josebuilder 0.0.6 → 1.0.0.pre

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 829439b805873f4fc7316f4cb4cff959f0d3a575
-  data.tar.gz: e38b3821283ce3f1d46fb318b32b6fbee46f3de6
+  metadata.gz: bc8f3e4feb7186c05e4532e03f1e6fb64bd59776
+  data.tar.gz: be946b2e10a98650aa784aef1d7174ec7d1afe77
 SHA512:
-  metadata.gz: 14c50307fab5e8a189c8ac785453d8eedcba47f07018c6aad24522f0132adfc3c096e322ef2d249b1fbf11f3326cec1901a6f167b8e26d0ad63294f8436c018c
-  data.tar.gz: 235e76fcfafc51970b4097409058e0ce1fe9db87f730d6a995569b12fb644b3c126d94170c2b6aea2960f4b60924b9ff1fe3d9ce3e2cce4915f20b3bd6e58fd4
+  metadata.gz: abecbb72c4dba704c89461105732a80da7c95c1a686794c17da7ca6e2ac40cf131b0fc1398f929cd5c873ee33e7e9cf3263ee9a617f1420a5a2e5249912e55c8
+  data.tar.gz: 2a119b54ce0ec00940ceb840abf1e3473cf40c1c2ae92df11ccccb2a39589f0373936e7be90d32bfafd46ed3079d5dd8e07bd47d7971ca50006e673ee8bf8afc

data/lib/generators/josebuilder/josebuilder_generator.rb

@@ -0,0 +1,74 @@
+require 'rails/generators'
+require 'rails/generators/resource_helpers'
+require 'rails/generators/named_base'
+module Josebuilder
+  class JosebuilderGenerator < Rails::Generators::Base
+    source_root File.expand_path('../templates', __FILE__)
+
+    argument :resource_name, :type => :string, :default => "defaultResourceName"
+    argument :secret, :type => :string, :default => "secret"
+    argument :algorithm, :type => :string, :default => "HS256"
+    
+    class_option :signature, :type => :boolean, :default => true, 
+                 :description => "include signature"
+    class_option :encryption, :type => :boolean, :default => false, 
+                 :description => "include encryption"
+    class_option :combination, :type => :boolean, :default => false,
+                 :description => "combine digital signature and encryption"
+    
+    def generate_json_web_signature
+      ["index", "show"].each do |view|
+        file = filename_with_directory('app/views', view)
+        source = "signature_" + filename_with_extensions(view)
+        template source, file
+      end if options.signature?
+    end
+
+    def generate_json_web_encription
+      ["index", "show"].each do |view|
+        file = filename_with_directory('app/views', view)
+        source = "encryption_" + filename_with_extensions(view)
+        template source, file
+      end if options.encryption?
+    end
+
+
+    private
+
+    def get_secret
+      secret
+    end
+    def file_name
+      resource_name.underscore
+    end
+
+    def filename_with_extensions(name)
+      [name, :json, :jbuilder] * '.'
+    end
+
+    def pluralize(count, singular, plural = nil)
+      word = if (count == 1 || count =~ /^1(\.0+)?$/)
+        singular
+      else
+        plural || singular.pluralize
+      end
+
+      "#{count || 0} #{word}"
+    end
+
+    def filename_with_directory(directory, file_name)
+      file_name = filename_with_extensions(file_name)
+      File.join(directory, controller_file_path, file_name)
+    end
+
+    def controller_file_path
+      pluralize_without_count(2, resource_name)
+    end
+    def pluralize_without_count(count, noun, text=nil)
+      if count!=0
+        count == 1? "#{noun}#{text}": "#{noun.pluralize}#{text}"
+      end
+    end
+    
+  end
+end

