gpsoauth 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 204ea5290b6b19ac4b313ddc82c47b6a30f3924f
+  data.tar.gz: 261ff8ab1af1e678a6d94eeb6e90e99c409332df
+SHA512:
+  metadata.gz: 5d562ca5ae735ff3662e0b5cf0ab9b0c2f10ed78ebcf099adc380b285639f88a906ecde2e63b0dd711202f1a1d4be55edb492b3a2f1a2b10f80e80e96f71677c
+  data.tar.gz: ea4eba98bfa330fb52108c292fcd84f0ec4c9c20fbc2f3de300900ca1505a7e05586f1db9146e60b931e05f6f4d3f39cacd93838acecddfaee2d653cf82a5041

data/.gitignore

@@ -0,0 +1,12 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+
+*.swo
+*.swp

data/CODE_OF_CONDUCT.md

@@ -0,0 +1,49 @@
+# Contributor Code of Conduct
+
+As contributors and maintainers of this project, and in the interest of
+fostering an open and welcoming community, we pledge to respect all people who
+contribute through reporting issues, posting feature requests, updating
+documentation, submitting pull requests or patches, and other activities.
+
+We are committed to making participation in this project a harassment-free
+experience for everyone, regardless of level of experience, gender, gender
+identity and expression, sexual orientation, disability, personal appearance,
+body size, race, ethnicity, age, religion, or nationality.
+
+Examples of unacceptable behavior by participants include:
+
+* The use of sexualized language or imagery
+* Personal attacks
+* Trolling or insulting/derogatory comments
+* Public or private harassment
+* Publishing other's private information, such as physical or electronic
+  addresses, without explicit permission
+* Other unethical or unprofessional conduct
+
+Project maintainers have the right and responsibility to remove, edit, or
+reject comments, commits, code, wiki edits, issues, and other contributions
+that are not aligned to this Code of Conduct, or to ban temporarily or
+permanently any contributor for other behaviors that they deem inappropriate,
+threatening, offensive, or harmful.
+
+By adopting this Code of Conduct, project maintainers commit themselves to
+fairly and consistently applying these principles to every aspect of managing
+this project. Project maintainers who do not follow or enforce the Code of
+Conduct may be permanently removed from the project team.
+
+This code of conduct applies both within project spaces and in public spaces
+when an individual is representing the project or its community.
+
+Instances of abusive, harassing, or otherwise unacceptable behavior may be
+reported by contacting a project maintainer at [bryanmytko@gmail.com](http://github.com/bryanmytko). All
+complaints will be reviewed and investigated and will result in a response that
+is deemed necessary and appropriate to the circumstances. Maintainers are
+obligated to maintain confidentiality with regard to the reporter of an
+incident.
+
+This Code of Conduct is adapted from the [Contributor Covenant][homepage],
+version 1.3.0, available at
+[http://contributor-covenant.org/version/1/3/0/][version]
+
+[homepage]: http://contributor-covenant.org
+[version]: http://contributor-covenant.org/version/1/3/0/

data/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+
+gemspec

data/LICENSE.txt

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright(c) 2016 Bryan Mytko
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.

data/README.md

@@ -0,0 +1,50 @@
+# Gpsoauth
+
+A Ruby client library for Google Play Services OAuth
+
+A port of the Python library [gpsoauth](https://github.com/simon-weber/gpsoauth) by [Simon Weber](https://github.com/simon-weber)
+
+Android Play Service OAuth flow: [Sbktech](https://sbktech.blogspot.com/2014/01/inside-android-play-services-magic.html)
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'gpsoauth'
+```
+
+And then execute:
+
+    $ bundle
+
+    Or install it yourself as:
+
+        $ gem install gpsoauth
+
+## Usage
+
+Instantiate a Gpsoauth connection. This requires an Android ID:
+
+    g = Gpsoauth::Connection.new(android_id, [service, device_country, operator_country, lang, sdk_version])
+
+Perform 'master login' with email/password:
+
+    response = g.master_login(email, password)
+
+Use the response's token to perform the OAuth:
+
+    oauth_response = g.oauth(email, response["Token"], service, app, client_signature)
+
+Access response Auth token via:
+
+    oauth_response["Auth"]
+
+## Contributing
+
+Bug reports and pull requests are welcome on GitHub at https://github.com/bryanmytko/gpsoauth. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
+
+## License
+
+The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
+

