candy_check 0.1.2 → 0.2.0

data/lib/candy_check/play_store/verifier.rb

@@ -1,69 +1,44 @@
 module CandyCheck
   module PlayStore
     # Verifies purchase tokens against the Google API.
-    # The call return either an {Receipt} or a {VerificationFailure}
+    # The call return either a {SubscriptionPurchases::SubscriptionPurchase} or a {VerificationFailure}
     class Verifier
-      # Error thrown when the verifier isn't booted before the first
-      # verification check or on double invocation
-      class BootRequiredError < RuntimeError; end
-
-      # @return [Config] the current configuration
-      attr_reader :config
-
-      # Initializes a new verifier for the application which is bound
-      # to a configuration
-      # @param config [Config]
-      def initialize(config)
-        @config = config
-      end
-
-      # Boot the module
-      def boot!
-        boot_error('You\'re only allowed to boot the verifier once') if booted?
-        @client = Client.new(config)
-        @client.boot!
+      # Initializes a new verifier which is bound to an authorization
+      # @param authorization [Google::Auth::ServiceAccountCredentials] to use against the PlayStore API
+      def initialize(authorization:)
+        @authorization = authorization
       end
 
       # Contacts the Google API and requests the product state
-      # @param package [String] to query
+      # @param package_name [String] to query
       # @param product_id [String] to query
       # @param token [String] to use for authentication
-      # @return [Receipt] if successful
+      # @return [ProductPurchases::ProductPurchase] if successful
       # @return [VerificationFailure] otherwise
-      def verify(package, product_id, token)
-        check_boot!
-        verification = Verification.new(@client, package, product_id, token)
-        verification.call!
+      def verify_product_purchase(package_name:, product_id:, token:)
+        verifier = CandyCheck::PlayStore::ProductPurchases::ProductVerification.new(
+          package_name: package_name,
+          product_id: product_id,
+          token: token,
+          authorization: @authorization,
+        )
+        verifier.call!
       end
 
       # Contacts the Google API and requests the product state
-      # @param package [String] to query
+      # @param package_name [String] to query
       # @param subscription_id [String] to query
       # @param token [String] to use for authentication
-      # @return [Receipt] if successful
+      # @return [SubscriptionPurchases::SubscriptionPurchase] if successful
       # @return [VerificationFailure] otherwise
-      def verify_subscription(package, subscription_id, token)
-        check_boot!
-        v = SubscriptionVerification.new(
-          @client, package, subscription_id, token
+      def verify_subscription_purchase(package_name:, subscription_id:, token:)
+        verifier = CandyCheck::PlayStore::SubscriptionPurchases::SubscriptionVerification.new(
+          package_name: package_name,
+          subscription_id: subscription_id,
+          token: token,
+          authorization: @authorization,
         )
-        v.call!
-      end
-
-      private
-
-      def booted?
-        instance_variable_defined?(:@client)
-      end
-
-      def check_boot!
-        return if booted?
-        boot_error 'You need to boot the verifier service first: '\
-                   'CandyCheck::PlayStore::Verifier#boot!'
-      end
-
-      def boot_error(message)
-        raise BootRequiredError, message
+        verifier.call!
       end
     end
   end

data/lib/candy_check/version.rb

@@ -1,4 +1,4 @@
 module CandyCheck
   # The current gem's version
-  VERSION = '0.1.2'.freeze
+  VERSION = "0.2.0".freeze
 end

data/spec/candy_check_spec.rb

@@ -1,9 +1,9 @@
-require 'spec_helper'
+require "spec_helper"
 
 describe CandyCheck do
   subject { CandyCheck }
 
-  it 'has a version' do
+  it "has a version" do
     subject::VERSION.wont_be_nil
   end
 end

data/spec/cli/commands/play_store_spec.rb

@@ -1,51 +1,18 @@
-require 'spec_helper'
+require "spec_helper"
 
 describe CandyCheck::CLI::Commands::PlayStore do
   include WithCommand
-  subject { CandyCheck::CLI::Commands::PlayStore }
-  let(:arguments) { [package, product_id, token, options] }
-  let(:package)    { 'the_package' }
-  let(:product_id) { 'the_product' }
-  let(:token)      { 'the_token' }
-  let(:options) do
-    {
-      application_name: 'YourApplication',
-      application_version: '1.0',
-      issuer: 'abcdefg@developer.gserviceaccount.com',
-      key_file: 'local/google.p12',
-      key_secret: 'notasecret'
-    }
-  end
+  subject { CandyCheck::CLI::Commands::PlayStore.new(package_name, product_id, token, "json_key_file" => json_key_file) }
+  let(:package_name) { "my_package_name" }
+  let(:product_id) { "my_product_id" }
+  let(:token) { "my_token" }
+  let(:json_key_file) { File.expand_path("../../fixtures/play_store/random_dummy_key.json", __dir__) }
 
