autentique 0.1.0 → 0.1.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 21da834df25916c1cdc87f2818c3c91dded5682fd749b7e637ec9e3b76e434b7
-  data.tar.gz: d6d71199c1fc0d27778d07888ecea49fbc16e33711741c9dfb29eb7496b3bf0e
+  metadata.gz: ddb99e141936ac88e36ddf58b662d42fea5bdf3c9efba7f49d278dc87052dab9
+  data.tar.gz: '0938f943bba5d36e839189709176567cf0e15dd17372c7952b176adc7990eb98'
 SHA512:
-  metadata.gz: fe44cfff47087f92184b7b5b14b66f72416ef748e1b09ba5fe0badecf4654c8d4af083ee11393ba421e4fbda596a01378ed027b272ce71f3073e4f052019f2a5
-  data.tar.gz: f17affdb8233040fe3c6eeab0895c44f6ffb85d9eb53353751738fbc0402e011249b96815a8bc62cca2a418ec234000677a6614fd038896781866aa68dfb297c
+  metadata.gz: 4be7aa4c497b937f372ad0e4f3c3480710cad03795e4eba873fe78fb691f86031b190257a532e17d26c1c500f63ba9f5a7a11d0c62c6d6aec037c1e691499b58
+  data.tar.gz: 955ca0c626071bc29ec6d71db8070af6aa3d525d8f65ee0a59cbaccd25e0e9d0b0bee196fbb87622c0eb73b6385b761bf18fa1345116b15565bf13cc0aaa4f7c

data/CHANGELOG.md

@@ -5,58 +5,48 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
-## [Unreleased]
+## [0.1.1] - 2026-04-10
+
+### Added
+- `WebhookProcessor` for parsing and verifying incoming Autentique webhook events,
+  including HMAC-SHA256 signature verification via the `X-Autentique-Signature` header
+- `documents.reject` for programmatically rejecting documents with an optional reason
+- `InvalidSignatureError` and `WebhookError` error classes
+- Comprehensive documentation split into `docs/` — documents, folders, webhooks,
+  and configuration reference
+
+### Changed
+- Webhook event types updated to Autentique's current dot-notation format
+  (`document.finished`, `signature.accepted`, etc.)
+- Document creation now accepts file input as a path, `File`, or `StringIO` —
+  `file_name` and `mime_type` kwargs removed from the public interface
+- README restructured to focus on quick start, with detailed reference moved to `docs/`
+- Improved test isolation for HTTP layer using `build_http_client` stub
+
+### Fixed
+- Duplicate file part bug in multipart body construction
+- `GraphQLDocumentsData` struct arity mismatch in test helpers
 
 ## [0.1.0] - 2025-01-25
 
-### Added
-- Initial release of the Autentique Ruby gem
-- Client class for API communication
-- Document resource with create, find, list, and delete operations
-- Folder resource for folder management
-- Model classes for Document, Signature, DocumentInput, and SignerInput
-- Full support for document creation with:
-  - Multiple signers
-  - Various authentication methods (email, SMS, WhatsApp)
-  - Security verifications (SMS, photo ID, biometric)
-  - Signature field positioning
-  - Advanced document configurations
-- Sandbox mode support for testing
-- Comprehensive error handling
-- Rate limit awareness (60 requests/minute)
-- Rails integration examples
-- Complete documentation and examples
-
-### Features
-- ✅ Create documents with file upload
-- ✅ Retrieve documents by ID
-- ✅ List documents with filters
-- ✅ Delete documents
-- ✅ Folder management (list, create, delete)
-- ✅ Support for all signer actions (SIGN, SIGN_AS_A_WITNESS, APPROVE, RECOGNIZE)
-- ✅ Multiple delivery methods (email, SMS, WhatsApp, link-based)
-- ✅ Security verifications
-- ✅ Signature field positioning
-- ✅ Document locale support
-- ✅ Sandbox mode
-- ✅ Comprehensive error handling
-
-### Dependencies
-- graphql-client ~> 0.18
-- mime-types ~> 3.0
-
-### Development Dependencies
-- rspec ~> 3.12
-- webmock ~> 3.18
-- vcr ~> 6.1
-- rubocop ~> 1.50
-
-## [0.0.1] - 2025-01-24
+Initial release. A lightweight, framework-agnostic Ruby client for the
+Autentique digital signature API, providing a clean idiomatic interface
+over Autentique's GraphQL API.
 
