duse 0.0.2

data/lib/duse/version.rb

@@ -0,0 +1,3 @@
+module Duse
+  VERSION = '0.0.2'
+end

data/spec/cli/cli_config_spec.rb

@@ -0,0 +1,49 @@
+require 'duse/cli/cli_config'
+
+RSpec.describe Duse::CLIConfig do
+  describe '.load' do
+    context 'config file does not exist' do
+      it 'returns an empty hash' do
+        config = Duse::CLIConfig.load
+        expect(config).to eq Hash.new
+      end
+    end
+
+    context 'valid config file' do
+      it 'correctly loads the config file' do
+        config = { 'uri' => 'https://duse.io/' }
+        FileUtils.mkdir_p Duse::CLIConfig.config_dir
+        File.open(Duse::CLIConfig.config_file, 'w') do |f|
+          f.write config.to_yaml
+          f.chmod 0600
+        end
+
+        expect(Duse::CLIConfig.load).to eq config
+      end
+    end
+
+    context 'malformed config file' do
+      it 'uses an empty config when config is malformatted' do
+        FileUtils.mkdir_p Duse::CLIConfig.config_dir
+        File.open(Duse::CLIConfig.config_file, 'w') do |f|
+          f.write 'not yaml content'
+          f.chmod 0600
+        end
+
+        expect(Duse::CLIConfig.load).to eq Hash.new
+      end
+    end
+  end
+
+  describe '.save' do
+    it 'builds the config file correctly' do
+      config = Duse::CLIConfig.new
+      config.uri = 'https://duse.io/'
+      Duse::CLIConfig.save(config)
+
+      expect(File.exist? Duse::CLIConfig.config_file).to be true
+      expected_file_content = "---\nuri: https://duse.io/\n"
+      expect(File.read Duse::CLIConfig.config_file).to eq expected_file_content
+    end
+  end
+end

data/spec/cli/commands/account_spec.rb

@@ -0,0 +1,45 @@
+RSpec.describe 'duse account' do
+  before :each do
+    FileUtils.mkdir_p Duse::CLIConfig.config_dir
+    open(Duse::CLIConfig.config_file, 'w') do |f|
+      f.puts '---'
+      f.puts 'uri: https://example.com/'
+      f.puts 'token: token'
+    end
+  end
+
+  it 'prints info about its subcommands' do
+    expect(run_cli('account').success?).to be true
+    expect(last_run.out).to include('duse account COMMAND')
+  end
+
+  describe 'confirm' do
+  end
+
+  describe 'resend-confirmation' do
+  end
+
+  describe 'info' do
+    context 'if logged in' do
+      it 'prints the current users account information' do
+        stub_user_me_get
+
+        expect(run_cli('account', 'info').success?).to be true
+        expect(last_run.out).to eq [
+          "\nUsername: flower-pot\n",
+          "Email:    flower-pot@example.org\n"
+        ].join
+      end
+    end
+  end
+
+  describe 'update' do
+  end
+
+  describe 'password' do
+    it 'prints info about its subcommands' do
+      expect(run_cli('account', 'password').success?).to be true
+      expect(last_run.out).to include('duse account password COMMAND')
+    end
+  end
+end

data/spec/cli/commands/config_spec.rb

@@ -0,0 +1,17 @@
+describe 'duse config' do
+  context 'false uri provided' do
+    it 'errors with a message' do
+      expect(run_cli('config') { |i| i.puts('test') }.err).to eq(
+        "Not an uri\n"
+      )
+    end
+  end
+
+  context 'correct uri provided' do
+    it 'accepts it' do
+      run = run_cli('config') { |i| i.puts('https://duse.io/') }
+      expect(run.err).to eq('')
+      expect(run.success?).to be true
+    end
+  end
+end

