easy_code_sign 0.1.0

data/plugin/templates/popup.css

@@ -0,0 +1,223 @@
+/* EasySign Popup Styles */
+
+:root {
+  --primary-color: #2563eb;
+  --primary-hover: #1d4ed8;
+  --danger-color: #dc2626;
+  --success-color: #16a34a;
+  --text-color: #1f2937;
+  --text-muted: #6b7280;
+  --bg-color: #ffffff;
+  --bg-secondary: #f3f4f6;
+  --border-color: #e5e7eb;
+  --border-radius: 8px;
+  --shadow: 0 1px 3px rgba(0, 0, 0, 0.1);
+}
+
+* {
+  box-sizing: border-box;
+  margin: 0;
+  padding: 0;
+}
+
+body {
+  font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen, Ubuntu, Cantarell, sans-serif;
+  font-size: 14px;
+  line-height: 1.5;
+  color: var(--text-color);
+  background: var(--bg-color);
+  width: 320px;
+  min-height: 280px;
+}
+
+.container {
+  display: flex;
+  flex-direction: column;
+  min-height: 280px;
+}
+
+/* Header */
+.header {
+  padding: 12px 16px;
+  border-bottom: 1px solid var(--border-color);
+  background: var(--bg-secondary);
+}
+
+.logo {
+  display: flex;
+  align-items: center;
+  gap: 8px;
+  color: var(--primary-color);
+  font-weight: 600;
+  font-size: 16px;
+}
+
+.logo svg {
+  flex-shrink: 0;
+}
+
+/* Main content */
+.main {
+  flex: 1;
+  padding: 16px;
+  display: flex;
+  flex-direction: column;
+  gap: 16px;
+}
+
+.main h2 {
+  font-size: 18px;
+  font-weight: 600;
+  color: var(--text-color);
+}
+
+/* Context info */
+.context {
+  background: var(--bg-secondary);
+  border-radius: var(--border-radius);
+  padding: 12px;
+}
+
+.context-row {
+  display: flex;
+  align-items: center;
+  gap: 8px;
+}
+
+.context-row + .context-row {
+  margin-top: 8px;
+}
+
+.context-label {
+  color: var(--text-muted);
+  font-size: 12px;
+}
+
+.context-value {
+  font-size: 13px;
+  color: var(--text-color);
+  word-break: break-all;
+}
+
+.context-value.status {
+  color: var(--text-muted);
+  font-style: italic;
+}
+
+/* Form */
+.form {
+  display: flex;
+  flex-direction: column;
+  gap: 8px;
+}
+
+.label {
+  font-size: 13px;
+  font-weight: 500;
+  color: var(--text-color);
+}
+
+.pin-input {
+  width: 100%;
+  padding: 10px 12px;
+  font-size: 16px;
+  border: 1px solid var(--border-color);
+  border-radius: var(--border-radius);
+  outline: none;
+  transition: border-color 0.2s, box-shadow 0.2s;
+}
+
+.pin-input:focus {
+  border-color: var(--primary-color);
+  box-shadow: 0 0 0 3px rgba(37, 99, 235, 0.1);
+}
+
+.pin-input:disabled {
+  background: var(--bg-secondary);
+  cursor: not-allowed;
+}
+
+.pin-input::placeholder {
+  color: var(--text-muted);
+}
+
+/* Error message */
+.error {
+  color: var(--danger-color);
+  font-size: 13px;
+  padding: 8px 12px;
+  background: rgba(220, 38, 38, 0.1);
+  border-radius: var(--border-radius);
+}
+
+/* Action buttons */
+.actions {
+  display: flex;
+  gap: 12px;
+  margin-top: auto;
+}
+
+.btn {
+  flex: 1;
+  padding: 10px 16px;
+  font-size: 14px;
+  font-weight: 500;
+  border: none;
+  border-radius: var(--border-radius);
+  cursor: pointer;
+  transition: background-color 0.2s, opacity 0.2s;
+}
+
+.btn:disabled {
+  opacity: 0.6;
+  cursor: not-allowed;
+}
+
+.btn-primary {
+  background: var(--primary-color);
+  color: white;
+}
+
+.btn-primary:hover:not(:disabled) {
+  background: var(--primary-hover);
+}
+
+.btn-secondary {
+  background: var(--bg-secondary);
+  color: var(--text-color);
+  border: 1px solid var(--border-color);
+}
+
+.btn-secondary:hover:not(:disabled) {
+  background: var(--border-color);
+}
+
+/* Footer */
+.footer {
+  padding: 8px 16px;
+  border-top: 1px solid var(--border-color);
+  text-align: center;
+}
+
+.footer-text {
+  font-size: 11px;
+  color: var(--text-muted);
+}
+
+/* Loading state */
+.loading .pin-input,
+.loading .btn {
+  pointer-events: none;
+  opacity: 0.6;
+}
+
+/* Animations */
+@keyframes shake {
+  0%, 100% { transform: translateX(0); }
+  20%, 60% { transform: translateX(-5px); }
+  40%, 80% { transform: translateX(5px); }
+}
+
+.shake {
+  animation: shake 0.4s ease-in-out;
+}