 ### Added
-- Project structure
-- Basic gem scaffolding
-
-[Unreleased]: https://github.com/yourusername/autentique-ruby/compare/v0.1.0...HEAD
-[0.1.0]: https://github.com/yourusername/autentique-ruby/releases/tag/v0.1.0
-[0.0.1]: https://github.com/yourusername/autentique-ruby/releases/tag/v0.0.1
+- `Autentique::Client` with global configuration and sandbox mode support
+- `client.documents` resource — create, find, list, pending, and delete
+- `client.folders` resource — list, create, and delete
+- Document creation supports multiple signers with email, SMS, WhatsApp,
+  and link-based delivery; all signer actions (SIGN, SIGN_AS_A_WITNESS,
+  APPROVE, RECOGNIZE); security verifications (SMS, photo ID, biometric,
+  SERPRO); signature field positioning; and advanced document configurations
+- `Autentique::Models::Document`, `Signature`, `DocumentInput`, and
+  `SignerInput` model classes for type safety
+- Structured error handling with `AuthenticationError`, `RateLimitError`,
+  `ValidationError`, `QueryError`, and `UploadError`
+- Runtime dependencies: `graphql-client ~> 0.18`, `mime-types ~> 3.0`
+
+## [Unreleased]: https://github.com/keithyoder/autentique-ruby/compare/v0.1.1...HEAD
+## [0.1.1]: https://github.com/keithyoder/autentique-ruby/compare/v0.1.0...v0.1.1
+## [0.1.0]: https://github.com/keithyoder/autentique-ruby/releases/tag/v0.1.0

data/README.md

@@ -1,291 +1,83 @@
 # Autentique Ruby Gem
 
-A Ruby client for the [Autentique](https://autentique.com.br/) digital signature API. This gem provides a clean, idiomatic Ruby interface to Autentique's GraphQL API for document signing and management.
+A Ruby client for the [Autentique](https://autentique.com.br/) digital signature API. This gem provides a clean, idiomatic interface to Autentique's GraphQL API for document signing and management.
 
 [![CI](https://github.com/keithyoder/autentique-ruby/actions/workflows/ci.yml/badge.svg?branch=main)](https://github.com/keithyoder/autentique-ruby/actions/workflows/ci.yml)
 [![Security](https://github.com/keithyoder/autentique-ruby/actions/workflows/security.yml/badge.svg?branch=main)](https://github.com/keithyoder/autentique-ruby/actions/workflows/security.yml)
-[![Gem Version](https://badge.fury.io/rb/nfcom.svg)](https://badge.fury.io/rb/autentique)
+[![Gem Version](https://badge.fury.io/rb/autentique.svg)](https://badge.fury.io/rb/autentique)
+[![Ruby](https://img.shields.io/badge/ruby-%3E%3D%202.7.0-ruby.svg)](https://www.ruby-lang.org)
 
 ## Features
 
-- 🔐 **Simple Authentication** - Easy API key configuration
-- 📄 **Document Management** - Create, retrieve, list, and delete documents
-- ✍️ **Flexible Signing** - Support for multiple signers with various authentication methods
-- 🏖️ **Sandbox Mode** - Test without consuming document credits
-- 🔍 **Advanced Queries** - Full GraphQL query support
-- 📁 **Folder Management** - Organize documents in folders
-- 🛡️ **Type Safety** - Model classes for structured data
-- ⚡ **Rate Limiting** - Built-in rate limit handling (60 requests/minute)
+- 🔐 **Simple Authentication** — Easy API key configuration
+- 📄 **Document Management** — Create, retrieve, list, and delete documents
+- ✍️ **Flexible Signing** — Multiple signers with various authentication methods
+- 📁 **Folder Management** — Organize documents in folders
+- 🪝 **Webhook Processing** — Verify and process incoming Autentique webhook events
+- 🏖️ **Sandbox Mode** — Test without consuming document credits
+- 🛡️ **Type Safety** — Model classes for structured data
 
 ## Installation
 
-Add this line to your application's Gemfile:
+Add to your Gemfile:
 
 ```ruby
 gem 'autentique'
 ```
 
-And then execute:
+Then run `bundle install`, or install directly with `gem install autentique`.
 
