china_sms 0.0.3 → 0.0.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 5451fdea00e162bca4570ec3e03d6e8c1a7d9585
-  data.tar.gz: 982919da3acb9039d0f674e41f47778fa1da9c9c
+  metadata.gz: 0682a63cc1c257496c8e30315a28f8b563926fce
+  data.tar.gz: 4304a39419ef792e4aab1027a1ab4bd9ecce173e
 SHA512:
-  metadata.gz: 119821e27f6959a1b17a48eacecce1fa00f17d9180bfe0118944c5d150935fcc461669d66fa44e130dfc0a9a0f8249cebb89240ff93e6227dc7a146e29cd0134
-  data.tar.gz: 6c91a813cf3f8b38e68b2a285273a1f8df88acb714741c7bcafb5a7d9605adb7debf27f013ce3faa9c9becff4ee21448d194416e11a2343153fc52e66e2faeb0
+  metadata.gz: 7c3af2e58182cdf2d478d5e123a7a783075e4bb7aaee4e1e0f43ef3996fbb2cc3c06dbab30fa849cb332c8a5b930d3fa463697e013bf26872a0bec66c4a0d02b
+  data.tar.gz: c87be6268b368e0934fad98d9b0a989af38323610446daccfadaa2bb08f78918e3fa792be2eae3f59c3665b89d7dd4d77575e89ec1010b03386a3a21339774a7

data/README.md

@@ -6,7 +6,7 @@
 
 所有短信平台都禁止发送私人短信，并要求在短信内容末尾加上签名后缀，如【19屋】
 
-* [推立方](http://tui3.com/) 专注于注册校验码等实时应用，需要[配置内容格式和签名](http://www.tui3.com/Members/smsconfigv2/)，会自动在短信加上签名后缀
+* [推立方](http://tui3.com/) 专注于注册校验码等实时应用，需要[配置内容格式和签名](http://www.tui3.com/Members/smsconfigv2/)，会自动在短信加上签名后缀。短信计数：移动/联通每条短信的最大长度为64字符，电信每条最大长度60字符（半角、全角各算一个）。超过该长度后，短信后面自动增加分页信息(x/y),此时，每条短信最大长度需要再减3（不超过10页）
 * [短信宝](http://www.smsbao.com/)
 * [畅友网络](http://www.chanyoo.cn/) 群发短信需要半小时左右的时间审核，星期五等繁忙时段会有几个小时的延时，不适合发送注册校验码等实时短信，单次最多发送500个号码
 
@@ -33,3 +33,10 @@
 ChinaSMS.use :tui3, username: 'YOUR_USERNAME', password: 'YOUR_PASSWORD'
 ChinaSMS.to '13912345678', '[Test]China SMS gem has been released.'
 ```
+
+## 安全性
+
+在安全性方面，很多接口都是使用用户登录明文密码，推立方 和 短信宝 要好一些。
+
+* **推立方**，不使用登录密码，而是由系统自动生成一长串 API_KEY，专用于接口调用
+* **短信宝**，使用登录密码，但在调用时要先转成 MD5

data/lib/china_sms/service/tui3.rb

@@ -9,7 +9,9 @@ module ChinaSMS
       def to(phone, content, options)
         phones = Array(phone).join(',')
         res = Net::HTTP.post_form(URI.parse(URL), k: options[:password], t: phones, c: content, p: 1, r: 'json')
-        result JSON[res.body]
+        body = res.body
+        body = "{\"err_code\": 2, \"err_msg\":\"非法apikey:#{options[:password]}\"}" if body == 'invalid parameters'
+        result JSON[body]
       end
 
       def result(body)

data/lib/china_sms/version.rb

@@ -1,3 +1,3 @@
 module ChinaSMS
-  VERSION = "0.0.3"
+  VERSION = "0.0.4"
 end

data/spec/service/tui3_spec.rb

@@ -3,11 +3,10 @@ require 'spec_helper'
 
 describe "Tui3" do
   describe "#to" do
-    let(:username) { 'saberma' }
-    let(:password) { '666666' }
+    let(:password) { '50e7a3smdl521942ea38dnf4b58c5e6b' }
     let(:url) { "http://tui3.com/api/send/" }
     let(:content) { '推立方测试：深圳 Rubyist 活动时间变更到明天下午 7:00，请留意。' }
-    subject { ChinaSMS::Service::Tui3.to phone, content, username: username, password: password }
+    subject { ChinaSMS::Service::Tui3.to phone, content, password: password }
     describe 'single phone' do
       let(:phone) { '13928452841' }
       before do
@@ -31,5 +30,16 @@ describe "Tui3" do
       its([:code]) { should eql 0 }
       its([:message]) { should eql "操作成功！" }
     end
+    context 'invalid key' do
+      let(:phone) { '13928452841' }
+      let(:password) { '666666' }
+      before do
+        stub_request(:post, url).
+          with(body: {k: password, t: phone, c: content, p: '1', r: 'json'}).
+          to_return(body: 'invalid parameters' )
+      end
+      its([:success]) { should eql false }
+      its([:message]) { should eql "非法apikey:#{password}" }
+    end
   end
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: china_sms
 version: !ruby/object:Gem::Version
-  version: 0.0.3
+  version: 0.0.4
 platform: ruby
 authors:
 - saberma
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-07-03 00:00:00.000000000 Z
+date: 2013-07-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler