linzer 0.8.0.beta1 → 0.8.0.beta2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 0330e72cbbfb7cc56b9fa124a4f60a18bb7fbdab4eb98a072598c8fc3680cf76
-  data.tar.gz: 321630c979fc736cc64284eb535b22752e50a42c8bbfae399cbf0db56efecdd3
+  metadata.gz: 7a917fda2b4d4646e642ba3a52d11bd41a500b5bfed044142a6e0434e0ef1c94
+  data.tar.gz: 8d9296ba21595cba696532a41b20f123569d3b31de0730ba6e7e6f693e87e009
 SHA512:
-  metadata.gz: e6e99bf6a409b960d0432f702b286f7b71b06a34b61ff242d2d75eebc9c125bc02c6daa573efc5af69dfeb7c2f788811fb91d2f6f6decd1a869db26e6a5462e6
-  data.tar.gz: 9c76877de5ba5164f677aad7be9ffb3f905f2fd874523b9f2aaff287abd0ebdd8d8c7272da22eddfcacb56a7eb325392e52e1b2a3b551e8940627b146190a895
+  metadata.gz: 2f6b61e4a340594891976d77b651527b8e0d49ff9ab11d73c56f01b5baecc1ad3fdf8ad23d987652496929ef30495cb116ba04a53f1b7ef2d881e8c1c1cfa1c9
+  data.tar.gz: fb4800f527d14823e9ed76b776056fe20a60f35fc3e08c30ce15c05758648476f8489c2d8bb89851fe2c77eeff56891b96ec955663bf08b7b6326cdf4425c881

data/.standard.yml

@@ -9,3 +9,4 @@ ignore:
     - Layout/ArgumentAlignment
     - Style/EmptyCaseCondition
     - Style/RescueModifier
+    - Layout/MultilineMethodCallBraceLayout

data/CHANGELOG.md

@@ -1,5 +1,12 @@
 ## [Unreleased]
 
+## [0.8.0.beta2] - 2026-05-20
+
+- Add Web Bot Auth support, implementing the current IETF draft
+  (draft-meunier-web-bot-auth-architecture-05).
+  Includes recommended signature parameter defaults, nonce generation,
+  and optional Signature-Agent header handling.
+
 ## [0.8.0.beta1] - 2026-05-07
 
 - Optimize signature parsing, serialization, and validation performance

data/README.md

@@ -490,6 +490,61 @@ anything that to responds to `#to_i`, including an `ActiveSupport::Duration`.
 If the signature is older than the allowed window, verification
 fails with an error.
 
+## Web Bot Auth
+
+Linzer supports the Web Bot Auth authentication mechanism, which allows
+automated clients to identify themselves using HTTP Message Signatures
+(as defined in RFC 9421).
+
+This is useful for distinguishing legitimate automated traffic from
+anonymous or potentially abusive requests.
+
+For more details on Web Bot Auth, refer to the
+[relevant IETF drafts](https://datatracker.ietf.org/wg/webbotauth/documents/)
+or to additional resources such as
+[this Cloudflare article](https://blog.cloudflare.com/web-bot-auth/).
+
+When enabled, as shown in the examples below, Linzer adds the required
+signature headers to identify the client as an automated agent:
+
+- Plain Linzer:
+
+```ruby
+
+Linzer.sign!(
+  request,
+  key:     key,
+  label:   "sig1",
+  profile: :web_bot_auth
+  # or override/set specific parameters like the following:
+  # profile: Linzer::Signing::Profile.web_bot_auth(agent: "https://...")
+)
+```
+
+- http.rb gem:
+
+```ruby
+require "linzer/http/signature_feature"
+
+response = HTTP.headers(date: Time.now.utc.httpdate, foo: "bar")
+               .use(http_signature: {key: key, profile: :web_bot_auth}
+               .get(url)
+```
+
+- Faraday:
+
+```ruby
+require "linzer/faraday"
+
+conn = Faraday.new(url: api_url) do |builder|
+  builder.request :http_signature, key: signing_key,
+                                   components: components,
+                                   profile: :web_bot_auth,
+                                   params: signature_params
+end
+response = conn.post("/task")
+```
+
 ## Supported algorithms
 