data/spec/cli/commands/login_spec.rb

@@ -0,0 +1,51 @@
+describe 'duse login' do
+  before :each do
+    FileUtils.mkdir_p Duse::CLIConfig.config_dir
+    open(Duse::CLIConfig.config_file, 'w') do |f|
+      f.puts '---'
+      f.puts 'uri: https://example.com/'
+    end
+  end
+
+  context 'correct credentials' do
+    it 'writes the auth token in the config file' do
+      open(File.join(Duse::CLIConfig.config_dir, 'flower-pot'), 'w') do |f|
+        f.puts "-----BEGIN RSA PRIVATE KEY-----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\nLZRZUZLlAdJORX177Ief6MWqgXldlcP1N7mzWskE\n-----END RSA PRIVATE KEY-----\n"
+      end
+      stub_user_me_get
+      stub_request(:post, "https://example.com/users/token").
+        with(body: {username: "flower-pot", password: "Passw0rd!"}.to_json,
+             headers: {'Accept'=>'application/vnd.duse.1+json', 'Content-Type'=>'application/json'}).
+        to_return(status: 201, body: { api_token: 'token' }.to_json, headers: {})
+
+      expect(run_cli('login') do |i|
+        i.puts 'flower-pot'
+        i.puts 'Passw0rd!'
+      end.success?).to be true
+
+      expect(File.read Duse::CLIConfig.config_file).to eq(
+        "---\nuri: https://example.com/\ntoken: token\n"
+      )
+    end
+  end
+
+  context 'incorrect credentials' do
+    it 'errors with a message' do
+      stub_request(:post, "https://example.com/users/token").
+        with(body: {username: "flower-pot", password: "wrong password"}.to_json,
+             headers: {'Accept'=>'application/vnd.duse.1+json', 'Content-Type'=>'application/json'}).
+        to_return(status: 401, body: "", headers: {})
+
+      expect(run_cli('login') do |i|
+        i.puts 'flower-pot'
+        i.puts 'wrong password'
+      end.err).to eq(
+        "Wrong username or password!\n"
+      )
+
+      expect(File.read Duse::CLIConfig.config_file).to eq(
+        "---\nuri: https://example.com/\n"
+      )
+    end
+  end
+end

data/spec/cli/commands/register_spec.rb

@@ -0,0 +1,38 @@
+describe 'duse register' do
+  before :each do
+    FileUtils.mkdir_p Duse::CLIConfig.config_dir
+
+    open(Duse::CLIConfig.config_file, 'w') do |f|
+      f.puts '---'
+      f.puts 'uri: https://example.com/'
+    end
+    public_key_file = File.expand_path('~/.ssh/id_rsa.pub')
+    FileUtils.rm_rf   File.dirname(public_key_file)
+    FileUtils.mkdir_p File.dirname(public_key_file)
+    open(public_key_file, 'w') do |f|
+      f.puts "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAAAgQCtaAORZpFJ037AN1Drm88TLYyZy+vLyVZr9XKPfMUF/KCHEsT1gJfQYFRI7t/gHjL3VouKM10671f/g8s5t1hWHF6YOvaFTd3yDXAkf86x5jrPBrIH6M3M5WOwwqwW9aRF22CFzlBoCoV4GQt4KhRzqrG2kRJULsBuT9TiHCKEPw== RSA-1024"
+    end
+  end
+
+  context 'if all user inputs are valid' do
+    it 'registers successfully' do
+      stub_request(:post, "https://example.com/users").
+        with(headers: {'Accept'=>'application/vnd.duse.1+json', 'Content-Type'=>'application/json'}).
+        to_return(status: 201, body: {
+          'id' => 2,
+          'username' => 'flower-pot',
+          'email' => 'flower-pot@example.org',
+          'public_key' => "-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCftZvHkB6uKWVDvrIzmy2p496H\nv9PD/hhRk+DSXcE/CPtRmvYZzbWbbBup9hkvhyH/P1O5EF8KSZm4Cdnz6p37idTe\nNdlaH9cRFV2wc2A/hbg2kaISxrDxUqRbywBE9NOBSjXu2wRpy0TMo85eM2A0E2ET\n2XM6tZcuwFULX6bl8QIDAQAB\n-----END PUBLIC KEY-----\n",
+          'url' => 'https://example.com/users/2'
+        }.to_json , headers: {})
+
+      expect(run_cli('register') do |i|
+        i.puts 'flower-pot'
+        i.puts 'fbranczyk@gmail.com'
+        i.puts 'Passw0rd!'
+        i.puts 'Passw0rd!'
+        i.puts '1'
+      end.success?).to be true
+    end
+  end
+end

