heroic-sns 1.0.0 → 1.0.1

checksums.yaml

@@ -1,15 +1,15 @@
 ---
 !binary "U0hBMQ==":
   metadata.gz: !binary |-
-    ODJhMzlkZTE4ODA5ZWE2ODdmMGNmOTM0M2IxYTFkNWYwMzBlMjVjYw==
+    N2Q1NmY1MjNhNGViOTI4NDk1N2FjZmQzYWZjNTE2ZTM4MzM3OTlkNA==
   data.tar.gz: !binary |-
-    MzEyN2NhN2IyMDMzMjQ0NGZjZGJjNzRlOWZiYWNjNzIxMzI2OGRjNA==
+    ZmFkMjY5YzdiMDQ3ODMwZjQyNDNkNzY1ZGM3MzU3OWVmNWYzNDJkYQ==
 !binary "U0hBNTEy":
   metadata.gz: !binary |-
-    OTNmZTE4MGI0YTVjZWM4MTYxNjdmNGFlM2I1OGI1YzZiMmUyM2FhNzdmNzk5
-    YmE4MThiMjNmYmMxZGFjMDBkZDg0N2VhNDVhYzlhMzBjMDU1MjUyOTg3ZGU5
-    NzI1MGIzNTExNzM2MjZiYjU1ZmI2YTYyODNiZjM2OGU3NzcwZmM=
+    MDZkY2QwOTkwZmRkMzc4ZmMwNTcyYTc5MDRlZjQ1ZTkxN2JmZjMwZWI4MTA4
+    MTRmYzRjMmRjM2M3YTJiOTdlOGZlN2IyMzQyMjAyYWJiZjQ4OTc2Zjg1Yjll
+    MGQ5NjM5ZmM5ZmY5YjdmYjg4Y2ZmZjFiNmUzZDc2Zjk3OWQwMDI=
   data.tar.gz: !binary |-
-    YjJmNmJhZjg1YzFkZDhjODM2YmQ2ZDQ2MWNjZmM5MDRkYjk5ZjYyYmNiY2E2
-    NmQ5ZTczZmE5OTMwYWQyMzhmZWQwZTAwNTNhZGVmOTZlYjIxMjRkODdlMjlm
-    NTUxMmI5ODc0ZWY2YzE0MzEwMmQ5YTA0ODNmYTIzMThjM2IwMjY=
+    NDBhNWZmMzY1N2M0YTM5MWY4Njk0ZWQyNTc0NGY0NDk2NTQ4N2U4NDIwODE1
+    NWMwNjhlNzYyNWUzZmE2YjZiMzBkN2Q3ZGM1NjczMDJiOGQ2MGVlNzAyZDQ5
+    MWY4N2RkZDJlOGQ4YWJlM2U0OTUzN2ZmNDNlZWIyODdjYmEwZDU=

data/.gitignore

@@ -0,0 +1,4 @@
+/capture
+/pkg
+/tmp
+/Gemfile.lock

data/.travis.yml

@@ -0,0 +1,6 @@
+language: ruby
+rvm:
+  - ruby-head
+  - "2.0.0"
+  - "1.9.3"
+  - "1.8.7"

data/CHANGELOG

@@ -0,0 +1,9 @@
+### 1.0.1 (May 17, 2013)
+
+* Gem housekeeping, based on [advice by dblock](http://code.dblock.org/your-first-ruby-gem)
+
+### 1.0.0 (May 5, 2013)
+
+* Initial public release - [@benzado]
+
+[@benzado]: http://github.com/benzado

data/Gemfile

@@ -0,0 +1,5 @@
+source "http://rubygems.org"
+
+gemspec
+
+gem "rake"

data/README.md

@@ -1,34 +1,40 @@
-# Heroic SNS Endpoint
+# Heroic::SNS, Rack middleware for Amazon SNS endpoints
 
-This gem contains a lightweight Rack middleware for AWS Simple Notification
-Service (SNS) endpoints.
+Heroic::SNS provides secure, lightweight Rack middleware for AWS Simple
+Notification Service (SNS) endpoints.
 
