jamm 1.0.12 → 1.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/Gemfile.lock +1 -1
- data/lib/jamm/api/models/v1_buyer.rb +9 -1
- data/lib/jamm/api/models/v1_charge.rb +1 -1
- data/lib/jamm/api/models/v1_charge_message_status.rb +2 -1
- data/lib/jamm/api/models/v1_customer.rb +2 -7
- data/lib/jamm/api/models/v1_event_type.rb +2 -1
- data/lib/jamm/charge.rb +7 -1
- data/lib/jamm/contract.rb +5 -1
- data/lib/jamm/customer.rb +12 -2
- data/lib/jamm/errors.rb +94 -0
- data/lib/jamm/healthcheck.rb +2 -0
- data/lib/jamm/version.rb +1 -1
- data/lib/jamm/webhook.rb +43 -12
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: fb43fe917ff242848502e64259836ae383f513b554bbb317c1581ac39b785f4c
|
|
4
|
+
data.tar.gz: d339b72e1412de5e5f7b64f23161433e29f1ce1e1bc7731bba76b0a81346a6a2
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 6d7a6c70ccffc34ce75af7f3980bd1c56a297c67ee9b0c6b65d68a3d25b7d6b5cd74c089cd6c8b111cd62a3119ae165d26d5a686f8607b49869059ba60c4a563
|
|
7
|
+
data.tar.gz: 78b7b71a1f7dbddbb96f0de0f244fc6d7af2d113a474bbb949c6df00fc1fb0590472c5292b78184932985d63c43e5fa286196fbc2820e12388a4e3504c88d933
|
data/Gemfile.lock
CHANGED
|
@@ -22,6 +22,9 @@ module Api
|
|
|
22
22
|
# A flag whether Jamm to force KYC for the customer. 初回購入時に購入者に対してKYCを強制するかどうかのフラグです。
|
|
23
23
|
attr_accessor :force_kyc
|
|
24
24
|
|
|
25
|
+
# Phone number of the customer. You can update this value later through the UpdateCustomer endpoint. e.g. - 09012345678 Customerの電話番号。 この値は UpdateCustomer エンドポイントを通じて後で更新できます。
|
|
26
|
+
attr_accessor :phone
|
|
27
|
+
|
|
25
28
|
# Name of the customer. You can update this value later through the UpdateCustomer endpoint. e.g. - John Appleseed - 山田太郎 購入者の氏名。 この値は UpdateCustomer エンドポイントを通じて後で更新できます。
|
|
26
29
|
attr_accessor :name
|
|
27
30
|
|
|
@@ -51,6 +54,7 @@ module Api
|
|
|
51
54
|
{
|
|
52
55
|
:email => :email,
|
|
53
56
|
:force_kyc => :forceKyc,
|
|
57
|
+
:phone => :phone,
|
|
54
58
|
:name => :name,
|
|
55
59
|
:katakana_last_name => :katakanaLastName,
|
|
56
60
|
:katakana_first_name => :katakanaFirstName,
|
|
@@ -72,6 +76,7 @@ module Api
|
|
|
72
76
|
{
|
|
73
77
|
:email => :String,
|
|
74
78
|
:force_kyc => :Boolean,
|
|
79
|
+
:phone => :String,
|
|
75
80
|
:name => :String,
|
|
76
81
|
:katakana_last_name => :String,
|
|
77
82
|
:katakana_first_name => :String,
|
|
@@ -104,6 +109,8 @@ module Api
|
|
|
104
109
|
|
|
105
110
|
self.force_kyc = attributes[:force_kyc] if attributes.key?(:force_kyc)
|
|
106
111
|
|
|
112
|
+
self.phone = attributes[:phone] if attributes.key?(:phone)
|
|
113
|
+
|
|
107
114
|
self.name = attributes[:name] if attributes.key?(:name)
|
|
108
115
|
|
|
109
116
|
self.katakana_last_name = attributes[:katakana_last_name] if attributes.key?(:katakana_last_name)