-  before do
-    stub = proc do |*args|
-      @verifier = DummyPlayStoreVerifier.new(*args)
-    end
-    CandyCheck::PlayStore::Verifier.stub :new, stub do
+  it "calls and outputs the verifier" do
+    VCR.use_cassette("play_store/product_purchases/valid_but_not_consumed") do
       run_command!
-    end
-  end
-
-  it 'calls and outputs the verifier' do
-    options.each do |k, v|
-      @verifier.config.public_send(k).must_equal v
-    end
-    @verifier.arguments.must_equal [package, product_id, token]
-    out.must_be 'Hash:', result: :stubbed
-  end
-
-  private
-
-  DummyPlayStoreVerifier = Struct.new(:config) do
-    attr_reader :arguments, :booted
-
-    def boot!
-      @booted = true
-    end
-
-    def verify(*arguments)
-      @arguments = arguments
-      { result: :stubbed }
+      assert_equal "CandyCheck::PlayStore::ProductPurchases::ProductPurchase:", out.lines.first
+      assert_equal CandyCheck::PlayStore::ProductPurchases::ProductPurchase, out.lines[1].class
     end
   end
 end

data/spec/fixtures/play_store/random_dummy_key.json

@@ -0,0 +1,12 @@
+{
+  "type": "service_account",
+  "project_id": "example",
+  "private_key_id": "123456789",
+  "private_key": "-----BEGIN RSA PRIVATE KEY-----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\nfG7co6mKUGkFPtr48EMfeKY88BRsp3yGOsROGdDsCHItjOVH\n-----END RSA PRIVATE KEY-----\n",
+  "client_email": "info@example.com",
+  "client_id": "123456789",
+  "auth_uri": "https://accounts.google.com/o/oauth2/auth",
+  "token_uri": "https://oauth2.googleapis.com/token",
+  "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",
+  "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/example.iam.gserviceaccount.com"
+}

data/spec/fixtures/vcr_cassettes/play_store/product_purchases/permission_denied.yml