data/gpsoauth.gemspec

@@ -0,0 +1,27 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'gpsoauth/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "gpsoauth"
+  spec.version       = Gpsoauth::VERSION
+  spec.authors       = ["Bryan Mytko"]
+  spec.email         = ["bryanmytko@gmail.com"]
+
+  spec.summary       = %q{A Ruby client library for Google Play Services OAuth.}
+  spec.description   = %q{A Ruby client library for Google Play Services OAuth.
+                          A port of the Python library gpsoauth by Simon Weber}
+  spec.homepage      = "http://github.com/bryanmytko/gpsoauth"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.11"
+  spec.add_development_dependency "rake", "~> 10.0"
+
+  spec.add_dependency "httparty", "~> 0.13.7"
+end

data/lib/gpsoauth.rb

@@ -0,0 +1,13 @@
+require "httparty"
+require "base64"
+
+require "gpsoauth/connection"
+require "gpsoauth/exceptions"
+require "gpsoauth/google"
+require "gpsoauth/utility"
+require "gpsoauth/version"
+
+module Gpsoauth
+  include HTTParty
+  include Google
+end

data/lib/gpsoauth/connection.rb

@@ -0,0 +1,86 @@
+module Gpsoauth
+  class Connection
+    AUTH_URL = "https://android.clients.google.com/auth"
+    USER_AGENT = "gpsoauth/gpsoauth"
+
+    # The key is distirbuted with Google Play Services.
+    # This one is from version 7.3.29.
+    B64_KEY_7_3_29 = "AAAAgMom/1a/v0lblO2Ubrt60J2gcuXSljGFQXgcyZWveWLEwo6p" \
+    "rwgi3iJIZdodyhKZQrNWp5nKJ3srRXcUW+F1BD3baEVGcmEgqaLZUNBjm057pKRI16kB0" \
+    "YppeGx5qIQ5QjKzsR8ETQbKLNWgRY0QRNVz34kMJR3P/LgHax/6rmf5AAAAAwEAAQ==".b
+
+    def initialize(android_id, service = nil, device_country = nil,
+                   operator_country = nil, lang = nil, sdk_version = nil)
+
+      @android_id = android_id
+
+      @service = service || "ac2dm"
+      @device_country = device_country || "us"
+      @operator_country = operator_country || "us"
+      @lang = lang || "en"
+      @sdk_version = sdk_version || 17
+    end
+
+    def master_login(email, password)
+      android_key = Google::key_from_b64(B64_KEY_7_3_29)
+
+      data = {
+        accountType: "HOSTED_OR_GOOGLE",
+        Email: email,
+        has_permission: 1,
+        add_account: 1,
+        # @TODO Finish password encryption
+        # EncryptedPasswd: Google::signature(email, password, android_key)
+        Passwd: password,
+        service: @service,
+        source: "android",
+        androidId: @android_id,
+        device_country:  @device_country,
+        operatorCountry: @operator_country,
+        lang: @lang,
+        sdk_version: @sdk_version
+      }
+
+      auth_request(data)
+    end
+
+    def oauth(email, master_token, service, app, client_signature)
+      data = {
+        accountType: "HOSTED_OR_GOOGLE",
+        Email: email,
+        has_permission: 1,
+        EncryptedPasswd: master_token,
+        source: "android",
+        androidId: @android_id,
+        device_country:  @device_country,
+        operatorCountry: @operator_country,
+        lang: @lang,
+        sdk_version: @sdk_version,
+        service: service,
+        app: app,
+        client_sig: client_signature
+      }
+
+      auth_request(data)
+    end
+
+    private
+
+    def auth_request(data)
+      options = {
+        body: data,
+        headers: {
+          "User-Agent" => USER_AGENT,
+          "Accept-Encoding" => ""
+        }
+      }
+
+      response = HTTParty.post(AUTH_URL, options)
+      parse_auth_response(response)
+    end
+
+    def parse_auth_response(response)
+      Hash[response.each_line.map { |l| l.chomp.split("=", 2) }]
+    end
+  end
+end