-```bash
-bundle install
-```
-
-Or install it yourself as:
-
-```bash
-gem install autentique
-```
-
-## Configuration
-
-### Using Environment Variables
+## Quick Start
 
 ```ruby
-# Set your API key as an environment variable
-ENV['AUTENTIQUE_API_KEY'] = 'your_api_key_here'
-
-# Create a client
 client = Autentique::Client.new(api_key: ENV['AUTENTIQUE_API_KEY'])
-```
-
-### Global Configuration
-
-```ruby
-Autentique.configure do |config|
-  config.api_key = 'your_api_key_here'
-  config.sandbox = false # Set to true for testing
-end
-
-# Use the configured client
-client = Autentique.client
-```
-
-### Direct Initialization
-
-```ruby
-client = Autentique::Client.new(
-  api_key: 'your_api_key_here',
-  sandbox: false
-)
-```
-
-## Usage
-
-### Creating Documents
-
-#### Basic Document Creation
-
-```ruby
-client = Autentique::Client.new(api_key: 'your_api_key')
 
+# Create a document
 document = client.documents.create(
   file: '/path/to/contract.pdf',
-  document: {
-    name: 'Employment Contract'
-  },
-  signers: [
-    {
-      email: 'employee@example.com',
-      action: 'SIGN'
-    }
-  ]
+  document: { name: 'Employment Contract' },
+  signers: [{ email: 'employee@example.com', action: 'SIGN' }]
 )
 
-puts "Document created: #{document.id}"
-puts "Signature link: #{document.signatures.first.short_link}"
-```
+puts document.id
+puts document.signatures.first.short_link
 
-#### Advanced Document Creation
+# Retrieve a document
+doc = client.documents.find('document-uuid')
+puts doc.signed? ? 'Signed' : 'Pending'
 
-```ruby
-document = client.documents.create(
-  file: File.open('/path/to/contract.pdf'),
-  document: {
-    name: 'Marketing Contract',
-    message: 'Please review and sign this contract',
-    reminder: 'WEEKLY',        # Send weekly reminders
-    sortable: true,            # Signers must sign in order
-    refusable: true,           # Allow document rejection
-    qualified: true,           # Enable qualified signatures
-    scrolling_required: true,  # Require full scroll before signing
-    stop_on_rejected: true,    # Stop process if rejected
-    new_signature_style: true, # Use new signature fields
-    deadline_at: '2025-12-31T23:59:59.999Z',
-    configs: {
-      notification_finished: true, # Notify when all signed
-      notification_signed: true,   # Notify signer after signing
-      signature_appearance: 'DRAW' # Force signature style
-    }
-  },
-  signers: [
-    {
-      email: 'signer1@example.com',
-      action: 'SIGN',
-      configs: { cpf: '12345678900' }, # Validate CPF
-      positions: [
-        { x: 5.0, y: 90.0, z: 1, element: 'SIGNATURE' }
-      ]
-    },
-    {
-      name: 'Witness Name',
-      action: 'SIGN_AS_A_WITNESS',
-      positions: [
-        { x: 75.0, y: 90.0, z: 1, element: 'NAME' }
-      ]
-    },
-    {
-      phone: '+5554999999999',
-      delivery_method: 'DELIVERY_METHOD_WHATSAPP',
-      action: 'SIGN',
-      security_verifications: [
-        { type: 'SMS', verify_phone: '+5554999999999' }
-      ]
-    }
-  ],
-  folder_id: 'folder-uuid' # Optional: organize in folder
+# Process an incoming webhook
+processor = Autentique::WebhookProcessor.new(
+  request.body.read,
+  secret: ENV['AUTENTIQUE_WEBHOOK_SECRET'],
+  signature: request.headers['X-Autentique-Signature']
 )
-```
-
-#### Document Actions
-
-Signers can perform different actions:
-- `SIGN` - Sign the document
-- `SIGN_AS_A_WITNESS` - Sign as a witness
-- `APPROVE` - Approve the document
-- `RECOGNIZE` - Acknowledge the document
-
-#### Delivery Methods
-
-For phone-based signers:
-- `DELIVERY_METHOD_WHATSAPP` - Send via WhatsApp
-- `DELIVERY_METHOD_SMS` - Send via SMS
-
-#### Security Verifications
-
-Add extra security layers:
-
-```ruby
-signers: [
-  {
-    email: 'signer@example.com',
-    action: 'SIGN',
-    security_verifications: [
-      { type: 'SMS', verify_phone: '+5554999999999' }, # SMS verification
-      { type: 'MANUAL' },                               # Manual photo ID approval
-      { type: 'UPLOAD' },                               # Photo ID upload
-      { type: 'LIVE' },                                 # Selfie + liveness check
-      { type: 'PF_FACIAL' },                           # SERPRO biometric
-      { type: 'BIOMETRIC_AND_TEXT_EXTRACTION' }        # Photo ID + facematch
-    ]
-  }
-]
-```
-
-### Retrieving Documents
-
-```ruby
-# Get a specific document
-document = client.documents.find('document-uuid')
-
-puts "Document: #{document.name}"
-puts "Status: #{document.signed? ? 'Signed' : 'Pending'}"
-
-document.signatures.each do |signature|
-  puts "Signer: #{signature.email}"
-  puts "Status: #{signature.signed? ? 'Signed' : 'Pending'}"
-  puts "Link: #{signature.short_link}" if signature.pending?
-end
-```
-
-### Listing Documents
 
-```ruby
-# List pending documents
-pending = client.documents.pending(limit: 20, page: 1)
-
-pending.each do |doc|
-  puts "#{doc.name} - #{doc.id}"
+processor.process do |event_type, data|
+  puts "#{event_type}: #{data['id']}"
 end
-
-# List all documents with filter
-signed_docs = client.documents.list(status: 'SIGNED', limit: 50)
-rejected_docs = client.documents.list(status: 'REJECTED')
-all_docs = client.documents.list(limit: 100)
-```
-
-### Deleting Documents
-
-```ruby
-client.documents.delete('document-uuid')
-```
-
-### Working with Folders
-
-```ruby
-# List folders
-folders = client.folders.list
-folders.each { |f| puts "#{f['name']} - #{f['id']}" }
-
-# Create a folder
-folder = client.folders.create(name: 'Contracts 2025')
-puts "Created folder: #{folder['id']}"
-
-# Delete a folder
-client.folders.delete(id: 'folder-uuid')
 ```
 