|
|
@@ -146,6 +153,7 @@ module Api
|
|
|
146
153
|
self.class == other.class &&
|
|
147
154
|
email == other.email &&
|
|
148
155
|
force_kyc == other.force_kyc &&
|
|
156
|
+
phone == other.phone &&
|
|
149
157
|
name == other.name &&
|
|
150
158
|
katakana_last_name == other.katakana_last_name &&
|
|
151
159
|
katakana_first_name == other.katakana_first_name &&
|
|
@@ -165,7 +173,7 @@ module Api
|
|
|
165
173
|
# Calculates hash code according to all attributes.
|
|
166
174
|
# @return [Integer] Hash code
|
|
167
175
|
def hash
|
|
168
|
-
[email, force_kyc, name, katakana_last_name, katakana_first_name, address, birth_date, gender, expires_at, metadata].hash
|
|
176
|
+
[email, force_kyc, phone, name, katakana_last_name, katakana_first_name, address, birth_date, gender, expires_at, metadata].hash
|
|
169
177
|
end
|
|
170
178
|
|
|
171
179
|
# Builds the object from hash
|
|
@@ -16,7 +16,7 @@ require 'time'
|
|
|
16
16
|
module Api
|
|
17
17
|
# Charge represents a charge information for the customer.
|
|
18
18
|
class Charge
|
|
19
|
-
# 決済ID (例:
|
|
19
|
+
# 決済ID (例: trx-1234567890) @gotags: validate:\"required\"
|
|
20
20
|
attr_accessor :id
|
|
21
21
|
|
|
22
22
|
# Amount of the charge in Japanese Yen. The amount must be the total price of the product/service including tax. 決済金額。日本円で指定してください。 金額は商品/サービスの合計金額 (税込) を指定してください。 @gotags: validate:\"gte=1,lte=500000\"
|
|
@@ -20,9 +20,10 @@ module Api
|
|
|
20
20
|
FAILURE = 'STATUS_FAILURE'
|
|
21
21
|
WAITING_EKYC = 'STATUS_WAITING_EKYC'
|
|
22
22
|
BLOCKING = 'STATUS_BLOCKING'
|
|
23
|
+
CANCELLED = 'STATUS_CANCELLED'
|
|
23
24
|
|
|
24
25
|
def self.all_vars
|
|
25
|
-
@all_vars ||= [UNSPECIFIED, SUCCESS, FAILURE, WAITING_EKYC, BLOCKING].freeze
|
|
26
|
+
@all_vars ||= [UNSPECIFIED, SUCCESS, FAILURE, WAITING_EKYC, BLOCKING, CANCELLED].freeze
|
|
26
27
|
end
|
|
27
28
|
|
|
28
29
|
# Builds the enum from string
|
|
@@ -16,14 +16,13 @@ require 'time'
|
|
|
16
16
|
module Api
|
|
17
17
|
# Customer object.
|
|
18
18
|
class Customer
|
|
19
|
-
attr_accessor :id, :email, :
|
|
19
|
+
attr_accessor :id, :email, :activated, :created_at, :updated_at
|
|
20
20
|
|
|
21
21
|
# Attribute mapping from ruby-style variable name to JSON key.
|
|
22
22
|
def self.attribute_map
|
|
23
23
|
{
|
|
24
24
|
:id => :id,
|
|
25
25
|
:email => :email,
|
|
26
|
-
:ekyc_completed => :ekycCompleted,
|
|
27
26
|
:activated => :activated,
|
|
28
27
|
:created_at => :createdAt,
|
|
29
28
|
:updated_at => :updatedAt
|
|
@@ -40,7 +39,6 @@ module Api
|
|
|
40
39
|
{
|
|
41
40
|
:id => :String,
|
|
42
41
|
:email => :String,
|
|
43
|
-
:ekyc_completed => :Boolean,
|
|
44
42
|
:activated => :Boolean,
|
|
45
43
|
:created_at => :Time,
|
|
46
44
|
:updated_at => :Time
|
|
@@ -68,8 +66,6 @@ module Api
|
|
|
68
66
|
|
|
69
67
|
self.email = attributes[:email] if attributes.key?(:email)
|
|
70
68
|
|
|
71
|
-
self.ekyc_completed = attributes[:ekyc_completed] if attributes.key?(:ekyc_completed)
|
|
72
|
-
|
|
73
69
|
self.activated = attributes[:activated] if attributes.key?(:activated)
|
|
74
70
|
|
|
75
71
|
self.created_at = attributes[:created_at] if attributes.key?(:created_at)