data/spec/cli/commands/secret_spec.rb

@@ -0,0 +1,142 @@
+RSpec.describe 'duse secret' do
+  before :each do
+    FileUtils.mkdir_p Duse::CLIConfig.config_dir
+    open(Duse::CLIConfig.config_file, 'w') do |f|
+      f.puts '---'
+      f.puts 'uri: https://example.com/'
+      f.puts 'token: token'
+    end
+    open(Duse::CLIConfig.new.private_key_file_for(OpenStruct.new(username: 'flower-pot')), 'w') do |f|
+      f.puts "-----BEGIN RSA PRIVATE KEY-----"
+      f.puts "MIICWgIBAAKBgQCftZvHkB6uKWVDvrIzmy2p496Hv9PD/hhRk+DSXcE/CPtRmvYZ"
+      f.puts "zbWbbBup9hkvhyH/P1O5EF8KSZm4Cdnz6p37idTeNdlaH9cRFV2wc2A/hbg2kaIS"
+      f.puts "xrDxUqRbywBE9NOBSjXu2wRpy0TMo85eM2A0E2ET2XM6tZcuwFULX6bl8QIDAQAB"
+      f.puts "AoGAEJwyt26lwjdL8N/EaNmaxjCM1FF/FMM4hEN8/mQB1Sx59uLG9agPWzrDJcoS"
+      f.puts "lH7ZalKLwpORTuCYvCtKH7Qm+fgnjKl/qyn6/cDmtk6VtJvPjQGi3oh2eRIMcwZv"
+      f.puts "va+NQLF11bm0kVtZG5viIKlb1snHzkpPjFAOPBqQj2FNdgECQQDQdHWC5XYww2RQ"
+      f.puts "/FpRBacJPIxb8PAwb7+EjqJSaruGO9CtLiDiCzlmidGP0Q++zwjAxksSqP4qkr6k"
+      f.puts "pKvDqkydAkEAxCLuq0c+6gnE9X1PUy4Bl/hUOxrk3ZQRCMUCE4XB8mNmJTLNY43O"
+      f.puts "cY7Z1sdaCu7pAiGxQqojUYgwFACGmbOcZQJAZAvg8mfq59B/bxcOyeAqoRY8T0w+"
+      f.puts "GyEnDBng8iljwzMmHlgLVDIK5Jm0yI+QPQXkr5D8KwKMqiYv9ZlLDufHSQJAJs9i"
+      f.puts "urGWWWkleA4brDHmTtPsluVzdATgegPBrWtCPVw90g6DZbehqgbCRCWeQ5uSr8FK"
+      f.puts "+g4AfxmbqdmQyMkpoQI/HvHjjPB9a/2qkpyjeiJIx2gmCmhBke9V/b3XFGBy3ci7"
+      f.puts "LZRZUZLlAdJORX177Ief6MWqgXldlcP1N7mzWskE"
+      f.puts "-----END RSA PRIVATE KEY-----"
+    end
+  end
+
+  describe 'get' do
+    context 'provide secret id from the call' do
+      it 'takes the secrets id from the cli call and does not ask for it' do
+        stub_secret_get
+        stub_user_me_get
+        stub_server_user_get
+        expect(run_cli('secret', 'get', '1').out).to eq(
+          "\nName:   test\nSecret: test\nAccess: server, flower-pot\n"
+        )
+      end
+
+      it 'outputs the secret content plaintext when using the plain flag' do
+        stub_secret_get
+        stub_user_me_get
+        stub_server_user_get
+        expect(run_cli('secret', 'get', '1', '--plain').out).to eq("test")
+      end
+    end
+
+    context 'secret does not exist' do
+      it 'shows an error message when getting not existant secrets' do
+        stub_request(:get, "https://example.com/secrets/2").
+          with(headers: {'Accept'=>'application/vnd.duse.1+json', 'Authorization'=>'token'}).
