eligible 2.4.3 → 2.5.0

data/eligible.gemspec

@@ -4,24 +4,23 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
 require 'eligible/version'
 
 Gem::Specification.new do |gem|
-  gem.name          = "eligible"
+  gem.name          = 'eligible'
   gem.version       = Eligible::VERSION
-  gem.authors       = ["Katelyn Gleaon", "Rodrigo Dominguez", "Andry Brett"]
-  gem.email         = ["k@eligibleapi.com", "rod@eligibleapi.com", "andy@andybrett.com"]
-  gem.description   = 'Eligible is a developer-friendly way to process health care eligibility checks. Learn more at https://www.eligibleapi.com'
+  gem.authors       = ['Katelyn Gleaon', 'Rodrigo Dominguez', 'Aaron Bedra']
+  gem.email         = ['k@eligible.com', 'rod@eligible.com', 'abedra@eligible.com']
+  gem.description   = 'Eligible is a developer-friendly way to process health care eligibility checks. Learn more at https://eligible.com'
   gem.summary       = 'Ruby wrapper for the Eligible API'
-  gem.homepage      = "https://www.eligibleapi.com/"
-  gem.license       = "MIT"
+  gem.homepage      = 'https://github.com/eligible/eligible-ruby'
+  gem.license       = 'MIT'
 
-  gem.files         = `git ls-files`.split($/)
-  gem.test_files    = `git ls-files -- test/*`.split("\n")
-  gem.require_paths = ["lib"]
+  gem.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  gem.require_paths = ['lib']
 
-  gem.add_development_dependency('mocha')
-  gem.add_development_dependency('shoulda')
-  gem.add_development_dependency('test-unit')
-  gem.add_development_dependency('rake')
+  gem.add_dependency('rest-client', '~> 1.8')
+  gem.add_dependency('multi_json', '~> 1.7')
 
-  gem.add_dependency('rest-client', '~> 1.6.7')
-  gem.add_dependency('multi_json', '~> 1.7.9')
+  gem.add_development_dependency('rake', '~> 10.5')
+  gem.add_development_dependency('rspec', '~> 3.4')
+  gem.add_development_dependency('rubocop', '= 0.35.0')
+  gem.add_development_dependency('simplecov', '~> 0.11')
 end

data/lib/eligible.rb

@@ -28,13 +28,15 @@ require 'eligible/errors/authentication_error'
 require 'eligible/errors/api_error'
 require 'eligible/errors/invalid_request_error'
 
+# rubocop:disable Metrics/ModuleLength, Style/ClassVars
 module Eligible
   @@api_key = nil
   @@test = false
-  @@api_base = 'https://gds.eligibleapi.com/v1.1'
   @@api_version = 1.1
+  @@api_base = "https://gds.eligibleapi.com/v#{@@api_version}"
+  @@fingerprints = %w(79d62e8a9d59ae687372f8e71345c76d92527fac 4b2c6888ede79d0ee47339dc6fab5a6d0dc3cb0e)
 
-  def self.api_url(url='')
+  def self.api_url(url = '')
     @@api_base + url.to_s
   end
 
@@ -70,87 +72,98 @@ module Eligible
     @@api_version
   end
 
-  def self.request(method, url, api_key, params={}, headers={})
+  def self.fingerprints
+    @@fingerprints
+  end
+
+  def self.add_fingerprint(digest)
+    $stderr.puts 'The embedded certificate fingerprint was modified. This should only be done if instructed to by eligible support staff'
+    @@fingerprints << digest
+  end
+
+  # rubocop:disable Metrics/AbcSize, Metrics/CyclomaticComplexity, Metrics/PerceivedComplexity
+  def self.request(method, url, api_key, params = {}, headers = {})
     api_key ||= @@api_key
     test = self.test
-    api_key = params[:api_key] if params.has_key?(:api_key)
-    test = params[:test] if params.has_key?(:test)
+    api_key = params[:api_key] if params.key?(:api_key)
+    test = params[:test] if params.key?(:test)
 
