have-i-been-pwned 0.1.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 4711dd81ac9ca50eba43b0bb6ba9fb11ab360326
+  data.tar.gz: '018f62905a5d68f2221f2e15d2231eaeeb7ca0b1'
+SHA512:
+  metadata.gz: b0055b956fd638355ac2234523eb408a65cdf58bd1bb5b9a2dae466f37b52f6d33e1c424a575b2fe9dd822b6daca516c4823afa6fbd12cf4dc6de57a8ac6eaad
+  data.tar.gz: 802e570b65737f296ffb5668aec0ddf44b1dda82e7953b1cac470778b3294ff9477faafe131214419cf3d798b0cddb7052c6c9ff963efd6b33d057c517f75acc

data/Gemfile

@@ -0,0 +1,3 @@
+source 'https://rubygems.org'
+gem 'codecov', :require => false, :group => :test
+gemspec

data/Rakefile

@@ -0,0 +1,14 @@
+require 'bundler'
+require 'rubygems'
+require 'rake/testtask'
+
+Bundler::GemHelper.install_tasks
+
+Rake::TestTask.new do |t|
+  t.libs << 'test'
+  t.pattern = 'test/test_*.rb'
+  t.verbose = true
+end
+
+desc "Run tests"
+task :default => :test

data/lib/have_i_been_pwned.rb

@@ -0,0 +1,41 @@
+require 'httparty'
+require 'digest'
+
+module HaveIBeenPwned
+  class << self
+    def pwned password
+      # if password is not nil
+      if password
+        # get a digest of the password
+        digest = Digest::SHA1.hexdigest password
+        # get the first 5 characters of the hash
+        firstFive = digest[0..4]
+        # make the APU call
+        results = HTTParty.get("https://api.pwnedpasswords.com/range/#{firstFive}")
+        # if we get something back
+        if results.code != 404
+          # split the string based on line breaks into an array
+          resArray = results.split("\n")
+          # interate through the list of hashes
+          resArray.each do |partial_hash|
+            # hashes are formatted hash:count
+            # ex. 0018A45C4D1DEF81644B54AB7F969B88D65:1
+            # return true if we find a match
+            return true if "#{firstFive}#{partial_hash.split(":")[0]}".upcase == digest.upcase
+          end
+
+          # return false if we dont find anything
+          return false
+        else
+          raise 'Troy Hunt has failed us. The API returned a 404.'
+        end
+      else
+        raise 'You must provide a password to check!'
+      end
+    end
+  end
+end
+
+# Uncomment and call directly if you want to test this locally
+# results = HaveIBeenPwned::pwned 'abc123'
+# puts results

data/lib/version.rb

@@ -0,0 +1,3 @@
+module HaveIBeenPwned
+  VERSION = "0.1.1"
+end

data/test/test_have_i_been_pwned.rb

@@ -0,0 +1,20 @@
+require 'minitest/autorun'
+require 'have_i_been_pwned'
+
+class HolaTest < Minitest::Test
+  def test_abc123_is_found
+    assert_equal true, HaveIBeenPwned::pwned('abc123')
+  end
+
+  def test_password_is_found
+    assert_equal true, HaveIBeenPwned::pwned('password')
+  end
+
+  def test_crazy_long_password_is_not_found
+    assert_equal false, HaveIBeenPwned::pwned('dfsfk;lngfdsjlmkvsdlmjkvf8um54b89u5438mu0p435u0m5b409u54b09um5309um50u9m3b56u90m54jmgtrgv')
+  end
+
+  def test_not_actually_providing_a_password_is_silly
+    assert_equal false, HaveIBeenPwned::pwned('')
+  end
+end

metadata

@@ -0,0 +1,92 @@
+--- !ruby/object:Gem::Specification
+name: have-i-been-pwned
+version: !ruby/object:Gem::Version
+  version: 0.1.1
+platform: ruby
+authors:
+- Dale Myszewski
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2019-06-27 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: httparty
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: minitest
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: A simple gem to check and see if a given password was compromised by
+  a hack. Special thanks to Troy Hunt facilitating the service.
+email: dale@daleslab.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- Gemfile
+- Rakefile
+- lib/have_i_been_pwned.rb
+- lib/version.rb
+- test/test_have_i_been_pwned.rb
+homepage: https://github.com/Dales-Lab/haveibeenpwned-ruby-sdk
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+- test
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.6.7
+signing_key: 
+specification_version: 4
+summary: Check to see if your passwords are safe
+test_files: []