faria-launchpad-api 0.2.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: e8a9269575d3372e1fccc706b7929f81cd848d5d
+  data.tar.gz: 7d54bd4d87bd350cad342443299df497d334fa7f
+SHA512:
+  metadata.gz: 70e2c202b5f22143824ac304bb535a20170939878df370f863bfa26d0eea38520cb6b73ec261edaa4cce09b49f35f477147acd26ee647565d0daaec21b6eef4f
+  data.tar.gz: 335ed431202e3731bdf92cfd52153b155a4e7a37ce794100df2eb35887563ef80bfe24c5c0f66d3ac3411b52be18d2d118d5703fcce13048c94de0c9f250e3fa

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in faria-launchpad-api.gemspec
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2016 Josh Goebel
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,175 @@
+# faria-launchpad-api
+
+This gem will help you to integrate your Ruby (or Ruby on Rails) application with Faria's [LaunchPad](https://dev.faria.co/launchpad/) platform.
+
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'faria-launchpad-api'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install faria-launchpad-api
+
+
+## Usage
+
+### Generating a RSA public/private keypair
+
+#### With the OpenSSL library inside Ruby
+
+```ruby
+# first setup a local keypair
+key = OpenSSL::PKey::RSA.generate(2048)
+File.open("./secure/private_key", "w") do |f|
+  f.write(key.to_s)
+end
+# this is the public key LaunchPad needs
+puts key.public_key.to_s
+```
+
+#### With the console OpenSSL tools
+
+```bash
+% openssl genrsa -out private_key.pem 2048
+Generating RSA private key, 2048 bit long modulus
+..+++
+............................................+++
+e is 65537 (0x10001)
+
+% openssl rsa -pubout -in private_key.pem
+writing RSA key
+-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6GUAjWeb1uyHJXhwBLtt
+402PRlzHmMzK66b0Y+LKM789JaMO/8lOrCuoTtYkiWUpOU+7Qu6fBAMAGhCLYnOP
+nMAftBbGN2Ppd64QYiAUTh/8pYtR36q88E7H74ngEHN/cBN8JXD4yqPo219/IyZs
+uPIhJZgZ4DRGFanoilTYBOj8mH0hWVnFuwLrT6Qc0ibrIqyrQ4QP2NiM1CZlEO7t
+lqJUm/bPgZdBqnQjbnfAmeyNRdsyeBhQvYhMLujdLpKQChYL64hAuj9X7ey8gZx5
+rEaPECzlieoKcd3GL5KL+9g0vfvp8ZRyl54BgyDdS2P0p3r6xWqk/CTWjN+aAv/c
+kQIDAQAB
+-----END PUBLIC KEY-----
+```
+
+
+#### Serving your public key inside your application
+
+The LaunchPad spec also requires that your web application serve this public key (text/plaintext) over HTTPs as part of the API your application must furnish to fully support LaunchPad.
+
+    GET https://yourapplication.com/apis/launchpad/pubkey
+    -----BEGIN PUBLIC KEY-----
+    MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6GUAjWeb1uyHJXhwBLtt
+    402PRlzHmMzK66b0Y+LKM789JaMO/8lOrCuoTtYkiWUpOU+7Qu6fBAMAGhCLYnOP
+    nMAftBbGN2Ppd64QYiAUTh/8pYtR36q88E7H74ngEHN/cBN8JXD4yqPo219/IyZs
+    uPIhJZgZ4DRGFanoilTYBOj8mH0hWVnFuwLrT6Qc0ibrIqyrQ4QP2NiM1CZlEO7t
+    lqJUm/bPgZdBqnQjbnfAmeyNRdsyeBhQvYhMLujdLpKQChYL64hAuj9X7ey8gZx5
+    rEaPECzlieoKcd3GL5KL+9g0vfvp8ZRyl54BgyDdS2P0p3r6xWqk/CTWjN+aAv/c
+    -----END PUBLIC KEY-----
+
+### Quick Usage Example
+
+Here is a quick example. This example presumes you've already generated a 2,048 bit RSA keypair and your public key has been successfully connected with LaunchPad.