|
|
@@ -101,7 +97,6 @@ module Api
|
|
|
101
97
|
self.class == other.class &&
|
|
102
98
|
id == other.id &&
|
|
103
99
|
email == other.email &&
|
|
104
|
-
ekyc_completed == other.ekyc_completed &&
|
|
105
100
|
activated == other.activated &&
|
|
106
101
|
created_at == other.created_at &&
|
|
107
102
|
updated_at == other.updated_at
|
|
@@ -116,7 +111,7 @@ module Api
|
|
|
116
111
|
# Calculates hash code according to all attributes.
|
|
117
112
|
# @return [Integer] Hash code
|
|
118
113
|
def hash
|
|
119
|
-
[id, email,
|
|
114
|
+
[id, email, activated, created_at, updated_at].hash
|
|
120
115
|
end
|
|
121
116
|
|
|
122
117
|
# Builds the object from hash
|
|
@@ -20,11 +20,12 @@ module Api
|
|
|
20
20
|
CHARGE_UPDATED = 'EVENT_TYPE_CHARGE_UPDATED'
|
|
21
21
|
CHARGE_SUCCESS = 'EVENT_TYPE_CHARGE_SUCCESS'
|
|
22
22
|
CHARGE_FAIL = 'EVENT_TYPE_CHARGE_FAIL'
|
|
23
|
+
CHARGE_CANCEL = 'EVENT_TYPE_CHARGE_CANCEL'
|
|
23
24
|
CONTRACT_ACTIVATED = 'EVENT_TYPE_CONTRACT_ACTIVATED'
|
|
24
25
|
TESTING = 'EVENT_TYPE_TESTING'
|
|
25
26
|
|
|
26
27
|
def self.all_vars
|
|
27
|
-
@all_vars ||= [UNSPECIFIED, CHARGE_CREATED, CHARGE_UPDATED, CHARGE_SUCCESS, CHARGE_FAIL, CONTRACT_ACTIVATED, TESTING].freeze
|
|
28
|
+
@all_vars ||= [UNSPECIFIED, CHARGE_CREATED, CHARGE_UPDATED, CHARGE_SUCCESS, CHARGE_FAIL, CHARGE_CANCEL, CONTRACT_ACTIVATED, TESTING].freeze
|
|
28
29
|
end
|
|
29
30
|
|
|
30
31
|
# Builds the enum from string
|
data/lib/jamm/charge.rb
CHANGED
|
@@ -15,6 +15,8 @@ module Jamm
|
|
|
15
15
|
)
|
|
16
16
|
|
|
17
17
|
Jamm::OpenAPI::PaymentApi.new(Jamm::Client.handler).add_charge(request)
|
|
18
|
+
rescue Jamm::OpenAPI::ApiError => e
|
|
19
|
+
raise Jamm::ApiError.from_error(e)
|
|
18
20
|
end
|
|
19
21
|
|
|
20
22
|
def self.create_without_redirect(customer:, charge:)
|
|
@@ -24,12 +26,16 @@ module Jamm
|
|
|
24
26
|
)
|
|
25
27
|
|
|
26
28
|
Jamm::OpenAPI::PaymentApi.new(Jamm::Client.handler).withdraw(request)
|
|
29
|
+
rescue Jamm::OpenAPI::ApiError => e
|
|
30
|
+
raise Jamm::ApiError.from_error(e)
|
|
27
31
|
end
|
|
28
32
|
|
|
29
33
|
def self.get(charge_id)
|
|
30
34
|
Jamm::OpenAPI::PaymentApi.new(Jamm::Client.handler).get_charge(charge_id)
|
|
31
35
|
rescue Jamm::OpenAPI::ApiError => e
|
|
32
|
-
|
|
36
|
+
return nil if e.code == 404
|
|
37
|
+
|
|
38
|
+
raise Jamm::ApiError.from_error(e)
|
|
33
39
|
end
|
|
34
40
|
|
|
35
41
|
def self.list(customer:, pagination: nil)