 Linzer currently supports the following signature algorithms:

data/lib/faraday/http_signature/middleware.rb

@@ -107,7 +107,16 @@ module Faraday
       #   @return [Boolean] when +true+ (default), raises
       #     {VerifyError} on verification failure; when +false+,
       #     sets +env[:http_signature_verified]+ to +false+ and continues
-      class Options < Faraday::Options.new(:key, :sign_request, :sign_key, :components, :verify_response, :verify_key, :params, :strict)
+      # @!attribute [rw] profile
+      #   Optional HTTP Message Signatures signing profile.
+      #
+      #   When set, the profile is passed to {Linzer.sign!} and may provide
+      #   default covered components and signature parameters.
+      #
+      #   @return [Symbol, Linzer::Signature::Profile::Base, nil]
+      #     a registered profile name, a profile instance, or +nil+ to use
+      #     the default signing behavior
+      class Options < Faraday::Options.new(:key, :sign_request, :sign_key, :components, :verify_response, :verify_key, :params, :strict, :profile)
         # Returns the generic key.
         # @return [Linzer::Key, nil]
         def key
@@ -146,6 +155,13 @@ module Faraday
         def params
           Hash(self[:params])
         end
+
+        # Returns the signing profile configuration.
+        #
+        # @return [Symbol, Linzer::Signature::Profile::Base, nil]
+        def profile
+          self[:profile]
+        end
       end
 
       # Creates a new middleware instance.
@@ -186,10 +202,15 @@ module Faraday
 
         key = resolve_signing_key
         request = Linzer::Faraday::Utils.create_request(env)
-        message = Linzer::Message.new(request)
 
-        signature = Linzer.sign(key, message, options.components, options.params)
-        env.request_headers.merge!(signature.to_h)
+        Linzer.sign! request,
+                     key:        key,
+                     components: options.components,
+                     params:     options.params,
+                     profile:    options.profile
+
+        signature_headers = request.headers.slice("signature", "signature-input")
+        env.request_headers.merge!(signature_headers)
         env
       rescue Linzer::Error => e
         raise SigningError, e if options.strict?

data/lib/linzer/common.rb

@@ -67,7 +67,7 @@ module Linzer
     # @param serialized_components [Array<String>] The covered components
     # @param parameters [Hash] Signature parameters
     # @return [String] The formatted @signature-params line
-    SERIALIZED_SIGNATURE_PARAMS = Starry.serialize("@signature-params").freeze
+    SERIALIZED_SIGNATURE_PARAMS = HTTP::StructuredField.serialize("@signature-params").freeze
     private_constant :SERIALIZED_SIGNATURE_PARAMS
 
     def signature_params_line(serialized_components, parameters)
@@ -136,7 +136,7 @@ module Linzer
           .flat_map
           .with_index do |group, idx|
             group
-              .map  { |comp| Starry.parse_item(idx.zero? ? comp[1..] : comp) }
+              .map  { |comp| HTTP::StructuredField.parse_item(idx.zero? ? comp[1..] : comp) }
               .uniq { |comp| [comp.value, comp.parameters] }
           end
 

data/lib/linzer/helper.rb

@@ -16,12 +16,22 @@ module Linzer
     #
     # @param request_or_response [Net::HTTPRequest, Net::HTTPResponse, Rack::Request,
     #   Rack::Response, HTTP::Request] The HTTP message to sign
-    # @param args [Hash] Keyword arguments
-    # @option args [Linzer::Key] :key The private key to sign with (required)
-    # @option args [Array<String>] :components The components to include in the
-    #   signature (required). Example: `%w[@method @path content-type]`
-    # @option args [String] :label Optional signature label (defaults to "sig1")
-    # @option args [Hash] :params Additional signature parameters (created, nonce, etc.)
+    #
+    # @param key [Linzer::Key]
+    #   The private key to sign with (required)
+    #
+    # @param components [Array<String>]
+    #   The components to include in the signature (required).
+    #   Example: `%w[@method @path content-type]`
+    #
+    # @param label [String, nil]
+    #   Optional signature label (defaults to "sig1")
+    #
+    # @param params [Hash]
+    #   Additional signature parameters (created, nonce, etc.)
+    #
+    # @param profile [Symbol, Linzer::Signature::Profile::Base, nil]
+    #   Optional signing profile
     #
     # @return [Object] The original HTTP message with signature headers attached
     #
@@ -46,17 +56,26 @@ module Linzer
     #     label: "my-sig",
     #     params: { nonce: SecureRandom.hex(16), tag: "my-app" }
     #   )
-    def sign!(request_or_response, **args)
-      message = Message.new(request_or_response)
-      options = {}
+    def sign!(request_or_response, key:, components: nil, label: nil, params: {}, profile: nil)
+      ctx = Signature::Context.new(
+        message:    Message.new(request_or_response),
+        key:        key,
+        label:      label,
+        components: Array(components),
+        params:     Hash(params)
+      )
+
+      resolved_profile = Signature::Profile.resolve(profile)
+      resolved_profile&.apply(ctx)
 