-    raise AuthenticationError.new('No API key provided. (HINT: set your API key using "Eligible.api_key = <API-KEY>".') unless api_key
+    fail AuthenticationError, 'No API key provided. (HINT: set your API key using "Eligible.api_key = <API-KEY>".' unless api_key
 
     lang_version = "#{RUBY_VERSION} p#{RUBY_PATCHLEVEL} (#{RUBY_RELEASE_DATE})"
-    ua = {
-      :bindings_version => Eligible::VERSION,
-      :lang => 'ruby',
-      :lang_version => lang_version,
-      :platform => RUBY_PLATFORM,
-      :publisher => 'eligible',
-      :uname => uname
+    debug_info = {
+      bindings_version: Eligible::VERSION,
+      lang: 'ruby',
+      lang_version: lang_version,
+      platform: RUBY_PLATFORM,
+      publisher: 'eligible',
+      uname: uname
     }
 
     # GET requests, parameters on the query string
     # POST requests, parameters as json in the body
-    url = self.api_url(url)
+    url = api_url(url)
     case method.to_s.downcase.to_sym
-      when :get, :head
-        url += "?api_key=#{api_key}"
-        if params && params.count > 0
-          query_string = Util.flatten_params(params).collect { |key, value| "#{key}=#{Util.url_encode(value)}" }.join('&')
-          url += "&#{query_string}"
-        end
-        url +="&test=#{test}"
-        payload = nil
-      else
-        payload = Eligible::JSON.dump(params.merge!({ 'api_key' => api_key, 'test' => test }))
+    when :get, :head
+      url += "?api_key=#{api_key}"
+      if params && params.count > 0
+        query_string = Util.flatten_params(params).collect { |key, value| "#{key}=#{Util.url_encode(value)}" }.join('&')
+        url += "&#{query_string}"
+      end
+      url += "&test=#{test}"
+      payload = nil
+    else
+      payload = Eligible::JSON.dump(params.merge!('api_key' => api_key, 'test' => test))
     end
 
     begin
-      headers = { :x_eligible_client_user_agent => Eligible::JSON.dump(ua) }.merge(headers)
+      headers = { x_eligible_debuginfo: Eligible::JSON.dump(debug_info) }.merge(headers)
     rescue => e
       headers = {
-        :x_eligible_client_raw_user_agent => ua.inspect,
-        :error => "#{e} (#{e.class})"
+        x_eligible_client_raw_user_agent: debug_info.inspect,
+        error: "#{e} (#{e.class})"
       }.merge(headers)
     end
 
     headers = {
-      :user_agent => "Eligible/v1 RubyBindings/#{Eligible::VERSION}",
-      :authorization => "Bearer #{api_key}",
-      :content_type => 'application/x-www-form-urlencoded'
+      user_agent: "eligible-ruby/#{Eligible::VERSION}",
+      authorization: "Bearer #{api_key}",
+      content_type: 'application/x-www-form-urlencoded'
     }.merge(headers)
 
-    headers[:eligible_version] = self.api_version if self.api_version
+    headers[:eligible_version] = api_version if api_version
 
     opts = {
-      :method => method,
-      :url => url,
-      :headers => headers,
-      :open_timeout => 30,
-      :payload => payload,
-      :timeout => 80
+      method: method,
+      url: url,
+      headers: headers,
+      open_timeout: 30,
+      payload: payload,
+      timeout: 80,
+      ssl_verify_callback: verify_certificate
     }
 
