RubyGems - cwt - Versions diffs - 0.1.0 → 0.2.0 - Mend

Files changed (15) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: dc08b2ccb9b61d7e9ffd292da8e37211263caffb525ea113d82988d41cb82327
-  data.tar.gz: 76246d7f2fd7a52256aaaf0a83e59c3b00464ef056c57b8cbd8b436ced963180
+  metadata.gz: 6870c9bcd5189270ba3e8a52322cb14db72a00e5a6997826b06cec285ffb5e91
+  data.tar.gz: 0c16ef24fb68ad2aa392c685817be3cefdd2d9e01573397d488b5aa0da05228b
 SHA512:
-  metadata.gz: 495b1ec645639816439cc09e6e34f974a89e94205f97fce1868bee4f234d5073447a61f393275dba49ea22a91c83c9a8cef839855db7c029ba7d2b7c393f62d7
-  data.tar.gz: bd93b9fd4666b106d2446d6d45cc7a3b4acd3f3a81a7552f8f07226e51a9dd7f8a37caa6fc761c4cc5f42ce9ef70089e0bd2c904b9ddd97c26b3d1728a1dcb08
+  metadata.gz: 8193d39b90ff7a7e5b3894726f8f3d1552591b66f017bc5d830db1f34b07431ae59b4d5fba9292ba979bc0b3a7f1ff2fd43ee28060e38f90788534c38509b690
+  data.tar.gz: 25e2cb0e949780342cf8310f502fa62a0981c2444521803183d7969329065323f03b145532305ca5ae42d3855697cbe68c41a2be9c927ff86e6f3dd384493669

data/.gitignore CHANGED Viewed

@@ -11,3 +11,4 @@
 .rspec_status
 /Gemfile.lock
+/.byebug_history

data/.rubocop.yml ADDED Viewed

@@ -0,0 +1,36 @@
+require:
+  - rubocop-performance
+AllCops:
+  TargetRubyVersion: 2.6
+  DisabledByDefault: true
+Bundler:
+  Enabled: true
+Gemspec:
+  Enabled: true
+Layout:
+  Enabled: true
+Lint:
+  Enabled: true
+Metrics/LineLength:
+  Max: 120
+Naming:
+  Enabled: true
+Performance:
+  Enabled: true
+Security:
+  Enabled: true
+Style/FrozenStringLiteralComment:
+  Enabled: true
+Style/HashSyntax:
+  Enabled: true

data/.travis.yml CHANGED Viewed

@@ -1,5 +1,8 @@
+---
 sudo: false
 language: ruby
+cache: bundler
 rvm:
-  - 2.5.1
-before_install: gem install bundler -v 1.16.2
+  - 2.6.4
+  - 2.5.6
+before_install: gem install bundler -v 2.0.2

data/CHANGELOG.md CHANGED Viewed

@@ -1,9 +1,9 @@
 # Changelog
-## [Unreleased]
+## [v0.2.0] - 2019-08-31
 ### Added
-- Validates the token is a valid CBOR map
+- `CWT.decode` can decode a signed CWT
-[Unreleased]: https://github.com/cedarcode/cwt-ruby/compare/5e30d7d10803ba0ba52c2a6638ddf0b889b9bb53...HEAD/
+[v0.2.0]: https://github.com/cedarcode/cwt-ruby/compare/9985bac0a1ffe5c5d4d3d7330a453b65f71a148f...v0.2.0/

data/Gemfile CHANGED Viewed

@@ -1,6 +1,6 @@
-source "https://rubygems.org"
+# frozen_string_literal: true
-git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
+source "https://rubygems.org"
 # Specify your gem's dependencies in cwt.gemspec
 gemspec

data/LICENSE.txt CHANGED Viewed

@@ -1,6 +1,6 @@
 The MIT License (MIT)
-Copyright (c) 2018 Gonzalo
+Copyright (c) 2019 Gonzalo Rodriguez
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/README.md CHANGED Viewed