-### Sandbox Mode
+## Configuration
 
-Test without consuming document credits:
+### Environment variable
 
 ```ruby
-# Enable sandbox globally
-client = Autentique::Client.new(
-  api_key: 'your_api_key',
-  sandbox: true
-)
-
-# Or per request
-document = client.documents.create(
-  file: '/path/to/test.pdf',
-  document: { name: 'Test Doc' },
-  signers: [{ email: 'test@example.com', action: 'SIGN' }],
-  sandbox: true
-)
+client = Autentique::Client.new(api_key: ENV['AUTENTIQUE_API_KEY'])
 ```
 
-### Using Model Classes
-
-For better type safety and IDE support:
+### Global configuration (recommended for Rails)
 
 ```ruby
-# Use DocumentInput model
-doc_input = Autentique::Models::DocumentInput.new(
-  name: 'Contract',
-  reminder: 'WEEKLY',
-  refusable: true
-)
-
-# Use SignerInput model
-signer = Autentique::Models::SignerInput.new(
-  email: 'signer@example.com',
-  action: 'SIGN',
-  positions: [
-    { x: 10.0, y: 90.0, z: 1, element: 'SIGNATURE' }
-  ]
-)
+Autentique.configure do |config|
+  config.api_key = Rails.application.credentials.dig(:autentique, :api_key)
+  config.sandbox = Rails.env.development? || Rails.env.test?
+end
 
-document = client.documents.create(
-  file: 'contract.pdf',
-  document: doc_input,
-  signers: [signer]
-)
+client = Autentique.client
 ```
 
-### Rails Integration
-
-#### Initializer
+### Rails initializer
 
 Create `config/initializers/autentique.rb`:
 