-      label = args[:label]
-      options[:label] = label if label
-      options.merge!(args.fetch(:params, {}))
+      signature = Linzer::Signer.sign(
+        ctx.key,
+        ctx.message,
+        ctx.components,
+        ctx.params
+      )
 
-      key = args.fetch(:key)
-      signature = Linzer::Signer.sign(key, message, args.fetch(:components), options)
-      message.attach!(signature)
+      ctx.message.attach!(signature)
     end
 
     # Verifies a signed HTTP request or response.

data/lib/linzer/http/signature_feature.rb

@@ -53,12 +53,17 @@ module Linzer
       # @param covered_components [Array<String>] Components to include
       #   in the signature. Defaults to `@method`, `@request-target`,
       #   `@authority`, and `date`.
+      # @param profile [Symbol, Linzer::Signature::Profile::Base, nil]
+      #   Optional signing profile used when generating signatures.
+      #   When provided, the profile may supply default covered components
+      #   and signature parameters.
       #
       # @raise [HTTP::Error] If key is nil or invalid
-      def initialize(key:, params: {}, covered_components: default_components)
+      def initialize(key:, params: {}, covered_components: default_components, profile: nil)
         @fields = Array(covered_components)
         @key    = validate_key(key)
         @params = Hash(params)
+        @profile = profile
       end
 
       # @return [Array<String>] The components to include in signatures
@@ -67,6 +72,10 @@ module Linzer
       # @return [Hash] Additional signature parameters
       attr_reader :params
 
+      # @return [Linzer::Signature::Profile::Base, Symbol, nil]
+      #  Optional signing profile used during signature generation
+      attr_reader :profile
+
       # Wraps an outgoing request to add signature headers.
       #
       # Called automatically by http.rb for each request.
@@ -74,9 +83,11 @@ module Linzer
       # @param request [HTTP::Request] The outgoing request
       # @return [HTTP::Request] The request with signature headers added
       def wrap_request(request)
-        message   = Linzer::Message.new(request)
-        signature = Linzer.sign(key, message, fields, **params)
-        request.headers.merge!(signature.to_h)
+        Linzer.sign! request,
+                     key:        key,
+                     components: fields,
+                     params:     params,
+                     profile:    profile
         request
       end
 