+          to_return(status: 404, body: { message: 'Not found' }.to_json)
+
+        expect(run_cli('secret', 'get', '2').err).to eq(
+          "Not found\n"
+        )
+      end
+    end
+
+    context 'secret exists' do
+      it 'asks for the secret id' do
+        stub_secret_get
+        stub_user_me_get
+        stub_server_user_get
+        expect(run_cli('secret', 'get') { |i| i.puts('1') }.out).to eq(
+          "Secret to retrieve: \nName:   test\nSecret: test\nAccess: server, flower-pot\n"
+        )
+      end
+    end
+  end
+
+  describe 'list' do
+    it 'lists secrets' do
+      stub_get_secrets
+
+      expect(run_cli('secret', 'list').out).to eq(
+        "1: test\n"
+      )
+    end
+  end
+
+  describe 'delete' do
+    it 'deletes the provided secret id' do
+      stub_request(:delete, "https://example.com/secrets/1").
+        with(headers: {'Accept'=>'application/vnd.duse.1+json', 'Authorization'=>'token'}).
+        to_return(status: 204, body: "", headers: {})
+
+      expect(run_cli('secret', 'remove', '1').success?).to be true
+    end
+  end
+
+  describe 'add' do
+    context 'minimal users' do
+      it 'can create a secret' do
+        stub_get_users
+        stub_user_me_get
+        stub_server_user_get
+        stub_create_secret
+
+        expect(run_cli('secret', 'add') do |i|
+          i.puts 'test'
+          i.puts 'test'
+          i.puts 'n'
+        end.success?).to be true
+      end
+    end
+
+    context 'multiple users' do
+      it 'can create a secret with multiple users' do
+        stub_get_users
+        stub_user_me_get
+        stub_server_user_get
+        stub_get_other_user
+        stub_create_secret
+
+        expect(run_cli('secret', 'add') do |i|
+          i.puts 'test'
+          i.puts 'test'
+          i.puts 'Y'
+          i.puts '1'
+        end.success?).to be true
+      end
+    end
+
+    context 'invalid user input' do
+      it 'repeats asking for a users selection if the previous selection was invalid' do
+        stub_get_users
+        stub_user_me_get
+        stub_server_user_get
+        stub_get_other_user
+        stub_create_secret
+
+        expect(run_cli('secret', 'add') do |i|
+          i.puts 'test'
+          i.puts 'test'
+          i.puts 'Y'
+          i.puts '3'
+          i.puts '1'
+        end.success?).to be true
+      end
+    end
+  end
+end