data/lib/generators/josebuilder/templates/encryption_index.json.jbuilder

@@ -0,0 +1,4 @@
+json.protected = JWE.encode_protected_header('aes-256-cbc')
+json.jwe_header = JWE.encode_header('RSA')
+json.encrypted_key = JWE.encode_key('123456789012345678901234678901234567890')
+json.iv, json.cipher_text = JWE.generate_cipher_text(@users.as_json, 'aes-256-cbc', '123456789012345678901234678901234567890')

data/lib/generators/josebuilder/templates/encryption_show.json.jbuilder

@@ -0,0 +1,4 @@
+json.protected = JWE.encode_protected_header('aes-256-cbc')
+json.jwe_header = JWE.encode_header('RSA')
+json.encrypted_key = JWE.encode_key('123456789012345678901234678901234567890')
+json.iv, json.cipher_text = JWE.generate_cipher_text(@user.as_json, 'aes-256-cbc', '123456789012345678901234678901234567890')

data/lib/generators/josebuilder/templates/signature_show.json.jbuilder

@@ -0,0 +1,3 @@
+json.header = {alg: "<%= algorithm %>", typ: "JWS"}
+json.payload = @<%= file_name %>.as_json
+json.signature = JWS.encode(@<%= file_name %>.as_json, "<%= secret %>", "<%= algorithm %>")

data/lib/jwe.rb

@@ -0,0 +1,117 @@
+require 'openssl'
+require 'base64'
+
+module JWE
+  class InvalidFormat < StandardError; end
+  class DecryptionFailed < StandardError; end
+  class UnexpectedAlgorithm < StandardError; end
+
+  module_function
+
+  def generate_cipher_text(plain_text, cipher_name, private_key)
+    cipher = get_cipher_method(get_cipher_name(cipher_name))
+    iv = cipher.random_iv
+    cipher_text = encrypt(private_key, iv, cipher_name,plain_text)
+  
+    iv_encode = encode_iv(iv)
+    cipher_text_encode = encode_cipher_text(cipher_text)
+    [iv_encode, cipher_text_encode]
+  end
+  def encode_cipher_text(cipher_text)
+    base64url_encode(cipher_text)
+  end
+    def decode_cipher_text(cipher_text, iv, private_key, cipher_name)
+    cipher_text = base64url_decode(cipher_text)
+    text = decrypt(private_key, decode_iv(iv), cipher_name, cipher_text)
+    decode_json base64url_decode(text)
+  end
+  def encode_header(alg)
+    alg = {'alg' => alg}
+  end
+  def encode_key(key)
+    base64url_encode generate_jwe_encrypted_key(key)
+  end
+  def decode_key(code)
+    code = base64url_decode(code)
+    decrypt_jwe_encrypted_key(code)
+  end
+  def encode_protected_header(encrypt_method, p_header={})
+    header = {'enc' => encrypt_method}.merge(p_header)
+    base64url_encode(encode_json(header))
+  end
+  def decode_protected_header(code)
+    decode_json(base64url_decode(code))
+  end
+  def encode_iv(iv)
+    base64url_encode(iv)
+  end
+
+  def decode_iv(iv_code)
+    base64url_decode(iv_code)
+  end
+
+  def get_cipher_name(name)
+    'aes-256-cbc'
+  end
+
+  def get_cipher_method(cipher_name)
+    OpenSSL::Cipher.new cipher_name
+  end
+
+  def encrypt(private_key, iv, cipher_name, plain_text)
+    encryption = get_cipher_method(get_cipher_name(cipher_name))
+    encryption.encrypt
+    encryption.key = private_key
+    encryption.iv = iv
+    encrypt_input = base64url_encode(encode_json(plain_text))
+    encryption.update(encrypt_input) + encryption.final
+  end
+  def decrypt(private_key, iv, cipher_name, cipher_text)
+    decryption = get_cipher_method(get_cipher_name(cipher_name))
+    decryption.decrypt
+    decryption.key = private_key
+    decryption.iv = iv
+    decryption.update(cipher_text) + decryption.final
+  end
+
+  def generate_jwe_encrypted_key(key)
+    rsa = OpenSSL::PKey::RSA.new 2048
+    rsa_pem = rsa.to_pem
+    open('rsa.pem', 'w'){ |file|
+      file.puts rsa_pem
+    }
+    rsa.private_encrypt key
+  end
+  def decrypt_jwe_encrypted_key(encrypted_key)
+    encrypted_key = base64url_decode encrypted_key
+    rsa = OpenSSL::PKey::RSA.new File.read 'rsa.pem'
+    rsa.public_decrypt encrypted_key
+  end
+
+  def decode_json(encoded_json)
+    JSON.parse(encoded_json)
+  rescue JSON::ParseError
+    raise JOSE::DecodeError.new("Invalid encoding")
+  end
+
+  def encode_json(raw)
+    JSON.generate(raw)
+  end
+  def base64url_decode(str)
+    str += '=' *(4 - str.length.modulo(4))
+    Base64.decode64(str.tr('-_', '+/'))
+  end
+
+  def base64url_encode(str)
+    Base64.encode64(str).tr('+/', '-_').gsub(/[\n=]/, '')
+  end
+  def secure_compare(a, b)
+    return false if a.nil? || b.nil? || a.empty? || b.empty? || a.bytesize != b.bytesize
+    l = a.unpack "C#{a.bytesize}"
+
+    res = 0
+    b.each_byte { |byte| res |= byte ^ l.shift }
+    res == 0
+  end
+
+end