data/lib/linzer/http/structured_field.rb

@@ -10,38 +10,135 @@ module Linzer
     # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
     # @see https://www.rfc-editor.org/rfc/rfc9421 RFC 9421
     module StructuredField
-      # Serializes signature parameters to the RFC 8941 string format.
+      InnerList  = Starry::InnerList
+      Item       = Starry::Item
+
+      # Parses an RFC 8941 Structured Field Dictionary.
+      #
+      # @param str [String] the serialized dictionary value
+      # @param field_name [String, nil] optional field name for contextual errors
+      # @return [Hash<String, Object>] parsed structured field dictionary
+      # @raise [Linzer::Error] if the field cannot be parsed
+      #
+      # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
+      def self.parse_dictionary(str, field_name: nil)
+        Starry.parse_dictionary(str)
+      # rescue Starry::ParseError => ex
+      # https://github.com/takemar/starry/pull/4
+      rescue => ex
+        cannot_parse = "Cannot parse %sfield!"
+        raise Error,
+              cannot_parse % [field_name ? "\"#{field_name}\" " : nil],
+              cause: ex
+      end
+
+      # Parses an RFC 8941 Structured Field Item.
+      #
+      # @param item [String] serialized structured field item
+      # @return [Starry::Item] parsed structured field item
+      # @raise [Linzer::Error] if the item is invalid or unparseable
+      #
+      # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
+      def self.parse_item(item)
+        Starry.parse_item(item)
+      # rescue Starry::ParseError => ex
+      # https://github.com/takemar/starry/pull/4
+      rescue => ex
+        raise Error, "Invalid/unparseable HTTP field item", cause: ex
+      end
+
+      # Parses an RFC 8941 Structured Field List.
+      #
+      # @param list [String] serialized structured field list
+      # @return [Array<Object>] parsed structured field list members
+      # @raise [Linzer::Error] if the list is invalid or unparseable
+      #
+      # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
+      def self.parse_list(list)
+        Starry.parse_list(list)
+      # rescue Starry::ParseError => ex
+      # https://github.com/takemar/starry/pull/4
+      rescue => ex
+        raise Error, "Invalid/unparseable HTTP field list", cause: ex
+      end
+
+      # Serializes a dictionary into RFC 8941 Structured Field format.
+      #
+      # @param hsh [Hash] structured field dictionary
+      # @return [String] serialized structured field dictionary
+      # @raise [Linzer::Error] if the dictionary cannot be serialized
       #
-      # Integers are bare, strings are double-quoted. This covers all
-      # parameter types used in RFC 9421 signatures (created, expires,
-      # keyid, nonce, alg, tag).
+      # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
+      def self.serialize_dictionary(hsh)
+        Starry.serialize_dictionary(hsh)
+      # rescue Starry::SerializeError => ex
+      # https://github.com/takemar/starry/pull/4
+      rescue => ex
+        raise Error, ex.message, cause: ex
+      end
+
+      # Serializes a list into RFC 8941 Structured Field format.
+      #
+      # @param arr [Array] structured field list members
+      # @return [String] serialized structured field list
+      # @raise [Linzer::Error] if the list cannot be serialized
+      #
+      # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
+      def self.serialize_list(arr)
+        Starry.serialize_list(arr)
+      # rescue Starry::SerializeError => ex
+      # https://github.com/takemar/starry/pull/4
+      rescue => ex
+        raise Error, ex.message, cause: ex
+      end
+
+      # Serializes an object into RFC 8941 Structured Field format.
+      #
+      # @param obj [Object] structured field value
+      # @return [String] serialized structured field value
+      # @raise [Linzer::Error] if the object cannot be serialized
       #
-      # @example Serialize signature parameters
-      #   StructuredField.serialize_parameters(
-      #     created: 1700000000,
-      #     keyid: "my-key"
-      #   )
-      #   # => ';created=1700000000;keyid="my-key"'
+      # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
+      def self.serialize(obj)
+        Starry.serialize(obj)
+      rescue Starry::SerializeError => ex
+        raise Error, ex.message, cause: ex
+      end
+
+      # Serializes a Structured Field Item into RFC 8941 format.
+      #
+      # This helper serializes a single Structured Field Item, such as
+      # a string, integer, token, boolean, date, byte sequence, or
+      # an already constructed {Starry::Item}.
+      #
+      # @param item [Object] structured field item value
+      # @return [String] serialized structured field item
+      # @raise [Linzer::Error] if the item cannot be serialized
+      #
+      # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
+      def self.serialize_item(item)
+        Starry.serialize_item(item)
+      rescue Starry::SerializeError => ex
+        raise Error, ex.message, cause: ex
+      end
+
+      # Serializes Structured Field Parameters into RFC 8941 format.
       #
-      # @param parameters [Hash{Symbol,String => Object}]
-      #   The parameters to serialize.
+      # Parameters are serialized according to the Structured Fields
+      # parameter syntax defined in RFC 8941 Section 3.1.2.
       #
-      # @return [String]
-      #   The serialized structured field parameter string.
+      # @param parameters [Hash{String,Symbol => Object}] parameter names
+      #   and values
+      # @return [String] serialized structured field parameters
+      # @raise [Linzer::Error] if the parameters cannot be serialized
       #
+      # @see https://www.rfc-editor.org/rfc/rfc8941 RFC 8941
       def self.serialize_parameters(parameters)
-        params_str = +""
-        parameters.each do |key, value|
-          params_str << case value
-          when Integer
-            ";#{key}=#{value}"
-          when String
-            ";#{key}=\"#{value}\""
-          else
-            ";#{key}=#{value}"
-          end
-        end
-        params_str
+        Starry.serialize_parameters(parameters)
+      # rescue Starry::SerializeError => ex
+      # https://github.com/takemar/starry/pull/4
+      rescue => ex
+        raise Error, ex.message, cause: ex
       end
     end
   end

data/lib/linzer/http.rb

@@ -100,12 +100,18 @@ module Linzer
 
       headers    = build_headers(options[:headers] || {})
       request    = build_request(verb, uri, headers)
-      message    = Linzer::Message.new(request)
       components = options[:covered_components] || default_components
       params     = options[:params] || {}
-      signature  = Linzer.sign(key, message, components, **params)
 