     begin
       response = execute_request(opts)
-
     rescue SocketError => e
-      self.handle_restclient_error(e)
+      handle_restclient_error(e)
     rescue NoMethodError => e
       # Work around RestClient bug
       if e.message =~ /\WRequestFailed\W/
         e = APIConnectionError.new('Unexpected HTTP response code')
-        self.handle_restclient_error(e)
+        handle_restclient_error(e)
       else
         raise
       end
+    # rubocop:disable Lint/AssignmentInCondition, Style/AndOr
     rescue RestClient::ExceptionWithResponse => e
       if rcode = e.http_code and rbody = e.http_body
-        self.handle_api_error(rcode, rbody)
+        handle_api_error(rcode, rbody)
       else
-        self.handle_restclient_error(e)
+        handle_restclient_error(e)
       end
     rescue RestClient::Exception, Errno::ECONNREFUSED => e
-      self.handle_restclient_error(e)
+      handle_restclient_error(e)
     end
 
     rbody = response.body
@@ -171,6 +184,20 @@ module Eligible
     [resp, api_key]
   end
 
+  def self.verify_certificate
+    lambda do |preverify_ok, certificate_store|
+      return true if test == 'true'
+      return false unless preverify_ok
+      received = certificate_store.chain.first
+      return true unless received.to_der == certificate_store.current_cert.to_der
+      valid_fingerprint?(received)
+    end
+  end
+
+  def self.valid_fingerprint?(received)
+    fingerprints.include?(OpenSSL::Digest::SHA1.hexdigest(received.to_der))
+  end
+
   private
 
   def self.uname
@@ -181,51 +208,52 @@ module Eligible
     RestClient::Request.execute(opts)
   end
 
+  # rubocop:disable Style/SignalException
   def self.handle_api_error(rcode, rbody)
     begin
       error_obj = Eligible::JSON.load(rbody)
       error_obj = Util.symbolize_names(error_obj)
-      error = error_obj[:error] or raise EligibleError.new # escape from parsing
+      fail EligibleError unless error_obj.key?(:error)
+      error = error_obj[:error]
     rescue MultiJson::DecodeError, EligibleError
       raise APIError.new("Invalid response object from API: #{rbody.inspect} (HTTP response code was #{rcode})", rcode, rbody)
     end
 
+    error_msg = error[:details] || error[:reject_reason_description]
+
     case rcode
-      when 400, 404 then
-        raise invalid_request_error(error, rcode, rbody, error_obj)
-      when 401
-        raise authentication_error(error, rcode, rbody, error_obj)
-      else
-        raise api_error(error, rcode, rbody, error_obj)
+    when 400, 404 then
+      raise invalid_request_error(error_msg, rcode, rbody, error_obj)
+    when 401
+      raise authentication_error(error_msg, rcode, rbody, error_obj)
+    else
+      raise api_error(error_msg, rcode, rbody, error_obj)
     end
   end
 
-  def self.invalid_request_error(error, rcode, rbody, error_obj)
-    InvalidRequestError.new(error, rcode, rbody, error_obj)
+  def self.invalid_request_error(error_msg, rcode, rbody, error_obj)
+    InvalidRequestError.new(error_msg, rcode, rbody, error_obj)
   end
 
-  def self.authentication_error(error, rcode, rbody, error_obj)
-    AuthenticationError.new(error[0][:message], rcode, rbody, error_obj)
+  def self.authentication_error(error_msg, rcode, rbody, error_obj)
+    AuthenticationError.new(error_msg, rcode, rbody, error_obj)
   end
 
-  def self.api_error(error, rcode, rbody, error_obj)
-    APIError.new(error[0][:message], rcode, rbody, error_obj)
+  def self.api_error(error_msg, rcode, rbody, error_obj)
+    APIError.new(error_msg, rcode, rbody, error_obj)
   end
 
