RubyGems - go_secure - Versions diffs - 0.66 → 0.67 - Mend

go_secure 0.66 → 0.67

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b937e6fe86f92dcaa9c2dde3089ded9e180460f2290b9d9cc33f4903f88b5504
-  data.tar.gz: b453f17db5585ffdc849692f1e16179d53c1d6771258f2a669108763852555d8
+  metadata.gz: a27715aa137021de4885687c883cf1667e2cb4c3d1465a59ccaf53b91c5e7847
+  data.tar.gz: cec46ee63138b2e55542ebcc92f2ca6974fb34a36942c394f8f2fcf78fd81600
 SHA512:
-  metadata.gz: 4ec28b36c2a980721633a409fe65cff6287a2e9f535738fb5aefc90cd280b8fdd02e201931c8da771d5824a878dfc9c0f8acccb5df863a826254aaf5be0ada91
-  data.tar.gz: a1d0ec1bcdb45d101b17804f609a03483418fff919b5f4bd3892d54197918274b8233f4e364dbc2c958a4f790aef27205c6c8f7255f90220bdaaaebe0f62f6a8
+  metadata.gz: 276e836003c669a3c593d554456244cea84226dfde033948fe41db756a68ae764776af65eec24754eb29b58668554e8cc54a70c23dd1527f5df8d46efd3da381
+  data.tar.gz: 45d4ad85376e0ca2f55a820b7a9764771d3893eb332a6e9289bcf952f93225106fbc9aa073d1b3d2c0ceca17e7fe9c60cb10dadf849b85ad3a4fa803107529fe

data/lib/go_secure.rb CHANGED Viewed

@@ -13,6 +13,11 @@ module GoSecure
     digest = OpenSSL::Digest::SHA512.new(encryption_key || self.encryption_key)
     res = Base64.urlsafe_encode64(OpenSSL::PKCS5.pbkdf2_hmac(str.to_s, salt.to_s, 100000, digest.digest_length, digest))
   end
+  def self.lite_hmac(str, salt, level, encryption_key=nil)
+    raise "invalid level" unless level == 1
+    OpenSSL::HMAC.hexdigest('SHA512', OpenSSL::HMAC.hexdigest('SHA512', str.to_s, salt.to_s), encryption_key || self.encryption_key)
+  end
   def self.nonce(str)
     Digest::SHA512.hexdigest(str.to_s + Time.now.to_i.to_s + rand(999999).to_s + self.encryption_key)[0, 24]
@@ -113,7 +118,8 @@ module GoSecure
   def self.browser_token
     # TODO: checks around whether it's actually a web browser??
-    stamp = Time.now.strftime('%Y%j')
+    day = Time.now.strftime('%j')
+    stamp = "#{Time.now.year}#{(Time.now.yday / 366.0 * 100.0).to_i.to_s.rjust(2, '0')}"
     stamp += '-' + GoSecure.sha512(stamp, 'browser_token')
   end
@@ -125,7 +131,8 @@ module GoSecure
   def self.valid_browser_token?(token)
     return false if !token || token.length == 0 || !token.match(/-/)
     stamp, hash = token.split(/-/, 2)
-    if Time.now.strftime('%Y%j').to_i - stamp.to_i < 14 # 14 days?!
+    current_stamp = "#{Time.now.year}#{(Time.now.yday / 366.0 * 100.0).to_i.to_s.rjust(2, '0')}"
+    if current_stamp.to_i - stamp.to_i < (14/365.0*100.0) # 14 days?!
       return valid_browser_token_signature?(token)
     end
     false

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: go_secure
 version: !ruby/object:Gem::Version
-  version: '0.66'
+  version: '0.67'
 platform: ruby
 authors:
 - Brian Whitmer