-      do_request(http, uri, verb, options[:data], signature, headers)
+      Linzer.sign! request,
+                   key:        key,
+                   components: components,
+                   params:     params,
+                   profile:    options[:profile]
+
+      signature_headers  = request.each_header.to_h.slice("signature-input", "signature")
+
+      do_request(http, uri, verb, options[:data], signature_headers, headers)
     end
 
     # Returns the default covered components for signing.
@@ -180,19 +186,19 @@ module Linzer
     # @param uri [String] the request URI
     # @param verb [Symbol] the HTTP method
     # @param data [String, nil] the request body
-    # @param signature [Linzer::Signature] the generated signature
+    # @param signature_headers [Hash] the generated signature headers
     # @param headers [Hash] request headers
     # @return [Net::HTTPResponse] the response
     # @raise [Linzer::Error] if a body is required but not provided
-    def do_request(http, uri, verb, data, signature, headers)
+    def do_request(http, uri, verb, data, signature_headers, headers)
       if with_body?(verb)
         if !data
           missed_body = "Missing request body on HTTP request: '#{verb.upcase}'"
           raise Linzer::Error, missed_body
         end
-        http.public_send(verb, uri, data, headers.merge(signature.to_h))
+        http.public_send(verb, uri, data, headers.merge(signature_headers))
       else
-        http.public_send(verb, uri,       headers.merge(signature.to_h))
+        http.public_send(verb, uri,       headers.merge(signature_headers))
       end
     end
   end

data/lib/linzer/message/adapter/abstract.rb

@@ -97,26 +97,35 @@ module Linzer
         # Attaches a signature to the underlying HTTP message.
         #
         # @param signature [Signature] The signature to attach
+        # @param additional_headers [#each]
+        #   Additional headers to attach after signature processing.
+        #   Header values overwrite existing values with the same field name.
+        #
         # @return [Object] The underlying HTTP message
-        def attach!(signature)
+        def attach!(signature, additional_headers: {})
           signature_headers = signature.to_h
 
-          unless has_signature?
+          if !has_signature?
             signature_headers.each { |h, v| set_header!(h, v) }
-            return @operation
+          else
+            begin
+              signature_headers.each do |hdr, value|
+                merged = HTTP::StructuredField.parse_dictionary(String(header(hdr)))
+                merged.merge!(HTTP::StructuredField.parse_dictionary(value))
+                set_header!(hdr, HTTP::StructuredField.serialize_dictionary(merged))
+              end
+            rescue Error => ex
+              raise Error,
+                    "Cannot attach signature, invalid signature header(s)!",
+                    cause: ex
+            end
           end
 
-          signature_headers.each do |hdr, value|
-            merged = Starry.parse_dictionary(String(header(hdr)))
-            merged.merge!(Starry.parse_dictionary(value))
-            set_header!(hdr, Starry.serialize_dictionary(merged))
+          if !additional_headers.empty?
+            additional_headers.each { |h, v| set_header!(h, v) }
           end
 
           @operation
-        rescue Starry::ParseError => e
-          raise Error,
-                "Cannot attach signature, invalid signature header(s)!",
-                cause: e
         end
 
         private
@@ -201,8 +210,10 @@ module Linzer
           has_bs  = name.parameters["bs"]
 
           if has_req
-            name.parameters.delete("req")
-            return req(name, method)
+            request_field =
+              HTTP::StructuredField::Item.new(name.value,
+                                              name.parameters.except("req"))
+            return req(request_field, method)
           end
 
           value = send(method, name)
@@ -223,14 +234,16 @@ module Linzer
         # @return [String] the serialized structured field value
         # @see https://www.rfc-editor.org/rfc/rfc9421.html#section-2.1.1
         def sf(value, key = nil)
-          dict = Starry.parse_dictionary(value)
+          dict = HTTP::StructuredField.parse_dictionary(value)
 
           if key
             obj = dict[key]
-            Starry.serialize(obj.is_a?(Starry::InnerList) ? [obj] : obj)
+            HTTP::StructuredField.serialize(obj.is_a?(HTTP::StructuredField::InnerList) ? [obj] : obj)
           else
-            Starry.serialize(dict)
+            HTTP::StructuredField.serialize(dict)
           end
+        rescue Error => _ex
+          nil
         end
 