-SNS messages to your web application are intercepted, parsed, verified, and then
-passed along to your Rack application in the `sns.message` environment key.
+Any SNS messages POSTed by Amazon to your web application are intercepted,
+parsed, verified, and then passed along via the `sns.message` environment key.
 
-If something goes wrong, the error will be passed along in the `sns.error`
-environment key. `Endpoint` does not log any messages itself.
+If something goes wrong, the error will be passed along via the `sns.error`
+environment key. `Heroic::SNS::Endpoint` does not log any messages itself.
 
-This gem *does not* depend on [aws-sdk][]. In fact, the only dependency it has
-beyond the standard libraries is [rack][]. This is intentional, since AWS
-credentials are not required to receive SNS notifications.
+**Heroic::SNS aims to be secure.** All message signatures are verified (to avoid
+forgeries) and stale messages are rejected (to avoid replay attacks).
+
+**Heroic::SNS aims to be lightweight.** Beside Ruby standard libraries there are
+no dependencies beside [rack][]. Specifically, Heroic::SNS *does not* depend on [aws-sdk][]. They will be friendly to each other, however, if you include both
+in a project.
 
 [aws-sdk]: https://github.com/aws/aws-sdk-ruby
 [rack]: http://rack.github.io/
 
 ## Overview
 
-1. Install in your middleware stack
-2. Get SNS messages from `env['sns.message']`
-3. Get errors from `env['sns.error']`
+1. `gem install heroic-sns`
+2. `require 'heroic/sns'`
+3. Install `Heroic::SNS::Endpoint` in your Rack app's middleware stack
+4. Get SNS messages from `env['sns.message']`
+5. Get errors from `env['sns.error']`
 
 ## How to use it
 
-Simply add the following to your `config.ru` file:
+Once you have installed the gem, simply add the following to your `config.ru`
+file:
 
     use Heroic::SNS::Endpoint, :topics => /:aws-ses-bounces$/
 
-For Rails, you could also install it in `/config/initializers/sns_endpoint.rb`:
+On Rails, you could also install it in `/config/initializers/sns_endpoint.rb`:
 
     Rails.application.config.middleware.use Heroic::SNS::Endpoint, :topic => ...
 
@@ -36,21 +42,21 @@ The Endpoint class takes an options hash as an argument, and understands these
 options:
 
 `:topic` is required, and provides a filter that defines what SNS topics are
-handled by this endpoint. A message is considered either "on-topic" or
-"off-topic". You can supply any of the following:
+handled by this endpoint. **A message is considered either "on-topic" or
+"off-topic".** You can supply any of the following:
 
-- a single topic ARN as a `String`
-- a list of topic ARNs as an `Array` of `String`
+- a `String` containing a single topic ARN
+- an `Array` of `String` representing a list of topic ARNs
 - a `RegExp` which matches on-topic ARNs
 - a `Proc` which accepts an ARN as an argument and returns `true` or `false` for
   on-topic and off-topic ARNs, respectively.
 
-The key `topics:` also works.
+The key `:topics` is also supported.
 
 `:auto_confirm` affects how on-topic subscription confirmations are handled.
 
-- If `true`, they are confirmed by retrieving the URL in the `SubscribeURL` field
-  of the SNS message, and your app is not notified.
+- If `true`, they are confirmed by retrieving the URL in the `SubscribeURL`
+  field of the SNS message, and your app is not notified.
 - If `false`, they are ignored; your app is also not notified.
 - If `nil`, there is no special handling and the message is passed along to your
   app.
@@ -96,7 +102,17 @@ You must skip the authenticity token verification to allow Amazon to POST to the
 controller action. Be careful not to disable it for more actions than you need.
 Be sure to disable any authentication checks for that action, too.
 
-## How off-topic notifications are handled
+## Multiple endpoint URLs
+
+If you are receiving multiple notifications at multiple endpoint URLs, you
+should only include one instance of the Endpoint in your middleware stack, and
+ensure that its topic filter allows all the notifications you are interested in
+to pass through.
+
+`Endpoint` does not interact with the URL path at all; if you want your
+subscriptions to go to different URLs, simply set them up that way.
+
+## Off-topic notifications
 
 As a security measure, `Endpoint` requires you to set up a topic filter. Any
 notifications that do not match this filter are not passed along to your
@@ -114,20 +130,20 @@ messages will be treated as on topic. Be aware that it is dangerous to leave
 `:auto_confirm` enabled with a permissive topic filter, as this will allow
 anyone to subscribe your web app to any SNS notification.
 