+
+
+```ruby
+    # fetch the LaunchPad public key 
+    # (you should probably save it locally rather than constantly fetch it)
+    uri = "https://devel.launchpad.managebac.com/api/v1/"
+    launchpad_key = Net::HTTP.get_response(URI.parse(url + "pubkey")).body
+    local_key = OpenSSL::PKey::RSA.new(File.read("./secure/private_key"))
+
+    @service = Faria::Launchpad::Service.new(
+      "https://devel.launchpad.managebac.com/api/v1/",
+      {
+        keys: { local: local_key, remote: launchpad_key },
+        # the application name and URI issued to you during your 
+        # LaunchPad setup process
+        source: {
+          name: "Acme Widgets, LLC.",
+          uri: "https://app.acmewidgets.com/"
+        }
+      }
+    )
+
+    # simple ping
+    puts service.ping()
+    # debugging info
+    puts service.info()
+    # echos back whatever you send
+    puts service.echo(name: "George Washington", age: 32)
+```
+
+The responses returned will almost always be JSON responses (see [API documentation](https://dev.faria.co/launchpad/) for additional details.)
+
+### Rails Integration
+
+There is a module to extend controllers to support easily handling incoming JWE requests and a Rails helper to assist with POSTing signed redirects.   Below is a usage example.
+
+If the URL includes query parameters they will be stripped from the URL and encoded into the JWE as signed parameters.
+
+The `SSO` module below is just one example of how you might wrap up all the pieces of a LaunchPad SSO configuration.  You might want to name this differently or pull settings from YAML, ENV, etc.  For the helpers to work you must call `launchpad_config` from your controller class and pass it an object that responds to `keys` and `source` and returns those settings.
+
+```ruby
+    module SSO
+      def self.client
+        Faria::Launchpad::Service.new(launchpad_uri,
+          source: source,
+          keys: keys
+          )
+      end
+
+      def self.launchpad_uri
+        "http://launchpad.dev/api/v1/"
+      end
+
+      def self.source
+        @source ||= {
+          name: "Lurn2Spell",
+          uri: "http://lurn2spell.dev/launchpad/api/"
+        }
+      end
+
+      def self.keys
+        @keys ||= {
+          local: OpenSSL::PKey::RSA.new(File.read('config/keys/local.priv')),
+          remote: OpenSSL::PKey::RSA.new(File.read('config/keys/launchpad.pub'))
+        }
+      end
+    end
+
+    class YourController < ActionController::Base
+      include Faria::Launchpad::Controller
+      launchpad_config SSO
+      
+      def action
+        post_encrypted_redirect_to SSO.client.pairing_request_url, 
+          params_to_pass
+      end
+      
+    end
+```
+
+
+## Development
+
+After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake test` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
+
+To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
+
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/eduvo/launchpad_api.
+
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
+