@@ -296,209 +88,82 @@ Autentique.configure do |config|
 end
 ```
 
-#### In Your Models
-
-```ruby
-class Contrato < ApplicationRecord
-  belongs_to :pessoa
-  
-  def enviar_para_assinatura
-    client = Autentique.client
-    
-    documento = client.documents.create(
-      file: gerar_pdf,
-      document: {
-        name: "Contrato #{id}",
-        message: 'Por favor, assine este contrato'
-      },
-      signers: [
-        {
-          email: pessoa.email,
-          action: 'SIGN',
-          configs: { cpf: pessoa.cpf }
-        }
-      ]
-    )
-    
-    update(
-      documentos: (documentos || []) << {
-        'id' => documento.id,
-        'nome' => documento.name,
-        'data' => documento.created_at
-      }
-    )
-    
-    documento
-  end
-  
-  def verificar_assinatura(documento_id)
-    client = Autentique.client
-    documento = client.documents.find(documento_id)
-    
-    if documento.signed?
-      update(status: :assinado)
-    elsif documento.rejected?
-      update(status: :rejeitado)
-    end
-    
-    documento
-  end
-end
-```
-
-### Error Handling
+## Error Handling
 
 ```ruby
 begin
-  document = client.documents.create(
-    file: 'contract.pdf',
-    document: { name: 'Contract' },
-    signers: [{ email: 'invalid@email', action: 'SIGN' }]
-  )
+  document = client.documents.create(...)
 rescue Autentique::AuthenticationError => e
-  puts "Authentication failed: #{e.message}"
+  # Invalid or missing API key
 rescue Autentique::RateLimitError => e
-  puts "Rate limit exceeded: #{e.message}"
+  # 60 requests/minute limit exceeded
 rescue Autentique::ValidationError => e
-  puts "Validation error: #{e.message}"
+  # Invalid input
 rescue Autentique::QueryError => e
-  puts "Query failed: #{e.message}"
-  puts "Errors: #{e.errors.inspect}"
+  # GraphQL query failed — e.errors contains details
 rescue Autentique::UploadError => e
-  puts "Upload failed: #{e.message}"
+  # File upload failed
+rescue Autentique::InvalidSignatureError => e
+  # Webhook signature verification failed
+rescue Autentique::WebhookError => e
+  # Unknown webhook event type or processing error
 rescue Autentique::Error => e
-  puts "General error: #{e.message}"
+  # Base class for all gem errors
 end
 ```
 
-## API Coverage
-
-### Implemented
-
-- ✅ Create documents with file upload
-- ✅ Retrieve document by ID
-- ✅ List pending documents
-- ✅ List all documents with filters
-- ✅ Delete documents
-- ✅ List folders
-- ✅ Create folders
-- ✅ Delete folders
-- ✅ Sandbox mode support
-- ✅ All signer options
-- ✅ Security verifications
-- ✅ Signature positioning
-- ✅ Document configurations
-
-### Roadmap
-
-- ⏳ Webhooks support
-- ⏳ Document templates
-- ⏳ Bulk operations
-- ⏳ Organization management
-- ⏳ User management
-
-## Configuration Options
-
-### Document Options
-
-| Option | Type | Description |
-|--------|------|-------------|
-| `name` | String | Document name (required) |
-| `message` | String | Custom message for signers |
-| `reminder` | String | Reminder frequency (`WEEKLY`, `DAILY`) |
-| `sortable` | Boolean | Signers must sign in order |
-| `footer` | String | Footer position (`BOTTOM`, `LEFT`, `RIGHT`) |
-| `refusable` | Boolean | Allow document rejection |
-| `qualified` | Boolean | Enable qualified signatures |
-| `scrolling_required` | Boolean | Require full scroll before signing |
-| `stop_on_rejected` | Boolean | Stop when document is rejected |
-| `new_signature_style` | Boolean | Use new signature fields |
-| `show_audit_page` | Boolean | Show audit page |
-| `ignore_cpf` | Boolean | Don't require CPF |
-| `ignore_birthdate` | Boolean | Don't require birthdate |
-| `deadline_at` | DateTime | Signing deadline |
-
-### Signer Options
-
-| Option | Type | Description |
-|--------|------|-------------|
-| `email` | String | Signer's email |
-| `phone` | String | Signer's phone (for SMS/WhatsApp) |
-| `name` | String | Signer's name (for link-based signing) |
-| `action` | String | Action type (required) |
-| `delivery_method` | String | Delivery method for phone signers |
-| `configs` | Hash | Additional configs (e.g., CPF) |
-| `security_verifications` | Array | Security checks |
-| `positions` | Array | Signature field positions |
-
-## Rate Limiting
-
-The Autentique API has a rate limit of **60 requests per minute**. The gem automatically handles rate limit errors.
+## Documentation
+
+- [Documents](docs/documents.md) — creating, retrieving, listing, deleting, and rejecting documents
+- [Folders](docs/folders.md) — folder management
+- [Webhooks](docs/webhooks.md) — processing incoming webhook events
+- [Configuration Reference](docs/configuration.md) — all document and signer options
 
 ## Testing
 