|
data/lib/jamm/contract.rb
CHANGED
|
@@ -15,6 +15,8 @@ module Jamm
|
|
|
15
15
|
)
|
|
16
16
|
|
|
17
17
|
Jamm::OpenAPI::PaymentApi.new(Jamm::Client.handler).create_contract_with_charge(request)
|
|
18
|
+
rescue Jamm::OpenAPI::ApiError => e
|
|
19
|
+
raise Jamm::ApiError.from_error(e)
|
|
18
20
|
end
|
|
19
21
|
|
|
20
22
|
def self.create_without_charge(buyer:, redirect:)
|
|
@@ -24,12 +26,14 @@ module Jamm
|
|
|
24
26
|
)
|
|
25
27
|
|
|
26
28
|
Jamm::OpenAPI::PaymentApi.new(Jamm::Client.handler).create_contract_without_charge(request)
|
|
29
|
+
rescue Jamm::OpenAPI::ApiError => e
|
|
30
|
+
raise Jamm::ApiError.from_error(e)
|
|
27
31
|
end
|
|
28
32
|
|
|
29
33
|
def self.get(customer_id)
|
|
30
34
|
Jamm::OpenAPI::CustomerApi.new(Jamm::Client.handler).get_contract(customer_id)
|
|
31
35
|
rescue Jamm::OpenAPI::ApiError => e
|
|
32
|
-
[404].include?(e.code) ? nil :
|
|
36
|
+
[404].include?(e.code) ? nil : Jamm::ApiError.from_error(e)
|
|
33
37
|
end
|
|
34
38
|
end
|
|
35
39
|
end
|
data/lib/jamm/customer.rb
CHANGED
|
@@ -14,6 +14,8 @@ module Jamm
|
|
|
14
14
|
)
|
|
15
15
|
|
|
16
16
|
r.customer
|
|
17
|
+
rescue Jamm::OpenAPI::ApiError => e
|
|
18
|
+
raise Jamm::ApiError.from_error(e)
|
|
17
19
|
end
|
|
18
20
|
|
|
19
21
|
def self.get(id_or_email)
|
|
@@ -27,23 +29,31 @@ module Jamm
|
|
|
27
29
|
|
|
28
30
|
r.customer
|
|
29
31
|
rescue Jamm::OpenAPI::ApiError => e
|
|
30
|
-
[404].include?(e.code)
|
|
32
|
+
return nil if [404].include?(e.code)
|
|
33
|
+
|
|
34
|
+
raise Jamm::ApiError.from_error(e)
|
|
31
35
|
end
|
|
32
36
|
|
|
33
37
|
def self.get_contract(id)
|
|
34
38
|
Jamm::OpenAPI::CustomerApi.new(Jamm::Client.handler).get_contract(id)
|
|
35
39
|
rescue Jamm::OpenAPI::ApiError => e
|
|
36
|
-
[404].include?(e.code)
|
|
40
|
+
return nil if [404].include?(e.code)
|
|
41
|
+
|
|
42
|
+
raise Jamm::ApiError.from_error(e)
|
|
37
43
|
end
|
|
38
44
|
|
|
39
45
|
def self.update(id, params)
|
|
40
46
|
r = Jamm::OpenAPI::CustomerApi.new(Jamm::Client.handler).update(id, params)
|
|
41
47
|
|
|
42
48
|
r.customer
|
|
49
|
+
rescue Jamm::OpenAPI::ApiError => e
|
|
50
|
+
raise Jamm::ApiError.from_error(e)
|
|
43
51
|
end
|
|
44
52
|
|
|
45
53
|
def self.delete(id)
|
|
46
54
|
Jamm::OpenAPI::CustomerApi.new(Jamm::Client.handler).delete(id)
|
|
55
|
+
rescue Jamm::OpenAPI::ApiError => e
|
|
56
|
+
raise Jamm::ApiError.from_error(e)