data/spec/client/secret_marshaller_spec.rb

@@ -0,0 +1,32 @@
+RSpec.describe Duse::Client::SecretMarshaller do
+  before :each do
+    Duse.config = Duse::CLIConfig.new({ 'uri' => 'https://example.com/' })
+  end
+
+  describe '#to_h' do
+    context 'own and server user' do
+      it 'marshalls a secret without errors' do
+        private_key = OpenSSL::PKey::RSA.new "-----BEGIN RSA PRIVATE KEY-----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\nLZRZUZLlAdJORX177Ief6MWqgXldlcP1N7mzWskE\n-----END RSA PRIVATE KEY-----\n"
+        current_user = OpenStruct.new public_key: OpenSSL::PKey::RSA.new("-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCftZvHkB6uKWVDvrIzmy2p496H\nv9PD/hhRk+DSXcE/CPtRmvYZzbWbbBup9hkvhyH/P1O5EF8KSZm4Cdnz6p37idTe\nNdlaH9cRFV2wc2A/hbg2kaISxrDxUqRbywBE9NOBSjXu2wRpy0TMo85eM2A0E2ET\n2XM6tZcuwFULX6bl8QIDAQAB\n-----END PUBLIC KEY-----\n")
+        server_user = OpenStruct.new public_key: OpenSSL::PKey::RSA.new("-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDC8Z1K4aCksOb6rsbKNcF4fNcN\n1Tbyv+ids751YvmfU2WHDXB3wIVoN1YRdb8Dk8608YlGAAqVaGVwfgYdyLMppIGs\nglZIMjwZFM2F84T4swKOEJJx6o3ZCRnP9ZQcceqzcIuTjiIqC7xu+QOvtADAMW68\nzZIpFOHjjiuxkA7PQQIDAQAB\n-----END PUBLIC KEY-----\n")
+        secret_text = "-----BEGIN RSA PRIVATE KEY-----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\nLZRZUZLlAdJORX177Ief6MWqgXldlcP1N7mzWskE\n-----END RSA PRIVATE KEY-----\n"
+        secret = Duse::Client::Secret.new title: 'test', secret_text: secret_text, users: [current_user, server_user]
+        Duse::Client::SecretMarshaller.new(secret, private_key).to_h
+      end
+    end
+
+    context 'own, server user and another user' do
+      it 'marshalls a secret with more users than self and server without errors' do
+        private_key = OpenSSL::PKey::RSA.new "-----BEGIN RSA PRIVATE KEY-----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\nLZRZUZLlAdJORX177Ief6MWqgXldlcP1N7mzWskE\n-----END RSA PRIVATE KEY-----\n"
+        current_user = OpenStruct.new public_key: OpenSSL::PKey::RSA.new("-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCftZvHkB6uKWVDvrIzmy2p496H\nv9PD/hhRk+DSXcE/CPtRmvYZzbWbbBup9hkvhyH/P1O5EF8KSZm4Cdnz6p37idTe\nNdlaH9cRFV2wc2A/hbg2kaISxrDxUqRbywBE9NOBSjXu2wRpy0TMo85eM2A0E2ET\n2XM6tZcuwFULX6bl8QIDAQAB\n-----END PUBLIC KEY-----\n")
+        server_user  = OpenStruct.new public_key: OpenSSL::PKey::RSA.new("-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDC8Z1K4aCksOb6rsbKNcF4fNcN\n1Tbyv+ids751YvmfU2WHDXB3wIVoN1YRdb8Dk8608YlGAAqVaGVwfgYdyLMppIGs\nglZIMjwZFM2F84T4swKOEJJx6o3ZCRnP9ZQcceqzcIuTjiIqC7xu+QOvtADAMW68\nzZIpFOHjjiuxkA7PQQIDAQAB\n-----END PUBLIC KEY-----\n")
+        other_user   = OpenStruct.new public_key: OpenSSL::PKey::RSA.new("-----BEGIN PUBLIC KEY-----\nMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDTF2gEqXRy2hJ6+xjj6IbzAgHG\nHvnLNnZlwkYm0ZV89uiPxL9mKYNiW4KA1azZlvJZviTF4218WAwO1IGIH+PppdXF\nIK8vmB6IIaQcO4UTjSA6ZTn8Uwf1fwS4EAuL3Zr3IVdjVYQ4+/ZNtmSyVMmo+7zP\nyOa31hUhDNYrJO1iEQIDAQAB\n-----END PUBLIC KEY-----\n")
+        secret_text  = "-----BEGIN RSA PRIVATE KEY-----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\nLZRZUZLlAdJORX177Ief6MWqgXldlcP1N7mzWskE\n-----END RSA PRIVATE KEY-----\n"
+        secret = Duse::Client::Secret.new title: 'test', secret_text: secret_text, users: [other_user, current_user, server_user]
+
+        Duse::Client::SecretMarshaller.new(secret, private_key).to_h
+      end
+    end
+  end
+end
+

