interapp 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 98508f5b24fd144e338df835ef0d7e1271908353
+  data.tar.gz: 0e479439cb499db15074f9d9de3af0d9544ebced
+SHA512:
+  metadata.gz: 0a9d4cb13ffe1d0fb130e414279359791bea1c5ad66caae9e126e05b8f84e9cf2fbada99314cc54ab7d2a46a5d88a7217bc00001fbbd5710a95bf5530df8060b
+  data.tar.gz: 71acba52a9518c671478de8a2ba1a79f908ed1424132373e41baf80b2c135da6e940a0b1a2ef0f324f928d80eed3d78ef5c901c55b8dc6e39e2211dc964d3884

data/Rakefile

@@ -0,0 +1,30 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+
+require 'rdoc/task'
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'Interapp'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.rdoc')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+APP_RAKEFILE = File.expand_path("../spec/dummy/Rakefile", __FILE__)
+load 'rails/tasks/engine.rake'
+load 'lib/tasks/interapp_tasks.rake'
+
+
+Bundler::GemHelper.install_tasks
+
+require 'rspec/core'
+require 'rspec/core/rake_task'
+
+desc "Run all specs in spec directory (excluding plugin specs)"
+RSpec::Core::RakeTask.new(:spec => 'app:db:test:prepare')
+
+task default: :spec

data/app/controllers/interapp/application_controller.rb

@@ -0,0 +1,11 @@
+module Interapp
+  class ApplicationController < ActionController::Base
+    rescue_from Interapp::SignatureInvalidError do
+      render json: { error: "SIGNATURE_INVALID" }, status: 403
+    end
+
+    rescue_from Interapp::UnknownPeerError do
+      render json: { error: "UNKNOWN_PEER" }, status: 403
+    end
+  end
+end

data/app/controllers/interapp/messages_controller.rb

@@ -0,0 +1,12 @@
+module Interapp
+  class MessagesController < ApplicationController
+    def create
+      Interapp::ReceiveMessageService.new(
+        payload: request.body.read,
+        peer_identifier: request.headers["X-Interapp-Identifier"],
+        signature: request.headers["X-Interapp-Signature"]
+      ).perform
+      render json: { received_at: Time.now.to_i }
+    end
+  end
+end

data/app/models/interapp/message.rb

@@ -0,0 +1,22 @@
+module Interapp
+  class Message
+    attr_accessor :payload, :peer, :signature
+
+    def initialize(attributes = {})
+      attributes.each { |name, value| send("#{name}=", value) }
+    end
+
+    def verify
+      Interapp::Cryptography.verify(payload, signature_decoded, peer.public_key_decoded)
+    end
+
+    def sign
+      encoded_signature = Interapp::Cryptography.sign(payload, Interapp.configuration.private_key.to_i(16))
+      self.signature = encoded_signature.unpack("H*").first
+    end
+
+    def signature_decoded
+      ECDSA::Format::SignatureDerString.decode([signature].pack("H*"))
+    end
+  end
+end

data/app/models/interapp/peer.rb

@@ -0,0 +1,23 @@
+module Interapp
+  class Peer
+    attr_accessor :identifier, :public_key, :endpoint
+
+    def initialize(attributes = {})
+      attributes.each { |name, value| send("#{name}=", value) }
+    end
+
+    def public_key_decoded
+      @public_key_decoded ||= ECDSA::Format::PointOctetString.decode(
+        [public_key].pack("H*"), Interapp::EC_GROUP
+      )
+    end
+
+    def self.all
+      Interapp.configuration.peers
+    end
+
+    def self.find(identifier)
+      self.all.find{ |peer| peer.identifier == identifier }
+    end
+  end
+end

data/app/services/interapp/receive_message_service.rb

@@ -0,0 +1,27 @@
+module Interapp
+  class ReceiveMessageService
+    attr :message, :peer, :data
+
+    def initialize(payload:, peer_identifier:, signature:)
+      find_peer(peer_identifier)
+      @message = Message.new(payload: payload, peer: @peer, signature: signature)
+      @data = JSON.load(@message.payload)
+    end
+
+    def perform
+      if @message.verify
+        Interapp.configuration.handler.call(data, message.peer.identifier)
+      else
+        raise Interapp::SignatureInvalidError
+      end
+    rescue OpenSSL::ASN1::ASN1Error
+      raise Interapp::SignatureInvalidError
+    end
+
+    private
+    def find_peer(peer_identifier)
+      @peer = Interapp::Peer.find(peer_identifier)
+      raise Interapp::UnknownPeerError if @peer.nil?
+    end
+  end
+end