@@ -1,8 +1,6 @@
-# Cwt
+# cwt-ruby
-Welcome to your new gem! In this directory, you'll find the files you need to be able to package up your Ruby library into a gem. Put your Ruby code in the file `lib/cwt`. To experiment with that code, run `bin/console` for an interactive prompt.
-TODO: Delete this and the text above, and describe your gem
+Ruby implementation of RFC 8392 CBOR Web Token (CWT)
 ## Installation
@@ -22,7 +20,18 @@ Or install it yourself as:
 ## Usage
-TODO: Write usage instructions here
+```ruby
+cwt = CWT.decode(data, cose_key)
+# Read claims
+cwt.iss
+cwt.sub
+cwt.aud
+cwt.exp
+cwt.nbf
+cwt.iat
+cwt.cti
+```
 ## Development
@@ -32,7 +41,7 @@ To install this gem onto your local machine, run `bundle exec rake install`. To
 ## Contributing
-Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/cwt.
+Bug reports and pull requests are welcome on GitHub at https://github.com/cedarcode/cwt-ruby.
 ## License

data/Rakefile CHANGED Viewed

@@ -1,6 +1,8 @@
+# frozen_string_literal: true
 require "bundler/gem_tasks"
 require "rspec/core/rake_task"
 RSpec::Core::RakeTask.new(:spec)
-task :default => :spec
+task default: :spec

data/bin/console CHANGED Viewed

@@ -1,4 +1,5 @@
 #!/usr/bin/env ruby
+# frozen_string_literal: true
 require "bundler/setup"
 require "cwt"

data/cwt.gemspec CHANGED Viewed

@@ -1,4 +1,6 @@
-lib = File.expand_path("../lib", __FILE__)
+# frozen_string_literal: true
+lib = File.expand_path("lib", __dir__)
 $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 require "cwt/version"
@@ -8,21 +10,30 @@ Gem::Specification.new do |spec|
   spec.authors       = ["Gonzalo Rodriguez"]
   spec.email         = ["gonzalo@cedarcode.com"]
-  spec.summary       = %q{CWT in ruby}
+  spec.summary       = "Ruby implementation of RFC 8392 CBOR Web Token (CWT)"
+  spec.homepage      = "https://github.com/cedarcode/cwt-ruby"
   spec.license       = "MIT"
+  spec.metadata["homepage_uri"] = spec.homepage
+  spec.metadata["source_code_uri"] = spec.homepage
+  spec.metadata["changelog_uri"] = spec.homepage
   # Specify which files should be added to the gem when it is released.
   # The `git ls-files -z` loads the files in the RubyGem that have been added into git.
-  spec.files         = Dir.chdir(File.expand_path('..', __FILE__)) do
+  spec.files = Dir.chdir(File.expand_path('..', __FILE__)) do
     `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
   end
   spec.bindir        = "exe"
   spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
   spec.require_paths = ["lib"]
-  spec.add_runtime_dependency "cbor"
+  spec.add_dependency "cose", "~> 0.9.0"
-  spec.add_development_dependency "bundler", "~> 1.16"
-  spec.add_development_dependency "rake", "~> 10.0"
-  spec.add_development_dependency "rspec", "~> 3.0"
+  spec.add_development_dependency "bundler", "~> 2.0"
+  spec.add_development_dependency "byebug", "~> 11.0"
+  spec.add_development_dependency "rake", "~> 12.3"
+  spec.add_development_dependency "rspec", "~> 3.8"
+  spec.add_development_dependency "rubocop", "~> 0.74.0"
+  spec.add_development_dependency "rubocop-performance", "~> 1.4"
 end