data/lib/gpsoauth/exceptions.rb

@@ -0,0 +1,4 @@
+module Gpsoauth
+  class Error < StandardError; end
+  class NoAndroidIDError < Error; end
+end

data/lib/gpsoauth/google.rb

@@ -0,0 +1,42 @@
+module Gpsoauth
+  module Google
+    def self.key_from_b64(key)
+      binary_key = Base64.decode64(key)
+
+      i = binary_key[0,4].sum
+      mod = binary_key[4, i].unpack("H*")[0].to_i(16)
+
+      j = binary_key[i + 4, 4].sum
+      exponent = binary_key[i + 8, j].unpack("H*")[0].to_i(16)
+
+      key = OpenSSL::PKey::RSA.new
+      key.e = OpenSSL::BN.new(exponent)
+      key.n = OpenSSL::BN.new(mod)
+
+      key
+    end
+
+    def self.signature(email, password, key)
+      signature = "\x00".bytes
+      struct = key_to_struct(key)
+      signature.push Digest::SHA1.hexdigest(struct)[0,4]
+
+      # @TODO Encryptedpasswd notes:
+      # http://codedigging.com/blog/2014-06-09-about-encryptedpasswd/
+      #
+      # cipher = PKCS1_OAEP.new(key)
+      # encrypted_login = cipher.encrypt((email + u'\x00' + password).encode('utf-8'))
+      # signature.extend(encrypted_login)
+      # return base64.urlsafe_b64encode(signature)
+    end
+
+    private
+
+    def self.key_to_struct(key)
+      mod = key.n.to_s.bytes.map{ |x| x.to_s(16) }.join
+      exponent = key.e.to_s.bytes.map{ |x| x.to_s(16) }.join
+
+      "\x00\x00\x00\x80#{mod}\x00\x00\x00\x03#{exponent}".b
+    end
+  end
+end

data/lib/gpsoauth/utility.rb

@@ -0,0 +1,2 @@
+module Gpsoauth
+end

data/lib/gpsoauth/version.rb

@@ -0,0 +1,3 @@
+module Gpsoauth
+  VERSION = "0.1.0"
+end

metadata

@@ -0,0 +1,100 @@
+--- !ruby/object:Gem::Specification
+name: gpsoauth
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Bryan Mytko
+autorequire: 
+bindir: exe
+cert_chain: []
+date: 2016-07-24 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.11'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.11'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: httparty
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.13.7
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 0.13.7
+description: |-
+  A Ruby client library for Google Play Services OAuth.
+                            A port of the Python library gpsoauth by Simon Weber
+email:
+- bryanmytko@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".gitignore"
+- CODE_OF_CONDUCT.md
+- Gemfile
+- LICENSE.txt
+- README.md
+- gpsoauth.gemspec
+- lib/gpsoauth.rb
+- lib/gpsoauth/connection.rb
+- lib/gpsoauth/exceptions.rb
+- lib/gpsoauth/google.rb
+- lib/gpsoauth/utility.rb
+- lib/gpsoauth/version.rb
+homepage: http://github.com/bryanmytko/gpsoauth
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.5.1
+signing_key: 
+specification_version: 4
+summary: A Ruby client library for Google Play Services OAuth.
+test_files: []