alula-ruby 1.7.0 → 1.8.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4ba30ce4a88b334fd10633b735f401d59b041cfdf2298a1298b5136e283d4b1d
-  data.tar.gz: '09475f21199c2182b86e3a775b88ed1df2f6617566bb2e980cd0d109d6536630'
+  metadata.gz: a508fa6a1f2b9e59136e9e188458c4ed4e21cb82242dddf5f05523876a391c8d
+  data.tar.gz: d71c8ac244ce5c84d3078aa456f70358a1b8824afd27794b6347b46ff43086e1
 SHA512:
-  metadata.gz: 7266449db3159f70c5a4d77ae25ae59355b7d4dc5e34d8cae838b10292b51c592da29ef192bd363b230f8a65d34195b30d1bfe617db3c25e6595a36f0d133e5b
-  data.tar.gz: eca19d6a1412ba2b51c4e4ba6514b47fd05fff1445b8fd3f6a9868eca43d0148d3c5498fd076eeb8230adbd4cbe5a31922eff061466c068f8eab5602e4245b6b
+  metadata.gz: d281008db754b5774489cb19e00a8a076403ee7319a15d0a4e16991416c570b115fd0ef1b37aacc6d5b16fc65c8f7636670884245385150411d6b1551574eb58
+  data.tar.gz: e04bf33ee07bdc96869782224b336152caeef7ad5169823ef947e6d5d27bec5482698f3249a13cf4038972b8c9d312a3df4c9f249ebd3f8e442909ea60980c75

data/VERSION.md

@@ -2,6 +2,8 @@
 
 | Version | Date      | Description                                                                 |
 | ------- | --------- | --------------------------------------------------------------------------- |
+| v1.8.1  | 2024-06-25  | Update client to accept impersonator authorization to change admin user langauge preference from dealer app        |
+| v1.8.0  | 2024-06-19  | Use Video API endpoints instead of core API passthrough         |
 | v1.7.0  | 2024-06-13  | Add DELETE, PATCH/POST, unregister capabilities for cameras         |
 | v1.6.0  | 2024-01-26  | Add user language attribute         |
 | v1.5.0  | 2024-01-09  | Add more known errors that use a different format         |

data/lib/alula/api_operations/save.rb

@@ -13,6 +13,7 @@ module Alula
               attributes: as_patchable_json
             }
           }
+          payload[:data].delete(:id) if video_request?(resource_url)
 
           response = Alula::Client.request(:patch, resource_url, payload, {})
 
@@ -79,6 +80,10 @@ module Alula
             raise Alula::UnknownError, "Unknown HTTP response code, aborting. Code: #{response.http_status}"
           end
         end
+
+        def video_request?(resource_path)
+          resource_path.match(%r{^/video})
+        end
       end
     end
   end

data/lib/alula/client.rb

@@ -7,7 +7,7 @@ module Alula
     class << self
       DEFAULT_CUSTOM_OPTIONS = {
         omitRelationships: true
-      }
+      }.freeze
 
       def config
         @_config ||= Alula::ClientConfiguration.new
@@ -18,13 +18,13 @@ module Alula
       end
 
       def request(http_method, resource_path, filters = {}, opts = {})
-        unless resource_path.match(%r{^/public/v1})
-          validate_request!(http_method, resource_path)
-        end
-
+        validate_request!(http_method, resource_path) unless resource_path.match(%r{^/public/v1})
         request_opts = build_options(http_method, resource_path, filters, opts)
+        api_url = video_request?(resource_path) ? config.video_api_url : config.api_url
+        request_resource_path = video_request?(resource_path) ? resource_path.gsub(%r{^/video}, '') : resource_path
+
         # TODO: Handle network failures
-        response = make_request(http_method, config.api_url + resource_path, request_opts)
+        response = make_request(http_method, api_url + request_resource_path, request_opts)
 
         begin
           resp = AlulaResponse.from_httparty_response(response)
@@ -41,7 +41,11 @@ module Alula
       def validate_request!(http_method, resource_path)
         config.ensure_api_key_set
         config.ensure_api_url_set
-        config.ensure_customer_id_set if resource_path.match(%r{^/video})
+        if video_request?(resource_path)
+          config.ensure_video_api_url_set
+          config.ensure_video_api_key_set
+          config.ensure_customer_id_set
+        end
         ensure_method_allowable(http_method)
         config.ensure_role_set if %i[patch post put].include? http_method
       end
@@ -51,18 +55,24 @@ module Alula
       end
 
       def ensure_method_allowable(http_method)
-        unless %i[get post put patch delete].include?(http_method)
-          raise "Unable to send a request with #{http_method} http method"
-        end
+        return if %i[get post put patch delete].include?(http_method)
+
+        raise "Unable to send a request with #{http_method} http method"
+      end
+
+      def video_request?(resource_path)
+        resource_path.match(%r{^/video})
       end
 