|
|
47
57
|
end
|
|
48
58
|
end
|
|
49
59
|
end
|
data/lib/jamm/errors.rb
CHANGED
|
@@ -23,4 +23,98 @@ module Jamm
|
|
|
23
23
|
# OAuthError is raised when a request to AWS cognito failed
|
|
24
24
|
class OAuthError < JammError
|
|
25
25
|
end
|
|
26
|
+
|
|
27
|
+
class InvalidSignatureError < StandardError
|
|
28
|
+
end
|
|
29
|
+
|
|
30
|
+
# Purpose of this error handler is to normalize Jamm's custom error
|
|
31
|
+
# and OpenAPI's generated error, and enforce Jamm's custom error format.
|
|
32
|
+
#
|
|
33
|
+
# - Jamm: code is string, message is string originating from Jamm's protobuf definition.
|
|
34
|
+
# - OpenAPI: code is integer, message is string originating from ConnectRPC error format.
|
|
35
|
+
class ApiError < StandardError
|
|
36
|
+
attr_reader :code, :error_code, :message, :headers, :body
|
|
37
|
+
|
|
38
|
+
# Add this class method to convert StandardError to ApiError
|
|
39
|
+
def self.from_error(e)
|
|
40
|
+
new(
|
|
41
|
+
code: e.code,
|
|
42
|
+
message: e.message,
|
|
43
|
+
response_headers: e.response_headers,
|
|
44
|
+
response_body: e.response_body
|
|
45
|
+
)
|
|
46
|
+
end
|
|
47
|
+
|
|
48
|
+
def initialize(args = {})
|
|
49
|
+
# Check code existence and convert to string if it's integer
|
|
50
|
+
@code = args[:code]
|
|
51
|
+
@message = args[:message]
|
|
52
|
+
@headers = args[:response_headers]
|
|
53
|
+
|
|
54
|
+
raw_body = if args[:response_body].nil?
|
|
55
|
+
{}
|
|
56
|
+
elsif args[:response_body].is_a?(Hash)
|
|
57
|
+
args[:response_body]
|
|
58
|
+
elsif args[:response_body].is_a?(String)
|
|
59
|
+
begin
|
|
60
|
+
JSON.parse(args[:response_body])
|
|
61
|
+
rescue StandardError
|
|
62
|
+
{}
|
|
63
|
+
end
|
|
64
|
+
else
|
|
65
|
+
{}
|
|
66
|
+
end
|
|
67
|
+
|
|
68
|
+
@body = {}
|
|
69
|
+
raw_body.each do |k, v|
|
|
70
|
+
next if k == 'code'
|
|
71
|
+
|
|
72
|
+
@body[k.to_sym] = v if k.respond_to?(:to_sym)
|
|
73
|
+
end
|
|
74
|
+
|
|
75
|
+
# Set human readable error type based on error code
|
|
76
|
+
# https://github.com/connectrpc/connect-go/blob/d7c0966751650b41a9f1794513592e81b9beed45/code.go#L34
|
|
77
|
+
@body[:error] = case raw_body['code']
|
|
78
|
+
when 1
|
|
79
|
+
'CANCELED'
|
|
80
|
+
when 2
|
|
81
|
+
'UNKNOWN'
|
|
82
|
+
when 3
|
|
83
|
+
'INVALID_ARGUMENT'
|
|
84
|
+
when 4
|
|
85
|
+
'DEADLINE_EXCEEDED'
|
|
86
|
+
when 5
|
|
87
|
+
'NOT_FOUND'
|
|
88
|
+
when 6
|
|
89
|
+
'ALREADY_EXISTS'
|
|
90
|
+
when 7
|
|
91
|
+
'PERMISSION_DENIED'
|
|
92
|
+
when 8
|
|
93
|
+
'RESOURCE_EXHAUSTED'
|
|
94
|
+
when 9
|
|
95
|
+
'FAILED_PRECONDITION'
|
|
96
|
+
when 10
|
|
97
|
+
'ABORTED'
|
|
98
|
+
when 11
|
|
99
|
+
'OUT_OF_RANGE'
|
|
100
|
+
when 12
|
|
101
|
+
'UNIMPLEMENTED'
|
|
102
|
+
when 13
|
|
103
|
+
'INTERNAL'
|
|
104
|
+
when 14
|
|
105
|
+
'UNAVAILABLE'
|
|
106
|
+
when 15
|
|
107
|
+
'DATA_LOSS'
|
|
108
|
+
when 16
|
|
109
|
+
'UNAUTHENTICATED'
|
|
110
|
+
end
|
|
111
|
+
|
|
112
|
+
super(message)
|
|
113
|
+
end
|
|
114
|
+
|
|
115
|
+
def to_s
|
|
116
|
+
status_string = @code.nil? ? '' : "(Status #{@code}) "
|
|
117
|
+
"#{status_string}#{@message}"
|
|
118
|
+
end
|
|
119
|
+
end
|
|
26
120
|
end
|
data/lib/jamm/healthcheck.rb
CHANGED
data/lib/jamm/version.rb
CHANGED
data/lib/jamm/webhook.rb
CHANGED
|
@@ -1,5 +1,6 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
+
require 'openssl'
|
|
3
4
|
require 'rest-client'
|
|
4
5
|
require 'json'
|
|
5
6
|
require 'base64'
