RubyGems - autosign - Versions diffs - 0.1.1 → 1.0.1 - Mend

autosign 0.1.1 → 1.0.1

Files changed (36) hide show

checksums.yaml +5 -5
data/.rubocop.yml +12 -0
data/.rubocop_todo.yml +659 -0
data/.travis.yml +4 -5
data/CHANGELOG.md +56 -0
data/Gemfile.lock +107 -89
data/LICENSE +201 -0
data/README.md +37 -0
data/Rakefile +22 -22
data/autosign.gemspec +24 -20
data/bin/autosign +23 -15
data/bin/autosign-validator +14 -6
data/lib/autosign.rb +1 -1
data/lib/autosign/config.rb +71 -56
data/lib/autosign/decoder.rb +7 -3
data/lib/autosign/journal.rb +2 -2
data/lib/autosign/token.rb +7 -7
data/lib/autosign/validator.rb +34 -197
data/lib/autosign/{validators → validator}/jwt.rb +41 -42
data/lib/autosign/{validators → validator}/multiplexer.rb +24 -32
data/lib/autosign/{validators → validator}/passwordlist.rb +16 -17
data/lib/autosign/validator/validator_base.rb +168 -0
data/lib/autosign/version.rb +1 -1
metadata +78 -74
data/features/autosign.feature +0 -93
data/features/step_definitions/autosign_steps.rb +0 -44
data/features/support/env.rb +0 -17
data/features/validate.feature +0 -22
data/fixtures/i-7672fe81.pem +0 -34
data/spec/spec_helper.rb +0 -102
data/spec/specs/config_spec.rb +0 -20
data/spec/specs/decoder_spec.rb +0 -16
data/spec/specs/journal_spec.rb +0 -41
data/spec/specs/token_spec.rb +0 -102
data/spec/specs/validators/jwt_spec.rb +0 -69
data/spec/specs/validators/passwordlist_spec.rb +0 -51

data/spec/specs/validators/jwt_spec.rb DELETED

@@ -1,69 +0,0 @@
-require 'spec_helper'
-require 'securerandom'
-context Autosign::Validators::JWT do
-  let(:certname)  { 'host.example.com' }
-  let(:validator) { Autosign::Validators::JWT.new }
-  let(:one_time_token) { Autosign::Token.new('foo.example.com', false, 3600, 'rspec_test', 'secret').sign }
-  let(:reusable_token) { Autosign::Token.new('foo.example.com',  true, 3600, 'rspec_test', 'secret').sign }
-  let(:expired_token)  { Autosign::Token.new('foo.example.com',  true,   -1, 'rspec_test', 'secret').sign }
-  before {
-    # stub configuration
-    data = { 'general' => {
-               'loglevel' => :debug,
-               'logfile'  => '/tmp/autosign.log'
-               },
-             'jwt_token' => {
-                'secret' => 'secret',
-                'validity' => 3600,
-                'journalfile' => '/tmp/autosign.journal'
-               }
-             }
-    allow_any_instance_of(Autosign::Config).to receive(:settings).and_return(data)
-  }
-  context 'class methods' do
-    describe '.new' do
-      it 'requires no parameters' do
-        expect { Autosign::Validators::JWT.new() }.to_not raise_error
-      end
-    end
-  end
-  context 'instance methods' do
-    describe '.name' do
-      it 'returns a string' do
-        expect(validator.name).to be_a(String)
-      end
-      it 'returns the string "jwt_token"' do
-        expect(validator.name).to eq('jwt_token')
-      end
-    end
-    describe '.validate' do
-      it 'validates a JWT token' do
-        expect(validator.validate(one_time_token, 'foo.example.com', 'dummy_csr_data')).to be true
-      end
-      it 'does not validate a token with the wrong hostname' do
-        expect(validator.validate(one_time_token, 'wrong.example.com', 'dummy_csr_data')).to be false
-      end
-      it 'does not validate an expired token' do
-        expect(validator.validate(expired_token, 'foo.example.com', 'dummy_csr_data')).to be false
-      end
-      it 'does not validate an invalid token' do
-        expect(validator.validate(SecureRandom.urlsafe_base64(200), 'foo.example.com', 'dummy_csr_data')).to be false
-      end
-      it 'does not validate a re-used one-time token' do
-        expect(validator.validate(one_time_token, 'foo.example.com', 'dummy_csr_data')).to be true
-        expect(validator.validate(one_time_token, 'foo.example.com', 'dummy_csr_data')).to be false
-      end
-      it 'does validate a re-used re-usable token' do
-        expect(validator.validate(reusable_token, 'foo.example.com', 'dummy_csr_data')).to be true
-        expect(validator.validate(reusable_token, 'foo.example.com', 'dummy_csr_data')).to be true
-      end
-    end
-  end
-end

data/spec/specs/validators/passwordlist_spec.rb DELETED

@@ -1,51 +0,0 @@
-require 'spec_helper'
-require 'securerandom'
-context Autosign::Validators::Passwordlist do
-  let(:certname)  { 'host.example.com' }
-  let(:validator) { Autosign::Validators::Passwordlist.new }
-  before {
-    # stub configuration
-    data = { 'general' => {
-               'loglevel' => :debug,
-               'logfile'  => '/tmp/autosign.log'
-               },
-             'password_list' => {
-                'password' => ['hunter2', 'opensesame', 'CPE1704TKS']
-               }
-             }
-    allow_any_instance_of(Autosign::Config).to receive(:settings).and_return(data)
-  }
-  context 'class methods' do
-    describe '.new' do
-      it 'requires no parameters' do
-        expect { Autosign::Validators::Passwordlist.new() }.to_not raise_error
-      end
-    end
-  end
-  context 'instance methods' do
-    describe '.name' do
-      it 'returns a string' do
-        expect(validator.name).to be_a(String)
-      end
-      it 'returns the string "password_list"' do
-        expect(validator.name).to eq('password_list')
-      end
-    end
-    describe '.validate' do
-      it 'validates a request with a valid password' do
-        expect(validator.validate('hunter2', 'foo.example.com', 'dummy_csr_data')).to be true
-        expect(validator.validate('opensesame', 'foo.example.com', 'dummy_csr_data')).to be true
-        expect(validator.validate('CPE1704TKS', 'foo.example.com', 'dummy_csr_data')).to be true
-      end
-      it 'does not validate a request with an invalid password' do
-        expect(validator.validate('bad_password', 'foo.example.com', 'dummy_csr_data')).to be false
-        expect(validator.validate('', 'foo.example.com', 'dummy_csr_data')).to be false
-      end
-    end
-  end
-end