         # Binary-wraps a field value as a byte sequence.
@@ -239,7 +252,7 @@ module Linzer
         # @return [String] the serialized byte sequence
         # @see https://www.rfc-editor.org/rfc/rfc9421.html#section-2.1.3
         def bs(value)
-          Starry.serialize(value.encode(Encoding::ASCII_8BIT))
+          HTTP::StructuredField.serialize(value.encode(Encoding::ASCII_8BIT))
         end
 
         # Retrieves a trailer field value.

data/lib/linzer/message/adapter/generic/request.rb

@@ -72,6 +72,7 @@ module Linzer
           end
 
           def query_param(uri_query, name)
+            return nil if !uri_query
             param_name = name.parameters["name"]
             return nil if !param_name
             decoded_param_name = URI.decode_uri_component(param_name)

data/lib/linzer/message/field/parser.rb

@@ -24,15 +24,15 @@ module Linzer
           def parse(field_name)
             case
             when field_name.match?(/";/), field_name.start_with?('"')
-              Starry.parse_item(field_name)
+              HTTP::StructuredField.parse_item(field_name)
             when field_name.match?(/;/)
               parse_unserialized_input(field_name)
             when field_name.start_with?("@"), field_name.match?(/^[a-z]/)
-              Starry.parse_item(Starry.serialize(field_name))
+              HTTP::StructuredField.parse_item(HTTP::StructuredField.serialize(field_name))
             else
               raise Error, "Invalid component identifier: '#{field_name}'!"
             end
-          rescue Starry::ParseError => ex
+          rescue Error => ex
             parse_error = "Failed to parse component identifier: '#{field_name}'!"
             raise Error, parse_error, cause: ex
           end
@@ -49,7 +49,7 @@ module Linzer
           # @return [Starry::Item] the parsed item with parameters
           def parse_unserialized_input(field_name)
             field, *raw_params = field_name.split(";")
-            item               = Starry.parse_item(Starry.serialize(field))
+            item               = HTTP::StructuredField.parse_item(HTTP::StructuredField.serialize(field))
             item.parameters    = collect_parameters(raw_params)
             item
           end
@@ -67,7 +67,7 @@ module Linzer
                 {param => true}
               else
                 Hash[*tokens.first(2)]                  # e.g.: ";key=\"foo\""
-                  .transform_values! { |v| Starry.parse_item(v).value }
+                  .transform_values! { |v| HTTP::StructuredField.parse_item(v).value }
               end
             end
             params.reduce({}, :merge)

data/lib/linzer/message/field.rb

@@ -34,7 +34,7 @@ module Linzer
         # @raise [Error] If the component identifier is invalid
         def serialize
           raise Error, "Invalid component identifier: '#{field_name}'!" unless item
-          @serialized || Starry.serialize(@item)
+          @serialized || HTTP::StructuredField.serialize(@item)
         end
       end
 
@@ -113,7 +113,7 @@ module Linzer
                 # build the Item and serialized string directly,
                 # bypassing Starry.parse_item + Starry.serialize
                 quoted = "\"#{c}\""
-                item   = Starry::Item.new(c, {})
+                item   = HTTP::StructuredField::Item.new(c, {})
                 field_ids[i]  = FastIdentifier.new(quoted, item)
                 serialized[i] = quoted
               end
@@ -127,8 +127,8 @@ module Linzer
           # @return [Array<String>] Component names
           def deserialize_components(components)
             components.map do |c|
-              item = Starry.parse_item(c)
-              item.parameters.empty? ? item.value : Starry.serialize(item)
+              item = HTTP::StructuredField.parse_item(c)
+              item.parameters.empty? ? item.value : HTTP::StructuredField.serialize(item)
             end
           end
         end