string)
+        Base64.encode64 OpenSSL::Digest::SHA1.digest(string)
+      end
+    end
+  end
+end

data/lib/akami/xpath_helper.rb

@@ -0,0 +1,17 @@
+module Akami
+  module XPathHelper
+    def at_xpath(node, xpath)
+      return unless node
+      node.at_xpath local_name_xpath(xpath)
+    end
+
+    def xpath(node, xpath)
+      return unless node
+      node.xpath local_name_xpath(xpath)
+    end
+
+    def local_name_xpath(xpath)
+      xpath.gsub(%r{([/]*)([A-Za-z]+)([/]*)}) { "#{$1}*[local-name()='#{$2}']#{$3}" }
+    end
+  end
+end

data/spec/akami/wsse_spec.rb

@@ -171,14 +171,14 @@ describe Akami do
       it "contains a wsu:Created node defaulting to Time.now" do
         created_at = Time.now
         Timecop.freeze created_at do
-          wsse.to_xml.should include("<wsu:Created>#{created_at.xs_datetime}</wsu:Created>")
+          wsse.to_xml.should include("<wsu:Created>#{created_at.utc.xmlschema}</wsu:Created>")
         end
       end
 
       it "contains a wsu:Expires node defaulting to Time.now + 60 seconds" do
         created_at = Time.now
         Timecop.freeze created_at do
-          wsse.to_xml.should include("<wsu:Expires>#{(created_at + 60).xs_datetime}</wsu:Expires>")
+          wsse.to_xml.should include("<wsu:Expires>#{(created_at + 60).utc.xmlschema}</wsu:Expires>")
         end
       end
     end
@@ -187,11 +187,11 @@ describe Akami do
       before { wsse.created_at = Time.now + 86400 }
 
       it "contains a wsu:Created node with the given time" do
-        wsse.to_xml.should include("<wsu:Created>#{wsse.created_at.xs_datetime}</wsu:Created>")
+        wsse.to_xml.should include("<wsu:Created>#{wsse.created_at.utc.xmlschema}</wsu:Created>")
       end
 
       it "contains a wsu:Expires node set to #created_at + 60 seconds" do
-        wsse.to_xml.should include("<wsu:Expires>#{(wsse.created_at + 60).xs_datetime}</wsu:Expires>")
+        wsse.to_xml.should include("<wsu:Expires>#{(wsse.created_at + 60).utc.xmlschema}</wsu:Expires>")
       end
     end
 
@@ -201,12 +201,12 @@ describe Akami do
       it "contains a wsu:Created node defaulting to Time.now" do
         created_at = Time.now
         Timecop.freeze created_at do
-          wsse.to_xml.should include("<wsu:Created>#{created_at.xs_datetime}</wsu:Created>")
+          wsse.to_xml.should include("<wsu:Created>#{created_at.utc.xmlschema}</wsu:Created>")
         end
       end
 
       it "contains a wsu:Expires node set to the given time" do
-        wsse.to_xml.should include("<wsu:Expires>#{wsse.expires_at.xs_datetime}</wsu:Expires>")
+        wsse.to_xml.should include("<wsu:Expires>#{wsse.expires_at.utc.xmlschema}</wsu:Expires>")
       end
     end
 

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification 
 name: akami
 version: !ruby/object:Gem::Version 
-  hash: 23
+  hash: 19
   prerelease: 
   segments: 
   - 1
+  - 1
   - 0
-  - 0
-  version: 1.0.0
+  version: 1.1.0
 platform: ruby
 authors: 
 - Daniel Harrington
@@ -15,12 +15,10 @@ autorequire:
 bindir: bin
 cert_chain: []
 