data/lib/jws.rb

@@ -1,11 +1,10 @@
 require 'base64'
 require 'openssl'
-require 'jose/json'
+require 'json'
 
 module JWS
   class DecodeError < StandardError; end
   class VerificationError < DecodeError; end
-  extend JWS::Json
 
   module_function
 
@@ -18,7 +17,7 @@ module JWS
   end
 
   def sign_hmac(algorithm, msg, key)
-    OpenSSL::HMAC.digest(OpenSSL::Digest.new(algorithm.sub('HS', 'Sha')), key, msg)
+    OpenSSL::HMAC.digest(OpenSSL::Digest.new(algorithm.sub('HS', 'SHA')), key, msg)
   end
 
   def base64url_decode(str)
@@ -124,4 +123,14 @@ module JWS
     res == 0
   end
 
+  def decode_json(encoded_json)
+    JSON.parse(encoded_json)
+  rescue JSON::ParseError
+    raise JOSE::DecodeError.new("Invalid encoding")
+  end
+
+  def encode_json(raw)
+    JSON.generate(raw)
+  end
+
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: josebuilder
 version: !ruby/object:Gem::Version
-  version: 0.0.6
+  version: 1.0.0.pre
 platform: ruby
 authors:
 - Nguyen Ngo Dinh
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2015-04-24 00:00:00.000000000 Z
+date: 2015-05-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -71,18 +71,13 @@ executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- josebuilder-0.0.0.gem
-- josebuilder-0.0.1.gem
-- josebuilder-0.0.2.gem
-- josebuilder-0.0.3.gem
-- josebuilder-0.0.4.gem
-- josebuilder.gemspec
-- lib/jose/generators/josebuilder/USAGE
-- lib/jose/generators/josebuilder/josebuilder_generator.rb
-- lib/jose/generators/josebuilder/templates/index.json.jbuilder
-- lib/jose/generators/josebuilder/templates/show.json.jbuilder
-- lib/jose/json.rb
-- lib/josebuilder.rb
+- lib/generators/josebuilder/USAGE
+- lib/generators/josebuilder/josebuilder_generator.rb
+- lib/generators/josebuilder/templates/encryption_index.json.jbuilder
+- lib/generators/josebuilder/templates/encryption_show.json.jbuilder
+- lib/generators/josebuilder/templates/signature_index.json.jbuilder
+- lib/generators/josebuilder/templates/signature_show.json.jbuilder
+- lib/jwe.rb
 - lib/jws.rb
 homepage: https://github.com/nguyenngodinh/josebuilder
 licenses:
@@ -99,9 +94,9 @@ required_ruby_version: !ruby/object:Gem::Requirement
       version: 1.9.3
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - '>='
+  - - '>'
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.3.1
 requirements: []
 rubyforge_project: 
 rubygems_version: 2.4.6