@@ -0,0 +1,196 @@
+---
+http_interactions:
+- request:
+    method: post
+    uri: https://www.googleapis.com/oauth2/v4/token
+    body:
+      encoding: ASCII-8BIT
+      string: params
+    headers:
+      User-Agent:
+      - Faraday v0.15.4
+      Content-Type:
+      - application/x-www-form-urlencoded
+      Accept-Encoding:
+      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
+      Accept:
+      - "*/*"
+  response:
+    status:
+      code: 200
+      message: OK
+    headers:
+      Content-Type:
+      - application/json; charset=utf-8
+      Vary:
+      - Origin
+      - Referer
+      - X-Origin
+      Date:
+      - Fri, 04 Oct 2019 13:11:23 GMT
+      Server:
+      - scaffolding on HTTPServer2
+      Cache-Control:
+      - private
+      X-Xss-Protection:
+      - '0'
+      X-Frame-Options:
+      - SAMEORIGIN
+      X-Content-Type-Options:
+      - nosniff
+      Alt-Svc:
+      - quic=":443"; ma=2592000; v="46,43",h3-Q048=":443"; ma=2592000,h3-Q046=":443";
+        ma=2592000,h3-Q043=":443"; ma=2592000
+      Transfer-Encoding:
+      - chunked
+    body:
+      encoding: ASCII-8BIT
+      string: |-
+        {
+          "access_token": "some token",
+          "expires_in": 3600,
+          "token_type": "Bearer"
+        }
+    http_version:
+  recorded_at: Fri, 04 Oct 2019 13:11:23 GMT
+- request:
+    method: get
+    uri: https://www.googleapis.com/androidpublisher/v3/applications/my_package_name/purchases/products/my_product_id/tokens/my_token
+    body:
+      encoding: UTF-8
+      string: ''
+    headers:
+      User-Agent:
+      - unknown/0.0.0 google-api-ruby-client/0.28.7 Linux/5.0.0-29-generic (gzip)
+      Accept:
+      - "*/*"
+      Accept-Encoding:
+      - gzip,deflate
+      Date:
+      - Fri, 04 Oct 2019 13:11:23 GMT
+      Authorization:
+      - Bearer some_token
+      Content-Type:
+      - application/x-www-form-urlencoded
+  response:
+    status:
+      code: 401
+      message: Unauthorized
+    headers:
+      Vary:
+      - Origin
+      - X-Origin
+      Www-Authenticate:
+      - Bearer realm="https://accounts.google.com/", error=invalid_token
+      Content-Type:
+      - application/json; charset=UTF-8
+      Content-Encoding:
+      - gzip
+      Date:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Expires:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Cache-Control:
+      - private, max-age=0
+      X-Content-Type-Options:
+      - nosniff
+      X-Frame-Options:
+      - SAMEORIGIN
+      X-Xss-Protection:
+      - 1; mode=block
+      Server:
+      - GSE
+      Alt-Svc:
+      - quic=":443"; ma=2592000; v="46,43",h3-Q048=":443"; ma=2592000,h3-Q046=":443";
+        ma=2592000,h3-Q043=":443"; ma=2592000
+      Transfer-Encoding:
+      - chunked
+    body:
+      encoding: UTF-8
+      string: |
+        {
+         "error": {
+          "errors": [
+           {
+            "domain": "androidpublisher",
+            "reason": "permissionDenied",
+            "message": "The current user has insufficient permissions to perform the requested operation."
+           }
+          ],
+          "code": 401,
+          "message": "The current user has insufficient permissions to perform the requested operation."
+         }
+        }
+    http_version:
+  recorded_at: Fri, 04 Oct 2019 13:11:24 GMT
+- request:
+    method: get
+    uri: https://www.googleapis.com/androidpublisher/v3/applications/my_package_name/purchases/products/my_product_id/tokens/my_token
+    body:
+      encoding: UTF-8
+      string: ''
+    headers:
+      User-Agent:
+      - unknown/0.0.0 google-api-ruby-client/0.28.7 Linux/5.0.0-29-generic (gzip)
+      Accept:
+      - "*/*"
+      Accept-Encoding:
+      - gzip,deflate
+      Date:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Authorization:
+      - Bearer some_token
+      Content-Type:
+      - application/x-www-form-urlencoded
+  response:
+    status:
+      code: 401
+      message: Unauthorized
+    headers:
+      Vary:
+      - Origin
+      - X-Origin
+      Www-Authenticate:
+      - Bearer realm="https://accounts.google.com/", error=invalid_token
+      Content-Type:
+      - application/json; charset=UTF-8
+      Content-Encoding:
+      - gzip
+      Date:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Expires:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Cache-Control:
+      - private, max-age=0
+      X-Content-Type-Options:
+      - nosniff
+      X-Frame-Options:
+      - SAMEORIGIN
+      X-Xss-Protection:
+      - 1; mode=block
+      Server:
+      - GSE
+      Alt-Svc:
+      - quic=":443"; ma=2592000; v="46,43",h3-Q048=":443"; ma=2592000,h3-Q046=":443";
+        ma=2592000,h3-Q043=":443"; ma=2592000
+      Transfer-Encoding:
+      - chunked
+    body:
+      encoding: UTF-8
+      string: |
+        {
+         "error": {
+          "errors": [
+           {
+            "domain": "androidpublisher",
+            "reason": "permissionDenied",
+            "message": "The current user has insufficient permissions to perform the requested operation."
+           }
+          ],
+          "code": 401,
+          "message": "The current user has insufficient permissions to perform the requested operation."
+         }
+        }
+    http_version:
+  recorded_at: Fri, 04 Oct 2019 13:11:24 GMT
+recorded_with: VCR 5.0.0

data/spec/fixtures/vcr_cassettes/play_store/product_purchases/response_with_empty_body.yml