-date: 2011-07-03 00:00:00 Z
+date: 2012-06-06 00:00:00 Z
 dependencies: 
 - !ruby/object:Gem::Dependency 
-  name: gyoku
-  prerelease: false
-  requirement: &id001 !ruby/object:Gem::Requirement 
+  version_requirements: &id001 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
     - - ">="
@@ -31,12 +29,28 @@ dependencies:
         - 4
         - 0
         version: 0.4.0
+  name: gyoku
   type: :runtime
-  version_requirements: *id001
+  prerelease: false
+  requirement: *id001
 - !ruby/object:Gem::Dependency 
-  name: rake
+  version_requirements: &id002 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 7
+        segments: 
+        - 1
+        - 5
+        - 2
+        version: 1.5.2
+  name: nokogiri
+  type: :runtime
   prerelease: false
-  requirement: &id002 !ruby/object:Gem::Requirement 
+  requirement: *id002
+- !ruby/object:Gem::Dependency 
+  version_requirements: &id003 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
     - - ~>
@@ -47,12 +61,12 @@ dependencies:
         - 8
         - 7
         version: 0.8.7
+  name: rake
   type: :development
-  version_requirements: *id002
-- !ruby/object:Gem::Dependency 
-  name: rspec
   prerelease: false
-  requirement: &id003 !ruby/object:Gem::Requirement 
+  requirement: *id003
+- !ruby/object:Gem::Dependency 
+  version_requirements: &id004 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
     - - ~>
@@ -63,12 +77,12 @@ dependencies:
         - 5
         - 0
         version: 2.5.0
+  name: rspec
   type: :development
-  version_requirements: *id003
-- !ruby/object:Gem::Dependency 
-  name: mocha
   prerelease: false
-  requirement: &id004 !ruby/object:Gem::Requirement 
+  requirement: *id004
+- !ruby/object:Gem::Dependency 
+  version_requirements: &id005 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
     - - ~>
@@ -79,12 +93,12 @@ dependencies:
         - 9
         - 8
         version: 0.9.8
+  name: mocha
   type: :development
-  version_requirements: *id004
-- !ruby/object:Gem::Dependency 
-  name: timecop
   prerelease: false
-  requirement: &id005 !ruby/object:Gem::Requirement 
+  requirement: *id005
+- !ruby/object:Gem::Dependency 
+  version_requirements: &id006 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
     - - ~>
@@ -95,12 +109,12 @@ dependencies:
         - 3
         - 5
         version: 0.3.5
+  name: timecop
   type: :development
-  version_requirements: *id005
-- !ruby/object:Gem::Dependency 
-  name: autotest
   prerelease: false
-  requirement: &id006 !ruby/object:Gem::Requirement 
+  requirement: *id006
+- !ruby/object:Gem::Dependency 
+  version_requirements: &id007 !ruby/object:Gem::Requirement 
     none: false
     requirements: 
     - - ">="
@@ -109,8 +123,10 @@ dependencies:
         segments: 
         - 0
         version: "0"
+  name: autotest
   type: :development
-  version_requirements: *id006
+  prerelease: false
+  requirement: *id007
 description: Building Web Service Security
 email: 
 - me@rubiii.com
@@ -131,10 +147,14 @@ files:
 - Rakefile
 - akami.gemspec
 - lib/akami.rb
-- lib/akami/core_ext/time.rb
+- lib/akami/c14n_helper.rb
+- lib/akami/core_ext/hash.rb
 - lib/akami/version.rb
 - lib/akami/wsse.rb
-- spec/akami/core_ext/time_spec.rb
+- lib/akami/wsse/certs.rb
+- lib/akami/wsse/signature.rb
+- lib/akami/wsse/verify_signature.rb
+- lib/akami/xpath_helper.rb
 - spec/akami/wsse_spec.rb
 - spec/spec_helper.rb
 homepage: https://github.com/rubiii/akami
@@ -166,11 +186,10 @@ required_rubygems_version: !ruby/object:Gem::Requirement
 requirements: []
 
 rubyforge_project: akami
-rubygems_version: 1.8.5
+rubygems_version: 1.8.21
 signing_key: 
 specification_version: 3
 summary: Web Service Security
 test_files: 
-- spec/akami/core_ext/time_spec.rb
 - spec/akami/wsse_spec.rb
 - spec/spec_helper.rb

data/lib/akami/core_ext/time.rb

@@ -1,22 +0,0 @@
-module Akami
-  module CoreExt
-    module Time
-
-      # Returns an xs:dateTime formatted String.
-      def xs_datetime
-        zone = if utc_offset < 0
-          "-#{"%02d" % (- utc_offset / 3600)}:#{"%02d" % ((- utc_offset % 3600) / 60)}"
-        elsif utc_offset > 0
-          "+#{"%02d" % (utc_offset / 3600)}:#{"%02d" % ((utc_offset % 3600) / 60)}"
-        else
-          "Z"
-        end
-
-        strftime "%Y-%m-%dT%H:%M:%S#{zone}"
-      end
-
-    end
-  end
-end
-
-Time.send :include, Akami::CoreExt::Time

data/spec/akami/core_ext/time_spec.rb

@@ -1,12 +0,0 @@
-require "spec_helper"
-
-describe Time do
-
-  describe "#xs_datetime" do
-    it "returns an xs:dateTime formatted String" do
-      time = Time.utc(2011, 01, 04, 13, 45, 55)
-      time.xs_datetime.should == "2011-01-04T13:45:55Z"
-    end
-  end
-
-end