data/app/services/interapp/send_message_service.rb

@@ -0,0 +1,26 @@
+module Interapp
+  class SendMessageService
+    attr :message, :peer, :payload
+
+    def initialize(data:, peer_identifier:)
+      find_peer(peer_identifier)
+      @payload = JSON.dump(data)
+      @message = Message.new(payload: @payload, peer: peer)
+      @message.sign
+    end
+
+    def perform
+      RestClient.post(peer.endpoint, message.payload, {
+        content_type: 'application/json',
+        "X-Interapp-Identifier" => Interapp.configuration.identifier,
+        "X-Interapp-Signature" => message.signature
+      })
+    end
+
+    private
+    def find_peer(peer_identifier)
+      @peer = Interapp::Peer.find(peer_identifier)
+      raise Interapp::UnknownPeerError if @peer.nil?
+    end
+  end
+end

data/config/routes.rb

@@ -0,0 +1,3 @@
+Interapp::Engine.routes.draw do
+  post "/" => "messages#create", as: :root
+end

data/lib/interapp.rb

@@ -0,0 +1,23 @@
+require "ecdsa"
+require "rest-client"
+require "interapp/engine"
+require "interapp/configuration"
+require "interapp/cryptography"
+require "interapp/errors"
+
+module Interapp
+  EC_GROUP = ECDSA::Group::Secp256k1
+
+  class << self
+    attr_accessor :configuration
+  end
+
+  def self.configure
+    self.configuration ||= Interapp::Configuration.new
+    yield(configuration)
+  end
+
+  def self.send_to(peer_identifier, data)
+    Interapp::SendMessageService.new(data: data, peer_identifier: peer_identifier)
+  end
+end

data/lib/interapp/configuration.rb

@@ -0,0 +1,18 @@
+module Interapp
+  class Configuration
+    VALID_CONFIG_KEYS = [:identifier, :private_key, :handler, :peers]
+
+    attr_accessor *VALID_CONFIG_KEYS
+
+    def on_receive(&block)
+      @handler = block
+    end
+
+    def add_peer
+      peer = Interapp::Peer.new
+      yield(peer)
+      @peers ||= []
+      @peers << peer
+    end
+  end
+end

data/lib/interapp/cryptography.rb

@@ -0,0 +1,30 @@
+module Interapp
+  module Cryptography
+    def self.generate_keypair
+      private_key = 1 + SecureRandom.random_number(group.order - 1)
+      public_key = group.generator.multiply_by_scalar(private_key)
+      public_key_binary = ECDSA::Format::PointOctetString.encode(public_key, compression: true)
+      return private_key.to_s(16), public_key_binary.unpack('H*').first
+    end
+
+    def self.sign(payload, private_key_binary)
+      digest = Digest::SHA2.digest(payload)
+      signature = nil
+      while signature.nil?
+        temp_key = 1 + SecureRandom.random_number(group.order - 1)
+        signature = ECDSA.sign(group, private_key_binary, digest, temp_key)
+      end
+      ECDSA::Format::SignatureDerString.encode(signature)
+    end
+
+    def self.verify(payload, signature_decoded, public_key_decoded)
+      digest = Digest::SHA2.digest(payload)
+      ECDSA.valid_signature?(public_key_decoded, digest, signature_decoded)
+    end
+
+    private
+    def self.group
+      Interapp::EC_GROUP
+    end
+  end
+end

data/lib/interapp/engine.rb

@@ -0,0 +1,5 @@
+module Interapp
+  class Engine < ::Rails::Engine
+    isolate_namespace Interapp
+  end
+end

data/lib/interapp/errors.rb

@@ -0,0 +1,4 @@
+module Interapp
+  class UnknownPeerError < StandardError; end
+  class SignatureInvalidError < StandardError; end
+end

data/lib/interapp/version.rb

@@ -0,0 +1,3 @@
+module Interapp
+  VERSION = "0.0.1"
+end

data/lib/tasks/interapp_tasks.rake

@@ -0,0 +1,12 @@
+# desc "Explaining what the task does"
+# task :interapp do
+#   # Task goes here
+# end
+
+namespace :interapp do
+  desc "Generate a private key and its public key"
+  task :keypair do
+    keypair = Interapp::Cryptography.generate_keypair
+    puts "Private Key:\n#{keypair[0]}\nPublic Key:\n#{keypair[1]}"
+  end
+end

data/spec/dummy/README.rdoc

@@ -0,0 +1,28 @@
+== README
+
+This README would normally document whatever steps are necessary to get the
+application up and running.
+
+Things you may want to cover:
+
+* Ruby version
+
+* System dependencies
+
+* Configuration
+
+* Database creation
+
+* Database initialization
+
+* How to run the test suite
+
+* Services (job queues, cache servers, search engines, etc.)
+
+* Deployment instructions
+
+* ...
+
+
+Please feel free to use a different markup language if you do not plan to run
+<tt>rake doc:app</tt>.