@@ -0,0 +1,183 @@
+---
+http_interactions:
+- request:
+    method: post
+    uri: https://www.googleapis.com/oauth2/v4/token
+    body:
+      encoding: ASCII-8BIT
+      string: params
+    headers:
+      User-Agent:
+      - Faraday v0.15.4
+      Content-Type:
+      - application/x-www-form-urlencoded
+      Accept-Encoding:
+      - gzip;q=1.0,deflate;q=0.6,identity;q=0.3
+      Accept:
+      - "*/*"
+  response:
+    status:
+      code: 200
+      message: OK
+    headers:
+      Content-Type:
+      - application/json; charset=utf-8
+      Vary:
+      - Origin
+      - Referer
+      - X-Origin
+      Date:
+      - Fri, 04 Oct 2019 13:11:23 GMT
+      Server:
+      - scaffolding on HTTPServer2
+      Cache-Control:
+      - private
+      X-Xss-Protection:
+      - '0'
+      X-Frame-Options:
+      - SAMEORIGIN
+      X-Content-Type-Options:
+      - nosniff
+      Alt-Svc:
+      - quic=":443"; ma=2592000; v="46,43",h3-Q048=":443"; ma=2592000,h3-Q046=":443";
+        ma=2592000,h3-Q043=":443"; ma=2592000
+      Transfer-Encoding:
+      - chunked
+    body:
+      encoding: ASCII-8BIT
+      string: |-
+        {
+          "access_token": "some token",
+          "expires_in": 3600,
+          "token_type": "Bearer"
+        }
+    http_version:
+  recorded_at: Fri, 04 Oct 2019 13:11:23 GMT
+- request:
+    method: get
+    uri: https://www.googleapis.com/androidpublisher/v3/applications/my_package_name/purchases/products/my_product_id/tokens/my_token
+    body:
+      encoding: UTF-8
+      string: ''
+    headers:
+      User-Agent:
+      - unknown/0.0.0 google-api-ruby-client/0.28.7 Linux/5.0.0-29-generic (gzip)
+      Accept:
+      - "*/*"
+      Accept-Encoding:
+      - gzip,deflate
+      Date:
+      - Fri, 04 Oct 2019 13:11:23 GMT
+      Authorization:
+      - Bearer some_token
+      Content-Type:
+      - application/x-www-form-urlencoded
+  response:
+    status:
+      code: 401
+      message: Unauthorized
+    headers:
+      Vary:
+      - Origin
+      - X-Origin
+      Www-Authenticate:
+      - Bearer realm="https://accounts.google.com/", error=invalid_token
+      Content-Type:
+      - application/json; charset=UTF-8
+      Content-Encoding:
+      - gzip
+      Date:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Expires:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Cache-Control:
+      - private, max-age=0
+      X-Content-Type-Options:
+      - nosniff
+      X-Frame-Options:
+      - SAMEORIGIN
+      X-Xss-Protection:
+      - 1; mode=block
+      Server:
+      - GSE
+      Alt-Svc:
+      - quic=":443"; ma=2592000; v="46,43",h3-Q048=":443"; ma=2592000,h3-Q046=":443";
+        ma=2592000,h3-Q043=":443"; ma=2592000
+      Transfer-Encoding:
+      - chunked
+    body:
+      encoding: UTF-8
+      string: |
+        {
+         "error": {
+          "errors": [
+           {
+            "domain": "androidpublisher",
+            "reason": "permissionDenied",
+            "message": "The current user has insufficient permissions to perform the requested operation."
+           }
+          ],
+          "code": 401,
+          "message": "The current user has insufficient permissions to perform the requested operation."
+         }
+        }
+    http_version:
+  recorded_at: Fri, 04 Oct 2019 13:11:24 GMT
+- request:
+    method: get
+    uri: https://www.googleapis.com/androidpublisher/v3/applications/my_package_name/purchases/products/my_product_id/tokens/my_token
+    body:
+      encoding: UTF-8
+      string: ''
+    headers:
+      User-Agent:
+      - unknown/0.0.0 google-api-ruby-client/0.28.7 Linux/5.0.0-29-generic (gzip)
+      Accept:
+      - "*/*"
+      Accept-Encoding:
+      - gzip,deflate
+      Date:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Authorization:
+      - Bearer some_token
+      Content-Type:
+      - application/x-www-form-urlencoded
+  response:
+    status:
+      code: 401
+      message: Unauthorized
+    headers:
+      Vary:
+      - Origin
+      - X-Origin
+      Www-Authenticate:
+      - Bearer realm="https://accounts.google.com/", error=invalid_token
+      Content-Type:
+      - application/json; charset=UTF-8
+      Content-Encoding:
+      - gzip
+      Date:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Expires:
+      - Fri, 04 Oct 2019 13:11:24 GMT
+      Cache-Control:
+      - private, max-age=0
+      X-Content-Type-Options:
+      - nosniff
+      X-Frame-Options:
+      - SAMEORIGIN
+      X-Xss-Protection:
+      - 1; mode=block
+      Server:
+      - GSE
+      Alt-Svc:
+      - quic=":443"; ma=2592000; v="46,43",h3-Q048=":443"; ma=2592000,h3-Q046=":443";
+        ma=2592000,h3-Q043=":443"; ma=2592000
+      Transfer-Encoding:
+      - chunked
+    body:
+      encoding: UTF-8
+      string: {}
+    http_version:
+  recorded_at: Fri, 04 Oct 2019 13:11:24 GMT
+recorded_with: VCR 5.0.0