data/Rakefile

@@ -0,0 +1,10 @@
+require "bundler/gem_tasks"
+require "rake/testtask"
+
+Rake::TestTask.new(:test) do |t|
+  t.libs << "test"
+  t.libs << "lib"
+  t.test_files = FileList['test/**/*_test.rb']
+end
+
+task :default => :spec

data/bin/console

@@ -0,0 +1,17 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "faria/launchpad/api"
+
+require 'jwt'
+require 'jwe'
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/faria-launchpad-api.gemspec

@@ -0,0 +1,44 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'faria/launchpad/api/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "faria-launchpad-api"
+  spec.version       = Faria::Launchpad::Api::VERSION
+  spec.authors       = ["Josh Goebel"]
+  spec.email         = ["me@joshgoebel.com"]
+
+  spec.summary       = %q{Ruby library to interface with Faria LaunchPad.}
+  spec.description   = %q{Ruby library to interface with Faria LaunchPad, including an API client and Rails helpers.}
+  spec.homepage      = "https://github.com/eduvo/launchpad-api"
+  spec.license       = "MIT"
+
+  # Prevent pushing this gem to RubyGems.org by setting 'allowed_push_host', or
+  # delete this section to allow pushing this gem to any host.
+  if spec.respond_to?(:metadata)
+    spec.metadata['allowed_push_host'] = "https://rubygems.org"
+  else
+    raise "RubyGems 2.0 or newer is required to protect against public gem pushes."
+  end
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  # additional files to not package in the gem
+  %w(.gitignore .travis.yml bin/test.rb).each do |file|
+    spec.files.reject! {|f| f == file}
+  end
+  # puts spec.files
+  spec.bindir        = "bin"
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.11"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "minitest", "~> 5.0"
+
+  # need 1.5.4 since they have been changing the component API a lot in minor
+  # point releases
+  spec.add_dependency "jwt", "~> 1.5.4"
+  spec.add_dependency "jwe", "~> 0.1.0"
+  spec.add_dependency "addressable", "~> 2.4"
+end

data/lib/faria/launchpad/api/version.rb

@@ -0,0 +1,7 @@
+module Faria
+  module Launchpad
+    module Api
+      VERSION = "0.2.0"
+    end
+  end
+end

data/lib/faria/launchpad/api.rb

@@ -0,0 +1,13 @@
+require "faria/launchpad/api/version"
+require_relative "./packet"
+require_relative "./service"
+require_relative "./helper"
+require_relative "./controller" if defined?(ActiveSupport)
+
+module Faria
+  module Launchpad
+    module API
+      # Your code goes here...
+    end
+  end
+end

data/lib/faria/launchpad/controller.rb

@@ -0,0 +1,76 @@
+module Faria
+  module Launchpad
+
+    # module to include in Rails controllers to make sending/receiving
+    # of JWE signed/encrypted packets much simpler
+    module Controller
+      extend ActiveSupport::Concern
+
+      class_methods do
+        def launchpad_config(config=nil)
+          return @launchpad_config if config.nil?
+
+          @launchpad_config = config
+        end
+      end
+
+      included do
+        helper Faria::Launchpad::Helper
+      end
+
+      private
+
+      def handle_jwe_payload(request)
+        if request.content_type == "application/jwe"
+          packet = request.body.read()
+        elsif params[:payload].present? && params[:content_type] == "application/jwe"
+          packet = params[:payload]
+        else
+          packet = request.headers["Faria-JWE"]
+        end
+        return unless packet.present?
+        logger.info "packet is #{packet}"
+
+        keys = self.class.launchpad_config.keys
+        data = Faria::Launchpad::Packet.decrypt(
+          packet,
+          { actual_url: request.original_url },
+          local_key: keys[:local],
+          remote_key: keys[:remote]
+        )
+
+        if request.post? || request.put?
+          Rails.logger.info "  Parameters (JWT): #{data.inspect}"
+          data.with_indifferent_access
+        else
+          params.except(:controller, :action)
+        end
+      end
+
+      def post_encrypted_redirect_to(url, params = {})
+        config = self.class.launchpad_config
+
+        uri = Addressable::URI.parse(url)
+        params = (uri.query_values || {}).merge(params)
+        uri.query_values = nil
+
+        payload = Faria::Launchpad::Packet.encrypt(
+          params,
+          {
+            api_url: uri.normalize.to_s,
+            source: config.source,
+            expires_in: 60
+          },
+          local_key: config.keys[:local],
+          remote_key: config.keys[:remote]
+        )
+
+        render html: view_context.post_encrypted_redirect_to(
+          uri.normalize.to_s,
+          payload
+        )
+      end
+
+    end
+  end
+end