-## Receiving multiple notification topics
+## Contributing
 
-If you are receiving multiple notifications at multiple endpoint URLs, you should
-only include one instance of the Endpoint in your middleware stack, and ensure
-that its topic filter allows all the notifications you are interested in to pass
-through.
+* Fork the project.
+* Make your feature addition or bug fix and include tests.
+* Update `CHANGELOG`.
+* Send a pull request.
 
-`Endpoint` does not interact with the URL path at all; if you want your
-subscriptions to go to different URLs, simply set them up that way.
+## Copyright and License
 
-## Questions?
+Copyright 2013, Heroic Software Inc and Contributors.
 
-You can send me an email at <ben@benzado.com> or Twitter [@benzado][]
+This project [is licensed under the Apache license](LICENSE).
 
-[@benzado]: https://twitter.com/benzado
+Direct correspondence to Benjamin Ragheb via email at <ben@benzado.com>
+or on Twitter [@benzado](https://twitter.com/benzado).
 
 [![Build Status](https://travis-ci.org/benzado/heroic-sns.png?branch=master)](https://travis-ci.org/benzado/heroic-sns)

data/Rakefile

@@ -0,0 +1,15 @@
+require 'rubygems'
+require 'bundler/gem_tasks'
+require 'rake/testtask'
+
+Bundler.setup(:default, :development)
+
+Rake::TestTask.new do |t|
+  t.libs << 'test'
+end
+
+task :demo do
+  sh 'rackup -Ilib demo/config.ru'
+end
+
+task :default => :test

data/bin/fake-sns

@@ -0,0 +1,26 @@
+#!/usr/bin/env ruby
+require 'securerandom'
+require 'net/http'
+require 'json'
+
+Net::HTTP.start('localhost', 9292) do |http|
+  ARGV.each do |path|
+    File.open(path) do |f|
+      json = f.read
+      message = JSON.parse(json)
+      type, message_id, topic_arn = message.values_at(*%w[Type MessageId TopicArn])
+      puts "Type: #{type}"
+      puts "MessageId: #{message_id}"
+      puts "TopicArn: #{topic_arn}"
+      headers = {
+        'Content-Type' => 'text/plain',
+        'x-amz-sns-message-type' => type,
+        'x-amz-sns-message-id' => message_id,
+        'x-amz-sns-topic-arn' => topic_arn,
+        'x-amz-sns-subscription-arn' => "#{topic_arn}:#{SecureRandom.uuid}"
+      }
+      res = http.post('/', json, headers)
+      p res
+    end
+  end
+end

data/demo/config.ru

@@ -0,0 +1,54 @@
+require 'erb'
+require 'heroic/sns'
+
+# `rackup -Ilib` at the command line to start this rack app
+
+class MessageCapture
+  def initialize(app)
+    @app = app
+  end
+  def call(env)
+    if message = env['sns.message']
+      path = "#{message.id}.txt"
+      File.open(path, 'w') { |f| f.write(message.to_json) } unless File.exists?(path)
+    end
+    @app.call(env)
+  end
+end
+
+class DemoApp
+
+  def initialize
+    @events = Array.new
+    @template = ERB.new(File.read(File.join(File.dirname(__FILE__), 'demo.erb')))
+  end
+
+  def call(env)
+    if error = env['sns.error']
+      @events << error
+      puts "SNS Error: #{error}"
+      response(500, 'Error')
+    elsif message = env['sns.message']
+      @events << message
+      puts "*** MESSAGE #{message.id} RECEIVED ***"
+      puts "Subject: #{message.subject}\n\n" if message.subject
+      puts message.body
+      puts "*** END MESSAGE ***"
+      response(200, 'OK')
+    else
+      content = @template.result(binding)
+      [200, { 'Content-Type' => 'text/html' }, [ content ]]
+    end
+  end
+
+  def response(code, text)
+    [code, {'Content-Type' => 'text/plain', 'Content-Length' => text.length.to_s}, [text]]
+  end
+
+end
+
+use Rack::Lint
+use Heroic::SNS::Endpoint, topics: Proc.new { true }, auto_confirm: nil, auto_unsubscribe: nil
+use Rack::Lint
+use MessageCapture
+run DemoApp.new

