RubyGems - eligible - Versions diffs - 2.6.3 → 2.7.0 - Mend

eligible 2.6.3 → 2.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: da18474884d59a0565557e8a8487bcefe6d59573
-  data.tar.gz: 7c3024bc51c02f10c087d35239c2b97df8801cfe
+  metadata.gz: 6375643cb7a472ceb059f519b423e5979f62e8d8
+  data.tar.gz: 1ebb17780d0ef179c9d8cd0962a1f6b1e5c28915
 SHA512:
-  metadata.gz: 45f5d12efe62a34b613450faf9f6551f3432fcf5eaf913c4acc5e8f81c0d4e57cf68e49bad392d70c5b71139c728060b47aff5ee8661277c465612c82da3e63a
-  data.tar.gz: 56b996a4a1ef68f8d72ff656ffafd452d7ebba03156a75e0534f6b062bb0405cc4757ee07e089b8613c610e2d0f9bd0a7cf97924c60b3cb9293cd7e9d267bb05
+  metadata.gz: 76402c20fee5b41d80793066c6c4d62a0d79192ffbcd26af31bc22ee4e12a9ecc9570c02cdd9179b908e005ba3b88ad668385622053900494cd7402d1700d60d
+  data.tar.gz: 66877c68f4b1f6727e2677b31f12e885f764c584bd9129bdbe3d44441c98f5ef9ad1e1f720b167af59e11d492551a97beee7847e6e4ccb647b67f31ebb8afd51

data/ChangeLog CHANGED Viewed

@@ -1,3 +1,13 @@
+2016-12-14  Eligible  <support@eligible.com>
+	* 2.7.0
+	- Changed default content type to application/json
+2016-11-18  Eligible  <support@eligible.com>
+	* 2.6.3
+	- Added a new certificate fingerprint
 2016-08-31  Eligible  <support@eligible.com>
 	* 2.6.2
 	- New APIs added in testing mode, no public-facing changes
@@ -10,7 +20,7 @@
 	- Documentation updates for the endpoints
 2016-02-23  Eligible  <support@eligible.com>
 	* 2.6.0
 	- Added new endpoints customer, original signature pdf and payer.
 	- Added specs

data/lib/eligible.rb CHANGED Viewed

@@ -152,7 +152,7 @@ module Eligible
     headers = {
       user_agent: "eligible-ruby/#{Eligible::VERSION}",
       authorization: "Bearer #{api_key}",
-      content_type: 'application/x-www-form-urlencoded'
+      content_type: 'application/json'
     }.merge(headers)
     headers[:eligible_version] = api_version if api_version