data/lib/faria/launchpad/helper.rb

@@ -0,0 +1,21 @@
+module Faria
+  module Launchpad
+
+    # Rails helper for generating encrypted POST redirect forms
+    module Helper
+
+      def post_encrypted_redirect_to(url, payload)
+        [
+          "<noscript>Your browser has Javascript disabled, please enable it.</noscript>".html_safe,
+          form_tag(url, authenticity_token: false, id: "frm"),
+          hidden_field_tag("content_type", "application/jwe"),
+          hidden_field_tag("payload", payload),
+          # submit_tag("submit"),
+          "</form>".html_safe,
+          javascript_tag("document.getElementById('frm').submit();")
+        ].join("\n").html_safe
+      end
+
+    end
+  end
+end

data/lib/faria/launchpad/packet.rb

@@ -0,0 +1,125 @@
+require 'jwe'
+require 'jwt'
+require 'json'
+require 'addressable'
+
+module Faria
+  module Launchpad
+    module Packet
+
+      VERSION = "v0.2"
+
+      class MismatchedRequestURL < StandardError
+      end
+
+      class MissingRemoteKey < StandardError
+      end
+
+      class ExpiredSignature < StandardError
+        attr_accessor :expired_by
+        def initialize(msg, expired_by)
+          super(msg)
+          @expired_by = expired_by
+        end
+      end
+
+      # encrypting is done with Launchpad public key
+      # signing is done with local private key
+
+      def self.encrypt(data, options = {}, local_key:, remote_key: )
+        packet = { "data" => data}
+        packet = add_issued_at(packet)
+        packet = add_expires(packet, options[:expires_in]) if options[:expires_in]
+        packet = add_api_url(packet, options[:api_url]) if options[:api_url]
+        # packet = add_issuer(packet, options[:issuer])
+        packet = add_source(packet, options[:source]) if options[:source]
+
+        payload = JWT.encode(packet, local_key, 'RS512')
+        "#{VERSION};" + JWE.encrypt(payload, remote_key) # public
+      end
+
+      # for cases where you known in advance the remote key to use (such
+      # as Launchpad clients which will only be receiving messages from
+      # Launchpad and therefore will only use it's public key for verifying
+      # signatures
+      def self.decrypt(raw_data, options = {}, local_key:, remote_key: )
+        version, jwe = raw_data.split(";", 2)
+        jwt = JWE.decrypt(jwe, local_key)
+        arr = JWT.decode(jwt, remote_key, true, { :algorithm => 'RS512' })
+        payload, header = arr
+
+        # validate_expiration will be handled by JWT decode
+        validate_url!(payload, options[:actual_url])
+
+        payload["data"]
+      end
+
+      # for cases where the signature key is not known in advance and must
+      # be determined by source information embedded in the JWT header
+      def self.decrypt_variable_key(raw_data, options = {}, local_key:, remote_key_func: )
+        version, jwe = raw_data.split(";", 2)
+        jwt = JWE.decrypt(jwe, local_key)
+        header, payload = JWT::Decode.new(jwt, nil, false, {}).decode_segments[0..1]
+        remote_key = remote_key_func.call(header, payload)
+        fail(MissingRemoteKey) if remote_key.nil?
+
+        arr = JWT.decode(jwt, remote_key, true, { :algorithm => 'RS512' })
+        payload, header = arr
+
+        # validate_expiration will be handled by JWT decode
+        validate_url!(payload, options[:actual_url])
+
+        payload["data"]
+      end
+
+      private
+
+      def self.add_source(packet, source)
+        packet[:faria_source] = source
+        packet
+      end
+
+      def self.add_issuer(packet, issuer)
+        packet[:iss] = issuer
+        packet
+      end
+
+      def self.add_api_url(packet, url)
+        packet["api_url"] = Addressable::URI.parse(url).normalize.to_s
+        packet
+      end
+
+      def self.add_issued_at(packet)
+        packet[:iat] = Time.now.utc.to_i
+        packet
+      end
+
+      def self.add_expires(packet, expires_in)
+        packet[:exp] = Time.now.utc.to_i + expires_in
+        packet
+      end
+
+      def self.validate_url!(payload, actual_url)
+        return unless payload.include?('api_url')
+
+        normalized_url = Addressable::URI.parse(actual_url).normalize.to_s
+        if payload['api_url'] != normalized_url
+          fail(MismatchedRequestURL)
+        end
+      end
+
+      def self.validate_expiration!(payload)
+        return unless payload.include?('exp')
+        leeway = 0
+
+        valid_until = (Time.now.utc.to_i - leeway)
+        if payload['exp'].to_i < valid_until
+          diff = valid_until - payload['exp'].to_i
+          error = ExpiredSignature.new("Signature expired", diff)
+          fail(error)
+        end
+      end
+
+    end
+  end
+end