data/plugin/templates/popup.html

@@ -0,0 +1,59 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+  <meta charset="UTF-8">
+  <meta name="viewport" content="width=device-width, initial-scale=1.0">
+  <title>EasySign - Enter PIN</title>
+  <link rel="stylesheet" href="popup.css">
+</head>
+<body>
+  <div class="container">
+    <header class="header">
+      <div class="logo">
+        <svg width="24" height="24" viewBox="0 0 24 24" fill="none" xmlns="http://www.w3.org/2000/svg">
+          <path d="M9 12L11 14L15 10M21 12C21 16.9706 16.9706 21 12 21C7.02944 21 3 16.9706 3 12C3 7.02944 7.02944 3 12 3C16.9706 3 21 7.02944 21 12Z" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"/>
+        </svg>
+        <span>EasySign</span>
+      </div>
+    </header>
+
+    <main class="main">
+      <h2>Sign Document</h2>
+
+      <div class="context">
+        <div class="context-row">
+          <span class="context-label">Website:</span>
+          <span id="origin-text" class="context-value">-</span>
+        </div>
+        <div class="context-row">
+          <span id="status-text" class="context-value status">Ready to sign</span>
+        </div>
+      </div>
+
+      <div class="form">
+        <label for="pin-input" class="label">Enter your token PIN:</label>
+        <input
+          type="password"
+          id="pin-input"
+          class="pin-input"
+          placeholder="PIN"
+          autocomplete="off"
+          autofocus
+        >
+        <div id="error-text" class="error" style="display: none;"></div>
+      </div>
+
+      <div class="actions">
+        <button id="cancel-btn" class="btn btn-secondary">Cancel</button>
+        <button id="submit-btn" class="btn btn-primary">Sign</button>
+      </div>
+    </main>
+
+    <footer class="footer">
+      <span class="footer-text">Your PIN is never stored</span>
+    </footer>
+  </div>
+
+  <script src="popup.js"></script>
+</body>
+</html>

data/sig/easy_code_sign.rbs

@@ -0,0 +1,4 @@
+module EasyCodeSign
+  VERSION: String
+  # See the writing guide of rbs: https://github.com/ruby/rbs#guides
+end

data/test/easy_code_sign_test.rb

@@ -0,0 +1,122 @@
+# frozen_string_literal: true
+
+require "test_helper"
+
+class EasyCodeSignModuleTest < EasyCodeSignTest
+  def test_has_version_number
+    refute_nil EasyCodeSign::VERSION
+  end
+
+  def test_configure_yields_configuration_object
+    yielded = nil
+    EasyCodeSign.configure { |c| yielded = c }
+    assert_instance_of EasyCodeSign::Configuration, yielded
+  end
+
+  def test_configure_allows_setting_values
+    EasyCodeSign.configure do |config|
+      config.provider = :safenet
+      config.timestamp_authority = "http://timestamp.example.com"
+    end
+
+    assert_equal :safenet, EasyCodeSign.configuration.provider
+    assert_equal "http://timestamp.example.com", EasyCodeSign.configuration.timestamp_authority
+  end
+
+  def test_configuration_returns_configuration_instance
+    assert_instance_of EasyCodeSign::Configuration, EasyCodeSign.configuration
+  end
+
+  def test_configuration_returns_same_instance
+    assert_same EasyCodeSign.configuration, EasyCodeSign.configuration
+  end
+
+  def test_reset_configuration_creates_new_instance
+    old_config = EasyCodeSign.configuration
+    EasyCodeSign.reset_configuration!
+    refute_same old_config, EasyCodeSign.configuration
+  end
+end
+
+class ConfigurationTest < EasyCodeSignTest
+  def setup
+    super
+    @config = EasyCodeSign::Configuration.new
+  end
+
+  def test_default_provider_is_safenet
+    assert_equal :safenet, @config.provider
+  end
+
+  def test_default_timestamp_hash_algorithm_is_sha256
+    assert_equal :sha256, @config.timestamp_hash_algorithm
+  end
+
+  def test_default_require_timestamp_is_false
+    refute @config.require_timestamp
+  end
+
+  def test_default_check_revocation_is_true
+    assert @config.check_revocation
+  end
+
+  def test_default_network_timeout_is_30
+    assert_equal 30, @config.network_timeout
+  end
+
+  def test_default_slot_index_is_0
+    assert_equal 0, @config.slot_index
+  end
+
+  def test_validate_raises_when_provider_nil
+    @config.provider = nil
+    error = assert_raises(EasyCodeSign::ConfigurationError) { @config.validate! }
+    assert_match(/Provider/, error.message)
+  end
+
+  def test_validate_raises_when_pkcs11_library_nil
+    @config.provider = :safenet
+    @config.pkcs11_library = nil
+    error = assert_raises(EasyCodeSign::ConfigurationError) { @config.validate! }
+    assert_match(/PKCS#11 library/, error.message)
+  end
+
+  def test_validate_raises_when_require_timestamp_without_tsa
+    @config.pkcs11_library = __FILE__
+    @config.require_timestamp = true
+    @config.timestamp_authority = nil
+    error = assert_raises(EasyCodeSign::ConfigurationError) { @config.validate! }
+    assert_match(/Timestamp authority/, error.message)
+  end
+end
+
+class ErrorsTest < Minitest::Test
+  def test_error_is_standard_error
+    assert_kind_of StandardError, EasyCodeSign::Error.new
+  end
+
+  def test_pin_error_stores_retries_remaining
+    error = EasyCodeSign::PinError.new("Wrong PIN", retries_remaining: 2)
+    assert_equal 2, error.retries_remaining
+  end
+
+  def test_pkcs11_error_stores_error_code
+    error = EasyCodeSign::Pkcs11Error.new("PKCS11 failure", pkcs11_error_code: 0x00000003)
+    assert_equal 0x00000003, error.pkcs11_error_code
+  end
+
+  def test_certificate_chain_error_stores_certificate_and_reason
+    error = EasyCodeSign::CertificateChainError.new(
+      "Invalid chain",
+      certificate: "cert_data",
+      reason: :expired
+    )
+    assert_equal "cert_data", error.certificate
+    assert_equal :expired, error.reason
+  end
+
+  def test_timestamp_authority_error_stores_http_status
+    error = EasyCodeSign::TimestampAuthorityError.new("TSA failed", http_status: 503)
+    assert_equal 503, error.http_status
+  end
+end