|
|
@@ -10,37 +11,67 @@ module Jamm
|
|
|
10
11
|
# Parse command is for parsing the received webhook message.
|
|
11
12
|
# It does not call anything remotely, instead returns the suitable object.
|
|
12
13
|
def self.parse(json)
|
|
13
|
-
out =
|
|
14
|
-
id: json[:id],
|
|
15
|
-
signature: json[:signature],
|
|
16
|
-
event_type: json[:event_type],
|
|
17
|
-
content: nil,
|
|
18
|
-
created_at: json[:created_at]
|
|
19
|
-
}
|
|
14
|
+
out = Jamm::OpenAPI::MerchantWebhookMessage.new(json)
|
|
20
15
|
|
|
21
16
|
case json[:event_type]
|
|
22
17
|
when Jamm::OpenAPI::EventType::CHARGE_CREATED
|
|
23
|
-
out
|
|
18
|
+
out.content = Jamm::OpenAPI::ChargeMessage.new(json[:content])
|
|
24
19
|
return out
|
|
25
20
|
|
|
26
21
|
when Jamm::OpenAPI::EventType::CHARGE_UPDATED
|
|
27
|
-
out
|
|
22
|
+
out.content = Jamm::OpenAPI::ChargeMessage.new(json[:content])
|
|
23
|
+
return out
|
|
24
|
+
|
|
25
|
+
when Jamm::OpenAPI::EventType::CHARGE_CANCEL
|
|
26
|
+
out.content = Jamm::OpenAPI::ChargeMessage.new(json[:content])
|
|
28
27
|
return out
|
|
29
28
|
|
|
30
29
|
when Jamm::OpenAPI::EventType::CHARGE_SUCCESS
|
|
31
|
-
out
|
|
30
|
+
out.content = Jamm::OpenAPI::ChargeMessage.new(json[:content])
|
|
32
31
|
return out
|
|
33
32
|
|
|
34
33
|
when Jamm::OpenAPI::EventType::CHARGE_FAIL
|
|
35
|
-
out
|
|
34
|
+
out.content = Jamm::OpenAPI::ChargeMessage.new(json[:content])
|
|
36
35
|
return out
|
|
37
36
|
|
|
38
37
|
when Jamm::OpenAPI::EventType::CONTRACT_ACTIVATED
|
|
39
|
-
out
|
|
38
|
+
out.content = Jamm::OpenAPI::ContractMessage.new(json[:content])
|
|
40
39
|
return out
|
|
41
40
|
end
|
|
42
41
|
|
|
43
42
|
raise 'Unknown event type'
|
|
44
43
|
end
|
|
44
|
+
|
|
45
|
+
# Verify message
|
|
46
|
+
def self.verify(data:, signature:)
|
|
47
|
+
raise ArgumentError, 'data cannot be nil' if data.nil?
|
|
48
|
+
raise ArgumentError, 'signature cannot be nil' if signature.nil?
|
|
49
|
+
|
|
50
|
+
# Convert the JSON to a string
|
|
51
|
+
json = JSON.dump(data)
|
|
52
|
+
|
|
53
|
+
digest = OpenSSL::HMAC.hexdigest(OpenSSL::Digest.new('sha256'), Jamm.client_secret, json)
|
|
54
|
+
given = "sha256=#{digest}"
|
|
55
|
+
|
|
56
|
+
return if secure_compare(given, signature)
|
|
57
|
+
|
|
58
|
+
raise Jamm::InvalidSignatureError, 'Digests do not match'
|
|
59
|
+
end
|
|
60
|
+
|
|
61
|
+
# Securely compare two strings of equal length.
|
|
62
|
+
# This method is a port of ActiveSupport::SecurityUtils.secure_compare
|
|
63
|
+
# which works on non-Rails platforms.
|
|
64
|
+
def self.secure_compare(a, b)
|
|
65
|
+
return false unless a.bytesize == b.bytesize
|
|
66
|
+
|
|
67
|
+
# Unpack strings into arrays of bytes
|
|
68
|
+
a_bytes = a.unpack('C*')
|
|
69
|
+
b_bytes = b.unpack('C*')
|
|
70
|
+
result = 0
|
|
71
|
+
|
|
72
|
+
# XOR each byte and accumulate the result
|
|
73
|
+
a_bytes.zip(b_bytes) { |x, y| result |= x ^ y }
|
|
74
|
+
result.zero?
|
|
75
|
+
end
|
|
45
76
|
end
|
|
46
77
|
end
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: jamm
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0
|
|
4
|
+
version: 1.1.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Jamm
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2025-
|
|
11
|
+
date: 2025-03-18 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: rest-client
|