data/spec/client/secret_spec.rb

@@ -0,0 +1,96 @@
+RSpec.describe Duse::Client::Secret do
+  before :each do
+    Duse.config = Duse::CLIConfig.new({ 'uri' => 'https://example.com/'})
+  end
+
+  describe '.all' do
+    it 'loads a users secrets without shares' do
+      stub_get_secrets
+      secrets = Duse::Secret.all
+
+      expect(secrets.length).to eq 1
+      expect(secrets.class).to be Array
+      secrets.each do |secret|
+        expect(secret.class).to be Duse::Client::Secret
+      end
+      secret = secrets.first
+      expect(secret.title).to eq 'test'
+      expect(secret.attributes['shares']).to eq nil
+    end
+  end
+
+  describe '.find' do
+    context 'secret exists' do
+      it 'loads a single secret with shares' do
+        stub_secret_get
+        private_key = OpenSSL::PKey::RSA.new "-----BEGIN RSA PRIVATE KEY-----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\nLZRZUZLlAdJORX177Ief6MWqgXldlcP1N7mzWskE\n-----END RSA PRIVATE KEY-----\n"
+
+        secret = Duse::Secret.find 1
+
+        expect(secret.title).to eq 'test'
+        expect(secret.decrypt(private_key)).to eq 'test'
+      end
+    end
+
+    context 'secret does not exist' do
+      it 'raises an exception when requesting a non existant secret' do
+        stub_request(:get, "https://example.com/secrets/2").
+          with(headers: {'Accept'=>'application/vnd.duse.1+json'}).
+          to_return(status: 404, body: "", headers: {})
+        expect { Duse::Secret.find 2 }.to raise_error Duse::Client::NotFound
+      end
+    end
+  end
+
+  describe '#delete' do
+    it 'deletes an existing secret by id' do
+      stub_secret_delete
+      Duse::Secret.delete 1
+    end
+  end
+
+  describe '.delete' do
+    it 'can delete a previously retrieved secret' do
+      stub_secret_get
+      stub_secret_delete
+      secret = Duse::Secret.find 1
+      secret.delete
+    end
+  end
+
+  describe '.create' do
+    it 'builds a secret' do
+      stub_create_secret
+      private_key = OpenSSL::PKey::RSA.new "-----BEGIN RSA PRIVATE KEY-----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\nLZRZUZLlAdJORX177Ief6MWqgXldlcP1N7mzWskE\n-----END RSA PRIVATE KEY-----\n"
+
+      secret = Duse::Secret.create({
+        title: 'test',
+        parts: [[
+          {
+            user_id: 'server',
+            content: "T6BKRp0U41zRRZ2NSRPwpJW7NjsSZaJ1eSSdtYNjchscXb5UIEqzSr/+B6Zy\nJ8JUA9CPrad+Z6s1CNNPGN6sJKtdAtzk+zJr5vTeg/4Aw42799A8cFPw/fE9\nd5K+IIYjn4Yxtypcv0I2j+dYsgDvN+mhosZ21cdibfX5PyyibuA=\n",
+            signature: "XBMWwpKyO5K+S1dimX/7aZ4oX7dW5SDlf4KaagYUBoVm7ii7jX9jfLKWqrRL\nj2f85JYMSUQ3UoXVWT1LDWXXZIs3KO02xlvA+oflmx5ZSGx57TDvuYpusEBu\n/LNSpNj6ooROXTm+Xq+AvQfmt0bjQZCg/PSOt8Qx11q5JLmhL38=\n"
+          },
+          {
+            user_id: 'me',
+            content: "XMcasmkkD0eOB52ilT3sGUOy9ehHpsuIFnbmErKLsTq0PExcvSuGT6RwMKjE\nM3rS7Lu2nHgWm0IPSzi5Vd8ieJTgyayYgT9VCOOnKGqfAMmCpV0WrHpfNwLu\nUgH7VC3Wfk1F+6yzWAFOoYXBDUuIRRau4uswCpedp1pe3csmO+I=\n",
+            signature: "dAhhcWeebiE5E9jfhexu+/zem1emWG2vBQed06f4CJJ24xrWDwUgX9kggHka\nsOWgu/RnCN/qzIuN8XCPgh2I1zQegd9d5FdAHUqXJRgpT2bvmAYPZ6DM6UYs\nB8OJ7+QgQy9EahTfhfbrSKuqtnX9103ftTZtiGagzFdYi5ylMNM=\n"
+          }
+        ]]
+      })
+
+      expect(secret.title).to eq 'test'
+      expect(secret.decrypt(private_key)).to eq 'test'
+    end
+  end
+
+  it 'can handle any utf-8 character' do
+    encoded_secret = Duse::Encryption.encode('äõüß')
+    shares = SecretSharing.split_secret(encoded_secret, 2, 2)
+    private_key = OpenSSL::PKey::RSA.new(1024)
+    shares = shares.map { |p| Duse::Encryption.encrypt(private_key, private_key.public_key, p)[0] }
+    secret = Duse::Client::Secret.new(parts: [shares])
+    secret_text = secret.decrypt(private_key)
+    expect(secret_text).to eq 'äõüß'
+  end
+end