data/demo/demo.erb

@@ -0,0 +1,35 @@
+<!DOCTYPE html>
+<html>
+  <head>
+    <title>Heroic::SNS::Endpoint Demo</title>
+    <style>
+      th { text-align: left; }
+    </style>
+  </head>
+  <body>
+    <p>Send SNS messages to this server and then reload to see them here.</p>
+    <% @events.each do |event| %>
+      <hr/>
+      <% if event.is_a? Heroic::SNS::Error %>
+        <p><b>Error</b> <code><%= event.message %></code></p>
+      <% else %>
+        <table>
+          <tr><th>Message</th><td><%= event.id %></td></td>
+          <tr><th>Topic</th><td><%= event.topic_arn %></td></td>
+          <tr><th>Time</th><td><%= event.timestamp %></td></td>
+          <tr><th>Type</th><td><%= event.type %></td></td>
+          <% if event.subject %>
+            <tr><th>Subject</th><td><%= event.subject %></td></td>
+          <% end %>
+        </table>
+        <pre><%= event.body %></pre>
+        <% if event.subscribe_url %>
+          <div><a href="<%= event.subscribe_url %>">Click Here to Subscribe</a></div>
+        <% end %>
+        <% if event.unsubscribe_url %>
+          <div><a href="<%= event.unsubscribe_url %>">Click Here to Unsubscribe</a></div>
+        <% end %>
+      <% end %>
+    <% end %>
+  </body>
+</html>

data/description.txt

@@ -0,0 +1,6 @@
+Secure, lightweight Rack middleware for Amazon Simple Notification Service (SNS)
+endpoints. SNS messages are intercepted, parsed, verified, and then passed along
+to the web application via the 'sns.message' environment key. Heroic::SNS has no
+dependencies besides Rack (specifically, the aws-sdk gem is not needed).
+SNS message signatures are verified in order to reject forgeries and replay
+attacks.

data/heroic-sns.gemspec

@@ -0,0 +1,23 @@
+$:.push File.expand_path("../lib", __FILE__)
+require "heroic/sns/version"
+
+# See: http://guides.rubygems.org/specification-reference/
+
+Gem::Specification.new do |s|
+  s.name        = 'heroic-sns'
+  s.version     = Heroic::SNS::VERSION
+  s.summary     = "Lightweight Rack middleware for AWS SNS endpoints"
+  s.description = File.read('description.txt')
+  s.license     = 'Apache'
+
+  s.author      = "Benjamin Ragheb"
+  s.email       = 'ben@benzado.com'
+  s.homepage    = 'https://github.com/benzado/heroic-sns'
+
+  s.files       = `git ls-files`.split("\n")
+
+  s.platform = Gem::Platform::RUBY
+  s.required_ruby_version = '>= 1.8.7'
+  s.add_runtime_dependency 'rack', '~> 1.4'
+  s.add_runtime_dependency 'json', '~> 1.7.7'
+end

data/lib/heroic/sns.rb

@@ -1,3 +1,4 @@
+require 'heroic/sns/version'
 require 'heroic/sns/message'
 require 'heroic/sns/endpoint'
 