 ```bash
-# Install dependencies
-bundle install
-
-# Run tests
 bundle exec rspec
-
-# Run with coverage
 COVERAGE=true bundle exec rspec
 ```
 
 ## Development
 
 ```bash
-# Clone the repository
-git clone https://github.com/yourusername/autentique-ruby.git
+git clone https://github.com/keithyoder/autentique-ruby.git
 cd autentique-ruby
-
-# Install dependencies
 bundle install
-
-# Run tests
 bundle exec rspec
-
-# Run console
-bin/console
-
-# Build gem
 gem build autentique.gemspec
-
-# Install locally
-gem install autentique-0.1.0.gem
 ```
 
 ## Contributing
 
 1. Fork the repository
-2. Create your feature branch (`git checkout -b feature/amazing-feature`)
-3. Commit your changes (`git commit -am 'Add amazing feature'`)
-4. Push to the branch (`git push origin feature/amazing-feature`)
+2. Create your feature branch (`git checkout -b feature/my-feature`)
+3. Commit your changes (`git commit -am 'Add my feature'`)
+4. Push to the branch (`git push origin feature/my-feature`)
 5. Open a Pull Request
 
 ## Resources
 
-- [Autentique Official Documentation](https://docs.autentique.com.br/api)
+- [Autentique API Documentation](https://docs.autentique.com.br/api)
 - [Autentique Dashboard](https://painel.autentique.com.br)
-- [GraphQL Altair Explorer](https://altair.autentique.com.br)
+- [GraphQL Explorer](https://altair.autentique.com.br)
 - [API Keys](https://painel.autentique.com.br/perfil/api)
 
 ## License
 
-This gem is available as open source under the terms of the [MIT License](LICENSE).
+Available as open source under the [MIT License](LICENSE).
 
 ## Acknowledgments
 
-This gem is not officially maintained by Autentique. It's a community-driven project to make integration easier for Ruby developers.
+This gem is not officially maintained by Autentique. It is a community-driven project to simplify Ruby integration with the Autentique API.
 
 ## Support
 
-- 🐛 Report bugs: [GitHub Issues](https://github.com/yourusername/autentique-ruby/issues)
-- 💬 Questions: [GitHub Discussions](https://github.com/yourusername/autentique-ruby/discussions)
+- 🐛 [Report bugs](https://github.com/keithyoder/autentique-ruby/issues)
+- 💬 [Ask questions](https://github.com/keithyoder/autentique-ruby/discussions)
 
 ## Changelog
 
-See [CHANGELOG.md](CHANGELOG.md) for a list of changes.
+See [CHANGELOG.md](CHANGELOG.md).

data/lib/autentique/errors.rb

@@ -28,4 +28,10 @@ module Autentique
       @errors = errors
     end
   end
+
+  # Raised when a webhook signature is invalid
+  class InvalidSignatureError < Error; end
+
+  # Raised for webhook processing errors
+  class WebhookError < Error; end
 end

data/lib/autentique/resources/documents/pending.rb

@@ -32,7 +32,9 @@ module Autentique
           result = client.query(query, variables: { limit: limit, page: page })
           raise QueryError.new('Query failed', result.errors.messages) if result.errors.any?
 
-          result.data.documents&.data&.map { |doc| Models::Document.new(doc.to_h) } || []
+          docs = result.data.documents&.data&.map { |doc| Models::Document.new(doc.to_h) } || []
+          total = result.data.documents&.total || 0
+          { documents: docs, total: total }
         end
       end
     end

data/lib/autentique/resources/documents/reject.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+module Autentique
+  module Resources
+    class Documents
+      module Reject
+        def reject(id, reason: nil)
+          query = client.graphql_client.parse <<~GRAPHQL
+            mutation($id: UUID!, $reason: String) {
+              rejectDocument(id: $id, reason: $reason)
+            }
+          GRAPHQL
+
+          variables = { id: id }
+          variables[:reason] = reason if reason
+
+          result = client.query(query, variables: variables)
+          raise QueryError.new('Query failed', result.errors.messages) if result.errors.any?
+
+          result.data.reject_document
+        end
+      end
+    end
+  end
+end

data/lib/autentique/resources/documents.rb

@@ -9,6 +9,7 @@ require_relative 'documents/find'