data/lib/faria/launchpad/service.rb

@@ -0,0 +1,212 @@
+require 'net/https'
+require 'addressable'
+
+module Faria
+  module Launchpad
+    class Service
+
+      LAUNCHPAD_NAME = "Launchpad"
+
+      def self.noauth(endpoint, quiet: false)
+        unless quiet
+          puts "************************************************************************\n" \
+          "\007\007\007NOTICE: noauth is only intended as a somewhat easy way to call `ping`\n" \
+            "and `pubkey`. Nothing else is going to work since keys are required for\n" \
+            "general API usage.\n" \
+            "************************************************************************\n"
+          sleep 2
+        end
+        new(endpoint, keys: { local: nil, remote: nil }, source: {name: "No one"})
+      end
+
+      DEFAULTS = {
+        expires_in: 60 # 1 minute
+      }
+
+      def initialize(endpoint, options = {})
+        @endpoint = endpoint
+        @my_key = options[:keys][:local]
+        @remote_key = options[:keys][:remote]
+        @source = options[:source]
+        @app_name = options[:source][:name]
+
+        @options = DEFAULTS.merge(options)
+      end
+
+      # utils
+
+      def ping
+        get_without_auth "ping"
+      end
+
+      def pubkey
+        resp = raw_get_without_auth("pubkey")
+        return resp.body if resp.code == '200'
+      end
+
+      # utils requiring auth
+
+      def info
+        get "info"
+      end
+
+      def echo(params={})
+        put "echo", params
+      end
+
+      # sessions
+
+      def retrieve_session(session_id, params = {})
+        get "authentication_sessions/#{session_id}", params
+      end
+
+      # data is intended to be JSON encoded data if passed
+      def approve_session(session_id, data = {})
+        params = data.empty? ? {} : { data: data }
+        post "authentication_sessions/#{session_id}/approve", params
+      end
+
+      # data is intended to be JSON encoded data if passed
+      def decline_session(session_id, data = {})
+        params = data.empty? ? {} : { data: data }
+        post "authentication_sessions/#{session_id}/decline", params
+      end
+
+      # identities
+
+      def show_identity(uuid)
+        get "identities/#{uuid}"
+      end
+
+      def update_identity(identity_representation, uuid)
+        patch "identities/#{uuid}", identity: identity_representation
+      end
+
+      # by_value allows the unique pairing value to be used to perform
+      # queries or updates instead of Launchpad's internal UUID
+      def show_identity_by_pairing_value(pairing_value)
+        get "identities/by_pairing_value/#{pairing_value}"
+      end
+
+      def update_identity_by_pairing_value(identity_representation, pairing_value)
+        patch "identities/by_pairing_value/#{pairing_value}", identity: identity_representation
+      end
+
+      # final provisioning step (server side)
+      def provision(params = {})
+        raise "you need an :approval_code" if params[:approval_code].blank?
+        raise "you need an :identity" if params[:identity].blank?
+
+        post("pairing/provision", params)
+      end
+
+      # direct methods (for undocumented api?)
+
+      def post(url, params = {})
+        resp = raw_request(:post, url, params)
+        parse_response(resp)
+      end
+
+      def get(url, params = {})
+        resp = raw_request(:get, url, params)
+        parse_response(resp)
+      end
+
+      def put(url, params = {})
+        resp = raw_request(:put, url, params)
+        parse_response(resp)
+      end
+
+      def patch(url, params = {})
+        resp = raw_request(:patch, url, params)
+        parse_response(resp)
+      end
+
+      def parse_response(resp)
+        hash = JSON.parse(resp.body)
+        # be railsy if we can
+        hash = hash.with_indifferent_access if hash.respond_to?(:with_indifferent_access)
+        hash
+      rescue JSON::ParserError
+        raise JSON::ParserError, resp.body
+      end
+
+      # lower-level HTTP code
+
+      def get_without_auth(url, params={})
+        parse_response raw_get_without_auth(url, params)
+      end
+
+      def raw_get_without_auth(url, params={})
+        uri = full_url(url)
+        Net::HTTP.get_response(URI(uri))
+      end
+
+      def raw_request(verb, url, params = {})
+        uri = full_url(url)
+        a = Addressable::URI.parse(uri)
+        Net::HTTP.start(a.host, a.inferred_port) do |http|
+          http.use_ssl = a.scheme == 'https'
+          # http.verify_mode = OpenSSL::SSL::VERIFY_NONE
+          request = verb_to_http_class(verb).new a.request_uri
+          payload = encrypt_payload(params, a)
+          if verb == :get
+            request['Faria-JWE'] = payload
+          else
+            request['Content-Type'] = "application/jwe"
+            request.body = payload
+          end
+          http.request request
+        end
+      end
+
+      # url helpers
+
+      def pairing_request_url
+        rooted_url "third/pairing/request"
+      end
+
+      def pairing_complete_url
+        rooted_url "third/pairing/complete"
+      end
+
+      private
+
+      VALID_VERBS = %w(get put patch post get delete)
+
+      # can't guarantee we have Rails or AS so we use eval vs
+      # constantize/classify, etc
+      def verb_to_http_class(verb)
+        raise "#{verb} is not a valid HTTP verb." unless VALID_VERBS.include?(verb.to_s)
+
+        Net::HTTP.const_get(verb.to_s.capitalize)
+      end
+
+      def encrypt_payload(params, address)
+        Faria::Launchpad::Packet.encrypt(
+          params,
+          {
+            api_url: address.normalize.to_s,
+            source: @source,
+            expires_in: @options[:expires_in]
+          },
+          remote_key: @remote_key,
+          local_key: @my_key
+        )
+      end
+
+      def rooted_url(url)
+        File.join(base_url(@endpoint), url)
+      end
+
+      def base_url(url)
+        url.gsub(%r{/api/v[^/]+/$},"")
+      end
+
+      def full_url(url)
+        File.join(@endpoint, url)
+      end
+
+    end
+  end
+end