data/lib/eligible/encryptor.rb CHANGED Viewed

@@ -3,9 +3,7 @@ require 'openssl'
 module Eligible
   # A simple wrapper for the standard OpenSSL library
   module Encryptor
     extend self
     # The default options to use when calling the <tt>encrypt</tt> and <tt>decrypt</tt> methods
     #
     # Defaults to { algorithm: 'aes-256-gcm',
@@ -16,11 +14,13 @@ module Eligible
     #
     # Run 'openssl list-cipher-commands' in your terminal to view a list all cipher algorithms that are supported on your platform
     def default_options
-      @default_options ||= { algorithm: 'aes-256-cbc',
-                             auth_data: '',
-                             insecure_mode: false,
-                             hmac_iterations: 2000,
-                             v2_gcm_iv: false }
+      @default_options ||= {
+        algorithm: 'aes-256-cbc',
+        auth_data: '',
+        insecure_mode: false,
+        hmac_iterations: 2000,
+        v2_gcm_iv: false
+      }
     end
     # Encrypts a <tt>:value</tt> with a specified <tt>:key</tt> and <tt>:iv</tt>.
@@ -51,65 +51,71 @@ module Eligible
     protected
-      def crypt(cipher_method, *args) #:nodoc:
-        options = default_options.merge(value: args.first).merge(args.last.is_a?(Hash) ? args.last : {})
-        raise ArgumentError.new('must specify a key') if options[:key].to_s.empty?
-        cipher = OpenSSL::Cipher.new(options[:algorithm])
-        cipher.send(cipher_method)
-        unless options[:insecure_mode]
-          raise ArgumentError.new("key must be #{cipher.key_len} bytes or longer") if options[:key].bytesize < cipher.key_len
-          raise ArgumentError.new('must specify an iv') if options[:iv].to_s.empty?
-          raise ArgumentError.new("iv must be #{cipher.iv_len} bytes or longer") if options[:iv].bytesize < cipher.iv_len
-        end
-        if options[:iv]
-          # This is here for backwards compatibility for Encryptor v2.0.0.
-          cipher.iv = options[:iv] if options[:v2_gcm_iv]
-          if options[:salt].nil?
-            # Use a non-salted cipher.
-            # This behaviour is retained for backwards compatibility. This mode
-            # is not secure and new deployments should use the :salt options
-            # wherever possible.
-            cipher.key = options[:key]
-          else
-            # Use an explicit salt (which can be persisted into a database on a
-            # per-column basis, for example). This is the preferred (and more
-            # secure) mode of operation.
-            cipher.key = OpenSSL::PKCS5.pbkdf2_hmac_sha1(options[:key], options[:salt], options[:hmac_iterations], cipher.key_len)
-          end
-          cipher.iv = options[:iv] unless options[:v2_gcm_iv]
+    def crypt(cipher_method, *args) #:nodoc:
+      options = default_options.merge(value: args.first).merge(args.last.is_a?(Hash) ? args.last : {})
+      raise ArgumentError.new('must specify a key') if options[:key].to_s.empty?
+      cipher = OpenSSL::Cipher.new(options[:algorithm])
+      cipher.send(cipher_method)
+      unless options[:insecure_mode]
+        raise ArgumentError.new("key must be #{cipher.key_len} bytes or longer") if options[:key].bytesize < cipher.key_len
+        raise ArgumentError.new('must specify an iv') if options[:iv].to_s.empty?
+        raise ArgumentError.new("iv must be #{cipher.iv_len} bytes or longer") if options[:iv].bytesize < cipher.iv_len
+      end
+      if options[:iv]
+        # This is here for backwards compatibility for Encryptor v2.0.0.
+        cipher.iv = options[:iv] if options[:v2_gcm_iv]
+        if options[:salt].nil?
+          # Use a non-salted cipher.
+          # This behaviour is retained for backwards compatibility. This mode
+          # is not secure and new deployments should use the :salt options
+          # wherever possible.
+          cipher.key = options[:key]
         else
-          # This is deprecated and needs to be changed.
-          cipher.pkcs5_keyivgen(options[:key])
-        end
-        yield cipher, options if block_given?
-        value = options[:value]
-        if cipher.authenticated?
-          if encryption?(cipher_method)
-            cipher.auth_data = options[:auth_data]
-          else
-            value = extract_cipher_text(options[:value])
-            cipher.auth_tag = extract_auth_tag(options[:value])
-            # auth_data must be set after auth_tag has been set when decrypting
-            # See http://ruby-doc.org/stdlib-2.0.0/libdoc/openssl/rdoc/OpenSSL/Cipher.html#method-i-auth_data-3D
-            cipher.auth_data = options[:auth_data]
-          end
+          # Use an explicit salt (which can be persisted into a database on a
+          # per-column basis, for example). This is the preferred (and more
+          # secure) mode of operation.
+          cipher.key = OpenSSL::PKCS5.pbkdf2_hmac_sha1(options[:key], options[:salt], options[:hmac_iterations], cipher.key_len)
         end
-        result = cipher.update(value)
-        result << cipher.final
-        result << cipher.auth_tag if cipher.authenticated? && encryption?(cipher_method)
-        result
+        cipher.iv = options[:iv] unless options[:v2_gcm_iv]
+      else
+        # This is deprecated and needs to be changed.
+        cipher.pkcs5_keyivgen(options[:key])
       end
-      def encryption?(cipher_method)
-        cipher_method == :encrypt
-      end
+      yield cipher, options if block_given?
-      def extract_cipher_text(value)
-        value[0..-17]
-      end
+      value = options[:value]
-      def extract_auth_tag(value)
-        value[-16..-1]
+      if cipher.authenticated?
+        if encryption?(cipher_method)
+          cipher.auth_data = options[:auth_data]
+        else
+          value = extract_cipher_text(options[:value])
+          cipher.auth_tag = extract_auth_tag(options[:value])
+          # auth_data must be set after auth_tag has been set when decrypting
+          # See http://ruby-doc.org/stdlib-2.0.0/libdoc/openssl/rdoc/OpenSSL/Cipher.html#method-i-auth_data-3D
+          cipher.auth_data = options[:auth_data]
+        end
       end
+      result = cipher.update(value)
+      result << cipher.final
+      result << cipher.auth_tag if cipher.authenticated? && encryption?(cipher_method)
+      result
+    end
+    def encryption?(cipher_method)
+      cipher_method == :encrypt
+    end
+    def extract_cipher_text(value)
+      value[0..-17]
+    end
+    def extract_auth_tag(value)
+      value[-16..-1]
+    end
   end
 end

data/lib/eligible/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module Eligible
-  VERSION = '2.6.3'.freeze
+  VERSION = '2.7.0'.freeze
 end

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: eligible
 version: !ruby/object:Gem::Version
-  version: 2.6.3
+  version: 2.7.0
 platform: ruby
 authors:
 - Katelyn Gleaon
@@ -10,7 +10,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-11-18 00:00:00.000000000 Z
+date: 2016-12-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rest-client
@@ -167,7 +167,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.4.8
+rubygems_version: 2.6.8
 signing_key:
 specification_version: 4
 summary: Ruby wrapper for the Eligible API