 require_relative 'documents/pending'
 require_relative 'documents/list'
 require_relative 'documents/delete'
+require_relative 'documents/reject'
 
 module Autentique
   module Resources
@@ -18,6 +19,7 @@ module Autentique
       include Documents::Pending
       include Documents::List
       include Documents::Delete
+      include Documents::Reject
 
       attr_reader :client
 

data/lib/autentique/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Autentique
-  VERSION = '0.1.0'
+  VERSION = '0.1.1'
 end

data/lib/autentique/webhook_processor.rb

@@ -0,0 +1,83 @@
+# frozen_string_literal: true
+
+require 'openssl'
+require 'json'
+
+module Autentique
+  class WebhookProcessor
+    SUPPORTED_EVENTS = %w[
+      document.created document.updated document.deleted document.finished
+      signature.created signature.updated signature.deleted signature.viewed
+      signature.accepted signature.rejected signature.biometric_approved
+      signature.biometric_unapproved signature.biometric_rejected signature.delivery_failed
+      member.created member.deleted
+    ].freeze
+
+    attr_reader :payload, :event_type
+
+    def initialize(body, secret: nil, signature: nil)
+      @secret = secret
+      @signature = signature
+      @payload = parse_payload(body)
+      @event_type = @payload['event']['type']
+    end
+
+    # Verify HMAC-SHA256 signature from the X-Autentique-Signature header
+    def valid_signature?
+      return true if @secret.nil?
+
+      expected = OpenSSL::HMAC.hexdigest('SHA256', @secret, @payload.to_json)
+      if defined?(ActiveSupport::SecurityUtils)
+        ActiveSupport::SecurityUtils.secure_compare(expected, @signature.to_s)
+      else
+        expected == @signature.to_s
+      end
+    rescue StandardError
+      false
+    end
+
+    # Process the webhook, yielding event_type and event data to the block
+    def process
+      raise InvalidSignatureError, 'Webhook signature verification failed' unless valid_signature?
+      raise WebhookError, "Unknown event: #{event_type}" unless SUPPORTED_EVENTS.include?(event_type)
+
+      yield(event_type, event_data) if block_given?
+    end
+
+    # The event object from the payload
+    def event
+      @payload['event']
+    end
+
+    # The data object from the event (the document, signature, or member)
+    def event_data
+      @payload['event']['data']
+    end
+
+    # The previous attributes for *.updated events
+    def previous_attributes
+      @payload['event']['previous_attributes']
+    end
+
+    # Convenience predicates
+    def document_event?
+      event_type.to_s.start_with?('document.')
+    end
+
+    def signature_event?
+      event_type.to_s.start_with?('signature.')
+    end
+
+    def member_event?
+      event_type.to_s.start_with?('member.')
+    end
+
+    private
+
+    def parse_payload(body)
+      JSON.parse(body)
+    rescue JSON::ParserError
+      raise ArgumentError, 'Invalid webhook payload: could not parse as JSON'
+    end
+  end
+end

data/lib/autentique.rb

@@ -7,6 +7,7 @@ require_relative 'autentique/models/document'
 require_relative 'autentique/resources'
 require_relative 'autentique/resources/documents'
 require_relative 'autentique/resources/folders'
+require_relative 'autentique/webhook_processor'
 
 # Main module for the Autentique gem
 #

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: autentique
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
 platform: ruby
 authors:
 - Keith Yoder
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2026-04-09 00:00:00.000000000 Z
+date: 2026-04-10 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: graphql-client
@@ -65,8 +65,10 @@ files:
 - lib/autentique/resources/documents/find.rb
 - lib/autentique/resources/documents/list.rb
 - lib/autentique/resources/documents/pending.rb
+- lib/autentique/resources/documents/reject.rb
 - lib/autentique/resources/folders.rb
 - lib/autentique/version.rb
+- lib/autentique/webhook_processor.rb
 homepage: https://github.com/keithyoder/autentique-ruby
 licenses:
 - MIT