metadata

@@ -0,0 +1,145 @@
+--- !ruby/object:Gem::Specification
+name: faria-launchpad-api
+version: !ruby/object:Gem::Version
+  version: 0.2.0
+platform: ruby
+authors:
+- Josh Goebel
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2016-07-18 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.11'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.11'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '5.0'
+- !ruby/object:Gem::Dependency
+  name: jwt
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.5.4
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.5.4
+- !ruby/object:Gem::Dependency
+  name: jwe
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.1.0
+- !ruby/object:Gem::Dependency
+  name: addressable
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.4'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.4'
+description: Ruby library to interface with Faria LaunchPad, including an API client
+  and Rails helpers.
+email:
+- me@joshgoebel.com
+executables:
+- console
+- setup
+extensions: []
+extra_rdoc_files: []
+files:
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- bin/console
+- bin/setup
+- faria-launchpad-api.gemspec
+- lib/faria/launchpad/api.rb
+- lib/faria/launchpad/api/version.rb
+- lib/faria/launchpad/controller.rb
+- lib/faria/launchpad/helper.rb
+- lib/faria/launchpad/packet.rb
+- lib/faria/launchpad/service.rb
+homepage: https://github.com/eduvo/launchpad-api
+licenses:
+- MIT
+metadata:
+  allowed_push_host: https://rubygems.org
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5
+signing_key: 
+specification_version: 4
+summary: Ruby library to interface with Faria LaunchPad.
+test_files: []