RubyGems - apertur-sdk - Versions diffs - 0.1.5 → 0.1.6 - Mend

apertur-sdk 0.1.5 → 0.1.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

checksums.yaml +4 -4
data/lib/apertur/resources/polling.rb +3 -1
data/lib/apertur/resources/upload.rb +33 -9
data/lib/apertur/version.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8e13b276ea448173ed53e96ce31df30060b576c768acd1012bc9df6df2030375
-  data.tar.gz: ed633c8bd5e7509b7ef7f7a98e63fa2b8912048ca141e9230e184cff16eca960
+  metadata.gz: eefd130f1dc0dfc251471d88510fb28d2464ddfe23b8a3c5055404708d1118a4
+  data.tar.gz: e33c04ea6e50216fe7988d2d5fd05e0327de309bbd26d6956098a86ef07afa4e
 SHA512:
-  metadata.gz: 617cd4b37d3da2fffe8292367cbd336d42076fed098eaa72e77360b1440911b73ba22bb664b104bf73c7d8bc41279c2d3656ae113ba7630ca4c598de3c3b44e9
-  data.tar.gz: 3806c669fb2bcb4eac40c7d4ecebed20a98993a6a19e82d13c2f290277e6b47b4d21122d9f525197cf2b65e17fb1d61bb31487e0fd2b5a066a762fa8bdc2dc8a
+  metadata.gz: '08c21fe268c9ddf93ddd2aa5d44e7a0312051287b272b639a7b131212384ef91c7020f13ae7ac86a7818ce6372a6e7a0fccbf8247df0102b4e5d20ae3f341685'
+  data.tar.gz: 62d086c9c4ab7c9122831fc579e5224764ed892874df7a686ed603ad7eeed2a7c8f50c2c1d41511c72c5922eb243ddd2345b140c9f1f32219a34b7eade389ed1

data/lib/apertur/resources/polling.rb CHANGED Viewed

@@ -35,7 +35,9 @@ module Apertur
       # @param image_id [String] the image ID
       # @return [Hash] acknowledgement status
       def ack(uuid, image_id)
-        @http.request(:post, "/api/v1/upload-sessions/#{uuid}/images/#{image_id}/ack")
+        # The server requires a JSON body on this endpoint; sending none
+        # results in a 500. An empty object is sufficient.
+        @http.request(:post, "/api/v1/upload-sessions/#{uuid}/images/#{image_id}/ack", body: {})
       end
       # Blocking polling loop that fetches, downloads, and acknowledges images.

data/lib/apertur/resources/upload.rb CHANGED Viewed

@@ -59,18 +59,31 @@ module Apertur
         file_data = read_file(file)
         encrypted = Apertur::Crypto.encrypt_image(file_data, public_key)
-        payload = encrypted.merge(
-          "filename" => filename,
-          "mimeType" => mime_type,
-          "source" => source || "sdk"
+        # The server's "default" encryption mode expects a multipart file
+        # upload whose body is the JSON-serialized EncryptedPayload (camelCase
+        # keys), which it then decrypts with its private key. Sending a JSON
+        # request body instead yields a 500 ("No file uploaded").
+        payload_json = JSON.generate(
+          "encryptedKey" => encrypted["encrypted_key"],
+          "iv" => encrypted["iv"],
+          "encryptedData" => encrypted["encrypted_data"],
+          "algorithm" => encrypted["algorithm"]
         )
-        headers = {
-          "X-Aptr-Encrypted" => "default"
-        }
+        fields = {}
+        fields["source"] = source if source
+        headers = { "X-Aptr-Encrypted" => "default" }
         headers["x-session-password"] = password if password
-        @http.request(:post, "/api/v1/upload/#{uuid}/images", body: payload, headers: headers)
+        @http.request_multipart(
+          "/api/v1/upload/#{uuid}/images",
+          payload_json,
+          filename: "#{filename}.enc",
+          mime_type: "application/octet-stream",
+          fields: fields,
+          headers: headers
+        )
       end
       private
@@ -82,7 +95,7 @@ module Apertur
       def read_file(file)
         if file.respond_to?(:read)
           file.read.b
-        elsif file.is_a?(String) && File.exist?(file) && file.length < 1024
+        elsif file.is_a?(String) && looks_like_path?(file) && File.exist?(file)
           # Treat short strings that point to existing files as paths.
           # Raw image bytes will almost never be < 1024 bytes AND match an
           # existing filename, so this heuristic is safe in practice.
@@ -93,6 +106,17 @@ module Apertur
           raise ArgumentError, "Unsupported file input. Use a file path String, IO object, or raw String bytes."
         end
       end
+      # Heuristic: does this String plausibly name a file path (as opposed to
+      # raw image bytes)? Must be short and contain no NUL byte. Calling
+      # File.exist? on binary image data that contains a NUL byte raises
+      # "ArgumentError: path name contains null byte", so we must guard it.
+      #
+      # @param str [String]
+      # @return [Boolean]
+      def looks_like_path?(str)
+        str.length < 1024 && !str.include?("\x00")
+      end
     end
   end
 end

data/lib/apertur/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 module Apertur
-  VERSION = "0.1.5"
+  VERSION = "0.1.6"
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: apertur-sdk
 version: !ruby/object:Gem::Version
-  version: 0.1.5
+  version: 0.1.6
 platform: ruby
 authors:
 - Apertur
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2026-04-18 00:00:00.000000000 Z
+date: 2026-06-14 00:00:00.000000000 Z
 dependencies: []
 description: Official Ruby client for the Apertur image upload and delivery API. Supports
   session management, image uploads (including client-side encryption), polling, destinations,