       def build_options(http_method, resource_path, filters = {}, opts = {})
+        api_key = Alula::Client.config.impersonator_api_key || Alula::Client.config.api_key
         request_opts = {
           headers: {
-            'Authorization': "Bearer #{Alula::Client.config.api_key}",
+            'Authorization': "Bearer #{api_key}",
             'User-Agent': "#{Alula::Client.config.user_agent || 'No Agent Set'}/alula-ruby v#{Alula::VERSION}"
           }
         }.merge(opts)
+        handle_video_request(request_opts) if video_request?(resource_path) # Add token for all video requests
 
         request_opts[:headers]['Content-Type'] = 'application/json' unless opts[:multipart]
         case http_method
@@ -70,11 +80,7 @@ module Alula
              :post
           request_opts[:body] = opts[:multipart] ? filters : JSON.generate(filters)
         when :get
-          if resource_path.match(%r{^/(rest|rpc)})
-            request_opts = request_opts.merge build_rest_options(filters)
-          elsif resource_path.match(%r{^/video})
-            add_customer_id(request_opts)
-          end
+          request_opts = request_opts.merge build_rest_options(filters) if resource_path.match(%r{^/(rest|rpc)})
         when :delete
           # Nothing special
         end
@@ -111,8 +117,17 @@ module Alula
         filters
       end
 
-      def add_customer_id(request_opts)
-        request_opts[:query] = { 'customerId' => config.customer_id }
+      def handle_video_request(request_opts)
+        if Alula::Client.config.internal
+          set_token(request_opts, { internal: true })
+        else
+          set_token(request_opts, { customerId: Alula::Client.config.customer_id })
+        end
+      end
+
+      def set_token(request_opts, payload)
+        jwt = TokenExchange.fetch_video_token(payload)
+        request_opts[:headers]['token'] = jwt
       end
     end
   end

data/lib/alula/client_configuration.rb

@@ -1,7 +1,8 @@
 module Alula
   class ClientConfiguration
-    attr_accessor :api_url, :debug, :user_agent
-    REQUEST_ATTRIBUTES = %i[api_key customer_id]
+    attr_accessor :api_url, :video_api_url, :debug, :user_agent
+
+    REQUEST_ATTRIBUTES = %i[api_key video_api_key customer_id internal impersonator_api_key]
 
     # Using RequestStore so we're thread safe even with our non-thread-safe architecture :(
     REQUEST_ATTRIBUTES.each do |prop|
@@ -42,11 +43,25 @@ module Alula
       end
     end
 
+    def ensure_video_api_url_set
+      return unless video_api_url.nil?
+
+      raise Alula::NotConfiguredError,
+            'did you forget to set the Alula::Client.config.video_api_url config option?'
+    end
+
+    def ensure_video_api_key_set
+      return if video_api_key
+
+      raise Alula::NotConfiguredError,
+            'Set your video API access token before making requests to the video API'
+    end
+
     def ensure_customer_id_set
-      unless customer_id
-        raise Alula::NotConfiguredError,
-              'Set your customer_id before making requests to the video API'
-      end
+      return if internal || customer_id
+
+      raise Alula::NotConfiguredError,
+            'Set your customer_id before making requests to the video API'
     end
 
     def ensure_role_set

data/lib/alula/errors.rb

@@ -87,6 +87,8 @@ module Alula
           NotFoundError.new(message)
         when 'Device Not Found'
           NotFoundError.new(message)
+        when 'Unable to unregister device'
+          NotFoundError.new(message)
         else
           Alula.logger.error response
           raise NotImplementedError, "Unable to derive error for #{response.data['error'].to_json}"
@@ -128,6 +130,8 @@ module Alula
           NotFoundError.new(message)
         when 'Device Not Found'
           NotFoundError.new(message)
+        when 'Unable to unregister device'
+          NotFoundError.new(message)
         else
           Alula.logger.error response
           raise NotImplementedError, "Unable to derive error for #{response.data['errors'].to_json}"