   def self.handle_restclient_error(e)
     case e
-      when RestClient::ServerBrokeConnection, RestClient::RequestTimeout
-        message = "Could not connect to Eligible (#{@@api_base}).  Please check your internet connection and try again."
-      when RestClient::SSLCertificateNotVerified
-        message = "Could not verify Eligible's SSL certificate."
-      when SocketError
-        message = 'Unexpected error communicating when trying to connect to Eligible.'
-      else
-        message = 'Unexpected error communicating with Eligible. If this problem persists, let us know at support@eligible.com.'
+    when RestClient::ServerBrokeConnection, RestClient::RequestTimeout
+      message = "Could not connect to Eligible (#{@@api_base}).  Please check your internet connection and try again."
+    when RestClient::SSLCertificateNotVerified
+      message = "Could not verify Eligible's SSL certificate."
+    when SocketError
+      message = 'Unexpected error communicating when trying to connect to Eligible.'
+    else
+      message = 'Unexpected error communicating with Eligible. If this problem persists, let us know at support@eligible.com.'
     end
-    message += "\n\n(Network error: #{e.message})"
-    raise APIConnectionError.new(message)
+    fail APIConnectionError, "#{message}\n\n(Network error: #{e.message})"
   end
-
 end
-

data/lib/eligible/api_resource.rb

@@ -1,16 +1,14 @@
 module Eligible
   class APIResource < EligibleObject
-
     def self.class_name
-      self.name.split('::')[-1]
+      name.split('::').last
     end
 
-    def self.url()
+    def self.url
       if self == APIResource
-        raise NotImplementedError.new('APIResource is an abstract class.  You should perform actions on its subclasses (Plan, Service, etc.)')
+        fail NotImplementedError, 'APIResource is an abstract class.  You should perform actions on its subclasses (Plan, Service, etc.)'
       end
       "/#{CGI.escape(class_name.downcase)}/"
     end
-
   end
-end
+end

data/lib/eligible/claim.rb

@@ -1,28 +1,22 @@
 module Eligible
   class Claim < APIResource
+    def self.get(params, api_key = nil)
+      response, api_key = Eligible.request(:get, "/claims/acknowledgements/#{params[:reference_id]}.json", api_key, params)
+      Util.convert_to_eligible_object(response, api_key)
+    end
 
-    class << self
-
-      def get(params, api_key = nil)
-        response, api_key = Eligible.request(:get, "/claims/acknowledgements/#{params[:reference_id]}.json", api_key, params)
-        Util.convert_to_eligible_object(response, api_key)
-      end
-
-      def post(params, api_key = nil)
-        response, api_key = Eligible.request(:post, '/claims.json', api_key, params)
-        Util.convert_to_eligible_object(response, api_key)
-      end
-
-      def all(api_key = nil)
-        response, api_key = Eligible.request(:get, '/claims/acknowledgements.json', api_key)
-        Util.convert_to_eligible_object(response, api_key)
-      end
+    def self.post(params, api_key = nil)
+      response, api_key = Eligible.request(:post, '/claims.json', api_key, params)
+      Util.convert_to_eligible_object(response, api_key)
+    end
 
+    def self.all(api_key = nil)
+      response, api_key = Eligible.request(:get, '/claims/acknowledgements.json', api_key)
+      Util.convert_to_eligible_object(response, api_key)
     end
 
     def status
       error ? nil : to_hash
     end
-
   end
-end
+end

data/lib/eligible/coverage.rb

@@ -1,24 +1,23 @@
 module Eligible
   class Coverage < APIResource
+    def self.get(params, api_key = nil)
+      response, api_key = Eligible.request(:get, '/coverage/all.json', api_key, params)
+      Util.convert_to_eligible_object(response, api_key)
+    end
 
-    class << self
-
-      def get(params, api_key=nil)
-        response, api_key = Eligible.request(:get, '/coverage/all.json', api_key, params)
-        Util.convert_to_eligible_object(response, api_key)
-      end
-
-      def batch_post(params, api_key=nil)
-        response, api_key = Eligible.request(:post, '/coverage/all/batch.json', api_key, params)
-        Util.convert_to_eligible_object(response, api_key)
-      end
-
-      def batch_medicare_post(params, api_key=nil)
-        response, api_key = Eligible.request(:post, '/medicare/coverage/batch.json', api_key, params)
-        Util.convert_to_eligible_object(response, api_key)
-      end
+    def self.cost_estimate(params, api_key = nil)
+      response, api_key = Eligible.request(:get, '/coverage/cost_estimate.json', api_key, params)
+      Util.convert_to_eligible_object(response, api_key)
+    end
 
