aliquot-pay 0.13.0 → 1.0.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: efe2c37b1391901980795e2bf48846eb753b5189e9d6a9158b399eb13be452dc
-  data.tar.gz: bb99c1418c9c3f83cce4a940c9d3983b4ba227eff8e88be729409a33a4e0a8f7
+  metadata.gz: a52570068b0b6f57550e57a2c10abef65e06ab5ba4f37988cae74ac5a97f8c85
+  data.tar.gz: 3a26fe4ac93a160960ecaf57951d5bb5d6b3977c913057f0edbed0ed7bbe756b
 SHA512:
-  metadata.gz: ef84809aaec9b3e8e4d88268f3daf6c96288150daf67cbda6e02066d1b61cfc1baf4cae8e8c541f9c320d309a431216081e7c2960382dcfb08ef3f54e570b490
-  data.tar.gz: 2a6bef39650b08231597b420f4227877cd017b0544ff857a6b0c373634a0a7a260ea6d2da5b3682963b136b015aa488f85f8e37f9a98840ed33e217fb8d12c29
+  metadata.gz: 983bf42c16fc65c840c0e65b3eeafba6148edfb8d4be67f5b94a4348619aa61e07323ad0419116ad4df1f37562427e51a97bab64573f06a68e271a5fa7f513e6
+  data.tar.gz: 1feed4a38dc29a91554fa272c492e84a9941454a10ebfbf11058254e06cc9993778961c424d4564d5861e6be025e9a0675f5e1dd5779bf7d175c65e72ba4cee0

data/lib/aliquot-pay.rb

@@ -29,131 +29,6 @@ class AliquotPay
     @protocol_version = protocol_version
   end
 
-  def self.sign(key, message)
-    d = OpenSSL::Digest::SHA256.new
-    def key.private?; private_key?; end
-    Base64.strict_encode64(key.sign(d, message))
-  end
-
-  def self.encrypt(cleartext_message, recipient, protocol_version, info = 'Google')
-    eph = AliquotPay::Util.generate_ephemeral_key
-    ss  = AliquotPay::Util.generate_shared_secret(eph, recipient.public_key)
-
-    case protocol_version
-    when :ECv1
-      cipher = OpenSSL::Cipher::AES128.new(:CTR)
-    when :ECv2
-      cipher = OpenSSL::Cipher::AES256.new(:CTR)
-    else
-      raise StandardError, "Invalid protocol_version #{protocol_version}"
-    end
-
-    keys = AliquotPay::Util.derive_keys(eph.public_key.to_bn.to_s(2), ss, info, protocol_version)
-
-    cipher.encrypt
-    cipher.key = keys[:aes_key]
-
-    encrypted_message = cipher.update(cleartext_message) + cipher.final
-
-    tag = AliquotPay::Util.calculate_tag(keys[:mac_key], encrypted_message)
-
-    {
-      'encryptedMessage'   => Base64.strict_encode64(encrypted_message),
-      'ephemeralPublicKey' => Base64.strict_encode64(eph.public_key.to_bn.to_s(2)),
-      'tag'                => Base64.strict_encode64(tag),
-    }
-  end
-
-  # Return a default payment
-  def self.payment(
-    auth_method: :PAN_ONLY,
-    expiration: ((Time.now.to_f + 60 * 5) * 1000).round.to_s
-  )
-    id = Base64.strict_encode64(OpenSSL::Random.random_bytes(24))
-    p = {
-      'messageExpiration'    => expiration,
-      'messageId'            => id,
-      'paymentMethod'        => 'CARD',
-      'paymentMethodDetails' => {
-        'expirationYear'  => 2023,
-        'expirationMonth' => 12,
-        'pan'             => '4111111111111111',
-        'authMethod'      => 'PAN_ONLY',
-      },
-    }
-
-    if auth_method == :CRYPTOGRAM_3DS
-      p['paymentMethodDetails']['authMethod']   = 'CRYPTOGRAM_3DS'
-      p['paymentMethodDetails']['cryptogram']   = 'SOME CRYPTOGRAM'
-      p['paymentMethodDetails']['eciIndicator'] = '05'
-    end
-
-    p
-  end
-
-  # Return a string length as a 4byte little-endian integer, as a string
-  def self.four_byte_length(str)
-    [str.length].pack('V')
-  end
-
-  def self.generate_signature(*args)
-    args.map do |s|
-      four_byte_length(s) + s
-    end.join
-  end
-
-  def self.signature_string(
-    message,
-    merchant_id:      DEFAULTS[:merchant_id],
-    sender_id:        DEFAULTS[:info],
-    protocol_version: 'ECv1'
-  )
-
-    generate_signature(sender_id, "merchant:#{merchant_id}", protocol_version, message)
-  end
-
-  # payment::        Google Pay token as a ruby Hash
-  # signing_key::    OpenSSL::PKEY::EC
-  # recipient::      OpenSSL::PKey::EC
-  # signed_message:: Pass a customized message to sign as signed messaged.
-  def self.generate_token_ecv1(payment, signing_key, recipient, signed_message = nil)
-    signed_message ||= encrypt(payment.to_json, recipient, :ECv1).to_json
-    signature_string = signature_string(signed_message)
-
-    {
-      'protocolVersion' => 'ECv1',
-      'signature' =>       sign(signing_key, signature_string),
-      'signedMessage' =>   signed_message,
-    }
-  end
-
-  def self.generate_token_ecv2(payment, signing_key, intermediate_key, recipient,
-                               signed_message: nil, expire_time:  "#{Time.now.to_i + 3600}000")
-    signed_message ||= encrypt(payment.to_json, recipient, :ECv2).to_json
-    sig = signature_string(signed_message, protocol_version: 'ECv2')
-
-    intermediate_pub = OpenSSL::PKey::EC.new(EC_CURVE)
-    intermediate_pub.public_key = intermediate_key.public_key
-
-    signed_key = {
-      'keyExpiration' => expire_time,
-      'keyValue'      => Base64.strict_encode64(intermediate_pub.to_der)
-    }.to_json
-
-    ik_signature_string = generate_signature('Google', 'ECv2', signed_key)
-    signatures = [sign(signing_key, ik_signature_string)]
-
-    {
-      'protocolVersion' => 'ECv2',
-      'signature' =>       sign(intermediate_key, sig),
-      'signedMessage' =>   signed_message,
-      'intermediateSigningKey' => {
-        'signedKey'  => signed_key,
-        'signatures' => signatures,
-      },
-    }
-  end
-
   def token
     build_token
   end
@@ -223,7 +98,7 @@ class AliquotPay
       'pan'             => @pan              || '4111111111111111',
       'expirationYear'  => @expiration_year  || 2023,
       'expirationMonth' => @expiration_month || 12,
-      'authMethod'     => @auth_method      || 'PAN_ONLY',
+      'authMethod'      => @auth_method      || 'PAN_ONLY',
     }
 
     if @auth_method == 'CRYPTOGRAM_3DS'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aliquot-pay
 version: !ruby/object:Gem::Version
-  version: 0.13.0
+  version: 1.0.0
 platform: ruby
 authors:
 - Clearhaus
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-01-24 00:00:00.000000000 Z
+date: 2019-02-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: hkdf