data/josebuilder.gemspec

@@ -1,19 +0,0 @@
-Gem::Specification.new do |s|
-  s.name     = 'josebuilder'
-  s.version  = '0.0.6'
-  s.authors  = ['Nguyen Ngo Dinh']
-  s.email    = ['nguyenngodinh@outlook.com']
-  s.summary  = 'Create JSON Signature and encryption structures'
-  s.description = "json signature and encryption builder"
-  s.homepage = 'https://github.com/nguyenngodinh/josebuilder'
-  s.license  = 'MIT'
-
-  s.required_ruby_version = '>= 1.9.3'
-
-  s.add_dependency 'activesupport', '>= 3.0.0', '< 5'
-  s.add_dependency 'multi_json',    '~> 1.2'
-  s.add_runtime_dependency 'jwt', '~> 1.4', '>= 1.4.1'
-
-  s.files         = `git ls-files`.split("\n")
-end
-

data/lib/jose/generators/josebuilder/josebuilder_generator.rb

@@ -1,63 +0,0 @@
-require 'rails/generators/resource_helpers'
-require 'rails/generators/named_base'
-
-class JosebuilderGenerator < Rails::Generators::Base
-  source_root File.expand_path('../templates', __FILE__)
-
-  argument :resource_name, :type => :string, :default => "defaultResourceName"
-  argument :secret, :type => :string, :default => "secret"
-  argument :algorithm, :type => :string, :default => "HS256"
-  
-  class_option :signature, :type => :boolean, :default => true, 
-               :description => "include signature"
-  class_option :encryption, :type => :boolean, :default => false, 
-               :description => "include encryption"
-  class_option :combination, :type => :boolean, :default => false,
-               :description => "combine digital signature and encryption"
-  
-  def generate_json_web_signature_file
-    ["index", "show"].each do |view|
-      file = filename_with_directory(view)
-      template filename_with_extensions(view), file
-    end if options.signature?
-  end
-
-
-  private
-
-  def get_secret
-    secret
-  end
-  def file_name
-    resource_name.underscore
-  end
-
-  def filename_with_extensions(name)
-    [name, :json, :jbuilder] * '.'
-  end
-
-  def pluralize(count, singular, plural = nil)
-    word = if (count == 1 || count =~ /^1(\.0+)?$/)
-      singular
-    else
-      plural || singular.pluralize
-    end
-
-    "#{count || 0} #{word}"
-  end
-
-  def filename_with_directory(file_name)
-    file_name = filename_with_extensions(file_name)
-    File.join('app/views', controller_file_path, file_name)
-  end
-
-  def controller_file_path
-    pluralize_without_count(2, resource_name)
-  end
-  def pluralize_without_count(count, noun, text=nil)
-    if count!=0
-      count == 1? "#{noun}#{text}": "#{noun.pluralize}#{text}"
-    end
-  end
-  
-end

data/lib/jose/generators/josebuilder/templates/show.json.jbuilder

@@ -1,3 +0,0 @@
-json.header = {alg: "<%= algorithm %>", typ: "JWT"}
-json.payload = @<%= file_name %>.as_json
-json.signature = JWT.encode(@<%= file_name %>.as_json, "<%= secret %>", "<%= algorithm %>")

data/lib/jose/json.rb

@@ -1,15 +0,0 @@
-module JWS
-  module Json
-    require 'json'
-
-    def decode_json(encoded_json)
-      JSON.parse(encoded_json)
-    rescue JSON::ParseError
-      raise JOSE::DecodeError.new("Invalid encoding")
-    end
-
-    def encode_json(raw)
-      JSON.generate(raw)
-    end
-  end
-end