+    def self.batch_post(params, api_key = nil)
+      response, api_key = Eligible.request(:post, '/coverage/all/batch.json', api_key, params)
+      Util.convert_to_eligible_object(response, api_key)
     end
 
+    def self.batch_medicare_post(params, api_key = nil)
+      response, api_key = Eligible.request(:post, '/medicare/coverage/batch.json', api_key, params)
+      Util.convert_to_eligible_object(response, api_key)
+    end
   end
-end
+end

data/lib/eligible/demographic.rb

@@ -1,16 +1,13 @@
 module Eligible
   class Demographic < APIResource
-    class << self
-
-      def get(params, api_key=nil)
-        response, api_key = Eligible.request(:get, '/demographic/all.json', api_key, params)
-        Util.convert_to_eligible_object(response, api_key)
-      end
+    def self.get(params, api_key = nil)
+      response, api_key = Eligible.request(:get, '/demographic/all.json', api_key, params)
+      Util.convert_to_eligible_object(response, api_key)
+    end
 
-      def batch_post(params, api_key=nil)
-        response, api_key = Eligible.request(:post, '/demographic/all/batch.json', api_key, params)
-        Util.convert_to_eligible_object(response, api_key)
-      end
+    def self.batch_post(params, api_key = nil)
+      response, api_key = Eligible.request(:post, '/demographic/all/batch.json', api_key, params)
+      Util.convert_to_eligible_object(response, api_key)
     end
   end
 end

data/lib/eligible/eligible_object.rb

@@ -1,18 +1,16 @@
 module Eligible
-
   class EligibleObject
     include Enumerable
 
     attr_accessor :api_key
     attr_accessor :eligible_id
+    # rubocop:disable Style/ClassVars
     @@permanent_attributes = Set.new([:api_key, :error, :balance, :address, :dob])
 
     # The default :id method is deprecated and isn't useful to us
-    if method_defined?(:id)
-      undef :id
-    end
+    undef :id if method_defined?(:id)
 
-    def initialize(id=nil, api_key=nil)
+    def initialize(id = nil, api_key = nil)
       @api_key = api_key
       @values = {}
       # This really belongs in APIResource, but not putting it there allows us
@@ -22,13 +20,14 @@ module Eligible
       self.eligible_id = id if id
     end
 
-    def self.construct_from(values, api_key=nil)
-      obj = self.new(values[:eligible_id], api_key)
+    def self.construct_from(values, api_key = nil)
+      obj = new(values[:eligible_id], api_key)
       obj.refresh_from(values, api_key)
       obj
     end
 
-    def refresh_from(values, api_key, partial=false)
+    # rubocop:disable Metrics/AbcSize
+    def refresh_from(values, api_key, partial = false)
       @api_key = api_key
 
       removed = partial ? Set.new : Set.new(@values.keys - values.keys)
@@ -54,7 +53,7 @@ module Eligible
     end
 
     def [](k)
-      k = k.to_sym if k.kind_of?(String)
+      k = k.to_sym if k.is_a?(String)
       @values[k]
     end
 
@@ -70,7 +69,7 @@ module Eligible
       @values.values
     end
 
-    def to_json(*a)
+    def to_json
       Eligible::JSON.dump(@values)
     end
 
@@ -90,7 +89,7 @@ module Eligible
 
     def metaclass
       class << self; self; end
-    end    
+    end
 
     def remove_accessors(keys)
       metaclass.instance_eval do
@@ -115,7 +114,6 @@ module Eligible
           end
         end
       end
-    end    
+    end
   end
-
-end
+end