data/spec/dummy/Rakefile

@@ -0,0 +1,6 @@
+# Add your own tasks in files placed in lib/tasks ending in .rake,
+# for example lib/tasks/capistrano.rake, and they will automatically be available to Rake.
+
+require File.expand_path('../config/application', __FILE__)
+
+Rails.application.load_tasks

data/spec/dummy/app/assets/javascripts/application.js

@@ -0,0 +1,13 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or vendor/assets/javascripts of plugins, if any, can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file.
+//
+// Read Sprockets README (https://github.com/sstephenson/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require_tree .

data/spec/dummy/app/assets/stylesheets/application.css

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or vendor/assets/stylesheets of plugins, if any, can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any styles
+ * defined in the other CSS/SCSS files in this directory. It is generally better to create a new
+ * file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/spec/dummy/app/controllers/application_controller.rb

@@ -0,0 +1,5 @@
+class ApplicationController < ActionController::Base
+  # Prevent CSRF attacks by raising an exception.
+  # For APIs, you may want to use :null_session instead.
+  protect_from_forgery with: :exception
+end

data/spec/dummy/app/helpers/application_helper.rb

@@ -0,0 +1,2 @@
+module ApplicationHelper
+end

data/spec/dummy/app/views/layouts/application.html.erb

@@ -0,0 +1,14 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Dummy</title>
+  <%= stylesheet_link_tag    'application', media: 'all', 'data-turbolinks-track' => true %>
+  <%= javascript_include_tag 'application', 'data-turbolinks-track' => true %>
+  <%= csrf_meta_tags %>
+</head>
+<body>
+
+<%= yield %>
+
+</body>
+</html>

data/spec/dummy/bin/bundle

@@ -0,0 +1,3 @@
+#!/usr/bin/env ruby
+ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__)
+load Gem.bin_path('bundler', 'bundle')

data/spec/dummy/bin/rails

@@ -0,0 +1,4 @@
+#!/usr/bin/env ruby
+APP_PATH = File.expand_path('../../config/application',  __FILE__)
+require_relative '../config/boot'
+require 'rails/commands'

data/spec/dummy/bin/rake

@@ -0,0 +1,4 @@
+#!/usr/bin/env ruby
+require_relative '../config/boot'
+require 'rake'
+Rake.application.run

data/spec/dummy/config.ru

@@ -0,0 +1,4 @@
+# This file is used by Rack-based servers to start the application.
+
+require ::File.expand_path('../config/environment',  __FILE__)
+run Rails.application

data/spec/dummy/config/application.rb

@@ -0,0 +1,23 @@
+require File.expand_path('../boot', __FILE__)
+
+require 'rails/all'
+
+Bundler.require(*Rails.groups)
+require "interapp"
+
+module Dummy
+  class Application < Rails::Application
+    # Settings in config/environments/* take precedence over those specified here.
+    # Application configuration should go into files in config/initializers
+    # -- all .rb files in that directory are automatically loaded.
+
+    # Set Time.zone default to the specified zone and make Active Record auto-convert to this zone.
+    # Run "rake -D time" for a list of tasks for finding time zone names. Default is UTC.
+    # config.time_zone = 'Central Time (US & Canada)'
+
+    # The default locale is :en and all translations from config/locales/*.rb,yml are auto loaded.
+    # config.i18n.load_path += Dir[Rails.root.join('my', 'locales', '*.{rb,yml}').to_s]
+    # config.i18n.default_locale = :de
+  end
+end
+

data/spec/dummy/config/boot.rb

@@ -0,0 +1,5 @@
+# Set up gems listed in the Gemfile.
+ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../../../Gemfile', __FILE__)
+
+require 'bundler/setup' if File.exist?(ENV['BUNDLE_GEMFILE'])
+$LOAD_PATH.unshift File.expand_path('../../../../lib', __FILE__)

data/spec/dummy/config/database.yml

@@ -0,0 +1,25 @@
+# SQLite version 3.x
+#   gem install sqlite3
+#
+#   Ensure the SQLite 3 gem is defined in your Gemfile
+#   gem 'sqlite3'
+#
+default: &default
+  adapter: sqlite3
+  pool: 5
+  timeout: 5000
+
+development:
+  <<: *default
+  database: db/development.sqlite3
+
+# Warning: The database defined as "test" will be erased and
+# re-generated from your development database when you run "rake".
+# Do not set this db to the same as development or production.
+test:
+  <<: *default
+  database: db/test.sqlite3
+
+production:
+  <<: *default
+  database: db/production.sqlite3