data/lib/heroic/sns/version.rb

@@ -0,0 +1,5 @@
+module Heroic
+  module SNS
+    VERSION = '1.0.1'
+  end
+end

data/test/fixtures/notification.json

@@ -0,0 +1,12 @@
+{
+  "Type" : "Notification",
+  "MessageId" : "5b75c78f-8c52-5271-9250-8e51f8ced1a1",
+  "TopicArn" : "arn:aws:sns:us-east-1:777594007835:racktest",
+  "Subject" : "tmnt",
+  "Message" : "booyakasha!",
+  "Timestamp" : "2013-04-09T19:56:12.524Z",
+  "SignatureVersion" : "1",
+  "Signature" : "E6kUvZBxVnybY2tX3XpRlkZGfxw6W+d0E38IRBmrmLn/ANMx6RdG694xOguZsPX+t1rGvCMUmF9uPTJAkCTAkeCsy+VzYrvujgBTg2i50Lt/sfFslAOZFGXntHjN1R865VO8pscviCxFsaaiKobcAw2UjdgMguMZ6xrt80LAJFM=",
+  "SigningCertURL" : "https://sns.us-east-1.amazonaws.com/SimpleNotificationService-f3ecfb7224c7233fe7bb5f59f96de52f.pem",
+  "UnsubscribeURL" : "https://sns.us-east-1.amazonaws.com/?Action=Unsubscribe&SubscriptionArn=arn:aws:sns:us-east-1:777594007835:racktest:24ed571c-0bdb-4da8-925a-f47aa0777a00"
+}

data/test/fixtures/sns.crt

@@ -0,0 +1,15 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/test/fixtures/sns.key

@@ -0,0 +1,15 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

data/test/fixtures/subscription.json

@@ -0,0 +1,12 @@
+{
+  "Type" : "SubscriptionConfirmation",
+  "MessageId" : "0d2474c6-4928-4878-aced-421f2f197b96",
+  "Token" : "2336412f37fb687f5d51e6e241d164b14a5cd1b9e576b8d39bd752f279ff94cfb9d0ba217bdf2898e2b48d719b903880a5332117e194d90f7ee844ddbd8d672883f7d83eb9f780cff7319dc07a004c79ee4d55d0a29e782d8ac2f6ef751f8c02728f3382c8ab3f5ce0b8a439f985bac5",
+  "TopicArn" : "arn:aws:sns:us-east-1:777594007835:racktest",
+  "Message" : "You have chosen to subscribe to the topic arn:aws:sns:us-east-1:777594007835:racktest.\nTo confirm the subscription, visit the SubscribeURL included in this message.",
+  "SubscribeURL" : "https://sns.us-east-1.amazonaws.com/?Action=ConfirmSubscription&TopicArn=arn:aws:sns:us-east-1:777594007835:racktest&Token=2336412f37fb687f5d51e6e241d164b14a5cd1b9e576b8d39bd752f279ff94cfb9d0ba217bdf2898e2b48d719b903880a5332117e194d90f7ee844ddbd8d672883f7d83eb9f780cff7319dc07a004c79ee4d55d0a29e782d8ac2f6ef751f8c02728f3382c8ab3f5ce0b8a439f985bac5",
+  "Timestamp" : "2013-04-09T19:44:39.541Z",
+  "SignatureVersion" : "1",
+  "Signature" : "ce73LnwE9kZ4sEUEGh/s63myK/sb7x1HkwP079h08CQN1wIF9/HVdqCEB56o8ngc9x1bp1lKQtHVVMPUWEoNnx1CJinj8/BcL0BiEL2Q/+4og1ucWMQ/3vnISVwE5MUrYzcDBFJdrZHDEO3RRCVeqF4GHV0nuD1CqKzvven8ORU=",
+  "SigningCertURL" : "https://sns.us-east-1.amazonaws.com/SimpleNotificationService-f3ecfb7224c7233fe7bb5f59f96de52f.pem"
+}