data/lib/alula/helpers/jwt_helper.rb

@@ -0,0 +1,61 @@
+# frozen_string_literal: true
+require 'base64'
+require 'openssl'
+
+module Alula
+  # Helper class to build JWT tokens
+  # Used for internal video API calls or video API calls with a customer ID
+  module JwtHelper
+    ONE_HOUR = 60 * 60
+    class << self
+      def build_jwt_token(jwt_payload)
+        jwt_secret = Alula::Client.config.video_api_key
+
+        header = build_jwt_header
+
+        token_data = add_timestamp_to_payload(jwt_payload)
+
+        encoded_header = convert_to_base64(JSON.generate(header))
+        encoded_data = convert_to_base64(JSON.generate(token_data))
+
+        token = "#{encoded_header}.#{encoded_data}"
+        signature = sign_token(token, jwt_secret)
+
+        "#{token}.#{signature}"
+      end
+
+      def build_jwt_header
+        {
+          'typ' => 'JWT',
+          'alg' => 'HS256'
+        }
+      end
+
+      def add_timestamp_to_payload(payload)
+        current_timestamp = Time.now.to_i
+        payload.merge(
+          {
+            'iat' => current_timestamp,
+            'exp' => current_timestamp + ONE_HOUR # expiry time is 60 minutes from time of creation
+          }
+        )
+      end
+
+      def sign_token(token, secret)
+        signature = OpenSSL::HMAC.digest(OpenSSL::Digest.new('sha256'), secret, token)
+        convert_to_base64(signature)
+      end
+
+      def convert_to_base64(source)
+        # Encode in classical base64,
+        encoded_source = Base64.strict_encode64(source)
+
+        # Remove padding equal characters,
+        encoded_source = encoded_source.gsub('=', '')
+
+        # Replace characters according to base64url specifications,
+        encoded_source.tr('+/', '-_')
+      end
+    end
+  end
+end

data/lib/alula/resources/token_exchange.rb

@@ -1,17 +1,65 @@
+# frozen_string_literal: true
+
+require_relative '../helpers/jwt_helper'
+
 module Alula
+  # Helper class to generate OAuth access tokens (core API) and JWT tokens (VSP API)
   class TokenExchange
-    def self.token_for_user(user_id)
-      url = '/rest/v1/oauth/accesstokens'
-      payload = { data: { attributes: { userId: user_id } } }
-      opts = {}
-
-      response = Alula::Client.request(:post, url, payload, opts)
-
-      if response.ok?
-        ImpersonatedToken.new(response.data['data']['attributes'])
-      else
-        error_class = AlulaError.for_response(response)
-        raise error_class
+    class << self
+      def token_for_user(user_id)
+        url = '/rest/v1/oauth/accesstokens'
+        payload = { data: { attributes: { userId: user_id } } }
+        opts = {}
+
+        response = Alula::Client.request(:post, url, payload, opts)
+
+        if response.ok?
+          ImpersonatedToken.new(response.data['data']['attributes'])
+        else
+          error_class = AlulaError.for_response(response)
+          raise error_class
+        end
+      end
+
+      def fetch_video_token(payload)
+        cache_key = generate_cache_key(payload)
+        cached_token, expiry = retrieve_cached_token(cache_key)
+
+        if cached_token && Time.now.to_i < expiry
+          jwt_token = cached_token
+        else
+          jwt_token = build_jwt_token(payload)
+          expiry = Time.now.to_i + JwtHelper::ONE_HOUR # 1 hour expiry
+          store_token_in_cache(cache_key, jwt_token, expiry)
+        end
+
+        jwt_token
+      end
+
+      private
+
+      def build_jwt_token(payload)
+        JwtHelper.build_jwt_token(payload)
+      end
+
+      def store_token_in_cache(cache_key, jwt_token, expiry)
+        @token_cache ||= {}
+        @token_cache[cache_key] = [jwt_token, expiry]
+      end
+
+      def retrieve_cached_token(cache_key)
+        @token_cache ||= {}
+        @token_cache[cache_key]
+      end
+
+      def generate_cache_key(payload)
+        if payload[:internal]
+          'jwt_token_internal'
+        elsif payload[:customerId]
+          "jwt_token_customer_#{payload[:customerId]}"
+        else
+          raise ArgumentError, 'Invalid payload'
+        end
       end
     end
 

data/lib/alula/resources/video/base_resource.rb

@@ -33,7 +33,7 @@ module Alula
       api_name :video
 
       # Instance method
-      def resource_url(id = nil)
+      def resource_url(id = self.id)
         "/#{self.class.api_name}/v1/#{self.class.resource_name}/#{id}"
       end
 

data/lib/alula/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Alula
-  VERSION = '1.7.0'
+  VERSION = '1.8.1'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: alula-ruby
 version: !ruby/object:Gem::Version
-  version: 1.7.0
+  version: 1.8.1
 platform: ruby
 authors:
 - Titus Johnson
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2024-06-17 00:00:00.000000000 Z
+date: 2024-06-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: httparty
@@ -210,6 +210,7 @@ files:
 - lib/alula/errors.rb
 - lib/alula/filter_builder.rb
 - lib/alula/helpers/device_attribute_translations.rb
+- lib/alula/helpers/jwt_helper.rb
 - lib/alula/list_object.rb
 - lib/alula/meta.rb
 - lib/alula/monkey_patches.rb