data/lib/cwt/claims_set.rb ADDED Viewed

@@ -0,0 +1,43 @@
+# frozen_string_literal: true
+require "cbor"
+module CWT
+  class ClaimsSet
+    LABEL_ISS = 1
+    LABEL_SUB = 2
+    LABEL_AUD = 3
+    LABEL_EXP = 4
+    LABEL_NBF = 5
+    LABEL_IAT = 6
+    LABEL_CTI = 7
+    def self.from_cbor(cbor)
+      from_map(CBOR.decode(cbor))
+    end
+    def self.from_map(map)
+      new(
+        iss: map[LABEL_ISS],
+        sub: map[LABEL_SUB],
+        aud: map[LABEL_AUD],
+        exp: map[LABEL_EXP],
+        nbf: map[LABEL_NBF],
+        iat: map[LABEL_IAT],
+        cti: map[LABEL_CTI]
+      )
+    end
+    attr_reader :iss, :sub, :aud, :exp, :nbf, :iat, :cti
+    def initialize(iss:, sub:, aud:, exp:, nbf:, iat:, cti:)
+      @iss = iss
+      @sub = sub
+      @aud = aud
+      @exp = exp
+      @nbf = nbf
+      @iat = iat
+      @cti = cti
+    end
+  end
+end

data/lib/cwt/version.rb CHANGED Viewed

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
 module CWT
-  VERSION = "0.1.0"
+  VERSION = "0.2.0"
 end

data/lib/cwt.rb CHANGED Viewed

@@ -1,10 +1,21 @@
+# frozen_string_literal: true
+require "cose/key"
+require "cose/sign1"
+require "cwt/claims_set"
 require "cwt/version"
 module CWT
-  def self.validate(token)
-    begin
-      CBOR.decode(token)
-    rescue
+  class Error < StandardError; end
+  def self.decode(token, public_key)
+    key = COSE::Key.deserialize(public_key)
+    sign1 = COSE::Sign1.deserialize(token)
+    if sign1.verify(key)
+      CWT::ClaimsSet.from_cbor(sign1.payload)
+    else
+      raise(CWT::Error, "Verification failed")
     end
   end
 end

metadata CHANGED Viewed

@@ -1,71 +1,113 @@
 --- !ruby/object:Gem::Specification
 name: cwt
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.0
 platform: ruby
 authors:
 - Gonzalo Rodriguez
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2018-08-18 00:00:00.000000000 Z
+date: 2019-08-31 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
-  name: cbor
+  name: cose
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 0.9.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ">="
+    - - "~>"
       - !ruby/object:Gem::Version
-        version: '0'
+        version: 0.9.0
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.16'
+        version: '2.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '11.0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.16'
+        version: '11.0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '12.3'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '12.3'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '3.8'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.8'
+- !ruby/object:Gem::Dependency
+  name: rubocop
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.74.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.74.0
+- !ruby/object:Gem::Dependency
+  name: rubocop-performance
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.4'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '3.0'
+        version: '1.4'
 description:
 email:
 - gonzalo@cedarcode.com
@@ -75,6 +117,7 @@ extra_rdoc_files: []
 files:
 - ".gitignore"
 - ".rspec"
+- ".rubocop.yml"
 - ".travis.yml"
 - CHANGELOG.md
 - Gemfile
@@ -85,11 +128,15 @@ files:
 - bin/setup
 - cwt.gemspec
 - lib/cwt.rb
+- lib/cwt/claims_set.rb
 - lib/cwt/version.rb
-homepage:
+homepage: https://github.com/cedarcode/cwt-ruby
 licenses:
 - MIT
-metadata: {}
+metadata:
+  homepage_uri: https://github.com/cedarcode/cwt-ruby
+  source_code_uri: https://github.com/cedarcode/cwt-ruby
+  changelog_uri: https://github.com/cedarcode/cwt-ruby
 post_install_message:
 rdoc_options: []
 require_paths:
@@ -105,9 +152,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project:
-rubygems_version: 2.7.7
+rubygems_version: 3.0.6
 signing_key:
 specification_version: 4
-summary: CWT in ruby
+summary: Ruby implementation of RFC 8392 CBOR Web Token (CWT)
 test_files: []

cwt 0.1.0 → 0.2.0