data/test/fixtures/unsubscribe.json

@@ -0,0 +1,12 @@
+{
+  "Type" : "UnsubscribeConfirmation",
+  "MessageId" : "30ce782a-cb22-474a-bb42-a4b2ebd0df6a",
+  "Token" : "2336412f37fb687f5d51e6e241d164b14a5cd1b9e5753984c8d8cb6b1ec4709760069dd0e49f5b8f0b9030fcd08778bf41c80d105a934de1699bdb77e286185a7e24c142b55cd16f58b7e7eedc478a384c875379b2d6d9f153a3909dd0912eb84e3c9c5a210f68f9ce8707a0d23d14f4",
+  "TopicArn" : "arn:aws:sns:us-east-1:777594007835:racktest",
+  "Message" : "You have chosen to deactivate subscription arn:aws:sns:us-east-1:777594007835:racktest:24ed571c-0bdb-4da8-925a-f47aa0777a00.\nTo cancel this operation and restore the subscription, visit the SubscribeURL included in this message.",
+  "SubscribeURL" : "https://sns.us-east-1.amazonaws.com/?Action=ConfirmSubscription&TopicArn=arn:aws:sns:us-east-1:777594007835:racktest&Token=2336412f37fb687f5d51e6e241d164b14a5cd1b9e5753984c8d8cb6b1ec4709760069dd0e49f5b8f0b9030fcd08778bf41c80d105a934de1699bdb77e286185a7e24c142b55cd16f58b7e7eedc478a384c875379b2d6d9f153a3909dd0912eb84e3c9c5a210f68f9ce8707a0d23d14f4",
+  "Timestamp" : "2013-04-09T20:00:52.060Z",
+  "SignatureVersion" : "1",
+  "Signature" : "M2cQRoTu16zvpZr8q8tgLuZeea1d5K+PS/AT1MqVCbGVr1hiax24JzlymoKSDYGTLAYFbLlh+Kx+0gbOQKfIVoxfUofsFZtCp/RW+iEAfinDfVBSfFoMyTeVVLZgsdigrdUVO99R707XwbS4zftj3dpIFP/2R5RzNzzPuAMN+pM=",
+  "SigningCertURL" : "https://sns.us-east-1.amazonaws.com/SimpleNotificationService-f3ecfb7224c7233fe7bb5f59f96de52f.pem"
+}

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: heroic-sns
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.0.1
 platform: ruby
 authors:
 - Benjamin Ragheb
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-05-05 00:00:00.000000000 Z
+date: 2013-05-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rack
@@ -24,16 +24,33 @@ dependencies:
     - - ~>
       - !ruby/object:Gem::Version
         version: '1.4'
-description: ! 'Lightweight Rack middleware for AWS Simple Notification Service (SNS)
-  endpoints.
+- !ruby/object:Gem::Dependency
+  name: json
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.7.7
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ~>
+      - !ruby/object:Gem::Version
+        version: 1.7.7
+description: ! 'Secure, lightweight Rack middleware for Amazon Simple Notification
+  Service (SNS)
+
+  endpoints. SNS messages are intercepted, parsed, verified, and then passed along
 
-  SNS messages are intercepted, parsed, verified, and passed along to the Rack
+  to the web application via the ''sns.message'' environment key. Heroic::SNS has
+  no
 
-  application in the ''sns.message'' environment key. The gem is designed to be
+  dependencies besides Rack (specifically, the aws-sdk gem is not needed).
 
-  lightweight and does not depend on any other gem besides ''rack'' (specifically,
+  SNS message signatures are verified in order to reject forgeries and replay
 
-  the ''aws-sdk'' gem is not required).
+  attacks.
 
 '
 email: ben@benzado.com
@@ -41,11 +58,27 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- README.md
+- .gitignore
+- .travis.yml
+- CHANGELOG
+- Gemfile
 - LICENSE
+- README.md
+- Rakefile
+- bin/fake-sns
+- demo/config.ru
+- demo/demo.erb
+- description.txt
+- heroic-sns.gemspec
+- lib/heroic/sns.rb
 - lib/heroic/sns/endpoint.rb
 - lib/heroic/sns/message.rb
-- lib/heroic/sns.rb
+- lib/heroic/sns/version.rb
+- test/fixtures/notification.json
+- test/fixtures/sns.crt
+- test/fixtures/sns.key
+- test/fixtures/subscription.json
+- test/fixtures/unsubscribe.json
 - test/helper.rb
 - test/test_endpoint.rb
 - test/test_message.rb
@@ -53,7 +86,7 @@ homepage: https://github.com/benzado/heroic-sns
 licenses:
 - Apache
 metadata: {}
-post_install_message: Thanks for installing!
+post_install_message: 
 rdoc_options: []
 require_paths:
 - lib
@@ -74,4 +107,3 @@ signing_key:
 specification_version: 4
 summary: Lightweight Rack middleware for AWS SNS endpoints
 test_files: []
-has_rdoc: